[CODE] 2009-08-30,19:15:11 System Repair Engineer 2.8.1.1279 Smallfrogs (http://www.KZTechs.com) Windows Vista Home Premium Edition Service Pack 1 (Build 6001) - 管理权限用户 - 完整功能以下内容被选中：所有的启动项目（包括注册表、启动文件夹、服务等）浏览器加载项正在运行的进程（包括进程模块信息）文件关联 Winsock 提供者 Autorun.inf HOSTS 文件进程特权扫描计划任务 Windows 安全更新检查 API HOOK 隐藏进程启动项目注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] [(Verified)Microsoft Windows] <"C:\Program Files\MSN Messenger\msnmsgr.exe" /background> [(Verified)Microsoft Corporation] [(Verified)Microsoft Windows] [(Verified)"Shenzhen QVOD Technology Co.,Ltd"] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] [(Verified)Microsoft Windows] [(Verified)Microsoft Windows Hardware Compatibility Publisher] [(Verified)Microsoft Windows Hardware Compatibility Publisher] <"C:\Program Files\Sony\ISB Utility\ISBMgr.exe"> [(Verified)Sony Corporation] <"C:\Program Files\Sony\E-Flyer\SubFlyer.exe"> [(Verified)Sony Corporation] <"C:\Program Files\Rising\AntiSpyware\rstray.exe" /startup> [(Verified)Beijing Rising Information Technology Corporation Limited] [] [Hewlett-Packard Co.] [(Verified)Microsoft Windows Hardware Compatibility Publisher] <"C:\Program Files\Rising\Rav\RsTray.exe" -system> [(Verified)Beijing Rising Information Technology Corporation Limited] <63> [N/A] <63> [N/A] <0> [N/A] <63> [N/A] <63> [N/A] <100> [N/A] <127> [N/A] <127> [N/A] <127> [N/A] <1> [N/A] <255> [N/A] <1> [N/A] <63> [N/A] <1> [N/A] <1> [N/A] <0> [N/A] <0> [N/A] <0> [N/A] <0> [N/A] <"C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"> [Adobe Systems Inc.] [(Verified)Microsoft Corporation] <360Safetray><"D:\360safe\safemon\360tray.exe" /start> [(Verified)Qizhi Software (beijing) Co. Ltd] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] [(Verified)Beijing Rising Information Technology Corporation Limited] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] [(Verified)Microsoft Windows] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] [(Verified)Beijing Rising Information Technology Corporation Limited] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon] [Sony Corporation] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] <%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] <"%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] <%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI> [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] [(Verified)Microsoft Windows] [HKEY_CURRENT_USER\Control Panel\Desktop] [(Verified)Microsoft Windows] ================================== 启动文件夹 [Bluetooth Manager] C:\PROGRA~1\Toshiba\BLUETO~1\TosBtMng.exe [TOSHIBA CORPORATION.]> [Bluetooth Manager] C:\PROGRA~1\Toshiba\BLUETO~1\TosBtMng.exe [TOSHIBA CORPORATION.]> ================================== 服务 [Ati External Event Utility / Ati External Event Utility][Running/Auto Start] [hpqcxs08 / hpqcxs08][Running/Manual Start] C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll> [HP CUE DeviceDiscovery 服务 / hpqddsvc][Running/Auto Start] C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll> [InstallDriver Table Manager / IDriverT][Stopped/Manual Start] <"C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe"> [IviRegMgr / IviRegMgr][Running/Auto Start] [MSCSPTISRV / MSCSPTISRV][Stopped/Manual Start] [Net Driver HPZ12 / Net Driver HPZ12][Running/Auto Start] C:\Windows\system32\HPZinw12.dll> [PACSPTISVR / PACSPTISVR][Stopped/Manual Start] <> [Pml Driver HPZ12 / Pml Driver HPZ12][Running/Auto Start] C:\Windows\system32\HPZipm12.dll> [Rav Process Communication Center / RavCCenter][Stopped/Auto Start] [Rising RavTask Manager / RavTask][Running/Auto Start] <"C:\Program Files\Rising\Rav\RavTask.exe" RavTask> [Rising RealTime Monitor / RsRavMon][Stopped/Auto Start] [Rising Scan Service / RsScanSrv][Stopped/Auto Start] [Sony SPTI Service / SPTISRV][Stopped/Manual Start] [TOSHIBA Bluetooth Service / TOSHIBA Bluetooth Service][Running/Auto Start] [VAIO Entertainment TV Device Arbitration Service / VAIO Entertainment TV Device Arbitration Service][Stopped/Manual Start] <"C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe"> [VAIO Event Service / VAIO Event Service][Running/Auto Start] [VAIO Media Integrated Server / VAIOMediaPlatform-IntegratedServer-AppServer][Stopped/Manual Start] [VAIO Media Integrated Server (HTTP) / VAIOMediaPlatform-IntegratedServer-HTTP][Stopped/Manual Start] <"C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP"> [VAIO Media Integrated Server (UPnP) / VAIOMediaPlatform-IntegratedServer-UPnP][Stopped/Manual Start] [VAIO Media Gateway Server / VAIOMediaPlatform-Mobile-Gateway][Stopped/Manual Start] <"C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server"> [VAIO Media Content Collection / VAIOMediaPlatform-UCLS-AppServer][Stopped/Manual Start] [VAIO Media Content Collection (HTTP) / VAIOMediaPlatform-UCLS-HTTP][Stopped/Manual Start] <"C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-UCLS-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\UCLS\HTTP"> [VAIO Media Content Collection (UPnP) / VAIOMediaPlatform-UCLS-UPnP][Stopped/Manual Start] [VAIO Content Metadata Intelligent Analyzing Manager / VcmIAlzMgr][Running/Auto Start] <"C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe"> [VAIO Content Metadata XML Interface / VcmXmlIfHelper][Stopped/Manual Start] <"C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe"> [VAIO Entertainment UPnP Client Adapter / Vcsw][Stopped/Manual Start] [WDelMgr20 / WDelMgr20][Running/Auto Start] [XAudioService / XAudioService][Running/Auto Start] ================================== 驱动程序 [360SelfProtection / 360SelfProtection][Running/System Start] <360安全中心> [adp94xx / adp94xx][Stopped/Disabled] <\SystemRoot\system32\drivers\adp94xx.sys> [adpahci / adpahci][Stopped/Disabled] <\SystemRoot\system32\drivers\adpahci.sys> [adpu160m / adpu160m][Stopped/Disabled] <\SystemRoot\system32\drivers\adpu160m.sys> [adpu320 / adpu320][Stopped/Disabled] <\SystemRoot\system32\drivers\adpu320.sys> [aic78xx / aic78xx][Stopped/Disabled] <\SystemRoot\system32\drivers\djsvs.sys> [aliide / aliide][Stopped/Disabled] <\SystemRoot\system32\drivers\aliide.sys> [arc / arc][Stopped/Disabled] <\SystemRoot\system32\drivers\arc.sys> [arcsas / arcsas][Stopped/Disabled] <\SystemRoot\system32\drivers\arcsas.sys> [atikmdag / atikmdag][Running/Manual Start] [BFSDRV / BFSDRV][Running/System Start] <\??\C:\Windows\system32\drivers\bfsdrv.sys><360安全中心> [blbdrive / blbdrive][Stopped/Disabled] <\SystemRoot\system32\drivers\blbdrive.sys> [BREGDRV / BREGDRV][Running/System Start] <\??\C:\Windows\system32\drivers\bregdrv.sys><360安全中心> [Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start] <\SystemRoot\system32\drivers\brfiltlo.sys> [Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start] <\SystemRoot\system32\drivers\brfiltup.sys> [Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Disabled] <\SystemRoot\system32\drivers\brserid.sys> [Brother WDM Serial driver / BrSerWdm][Stopped/Disabled] <\SystemRoot\system32\drivers\brserwdm.sys> [Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Disabled] <\SystemRoot\system32\drivers\brusbmdm.sys> [Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start] <\SystemRoot\system32\drivers\brusbser.sys> [cmdide / cmdide][Stopped/Disabled] <\SystemRoot\system32\drivers\cmdide.sys> [Sony DMI Call service / DMICall][Running/System Start] [Intel(R) PRO/1000 NDIS 6 Adapter Driver / E1G60][Stopped/Manual Start] [EfiSystemMon / EfiMon][Running/System Start] <奇虎网> [elxstor / elxstor][Stopped/Disabled] <\SystemRoot\system32\drivers\elxstor.sys> [hookcont / hookcont][Running/System Start] [HookPort / HookPort][Running/Boot Start] <\SystemRoot\System32\Drivers\Hookport.sys><360安全中心> [hooksys / hooksys][Running/System Start] [HpCISSs / HpCISSs][Stopped/Disabled] <\SystemRoot\system32\drivers\hpcisss.sys> [HSFHWAZL / HSFHWAZL][Stopped/Manual Start] [HSF_DPV / HSF_DPV][Running/Manual Start] [HSXHWAZL / HSXHWAZL][Running/Manual Start] [Intel RAID Controller Vista / iaStorV][Stopped/Disabled] <\SystemRoot\system32\drivers\iastorv.sys> [iirsp / iirsp][Stopped/Disabled] <\SystemRoot\system32\drivers\iirsp.sys> [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start] [IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start] [ITEATAPI_Service_Install / iteatapi][Stopped/Disabled] <\SystemRoot\system32\drivers\iteatapi.sys> [ITERAID_Service_Install / iteraid][Stopped/Disabled] <\SystemRoot\system32\drivers\iteraid.sys> [LSI_FC / LSI_FC][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_fc.sys> [LSI_SAS / LSI_SAS][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_sas.sys> [LSI_SCSI / LSI_SCSI][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_scsi.sys> [mdmxsdk / mdmxsdk][Running/Auto Start] [megasas / megasas][Stopped/Disabled] <\SystemRoot\system32\drivers\megasas.sys> [Mraid35x / Mraid35x][Stopped/Disabled] <\SystemRoot\system32\drivers\mraid35x.sys> [Intel(R) Wireless WiFi Link 适配器驱动程序（适用于 Windows Vista 32 位） / NETw4v32][Running/Manual Start] [nfrd960 / nfrd960][Stopped/Disabled] <\SystemRoot\system32\drivers\nfrd960.sys> [N-trig HID Tablet Driver / ntrigdigi][Stopped/Disabled] <\SystemRoot\system32\drivers\ntrigdigi.sys> [nvraid / nvraid][Stopped/Disabled] <\SystemRoot\system32\drivers\nvraid.sys> [nvstor / nvstor][Stopped/Disabled] <\SystemRoot\system32\drivers\nvstor.sys> [IPX Traffic Filter Driver / NwlnkFlt][Stopped/Manual Start] [IPX Traffic Forwarder Driver / NwlnkFwd][Stopped/Manual Start] [Protector / Protector][Running/System Start] [ProtectorA / ProtectorA][Running/System Start] [PxHelp20 / PxHelp20][Running/Boot Start] <\SystemRoot\System32\Drivers\PxHelp20.sys> [QLogic Fibre Channel Miniport Driver / ql2300][Stopped/Disabled] <\SystemRoot\system32\drivers\ql2300.sys> [QLogic iSCSI Miniport Driver / ql40xx][Stopped/Disabled] <\SystemRoot\system32\drivers\ql40xx.sys> [R5U870 UVC Lower Filter / R5U870FLx86][Stopped/Manual Start] [R5U870 UVC Upper Filter / R5U870FUx86][Stopped/Manual Start] [regi / regi][Running/Auto Start] [RsNTGDI / RsNTGDI][Running/Boot Start] <\SystemRoot\system32\Drivers\RsNTGdi.sys> [Realtek 8169 NT 驱动程序 / RTL8169][Running/Manual Start] [SiSRaid2 / SiSRaid2][Stopped/Disabled] <\SystemRoot\system32\drivers\sisraid2.sys> [SiSRaid4 / SiSRaid4][Stopped/Disabled] <\SystemRoot\system32\drivers\sisraid4.sys> [Sony Firmware Extension Parser Device / SNC][Running/Manual Start] [sptd / sptd][Running/Boot Start] <\SystemRoot\System32\Drivers\sptd.sys> [Symc8xx / Symc8xx][Stopped/Disabled] <\SystemRoot\system32\drivers\symc8xx.sys> [Sym_hi / Sym_hi][Stopped/Disabled] <\SystemRoot\system32\drivers\sym_hi.sys> [Sym_u3 / Sym_u3][Stopped/Disabled] <\SystemRoot\system32\drivers\sym_u3.sys> [Synaptics TouchPad Driver / SynTP][Running/Manual Start] [TC USB Kernel Driver / TcUsb][Stopped/Manual Start] [ti21sony / ti21sony][Running/Manual Start] [Bluetooth COM Port / tosporte][Running/Manual Start] [Bluetooth RFBUS / tosrfbd][Running/Manual Start] [Bluetooth RFBNEP / tosrfbnp][Running/Manual Start] [Bluetooth RFCOMM / Tosrfcom][Running/System Start] [Bluetooth RFHID / Tosrfhid][Running/Manual Start] [Bluetooth Personal Area Network / tosrfnds][Running/Manual Start] [Bluetooth USB Controller / tosrfusb][Running/Manual Start] [uliahci / uliahci][Stopped/Disabled] <\SystemRoot\system32\drivers\uliahci.sys> [UlSata / UlSata][Stopped/Disabled] <\SystemRoot\system32\drivers\ulsata.sys> [ulsata2 / ulsata2][Stopped/Disabled] <\SystemRoot\system32\drivers\ulsata2.sys> [viaide / viaide][Stopped/Disabled] <\SystemRoot\system32\drivers\viaide.sys> [vsmraid / vsmraid][Stopped/Disabled] <\SystemRoot\system32\drivers\vsmraid.sys> [winachsf / winachsf][Running/Manual Start] [XAudio / XAudio][Running/Auto Start] ================================== 浏览器加载项 [] {01443AEC-0FD1-40fd-9C87-E93D1494C233} <, > [AcroIEHlprObj Class] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [BOC ProcessProtect Class] {776B71E2-B4CC-4C94-BC7C-09103AA690B6} [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [SafeMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [信息检索(&R)] {92780B25-18CC-41C8-B9BE-3C9C571A8263} [] {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} <, > [Windows Genuine Advantage Validation Tool] {17492023-C23A-453E-A040-C7C580BBF700} [GDGetTokenInfo Class] {3AA9CF07-DF20-48FF-98BE-DED276E40146} [InfoSecNetSign Class] {5CB840B5-A94E-4AD9-B785-4866E3B04476} [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [] {01443AEC-0FD1-40FD-9C87-E93D1494C233} <, > [] {053F9267-DC04-4294-A72C-58F732D338C0} <, > [AcroIEHlprObj Class] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [] {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <, > [] {1E0DFFCF-27FF-4574-849B-55007349FEDA} <, > [] {1E8A6170-7264-4D0F-BEAE-D42A53123C75} <, > [] {2318C2B1-4965-11D4-9B18-009027A5CD4F} <, > [] {32099AAC-C132-4136-9E9A-4E364A424E17} <, > [GDGetTokenInfo Class] {3AA9CF07-DF20-48FF-98BE-DED276E40146} [] {4045D313-1D5E-4FE4-93A0-A34630B6A00B} <, > [] {47833539-D0C5-4125-9FA8-0819E2EAAC93} <, > [XML Document] {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [AtmX Class] {4CEEAF57-0208-4CA4-A473-914C2D2FFC23} [] {58ECB495-38F0-49CB-A538-10282ABF65E7} <, > [InfoSecNetSign Class] {5CB840B5-A94E-4AD9-B785-4866E3B04476} [XMP Class] {6483F145-A768-4C41-AACC-52D4D7845851} [] {700259D7-1666-479A-93B1-3250410481E8} <, > [BOC ProcessProtect Class] {776B71E2-B4CC-4C94-BC7C-09103AA690B6} [] {7E853D72-626A-48EC-A868-BA8D5E23E045} <, > [XDownloaddManager Class] {802F530B-A8F6-4631-AE49-6BACAAC6373E} [360SafeLive] {87515F61-A66C-4319-A0E0-D416CB8059E3} [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [] {90222687-F593-4738-B738-FBEE9C7B26DF} <, > [] {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, > [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [] {AA58ED58-01DD-4D91-8333-CF10577473F7} <, > [] {AE7CD045-E861-484F-8273-0445EE161910} <, > [SafeMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [Microsoft Url Search Hook] {CFBFAE00-17A6-11D0-99CB-00C04FD64497} [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [XML HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [XML HTTP] {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [信息检索(&R)] {FF059E31-CC5A-4E2E-BF3B-96E929D65503} ================================== 正在运行的进程 [PID: 552 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)] [PID: 636 / SYSTEM][C:\Windows\system32\csrss.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 688 / SYSTEM][C:\Windows\system32\wininit.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 700 / SYSTEM][C:\Windows\system32\csrss.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 732 / SYSTEM][C:\Windows\system32\services.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 744 / SYSTEM][C:\Windows\system32\lsass.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 752 / SYSTEM][C:\Windows\system32\lsm.exe] [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 796 / SYSTEM][C:\Windows\system32\winlogon.exe] [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 948 / SYSTEM][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1008 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1116 / SYSTEM][C:\Program Files\Rising\Rav\CCENTER.EXE] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\Program Files\Rising\Rav\combase.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\Rav\cnt09.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 37] [C:\Program Files\Rising\Rav\cnt08.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7] [PID: 1124 / SYSTEM][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 1172 / SYSTEM][C:\Windows\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4167] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1192 / LOCAL SERVICE][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\System32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1216 / SYSTEM][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\System32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1244 / SYSTEM][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1364 / SYSTEM][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1380 / NETWORK SERVICE][C:\Windows\system32\SLsvc.exe] [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)] [PID: 1460 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.77] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [PID: 1508 / SYSTEM][C:\Windows\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4167] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2511] [C:\Windows\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2519] [C:\Windows\system32\ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4162] [PID: 1604 / SYSTEM][C:\Program Files\Rising\Rav\RavTask.exe] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\Rav\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Rising\Rav\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.1] [C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.20] [C:\Program Files\Rising\Rav\rstask.