无法关机，请帮我看看日志！！！ bbs.ikaka.com

liliok - 2011-7-29 20:45:00

经常无法关机，停留在“WINDOWS正在关机”，请帮我看看日志，谢谢！

[CODE]
2011-07-29,20:37:16
System Repair Engineer 2.8.4.1331
Smallfrogs (http://www.KZTechs.com)
Windows XP Professional Service Pack 3 (Build 2600) - 管理权限用户 - 完整功能
以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
进程特权扫描
计划任务
Windows 安全更新检查
API HOOK
隐藏进程

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Component Publisher]
<aliim><F:\旺旺\AliIM.exe /run:auto> [(Verified)Alibaba (China) Co. Ltd.]
<rulestarter><%systemroot%\system32\RTRsca.exe> [C-Eagle[冷鹰安全防御团队]]
<rulestarter2><%systemroot%\system32\rulestarter.exe> [C-Eagle]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<HDAudDeck><C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1> [File is missing]
<wdcertm_ccb><C:\WINDOWS\system32\WatchData\Watchdata CCB CSP v3.2\WDCertM_CCB.exe> [ Beijing WatchData System Co., Ltd.]
<USBKeyTools.exe><C:\Program Files\CCBComponents\HDZB\USBKeyTools.exe> [北京华大智宝电子系统有限公司]
<CCBCertificate><C:\Program Files\CCBComponents\DMWZ\CCBCertificate.exe> []
<IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload> [(Verified)Microsoft Corporation]
<ATIModeChange><Ati2mdxx.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<StartCCC><"C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun> [File is missing]
<DriverGenius><; D:\DriverGenius2011\DriverGenius.exe -static> [(Verified)Mydrivers Information Technology Co., Ltd (ZhengZhou)]
<Stormtray><; F:\工具软件\STORM2~1.06\Stormtray.exe /Start> [(Verified)北京暴风网际]
<Xdict><; F:\工具软件\PowerWord2011.50000.5000\PowerWordPE\Xdict.exe auto_run> [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<PostBootReminder><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher]
<CDBurn><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher]
<WebCheck><C:\WINDOWS\system32\webcheck.dll> [(Verified)Microsoft Windows]
<SysTray><C:\WINDOWS\system32\stobject.dll> [(Verified)Microsoft Windows Component Publisher]
<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll> [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
<WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
<WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
<WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
<WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
<WinlogonNotify: ScCertProp><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
<WinlogonNotify: Schedule><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
<WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
<WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
<WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
<WinlogonNotify: wlballoon><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]
<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<Internet Explorer 版本更新><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
<Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
<Browser Customizations><"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
<浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
<Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
<N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install> [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Control Panel\Desktop]
<SCRNSAVE.EXE><C:\WINDOWS\system32\Funshion.scr> []
==================================
启动文件夹
[宽带连接]
<C:\Documents and Settings\lenovo\「开始」菜单\程序\启动\宽带连接.lnk --> [File is missing]><N>
==================================
服务
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
<C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[Help and Support / helpsvc][Stopped/Disabled]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll><N/A>
[HDZB Comm Service For V2.0 / HZ_CommSrv][Running/Auto Start]
<C:\WINDOWS\system32\HZ_CommSrv.exe><华大智宝电子系统有限公司>
[VIA Karaoke digital mixer Service / KaraokeService][Stopped/Auto Start]
<C:\WINDOWS\system32\KaraokeSer.exe><VIA Technologies, Inc.>
[PIPIStartSvr / PIPIStartSvr][Stopped/Disabled]
<C:\Program Files\pipi\PIPIStartSvr.exe><(File is missing)>
[Rsd Service / RsMgrSvc][Running/Auto Start]
<"C:\Program Files\Rising\RSD\RsMgrSvc.exe"><Beijing Rising Information Technology Co., Ltd.>
[Rav Service / RsRavMon][Running/Auto Start]
