懂行的看下有没有毒
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe加载库文件C:\WINDOWS\system32\imm32.dll C:\WINDOWS\system32\imm32.dll
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe加载库文件C:\WINDOWS\system32\imm32.dll C:\WINDOWS\system32\imm32.dll
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe加载库文件C:\Program Files\Common Files\Kingsoft\kiscommon\security\ksde\kisdcom.dll C:\Program Files\Common Files\Kingsoft\kiscommon\security\ksde\kisdcom.dll
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建文件C:\KSafeBox\2C05FB0C\531200.dll C:\KSafeBox\2C05FB0C\531200.dll
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe写文件C:\KSafeBox\2C05FB0C\531200.dll C:\KSafeBox\2C05FB0C\531200.dll
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe写文件C:\KSafeBox\2C05FB0C\NT_Path.jpg C:\KSafeBox\2C05FB0C\NT_Path.jpg
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建文件C:\KSafeBox\2C05FB0C\NT_Path.jpg C:\KSafeBox\2C05FB0C\NT_Path.jpg
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe打开服务RemoteAccess RemoteAccess
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RemoteAccess\RouterManagers\Ip HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RemoteAccess\RouterManagers\Ip
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001 HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\RemoteAccess HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\RemoteAccess
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\RemoteAccess\RouterManagers HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\RemoteAccess\RouterManagers
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\RemoteAccess\RouterManagers\Ip HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\RemoteAccess\RouterManagers\Ip
2011-07-14 11:03:21 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe写注册表HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\RemoteAccess\RouterManagers\Ip HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\RemoteAccess\RouterManagers\Ip
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe加载库文件C:\KSafeBox\2C05FB0C\531200.dll C:\KSafeBox\2C05FB0C\531200.dll
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe加载库文件C:\WINDOWS\system32\msvcp60.dll C:\WINDOWS\system32\msvcp60.dll
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe加载库文件C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe加载库文件C:\WINDOWS\system32\avicap32.dll C:\WINDOWS\system32\avicap32.dll
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe加载库文件C:\WINDOWS\system32\msvfw32.dll C:\WINDOWS\system32\msvfw32.dll
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe安装服务hack by wuxin hack by wuxin
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\SOFTWARE\244397556 HKEY_LOCAL_MACHINE\SOFTWARE\244397556
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE\244397556 HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE\244397556
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\SOFTWARE\244397556\Parameters HKEY_LOCAL_MACHINE\SOFTWARE\244397556\Parameters
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe写注册表HKEY_LOCAL_MACHINE\SOFTWARE\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE\244397556\Parameters HKEY_LOCAL_MACHINE\SOFTWARE\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE\244397556\Parameters
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建文件C:\KSafeBox\2C05FB0C\Net-Temp.ini C:\KSafeBox\2C05FB0C\Net-Temp.ini
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe写文件C:\KSafeBox\2C05FB0C\Net-Temp.ini C:\KSafeBox\2C05FB0C\Net-Temp.ini
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\hack by wuxin HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\hack by wuxin
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe还原注册表键值HKEY_LOCAL_MACHINE\SOFTWARE\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\hack by wuxin HKEY_LOCAL_MACHINE\SOFTWARE\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\hack by wuxin
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe删除文件C:\KSafeBox\2C05FB0C\Net-Temp.ini C:\KSafeBox\2C05FB0C\Net-Temp.ini
2011-07-14 11:03:26 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建文件C:\KSafeBox\2C05FB0C\Net-Temp.ini C:\KSafeBox\2C05FB0C\Net-Temp.ini
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe写文件C:\KSafeBox\2C05FB0C\Net-Temp.ini C:\KSafeBox\2C05FB0C\Net-Temp.ini
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE HKEY_LOCAL_MACHINE\Software\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\SOFTWARE\333674441 HKEY_LOCAL_MACHINE\SOFTWARE\333674441
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe还原注册表键值HKEY_LOCAL_MACHINE\SOFTWARE\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE\333674441 HKEY_LOCAL_MACHINE\SOFTWARE\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE\333674441
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe写注册表HKEY_LOCAL_MACHINE\SOFTWARE\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE\333674441 HKEY_LOCAL_MACHINE\SOFTWARE\Kingsoft\KSBReg\2C05FB0C\HKEY_LOCAL_MACHINE\SOFTWARE\333674441
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe删除文件C:\KSafeBox\2C05FB0C\Net-Temp.ini C:\KSafeBox\2C05FB0C\Net-Temp.ini
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建文件C:\KSafeBox\2C05FB0C\Net-Temp.ini C:\KSafeBox\2C05FB0C\Net-Temp.ini
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe写文件C:\KSafeBox\2C05FB0C\Net-Temp.ini C:\KSafeBox\2C05FB0C\Net-Temp.ini
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建注册表键值HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe还原注册表键值HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe删除文件C:\KSafeBox\2C05FB0C\Net-Temp.ini C:\KSafeBox\2C05FB0C\Net-Temp.ini
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe创建文件C:\KSafeBox\2C05FB0C\WINDOWS\System32\QQreg.jpg C:\KSafeBox\2C05FB0C\WINDOWS\System32\QQreg.jpg
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe写文件C:\KSafeBox\2C05FB0C\WINDOWS\System32\QQreg.jpg C:\KSafeBox\2C05FB0C\WINDOWS\System32\QQreg.jpg
2011-07-14 11:03:27 C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe打开服务hack by wuxin hack by wuxin
2011-07-14 11:03:27 结束进程C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe C:\Documents and Settings\Administrator\桌面\CF刷绝版木仓(1.1.9刷木仓补丁)\1.1.9补丁.exe