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 40] [C:\Program Files\Rising\Rav\rsstub.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12] [PID: 1696 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1776 / SYSTEM][C:\Program Files\Rising\Rav\RavMonD.exe] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\Rav\combase.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Rising\Rav\moncomm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13] [C:\Program Files\Rising\Rav\MonBase.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6] [C:\Program Files\Rising\Rav\Rslog.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.41] [C:\Program Files\Rising\Rav\mondrv.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9] [C:\Program Files\Rising\Rav\defmon.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 31] [C:\Program Files\Rising\Rav\moncom08.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1] [C:\Program Files\Rising\Rav\MonRule.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9] [C:\Program Files\Rising\Rav\FileMon.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28] [C:\Program Files\Rising\Rav\MailMon.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24] [C:\Program Files\Rising\Rav\HookWeb.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Program Files\Rising\Rav\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.1] [C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.20] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\Rav\Hooksys.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 18] [C:\Program Files\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [C:\Program Files\Rising\Rav\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [C:\Program Files\Rising\Rav\HookCont.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 12] [C:\Program Files\Rising\Rav\rsnetsvr.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14] [C:\Program Files\Rising\Rav\BACore.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 22] [C:\Program Files\Rising\Rav\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\refs.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\Program Files\Rising\Rav\RSStore.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13] [C:\Program Files\Rising\Rav\ScanAdd.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.19] [C:\Program Files\Rising\Rav\Scanner.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.39] [C:\Program Files\Rising\Rav\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\Program Files\Rising\Rav\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6] [C:\Program Files\Rising\Rav\extfile.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 15] [C:\Program Files\Rising\Rav\ffr.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\nvfile.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\scanexec.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6] [C:\Program Files\Rising\Rav\unexe.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\Program Files\Rising\Rav\scanex.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 60] [C:\Program Files\Rising\Rav\pearc.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\scanpe.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14] [C:\Program Files\Rising\Rav\ur000.dat] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 16] [C:\Program Files\Rising\Rav\urutils.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\methodex.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\revm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 8] [C:\Program Files\Rising\Rav\pecompd.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1] [C:\Program Files\Rising\Rav\heurex.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Program Files\Rising\Rav\scriptci.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1] [C:\Program Files\Rising\Rav\uroutine.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\scansct.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [PID: 1820 / SYSTEM][C:\Program Files\Rising\Rav\RsStub.exe] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\Rav\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [PID: 1980 / SYSTEM][C:\Program Files\Rising\Rav\rsnetsvr.exe] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 15] [C:\Program Files\Rising\Rav\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.12] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [PID: 1132 / SYSTEM][C:\Windows\System32\spoolsv.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\System32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\system32\AdobePDF.dll] [Adobe Systems Incorporated., 7.0.0.00] [C:\Windows\System32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Adobe\Acrobat 7.0\Distillr\AdistRes.CHS] [, ] [C:\Windows\System32\hpzll5ha.dll] [Hewlett-Packard Company, 61.071.246.00] [C:\Windows\System32\tbtmon.dll] [TOSHIBA CORPORATION., 5, 0, 1208, 0] [C:\Windows\System32\TosBtHcrpAPI.dll] [TOSHIBA CORPORATION., 5, 0, 1201, 0] [C:\Windows\System32\TosBtAPI.dll] [TOSHIBA CORPORATION., 5.00.7522.0] [C:\Windows\System32\TosBdAPI.dll] [TOSHIBA CORPORATION., 4, 1, 1612, 0] [C:\Windows\System32\tbtmon98Language.dll] [TOSHIBA CORPORATION., 5, 0, 1204, 0] [C:\Windows\system32\spool\PRTPROCS\W32X86\hpzpp5ha.dll] [Hewlett-Packard Corporation, 61.071.246.00] [C:\Windows\system32\spool\PRTPROCS\W32X86\mdippr.dll] [Microsoft Corporation, 11.3.1897.0] [PID: 1316 / CHAO HOME][C:\Windows\system32\taskeng.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\system32\atitmmxx.dll] [, 6, 14, 11, 17] [C:\Windows\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2519] [PID: 1620 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1764 / CHAO HOME][C:\Windows\system32\Dwm.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\system32\atiumdag.dll] [ATI Technologies Inc. , 7.14.10.0496] [C:\Windows\system32\atiumdva.dll] [ATI Technologies Inc. , 7.14.10.0155] [PID: 1772 / CHAO HOME][C:\Windows\Explorer.EXE] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll] [, 2, 0, 0, 0] [C:\Program Files\WinRAR\rarext.dll] [N/A, ] [C:\Windows\system32\TosBtShell.dll] [东芝公司, 1.02.10.CHS] [C:\Windows\system32\RavExt.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12] [C:\Program Files\QvodPlayer\QvodBand.dll] [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 0] [C:\Program Files\trademanager\AliIMExt.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1] [C:\Program Files\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.dll] [Adobe Systems Inc., 7.0.0.2004121400\0] [C:\Windows\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MFC71CHS.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.chs] [Adobe Systems Inc., 7.0.0.2004121400\0] [C:\Windows\system32\TosBtExt.dll] [TOSHIBA, 5.00.2829.ALL] [PID: 2100 / CHAO HOME][C:\Windows\system32\taskeng.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2136 / CHAO HOME][C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe] [Sony Corporation, 3.6.00.18140] [C:\Program Files\Sony\Wireless Switch Setting Utility\Frn.dll] [Sony Corporation, 1,2,0,07250] [C:\Program Files\Sony\Wireless Switch Setting Utility\MFC71U.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Sony\Wireless Switch Setting Utility\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Sony\Wireless Switch Setting Utility\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\system32\MFC71CHS.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Sony\Wireless Switch Setting Utility\SwitcherLocale.dll] [Sony Corporation, 3.6.00.17280] [C:\Program Files\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll] [Sony Corporation, 4.0.00.06270] [PID: 2152 / CHAO HOME][C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe] [Sony Corporation, 4.0.0.07180] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Sony\VAIO Update 4\VURes.dll] [Sony Corporation, 4.0.0.06050] [PID: 2308 / SYSTEM][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [c:\program files\hp\digital imaging\bin\hpqddsvc.dll] [Hewlett-Packard Co., 90.0.205.000] [c:\program files\hp\digital imaging\bin\hpqddcmn.dll] [Hewlett-Packard Co., 90.0.205.000] [c:\program files\hp\digital imaging\bin\hpqcxs08.dll] [Hewlett-Packard Co., 90.0.205.000] [PID: 2416 / SYSTEM][C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe] [InterVideo, 1, 0, 4, 0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2440 / LOCAL SERVICE][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [c:\windows\system32\hpzinw12.dll] [Hewlett-Packard, 12,1,1,54] [C:\Windows\System32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2536 / LOCAL SERVICE][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [c:\windows\system32\hpzipm12.dll] [Hewlett-Packard, 12,1,1,54] [C:\Windows\System32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2652 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2684 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2728 / SYSTEM][C:\Program Files\Rising\Rav\ScanFrm.exe] [Beijing Rising Information Technology Co., Ltd., 21.0.0.12] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\Rav\combase.