瑞星卡卡安全论坛

首页 » 技术交流区 » 系统软件 » 应用程序无法启动 0*c0000022 仅针对360安全卫士和金山卫士...
风之雪 - 2010-9-24 10:44:00
应用程序无法启动 0*c0000022,只仅针对360安全卫士和金山卫士,很奇怪很奇怪,并且在安全模式下完全没有问题,难道出现在驱动问题上???

系统:Windows 7旗舰版,全部补丁都打了....还打了一个Fix296917..让安全模式拦截标准用户的...


其他的应该没什么....


帮帮忙吧,如果需要系统扫描日志...等我下午回来扫一下...

Chrome无法上传附件...懒得换遨游了= =直接上

2010-09-24,14:26:48

System Repair Engineer 2.8.2.1321
Smallfrogs (http://www.KZTechs.com)

Windows 7 Ultimate Edition  (Build 7600) - 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件
    进程特权扫描
    计划任务
    Windows 安全更新检查
    API HOOK
    隐藏进程


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <RISTray><"F:\Program Files\Rising\RIS\RsTray.exe" -system>  [(Verified)Beijing Rising Information Technology Corporation Limited]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <SafetyBox><"F:\Program Files\Rising\RFB\SafetyBox.exe" -tray>  [(Verified)Beijing Rising Information Technology Corporation Limited]
    <Google Pinyin 2 Autoupdater><"F:\Program Files\Google\Google Pinyin 2\GooglePinyinDaemon.exe">  [(Verified)Google Inc]
    <TkBellExe><"F:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [(Verified)RealNetworks, Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows]
    <Userinit><F:\Windows\system32\userinit.exe,>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <WebCheck><>  [N/A]
    <WPDShServiceObj><%SystemRoot%\system32\wpdshserviceobj.dll>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{E31004D1-A431-41B8-826F-E902F9D95C81}><%SystemRoot%\System32\DreamScene.dll>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><%SystemRoot%\system32\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><F:\Windows\System32\ie4uinit.exe -UserIconConfig>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
    <Browser Customizations><"F:\Windows\System32\rundll32.exe" "F:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Windows><"%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Web Platform Customizations><F:\Windows\System32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><F:\Windows\system32\Rundll32.exe F:\Windows\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation]

==================================
启动文件夹
[SaveCan]
  <F:\Users\风之雪\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SaveCan.lnk --> D:\PROGRA~1\SaveCan\SaveCan.exe [省省看 节能环保软件]><N>
[SaveCan]
  <F:\Users\风之雪\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SaveCan.lnk --> D:\PROGRA~1\SaveCan\SaveCan.exe [省省看 节能环保软件]><N>

==================================
服务
[Ati External Event Utility / Ati External Event Utility][Stopped/Manual Start]
  <F:\Windows\system32\Ati2evxx.exe><ATI Technologies Inc.>
[IS360service / IS360service][Stopped/Manual Start]
  <F:\Program Files\IObit\IObit Security 360\IS360srv.exe><IObit>
[Kingsoft Rescue Service / Kingsoft Rescue Service][Stopped/Manual Start]
  <F:\Program Files\kingsoft\KSM\ksmsvc.exe><>
[KSafe service / KSafeSvc][Stopped/Manual Start]
  <"F:\Program Files\KSafe\KSafeSvc.exe" -svc><Kingsoft Corporation.>
[Machine Debug Manager / MDM][Stopped/Manual Start]
  <"F:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"><Microsoft Corporation>
[Data SafeConfig Moudle / mwgs][Stopped/Auto Start]
  <><(File is missing)>
[QQPCMgr RTP Service / QQPCRTP][Stopped/Manual Start]
  <D:\Program Files\Tencent\QQPCMgr\QQPCRTP.exe -r><Tencent>
[RKrnl / RKrnl][Stopped/Manual Start]
  <"F:\Program Files\ARaymor\ARaymor\BHO_Service\RKrnl.exe" -n RKrnl -f  AKrnlComMgr2.dll><Antiy Labs>
[Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start]
  <"F:\Program Files\WinPcap\rpcapd.exe" -d -f "F:\Program Files\WinPcap\rpcapd.ini"><CACE Technologies, Inc.>
[Rsd Service / RsMgrSvc][Running/Auto Start]
  <"F:\Program Files\Rising\RSD\RsMgrSvc.exe"><Beijing Rising Information Technology Co., Ltd.>
[RIS Service / RsRISMon][Running/Auto Start]
  <"F:\Program Files\Rising\RIS\RavMonD.exe"><Beijing Rising Information Technology Co., Ltd.>
[SafetyBox Service / RsSafetyBoxMon][Running/Auto Start]
  <"F:\Program Files\Rising\RFB\rssmond.exe"><Beijing Rising Information Technology Co., Ltd.>
[Tencent Software Update Service / TSUSVC][Stopped/Manual Start]
  <"D:\Program Files\Tencent\QQSoftMgr\1.0.375.203\TencentUpdateSvc.exe" -run><Tencent>

