求高手帮忙！！！急！！！！ bbs.ikaka.com

osmoon - 2009-12-24 18:56:00

超级兔子和一个桌面快捷自动安装并启动，反复删除重启都没有效果。下面是扫描好的日志，求高手帮助！
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<KingSoft PowerWord PE><C:\Program Files\Kingsoft\PowerWord PE\CBTray.exe -AUTORUN> [(Verified)"Zhuhai Kingsoft Software Co.,Ltd"]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Component Publisher]
<360sd><"C:\Program Files\360\360sd\360sdrun.exe"> [(Verified)Qizhi Software (beijing) Co. Ltd]
<Vagaa><> [N/A]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SysTrayApp><%ProgramFiles%\IDT\WDM\sttray.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<AESTFltr><%SystemRoot%\system32\AESTFltr.exe /NoDlg> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<StartCCC><"C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun> [File is missing]
<KernelFaultCheck><%systemroot%\system32\dumprep 0 -k> [File is missing]
<runeip><"C:\Program Files\Rising\AntiSpyware\rstray.exe" /startup> [(Verified)Beijing Rising Information Technology Corporation Limited]
<360Safetray><"C:\Program Files\360\360safe\safemon\360tray.exe" /start> [(Verified)Qizhi Software (beijing) Co. Ltd]
<360Safebox><"C:\Program Files\360Safebox\safeboxTray.exe" /r> [(Verified)Qizhi Software (beijing) Co. Ltd]
<SrLoader><C:\Program Files\Super Rabbit\MagicSet\SrLoader.exe> [(Verified)"Beijing Gigabit Times Technology Co., Ltd"]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><Cmsinet32.dll> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<PostBootReminder><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher]
<CDBurn><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher]
<WebCheck><C:\WINDOWS\system32\webcheck.dll> [(Verified)Microsoft Windows]
<SysTray><C:\WINDOWS\system32\stobject.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
<WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
<WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
<WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
<WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
<WinlogonNotify: ScCertProp><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
<WinlogonNotify: Schedule><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
<WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
<WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
<WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
<WinlogonNotify: wlballoon><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]
<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<Internet Explorer 版本更新><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
<Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
<Browser Customizations><"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
<浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Remove.PerUser.NT> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
<Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
<N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install> [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Control Panel\Desktop]
<SCRNSAVE.EXE><C:\WINDOWS\system32\ssmypics.scr> [(Verified)Microsoft Windows Component Publisher]
==================================
启动文件夹
[蓝牙控制盘]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\蓝牙控制盘.lnk --> C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [Broadcom Corporation.]><N>
[我的桌面导航]
<C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\我的桌面导航.lnk --> C:\PROGRA~1\DockBar\dockbar.exe [浙江沸蓝新媒体网络有限公司]><N>
==================================
服务
[360 杀毒实时防护服务 / 360rp][Running/Auto Start]
<"C:\Program Files\360\360sd\360rp.exe"><360.cn>
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
<C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[Bluetooth Service / btwdins][Running/Auto Start]
<C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe><Broadcom Corporation.>
[GP_CLT_Service / GP_CLT_Service][Running/Auto Start]
<C:\WINDOWS\system32\GP_CLT_Service.exe><>
[Kingsoft Common Content Service / KSDSVC][Running/Auto Start]
<C:\Program Files\Kingsoft\PowerWord PE\ksdsvc.exe><Kingsoft Corporation>
[NetMeeting Remote Desktop Sharing / mnmsrvc][Stopped/Manual Start]
<><(File is missing)>
[Microsoft Antimalware Service / MsMpSvc][Stopped/Disabled]
<><(File is missing)>
[360 杀毒全盘扫描辅助服务 / scan][Stopped/Manual Start]
<C:\WINDOWS\System32\svchost.exe -k bdx-->C:\Program Files\360\360sd\Scan.dll><S.C. BitDefender S.R.L>
[Audio Service / STacSV][Running/Auto Start]
<c:\program files\idt\xpm09_6162v012\wdm\STacSV.exe><IDT, Inc.>
[Tencent Software Update Service / TSUSVC][Stopped/Manual Start]
<"C:\Program Files\Tencent\QQSoftMgr\1.0.298.203\\TencentUpdateSvc.exe" -run><Tencent>
[主动防御 / ZhuDongFangYu][Running/Auto Start]
<"C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe"><360安全中心>
==================================
驱动程序
[360SelfProtection / 360SelfProtection][Running/System Start]
<system32\drivers\360SelfProtection.sys><360安全中心>
[AE Audio Service / AESTAud][Running/Manual Start]
<system32\drivers\AESTAud.sys><Andrea Electronics Corporation>
[Creative AMB Service / AMBFilt][Stopped/Manual Start]
<system32\drivers\AMBFilt.sys><Creative>
[AMD AGP Bus Filter Driver / amdagp][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\amdagp.sys><Advanced Micro Devices, Inc.>
[ati2mtag / ati2mtag][Running/Manual Start]