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Program Files\Rising\Rav\moncomm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13] [C:\Program Files\Rising\Rav\scansrvp.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.13] [C:\Program Files\Rising\Rav\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\Program Files\Rising\Rav\ScanSrv.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.10] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [PID: 2744 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2820 / SYSTEM][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe] [TOSHIBA CORPORATION, 1, 0, 1402, 0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2876 / SYSTEM][C:\Program Files\Sony\VAIO Event Service\VESMgr.exe] [Sony Corporation, 3.1.00.13250] [C:\Program Files\Sony\VAIO Event Service\MSVCR70.dll] [Microsoft Corporation, 7.00.9466.0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Sony\VAIO Event Service\VESSuEvent.dll] [Sony Corporation, 3.2.00.07060] [C:\Program Files\Sony\VAIO Event Service\VESBasePS.dll] [N/A, ] [C:\Program Files\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll] [Sony Corporation, 4.0.00.06270] [C:\Program Files\Sony\VAIO Event Service\VESWndMsg.dll] [Sony Corporation, 3.2.00.05220] [C:\Program Files\Sony\VAIO Event Service\VESTransform.dll] [Sony Corporation, 3.2.00.07240] [C:\Program Files\Sony\VAIO Control Center\SUSCommonSetting.dll] [Sony Corporation, 3.0.00.07110] [C:\Program Files\Sony\VAIO Power Management\VESPowerMgr.dll] [Sony Corporation, 3.2.00.05280] [C:\Program Files\Sony\VAIO Event Service\VESSemiPnP.dll] [Sony Corporation, 3.0.00.11220] [C:\Program Files\Sony\VAIO Event Service\VESSuPerform.dll] [Sony Corporation, 3.2.00.07090] [C:\Program Files\Sony\VAIO Event Service\VESVideo.dll] [Sony Corporation, 3.2.00.07100] [C:\Program Files\Sony\VAIO Event Service\VESPerform.dll] [Sony Corporation, 3.2.00.06290] [C:\Program Files\Sony\VAIO Launcher\VESAVModeButton.dll] [Sony Corporation, 2.0.00.15210] [C:\Program Files\Sony\VAIO Launcher\MSVCR71.dll] [Microsoft Corporation, 7.10.6004.4] [C:\Program Files\Sony\VAIO Event Service\VESBCF.dll] [Sony Corporation, 3.2.00.04260] [C:\Program Files\Sony\VAIO Event Service\VESHKWndCommon.dll] [Sony Corporation, 3.2.00.06210] [C:\Program Files\Sony\VAIO Event Service\VESSetGamma.dll] [Sony Corporation, 3.2.00.07110] [C:\Program Files\Sony\Setting Utility Series\BatteryCare.dll] [Sony Corporation, 1.2.00.03160] [C:\Program Files\Sony\VAIO Event Service\VESMgrSubPS.dll] [N/A, ] [PID: 2904 / SYSTEM][C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe] [Sony Corporation, 2.0.01.07050] [C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1\ATL80.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzTimerWapi.dll] [Sony Corporation, 2.0.01.07050] [C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzQueueContents.dll] [Sony Corporation, 2.0.01.07050] [C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzDbNotifyVep.dll] [Sony Corporation, 2.0.01.07050] [PID: 2932 / SYSTEM][C:\Windows\system32\drivers\WDelMgr20.exe] [N/A, ] [PID: 2964 / SYSTEM][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 3048 / SYSTEM][C:\Windows\system32\SearchIndexer.exe] [(Verified) Microsoft Corporation, 7.0.6001.16503 (longhorn(wmbla).080526-2159)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3088 / SYSTEM][C:\Windows\system32\DRIVERS\xaudio.exe] [Conexant Systems, Inc., 1.02] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3180 / LOCAL SERVICE][C:\Windows\system32\WUDFHost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3320 / SYSTEM][C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe] [Sony Corporation, 2.3.00.03190] [C:\Program Files\Sony\VAIO Event Service\MSVCR70.dll] [Microsoft Corporation, 7.00.9466.0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Sony\VAIO Event Service\VESMgrSubPS.dll] [N/A, ] [C:\Program Files\Sony\VAIO Event Service\VESWndMsg.dll] [Sony Corporation, 3.2.00.05220] [C:\Program Files\Sony\VAIO Event Service\VESBasePS.dll] [N/A, ] [C:\Program Files\Sony\VAIO Power Management\VESPowerMgr.dll] [Sony Corporation, 3.2.00.05280] [C:\Program Files\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll] [Sony Corporation, 4.0.00.06270] [C:\Program Files\Sony\VAIO Event Service\VESWndMsgHook.dll] [Sony Corporation, 2.2.00.05200] [C:\Program Files\Sony\VAIO Event Service\VESVideo.dll] [Sony Corporation, 3.2.00.07100] [C:\Program Files\Sony\VAIO Event Service\VESPerform.dll] [Sony Corporation, 3.2.00.06290] [C:\Program Files\Sony\VAIO Launcher\VESAVModeButton.dll] [Sony Corporation, 2.0.00.15210] [C:\Program Files\Sony\VAIO Launcher\MSVCR71.dll] [Microsoft Corporation, 7.10.6004.4] [C:\Program Files\Sony\VAIO Event Service\VESHKWndCommon.dll] [Sony Corporation, 3.2.00.06210] [C:\Program Files\Sony\VAIO Event Service\VESSetGamma.dll] [Sony Corporation, 3.2.00.07110] [C:\Windows\system32\Atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2519] [PID: 3692 / CHAO HOME][C:\Program Files\Windows Defender\MSASCui.exe] [Microsoft Corporation, 1.1.1600.0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3712 / CHAO HOME][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] [Synaptics, Inc., 9.1.13 26Jan07] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\system32\SynCOM.dll] [Synaptics, Inc., 9.1.13 26Jan07] [C:\Windows\system32\SynTPAPI.dll] [Synaptics, Inc., 9.1.13 26Jan07] [PID: 3724 / CHAO HOME][C:\Program Files\Sony\ISB Utility\ISBMgr.exe] [Sony Corporation, 2.2.00.06110] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll] [Sony Corporation, 4.0.00.06270] [PID: 3740 / CHAO HOME][C:\Program Files\Rising\AntiSpyware\RSTray.exe] [Beijing Rising Information Technology Co., Ltd., 21.0.0.17] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\rsmginfo.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Program Files\Rising\AntiSpyware\RsXML.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2] [C:\Program Files\Rising\AntiSpyware\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Rising\AntiSpyware\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Rising\AntiSpyware\ComServ.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.31] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\AntiSpyware\rscommon.dll] [Beijing Rising Information Technology Co., Ltd., 20.0.1.1] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\pngdll.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5] [C:\Program Files\Rising\AntiSpyware\runiep.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.43] [C:\Program Files\Rising\AntiSpyware\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.11] [C:\Program Files\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [C:\Program Files\Rising\AntiSpyware\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [PID: 3760 / CHAO HOME][C:\Program Files\HP\HP Software Update\hpwuSchd2.exe] [Hewlett-Packard Co., 90.0.43.000] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3776 / CHAO HOME][C:\Program Files\Rising\Rav\RsTray.exe] [Beijing Rising Information Technology Co., Ltd., 21.0.0.22] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\Rav\ComServ.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.49] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Rising\Rav\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\Rav\rsxml.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\Program Files\Rising\Rav\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\Program Files\Rising\Rav\MonState.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7] [C:\Program Files\Rising\Rav\ScanEvnt.