==================================
驱动程序
[360SelfProtection / 360SelfProtection][Running/System Start]
  <system32\drivers\360SelfProtection.sys><360安全中心>
[9158cap, WDM Video Capture / 9158CAP][Running/Auto Start]
  <system32\DRIVERS\9158cap.sys><www.9158.com>
[adp94xx / adp94xx][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\adp94xx.sys><Adaptec, Inc.>
[adpahci / adpahci][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\adpahci.sys><Adaptec, Inc.>
[adpu320 / adpu320][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\adpu320.sys><Adaptec, Inc.>
[aic78xx / aic78xx][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\djsvs.sys><Adaptec, Inc.>
[aliide / aliide][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\aliide.sys><Acer Laboratories Inc.>
[amdsata / amdsata][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\amdsata.sys><Advanced Micro Devices>
[amdsbs / amdsbs][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\amdsbs.sys><AMD Technologies Inc.>
[amdxata / amdxata][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\amdxata.sys><Advanced Micro Devices>
[arc / arc][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\arc.sys><Adaptec, Inc.>
[arcsas / arcsas][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\arcsas.sys><Adaptec, Inc.>
[atikmdag / atikmdag][Running/Manual Start]
  <system32\DRIVERS\atikmdag.sys><ATI Technologies Inc.>
[Broadcom NetXtreme II VBD / b06bdrv][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\bxvbdx.sys><Broadcom Corporation>
[Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 / b57nd60x][Stopped/Manual Start]
  <system32\DRIVERS\b57nd60x.sys><Broadcom Corporation>
[BAPIDRV / BAPIDRV][Running/System Start]
  <\??\F:\Windows\system32\drivers\BAPIDRV.SYS><360.cn>
[BC / BC][Running/Boot Start]
  <\SystemRoot\system32\Drivers\BC.sys><Kingsoft Corporation>
[Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\BrFiltLo.sys><Brother Industries, Ltd.>
[Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\BrFiltUp.sys><Brother Industries, Ltd.>
[Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\Brserid.sys><Brother Industries Ltd.>
[Brother WDM Serial driver / BrSerWdm][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\BrSerWdm.sys><Brother Industries Ltd.>
[Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\BrUsbMdm.sys><Brother Industries Ltd.>
[Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\BrUsbSer.sys><Brother Industries Ltd.>
[cmdide / cmdide][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\cmdide.sys><CMD Technology, Inc.>
[ComputerZ / ComputerZ][Stopped/Manual Start]
  <\??\F:\Program Files\LuDaShi\ComputerZ.sys><鲁大师>
[Broadcom NetXtreme II 10 GigE VBD / ebdrv][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\evbdx.sys><Broadcom Corporation>
[EfiSystemMon / EfiMon][Running/System Start]
  <System32\Drivers\Efimon.sys><奇虎网>
[elxstor / elxstor][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\elxstor.sys><Emulex>
[Hauppauge Consumer Infrared Receiver / hcw85cir][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\hcw85cir.sys><Hauppauge Computer Works, Inc.>
[HookPort / HookPort][Running/Boot Start]
  <\SystemRoot\System32\Drivers\Hookport.sys><360安全中心>
[hooksys / hooksys][Running/System Start]
  <\??\F:\Windows\system32\drivers\Hooksys.sys><Beijing Rising Information Technology Co., Ltd.>
[HookTdi / HookTdi][Running/System Start]
  <\??\F:\Windows\system32\drivers\HookTdi.sys><Beijing Rising Information Technology Co., Ltd.>
[HpSAMD / HpSAMD][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\HpSAMD.sys><Hewlett-Packard Company>
[HyperVM / HyperVM][Running/System Start]
  <\??\F:\Windows\system32\drivers\hvm.sys><Beijing Rising Information Technology Co., Ltd.>
[iaStorV / iaStorV][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\iaStorV.sys><Intel Corporation>
[iirsp / iirsp][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\iirsp.sys><Intel Corp./ICP vortex GmbH>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Stopped/Manual Start]
  <system32\drivers\RTKVHDA.sys><N/A>
[krpr / krpr][Stopped/Manual Start]
  <\??\E:\Downloads\软件\安全\工具\krpr.sys><Kingsoft Corporation>
[LSI_FC / LSI_FC][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_fc.sys><LSI Corporation>
[LSI_SAS / LSI_SAS][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_sas.sys><LSI Corporation>
[LSI_SAS2 / LSI_SAS2][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_sas2.sys><LSI Corporation>
[LSI_SCSI / LSI_SCSI][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_scsi.sys><LSI Corporation>
[megasas / megasas][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\megasas.sys><LSI Corporation>
[MegaSR / MegaSR][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\MegaSR.sys><LSI Corporation, Inc.>
[nfrd960 / nfrd960][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\nfrd960.sys><IBM Corporation>
[NetGroup Packet Filter Driver / NPF][Stopped/Manual Start]
  <system32\drivers\npf.sys><CACE Technologies, Inc.>
[nvraid / nvraid][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\nvraid.sys><NVIDIA Corporation>
[nvstor / nvstor][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\nvstor.sys><NVIDIA Corporation>
[OSCI_DRVNT / OSCI_DRVNT][Running/Manual Start]
  <\??\D:\Program Files\SaveCan\savecan32.sys><N/A>
[ql2300 / ql2300][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\ql2300.sys><QLogic Corporation>
[ql40xx / ql40xx][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\ql40xx.sys><QLogic Corporation>
[Quantum DeepScanner Servers / quxxxserv][Running/System Start]
  <\??\F:\Windows\system32\drivers\quxxxrv.sys><360安全中心>
[qutmipc / qutmipc][Running/System Start]
  <\??\F:\Windows\system32\drivers\qutmipc.sys><360安全中心>
[REGMON / REGMON][Stopped/Manual Start]
  <\??\F:\Windows\system32\drivers\REGSYS.SYS><N/A>
[Rising RfwARP Driver / RFWARP][Running/Auto Start]
  <system32\DRIVERS\rfwarp.sys><Beijing Rising Information Technology Co., Ltd.>
[Rising RfwNdis Driver / RFWNDIS][Running/System Start]
  <system32\DRIVERS\rfwndis.sys><Beijing Rising Information Technology Co., Ltd.>
[rfwtdi / rfwtdi][Running/Auto Start]
  <\??\F:\Program Files\Rising\RIS\rfwtdi.sys><Beijing Rising Information Technology Co., Ltd.>
[rsfwdrv / rsfwdrv][Running/Auto Start]
  <\??\F:\Program Files\Rising\RIS\rsfwdrv.sys><Beijing Rising Information Technology Co., Ltd.>
[RsProtect5 Service / RsProtect5][Running/System Start]
  <\??\F:\Windows\system32\Drivers\RSPROTECT.sys><Beijing Rising Information Technology Co., Ltd.>
[SiSRaid2 / SiSRaid2][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\SiSRaid2.sys><Silicon Integrated Systems Corp.>
[SiSRaid4 / SiSRaid4][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\sisraid4.sys><Silicon Integrated Systems>
[SogouNetopt / SogouNetopt][Running/Auto Start]
  <\??\D:\Program Files\SogouExplorer\sogounetopt.sys><Sogou.com>
[sptd / sptd][Running/Boot Start]
  <\SystemRoot\System32\Drivers\sptd.sys><N/A>
[stexstor / stexstor][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\stexstor.sys><Promise Technology>
[TCSafeBox / TCSafeBox][Running/System Start]
  <\??\D:\Program Files\Tencent\QQPCMgr\TCSafeBox.sys><TENCENT>
[TSKSP / TSKSP][Running/System Start]
  <\??\D:\Program Files\Tencent\QQPCMgr\TSKSP.sys><Tencent>
[viaide / viaide][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\viaide.sys><VIA Technologies, Inc.>
[VMware Virtual Ethernet Adapter Driver / VMnetAdapter][Stopped/Manual Start]
  <system32\DRIVERS\vmnetadapter.sys><N/A>
[vsmraid / vsmraid][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\vsmraid.sys><VIA Technologies Inc.,Ltd>
[WMDrive / WMDrive][Running/System Start]
  <\??\F:\Windows\system32\drivers\WMDrive.sys><WinMount International Inc>
[NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller / yukonw7][Running/Manual Start]
  <system32\DRIVERS\yk62x86.sys><Marvell>