<system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[Broadcom 802.11 网络适配器驱动程序 / BCM43XX][Running/Manual Start]
<system32\DRIVERS\bcmwl5.sys><Broadcom Corp.>
[bdfsfltr / bdfsfltr][Running/System Start]
<system32\DRIVERS\bdfsfltr.sys><BitDefender S.R.L. Bucharest, ROMANIA>
[BFSDRV / BFSDRV][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\bfsdrv.sys><360安全中心>
[BREGDRV / BREGDRV][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\bregdrv.sys><360安全中心>
[蓝牙音频设备 / btaudio][Running/Manual Start]
<system32\drivers\btaudio.sys><Broadcom Corporation.>
[蓝牙虚拟通信驱动程序 / BTDriver][Running/Manual Start]
<system32\DRIVERS\btport.sys><Broadcom Corporation.>
[蓝牙总线枚举器 / BTKRNL][Running/Manual Start]
<system32\DRIVERS\btkrnl.sys><Broadcom Corporation.>
[蓝牙局域网接入服务器 / BTWDNDIS][Running/Manual Start]
<system32\DRIVERS\btwdndis.sys><Broadcom Corporation.>
[蓝牙调制解调器 / btwmodem][Running/Manual Start]
<system32\DRIVERS\btwmodem.sys><Broadcom Corporation.>
[WIDCOMM USB Bluetooth Driver / BTWUSB][Running/Manual Start]
<System32\Drivers\btwusb.sys><Broadcom Corporation.>
[Dritek Keyboard Filter Driver / DKbFltr][Running/Manual Start]
<system32\DRIVERS\DKbFltr.sys><Dritek System Inc.>
[EfiSystemMon / EfiMon][Running/System Start]
<System32\Drivers\Efimon.sys><奇虎网>
[Creative AudioPCI (ES1371,ES1373) (WDM) / es1371][Stopped/Manual Start]
<system32\drivers\es1371mp.sys><Creative Technology Ltd.>
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
<system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[HookPort / HookPort][Running/Boot Start]
<\SystemRoot\System32\Drivers\Hookport.sys><360安全中心>
[hptpro / hptpro][Stopped/Boot Start]
<\SystemRoot\system32\DRIVERS\hptpro.sys><HighPoint Technologies, Inc.>
[Creative Mon Service / MonFilt][Stopped/Manual Start]
<system32\drivers\MonFilt.sys><Creative Technology Ltd.>
[AMD PCNET Compatable Adapter Driver / PCnet][Stopped/Manual Start]
<system32\DRIVERS\pcntpci5.sys><AMD Inc.>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Quantum DeepScanner Servers / qutmdserv][Running/Manual Start]
<\??\C:\WINDOWS\system32\drivers\qutmdrv.sys><360安全中心>
[qutmipc / qutmipc][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\qutmipc.sys><360安全中心>
[RTS5121.Sys Realtek USB Card Reader / RSUSBSTOR][Running/Manual Start]
<System32\Drivers\RTS5121.sys><Realtek Semiconductor Corp.>
[SafeBoxKrnl / SafeBoxKrnl][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\SafeBoxKrnl.sys><360安全中心>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[SATALink driver accelerator / SiFilter][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\SiWinAcc.sys><Silicon Image, Inc.>
[SATALink External Device Filter / SiRemFil][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\SiRemFil.sys><Silicon Image, Inc.>
[SIS AGP Bus Filter / sisagp][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>
[IDT High Definition Audio CODEC / STHDA][Running/Manual Start]
<system32\drivers\sthda.sys><IDT, Inc.>
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
<system32\DRIVERS\tcpip.sys><Microsoft Corporation>
[TesSafe / TesSafe][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\TesSafe.sys><N/A>
[NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwxp][Running/Manual Start]
<system32\DRIVERS\yk51x86.sys><Marvell>
==================================
浏览器加载项
[ThunderAtOnce Class]
{01443AEC-0FD1-40fd-9C87-E93D1494C233} <E:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[QQ工具栏]
{29CF293A-1E7D-4069-9E11-E39698D0AF95} <C:\Program Files\Tencent\QQToolbar\IEBar.dll, (Signed) TENCENT>
[]
{56746166-BC44-45f4-ADCE-52EAC919BB79} <, >
[上网导航助手]
{8250BF1B-E6E5-491E-A697-A06BF7CA6FBA} <C:\WINDOWS\system32\win32ie.dll, Sun Miscrosoft>
[卡卡上网安全助手]
{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} <C:\WINDOWS\system32\UrlFilter.dll, (Signed) Beijing Rising Information Technology Co., Ltd.>
[谷歌金山词霸for IE]
{A28581A7-E2A8-4b6c-9CC9-4A4CC1EFD55A} <C:\Program Files\Kingsoft\PowerWord PE\SelectForIE.dll, (Signed) Kingsoft Corporation>
[SafeMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360\360safe\safemon\safemon.dll, (Signed) 360.CN>
[浩方电竞平台]
{0A155D3C-68E2-4215-A47A-E800A446447A} <D:\Program Files\Holdfast\platform 5.0\gameclient.exe, (Signed) 上海浩方在线信息技术有限公司>
[PPLive]
{95B3F550-91C4-4627-BCC4-521288C52977} <F:\Program Files\PPLive\PPLive.exe, (Signed) >
[CBMenu Class]
{9D5CCDC3-545F-4418-8AEC-9CD2773B4861} <C:\Program Files\Kingsoft\PowerWord PE\SelectForIE.dll, (Signed) Kingsoft Corporation>
[@btrez.dll,-4015]
{CCA281CA-C863-46ef-9331-5C8D4460577F} <, >
[]
{e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
[百度一下,你就知道]
{9DAA5A0E-C823-49DA-8D2A-A3B594DEE62B} <http://www.baidu.com/index.php?tn=lin7163862_pg, N/A>
[QQ工具栏]
{29CF293A-1E7D-4069-9E11-E39698D0AF95} <C:\Program Files\Tencent\QQToolbar\IEBar.dll, (Signed) TENCENT>
[InstallHelper Class]
{1DABF8D5-8430-4985-9B7F-A30E53D709B3} <C:\Program Files\Tencent\QQLive\MMInstaller.dll, (Signed) Tencent>
[ThunderAtOnce Class]
{01443AEC-0FD1-40FD-9C87-E93D1494C233} <E:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[PhotoDrawEx Class]
{05F5F404-7C24-4B39-B5CC-340CEDEB9C0D} <E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Qzone\bin\QQPhotoDrawEx\QQPhotoDrawEx.dll, (Signed) Tencent>
[]
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <, >
[]
{0A155D3C-68E2-4215-A47A-E800A446447A} <, >

