HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ NvCplDaemonNVIDIA Display Properties ExtensionNVIDIA Corporationc:\windows\system32\nvcpl.dll
+ RavTaskRavTimerBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ravtask.exe
+ SKYNET Personal FireWall天网防火墙个人版广州众达天网技术有限公司c:\program files\skynet\firewall\pfw.exe
+ thunder_mini三代科技 版权所有 (C) 2004 - 2005深圳市三代科技开发有限公司d:\program files\maxthon\thundermini\thundermini.exe
C:\Documents and Settings\All Users\「开始」菜单\程序\启动
+ Adobe Gamma Loader.lnkAdobe Gamma LoaderAdobe Systems, Inc.c:\program files\common files\adobe\calibration\adobe gamma loader.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
+ Rising Execute File Exts hookRising Shell Ext ModuleBeijing Rising Technology Co., Ltd.c:\windows\system32\ravext.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ Adobe.Acrobat.ContextMenuAdobe Acrobat Context MenuAdobe Systems Inc.c:\program files\adobe\acrobat 7.0\acrobat elements\contextmenu.dll
+ AlcoholShellExAXShlEx.dllAlcohol Soft Development Teamc:\program files\alcohol soft\alcohol 120\axshlex.dll
+ Desktop ExplorerNVIDIA Desktop Explorer, Version 105.25 NVIDIA Corporationc:\windows\system32\nvshell.dll
+ Desktop Explorer MenuNVIDIA Desktop Explorer, Version 105.25 NVIDIA Corporationc:\windows\system32\nvshell.dll
+ Display Panning CPL ExtensionFile not found: deskpan.dll
+ HyperTerminal Icon ExtHyperTerminal Applet LibraryHilgraeve, Inc.c:\windows\system32\hticons.dll
+ NvCpl DesktopContext ClassNVIDIA Display Properties ExtensionNVIDIA Corporationc:\windows\system32\nvcpl.dll
+ nView Desktop Context MenuNVIDIA Desktop Explorer, Version 105.25 NVIDIA Corporationc:\windows\system32\nvshell.dll
+ Play on my TV helperNVIDIA Display Properties ExtensionNVIDIA Corporationc:\windows\system32\nvcpl.dll
+ RISINGRising Shell Ext ModuleBeijing Rising Technology Co., Ltd.c:\windows\system32\ravext.dll
+ WinRAR shell extensionc:\program files\winrar\rarext.dll
HKLM\Software\Classes\Folder\Shellex\ColumnHandlers
+ PDF Shell ExtensionPDF Shell ExtensionAdobe Systems, Inc.c:\program files\adobe\acrobat 7.0\activex\pdfshell.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects
+ AcroIEHlprObj ClassAdobe Acrobat IE Helper Version 7.0 for ActiveXAdobe Systems Incorporatedc:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll
+ AcroIEToolbarHelper ClassAdobe IE pluginAdobe Systems Incorporatedc:\program files\adobe\acrobat 7.0\acrobat\acroiefavclient.dll
+ FlpLauncher ClassFlpLaunch Modulec:\program files\e-book systems\flipviewer\fplaunch.dll
+ ThunderIEHelper Classxunleibho Modulec:\windows\system32\xunleibho_v4.dll
+ XBTP05119 ClassIE ToolbarIE Toolbarc:\windows\downloaded program files\bysoo.dll
HKLM\Software\Microsoft\Internet Explorer\Toolbar
+ FlashGet BarFlashGet IE BarAmaze Softc:\program files\flashget\fgiebar.dll
HKLM\Software\Microsoft\Internet Explorer\Extensions
+ FlashGetFlashGetAmaze Softc:\program files\flashget\flashget.exe
+ 浩方对战平台浩方对战平台上海浩方在线信息技术有限公司d:\tools\hfgame3\gameclient.exe
+ 易趣购物File not found: http://click2.ad4all.net/url2/urlmanage/url.asp?id=5
HKLM\System\CurrentControlSet\Services
+ Imap Burning ControlThis service will create the enviroment needed for Burning which is need via Imapi.c:\windows\svchost32.exe
+ McAfeeFrameworkShared component framework for McAfee productsNetwork Associates, Inc.c:\program files\network associates\common framework\frameworkservice.exe
+ NVSvcProvides system and desktop level support to the NVIDIA display driverNVIDIA Corporationc:\windows\system32\nvsvc32.exe
+ RsCCenterCCenterBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ccenter.exe
+ RsRavMonRavMondBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ravmond.exe
+ win Management Player Driver为winnt Media Player提供加载进程及为其他的移动媒体,驱动程序和库提供基层安全协议服务。File not found: C:\WINDOWS\server.exe
HKLM\System\CurrentControlSet\Services
+ a347busPlug and Play BIOS Extension c:\windows\system32\drivers\a347bus.sys
+ a347scsiSCSI miniport c:\windows\system32\drivers\a347scsi.sys
+ ac97intcIntel(r) Integrated Controller Hub Audio DriverIntel Corporationc:\windows\system32\drivers\ac97intc.sys
+ atapic:\windows\system32\drivers\atapi.sys
+ BaseTDIbasetdiBeijing Rising Technology Co., Ltd.c:\windows\system32\drivers\basetdi.sys
+ BrParBrother Parallel class Driver version 1.01Brother Industries Ltd.c:\windows\system32\drivers\brpar.sys
+ ExpScanerExpScan.sysc:\program files\rising\rav\expscan.sys
+ HookContTDI HOOK DriverRising tech Co. ltdc:\program files\rising\rav\hookcont.sys
+ HookRegc:\program files\rising\rav\hookreg.sys
+ HookSysHooksysRisingc:\program files\rising\rav\hooksys.sys
+ IntelC51Modem DSP DriverIntel Corporationc:\windows\system32\drivers\intelc51.sys
+ IntelC52Modem CP DriverIntel Corporationc:\windows\system32\drivers\intelc52.sys
+ IntelC53Modem AFE DriverIntel Corporationc:\windows\system32\drivers\intelc53.sys
+ kmsinputc:\windows\system32\drivers\kmsinput.sys
+ MEMSCANMemScan Driver瑞星软件有限公司c:\program files\rising\rav\memscan.sys
+ mohfiltFilter Driver to Support Modem-on-HoldIntel Corporationc:\windows\system32\drivers\mohfilt.sys
+ npkcryptnProtect KeyCrypt DriverINCA Internet Co., Ltd.d:\program files\tencent\qq\tmdlls\npkcrypt.sys
+ NPPTNT2nProtect NPSC Kernel Mode Driver for NTINCA Internet Co., Ltd.c:\windows\system32\npptnt2.sys
+ nvNVIDIA Compatible Windows 2000 Miniport Driver, Version 77.72 NVIDIA Corporationc:\windows\system32\drivers\nv4_mini.sys
+ PtilinkDirect Parallel Link DriverParallel Technologies, Inc.c:\windows\system32\drivers\ptilink.sys
+ rtl8139Realtek RTL8139 NDIS 5.0 DriverRealtek Semiconductor Corporationc:\windows\system32\drivers\rtl8139.sys
+ SecdrvSafeDisc driverc:\windows\system32\drivers\secdrv.sys
+ SKNFWc:\windows\system32\drivers\sknfw.sys
HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors
+ Adobe PDF PortAcrobat ? PDF PortAdobe Systems Incorporated.c:\windows\system32\adobepdf.dll
+ hpzsnt09HPc:\windows\system32\hpzsnt09.dll