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.14] [C:\Program Files\Rising\Rav\rsguilib.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 75] [C:\Windows\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MFC71CHS.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Rising\Rav\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.1] [C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.20] [C:\Program Files\Rising\Rav\rspalvd.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.26] [C:\Program Files\Rising\Rav\ravbintl.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 29] [C:\Program Files\Rising\Rav\mruleui.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 10] [C:\Program Files\Rising\Rav\MonTray.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.1.4] [C:\Program Files\Rising\Rav\PngDll.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\RavITray.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 23] [C:\Program Files\Rising\Rav\ScanPrxy.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.17] [C:\Program Files\Rising\Rav\rsmginfo.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [PID: 3792 / CHAO HOME][C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe] [Adobe Systems Inc., 6.0.1.2004121400] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.chs] [Adobe Systems Inc., 6.0.0.0] [PID: 3828 / CHAO HOME][C:\Program Files\Windows Media Player\wmpnscfg.exe] [Microsoft Corporation, 11.0.6000.6324 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3852 / CHAO HOME][C:\Windows\ehome\ehtray.exe] [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3928 / CHAO HOME][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE] [ATI Technologies Inc., 2.0.0.0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\c068708e16abf0be77a21b9f29817d83\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3074 (QFE.050727-3000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\57ac9ba5419d6bf4b79f2979b0755428\System.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\19d027c3381110e60c003f2c8bd307ee\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6d75eb3ca10a514754f5e87cc2134f07\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.2677.38680__90ba9c70f846762e\MOM.Implementation.dll] [Advanced Micro Devices Inc., 2.0.2677.38680] [C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.2636.18428__90ba9c70f846762e\LOG.Foundation.dll] [ATI Technologies Inc., 2.0.2636.18428] [C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2636.18435__90ba9c70f846762e\LOG.Foundation.Private.dll] [ATI Technologies Inc., 2.0.2636.18435] [C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2677.38679__90ba9c70f846762e\LOG.Foundation.Implementation.dll] [ATI Technologies Inc., 2.0.2677.38679] [C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.2636.18438__90ba9c70f846762e\MOM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.2636.18438] [C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2636.18440__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll] [ATI Technologies Inc., 2.0.2636.18440] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a4fd3b000abfd4712b02ec223df3e9dd\System.Runtime.Remoting.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\47b2e1d9030f551f685dfea0b618e7fd\System.Web.ni.dll] [Microsoft Corporation, 2.0.50727.3074 (QFE.050727-3000)] [C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.2677.38396__90ba9c70f846762e\AEM.Server.dll] [ATI Technologies Inc., 2.0.2677.38396] [C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2636.18430__90ba9c70f846762e\NEWAEM.Foundation.dll] [ATI Technologies Inc., 2.0.2636.18430] [PID: 3964 / NETWORK SERVICE][C:\Program Files\Windows Media Player\wmpnetwk.exe] [Microsoft Corporation, 11.0.6000.6324 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 4056 / CHAO HOME][C:\Windows\ehome\ehmsas.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2052 / CHAO HOME][C:\Program Files\QvodPlayer\QvodTerminal.exe] [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 59] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1868 / CHAO HOME][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe] [TOSHIBA CORPORATION., 5.00.7522.ALL] [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosCpsAPI.dll] [TOSHIBA CORPORATION., 3.01.5520.0] [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMngHelp.dll] [TOSHIBA CORPORATION., 5.00.6z01.ALL] [C:\Windows\system32\TosAvAPI.dll] [TOSHIBA CORPORATION., 5.00.6804.0] [C:\Windows\system32\TosBtSDDB.dll] [TOSHIBA CORPORATION., 5.00.7515.0] [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMngLang.dll] [TOSHIBA CORPORATION., 5.00.6920.0] [C:\Windows\system32\TosBdAPI.dll] [TOSHIBA CORPORATION., 4, 1, 1612, 0] [C:\Windows\system32\TosCommAPI.dll] [N/A, ] [C:\Windows\system32\TosLaneAPI.dll] [TOSHIBA CORPORATION., 1, 0, 3, 0] [C:\Windows\system32\TosBtAPI.dll] [TOSHIBA CORPORATION., 5.00.7522.0] [C:\Windows\system32\LCWizard.dll] [TOSHIBA CORPORATION, 5.0.0.ALL] [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\BtUsrMod.dll] [TOSHIBA CORPORATION, 1, 01, 11, US] [C:\Windows\system32\TosHidAPI.dll] [TOSHIBA CORPORATION., 4, 0, 1108, 0] [C:\Windows\system32\TosGnsAPI.dll] [TOSHIBA CORPORATION., 5, 0, 0, 0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\system32\TosAcpiAPI.dll] [TOSHIBA CORPORATION., 1, 0, 3, 0] [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtAfh.dll] [N/A, ] [PID: 3960 / SYSTEM][C:\Program Files\Sony\VAIO Power Management\SPMgr.exe] [Sony Corporation, 2.2.00.06080] [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Sony\VAIO Power Management\SPMDAM.dll] [Sony Corporation, 2.2.00.05110] [C:\Program Files\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll] [Sony Corporation, 4.0.00.06270] [C:\Program Files\Sony\VAIO Power Management\SPMRes.dll] [Sony Corporation, 2.2.00.05150] [C:\Program Files\Sony\VAIO Event Service\VESBasePS.dll] [N/A, ] [C:\Program Files\Sony\VAIO Event Service\MSVCR70.dll] [Microsoft Corporation, 7.00.9466.0] [C:\Program Files\Sony\VAIO Power Management\SPMDrv.dll] [Sony Corporation, 2.2.00.06080] [C:\Program Files\Sony\VAIO Power Management\Volcontrl.dll] [Sony Corporation, 2.0.00.10050] [PID: 3308 / CHAO HOME][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe] [TOSHIBA CORPORATION., 5.00.7227.ALL] [C:\Windows\system32\TosBtECCAPI.dll] [TOSHIBA CORPORATION., 3.00.6510.0] [C:\Windows\system32\TosBtAPI.dll] [TOSHIBA CORPORATION., 5.00.7522.0] [C:\Windows\system32\TosBdAPI.dll] [TOSHIBA CORPORATION., 4, 1, 1612, 0] [C:\Windows\system32\TosAvdtAPI.dll] [TOSHIBA CORPORATION., 5.00.7410.0] [C:\Windows\system32\TosSndAPI.dll] [TOSHIBA CORPORATION., 5.00.7117.0] [C:\Windows\system32\TosSndPlug.dll] [TOSHIBA CORPORATION., 5.00.7227.ALL] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3552 / CHAO HOME][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe] [ATI Technologies Inc., 2.0.0.0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\c068708e16abf0be77a21b9f29817d83\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3074 (QFE.050727-3000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\57ac9ba5419d6bf4b79f2979b0755428\System.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\19d027c3381110e60c003f2c8bd307ee\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6d75eb3ca10a514754f5e87cc2134f07\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.2677.38680__90ba9c70f846762e\CCC.Implementation.dll] [ATI Technologies Inc., 2.0.2677.38680] [C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.2636.18428__90ba9c70f846762e\LOG.Foundation.dll] [ATI Technologies Inc., 2.0.2636.18428] [C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.2636.18438__90ba9c70f846762e\MOM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.2636.18438] [C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.2636.18430__90ba9c70f846762e\CLI.Foundation.dll] [ATI Technologies Inc., 2.0.2636.18430] [C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2636.18440__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll] [ATI Technologies Inc., 2.0.2636.18440] [C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2677.38679__90ba9c70f846762e\LOG.Foundation.Implementation.dll] [ATI Technologies Inc., 2.0.2677.38679] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a4fd3b000abfd4712b02ec223df3e9dd\System.Runtime.Remoting.