用户系统信息：Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; CIBA; 360SE)

osmoon - 2009-12-24 18:56:00

[Player Class]
{11F2A418-94B2-4e16-9B0C-B00C0435F903} <C:\Program Files\Tencent\QQLive\LiveMedia.dll, (Signed) Tencent>
[CEnroll Class]
{127698E4-E730-4E5C-A2B1-21490A70C8A1} <C:\WINDOWS\system32\xenroll.dll, (Signed) Microsoft Corporation>
[InstallHelper Class]
{1DABF8D5-8430-4985-9B7F-A30E53D709B3} <C:\Program Files\Tencent\QQLive\MMInstaller.dll, (Signed) Tencent>
[iTrusPTA Class]
{1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\pta.dll, (Signed) >
[]
{1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} <, >
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[XML DOM Document]
{2933BF90-7B36-11D2-B20E-00C04F983E60} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[QQ工具栏]
{29CF293A-1E7D-4069-9E11-E39698D0AF95} <C:\Program Files\Tencent\QQToolbar\IEBar.dll, (Signed) TENCENT>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[IETag Factory]
{38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation>
[]
{4248FE82-7FCB-46AC-B270-339F08212110} <, >
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[Thunder Agent Class]
{485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <E:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent5.9.7.1062.dll, (Signed) Thunder Networking Technologies,LTD>
[EditCtrl Class]
{488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, (Signed) >
[]
{56746166-BC44-45F4-ADCE-52EAC919BB79} <, >
[]
{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} <, >
[abcCtl4RA Class]
{5DA34F59-FBFF-4666-99F5-599CD7B9A640} <C:\WINDOWS\system32\ABCPRI~1.DLL, INFOSEC Tech. corp>
[InfoSecNetSign Class]
{62B938C4-4190-4F37-8CF0-A92B0A91CC77} <C:\WINDOWS\system32\netsign.dll, Infosec Technologies Co., Ltd.>
[QQLiveFile Class]
{6B232760-90F1-41c3-9902-C8552C1D8A72} <C:\Program Files\Tencent\QQLive\FileVersion.dll, (Signed) Tencent>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[]
{75124323-C599-4253-8CE1-86389192EDC1} <, >
[MediaComm Class]
{7670648D-461B-42AF-BDFE-46D26AF5EFF2} <C:\Documents and Settings\All Users\Application Data\Thunder Network\Thunder_47BE14EA-DC2F-4D1C-A904-A7E9C82CD7EC_\Components\InMedia\MediaAddin.dll, (Signed) 深圳市迅雷网络技术有限公司>
[XDownloaddManager Class]
{802F530B-A8F6-4631-AE49-6BACAAC6373E} <E:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[上网导航助手]
{8250BF1B-E6E5-491E-A697-A06BF7CA6FBA} <C:\WINDOWS\system32\win32ie.dll, Sun Miscrosoft>
[360SafeLive]
{87515F61-A66C-4319-A0E0-D416CB8059E3} <C:\Program Files\360\360safe\Safelive.dll, (Signed) >
[Microsoft Web Browser]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <E:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[XML DOM 文档 5.0]
{88D969E5-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, (Signed) Microsoft Corporation>
[XML HTTP 5.0]
{88D969EA-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, (Signed) Microsoft Corporation>
[XML DOM Document 6.0]
{88D96A05-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[]
{95B3F550-91C4-4627-BCC4-521288C52977} <, >
[OFrameObject Class]
{9701758C-4373-482E-B13C-776C048EC890} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.5908.221.(240).dll, (Signed) 深圳市迅雷网络技术有限公司>
[卡卡上网安全助手]
{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} <C:\WINDOWS\system32\UrlFilter.dll, (Signed) Beijing Rising Information Technology Co., Ltd.>
[]
{9D5CCDC3-545F-4418-8AEC-9CD2773B4861} <, >
[]
{9DAA5A0E-C823-49DA-8D2A-A3B594DEE62B} <, >
[VersionDetector Class]
{9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9B} <C:\Program Files\Common Files\Thunder Network\KanKan\vd.1.1.0.29.(241).dll, (Signed) 深圳市迅雷网络技术有限公司>
[谷歌金山词霸for IE]
{A28581A7-E2A8-4B6C-9CC9-4A4CC1EFD55A} <C:\Program Files\Kingsoft\PowerWord PE\SelectForIE.dll, (Signed) Kingsoft Corporation>
[DapCtrl Class]
{ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.5908.221.(240).dll, (Signed) 深圳市迅雷网络技术有限公司>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
[SafeMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360\360safe\safemon\safemon.dll, (Signed) 360.CN>
[]
{CCA281CA-C863-46EF-9331-5C8D4460577F} <, >
[]
{CCF151D8-D089-449F-A5A4-D9909053F20F} <, >
[QQPlayerCtrl Class]
{CD108273-D434-43E6-AA90-1469F97EB398} <E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQMusic\bin\QQMusic\QzoneMusic.dll, (Signed) Tencent>
[AUDIO__MP3 Moniker Class]
{CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[Microsoft Url Search Hook]
{CFBFAE00-17A6-11D0-99CB-00C04FD64497} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>
[webThunder Class]
{D2E6878A-49AF-4F6B-8A2F-C2A93F19EF80} <C:\Program Files\Thunder\ComDlls\LinkSimulate.dll, 快乐软件吧>
[KuAgent2 Class]
{D928E486-C465-4A64-976D-F3B24BBECC69} <E:\Program Files\YouKu\iKu\YouKuAgent.dll, N/A>
[QQLive Class]
{D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62} <C:\Program Files\Tencent\QQLive\LiveAPI.dll, (Signed) Tencent>
[PlayerCtrl Class]
{E05BC2A3-9A46-4A32-80C9-023A473F5B23} <E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQMusic\bin\QQMusic\QzoneMusic.dll, (Signed) Tencent>
[A Simulation for JetCar Netscape Class]
{E2065C93-6DF5-4782-AB38-EEC53AA41C76} <C:\Program Files\Thunder\ComDlls\LinkSimulate.dll, 快乐软件吧>
[]
{E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[QQRightClick Class]
{E2E5C57A-BA48-4B0D-A5B5-13130F9D2AA3} <C:\Program Files\Thunder\ComDlls\LinkSimulate.dll, 快乐软件吧>
[]
{E33CF602-D945-461A-83F0-819F76A199F8} <, >
[XML HTTP Request]
{ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XPPlayer Class]
{F3E70CEA-956E-49CC-B444-73AFE593AD7F} <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.1.59050.255.(241).dll, (Signed) 深圳市迅雷网络技术有限公司>
[XML DOM Document 3.0]
{F5078F32-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[Free Threaded XML DOM Document 3.0]
{F5078F33-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML HTTP 3.0]
{F5078F35-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XSL Template 3.0]
{F5078F36-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML Document 3.0]
{F5078F40-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML HTTP]
{F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[]
{FCD61199-E187-4ADD-88E5-9AF238486D11} <, >
[&V使用Vagaa哇嘎下载]
<E:\Vagaa\data\vg.htm, N/A>
[使用迅雷下载]
<E:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm, N/A>
[使用迅雷下载全部链接]
<E:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm, N/A>
[发送到 Bluetooth]
<C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm, N/A>
[发送到 Bluetooth 设备(&B)...]
<C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加为广告拦截图片]
<, >
[添加到QQ表情]
<E:\Program Files\Tencent\QQ\Bin\AddEmotion.htm, N/A>