<"D:\Rising\RAV\RavMonD.exe"><Beijing Rising Information Technology Co., Ltd.>
[RFW Service / RsRFWMon][Running/Auto Start]
<"E:\Rising\RFW\RavMonD.exe"><Beijing Rising Information Technology Co., Ltd.>
[ServiceLayer / ServiceLayer][Stopped/Manual Start]
<"C:\Program Files\PC Connectivity Solution\ServiceLayer.exe"><Nokia>
[System Restore Service / srservice][Stopped/Disabled]
<C:\WINDOWS\system32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\srsvc.dll><N/A>
[WatchData ccb V3.2 / WDMonitorCCB][Running/Auto Start]
<C:\WINDOWS\system32\WatchData\Watchdata CCB CSP v3.2\WDKeyMonitorCCB.exe><Beijing WatchData System Co., Ltd.>
==================================
驱动程序
[amdide / amdide][Running/Boot Start]
<\SystemRoot\system32\drivers\amdide.sys><Advanced Micro Devices>
[AMD HwPState Processor Driver / AmdPPM][Running/System Start]
<system32\DRIVERS\AmdPPM.sys><Advanced Micro Devices>
[Apaidi / Apaidi][Running/Auto Start]
<\??\C:\WINDOWS\system32\drivers\Apaidi.sys><N/A>
[ati2mtag / ati2mtag][Running/Manual Start]
<system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[ATI Function Driver for HD Audio Service / AtiHDAudioService][Stopped/Manual Start]
<system32\drivers\AtihdXP3.sys><ATI Technologies, Inc.>
[ComputerZ / ComputerZ][Stopped/Manual Start]
<\??\F:\工具软件\Ludashi\ComputerZ.sys><360.cn>
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
<system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[hooksys / hooksys][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\Hooksys.sys><Beijing Rising Information Technology Co., Ltd.>
[HookTdi / HookTdi][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\HookTdi.sys><Beijing Rising Information Technology Co., Ltd.>
[HpqKbFilter Driver / HpqKbFiltr][Running/Manual Start]
<system32\DRIVERS\HpqKbFiltr.sys><Hewlett-Packard Development Company, L.P.>
[HyperVM / HyperVM][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\hvm.sys><Beijing Rising Information Technology Co., Ltd.>
[NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller / L1c][Running/Manual Start]
<system32\DRIVERS\l1c51x86.sys><Atheros Communications, Inc.>
[Nokia USB Phone Parent Driver / nmwcd][Stopped/Manual Start]
<system32\drivers\ccdcmb.sys><Nokia>
[Nokia USB Communication Driver / nmwcdc][Stopped/Manual Start]
<system32\drivers\ccdcmbo.sys><Nokia>
[PCCS Mode Change Filter Driver / pccsmcfd][Stopped/Manual Start]
<system32\DRIVERS\pccsmcfd.sys><Nokia>
[AMD PCNET Compatable Adapter Driver / PCnet][Stopped/Manual Start]
<system32\DRIVERS\pcntpci5.sys><AMD Inc.>
[PowerSaveZ / PowerSaveZ][Stopped/Manual Start]
<\??\F:\工具软件\Ludashi\PowerSaveZ.sys><360.cn>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[rfwaf / rfwaf][Running/Auto Start]
<\??\E:\Rising\RFW\rfwaf.sys><Beijing Rising Information Technology Co., Ltd.>
[Rising RfwARP Driver / RFWARP][Running/Auto Start]
<system32\DRIVERS\rfwarp.sys><Beijing Rising Information Technology Co., Ltd.>
[Rising RfwNdis Driver / RFWNDIS][Running/Manual Start]
<system32\DRIVERS\rfwndis.sys><Beijing Rising Information Technology Co., Ltd.>
[rfwtdi / rfwtdi][Running/Auto Start]
<\??\E:\Rising\RFW\rfwtdi.sys><Beijing Rising Information Technology Co., Ltd.>
[rsd protect / rsdsys][Running/Auto Start]
<\??\C:\WINDOWS\system32\drivers\protreg.sys><Beijing Rising Information Technology Co., Ltd.>
[rsfwdrv / rsfwdrv][Running/Auto Start]
<\??\E:\Rising\RFW\rsfwdrv.sys><Beijing Rising Information Technology Co., Ltd.>
[Service for HDMI / RTHDMIAzAudService][Running/Manual Start]
<system32\drivers\RtKHDMI.sys><Realtek Semiconductor Corp.>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[SMBALI / SMBALI][Stopped/System Start]
<system32\DRIVERS\SMBALI.sys><N/A>
[SMBHC / SMBHC][Stopped/System Start]
<system32\DRIVERS\SMBHC.sys><N/A>
[System Restore Filter Driver / SR][Stopped/Disabled]
<system32\DRIVERS\sr.sys><N/A>
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
<system32\DRIVERS\tcpip.sys><Microsoft Corporation>
[upperdev / upperdev][Stopped/Manual Start]
<system32\DRIVERS\usbser_lowerflt.sys><Nokia>
[UsbserFilt / UsbserFilt][Stopped/Manual Start]
<system32\DRIVERS\usbser_lowerfltj.sys><Nokia>
[VIA High Definition Audio Driver Service / VIAHdAudAddService][Running/Manual Start]
<system32\drivers\viahduaa.sys><VIA Technologies, Inc.>