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2636.18435__90ba9c70f846762e\LOG.Foundation.Private.dll] [ATI Technologies Inc., 2.0.2636.18435] [C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.2677.38680__90ba9c70f846762e\MOM.Implementation.dll] [Advanced Micro Devices Inc., 2.0.2677.38680] [C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.2636.18485__90ba9c70f846762e\CLI.Foundation.XManifest.dll] [ATI Technologies Inc., 2.0.2636.18485] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\38b9d09539b67b08ee996db6c71f8a9b\System.Xml.ni.dll] [Microsoft Corporation, 2.0.50727.3074 (QFE.050727-3000)] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.2677.38397__90ba9c70f846762e\CLI.Component.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2677.38397] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.2636.18439__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll] [ATI Technologies Inc., 2.0.2636.18439] [C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.2636.18433__90ba9c70f846762e\CLI.Foundation.Private.dll] [ATI Technologies Inc., 2.0.2636.18433] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.2636.18437__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll] [ATI Technologies Inc., 2.0.2636.18437] [C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll] [ATI Technologies Inc., 2.0.0.0] [C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.2677.38396__90ba9c70f846762e\AEM.Server.dll] [ATI Technologies Inc., 2.0.2677.38396] [C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2636.18430__90ba9c70f846762e\NEWAEM.Foundation.dll] [ATI Technologies Inc., 2.0.2636.18430] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.2677.38396__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll] [ATI Technologies Inc., 2.0.2677.38396] [C:\Windows\assembly\GAC_MSIL\AEM.Foundation\2.0.2636.18429__90ba9c70f846762e\AEM.Foundation.dll] [ATI Technologies Inc., 2.0.2636.18429] [C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.2636.18438__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll] [ATI Technologies Inc., 2.0.2636.18438] [C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2636.18437__90ba9c70f846762e\AEM.Server.Shared.dll] [ATI Technologies Inc., 2.0.2636.18437] [C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.2677.38724__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll] [ATI Technologies Inc., 2.0.2677.38724] [C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.2636.18457__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll] [ATI Technologies Inc., 2.0.2636.18457] [C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.2636.18458__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll] [ATI Technologies Inc., 2.0.2636.18458] [C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll] [ATI Technologies Inc., 2.0.2573.17685] [C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll] [ATI Technologies Inc., 2.0.2573.17684] [C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.2636.18441__90ba9c70f846762e\DEM.Graphics.dll] [ATI Technologies Inc., 2.0.2636.18441] [C:\Windows\system32\ATIDEMGX.dll] [Advanced Micro Devices, Inc., 2.0.2677.39647] [C:\Windows\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2519] [C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.2677.38399__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll] [Advanced Mirco Devices, Inc., 2.0.2677.38399] [C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.2636.18438__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll] [Advanced Mirco Devices, Inc., 2.0.2636.18438] [C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll] [ATI Technologies Inc., 2.0.2573.17685] [C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2636.18442__90ba9c70f846762e\DEM.OS.I0602.dll] [ATI Technologies Inc., 2.0.2636.18442] [C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.2636.18437__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll] [ATI Technologies Inc., 2.0.2636.18437] [C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.2636.18443__90ba9c70f846762e\DEM.OS.dll] [ATI Technologies Inc., 2.0.2636.18443] [C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.2677.38398__90ba9c70f846762e\ATIDEMOS.dll] [ATI Technologies Inc., 2.0.2677.38398] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.2677.38420__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2677.38420] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.2636.18442__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18442] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.2677.38616__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2677.38616] [C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.2636.18452__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll] [ATI Technologies Inc., 2.0.2636.18452] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.2636.18451__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18451] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.2636.18440__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18440] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.2677.38553__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2677.38553] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.2636.18440__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18440] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.2677.38659__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2677.38659] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.2642.27815__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2642.27815] [C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.2636.18458__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll] [ATI Technologies Inc., 2.0.2636.18458] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Runtime\2.0.2677.38455__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2677.38455] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Shared\2.0.2636.18443__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18443] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.2677.38474__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2677.38474] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.2636.18443__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18443] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.2677.38582__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2677.38582] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.2636.18450__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18450] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.2677.38561__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2677.38561] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.2636.18449__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18449] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.2677.38603__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2677.38603] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.2636.18442__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18442] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.2677.38553__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2677.38553] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.2636.18449__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18449] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.2677.38624__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2677.38624] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.2636.18451__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18451] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.2677.38561__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2677.38561] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.2636.18449__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18449] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.2677.38689__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2677.38689] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.2636.18459__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18459] [C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.2636.18451__90ba9c70f846762e\APM.Foundation.dll] [ATI Technologies Inc., 2.0.2636.18451] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\47b2e1d9030f551f685dfea0b618e7fd\System.Web.ni.dll] [Microsoft Corporation, 2.0.50727.3074 (QFE.050727-3000)] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.2677.38672__90ba9c70f846762e\CLI.Component.Systemtray.dll] [ATI Technologies Inc., 