==================================
正在运行的进程
[PID: 812 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 888 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 920 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\Ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4177]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[PID: 964 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[PID: 984 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1148 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4213]
[C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2513]
[C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2543]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1180 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[PID: 1260 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[PID: 1408 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\System32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\System32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[c:\windows\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159]
[PID: 1536 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4213]
[C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2513]
[C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2543]
[C:\WINDOWS\system32\ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4177]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1616 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1756 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[PID: 1772 / SYSTEM][C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe] [360安全中心, 3, 0, 1, 1001]
[C:\Program Files\360\360safe\deepscan\CloudCom2.dll] [360安全中心, 3, 1, 0, 1001]
[C:\Program Files\360\360safe\SoftMgr\360SoftMgrS.dll] [奇虎网, 2, 1, 5, 1010]
[C:\Program Files\360\360safe\deepscan\heavygate.dll] [360安全中心, 3, 6, 11, 0]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[C:\Program Files\360\360safe\deepscan\qutmload.dll] [360.CN, 1, 0, 0, 1002]
[PID: 144 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\bthcrp.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\WidcommSdk.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\wbtapi.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[PID: 228 / SYSTEM][c:\program files\idt\xpm09_6162v012\wdm\STacSV.exe] [IDT, Inc., 1.0.6162.0]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[C:\WINDOWS\system32\stacapi.dll] [IDT, Inc., 1.0.6162.0]
[PID: 676 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1712 / Administrator][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[C:\WINDOWS\system32\btmmhook.dll] [Broadcom Corporation., 5.5.0.3208]
[PID: 600 / Administrator][C:\Program Files\IDT\WDM\sttray.exe] [IDT, Inc., 1.0.6162.0]
[C:\Program Files\IDT\WDM\STLang.dll] [IDT, Inc., 1.0.6162.0]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[C:\WINDOWS\system32\stacapi.dll] [IDT, Inc., 1.0.6162.0]
[PID: 684 / Administrator][C:\WINDOWS\system32\AESTFltr.exe] [Andrea Electronics Corporation, 5, 0, 0, 1]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 796 / Administrator][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe] [Advanced Micro Devices Inc., 2.0.0.0]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7124a40b9998f7b63c86bd1a2125ce26\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3603 (GDR.050727-3600)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\3de5bd01124463d7862bd173af90bc83\System.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\abb2ac7e08bee026f857d8fa36f9fe6f\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d2ea8d76f015817db1607075812b555f\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
[C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3266.29453__90ba9c70f846762e\MOM.Implementation.dll] [Advanced Micro Devices Inc., 2.0.3266.29453]
[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3218.28664__90ba9c70f846762e\LOG.Foundation.dll] [Advanced Micro Devices Inc., 2.0.3218.28664]
[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3218.28672__90ba9c70f846762e\LOG.Foundation.Private.dll] [Advanced Micro Devices Inc., 2.0.3218.28672]
[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3266.29451__90ba9c70f846762e\LOG.Foundation.Implementation.dll] [Advanced Micro Devices Inc., 2.0.3266.29451]
[C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3218.28686__90ba9c70f846762e\MOM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.3218.28686]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3218.28686__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll] [Advanced Micro Devices Inc., 2.0.3218.28686]
[C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\5cea03cfb008f2eac1439a9905467f37\System.Web.ni.dll] [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)]
[C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3266.29452__90ba9c70f846762e\CCC.Implementation.dll] [Advanced Micro Devices Inc., 2.0.3266.29452]
[C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3218.28665__90ba9c70f846762e\NEWAEM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.3218.28665]
[PID: 1200 / Administrator][C:\Program Files\Rising\AntiSpyware\rstray.exe] [Beijing Rising Information Technology Co., Ltd., 21.0.0.21]
[C:\Program Files\Rising\AntiSpyware\rsmginfo.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Rising\AntiSpyware\RsXML.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2]
[C:\Program Files\Rising\AntiSpyware\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Rising\AntiSpyware\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Rising\AntiSpyware\ComServ.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.31]
[C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[C:\Program Files\Rising\AntiSpyware\rscommon.dll] [Beijing Rising Information Technology Co., Ltd., 20.0.1.1]
[C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
[C:\Program Files\Rising\AntiSpyware\pngdll.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5]
[C:\Program Files\Rising\AntiSpyware\runiep.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.44]
[C:\Program Files\Rising\AntiSpyware\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.11]
[C:\Program Files\Rising\AntiSpyware\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
[C:\Program Files\Rising\AntiSpyware\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]

