[CODE] 2008-12-08,11:10:37 System Repair Engineer 2.7.0.1210 Smallfrogs (http://www.KZTechs.com) Windows Vista Home Premium Edition (Build 6000) - 管理权限用户 - 完整功能以下内容被选中：所有的启动项目（包括注册表、启动文件夹、服务等）浏览器加载项正在运行的进程（包括进程模块信息）文件关联 Winsock 提供者 Autorun.inf HOSTS 文件进程特权扫描计划任务 API HOOK 隐藏进程启动项目注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] [风雷影音工作室] <; C:\Program Files\Windows Sidebar\sidebar.exe /autoRun> [(Verified)Microsoft Windows] <"D:\软件\诺基亚PC套件\Nokia PC Suite 7\PCSuite.exe" -onlytray> [Nokia] <"C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020> [File is missing] <; rundll32.exe oobefldr.dll,ShowWelcomeCenter> [(Verified)Microsoft Windows] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] <> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] [(Verified)Acer Incorporated] <> [N/A] <> [N/A] <360Safebox><"C:\Program Files\360Safebox\safeboxTray.exe" /r> [(Verified)Qizhi Software (beijing) Co. Ltd] <360Safetray> [(Verified)Qizhi Software (beijing) Co. Ltd] <"C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"> [(Verified)Logitech Inc] <"C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide> [(Verified)Logitech Inc] <"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -systray -startup> [(Verified)Google Inc] <; "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"> [(Verified)"Adobe Systems, Incorporated"] <"D:\软件\Unlocker卸载工具\Unlocker\UnlockerAssistant.exe"> [File is missing] [Super Rabbit Software] <"C:\Program Files\Thunder Network\Thunder\Thunder.exe" /s> [(Verified)ShenZhen Thunder Networking Technologies Ltd.] <"C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"> [(Verified)Nero AG] <"D:\软件\瑞星杀毒软件\Rising\Rav\RavTask.exe" -system> [(Verified)Beijing Rising Information Technology Corporation Limited] <"D:\软件\瑞星杀毒软件\Rising\Rav\rstray.exe" /startup> [(Verified)Beijing Rising Information Technology Corporation Limited] <; RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup> [(Verified)Microsoft Windows Hardware Compatibility Publisher] <; RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit> [(Verified)Microsoft Windows Hardware Compatibility Publisher] <; C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe> [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] [(Verified)Microsoft Windows] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] [(Verified)Beijing Rising Information Technology Corporation Limited] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{32CD708B-60A7-4C00-9377-D73EAA495F0F}> [(Verified)Beijing Rising Information Technology Corporation Limited] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] <%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] <"%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] <%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI> [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] [(Verified)Microsoft Windows] [HKEY_CURRENT_USER\Control Panel\Desktop] [] ================================== 启动文件夹 [Empowering Technology Launcher] C:\Acer\EMPOWE~1\EAPLAU~1.EXE [Acer Inc.]> [Logitech Desktop Messenger] C:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LOGITE~1.EXE [Logitech Inc.]> [QQ游戏启动加速程序] D:\软件\QQ软件\QQ游戏\QQGAME\Accel.exe [深圳市腾讯计算机系统有限公司]> [彩虹显IP（QQ辅助软件）] D:\软件\QQ软件\彩虹QQ\CaihongIP\CaiHong.exe [File is missing]> [QQ游戏启动加速程序] D:\软件\QQ软件\QQ游戏\QQGAME\Accel.exe [深圳市腾讯计算机系统有限公司]> [彩虹显IP（QQ辅助软件）] D:\软件\QQ软件\彩虹QQ\CaihongIP\CaiHong.exe [File is missing]> [Empowering Technology Launcher] C:\Acer\EMPOWE~1\EAPLAU~1.EXE [Acer Inc.]> [Logitech Desktop Messenger] C:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LOGITE~1.EXE [Logitech Inc.]