用户系统信息：Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.1)

liliok - 2011-7-29 20:48:00

==================================
浏览器加载项
[PIPI Link Helper]
{1A3440C6-F123-4CAB-84EE-C814E1AE0D8F} <C:\WINDOWS\system32\JfCheck.dll, (Signed) PIPI Tech.>
[BitComet Helper]
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <F:\工具软件\BitComet_1.27\tools\bitcometbho.dll, (Signed) BitComet>
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <D:\office\OFFICE11\REFIEBAR.DLL, (Signed) Microsoft Corporation>
[BitComet]
{D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} <, >
[赛飞OA-OFFICE文档控件]
{01DFB4B4-0E07-4E3F-8B7A-98FD6BFF153F} <C:\WINDOWS\Downloaded Program Files\OfficeControl.ocx, 赛飞OA-OFFICE文档控件>
[QQCertificateCtrl Class]
{BAEA0695-03A4-43BB-8495-C7025E1A8F42} <C:\Program Files\Common Files\tencent\paycenter\qqcert.dll, (Signed) Tencent>
[ADODB.Recordset]
{00000535-0000-0010-8000-00AA006D2EA4} <C:\Program Files\Common Files\System\ado\msado15.dll, (Signed) Microsoft Corporation>
[赛飞OA-OFFICE文档控件]
{01DFB4B4-0E07-4E3F-8B7A-98FD6BFF153F} <C:\WINDOWS\Downloaded Program Files\OfficeControl.ocx, 赛飞OA-OFFICE文档控件>
[KuGoo3Down Control]
{162AF25B-5A2A-448E-A842-194653EF3E05} <C:\WINDOWS\system32\KuGoo3DownXControl.ocx, (Signed) N/A>
[Fade]
{16B280C5-EE70-11D1-9066-00C04FD9189D} <C:\WINDOWS\system32\Dxtmsft.dll, (Signed) Microsoft Corporation>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\LegitCheckControl.dll, (Signed) Microsoft Corporation>
[PIPI Link Helper]
{1A3440C6-F123-4CAB-84EE-C814E1AE0D8F} <C:\WINDOWS\system32\JfCheck.dll, (Signed) PIPI Tech.>
[WWPicUploadCtrl Class]
{1D63232D-4F15-4A42-890D-EE617AA1537D} <F:\旺旺\modules\1685\WWPictureUpload.dll, (Signed) Alibaba software (Shanghai) Corporation>
[iTrusPTA Class]
{1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\2.4.0.5\pta.dll, (Signed) iTruschina Co., Ltd.>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[XML DOM Document]
{2933BF90-7B36-11D2-B20E-00C04F983E60} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[IETag Factory]
{38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation>
[BitComet Helper]
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <F:\工具软件\BitComet_1.27\tools\bitcometbho.dll, (Signed) BitComet>
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[EditCtrl Class]
{488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\2.4.0.5\aliedit.dll, (Signed) >
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[WangWangX Class]
{5D09DD40-CDC4-4C56-B615-0D1E3B357C2B} <F:\旺旺\AliIMX.dll, (Signed) >
[WUWebControl Class]
{6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[MUWebControl Class]
{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation>
[CertEnroll Class]
{7978461C-CC22-48F2-BC69-02220D3E101D} <C:\WINDOWS\system32\aliedit\2.4.0.5\itrusenroll.dll, (Signed) iTruschina Co., Ltd.>
[]
{87515F61-A66C-4319-A0E0-D416CB8059E3} <, >
[Microsoft Web Browser]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[XML DOM 文档 5.0]
{88D969E5-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, (Signed) Microsoft Corporation>
[XML DOM Document 6.0]
