用超级兔子查的

找到未知IE插件：C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper2006812_4825.dll

Win Survey (MSIBM)
桌面媒体
estAlive


日志
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run           

+ BigDog303    Vimicro    Vimicro    c:\windows\vm303_sti.exe

+ EZEJMNAP    ThinkPad EasyEject Support Application    Lenovo Group Limited    c:\program files\thinkpad\utilities\ezejmnap.exe

+ igfxhkcmd    hkcmd Module    Intel Corporation    c:\windows\system32\hkcmd.exe

+ igfxpers    persistence Module    Intel Corporation    c:\windows\system32\igfxpers.exe

+ igfxtray    igfxTray Module    Intel Corporation    c:\windows\system32\igfxtray.exe

+ IMEKRMIG6.1            File not found: ;

+ IMJPMIG8.1            File not found: ;

+ MSPY2002            c:\windows\system32\ime\pintlgnt\imscinst.exe

+ RavTask    RavTimer    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rav\ravtask.exe

+ RfwMain    Rising Personal FireWall Main Program    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rfw\rfwmain.exe

+ SunJavaUpdateSched    Java(TM) 2 Platform Standard Edition binary    Sun Microsystems, Inc.    c:\program files\java\jre1.5.0_03\bin\jusched.exe

+ TPHOTKEY            c:\program files\lenovo\pkgmgr\hotkey\tphkmgr.exe

+ TPKMAPHELPER    Keyboard Customizer    Lenovo    c:\program files\thinkpad\utilities\tpkmapap.exe

C:\Documents and Settings\cll\「开始」菜单\程序\启动           

+ 腾讯QQ.lnk    QQ    TENCENT    c:\program files\tencent\qq\qq.exe

HKCU\Software\Microsoft\Windows\CurrentVersion\Run           

+ Xplus_spy            File not found: C:\Program Files\Xplus\xvcclip.exe

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved           

+ Display Panning CPL Extension            File not found: deskpan.dll

+ HyperTerminal Icon Ext    HyperTerminal Applet Library    Hilgraeve, Inc.    c:\windows\system32\hticons.dll

+ RISING    Rising Shell Ext Module    Beijing Rising Technology Co., Ltd.   

c:\windows\system32\ravext.dll

+ SafeGuard PrivateDisk extensionSafeGuard PrivateDisk Shell Extension DLLUtimaco Safeware AGc:\program files\ibm thinkvantage\safeguard privatedisk\pdshell.dll

+ VDMSound LaunchPadVDMSound LaunchPad Shell Extensionc:\program files\vdmsound\launchpad.dll

+ WinRAR shell extensionc:\program files\winrar\rarext.dll

HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved

+ Web 文件夹c:\program files\common files\microsoft shared\web folders\msonsext.dll

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects

+ MyIEHelper ClassFile not found: C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper2006812_4825.dll

HKLM\Software\Microsoft\Internet Explorer\Extensions

+ 更新 ThinkPad 软件Software InstallerLenovo Group Limitedc:\program files\lenovo\pkgmgr\\pkgmgr.exe

+ 启动迅雷Thunder Networking Technologies,LTDc:\program files\thunder network\thunder\thunder.exe

+ 腾讯QQQQTENCENTc:\program files\tencent\qq\qq.exe

Task Scheduler

+ PMTask.jobc:\program files\thinkpad\utilities\pwmidtsk.exe

HKLM\System\CurrentControlSet\Services

+ AcPrfMgrSvcc:\program files\thinkpad\connectutilities\acprfmgrsvc.exe

+ AcSvcThinkVantage Access Connections Main Service ModuleLenovoc:\program files\thinkpad\connectutilities\acsvc.exe

+ Diskeeper“Diskeeper 管理器”用于存储有关网络上 Diskeeper 数据的位置。Diskeeper Corporationc:\program files\diskeeper corporation\diskeeper\dkservice.exe

+ EvtEngManages the event trace messages for all the components of Intel(R) PROSet/Wireless software.Intel Corporationc:\program files\intel\wireless\bin\evteng.exe

+ IBMPMSVCThinkPad Power Management ServiceLenovo.c:\windows\system32\ibmpmsvc.exe

+ IPSSVCIPS Core ServiceLenovo Group Limitedc:\windows\system32\ipssvc.exe

+ RegSrvcIntel(R) PROSet/Wireless Registry ServiceIntel Corporationc:\program files\intel\wireless\bin\regsrvc.exe

+ RfwServiceRising Personal Firewall ServiceBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\rfwsrv.exe

+ RsCCenterCCenterBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ccenter.exe

+ RsRavMonRavMondBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ravmond.exe

+ S24EventMonitorWireless Management Service for Intel(R) PROSet/WirelessIntel Corporation c:\program files\intel\wireless\bin\s24evmon.exe

+ TPHDEXLGSVCThinkVantage Active Protection System - HDD Logger ModuleLenovo.c:\windows\system32\tphdexlg.exe

+ TpKmpSVCc:\windows\system32\tpkmpsvc.exe

+ TSSCoreServiceibmtcsd ApplicationIBMc:\program files\ibm thinkvantage\client security solution\ibmtcsd.exe

+ TVT Backup Servicerrservice Modulec:\program files\ibm thinkvantage\rescue and recovery\rrservice.exe

+ TVT Schedulertvtsched Modulec:\program files\ibm thinkvantage\common\scheduler\tvtsched.exe

+ UCLauncherServicec:\program files\thinkvantage\systemupdate\uclauncherservice.exe

HKLM\System\CurrentControlSet\Services

+ ac97intcIntel(r) Integrated Controller Hub Audio DriverIntel Corporationc:\windows\system32\drivers\ac97intc.sys