2.0.2677.38672] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.2636.18437__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll] [ATI Technologies Inc., 2.0.2636.18437] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.2677.38428__90ba9c70f846762e\CLI.Component.Wizard.dll] [ATI Technologies Inc., 2.0.2677.38428] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.2636.18435__90ba9c70f846762e\CLI.Component.Client.Shared.dll] [ATI Technologies Inc., 2.0.2636.18435] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.2636.18438__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll] [ATI Technologies Inc., 2.0.2636.18438] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.2636.18458__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll] [ATI Technologies Inc., 2.0.2636.18458] [C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.2677.38434__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2677.38434] [C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll] [, 2.0.2477.16262] [C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.2636.18442__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll] [ATI Technologies Inc., 2.0.2636.18442] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.2677.38695__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2677.38695] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.2677.38631__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2677.38631] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.2677.38442__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2677.38442] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray.resources\2.0.2677.38672_zh-CHS_90ba9c70f846762e\CLI.Component.Systemtray.resources.dll] [ATI Technologies Inc., 2.0.2677.38672] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.2636.18459__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2636.18459] [C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll] [ , 1.0.0.0] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.2677.38646__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2677.38646] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.2677.38475__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2677.38475] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.2677.38455__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2677.38455] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Wizard\2.0.2677.38667__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2677.38667] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.2677.38407__90ba9c70f846762e\CLI.Component.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38407] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.2636.18437__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll] [ATI Technologies Inc., 2.0.2636.18437] [C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.2636.18439__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll] [ATI Technologies Inc., 2.0.2636.18439] [C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.2677.38412__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38412] [C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.2636.18441__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll] [ATI Technologies Inc., 2.0.2636.18441] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.2677.38701__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll] [Advanced Mirco Devices, Inc., 2.0.2677.38701] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.2677.38421__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38421] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.2677.38462__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38462] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.2677.38583__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38583] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.2677.38554__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38554] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.2677.38604__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll] [Advanced Micro Devices, Inc., 2.0.2677.38604] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Dashboard\2.0.2677.38661__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38661] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.2677.38625__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38625] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.2677.38469__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38469] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.2677.38563__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38563] [C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard\2.0.2677.38689__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2677.38689] [PID: 4036 / CHAO HOME][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe] [TOSHIBA CORPORATION., 4, 1, 1323, 0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3392 / CHAO HOME][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe] [TOSHIBA CORPORATION., 5.10.05.70426] [C:\Windows\system32\TosBtECCAPI.dll] [TOSHIBA CORPORATION., 3.00.6510.0] [C:\Windows\system32\TosBtAPI.dll] [TOSHIBA CORPORATION., 5.00.7522.0] [C:\Windows\system32\TosBdAPI.dll] [TOSHIBA CORPORATION., 4, 1, 1612, 0] [C:\Windows\system32\LCWizard.dll] [TOSHIBA CORPORATION, 5.0.0.ALL] [C:\Windows\system32\TosSndAPI.dll] [TOSHIBA CORPORATION., 5.00.7117.0] [C:\Windows\system32\TosSndPlug.dll] [TOSHIBA CORPORATION., 5.00.7227.ALL] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3536 / CHAO HOME][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe] [TOSHIBA CORPORATION., 5.00.7227.ALL] [C:\Windows\system32\TosAvctAPI.dll] [TOSHIBA CORPORATION., 5.00.6607.0] [C:\Windows\system32\TosBtAPI.dll] [TOSHIBA CORPORATION., 5.00.7522.0] [C:\Windows\system32\TosBdAPI.dll] [TOSHIBA CORPORATION., 4, 1, 1612, 0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2860 / CHAO HOME][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe] [TOSHIBA CORPORATION., 5, 1, 0, 7130] [C:\Windows\system32\TosBtAPI.dll] [TOSHIBA CORPORATION., 5.00.7522.0] [C:\Windows\system32\TosBdAPI.dll] [TOSHIBA CORPORATION., 4, 1, 1612, 0] [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosNtfs.dll] [TOSHIBA Corporation, 1, 4, 0, 188] [C:\Windows\system32\LCWizard.dll] [TOSHIBA CORPORATION, 5.0.0.ALL] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 4296 / CHAO HOME][C:\Windows\system32\wbem\unsecapp.exe] [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 4360 / SYSTEM][C:\Windows\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 6.0.6001.18226 (vistasp1_gdr.090302-1506)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 4564 / CHAO HOME][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe] [TOSHIBA CORPORATION., 5.00.3018.ALL] [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.dll] [TOSHIBA corporation, 1, 0, 0, 0] [C:\Windows\system32\TosBtAPI.dll] [TOSHIBA CORPORATION., 5.00.7522.0] [C:\Windows\system32\TosBdAPI.dll] [TOSHIBA CORPORATION., 4, 1, 1612, 0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 5276 / SYSTEM][C:\Windows\system32\taskeng.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 5812 / CHAO HOME][C:\Program Files\Internet Explorer\IEUser.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 5896 / CHAO HOME][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 7.00.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [D:\360safe\safemon\safemon.dll] [360.CN, 5, 0, 0, 1021] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.77] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Windows\system32\Macromed\Flash\Flash10b.ocx] [Adobe Systems, Inc., 10,0,22,87] [C:\Windows\system32\atiumdag.dll] [ATI Technologies Inc. , 7.14.10.0496] [C:\Windows\system32\atiumdva.dll] [ATI Technologies Inc. , 7.14.10.0155] [C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll] [Thunder Networking Technologies,LTD, 5.0.8.179] [PID: 5036 / CHAO HOME][C:\Program Files\China Mobile\Fetion\FetionFX.exe] [China Mobile, 3.5.1170.0] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\c068708e16abf0be77a21b9f29817d83\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3074 (QFE.050727-3000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\57ac9ba5419d6bf4b79f2979b0755428\System.