{88D96A05-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[XML HTTP 6.0]
{88D96A0A-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[CEBViewer Control]
{898BAE86-7986-4177-B17F-B9D23C53649C} <C:\Program Files\协同办公客户端组件\apabi client\CEBViewer.ocx, founder>
[]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[]
{95B3F550-91C4-4627-BCC4-521288C52977} <, >
[DownloadManager Class]
{A8DC7D60-AD8F-491E-9A84-8FF901E7556E} <F:\工具软件\BitComet_1.27\tools\bitcometbho.dll, (Signed) BitComet>
[]
{AE460AD7-D678-43BB-B4DF-394B2D0C4E52} <, >
[QQCertificateCtrl Class]
{BAEA0695-03A4-43BB-8495-C7025E1A8F42} <C:\Program Files\Common Files\tencent\paycenter\qqcert.dll, (Signed) Tencent>
[InfosecCCBNetSign Class]
{BC96F5A4-C930-4226-ADAB-59349AE585E9} <C:\Program Files\CCBComponents\Detector\CCBNetSignCom.dll, (Signed) Infosec Technologies Co., Ltd.>
[AUDIO__MP3 Moniker Class]
{CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class]
{CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[WDCCBCtrl Class]
{CE0460F5-48BD-4DC1-A046-0BDCB5A06CEB} <C:\WINDOWS\system32\wdccb.dll, (Signed) >
[iTudouAgent.CompCls]
{CF223950-14DC-4A1D-AEDB-47C356A8B993} <F:\工具软件\iTudou\ITUDOU~1.DLL, (Signed) 土豆网>
[Microsoft Url Search Hook]
{CFBFAE00-17A6-11D0-99CB-00C04FD64497} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[]
{D18A0B52-D63C-4ED0-AFC6-C1E3DC1AF43A} <, >
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx, (Signed) Adobe Systems, Inc.>
[]
{DFEAF541-F3E1-4C24-ACAC-99C30715084A} <, >
[PlayerCtrl Class]
{E05BC2A3-9A46-4A32-80C9-023A473F5B23} <C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQMusic\bin\QQMusic\QzoneMusic.dll, (Signed) Tencent>
[]
{E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[QQPasswordCtrl Class]
{E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\Program Files\Common Files\tencent\paycenter\qqedit.dll, (Signed) Tencent>
[SSOForPTLogin2 Class]
{EAAED308-7322-4B9B-965E-171933ADD473} <C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.20\Bin\SSOAxCtrlForPTLogin.dll, (Signed) >
[TimwpDll.TimwpCheck]
{ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} <C:\PROGRA~1\Tencent\QQ\Bin\Timwp.dll, (Signed) Tencent>
[XML HTTP Request]
{ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[]
{EEA17418-02F2-4278-B6B4-E9ED642CE26A} <, >
[PPLive Lite Class]
{EF0D1A14-1033-41A2-A589-240C01EDC078} <C:\Program Files\Internet Explorer\PPLite\plugin\pplugin2.dll, (Signed) >
[XML DOM Document 3.0]
{F5078F32-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML DOM Document]
{F6D90F11-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML HTTP]
{F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[webmod Class]
{FEE3C8C5-9BEA-4079-AB36-63ECABFC7392} <C:\WINDOWS\system32\aliedit\2.4.0.5\alidcp.dll, (Signed) Alipay.com Co.,Ltd>
[&使用BitComet下载]
<res://F:\工具软件\BitComet_1.27\BitComet.exe/AddLink.htm, N/A>
[&使用BitComet下载全部链接]
<res://F:\工具软件\BitComet_1.27\BitComet.exe/AddAllLink.htm, N/A>
[&使用优蛋下载]
<F:\工具软件\UDown\getUrl.htm, N/A>
[&使用优蛋下载全部链接]
<F:\工具软件\UDown\getAllUrl.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://D:\office\OFFICE11\EXCEL.EXE/3000, N/A>