==================================
浏览器加载项
[QQCycloneHelper Class]
  {00000000-12C9-4305-82F9-43058F20E8D2} <D:\PROGRA~1\Tencent\QQDOWN~1\QQIEHE~1.DLL, (Signed) Tencent Technology (Shenzhen) Company Limited>
[迅雷流媒体探测IE支持]
  {01443AEC-0FD1-40fd-9C87-E93D1494C233} <, >
[IE2EMBHO Class]
  {0A0DDBD3-6641-40B9-873F-BBDD26D6C14E} <D:\Program Files\easyMule2\modules\IE2EM.dll, (Signed) VeryCD.com>
[Adobe PDF Link Helper]
  {18DF081C-E8AD-4283-A596-FA578C2EBDC3} <F:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated>
[迅雷网页图片浏览器IE支持]
  {2D90D33C-DE76-42D0-9040-E4466DDC24AC} <, >
[WebDetectorBHO Class]
  {43BEAFD9-E005-483D-A367-146BA6C8A32E} <D:\Program Files\Tudou\飞速Tudou\tudouDetector.dll, (Signed) 土豆网>
[锐甲防挂马IE安全插件]
  {53BEAA3C-A509-49AD-ACC3-553AD20DA38B} <F:\Program Files\ARaymor\ARaymor\BHO_Service\BHO\ABHODll.dll, (Signed) Antiy Labs>
[CTSWebSiteMon Class]
  {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} <D:\Program Files\Tencent\QQPCMgr\TSWebMon.dat, (Signed) Tencent>
[迅雷下载支持]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <D:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.1.0.1932.dll, (Signed) 深圳市迅雷网络技术有限公司>
[卡卡上网安全助手]
  {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} <F:\Windows\system32\UrlFilter.dll, (Signed) Beijing Rising Information Technology Co., Ltd.>
[Download_Bho Class]
  {A986E409-30CC-4185-89BB-AB212C104524} <D:\Program Files\PPLive\PPVA\DownloaderManager.dll, (Signed) PPLive Corporation>
[FlashGetBHO]
  {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} <F:\Users\风之雪\AppData\Roaming\FlashGetBHO\FlashGetBHO3.dll, (Signed) Trend Media Group>
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435b-BC74-9C25C1C588A9} <D:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Oracle>
[查看网页全部图片]
  {548BF84E-9665-47f9-B635-7380F8943E90} <, >
[运行 稞麦综合视频下载(xmlbar)]
  {612F6E5C-B314-4bab-93D1-D266AAFBE700} <D:\Program Files\Xmlbar\FLV Downloader\FLVDownloader(xmlbar).exe, Xmlbar.com, Inc.>
[信息检索(&R)]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <D:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL, (Signed) Microsoft Corporation>
[显示稞麦(Xmlbar)工具条]
  {6B896ADB-4A82-46e2-858C-13134782CE34} <D:\Program Files\Xmlbar\FLV Downloader\IEBar\xbietb.dll, Xmlbar.com>
[金山快译(&K)]
  {6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} <D:\Program Files\Kingsoft\FASTAIT PERSONAL\addins\IEBand.dll, (Signed) Copyright (c) Kingsoft Corporation Limited. All rights reserved.>
[瑞星卡卡工具条(&R)]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <F:\Windows\system32\KakaTool.dll, (Signed) Beijing Rising Information Technology Co., Ltd.>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <F:\Windows\system32\aliedit\aliedit.dll, (Signed) >
[Java Plug-in 1.6.0_21]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <D:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[upDateCtrol Class]
  {8EB36110-1BD8-4E63-85B3-1B88355162C2} <F:\Windows\system32\downLoadCtrl.dll, (Signed) CRYSTALCG>
[Java Plug-in 1.6.0_21]
  {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} <D:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[Java Plug-in 1.6.0_21]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <D:\Program Files\Java\jre6\bin\npjpi160_21.dll, (Signed) Oracle>
[QQCycloneHelper Class]
  {00000000-12C9-4305-82F9-43058F20E8D2} <D:\PROGRA~1\Tencent\QQDOWN~1\QQIEHE~1.DLL, (Signed) Tencent Technology (Shenzhen) Company Limited>
[迅雷流媒体探测IE支持]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233} <, >
[IE2EMBHO Class]
  {0A0DDBD3-6641-40B9-873F-BBDD26D6C14E} <D:\Program Files\easyMule2\modules\IE2EM.dll, (Signed) VeryCD.com>
[FG3DownMgr]
  {10245650-5917-4FF8-BED6-ABB91DD73E47} <F:\Users\风之雪\AppData\Roaming\FlashGetBHO\FlashGetHook.dll, (Signed) Trend Media Group>
[IFlashGetNetscapeEx Class]
  {116BA71C-8187-4F15-9A1F-C9D6289155D1} <F:\Users\风之雪\AppData\Roaming\FlashGetBHO\FlashGetHook.dll, (Signed) Trend Media Group>
[Player Class]
  {11F2A418-94B2-4e16-9B0C-B00C0435F903} <D:\Program Files\Lypptv\weilun\QQLive\LiveMedia.dll, (Signed) Tencent Technology(Shenzhen) Company Limited>
[KuGoo3Down Control]
  {162AF25B-5A2A-448E-A842-194653EF3E05} <F:\Windows\System32\KuGoo3DownXControl.ocx, (Signed) N/A>
[Adobe PDF Link Helper]
  {18DF081C-E8AD-4283-A596-FA578C2EBDC3} <F:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated>
[InstallHelper Class]
  {1DABF8D5-8430-4985-9B7F-A30E53D709B3} <F:\Windows\system32\MMInstaller.dll, (Signed) Tencent>
[CDetect Object]
  {23F67C64-0B79-4AE3-9FC9-4289F8A03C6B} <D:\Program Files\baidu\Baidu Hi\WebDetect3.dll, (Signed) Baidu.com, Inc.>
[XML DOM Document]
  {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[JetCarNetscape Class]
  {2974c985-8151-4de5-b23c-b875f0a8522f} <F:\Users\风之雪\AppData\Roaming\FlashGetBHO\FlashGetHook.dll, (Signed) Trend Media Group>
[迅雷网页图片浏览器IE支持]
  {2D90D33C-DE76-42D0-9040-E4466DDC24AC} <, >
[Zyzzyva]
  {30FA9641-9CFE-4D71-A3AA-DF8B6FA02FCC} <, >
[]
  {4045D313-1D5E-4FE4-93A0-A34630B6A00B} <, >
[WebDetectorBHO Class]
  {43BEAFD9-E005-483D-A367-146BA6C8A32E} <D:\Program Files\Tudou\飞速Tudou\tudouDetector.dll, (Signed) 土豆网>
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <D:\Program Files\Thunder Network\Thunder\BHO\ThunderAgent7.1.0.1932.dll, (Signed) 深圳市迅雷网络技术有限公司>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <F:\Windows\system32\aliedit\aliedit.dll, (Signed) >
[SkyDrive.Plugin.1]
  {4990272A-0655-4D80-90A7-C18D0FF7A4A9} <D:\Program Files\NamiRobot\Plugins\SkyDrive2.dll, >
[QQPYChecker Class]
  {5052B4D0-9DF7-45ef-88EF-F42C0EA33A43} <D:\Program Files\Tencent\QQPinyin\3.4.922.400\QQImeChecker.dll, (Signed) Tencent>
[锐甲防挂马IE安全插件]
  {53BEAA3C-A509-49AD-ACC3-553AD20DA38B} <F:\Program Files\ARaymor\ARaymor\BHO_Service\BHO\ABHODll.dll, (Signed) Antiy Labs>
[]
  {548BF84E-9665-47F9-B635-7380F8943E90} <, >
[]
  {612F6E5C-B314-4BAB-93D1-D266AAFBE700} <, >