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\19d027c3381110e60c003f2c8bd307ee\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6d75eb3ca10a514754f5e87cc2134f07\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Program Files\China Mobile\Fetion\ImpsControls.dll] [China Mobile, 3.0.0.0] [C:\Program Files\China Mobile\Fetion\ImpsPcBase.dll] [China Mobile, 3.0.0.0] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\38b9d09539b67b08ee996db6c71f8a9b\System.Xml.ni.dll] [Microsoft Corporation, 2.0.50727.3074 (QFE.050727-3000)] [C:\Program Files\China Mobile\Fetion\ImpsClientBase.dll] [China Mobile, 3.0.0.0] [C:\Program Files\China Mobile\Fetion\ImpsClientUtils.dll] [China Mobile, 3.0.0.0] [C:\Program Files\China Mobile\Fetion\ImpsClientResource.dll] [China Mobile, 3.0.0.0] [C:\Program Files\China Mobile\Fetion\ImpsClientCore.dll] [China Mobile, 3.0.0.0] [C:\Program Files\China Mobile\Fetion\ImpsBase.dll] [China Mobile, 3.0.0.0] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\982c005f97eacba888acdda322c49362\System.Configuration.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Program Files\China Mobile\Fetion\AxInterop.AvatarLib.dll] [, 1.0.0.0] [C:\PROGRA~1\CHINAM~1\Fetion\AvatarX.ocx] [China Mobile, 1.0.0.3] [c:\program files\china mobile\fetion\avatar\Avapple.dll] [China Mobile, 0, 9, 8, 6] [c:\program files\china mobile\fetion\avatar\TinyFlash.dll] [中秀明天, 1, 0, 0, 2] [C:\Program Files\China Mobile\Fetion\Interop.AvatarLib.dll] [ , 1.0.0.0] [C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\e66c5af83e8fb89b4dc5547ef663f4c8\Accessibility.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\Program Files\China Mobile\Fetion\NCindy.dll] [China Mobile, 3.0.0.0] [C:\Program Files\China Mobile\Fetion\Interop.DynamicGifCtlLib.dll] [ , 1.0.0.0] [C:\Program Files\China Mobile\Fetion\ImpsPcCommLayer.dll] [China Mobile, 3.0.0.0] [C:\Program Files\China Mobile\Fetion\ImpsClientData.dll] [China Mobile, 3.0.0.0] [C:\Program Files\China Mobile\Fetion\SQLite.Interop.DLL] [, 1.0.44.0] [C:\Program Files\China Mobile\Fetion\Interop.WMPLib.dll] [ , 1.0.0.0] [C:\Program Files\China Mobile\Fetion\AxInterop.WMPLib.dll] [, 1.0.0.0] [C:\Windows\system32\Macromed\Flash\Flash10b.ocx] [Adobe Systems, Inc., 10,0,22,87] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.77] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Windows\system32\freeime.ime] [极点五笔工作室, 6.5.0.0] [C:\Program Files\China Mobile\Fetion\sensmon.dll] [China Mobile, 1.0.0.1] [PID: 1992 / SYSTEM][C:\Program Files\MSN Messenger\usnsvc.exe] [Microsoft Corporation, 8.1.0178.00] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 4240 / CHAO HOME][C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe] [Adobe Systems, Inc., 10,0,22,87] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 4988 / CHAO HOME][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 7.00.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [D:\360safe\safemon\safemon.dll] [360.CN, 5, 0, 0, 1021] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.77] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Windows\system32\Macromed\Flash\Flash10b.ocx] [Adobe Systems, Inc., 10,0,22,87] [C:\Windows\system32\atiumdag.dll] [ATI Technologies Inc. , 7.14.10.0496] [C:\Windows\system32\atiumdva.dll] [ATI Technologies Inc. , 7.14.10.0155] [C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll] [Thunder Networking Technologies,LTD, 5.0.8.179] [C:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll] [Thunder Networking Technologies,LTD, 6.0.4.179] [PID: 3812 / CHAO HOME][C:\Windows\system32\conime.exe] [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 5032 / CHAO HOME][C:\Windows\explorer.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 1312 / CHAO HOME][C:\Program Files\WinRAR\WinRAR.exe] [N/A, ] [C:\Windows\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 5864 / CHAO HOME][C:\Users\CHAOHO~1\AppData\Local\Temp\Rar$EX00.274\SREngLdr.EXE] [Smallfrogs Studio, 2.8.1.1279] [PID: 1520 / CHAO HOME][C:\Users\CHAOHO~1\AppData\Local\Temp\Rar$EX00.274\SRE7180fa33.EXE] [Smallfrogs Studio, 2.8.1.1279] [C:\Users\CHAOHO~1\AppData\Local\Temp\Rar$EX00.274\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15] ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["%SystemRoot%\hh.exe" %1] .HLP OK. [%SystemRoot%\winhlp32.exe %1] .INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .VBS OK. ["%SystemRoot%\System32\WScript.exe" "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ::1 localhost ================================== 进程特权扫描 N/A ================================== 计划任务 [已启用] \\RunAsStdUser Task28986 C:\Program Files\Rising\Rav\RSTRAY.EXE [已启用] \\SogouImeMgr C:\PROGRA~1\SOGOUI~1\420~1.265\PINYIN~1.EXE /S [已启用] \\{99CBCC4C-1547-4354-A2D9-E02A11C9071A} C:\Windows\system32\pcalua.exe -a "C:\Users\CHAO HOME\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4ST4QHAG\OnefySetup[1].exe" -d C:\Windows\system32 [已禁用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) N/A [已启用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) N/A [已启用] \Microsoft\Windows\Bluetooth\UninstallDeviceTask BthUdTask.exe $(Arg0) [已启用] \Microsoft\Windows\CertificateServicesClient\SystemTask N/A [已启用] \Microsoft\Windows\CertificateServicesClient\UserTask N/A [已启用] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam N/A [已启用] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator %SystemRoot%\System32\wsqmcons.exe [已启用] \Microsoft\Windows\Customer Experience Improvement Program\OptinNotification %SystemRoot%\System32\wsqmcons.exe -n 0x1C577FA2B69CAD0 [已启用] \Microsoft\Windows\Defrag\ManualDefrag %windir%\system32\defrag.exe \\?\Volume{cfda306a-1bf2-11de-9c8d-806e6f6e6963}\ [已启用] \Microsoft\Windows\Defrag\ScheduledDefrag %windir%\system32\defrag.exe -c -i -g [已启用] \Microsoft\Windows\Media Center\ehDRMInit %SystemRoot%\ehome\ehPrivJob.exe /DRMInit [已启用] \Microsoft\Windows\Media Center\mcupdate %SystemRoot%\ehome\mcupdate $(Arg0) -gc [已启用] \Microsoft\Windows\Media Center\OCURActivate %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate [已启用] \Microsoft\Windows\Media Center\OCURDiscovery %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery [已启用] \Microsoft\Windows\Media Center\UpdateRecordPath %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) [已启用] \Microsoft\Windows\MobilePC\HotStart N/A [已启用] \Microsoft\Windows\MobilePC\TMM N/A [已启用] \Microsoft\Windows\MUI\LPRemove %windir%\system32\lpremove.exe [已启用] \Microsoft\Windows\Multimedia\SystemSoundsService N/A [已启用] \Microsoft\Windows\NetworkAccessProtection\NAPStatus UI N/A [已启用] \Microsoft\Windows\Shell\CrawlStartPages N/A [已禁用] \Microsoft\Windows\SideShow\AutoWake N/A [已启用] \Microsoft\Windows\SideShow\GadgetManager N/A [已禁用] \Microsoft\Windows\SideShow\SessionAgent N/A [已禁用] \Microsoft\Windows\SideShow\SystemDataProviders N/A [已启用] \Microsoft\Windows\SystemRestore\SR %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation [已启用] \Microsoft\Windows\Tcpip\IpAddressConflict1 rundll32 ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem [已启用] \Microsoft\Windows\Tcpip\IpAddressConflict2 rundll32 ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem [已启用] \Microsoft\Windows\UPnP\UPnPHostConfig sc.exe config upnphost start= auto [已启用] \Microsoft\Windows\Windows Error Reporting\QueueReporting %windir%\system32\wermgr.exe -queuereporting [已禁用] \Microsoft\Windows\WindowsBackup\AutomaticBackup %systemroot%\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup [已禁用] \Microsoft\Windows\WindowsBackup\CheckFull sdclt.exe /CHECKFULL [已禁用] \Microsoft\Windows\WindowsBackup\Windows Backup Monitor sdclt.exe /DETECTFAILURE [已启用] \Microsoft\Windows\Wired\GatherWiredInfo %windir%\system32\gatherWiredInfo.vbs [已启用] \Microsoft\Windows\Wireless\GatherWirelessInfo %windir%\system32\gatherWirelessInfo.vbs [已启用] \SONY\VAIO Update\VAIO Update "C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe" /Stationary [已启用] \SONY\WSSU\WSSU C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe ================================== Windows 安全更新检查 KB949810, Office 正版增值计划通知 (KB949810)-CHS KB949810, Windows Live 软件包 KB967642, 2007 Microsoft Office system 更新 (KB967642) KB953195, 2007 Microsoft Office 套件 Service Pack 2 (SP2) KB948465, Windows Vista Service Pack 2 (KB948465) KB963707, 用于 .NET Framework Assistant 1.0 x86 的 .NET Framework 3.5 Service Pack 1 更新程序 (KB963707) KB968389, Windows Vista 更新程序 (KB968389) KB944036, 用于 Windows Vista 的 Internet Explorer 8 ================================== API HOOK N/A ================================== 隐藏进程 N/A ================================== [/CODE]