==================================
正在运行的进程
[PID: 580 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1016 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1056 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\Ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4179]
[C:\WINDOWS\system32\atiadlxx.dll] [Advanced Micro Devices, Inc., 6.14.10.1061]
[PID: 1100 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.1.2600.5922 (xpsp_sp3_qfe.091223-1723)]
[PID: 1112 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1288 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4254]
[C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2514]
[C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2563]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1308 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1380 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1420 / SYSTEM][C:\Program Files\Rising\RSD\RsMgrSvc.exe] [Beijing Rising Information Technology Co., Ltd., 1.0.0.34]
[C:\Program Files\Rising\RSD\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
[C:\Program Files\Rising\RSD\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1448 / SYSTEM][D:\Rising\RAV\RavMonD.exe] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 14]
[D:\Rising\RAV\combase.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 16]
[D:\Rising\RAV\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
[D:\Rising\RAV\scansrvp.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.12]
[D:\Rising\RAV\cnt09.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
[D:\Rising\RAV\moncomm.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.3]
[D:\Rising\RAV\MonBase.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
[D:\Rising\RAV\Rslog.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.26]
[D:\Rising\RAV\RsStore.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.12]
[D:\Rising\RAV\mondrvd.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 11]
[D:\Rising\RAV\defmon.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 62]
[D:\Rising\RAV\moncom08.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.2]
[D:\Rising\RAV\taskplug.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.2]
[D:\Rising\RAV\mondrvm.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 8]
[D:\Rising\RAV\MonRule.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 32]
[D:\Rising\RAV\FileMon.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 34]
[D:\Rising\RAV\MailMon.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 55]
[D:\Rising\RAV\rsindent.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.1.0]
[D:\Rising\RAV\cnt08.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[D:\Rising\RAV\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[D:\Rising\RAV\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
[D:\Rising\RAV\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[D:\Rising\RAV\Hooksys.dll] [Beijing Rising Information Technology Co., Ltd., 25, 0, 0, 8]
[D:\Rising\RAV\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
[D:\Rising\RAV\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
[D:\Rising\RAV\rstask.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 7]
[D:\Rising\RAV\rsstub.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[D:\Rising\RAV\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[D:\Rising\RAV\hookTdi.dll] [Beijing Rising Information Technology Co., Ltd., 25, 0, 0, 9]
[D:\Rising\RAV\BACore.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 80]
[D:\Rising\RAV\rsnetsvr.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.12]
[D:\Rising\RAV\bawhite.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 5]
[D:\Rising\RAV\ScanAdd.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.31]
[D:\Rising\RAV\Scanner.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 70]
[D:\Rising\RAV\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 12]
[D:\Rising\RAV\refs.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
[D:\Rising\RAV\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 8]
[D:\Rising\RAV\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
[D:\Rising\RAV\ScanSrv.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 17]
[D:\Rising\RAV\scanpe.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 29]
[D:\Rising\RAV\pearc.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 8]
[D:\Rising\RAV\engext.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 21]
[D:\Rising\RAV\vmicore.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 18]
[D:\Rising\RAV\ffr.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 2]
[D:\Rising\RAV\nvfile.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 7]
[D:\Rising\RAV\scantj.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 9]
[D:\Rising\RAV\extsfx.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 9]
[D:\Rising\RAV\scanexec.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 8]
[D:\Rising\RAV\unexe.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 0]
[D:\Rising\RAV\scanex.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 10]
[D:\Rising\RAV\scansct.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
[D:\Rising\RAV\ur029.dat] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 2]
[D:\Rising\RAV\extole.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 2]
[D:\Rising\RAV\ur028.dat] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
[D:\Rising\RAV\urutils.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 6]
[D:\Rising\RAV\ScanRavT.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.64]
[D:\Rising\RAV\ScanBT.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 98]
[D:\Rising\RAV\ScanStub.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 26]
[D:\Rising\RAV\extarch.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 13]
[D:\Rising\RAV\extcomp.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 6]
[D:\Rising\RAV\extmail.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 0]
[D:\Rising\RAV\extalgo.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
[D:\Rising\RAV\ur025.dat] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 2]
[D:\Rising\RAV\scanmac.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 0]
[D:\Rising\RAV\ur027.dat] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 7]
[D:\Rising\RAV\ur004.dat] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]