+ ADIHdAudAddServiceHigh Definition Audio Function Driver(Release Candidate 1)Analog Devices, Inc.c:\windows\system32\drivers\adihdaud.sys

+ AEAudioServiceAudio Noise Filtering DriverAndrea Electronics Corporationc:\windows\system32\drivers\aeaudio.sys

+ AegisPAEGIS Protocol (IEEE 802.1x) v3.4.9.0Meetinghouse Data Communicationsc:\windows\system32\drivers\aegisp.sys

+ ANCIBM Access Connections - ANCIBM Corp.c:\windows\system32\drivers\anc.sys

+ atmeltpmAtmel TPM DriverAtmel, Inc.c:\windows\system32\drivers\atmeltpm.sys

+ BaseTDIbasetdiBeijing Rising Technology Co., Ltd.c:\windows\system32\drivers\basetdi.sys

+ CmdIdeCMD PCI IDE Bus DriverCMD Technology, Inc.c:\windows\system32\drivers\cmdide.sys

+ E100BNDIS 5 driverIntel Corporationc:\windows\system32\drivers\e100b325.sys

+ e1expressIntel(R) PRO/1000 Adapter NDIS 5.1 deserialized driverIntel Corporationc:\windows\system32\drivers\e1e5132.sys

+ EGATHDRVIBM eGatherer Kernel ModuleIBM Corporationc:\windows\system32\egathdrv.sys

+ ExpScanerExpScan.sysc:\program files\rising\rav\expscan.sys

+ HDAudBusHigh Definition Audio Bus Driver v1.0aWindows (R) Server 2003 DDK providerc:\windows\system32\drivers\hdaudbus.sys

+ HookContTDI HOOK DriverRising tech Co. ltdc:\program files\rising\rav\hookcont.sys

+ HookRegc:\program files\rising\rav\hookreg.sys

+ HookSysHooksysRisingc:\program files\rising\rav\hooksys.sys

+ HookUrlHookUrlBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\hookurl.sys

+ HSF_DPVHSF_DP driverConexant Systems, Inc.c:\windows\system32\drivers\hsx_dpv.sys

+ HSXHWAZLHSF_HWAZL WDM driverConexant Systems, Inc.c:\windows\system32\drivers\hsxhwazl.sys

+ ialmIntel Graphics Miniport DriverIntel Corporationc:\windows\system32\drivers\ialmnt5.sys

+ iaStorIntel Matrix Storage Manager driverIntel Corporationc:\windows\system32\drivers\iastor.sys

+ ibmfilterIBM Rescue and Recovery filter driverIBMc:\windows\system32\drivers\ibmfilter.sys

+ IBMPMDRVThinkPad Power Management DriverLenovo.c:\windows\system32\drivers\ibmpmdrv.sys

+ IBMTPCHKc:\windows\system32\drivers\ibmbldid.sys

+ mdmxsdkDiagnostic Interface DRIVERConexantc:\windows\system32\drivers\mdmxsdk.sys

+ MEMSCANMemScan Driver瑞星软件有限公司c:\program files\rising\rav\memscan.sys

+ mProcRsRising Personal FireWall  mprocrs.sysBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\mprocrs.sys

+ npkcryptnProtect KeyCrypt DriverINCA Internet Co., Ltd.c:\program files\tencent\qq\npkcrypt.sys

+ NSCIRDANSC Fast Infrared Driver.National Semiconductor Corporationc:\windows\system32\drivers\nscirda.sys

+ nvNVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73 NVIDIA Corporationc:\windows\system32\drivers\nv4_mini.sys

+ PrivateDiskSafeGuard? PrivateDisk DriverUtimaco Safeware AGc:\program files\ibm thinkvantage\safeguard privatedisk\privatediskm.sys

+ PROCDDIPS Helper DriverLenovo Group Limitedc:\windows\system32\drivers\procdd.sys

+ psaddSMI DriverLenovoc:\windows\system32\drivers\psadd.sys

+ PtilinkDirect Parallel Link DriverParallel Technologies, Inc.c:\windows\system32\drivers\ptilink.sys

+ PxHelp20Px Engine Device Driver for Windows 2000/XPSonic Solutionsc:\windows\system32\drivers\pxhelp20.sys

+ RsFwDrvnt_fwdrvBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\rsfwdrv.sys

+ s24transWLAN 传输Intel Corporationc:\windows\system32\drivers\s24trans.sys

+ SecdrvSafeDisc driverc:\windows\system32\drivers\secdrv.sys

+ smi2SMI BIOS driverIBM Corp.c:\program files\smi2\smi2.sys

+ TDSMAPIc:\windows\system32\drivers\tdsmapi.sys

+ Tp4TrackPS/2 TrackPoint Mouse Filter DriverLenovo Group Limitedc:\windows\system32\drivers\tp4track.sys

+ TPPWRIFc:\windows\system32\drivers\tppwrif.sys

+ TSMAPIPc:\windows\system32\drivers\tsmapip.sys

+ vusbserc:\windows\system32\drivers\vusbser.sys

+ w39n51Intel? Wireless LAN DriverIntel? Corporationc:\windows\system32\drivers\w39n51.sys

+ winachsfHSF_CNXT driverConexant Systems, Inc.c:\windows\system32\drivers\hsx_cnxt.sys

+ ZSMC303Video streaming and Capture Device DriverVimicro Corporationc:\windows\system32\drivers\usbvm303.sys

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify

+ ACNotifyThinkVantage Access Connections Notify componentLenovoc:\program files\thinkpad\connectutilities\acnotify.dll

+ igfxcuiigfxdev ModuleIntel Corporationc:\windows\system32\igfxdev.dll

+ tpfnf2c:\windows\system32\notifyf2.dll

+ tphotkeyc:\windows\system32\tphklock.dll