osmoon - 2009-12-24 18:57:00

[PID: 1392 / Administrator][C:\WINDOWS\system32\ctfmon.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1552 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\System32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[PID: 1544 / SYSTEM][C:\WINDOWS\system32\GP_CLT_Service.exe] [, 1, 0, 1, 8]
[PID: 1704 / Administrator][C:\WINDOWS\system32\GP_CLT.exe] [, 2, 0, 0, 7]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GP_IFD.dll] [CIDC., 1, 0, 17, 45]
[C:\WINDOWS\system32\GP_COS.dll] [, 2, 0, 1, 15]
[C:\WINDOWS\system32\GP_RES.dll] [, 2, 0, 1, 9]
[PID: 1904 / SYSTEM][C:\Program Files\Kingsoft\PowerWord PE\ksdsvc.exe] [Kingsoft Corporation, 2009, 10, 19, 50]
[C:\Program Files\Kingsoft\PowerWord PE\ksdcallcenter.dll] [Kingsoft Corporation, 2009, 10, 19, 48]
[C:\Program Files\Kingsoft\PowerWord PE\queryprocesscenter.dll] [Kingsoft Corporation, 2009, 10, 19, 56]
[C:\Program Files\Kingsoft\PowerWord PE\KSDIPC.DLL] [Kingsoft Corporation, 2009, 10, 19, 48]
[C:\Program Files\Kingsoft\PowerWord PE\plugin\baikequery.dll] [, 2009, 10, 19, 19]
[C:\Program Files\Kingsoft\PowerWord PE\plugin\googlequery.dll] [Kingsoft Corporation, 2009, 10, 19, 46]
[C:\Program Files\Kingsoft\PowerWord PE\plugin\huihuaquery.dll] [, 2009, 10, 19, 10]
[C:\Program Files\Kingsoft\PowerWord PE\plugin\localquery.dll] [Kingsoft Corporation, 2009, 10, 19, 47]
[C:\Program Files\Kingsoft\PowerWord PE\localdictmgr.dll] [Kingsoft Corporation, 2009, 10, 20, 50]
[C:\Program Files\Kingsoft\PowerWord PE\plugin\netindex.dll] [Kingsoft Corporation, 2009, 10, 19, 23]
[C:\Program Files\Kingsoft\PowerWord PE\plugin\netquery.dll] [Kingsoft Corporation, 2009, 10, 19, 47]
[C:\Program Files\Kingsoft\PowerWord PE\plugin\situationsentence.dll] [Kingsoft Corporation, 2009, 10, 19, 12]
[C:\Program Files\Kingsoft\PowerWord PE\plugin\spellsuggest.dll] [Kingsoft Corporation, 2009, 10, 19, 51]
[C:\Program Files\Kingsoft\PowerWord PE\plugin\WikiQuery.dll] [Kingsoft Corporation, 2009, 10, 19, 48]
[PID: 1956 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[PID: 2004 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)]
[PID: 1384 / Administrator][C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\wbtapi.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159]
[C:\WINDOWS\system32\btosif.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\btwhidcs.DLL] [Broadcom Corporation., 5.5.0.3208]
[C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\btrez.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[C:\WINDOWS\system32\btwicons.dll] [, 1, 0, 0, 1]
[C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ]
[C:\WINDOWS\system32\btmmhook.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[PID: 2828 / Administrator][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe] [ATI Technologies Inc., 2.0.0.0]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7124a40b9998f7b63c86bd1a2125ce26\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3603 (GDR.050727-3600)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\3de5bd01124463d7862bd173af90bc83\System.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\abb2ac7e08bee026f857d8fa36f9fe6f\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d2ea8d76f015817db1607075812b555f\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
[C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3266.29452__90ba9c70f846762e\CCC.Implementation.dll] [Advanced Micro Devices Inc., 2.0.3266.29452]
[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3218.28664__90ba9c70f846762e\LOG.Foundation.dll] [Advanced Micro Devices Inc., 2.0.3218.28664]
[C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3218.28686__90ba9c70f846762e\MOM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.3218.28686]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3218.28666__90ba9c70f846762e\CLI.Foundation.dll] [Advanced Micro Devices Inc., 2.0.3218.28666]
[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3218.28686__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll] [Advanced Micro Devices Inc., 2.0.3218.28686]
[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3266.29451__90ba9c70f846762e\LOG.Foundation.Implementation.dll] [Advanced Micro Devices Inc., 2.0.3266.29451]
[C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3218.28672__90ba9c70f846762e\LOG.Foundation.Private.dll] [Advanced Micro Devices Inc., 2.0.3218.28672]
[C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3266.29453__90ba9c70f846762e\MOM.Implementation.dll] [Advanced Micro Devices Inc., 2.0.3266.29453]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3266.29368__90ba9c70f846762e\CLI.Component.SkinFactory.dll] [Advanced Micro Devices Inc., 2.0.3266.29368]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3218.28727__90ba9c70f846762e\CLI.Foundation.XManifest.dll] [Advanced Micro Devices Inc., 2.0.3218.28727]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\5913d3f81e77194ec833991b1047a532\System.Xml.ni.dll] [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3266.29366__90ba9c70f846762e\CLI.Component.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.3266.29366]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3218.28682__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll] [Advanced Micro Devices Inc., 2.0.3218.28682]
[C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.3218.28670__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll] [Advanced Micro Devices, Inc., 2.0.3218.28670]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3218.28670__90ba9c70f846762e\CLI.Foundation.Private.dll] [Advanced Micro Devices Inc., 2.0.3218.28670]
[C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll] [, 1.0.0.0]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3218.28676__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28676]
[C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll] [Advanced Micro Devices Inc., 2.0.0.0]
[C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3266.29366__90ba9c70f846762e\AEM.Server.dll] [Advanced Micro Devices Inc., 2.0.3266.29366]
[C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3218.28665__90ba9c70f846762e\NEWAEM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.3218.28665]
[C:\WINDOWS\system32\atiadlxx.dll] [Advanced Micro Devices, Inc., 6.14.10.1021]
[C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3218.28678__90ba9c70f846762e\AEM.Server.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28678]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[C:\PROGRA~1\ATITEC~1\ATI.ACE\CORE-I~1\32\wbocx.ocx] [Stardock Corporation, 5.0.2.4]
[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3266.29468__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll] [Advanced Micro Devices Inc., 2.0.3266.29468]
[C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll] [ , 1.0.0.0]
[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3218.28705__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28705]
[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3218.28677__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28677]
[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3218.28683__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28683]
[C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll] [ATI Technologies Inc., 2.0.2573.17685]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\e63d6d26b8a664cfdfbd4ad75e03c14d\Accessibility.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
[C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll] [ATI Technologies Inc., 2.0.2573.17684]
[C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3218.28688__90ba9c70f846762e\DEM.Graphics.dll] [Advanced Micro Devices Inc., 2.0.3218.28688]
[C:\WINDOWS\system32\ATIDEMGX.dll] [Advanced Micro Devices, Inc., 2.0.3266.30927]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\7c743462baccf29b3567b0e3ec9ac134\System.Configuration.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
[C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3266.29476__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll] [Advanced Micro Devices, Inc., 2.0.3266.29476]
[C:\Program Files\ATI Technologies\ATI.ACE\Core-Implementation\32\wbhelp2.dll] [Stardock.Net, Inc, 1.5]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3266.29368__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll] [Advanced Mirco Devices, Inc., 2.0.3266.29368]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3218.28678__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll] [Advanced Mirco Devices, Inc., 2.0.3218.28678]
[C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll] [ATI Technologies Inc., 2.0.2573.17685]
[C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3218.28687__90ba9c70f846762e\DEM.OS.I0602.dll] [Advanced Micro Devices Inc., 2.0.3218.28687]
[C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.3218.28687__90ba9c70f846762e\DEM.OS.dll] [Advanced Micro Devices Inc., 2.0.3218.28687]
[C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll] [Advanced Micro Devices, Inc., 2.0.2743.23304]
[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3218.28705__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28705]
[C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.3266.29367__90ba9c70f846762e\ATIDEMOS.dll] [Advanced Micro Devices, Inc., 2.0.3266.29367]
[C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3218.28672__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28672]
[C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll] [Advanced Micro Devices, Inc., 2.0.3015.27871]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3266.29375__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll] [Advanced Micro Devices Inc., 2.0.3266.29375]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3218.28689__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28689]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3266.29418__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll] [Advanced Micro Devices Inc., 2.0.3266.29418]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3218.28695__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll] [Advanced Micro Devices Inc., 2.0.3218.28695]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3218.28694__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28694]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3218.28686__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28686]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3266.29405__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.3266.29405]
[C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll] [Advanced Micro Devices, Inc., 2.0.3057.24943]
[C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll] [Advanced Micro Devices, Inc., 2.0.2743.23304]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3218.28685__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28685]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3266.29438__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll] [Advanced Micro Devices Inc., 2.0.3266.29438]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3218.28694__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28694]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3266.29388__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll] [Advanced Micro Devices Inc., 2.0.3266.29388]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3218.28690__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28690]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3266.29415__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll] [Advanced Micro Devices Inc., 2.0.3266.29415]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3218.28693__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28693]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3266.29407__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll] [Advanced Micro Devices Inc., 2.0.3266.29407]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3218.28692__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28692]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3266.29417__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.3266.29417]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3218.28688__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28688]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3266.29406__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.3266.29406]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3218.28692__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28692]
[C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll] [Advanced Micro Devices, Inc., 2.0.2939.20866]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.3266.29383__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll] [Advanced Micro Devices Inc., 2.0.3266.29383]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.3218.28690__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28690]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3266.29423__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll] [Advanced Micro Devices Inc., 2.0.3266.29423]