liliok - 2011-7-29 20:49:00

[PID: 1476 / SYSTEM][E:\Rising\RFW\RavMonD.exe] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 14]
[E:\Rising\RFW\combase.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 16]
[E:\Rising\RFW\cnt09.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
[E:\Rising\RFW\MonBase.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
[E:\Rising\RFW\MonComm.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.3]
[E:\Rising\RFW\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
[E:\Rising\RFW\rfwlog.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.7]
[E:\Rising\RFW\rfwrule.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[E:\Rising\RFW\rfwsrv.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.90]
[E:\Rising\RFW\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[E:\Rising\RFW\mPorts.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.7]
[E:\Rising\RFW\rfwdrvc.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.36]
[E:\Rising\RFW\fishweb.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 26]
[E:\Rising\RFW\rsindent.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.1.0]
[E:\Rising\RFW\taskplug.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.2]
[E:\Rising\RFW\rfwPgDef.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
[E:\Rising\RFW\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[E:\Rising\RFW\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
[E:\Rising\RFW\Rfwdrv.dll] [Beijing Rising Information Technology Co., Ltd., 25.0.0.7]
[E:\Rising\RFW\RfwArp.dll] [Beijing Rising Information Technology Co., Ltd., 25.0.0.1]
[E:\Rising\RFW\urlrule.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.2]
[E:\Rising\RFW\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 12]
[E:\Rising\RFW\refs.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
[E:\Rising\RFW\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 8]
[E:\Rising\RFW\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
[E:\Rising\RFW\rfwproxy.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 77]
[E:\Rising\RFW\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[E:\Rising\RFW\fwfish.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 4]
[E:\Rising\RFW\fwcomp.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 11]
[E:\Rising\RFW\fwfs.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 5]
[E:\Rising\RFW\fwvirlib.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 5]
[E:\Rising\RFW\fwlibldr.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
[E:\Rising\RFW\rstask.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 7]
[E:\Rising\RFW\rsstub.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[E:\Rising\RFW\urllib.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 1]
[PID: 1512 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\System32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1556 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1800 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1964 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.1.2600.6024 (xpsp_sp3_gdr.100817-1626)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 156 / SYSTEM][C:\WINDOWS\system32\HZ_CommSrv.exe] [华大智宝电子系统有限公司, 1, 2, 0, 1]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 260 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 280 / SYSTEM][C:\WINDOWS\system32\WatchData\Watchdata CCB CSP v3.2\WDKeyMonitorCCB.exe] [ Beijing WatchData System Co., Ltd., 3, 2, 0, 0]
[C:\WINDOWS\system32\WatchData\Watchdata CCB CSP v3.2\wdkmgr.dll] [Watchdata, 2, 1, 1, 40]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 3976 / SYSTEM][C:\WINDOWS\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 2400 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4254]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2514]
[C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2563]
[C:\WINDOWS\system32\ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4179]
[C:\WINDOWS\system32\atiadlxx.dll] [Advanced Micro Devices, Inc., 6.14.10.1061]
[PID: 3252 / lenovo][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.2900.5634 (xpsp_sp3_qfe.080703-1303)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\ravext.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 6]
[C:\Program Files\HaoZip\HaoZipExt.dll] [好压软件工作室, 2.3.1.6832]
[PID: 904 / lenovo][C:\WINDOWS\system32\WatchData\Watchdata CCB CSP v3.2\WDCertM_CCB.exe] [ Beijing WatchData System Co., Ltd., 3, 2, 0, 0]
[C:\WINDOWS\system32\WatchData\Watchdata CCB CSP v3.2\TokenMgr.dll] [ Beijing WatchData System Co., Ltd., 3, 6, 3, 2]
[C:\WINDOWS\system32\WatchData\Watchdata CCB CSP v3.2\WDAlg.DLL] [ Beijing WatchData System C0., Ltd., 3, 5, 12, 20]
[C:\WINDOWS\system32\WatchData\Watchdata CCB CSP v3.2\wdkmgr.dll] [Watchdata, 2, 1, 1, 40]
[C:\WINDOWS\system32\WatchData\Watchdata CCB CSP v3.2\WDPKCS.dll] [ Beijing WatchData System Co., Ltd., 3, 6, 2, 15]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\WatchData\Watchdata CCB CSP v3.2\WDEvent.dll] [ Beijing WatchData System Co., Ltd., 3, 2, 5, 0]
[PID: 1588 / lenovo][C:\Program Files\CCBComponents\HDZB\USBKeyTools.exe] [北京华大智宝电子系统有限公司, 1, 6, 0, 30]
[C:\WINDOWS\system32\ccb_hdcsp.dll] [CIDC, 1, 4, 3, 42]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 3484 / lenovo][C:\Program Files\CCBComponents\DMWZ\CCBCertificate.exe] [, 1, 0, 0, 27]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\CCBKCSP.dll] [, 1, 0, 0, 1]
[PID: 2928 / lenovo][C:\WINDOWS\system32\ctfmon.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 2936 / lenovo][F:\旺旺\AliIM.exe] [Alibaba software (Shanghai) Corporation., 1, 0, 0, 1]
[F:\旺旺\GUIBase.dll] [Alisoft (Shanghai) Co., Ltd., 1, 0, 0,261]
[F:\旺旺\RvCore.DLL] [Alisoft (Shanghai) Co., Ltd., 1.0.0.261]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.DLL] [Microsoft Corporation, 8.00.50727.6195]
[F:\旺旺\UpdateAssist.dll] [Alibaba software (Shanghai) Corporation., 1, 0, 0, 6]
[F:\旺旺\alilog.dll] [Copyright 2009 阿里软件（上海）有限公司., 1, 0, 0,232]
[F:\旺旺\log4cpp.dll] [Bastiaan Bakker, LifeLine Networks bv. 阿里软件（上海）有限公司., 0, 3, 2,229]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[F:\旺旺\UiBrowser.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\wwutils.DLL] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\pcre.dll] [N/A, ]
[F:\旺旺\LIBEAY32.dll] [N/A, ]
[F:\旺旺\protocol.dll] [N/A, ]
[F:\旺旺\wwparams.dll] [N/A, ]
[F:\旺旺\WWUIUnits.dll] [N/A, ]
[F:\旺旺\rvnw.dll] [Alisoft (Shanghai) Co., Ltd., 1, 0, 0,261]
[F:\旺旺\rvwindow.dll] [Alisoft (Shanghai) Co., Ltd., 1, 0, 0,259]
[F:\旺旺\xparam.dll] [Alisoft (Shanghai) Co., Ltd., 1, 0, 0,261]