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[]
  {6C1C7AF0-0DC2-4770-9B27-517416A85F3B} <, >
[Access UserInfo by Script]
  {6EE9CD3E-A386-4DAE-9737-A759DBF927AE} <, >
[]
  {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} <, >
[MediaComm Class]
  {7670648D-461B-42AF-BDFE-46D26AF5EFF2} <, >
[CTSWebSiteMon Class]
  {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} <D:\Program Files\Tencent\QQPCMgr\TSWebMon.dat, (Signed) Tencent>
[XunleiBHO Class]
  {802F530B-A8F6-4631-AE49-6BACAAC6373E} <D:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.1.0.1932.dll, (Signed) 深圳市迅雷网络技术有限公司>
[]
  {87515F61-A66C-4319-A0E0-D416CB8059E3} <, >
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <F:\Windows\System32\ieframe.dll, (Signed) Microsoft Corporation>
[迅雷下载支持]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <D:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.1.0.1932.dll, (Signed) 深圳市迅雷网络技术有限公司>
[upDateCtrol Class]
  {8EB36110-1BD8-4E63-85B3-1B88355162C2} <F:\Windows\system32\downLoadCtrl.dll, (Signed) CRYSTALCG>
[]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <, >
[]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[]
  {95B3F550-91C4-4627-BCC4-521288C52978} <, >
[]
  {95B3F550-91C4-4627-BCC4-521288C52979} <, >
[OFrameObject Class]
  {9701758C-4373-482E-B13C-776C048EC890} <F:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.5927.310.(695).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[卡卡上网安全助手]
  {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} <F:\Windows\system32\UrlFilter.dll, (Signed) Beijing Rising Information Technology Co., Ltd.>
[VersionDetector Class]
  {9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9B} <F:\Program Files\Common Files\Thunder Network\KanKan\vd.1.1.0.32.(695).dll, (Signed) ShenZhen Thunder Networking Technologies,Ltd.>
[APlayer Control]
  {A9322148-C691-4B9D-91FC-B9C461DBE9DD} <F:\Program Files\Common Files\Thunder Network\APlayer\APlayer_001.dll, (Signed) ShenZhen Thunder Networking Technologies, LTD>
[Download_Bho Class]
  {A986E409-30CC-4185-89BB-AB212C104524} <D:\Program Files\PPLive\PPVA\DownloaderManager.dll, (Signed) PPLive Corporation>
[DapCtrl Class]
  {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <F:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.5927.310.(695).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[FlashGetBHO]
  {B070D3E3-FEC0-47D9-8E8A-99D4EEB3D3B0} <F:\Users\风之雪\AppData\Roaming\FlashGetBHO\FlashGetBHO3.dll, (Signed) Trend Media Group>
[]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <, >
[]
  {C74E94A7-B7BD-4891-9328-455395BCC7AD} <, >
[iTudouAgent.CompCls]
  {CF223950-14DC-4A1D-AEDB-47C356A8B993} <D:\PROGRA~1\Tudou\iTudou\ITUDOU~1.DLL, (Signed) 土豆网>
[Microsoft Url Search Hook]
  {CFBFAE00-17A6-11D0-99CB-00C04FD64497} <F:\Windows\System32\ieframe.dll, (Signed) Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <F:\Windows\system32\Macromed\Flash\Flash10i.ocx, (Signed) Adobe Systems, Inc.>
[QQLive Class]
  {D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62} <D:\Program Files\Lypptv\weilun\QQLive\LiveAPI.dll, (Signed) Tencent Technology(Shenzhen) Company Limited>
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435B-BC74-9C25C1C588A9} <D:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Oracle>
[Microsoft Silverlight]
  {DFEAF541-F3E1-4C24-ACAC-99C30715084A} <f:\Program Files\Microsoft Silverlight\4.0.50826.0\npctrl.dll, (Signed)  Microsoft Corporation>
[PlayerCtrl Class]
  {E05BC2A3-9A46-4a32-80C9-023A473F5B23} <D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQMusic\bin\QQMusic\QzoneMusic.dll, (Signed) Tencent>
[SSOForPTLogin2 Class]
  {EAAED308-7322-4B9B-965E-171933ADD473} <F:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOAxCtrlForPTLogin.dll, (Signed) >
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[PPLive Lite Class]
  {EF0D1A14-1033-41A2-A589-240C01EDC078} <F:\Program Files\Internet Explorer\PPLite\plugin\pplugin2.dll, (Signed) >
[Windows Activation Technologies ActiveX Control]
  {F1CA3CE9-57E0-4862-B35F-C55328F05F1C} <%SystemRoot%\system32\Wat\Watweb.dll, (Signed) N/A>
[XPPlayer Class]
  {F3E70CEA-956E-49CC-B444-73AFE593AD7F} <F:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.1.59150.261.(565).dll, (Signed) 深圳市迅雷网络技术有限公司>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[SEInterface Class]
  {FDAEAB93-6DC0-4A63-81C6-95C88ED36F6A} <D:\Program Files\SogouExplorer\seapi.dll, (Signed) Sohu.com Inc.>
[&U使用米人下载并收藏]
  <D:\Program Files\NamiRobot\Data\du.html, N/A>
[&使用QQ旋风下载]
  <D:\Program Files\Tencent\QQDownload\geturl.htm, N/A>
[&使用QQ旋风下载全部链接]
  <D:\Program Files\Tencent\QQDownload\getAllurl.htm, N/A>
[&使用QQ旋风离线下载]
  <D:\Program Files\Tencent\QQDownload\xfofflinedown.htm, N/A>
[&使用优蛋下载]
  <D:\Program Files\115\UDown\getUrl.htm, N/A>
[&使用优蛋下载全部链接]
  <D:\Program Files\115\UDown\getAllUrl.htm, N/A>
[使用华之城小说下载]
  <F:\Windows\system32\getflbookurl.htm, N/A>
[使用快车3下载]
  <F:\Users\风之雪\AppData\Roaming\FlashGetBHO\GetUrl.htm, N/A>
[使用快车3下载全部视频]
  <F:\Users\风之雪\AppData\Roaming\FlashGetBHO\GetAllFlvUrl.htm, N/A>
[使用快车3下载全部链接]
  <F:\Users\风之雪\AppData\Roaming\FlashGetBHO\GetAllUrl.htm, N/A>
[使用快车3下载当前视频]
  <F:\Users\风之雪\AppData\Roaming\FlashGetBHO\GetFlvUrl.htm, N/A>
[使用电驴下载]
  <D:\Program Files\easyMule2\IE2EM.htm, N/A>
[使用迅雷下载]
  <D:\Program Files\Thunder Network\Thunder\BHO\geturl.htm, N/A>
[使用迅雷下载全部链接]
  <D:\Program Files\Thunder Network\Thunder\BHO\GetAllUrl.htm, N/A>
[使用迅雷查看图片]
  <D:\Program Files\Thunder Network\Thunder\Program\repairimage.htm, N/A>
[导出到 Microsoft Excel(&X)]
  <res://D:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000, N/A>
[添加到 QQ表情宝盒]
  <D:\Program Files\QQ表情宝盒\AddEmotion.htm, N/A>
[稞麦&Xmlbar搜索]
  <http://www.xmlbar.com/iebar/iemenu.php?lang=Chinese Simplified&ver=1.0, N/A>
[通过网易闪电邮发送]
  <D:\Program Files\Netease\网易闪电邮\data\getcontent.htm, N/A>