> ================================== 服务 [Acer HomeMedia Connect Service / Acer HomeMedia Connect Service][Stopped/Disabled] <"C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe"> [ePerformance Service / AcerMemUsageCheckService][Running/Auto Start] <> [Ati External Event Utility / Ati External Event Utility][Running/Auto Start] [Contrl Center of Storm Media / ccosm][Running/Auto Start] <北京暴风网际科技有限公司> [eDataSecurity Service / eDataSecurity Service][Running/Auto Start] <"C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe"> [eRecovery Service / eRecoveryService][Running/Auto Start] [eSettings Service / eSettingsService][Running/Auto Start] <> [Google Updater Service / gusvc][Running/Auto Start] <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"> [LightScribeService Direct Disc Labeling Service / LightScribeService][Running/Auto Start] <"C:\Program Files\Common Files\LightScribe\LSSrvc.exe"> [LVCOMSer / LVCOMSer][Running/Auto Start] <"C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe"> [Process Monitor / LVPrcSrv][Running/Auto Start] <"C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe"> [Nero BackItUp Scheduler 3 / Nero BackItUp Scheduler 3][Running/Auto Start] [NMIndexingService / NMIndexingService][Running/Manual Start] <"C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe"> [PLFlash DeviceIoControl Service / PLFlash DeviceIoControl Service][Running/Auto Start] [Cyberlink RichVideo Service(CRVS) / RichVideo][Stopped/Disabled] <"C:\Program Files\CyberLink\Shared Files\RichVideo.exe"><> [Rising Process Communication Center / RsCCenter][Running/Auto Start] <"D:\软件\瑞星杀毒软件\Rising\Rav\CCenter.exe"> [Rising RealTime Monitor / RsRavMon][Stopped/Auto Start] <"D:\软件\瑞星杀毒软件\RISING\RAV\Ravmond.exe"> [Rising Vista Scanner / RsVScanner][Running/Auto Start] [ServiceLayer / ServiceLayer][Running/Manual Start] <"C:\Program Files\PC Connectivity Solution\ServiceLayer.exe"> [wuauserv / wuauserv][Running/Auto Start] <15100 - 资源加载器找不到 MUI 文件。 ><(File is missing)> ================================== 驱动程序 [adp94xx / adp94xx][Stopped/Disabled] <\SystemRoot\system32\drivers\adp94xx.sys> [adpahci / adpahci][Stopped/Disabled] <\SystemRoot\system32\drivers\adpahci.sys> [adpu160m / adpu160m][Stopped/Disabled] <\SystemRoot\system32\drivers\adpu160m.sys> [adpu320 / adpu320][Stopped/Disabled] <\SystemRoot\system32\drivers\adpu320.sys> [aic78xx / aic78xx][Stopped/Disabled] <\SystemRoot\system32\drivers\djsvs.sys> [aliide / aliide][Stopped/Disabled] <\SystemRoot\system32\drivers\aliide.sys> [arc / arc][Stopped/Disabled] <\SystemRoot\system32\drivers\arc.sys> [arcsas / arcsas][Stopped/Disabled] <\SystemRoot\system32\drivers\arcsas.sys> [Atheros Wireless LAN USB device driver / athrusb][Running/Manual Start] [atikmdag / atikmdag][Running/Manual Start] [blbdrive / blbdrive][Stopped/Disabled] <\SystemRoot\system32\drivers\blbdrive.sys> [Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start] <\SystemRoot\system32\drivers\brfiltlo.sys> [Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start] <\SystemRoot\system32\drivers\brfiltup.sys> [Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Disabled] <\SystemRoot\system32\drivers\brserid.sys> [Brother WDM Serial driver / BrSerWdm][Stopped/Disabled] <\SystemRoot\system32\drivers\brserwdm.sys> [Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Disabled] <\SystemRoot\system32\drivers\brusbmdm.sys> [Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start] <\SystemRoot\system32\drivers\brusbser.sys> [cmdide / cmdide][Stopped/Disabled] <\SystemRoot\system32\drivers\cmdide.sys> [Intel(R) PRO/1000 NDIS 6 Adapter Driver / E1G60][Stopped/Manual Start] [elxstor / elxstor][Stopped/Disabled] <\SystemRoot\system32\drivers\elxstor.sys> [HookNtos / HookNtos][Running/System Start] <\SystemRoot\system32\drivers\HookNtos.sys> [HookReg / HookReg][Running/System Start] <\SystemRoot\system32\drivers\HookReg.sys> [HookSys / HookSys][Running/System Start] <\SystemRoot\system32\drivers\HookSys.sys> [HpCISSs / HpCISSs][Stopped/Disabled] <\SystemRoot\system32\drivers\hpcisss.sys> [Intel RAID Controller Vista / iaStorV][Stopped/Disabled] <\SystemRoot\system32\drivers\iastorv.sys> [iirsp / iirsp][Stopped/Disabled] <\SystemRoot\system32\drivers\iirsp.sys> [int15 / int15][Running/Auto Start] <\??\C:\Acer\Empowering Technology\eRecovery\int15.sys> [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Stopped/Manual Start] [IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start] [ITEATAPI_Service_Install / iteatapi][Stopped/Disabled] <\SystemRoot\system32\drivers\iteatapi.sys> [ITERAID_Service_Install / iteraid][Stopped/Disabled] <\SystemRoot\system32\drivers\iteraid.sys> [LSI_FC / LSI_FC][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_fc.sys> [LSI_SAS / LSI_SAS][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_sas.sys> [LSI_SCSI / LSI_SCSI][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_scsi.sys> [LVPr2Mon Driver / LVPr2Mon][Running/Manual Start] <> [Logitech RightSound Filter Driver / LVRS][Running/Manual Start] [Logitech USB Monitor Filter / LVUSBSta][Running/Manual Start] [Logitech QuickCam E3500(UVC) / LVUVC][Running/Manual Start] [megasas / megasas][Stopped/Disabled] <\SystemRoot\system32\drivers\megasas.sys> [Mraid35x / Mraid35x][Stopped/Disabled] <\SystemRoot\system32\drivers\mraid35x.sys> [nfrd960 / nfrd960][Stopped/Disabled] <\SystemRoot\system32\drivers\nfrd960.sys> [Nokia USB Phone Parent / nmwcd][Stopped/Manual Start] [Nokia USB Generic / nmwcdc][Stopped/Manual Start] [Upper Class Filter Driver / NTIDrvr][Running/Manual Start] [N-trig HID Tablet Driver / ntrigdigi][Stopped/Disabled] <\SystemRoot\system32\drivers\ntrigdigi.sys> [NVIDIA nForce Networking Controller Driver / NVENETFD][Running/Manual Start] [Service for NVIDIA HDMI Audio Driver / NVHDA][Running/Manual Start] [nvlddmkm / nvlddmkm][Stopped/Manual Start] [nvraid / nvraid][Running/Boot Start] <\SystemRoot\system32\drivers\nvraid.sys> [NVIDIA nForce RAID Driver / nvrd32][Running/Boot Start] <\SystemRoot\system32\drivers\nvrd32.sys> [nvsmu / nvsmu][Running/Manual Start] [nvstor / nvstor][Stopped/Disabled] <\SystemRoot\system32\drivers\nvstor.sys> [nvstor32 / nvstor32][Running/Boot Start] <\SystemRoot\system32\drivers\nvstor32.sys> [IPX Traffic Filter Driver / NwlnkFlt][Stopped/Manual Start] [IPX Traffic Forwarder Driver / NwlnkFwd][Stopped/Manual Start] [PCCS Mode Change Filter Driver / pccsmcfd][Stopped/Manual Start] [PSDFilter / PSDFilter][Running/Boot Start] <\SystemRoot\system32\DRIVERS\psdfilter.sys> [PSDNServ / PSDNServ][Running/Auto Start] [psdvdisk / psdvdisk][Running/Auto Start] [QLogic Fibre Channel Miniport Driver / ql2300][Stopped/Disabled] <\SystemRoot\system32\drivers\ql2300.sys> [QLogic iSCSI Miniport Driver / ql40xx][Stopped/Disabled] <\SystemRoot\system32\drivers\ql40xx.sys> [RsNTGDI / RsNTGDI][Running/Boot Start] <\SystemRoot\system32\Drivers\RsNTGdi.sys> [Realtek RTL8187 Wireless 802.11g 54Mbps USB 2.0 Network Adapter / RTL8187][Stopped/Manual Start] [SafeBoxKrnl / SafeBoxKrnl][Running/System Start] <\??