[F:\旺旺\imbiz.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\P2PEnv.dll] [N/A, ]
[F:\旺旺\imnet.dll] [, 1.0.0.1]
[F:\旺旺\GUICore.dll] [Alisoft (Shanghai) Co., Ltd., 1.0.0.260]
[F:\旺旺\uacclient.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\WWApplication.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\wwsdk.dll] [Alibaba software (Shanghai) Corporation., 3.1.0.0]
[F:\旺旺\imdb.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\rvcomlib.dll] [Alisoft (Shanghai) Co., Ltd., 1.0.0.261]
[F:\旺旺\uac.dll] [, 1, 0, 0,1]
[F:\旺旺\wwsdkcom.dll] [Alibaba software (Shanghai) Corporation., 3.1.0.0]
[F:\旺旺\SDKDB.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\alinet.dll] [Alisoft (Shanghai) Co., Ltd., 1, 0, 0,261]
[D:\Rising\RAV\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.14]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx] [Adobe Systems, Inc., 10,1,82,76]
[F:\旺旺\AliIMX.dll] [, 1.0.0.1]
[C:\WINDOWS\system32\aliedit\2.4.0.5\pta.dll] [iTruschina Co., Ltd., 2, 5, 5, 2]
[F:\旺旺\Peripheral.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\filetransbiz.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.4]
[F:\旺旺\ww_network2.dll] [Alibaba software (Shanghai) Corporation., 2, 1, 0, 8]
[F:\旺旺\P2PBiz.dll] [, 1, 0, 0, 1]
[F:\旺旺\AVTransBiz.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\ContactInfoAdapter.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\GraffitiGUI.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.0]
[F:\旺旺\SysNotify.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\IMEService.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\RichEditHandler.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\EmotionConfig.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[F:\旺旺\IMMessage.dll] [, 1.0.0.1]
[F:\旺旺\Useful_services.dll] [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[PID: 2984 / lenovo][E:\Rising\RFW\RSTRAY.EXE] [Beijing Rising Information Technology Co., Ltd., 23.0.0.11]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[E:\Rising\RFW\comserv.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.15]
[E:\Rising\RFW\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[E:\Rising\RFW\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
[E:\Rising\RFW\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[E:\Rising\RFW\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[E:\Rising\RFW\rsxml.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.2]
[E:\Rising\RFW\MonState.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
[E:\Rising\RFW\rfwrule.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[E:\Rising\RFW\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
[E:\Rising\RFW\rspalvd.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.7]
[E:\Rising\RFW\rsguilib.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.12]
[E:\Rising\RFW\rsnetsvr.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.12]
[E:\Rising\RFW\rsmginfo.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.6]
[E:\Rising\RFW\rfwtray.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 74]
[E:\Rising\RFW\rfwlog.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.7]
[E:\Rising\RFW\PngDll.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
[PID: 3904 / lenovo][D:\Rising\RAV\RSTRAY.EXE] [Beijing Rising Information Technology Co., Ltd., 23.0.0.11]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[D:\Rising\RAV\comserv.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.15]
[D:\Rising\RAV\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[D:\Rising\RAV\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
[D:\Rising\RAV\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[D:\Rising\RAV\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.1]
[D:\Rising\RAV\rsxml.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.2]
[D:\Rising\RAV\MonState.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
[D:\Rising\RAV\ScanEvnt.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.10]
[D:\Rising\RAV\rsguilib.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.12]
[D:\Rising\RAV\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.4]
[D:\Rising\RAV\rspalvd.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.7]
[D:\Rising\RAV\mruleui.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 10]
[D:\Rising\RAV\MonTray.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.1.7]
[D:\Rising\RAV\rsmginfo.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.7]
[D:\Rising\RAV\UsbServ.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
[D:\Rising\RAV\ScanTray.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.54]
[D:\Rising\RAV\PngDll.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 3]
[D:\Rising\RAV\dfw.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.66]
[D:\Rising\RAV\ScanPrxy.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.30]
[D:\Rising\RAV\GCompt.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.51]
[D:\Rising\RAV\Isol.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.14]
[D:\Rising\RAV\rsstore.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.12]
[D:\Rising\RAV\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.14]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[PID: 3616 / lenovo][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 2484 / lenovo][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[D:\Rising\RAV\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.14]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx] [Adobe Systems, Inc., 10,1,82,76]
[PID: 1348 / lenovo][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[D:\Rising\RAV\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.14]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx] [Adobe Systems, Inc., 10,1,82,76]
[C:\WINDOWS\system32\SOGOUPY.IME] [Sogou.com Inc., 6.0.0.5863]
[C:\Program Files\SogouInput\6.0.0.5863\Resource.dll] [Sogou.com Inc., 6.0.0.5863]
[C:\WINDOWS\system32\SOGOUWB.IME] [Sogou.com Inc., 2.0.0.1147]
[C:\Program Files\SogouWBInput\2.0.0.1147\Plugins\StatisticsModule.dll] [Sogou.com Inc., 2.0.0.1147]
[C:\Program Files\SogouWBInput\2.0.0.1147\Plugins\ManualNewWord.dll] [Sogou.com Inc., 2.0.0.1147]
[C:\Program Files\SogouWBInput\2.0.0.1147\Plugins\AutoNewWord.dll] [Sogou.com Inc., 2.0.0.1147]
[PID: 2532 / lenovo][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[D:\Rising\RAV\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.14]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx] [Adobe Systems, Inc., 10,1,82,76]
[C:\WINDOWS\system32\msdmo.dll] [, ]