osmoon - 2009-12-24 18:58:00

[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3218.28694__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28694]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3266.29407__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll] [Advanced Micro Devices Inc., 2.0.3266.29407]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3218.28693__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28693]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Runtime\2.0.3266.29464__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Runtime.dll] [Advanced Micro Devices Inc., 2.0.3266.29464]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Shared\2.0.3218.28702__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28702]
[C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.3266.29365__90ba9c70f846762e\APM.Server.dll] [Advanced Micro Devices, Inc., 2.0.3266.29365]
[C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.3218.28685__90ba9c70f846762e\APM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.3218.28685]
[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\5cea03cfb008f2eac1439a9905467f37\System.Web.ni.dll] [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3266.29366__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll] [Advanced Micro Devices Inc., 2.0.3266.29366]
[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3218.28685__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28685]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3266.29447__90ba9c70f846762e\CLI.Component.Systemtray.dll] [Advanced Micro Devices Inc., 2.0.3266.29447]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3218.28675__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll] [Advanced Micro Devices, Inc., 2.0.3218.28675]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3266.29379__90ba9c70f846762e\CLI.Component.Wizard.dll] [Advanced Micro Devices, Inc., 2.0.3266.29379]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3218.28672__90ba9c70f846762e\CLI.Component.Client.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28672]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3218.28681__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28681]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3218.28681__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll] [Advanced Micro Devices Inc., 2.0.3218.28681]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3266.29380__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll] [Advanced Micro Devices Inc., 2.0.3266.29380]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3218.28690__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28690]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3266.29459__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll] [Advanced Micro Devices Inc., 2.0.3266.29459]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3266.29424__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll] [Advanced Micro Devices Inc., 2.0.3266.29424]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3266.29383__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll] [Advanced Micro Devices Inc., 2.0.3266.29383]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3266.29384__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll] [Advanced Micro Devices Inc., 2.0.3266.29384]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3218.28702__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28702]
[C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll] [ , 1.0.0.0]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3266.29433__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll] [Advanced Micro Devices Inc., 2.0.3266.29433]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3266.29388__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll] [Advanced Micro Devices Inc., 2.0.3266.29388]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3266.29372__90ba9c70f846762e\CLI.Component.Dashboard.dll] [Advanced Micro Devices, Inc., 2.0.3266.29372]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3218.28678__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28678]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3218.28682__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll] [Advanced Micro Devices Inc., 2.0.3218.28682]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3266.29374__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll] [Advanced Micro Devices Inc., 2.0.3266.29374]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3218.28688__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll] [Advanced Micro Devices Inc., 2.0.3218.28688]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3266.29460__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll] [Advanced Mirco Devices, Inc., 2.0.3266.29460]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3266.29385__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll] [Advanced Micro Devices Inc., 2.0.3266.29385]
[C:\WINDOWS\system32\btmmhook.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3266.29376__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll] [Advanced Micro Devices Inc., 2.0.3266.29376]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3266.29416__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll] [Advanced Micro Devices Inc., 2.0.3266.29416]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3266.29406__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll] [Advanced Micro Devices Inc., 2.0.3266.29406]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3266.29417__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll] [Advanced Micro Devices, Inc., 2.0.3266.29417]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3266.29424__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll] [Advanced Micro Devices Inc., 2.0.3266.29424]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3266.29385__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll] [Advanced Micro Devices Inc., 2.0.3266.29385]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3266.29408__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll] [Advanced Micro Devices Inc., 2.0.3266.29408]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Dashboard\2.0.3266.29464__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Dashboard.dll] [Advanced Micro Devices Inc., 2.0.3266.29464]
[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.3266.29384__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll] [Advanced Micro Devices Inc., 2.0.3266.29384]
[PID: 3036 / SYSTEM][C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 3488 / SYSTEM][C:\WINDOWS\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[PID: 3580 / Administrator][C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\btins.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159]
[C:\WINDOWS\system32\btosif.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\BtAudioHelper.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\btrez.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\btosif_ol.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\btosif_olx.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\btosif_notes.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[PID: 3832 / Administrator][C:\Program Files\Rising\AntiSpyware\ras.exe] [Beijing Rising Information Technology Co., Ltd., 6.0.0.7]
[C:\Program Files\Rising\AntiSpyware\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Rising\AntiSpyware\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[C:\Program Files\Rising\AntiSpyware\KakaMgr.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.30]