==================================
正在运行的进程
[PID: 276 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 384 / SYSTEM][F:\Windows\system32\csrss.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 448 / SYSTEM][F:\Windows\system32\csrss.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 456 / SYSTEM][F:\Windows\system32\wininit.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 496 / SYSTEM][F:\Windows\system32\services.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [D:\Program Files\AdGame\aodunlsp.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll]  [Tencent, 2010, 5, 14, 41]
[PID: 536 / SYSTEM][F:\Windows\system32\lsass.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 544 / SYSTEM][F:\Windows\system32\lsm.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 552 / SYSTEM][F:\Windows\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 6.1.7600.20574 (win7_ldr.091112-1604)]
[PID: 680 / SYSTEM][F:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 748 / NETWORK SERVICE][F:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 816 / SYSTEM][F:\Program Files\Rising\RSD\RsMgrSvc.exe]  [Beijing Rising Information Technology Co., Ltd., 1.0.0.12]
    [F:\Program Files\Rising\RSD\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
    [F:\Program Files\Rising\RSD\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[PID: 852 / SYSTEM][F:\Program Files\Rising\RIS\RavMonD.exe]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 8]
    [F:\Program Files\Rising\RIS\combase.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 11]
    [F:\Program Files\Rising\RIS\rsconf.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
    [F:\Program Files\Rising\RIS\scansrvp.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.12]
    [F:\Program Files\Rising\RIS\cnt09.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
    [F:\Program Files\Rising\RIS\moncomm.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.3]
    [F:\Program Files\Rising\RIS\MonBase.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
    [F:\Program Files\Rising\RIS\Rslog.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.19]
    [F:\Program Files\Rising\RIS\RsStore.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 11]
    [F:\Program Files\Rising\RIS\mondrvd.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 11]
    [F:\Program Files\Rising\RIS\defmon.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 53]
    [F:\Program Files\Rising\RIS\moncom08.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.2]
    [F:\Program Files\Rising\RIS\taskplug.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.2]
    [F:\Program Files\Rising\RIS\mondrvm.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 8]
    [F:\Program Files\Rising\RIS\MonRule.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 31]
    [F:\Program Files\Rising\RIS\FileMon.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 32]
    [F:\Program Files\Rising\RIS\MailMon.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 54]
    [F:\Program Files\Rising\RIS\rfwlog.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.6]
    [F:\Program Files\Rising\RIS\rfwrule.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.1]
    [F:\Windows\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [F:\Windows\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [F:\Program Files\Rising\RIS\rfwsrv.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.57]
    [F:\Program Files\Rising\RIS\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
    [F:\Program Files\Rising\RIS\mPorts.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.0]
    [F:\Program Files\Rising\RIS\rfwdrvc.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.0]
    [F:\Program Files\Rising\RIS\rsnetsvr.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.12]
    [F:\Program Files\Rising\RIS\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
    [F:\Program Files\Rising\RIS\fishweb.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 14]
    [F:\Program Files\Rising\RIS\urlrule.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.2]
    [F:\Program Files\Rising\RIS\recomp.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 10]
    [F:\Program Files\Rising\RIS\refs.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
    [F:\Program Files\Rising\RIS\viruslib.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 2]
    [F:\Program Files\Rising\RIS\relibldr.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
    [F:\Program Files\Rising\RIS\rfwproxy.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 55]
    [D:\Program Files\AdGame\aodunlsp.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll]  [Tencent, 2010, 5, 14, 41]
    [F:\Program Files\Rising\RIS\rslang.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
    [F:\Program Files\Rising\RIS\rsindent.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.98]
    [F:\Program Files\Rising\RIS\cnt08.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
    [F:\Program Files\Rising\RIS\proccomm.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
    [F:\Program Files\Rising\RIS\Hooksys.dll]  [Beijing Rising Information Technology Co., Ltd., 25, 0, 0, 8]
    [F:\Program Files\Rising\RIS\ProcCom.dll]  [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
    [F:\Program Files\Rising\RIS\RsCommX2.dll]  [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
    [F:\Program Files\Rising\RIS\rstask.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 7]
    [F:\Program Files\Rising\RIS\rsstub.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
    [F:\Program Files\Rising\RIS\hookTdi.dll]  [Beijing Rising Information Technology Co., Ltd., 25, 0, 0, 9]
    [F:\Program Files\Rising\RIS\BACore.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 24]
    [F:\Program Files\Rising\RIS\bawhite.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 5]
    [F:\Program Files\Rising\RIS\ScanAdd.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.31]
    [F:\Program Files\Rising\RIS\Scanner.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 65]
    [F:\Program Files\Rising\RIS\Rfwdrv.dll]  [Beijing Rising Information Technology Co., Ltd., 25.0.0.5]
    [F:\Program Files\Rising\RIS\RfwArp.dll]  [Beijing Rising Information Technology Co., Ltd., 25.0.0.1]
    [F:\Program Files\Rising\RIS\ScanSrv.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 17]
    [F:\Program Files\Rising\RIS\scanpe.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 23]
    [F:\Program Files\Rising\RIS\pearc.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 7]
    [F:\Program Files\Rising\RIS\engext.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 4]
    [F:\Program Files\Rising\RIS\vmicore.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 14]
    [F:\Program Files\Rising\RIS\urllib.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
    [F:\Program Files\Rising\RIS\ffr.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 2]
    [F:\Program Files\Rising\RIS\nvfile.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 7]
    [F:\Program Files\Rising\RIS\fwfish.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 4]
    [F:\Program Files\Rising\RIS\scanexec.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 5]
    [F:\Program Files\Rising\RIS\fwfs.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 5]
    [F:\Program Files\Rising\RIS\unexe.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 0]
    [F:\Program Files\Rising\RIS\fwvirlib.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 5]
    [F:\Program Files\Rising\RIS\fwlibldr.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