liliok - 2011-7-29 20:49:00

[PID: 1248 / lenovo][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[D:\Rising\RAV\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.14]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx] [Adobe Systems, Inc., 10,1,82,76]
[PID: 2600 / lenovo][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[D:\Rising\RAV\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.14]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx] [Adobe Systems, Inc., 10,1,82,76]
[PID: 2712 / lenovo][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[D:\Rising\RAV\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 23.0.0.14]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx] [Adobe Systems, Inc., 10,1,82,76]
[PID: 752 / lenovo][C:\WINDOWS\system32\wuauclt.exe] [(Verified) Microsoft Corporation, 7.4.7600.229 (winmain_wtr_wsus3sp2(wmbla).100506-1159)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 640 / lenovo][F:\工具软件\sreng2\SREngLdr.EXE] [Smallfrogs Studio, 2.8.4.1331]
[PID: 2112 / lenovo][F:\工具软件\sreng2\SRE9e7c6ae7.EXE] [Smallfrogs Studio, 2.8.4.1331]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]

==================================
文件关联
.TXT Error. [C:\WINDOWS\notepad.exe %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM Error. ["hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1
------ 屏蔽迅雷看看广告 ------
0.0.0.0 pubstat.sandai.net
0.0.0.0 mcfg.sandai.net
0.0.0.0 biz5.sandai.net
0.0.0.0 float.sandai.net
0.0.0.0 cl.kankan.xunlei.com
0.0.0.0 211.94.190.80
0.0.0.0 mtips.xunlei.com
0.0.0.0 211.94.190.80
0.0.0.0 mtips.xunlei.com
0.0.0.0 adsresult.joywell.com.cn
0.0.0.0 advstat.xunlei.com
0.0.0.0 wy.xunlei.com
0.0.0.0 kkpgv.xunlei.com
0.0.0.0 statis.kankan.xunlei.com
0.0.0.0 server1.adpolestar.net
0.0.0.0 mpv.sandai.net

==================================
进程特权扫描
特殊特权被允许： SeLoadDriverPrivilege [PID = 280, C:\WINDOWS\SYSTEM32\WATCHDATA\WATCHDATA CCB CSP V3.2\WDKEYMONITORCCB.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 904, C:\WINDOWS\SYSTEM32\WATCHDATA\WATCHDATA CCB CSP V3.2\WDCERTM_CCB.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1588, C:\PROGRAM FILES\CCBCOMPONENTS\HDZB\USBKEYTOOLS.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 3484, C:\PROGRAM FILES\CCBCOMPONENTS\DMWZ\CCBCERTIFICATE.EXE]

==================================
计划任务
[已启用] SogouImeMgr.job
C:\PROGRA~1\SOGOUI~1\600~1.586\SGTool.exe

==================================
Windows 安全更新检查
Microsoft .NET Framework 版本 1.1，简体中文版
KB829019, Microsoft .NET Framework 2.0 语言包：x86 (KB829019)
KB940157, 用于 Windows XP 的 Windows 搜索 4.0 (KB940157)
KB928416, Microsoft .NET Framework 3.0： x86 语言包 (KB928416)
KB951847, Microsoft .NET Framework 3.5 Service Pack 1 (KB951847) x86 语言包
KB968930, 用于 Windows XP 和 Windows Embedded 的 Windows PowerShell 2.0 和 WinRM 2.0 (KB968930)
KB968930, Windows Live 软件包
KB982670, 用于 Windows XP x86 的 Microsoft .NET Framework 4 Client Profile (KB982670)
KB2509553, Windows XP 安全更新程序 (KB2509553) MS11-030
KB931125, 根证书更新 [2011 年 6 月] (KB931125)
KB2512827, Microsoft Silverlight (KB2512827)

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================

[/CODE]

瑞星卡卡安全论坛