osmoon - 2009-12-24 18:58:00

[C:\Program Files\Rising\AntiSpyware\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[C:\Program Files\Rising\AntiSpyware\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
[C:\Program Files\Rising\AntiSpyware\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
[C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
[C:\Program Files\Rising\AntiSpyware\dbmgr.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.4]
[C:\Program Files\Rising\AntiSpyware\RSXML.DLL] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2]
[C:\Program Files\Rising\AntiSpyware\pweb.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.24]
[C:\Program Files\Rising\AntiSpyware\pscan.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.94]
[C:\Program Files\Rising\AntiSpyware\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.11]
[C:\Program Files\Rising\AntiSpyware\pset.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.12]
[C:\Program Files\Rising\AntiSpyware\pdefend.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.15]
[C:\Program Files\Rising\AntiSpyware\ptools.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.18]
[C:\Program Files\Rising\AntiSpyware\psysinfo.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.72]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[C:\Program Files\Rising\AntiSpyware\PngDll.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5]
[C:\WINDOWS\system32\btmmhook.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx] [Adobe Systems, Inc., 10,0,32,18]
[C:\Program Files\Rising\AntiSpyware\kengine.dll] [Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 16]
[C:\Program Files\Rising\AntiSpyware\posttrt.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 24]
[C:\Program Files\Rising\AntiSpyware\kscanex.dll] [Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 2]
[C:\Program Files\Rising\AntiSpyware\engine.dll] [Beijing Rising Information Technology Co., Ltd., 19, 0, 0, 26]
[C:\Program Files\Rising\AntiSpyware\rsdialog.dll] [Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 7]
[PID: 3940 / Administrator][C:\Program Files\Rising\AntiSpyware\knownsvr.exe] [Beijing Rising Information Technology Co., Ltd., 6.0.0.14]
[C:\Program Files\Rising\AntiSpyware\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.11]
[C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
[C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[PID: 3556 / Administrator][C:\Program Files\360\360se3\360SE.exe] [360安全中心, 3, 0, 8, 1]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[C:\PROGRA~1\360\360se3\Extensions\ExtAddons\ExtAddons.dll] [360安全中心, 1, 0, 2, 1]
[C:\PROGRA~1\360\360se3\Extensions\ExtAdfilter\ExtAdfilter.dll] [, 1, 0, 1, 0]
[C:\PROGRA~1\360\360se3\Extensions\ExtDownload\ExtDownload.dll] [360, 1, 0, 2, 5]
[C:\PROGRA~1\360\360se3\Extensions\ExtPages\ExtPages.dll] [360安全中心, 1, 0, 2, 5]
[C:\PROGRA~1\360\360se3\Extensions\ExtProxy\ExtProxy.dll] [360, 1, 0, 0, 9]
[C:\PROGRA~1\360\360se3\Extensions\ExtSuggest\ExtSuggest.dll] [360SE, 1, 0, 1, 1]
[C:\PROGRA~1\360\360se3\Extensions\Favorites\Favorites.dll] [360安全中心, 1, 0, 0, 7]
[C:\PROGRA~1\360\360se3\Extensions\MiniSearchBar\MiniSearchBar.dll] [, 1, 0, 0, 3]
[C:\PROGRA~1\360\360se3\Extensions\onlinefav\onlinefav.dll] [, 3, 0, 0, 3]
[C:\PROGRA~1\360\360se3\Extensions\pluginbar\pluginbar.dll] [360, 1, 0, 0, 5]
[C:\PROGRA~1\360\360se3\Extensions\SafeCentral\urlproc.dll] [360.CN, 1, 0, 0, 1006]
[C:\PROGRA~1\360\360se3\Extensions\SafeCentral\SafeCentral.dll] [, 1, 0, 0, 8]
[C:\PROGRA~1\360\360se3\Extensions\UICenter\UICenter.dll] [, 1, 0, 0, 5]
[C:\WINDOWS\system32\btmmhook.dll] [Broadcom Corporation., 5.5.0.3208]
[PID: 4004 / Administrator][C:\Program Files\360\360se3\360SE.exe] [360安全中心, 3, 0, 8, 1]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[C:\PROGRA~1\360\360se3\Extensions\ExtAdfilter\ExtAdfilter.dll] [, 1, 0, 1, 0]
[C:\PROGRA~1\360\360se3\Extensions\ExtProxy\ExtProxy.dll] [360, 1, 0, 0, 9]
[C:\PROGRA~1\360\360se3\Extensions\SafeCentral\SafeCentral.dll] [, 1, 0, 0, 8]
[C:\PROGRA~1\360\360se3\Extensions\SafeCentral\urlproc.dll] [360.CN, 1, 0, 0, 1006]
[C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159]
[C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx] [Adobe Systems, Inc., 10,0,32,18]
[C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ]
[PID: 2136 / Administrator][C:\Program Files\WinRAR\WinRAR.exe] [N/A, ]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[C:\WINDOWS\system32\btmmhook.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]
[PID: 2480 / Administrator][C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.688\SREngLdr.EXE] [Smallfrogs Studio, 2.8.1.1279]
[PID: 3272 / Administrator][C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.688\SRE58bb104c.EXE] [Smallfrogs Studio, 2.8.1.1279]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\360\360safe\safemon\safemon.dll] [360.CN, 5, 1, 0, 1003]
[C:\WINDOWS\system32\btmmhook.dll] [Broadcom Corporation., 5.5.0.3208]
[C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.688\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.258]