    [F:\Program Files\Rising\RIS\scanex.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 7]
    [F:\Program Files\Rising\RIS\extarch.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 7]
    [F:\Program Files\Rising\RIS\extcomp.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
    [F:\Program Files\Rising\RIS\scantj.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 9]
    [F:\Program Files\Rising\RIS\extsfx.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 8]
    [F:\Program Files\Rising\RIS\scansct.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
    [F:\Program Files\Rising\RIS\ScanRavT.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.59]
    [F:\Program Files\Rising\RIS\ScanBT.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 89]
    [F:\Program Files\Rising\RIS\ScanStub.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 26]
[PID: 944 / LOCAL SERVICE][F:\Windows\System32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1000 / SYSTEM][F:\Windows\System32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1032 / SYSTEM][F:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [D:\Program Files\AdGame\aodunlsp.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll]  [Tencent, 2010, 5, 14, 41]
[PID: 1152 / LOCAL SERVICE][F:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1308 / NETWORK SERVICE][F:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1504 / LOCAL SERVICE][F:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1592 / NETWORK SERVICE][F:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1768 / SYSTEM][F:\Windows\system32\UI0Detect.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1100 / 风之雪][F:\Windows\system32\Dwm.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1204 / 风之雪][F:\Windows\system32\taskhost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1524 / 风之雪][F:\Windows\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [F:\Users\风之雪\AppData\Roaming\Kingsoft\klive\bin\kliveshellext.dll]  [Kingsoft Corp. Ltd., 1,7,0,386]
    [F:\Program Files\数据银行\DBankExt.dll]  [数据银行工作室, 1.0.5.2]
    [F:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.4053]
    [F:\Program Files\WinMount\WinMTExt.dll]  [WinMount International Inc., 3.3.01.20]
    [F:\Program Files\WinMount\ShlExt\BrowserExt.dll]  [www.winmount.com, 3, 3, 0, 1]
    [F:\Program Files\WinMount\ShlExt\MountExt.dll]  [www.winmount.com, 3, 3, 0, 1]
    [F:\Windows\System32\DreamScene.dll]  [Microsoft Corporation, 6.1.6801.0]
    [F:\Windows\system32\FXSAPI.dll]  [Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 296 / 风之雪][F:\Program Files\Google\Google Pinyin 2\GooglePinyinDaemon.exe]  [Google Inc., 2.3.14.85]
    [D:\Program Files\AdGame\aodunlsp.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll]  [Tencent, 2010, 5, 14, 41]
[PID: 2104 / 风之雪][F:\Program Files\Common Files\Real\Update_OB\realsched.exe]  [RealNetworks, Inc., 0.1.1.1119]
[PID: 2128 / 风之雪][F:\Program Files\Rising\RIS\RsTray.exe]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.6]
    [F:\Program Files\Rising\RIS\comserv.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.13]
    [F:\Program Files\Rising\RIS\rslang.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
    [F:\Program Files\Rising\RIS\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
    [F:\Program Files\Rising\RIS\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
    [F:\Program Files\Rising\RIS\ProcComm.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
    [F:\Program Files\Rising\RIS\rsxml.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.2]
    [F:\Program Files\Rising\RIS\MonState.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
    [F:\Program Files\Rising\RIS\ScanEvnt.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.10]
    [F:\Program Files\Rising\RIS\rsguilib.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.11]
    [F:\Program Files\Rising\RIS\rsconf.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
    [F:\Program Files\Rising\RIS\rfwrule.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.1]
    [F:\Windows\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [F:\Windows\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [F:\Program Files\Rising\RIS\rspalvd.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.7]
    [F:\Program Files\Rising\RIS\rsnetsvr.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.12]
    [F:\Program Files\Rising\RIS\mruleui.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 10]
    [F:\Program Files\Rising\RIS\MonTray.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.67]
    [F:\Program Files\Rising\RIS\rfwtray.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 35]
    [F:\Program Files\Rising\RIS\rsmginfo.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.5]
    [F:\Program Files\Rising\RIS\UsbServ.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
    [F:\Program Files\Rising\RIS\ScanTray.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.48]
    [F:\Program Files\Rising\RIS\PngDll.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
    [D:\Program Files\AdGame\aodunlsp.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll]  [Tencent, 2010, 5, 14, 41]
    [F:\Program Files\Rising\RIS\dfw.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.63]
    [F:\Program Files\Rising\RIS\ScanPrxy.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.30]
    [F:\Program Files\Rising\RIS\GCompt.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.44]
    [F:\Program Files\Rising\RIS\rfwlog.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.6]
    [F:\Program Files\Rising\RIS\RavScrCh.dll]  [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
    [F:\Windows\system32\atiumdag.dll]  [ATI Technologies Inc. , 8.14.10.0647]
    [F:\Windows\system32\atiumdva.dll]  [ATI Technologies Inc. , 7.14.10.0218]
[PID: 2160 / 风之雪][D:\Program Files\SaveCan\SaveCan.exe]  [省省看 节能环保软件, 1, 0, 0, 1]
    [D:\Program Files\SaveCan\Core.dll]  [省省看 节能环保软件, 1, 0, 0, 1]
    [D:\Program Files\SaveCan\Timer.dll]  [省省看 节能环保软件, 1, 0, 0, 1]
    [D:\Program Files\AdGame\aodunlsp.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll]  [Tencent, 2010, 5, 14, 41]
[PID: 2264 / 风之雪][F:\Program Files\Google\Google Pinyin 2\GooglePinyinService.exe]  [N/A, ]
[PID: 2292 / 风之雪][D:\Program Files\RealPlay.exe]  [RealNetworks, Inc., 12.0.0.879]
    [F:\Windows\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [F:\Windows\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [F:\Program Files\Common Files\Real\Update_OB\rnms3270.dll]  [RealNetworks, Inc., 7.0.2.1020]
    [F:\Program Files\Common Files\Real\Common\objb3201.dll]  [RealNetworks, Inc., 0.1.0.6726]
    [F:\Windows\system32\PNCRT.dll]  [Real Networks, Inc, 6.0.0.0]
    [F:\Program Files\Common Files\Real\Update_OB\faus3270.dll]  [RealNetworks, Inc., 7.0.1.1025]
    [F:\Program Files\Common Files\Real\Common\pnrs3260.dll]  [RealNetworks, Inc., 6.0.9.4317]
    [F:\Program Files\Common Files\Real\Update_OB\pnmi3270.dll]  [RealNetworks, Inc., 7.0.1.1077]
    [F:\Program Files\Common Files\Real\Update_OB\rnad3201.dll]  [RealNetworks, Inc., 0.1.1.1119]
    [F:\Program Files\Common Files\Real\Update_OB\rnqu3270.dll]  [RealNetworks, Inc., 7.0.1.1118]
    [F:\Program Files\Common Files\Real\Update_OB\rnup3270.dll]  [RealNetworks, Inc., 7.0.1.772]
    [F:\Program Files\Common Files\Real\Update_OB\rpelevation.dll]  [RealNetworks, Inc., 1.0.1.1012]
    [F:\Program Files\Common Files\Real\Update_OB\setu3270.dll]  [RealNetworks, Inc., 7.0.1.1030]
    [F:\Program Files\Common Files\Real\Update_OB\upgr3270.dll]  [RealNetworks, Inc., 7.0.1.1011]
    [F:\Program Files\Common Files\Real\Plugins\aacff.dll]  [RealNetworks, Inc., 10.0.0.1029]
    [F:\Program Files\Common Files\Real\Plugins\audplin.dll]  [RealNetworks, Inc., 10.0.0.1483]
    [F:\Program Files\Common Files\Real\Plugins\authmgr.dll]  [ , 10.0.1.1067]
    [F:\Program Files\Common Files\Real\Plugins\cdda3260.dll]  [RealNetworks, Inc., 6.0.4.775]
    [F:\Program Files\Common Files\Real\Plugins\clbascauth.dll]  [ , 10.0.1.1068]
    [F:\Program Files\Common Files\Real\Plugins\cont3260.dll]  [RealNetworks, Inc., 6.0.0.2148]
    [F:\Program Files\Common Files\Real\Plugins\fpsechnd.dll]  [RealNetworks, Inc., 6.0.9.32]
    [F:\Program Files\Common Files\Real\Plugins\httpfsys.dll]  [ , 10.0.1.1061]
    [F:\Program Files\Common Files\Real\Plugins\memfsys.dll]  [ , 10.0.1.1061]
    [F:\Program Files\Common Files\Real\Plugins\mp3metaff.dll]  [RealNetworks, Inc., 10.0.0.1219]
    [F:\Program Files\Common Files\Real\Plugins\mp3render.dll]  [RealNetworks, Inc., 10.0.0.1252]
    [F:\Program Files\Common Files\Real\Plugins\mp4arender.dll]  [RealNetworks, Inc., 10.0.0.1055]
    [F:\Program Files\Common Files\Real\Plugins\ntlmauth.dll]  [ , 10.0.1.1069]
    [F:\Program Files\Common Files\Real\Plugins\oggfformat.dll]  [N/A, ]
    [F:\Program Files\Common Files\Real\Plugins\pacplin.dll]  [ , 10.0.1.1068]
    [F:\Program Files\Common Files\Real\Plugins\plusplin.dll]  [ , 10.0.1.1068]
    [F:\Program Files\Common Files\Real\Plugins\pxcb3210.dll]  [RealNetworks, Inc., 1.0.1.772]
    [F:\Program Files\Common Files\Real\Plugins\ramfformat.dll]  [ , 10.0.1.1058]
    [F:\Program Files\Common Files\Real\Plugins\ramrender.dll]  [ , 10.0.1.1063]
    [F:\Program Files\Common Files\Real\Plugins\rarender.dll]  [RealNetworks, Inc., 10.0.0.1260]
    [F:\Program Files\Common Files\Real\Plugins\recf3260.dll]  [RealNetworks, Inc., 6.0.0.3113]
    [F:\Program Files\Common Files\Real\Plugins\rmfformat.dll]  [ , 10.0.1.1064]
    [F:\Program Files\Common Files\Real\Plugins\rmxfpln.dll]  [RealNetworks, Inc., 1.0.3.2527]
    [F:\Program Files\Common Files\Real\Plugins\rmxrend.dll]  [RealNetworks, Inc., 1.0.3.2580]
    [F:\Program Files\Common Files\Real\Plugins\rn5auth.dll]  [ , 10.0.1.1067]
    [F:\Program Files\Common Files\Real\Plugins\rtfformat.dll]  [RealNetworks, Inc., 10.0.0.1457]
    [F:\Program Files\Common Files\Real\Plugins\rtrender.dll]  [RealNetworks, Inc., 10.0.0.1250]
    [F:\Program Files\Common Files\Real\Plugins\sdpplin.dll]  [RealNetworks, Inc., 10.0.0.373]
    [F:\Program Files\Common Files\Real\Plugins\security.dll]  [RealNetworks, Inc., 1.0.3.2518]
    [F:\Program Files\Common Files\Real\Plugins\smmrender.dll]  [ , 10.0.1.1064]
    [F:\Program Files\Common Files\Real\Plugins\smplfsys.dll]  [ , 10.0.1.1513]
    [F:\Program Files\Common Files\Real\Plugins\stubdrm.dll]  [RealNetworks, Inc., 10.0.0.1655]
    [F:\Program Files\Common Files\Real\Plugins\swfformat.dll]  [RealNetworks, Inc., 10.0.0.1460]
    [F:\Program Files\Common Files\Real\Plugins\tfilesys.dll]  [RealNetworks, Inc., 1.0.3.2488]
    [F:\Program Files\Common Files\Real\Plugins\vidplin.dll]  [RealNetworks, Inc., 10.0.0.1269]
    [F:\Program Files\Common Files\Real\Plugins\vidsite.dll]  [ , 10.0.1.1061]
    [F:\Program Files\Common Files\Real\Plugins\vorbisrend.dll]  [N/A, ]
    [F:\Program Files\Common Files\Real\Plugins\vsrcplin.dll]  [ , 10.1.0.142]
    [F:\Program Files\Common Files\Real\Plugins\vsrlocal.dll]  [RealNetworks, Inc., 10.1.0.1180]
    [F:\Program Files\Common Files\Real\Plugins\zipf3260.dll]  [RealNetworks, Inc., 6.0.9.768]
[PID: 2680 / SYSTEM][F:\Windows\system32\SearchIndexer.exe]  [(Verified) Microsoft Corporation, 7.00.7600.16385 (win7_rtm.090713-1255)]
[PID: 2740 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [D:\Program Files\AdGame\aodunlsp.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll]  [Tencent, 2010, 5, 14, 41]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\gears.dll]  [Google Inc., 0.5.33.0]
    [F:\Users\风之雪\AppData\Roaming\Kingsoft\klive\bin\kliveshellext.dll]  [Kingsoft Corp. Ltd., 1,7,0,386]
    [F:\Program Files\WinMount\WinMTExt.dll]  [WinMount International Inc., 3.3.01.20]
    [F:\Program Files\WinMount\ShlExt\BrowserExt.dll]  [www.winmount.com, 3, 3, 0, 1]
    [F:\Program Files\WinMount\ShlExt\MountExt.dll]  [www.winmount.com, 3, 3, 0, 1]
    [F:\Windows\system32\SOGOUPY.IME]  [Sogou.com Inc., 5.1.0.4702]
[PID: 3028 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 3128 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 3160 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 3168 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 3180 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 3192 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 3204 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 3212 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 3224 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 3600 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 3820 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\libegl.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\libGLESv2.dll]  [N/A, ]
    [F:\Windows\system32\atiumdag.dll]  [ATI Technologies Inc. , 8.14.10.0647]
    [F:\Windows\system32\atiumdva.dll]  [ATI Technologies Inc. , 7.14.10.0218]
[PID: 3848 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmbifdmobcbjlhplmlnbjbofnnoolink\1.1_0\xl_chrome.dll]  [ShenZhen Thunder Networking Technologies Ltd., 1, 0, 0, 1]
[PID: 2420 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
[PID: 3276 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\gcswf32.dll]  [, ]
[PID: 3508 / LOCAL SERVICE][F:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 2544 / 风之雪][F:\Users\风之雪\AppData\Local\Google\Chrome\Application\chrome.exe]  [Google Inc., 0.0.0.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\chrome.dll]  [Google Inc., 7.0.529.0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\icudt42.dll]  [IBM Corporation and others, 4, 2, 1, 0]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\pdf.dll]  [, 1, 0, 0, 1]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avcodec-52.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avutil-50.dll]  [N/A, ]
    [F:\Users\风之雪\AppData\Local\Google\Chrome\Application\7.0.529.0\avformat-52.dll]  [N/A, ]
[PID: 1888 / SYSTEM][F:\Windows\servicing\TrustedInstaller.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 340 / 风之雪][F:\Program Files\WinMount\WinMount.exe]  [WinMount International Inc., 3.4.0.1]
    [F:\Program Files\WinMount\Lang.dll]  [www.winmount.com, 3, 0, 0, 1]
    [F:\Program Files\WinMount\Office2007.cjstyles]  [Codejock Software, 12, 1, 1, 0]
    [F:\Program Files\WinMount\FrameExt\Browser.dll]  [www.winmount.com, 3, 0, 0, 1]
    [F:\Program Files\WinMount\FrameExt\FriendSoft.dll]  [N/A, ]
    [F:\Program Files\WinMount\FrameExt\MountPlug.dll]  [www.winmount.com, 3, 1, 0, 1]
    [F:\Program Files\WinMount\WMCore.dll]  [, ]
    [F:\Program Files\WinMount\WMModule.dll]  [, 3, 3, 0, 1]
    [F:\Program Files\WinMount\MouCoreUI.dll]  [www.winmount.com, 3, 1, 0, 1]
    [F:\Users\风之雪\AppData\Roaming\Kingsoft\klive\bin\kliveshellext.dll]  [Kingsoft Corp. Ltd., 1,7,0,386]
    [F:\Program Files\WinMount\WinMTExt.dll]  [WinMount International Inc., 3.3.01.20]
    [D:\Program Files\AdGame\aodunlsp.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll]  [Tencent, 2010, 5, 14, 41]
    [F:\Program Files\WinMount\7z.dll]  [N/A, ]
[PID: 3660 / 风之雪][Z:\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.2.1321]
[PID: 3656 / 风之雪][Z:\SREd4588ce.EXE]  [Smallfrogs Studio, 2.8.2.1321]
    [Z:\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
    [D:\Program Files\AdGame\aodunlsp.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll]  [Tencent, 2010, 5, 14, 41]