==================================
文件关联
.TXT Error. [C:\WINDOWS\notepad.exe %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM Error. ["hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1 b.nmbrx.com
127.1.1.1 3w.97sesewww.cn
127.1.1.1 1.888888ok.com.cn
127.1.1.1 mck.o0oq.cn
127.1.1.1 msn.com.9d1u.cn
127.1.1.1 www.tt2sf.net
127.1.1.1 wwd.976777.com
127.0.1.1 zsmdo.cn
127.1.1.1 www.114baines.com
127.1.1.1 0.9d3f.cn
127.1.1.1 mck.o0oq.cn
127.1.1.1 bmw8x.cn
127.1.1.1 demo.jikesoft.cn
127.1.1.1 ya.com.9d1u.cn
127.1.1.1 126.123fga.cn
127.1.1.1 txt119.kmip.net
127.1.1.1 n1xln1l1nx.3322.org
127.1.1.1 down.my227.com
127.1.1.1 www.ok182.com
127.1.1.1 nhy7ubgv.114anhui.com
127.1.1.1 ok3.114graph.com
127.1.1.1 www.114Baines.com
127.1.1.1 x.qingsewuyuet.cn
127.1.1.1 g6tt4.114anhui.com
127.1.1.1 nhy7ubgv.114anhui.com
127.1.1.1 w8.lao998.com
127.1.1.1 wwd.243542.com
127.1.1.1 ak.114anhui.com
127.1.1.1 a6tt4.114anhui.com
127.1.1.1 tj.3800down.com
127.1.1.1 www.114Baines.com
127.1.1.1 www.dy2004.com
127.1.1.1 dxz.974671.com
127.1.1.1 xb520dx.kmip.net
98.126.44.146 minigame.qq.com
98.126.44.146 adsview.qq.com
98.126.44.146 adsfile.qq.com
98.126.44.146 adsclick.qq.com
98.126.44.146 music.qq.com
98.126.44.146 show.qq.com
98.126.44.146 minix.soso.com

==================================
进程特权扫描
特殊特权被允许： SeLoadDriverPrivilege [PID = 920, C:\WINDOWS\SYSTEM32\WINLOGON.EXE]
特殊特权被允许： SeDebugPrivilege [PID = 796, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 796, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1704, C:\WINDOWS\SYSTEM32\GP_CLT.EXE]
特殊特权被允许： SeDebugPrivilege [PID = 2828, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2828, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXE]
特殊特权被允许： SeDebugPrivilege [PID = 2136, C:\PROGRAM FILES\WINRAR\WINRAR.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2136, C:\PROGRAM FILES\WINRAR\WINRAR.EXE]
特殊特权被允许： SeDebugPrivilege [PID = 2480, C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\RAR$EX00.688\SRENGLDR.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2480, C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\RAR$EX00.688\SRENGLDR.EXE]

==================================
计划任务
[已启用] SystemTime.job
C:\WINDOWS\task32.bat
[已启用] SogouImeMgr.job
C:\PROGRA~1\SOGOUI~1\430~1.331\PinyinRepair.exe
[已启用] OGALogon.job
C:\WINDOWS\system32\OGAVerify.exe
[已启用] OGADaily.job
C:\WINDOWS\system32\OGAVerify.exe
[已启用] MP Scheduled Scan.job
C:\Program Files\Microsoft Security Essentials\MpCmdRun.exe
[已启用] User_Feed_Synchronization-{8E7DC817-693B-49B7-8910-4B06040E7FF5}.job
C:\WINDOWS\system32\msfeedssync.exe

==================================
Windows 安全更新检查
Microsoft .NET Framework 版本 1.1，简体中文版
KB829019, Microsoft .NET Framework 2.0 语言包：x86 (KB829019)
KB925850, Windows Media Player 11
KB940157, 用于 Windows XP 的 Windows 搜索 4.0 (KB940157)
KB902344, 启用了 WMDRM 的 Media Player 更新程序 (KB902344)
KB928416, Microsoft .NET Framework 3.0： x86 语言包 (KB928416)
KB926140, 用于 Windows XP 的 Windows PowerShell 1.0 (KB926140)
KB905474, Windows Genuine Advantage 通知 (KB905474)
KB909520, Microsoft 基本智能卡加密服务提供程序包： x86 (KB909520)
KB951847, Microsoft .NET Framework 3.5 Service Pack 1 (KB951847) x86 语言包
KB974331, Microsoft Silverlight (KB974331)
KB974331, Windows Live 软件包
KB971513, Windows XP 更新程序 (KB971513)
KB973687, Windows XP 更新程序 (KB973687)
KB976098, Windows XP 更新程序 (KB976098)
KB931125, 根证书更新 [2009 年 11 月] (KB931125)
KB970430, Windows XP 更新程序 (KB970430)
KB971737, Windows XP 更新程序 (KB971737)
KB955759, Windows XP 更新程序 (KB955759)
KB973904, Windows XP 安全更新程序 (KB973904) MS09-073
KB976882, Outlook 2003 垃圾邮件筛选器更新 (KB976882)
KB978551, Update for Microsoft Office 2003 (KB978551)

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================

[/CODE]

瑞星卡卡安全论坛