==================================
文件关联
.TXT  Error. [F:\Windows\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. ["F:\Windows\hh.exe" %1]
.HLP  Error. [F:\Windows\winhlp32.exe %1]
.INI  Error. [F:\Windows\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  Error. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
AodunLSP over TSFilter [TCP/IP]
    D:\Program Files\AdGame\aodunlsp.dll(, N/A)
AodunLSP over TSFilter [UDP/IP]
    D:\Program Files\AdGame\aodunlsp.dll(, N/A)
AodunLSP over TSFilter [RAW/IP]
    D:\Program Files\AdGame\aodunlsp.dll(, N/A)
TSFilter [TCP/IP]
    D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll(Tencent, Tencent TSFilter)
TSFilter [UDP/IP]
    D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll(Tencent, Tencent TSFilter)
TSFilter [RAW/IP]
    D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll(Tencent, Tencent TSFilter)
TSFilter
    D:\Program Files\Tencent\QQPCMgr\plugins\QMNetMon\TSFilter.dll(Tencent, Tencent TSFilter)
AodunLSP
    D:\Program Files\AdGame\aodunlsp.dll(, N/A)

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
N/A

==================================
进程特权扫描
N/A

==================================
计划任务
[已禁用] \\AWC AutoSweep
        F:\Program Files\IObit\Advanced SystemCare 3\AutoSweep.exe /auto
[已启用] \\AWC Update
        F:\Program Files\IObit\Advanced SystemCare 3\IObitUpdate.exe /schedule
[已启用] \\GlaryInitialize
        F:\Program Files\Glary Utilities\initialize.exe /schedule
[已启用] \\RunAsStdUser Task13546
        F:\Program Files\Rising\RIS\RsConfig.exe /schedule
[已禁用] \\SmartDefrag
        D:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe /Schedule
[已禁用] \\SogouImeMgr
        D:\PROGRA~1\SOGOUI~1\510~1.470\SGTool.exe --appid=pinyinrepair /S
[已禁用] \\{054B88A8-FF30-489E-ABE8-74FED3CE9A77}
        F:\Windows\system32\pcalua.exe -a E:\Downloads\软件\安全\360setup.exe -d E:\Downloads\软件\安全
[已禁用] \\{10349126-D157-4D4E-8F56-91D321A7EB5E}
        F:\Windows\system32\pcalua.exe -a I:\setupx.exe -d I:\
[已禁用] \\{26A95F3D-86D2-451A-B591-744118ACF3ED}
        F:\Windows\system32\pcalua.exe -a E:\Downloads\软件\其他\大鱼吃小鱼_1.2.27.1.exe -d E:\Downloads\软件\其他
[已禁用] \\{68C50055-713D-45E3-905A-9EC84A88DDF6}
        F:\Windows\system32\pcalua.exe -a "D:\Program Files\Nero\Nero 7\Nero\Uninstall\UNNERO.exe" -d "D:\Program Files\Nero\Nero 7\Nero\Uninstall"
[已禁用] \\{7E0192A4-2C0C-4C1E-AF1E-4DD9296DB954}
        F:\Windows\system32\pcalua.exe -a "F:\Program Files\Kingsoft\Kingsoft Internet Security\setupmodechange.exe" -d "F:\Program Files\Kingsoft\Kingsoft Internet Security"
[已禁用] \\{81188932-9729-4240-93BA-7E308B6759B3}
        F:\Windows\system32\pcalua.exe -a E:\Downloads\软件\安全\KPFW090903_DOWN_10_10.exe -d E:\Downloads\软件\安全
[已禁用] \\{AC4E9D5B-286F-44AD-A1A4-F64D196816E7}
        F:\Windows\system32\pcalua.exe -a I:\setup.exe -d I:\
[已禁用] \\{BD5EE270-2F20-44C3-90BD-05C534A1C895}
        F:\Windows\system32\pcalua.exe -a F:\Users\风之雪\Desktop\jzks.exe -d F:\Users\风之雪\Desktop
[已禁用] \\{C52A13E5-2990-4CD6-9746-41F94DA50D35}
        F:\Windows\system32\pcalua.exe -a "D:\Program Files\StormII\Storm.exe" -d "D:\Program Files\StormII"
[已禁用] \\{C77A861B-CAE0-4634-A798-1D7F108C1392}
        F:\Windows\system32\pcalua.exe -a E:\Downloads\软件\安全\KAV100305_DOWN_10_10.exe -d E:\Downloads\软件\安全
[已禁用] \\{DCB28DC5-412B-4FA5-A469-0DFFC8201A10}
        F:\Windows\system32\pcalua.exe -a "F:\Program Files\Kingsoft\Kingsoft Internet Security\kiscrw.exe" -d "F:\Program Files\Kingsoft\Kingsoft Internet Security"
[已禁用] \\{E3010B24-27AF-4794-B4DB-5AB90B7C3704}
        F:\Windows\system32\pcalua.exe -a E:\Downloads\软件\安全\inst.exe -d E:\Downloads\软件\安全
[已禁用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated)
        N/A
[已启用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual)
        N/A
[已禁用] \Microsoft\Windows\AppID\PolicyConverter
        %windir%\system32\appidpolicyconverter.exe
[已禁用] \Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck
        %windir%\system32\appidcertstorecheck.exe
[已启用] \Microsoft\Windows\Application Experience\AitAgent
        aitagent
[已启用] \Microsoft\Windows\Application Experience\ProgramDataUpdater
        %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
[已启用] \Microsoft\Windows\Autochk\Proxy
        %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
[已启用] \Microsoft\Windows\Bluetooth\UninstallDeviceTask
        BthUdTask.exe $(Arg0)
[已启用] \Microsoft\Windows\CertificateServicesClient\SystemTask
        N/A
[已启用] \Microsoft\Windows\CertificateServicesClient\UserTask
        N/A
[已禁用] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam
        N/A
[已启用] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator
        %SystemRoot%\System32\wsqmcons.exe
[已启用] \Microsoft\Windows\Defrag\ScheduledDefrag
        %windir%\system32\defrag.exe -c
[已禁用] \Microsoft\Windows\Location\Notifications
        %windir%\System32\LocationNotifications.exe
[已启用] \Microsoft\Windows\Maintenance\WinSAT
        N/A
[已禁用] \Microsoft\Windows\Media Center\ActivateWindowsSearch
        %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
[已禁用] \Microsoft\Windows\Media Center\ConfigureInternetTimeService
        %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
[已禁用] \Microsoft\Windows\Media Center\DispatchRecoveryTasks
        %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\ehDRMInit
        %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
[已禁用] \Microsoft\Windows\Media Center\InstallPlayReady
        %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
[已启用] \Microsoft\Windows\Media Center\mcupdate
        %SystemRoot%\ehome\mcupdate $(Arg0)
[已启用] \Microsoft\Windows\Media Center\mcupdate_scheduled
        %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
[已禁用] \Microsoft\Windows\Media Center\MediaCenterRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\MediaCenterRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\OCURActivate
        %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
[已禁用] \Microsoft\Windows\Media Center\OCURDiscovery
        %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\PBDADiscovery
        %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PBDADiscoveryW1
        %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PBDADiscoveryW2
        %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PeriodicScanRetry
        %windir%\ehome\MCUpdate.exe -pscn 0
[已禁用] \Microsoft\Windows\Media Center\PvrRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\PvrRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\PvrScheduleTask
        %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
[已禁用] \Microsoft\Windows\Media Center\PvrScheduleTask
        %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
[已禁用] \Microsoft\Windows\Media Center\RecordingRestart
        %SystemRoot%\ehome\ehrec /RestartRecording
[已禁用] \Microsoft\Windows\Media Center\RegisterSearch
        %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\ReindexSearchRoot
        %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
[已禁用] \Microsoft\Windows\Media Center\SqlLiteRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\SqlLiteRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
[已启用] \Microsoft\Windows\Media Center\StartRecording
        %SystemRoot%\ehome\ehrec /StartRecording
[已禁用] \Microsoft\Windows\Media Center\UpdateRecordPath
        %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
[已启用] \Microsoft\Windows\MobilePC\HotStart
        N/A
[已启用] \Microsoft\Windows\MUI\LPRemove
        %windir%\system32\lpremove.exe
[已启用] \Microsoft\Windows\Multimedia\SystemSoundsService
        N/A
[已启用] \Microsoft\Windows\NetTrace\GatherNetworkInfo
        %windir%\system32\gatherNetworkInfo.vbs
[已禁用] \Microsoft\Windows\Offline Files\Background Synchronization
        N/A
[已禁用] \Microsoft\Windows\Offline Files\Logon Synchronization
        N/A
[已启用] \Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
        %SystemRoot%\System32\powercfg.exe -energy -auto
[已启用] \Microsoft\Windows\Ras\MobilityManager
        N/A
[已禁用] \Microsoft\Windows\SideShow\AutoWake
        N/A
[已启用] \Microsoft\Windows\SideShow\GadgetManager
        N/A
[已禁用] \Microsoft\Windows\SideShow\SessionAgent
        N/A
[已禁用] \Microsoft\Windows\SideShow\SystemDataProviders
        N/A
[已启用] \Microsoft\Windows\SystemRestore\SR
        %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict1
        %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict2
        %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
[已启用] \Microsoft\Windows\Time Synchronization\SynchronizeTime
        %windir%\system32\sc.exe start w32time task_started
[已启用] \Microsoft\Windows\UPnP\UPnPHostConfig
        sc.exe config upnphost start= auto
[已禁用] \Microsoft\Windows\User Profile Service\HiveUploadTask
        N/A
[已启用] \Microsoft\Windows\Windows Error Reporting\QueueReporting
        %windir%\system32\wermgr.exe -queuereporting
[已启用] \Microsoft\Windows\Windows Media Sharing\UpdateLibrary
        "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
[已启用] \Microsoft\Windows\WindowsBackup\ConfigNotification
        %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
[已禁用] \Microsoft\Windows\WindowsColorSystem\Calibration Loader
        N/A

==================================
Windows 安全更新检查
KB963678,  Microsoft Office Excel 2007 帮助更新 (KB963678)
KB963677,  Microsoft Office Outlook 2007 帮助更新 (KB963677)
KB963669,  Microsoft Office PowerPoint 2007 帮助更新 (KB963669)
KB963665,  Microsoft Office Word 2007 帮助更新 (KB963665)
KB972813,  西班牙语语言包 - Windows 7 (KB972813)
KB972813,  希腊语语言包 - Windows 7 (KB972813)
KB972813,  立陶宛语语言包 - Windows 7 (KB972813)
KB972813,  阿拉伯语语言包 - Windows 7 (KB972813)
KB972813,  瑞典语语言包 - Windows 7 (KB972813)
KB972813,  德语语言包 - Windows 7 (KB972813)
KB972813,  斯洛伐克语语言包 - Windows 7 (KB972813)
KB972813,  乌克兰语语言包 - Windows 7 (KB972813)
KB972813,  繁体中文语言包 - Windows 7 (KB972813)
KB972813,  挪威语语言包 - Windows 7 (KB972813)
KB972813,  爱沙尼亚语语言包 - Windows 7 (KB972813)
KB972813,  捷克语语言包 - Windows 7 (KB972813)
KB972813,  斯洛文尼亚语语言包 - Windows 7 (KB972813)
KB972813,  日语语言包 - Windows 7 (KB972813)
KB972813,  法语语言包 - Windows 7 (KB972813)
KB972813,  英语语言包 - Windows 7 (KB972813)
KB972813,  罗马尼亚语语言包 - Windows 7 (KB972813)
KB972813,  波兰语语言包 - Windows 7 (KB972813)
KB972813,  泰语语言包 - Windows 7 (KB972813)
KB972813,  保加利亚语语言包 - Windows 7 (KB972813)
KB972813,  俄语语言包 - Windows 7 (KB972813)
KB972813,  克罗地亚语语言包 - Windows 7 (KB972813)
KB972813,  塞尔维亚语(拉丁语)语言包 - Windows 7 (KB972813)
KB972813,  葡萄牙语(葡萄牙)语言包 - Windows 7 (KB972813)
KB972813,  朝鲜语语言包 - Windows 7 (KB972813)
KB972813,  意大利语语言包 - Windows 7 (KB972813)
KB972813,  匈牙利语语言包 - Windows 7 (KB972813)
KB972813,  土耳其语语言包 - Windows 7 (KB972813)
KB972813,  丹麦语语言包 - Windows 7 (KB972813)
KB972813,  芬兰语语言包 - Windows 7 (KB972813)
KB972813,  拉脱维亚语语言包 - Windows 7 (KB972813)
KB972813,  希伯来语语言包 - Windows 7 (KB972813)
KB972813,  荷兰语语言包 - Windows 7 (KB972813)
KB972813,  葡萄牙语(巴西)语言包 - Windows 7 (KB972813)
KB972813,  Windows Live 软件包
KB982670,  用于 Windows 7 x86 的 Microsoft .NET Framework 4 Client Profile (KB982670)
KB972696,  Microsoft Security Essentials 定义更新 – KB972696 (定义 1.91.462.0)

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================




用户系统信息:Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.8 (KHTML, like Gecko) Chrome/7.0.529.0 Safari/534.8
awilamt - 2010-9-24 11:03:00
:kaka2: 上个SRG的日志了哦。
风之雪 - 2010-9-24 15:36:00
楼上,上了= =
风之雪 - 2010-10-1 10:00:00
这个问题很难么= =
1
查看完整版本: 应用程序无法启动 0*c0000022 仅针对360安全卫士和金山卫士...