\C:\Windows\system32\drivers\SafeBoxKrnl.sys><360安全中心> [SiSRaid2 / SiSRaid2][Stopped/Disabled] <\SystemRoot\system32\drivers\sisraid2.sys> [SiSRaid4 / SiSRaid4][Stopped/Disabled] <\SystemRoot\system32\drivers\sisraid4.sys> [Symc8xx / Symc8xx][Stopped/Disabled] <\SystemRoot\system32\drivers\symc8xx.sys> [Sym_hi / Sym_hi][Stopped/Disabled] <\SystemRoot\system32\drivers\sym_hi.sys> [Sym_u3 / Sym_u3][Stopped/Disabled] <\SystemRoot\system32\drivers\sym_u3.sys> [TCP/IP 协议驱动程序 / Tcpip][Running/System Start] [Microsoft IPv6 Protocol Driver / Tcpip6][Stopped/Manual Start] [tvicport / tvicport][Running/Auto Start] <\??\C:\Windows\system32\drivers\tvicport.sys> [uliahci / uliahci][Stopped/Disabled] <\SystemRoot\system32\drivers\uliahci.sys> [UlSata / UlSata][Stopped/Disabled] <\SystemRoot\system32\drivers\ulsata.sys> [ulsata2 / ulsata2][Stopped/Disabled] <\SystemRoot\system32\drivers\ulsata2.sys> [upperdev / upperdev][Stopped/Manual Start] [viaide / viaide][Stopped/Disabled] <\SystemRoot\system32\drivers\viaide.sys> [vsmraid / vsmraid][Stopped/Disabled] <\SystemRoot\system32\drivers\vsmraid.sys> [zntport / zntport][Running/Auto Start] <\??\C:\Windows\system32\drivers\zntport.sys> ================================== 浏览器加载项 [ThunderAtOnce Class] {01443AEC-0FD1-40fd-9C87-E93D1494C233} [Aplicación auxiliar de vínculos de Adobe PDF Reader] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [超级兔子上网精灵] {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} [ShowBarObj Class] {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [Google Toolbar Notifier BHO] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [SafeMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [启动迅雷5] {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} [Acer eDataSecurity Management] {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} [超级兔子上网精灵] {43869BB3-22FD-4F15-9B46-238106BA2F4E} [ThunderAtOnce Class] {01443AEC-0FD1-40FD-9C87-E93D1494C233} [] {02478D38-C3F9-4EFB-9B51-7695ECA05670} <, > [Aplicación auxiliar de vínculos de Adobe PDF Reader] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [] {089FD14D-132B-48FC-8861-0048AE113215} <, > [] {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <, > [Fade] {16B280C5-EE70-11D1-9066-00C04FD9189D} [Windows Media Player] {22D6F312-B0F6-11D0-94AB-0080C74C7E95} [XML DOM Document] {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [] {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} <, > [超级兔子上网精灵] {43869BB3-22FD-4F15-9B46-238106BA2F4E} [XML Document] {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [Thunder Agent Class] {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} [EditCtrl Class] {488A4255-3236-44B3-8F27-FA1AECAA8844} [Shell Name Space] {55136805-B2DE-11D1-B9F2-00A0C98BC547} [Acer eDataSecurity Management] {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} [PowerPlayer Control] {5EC7C511-CD0F-42E6-830C-1BD9882F3458} [XMP Class] {6483F145-A768-4C41-AACC-52D4D7845851} [XDRM] {693571CB-54A3-4E90-9D52-EEAE1334E2D3} [Windows Media Player] {6BF52A52-394A-11D3-B153-00C04F79FAA6} <%SystemRoot%\system32\wmp.dll, (Signed) N/A> [超级兔子上网精灵] {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} [MediaComm Class] {7670648D-461B-42AF-BDFE-46D26AF5EFF2} [] {7DB2D5A0-7241-4E79-B68D-6309F01C5231} <, > [ShowBarObj Class] {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} [360SafeLive] {87515F61-A66C-4319-A0E0-D416CB8059E3} [Microsoft Web Browser] {8856F961-340A-11D0-A96B-00C04FD705A2} [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [XML DOM Document 4.0] {88D969C0-F192-11D4-A65F-0040963251E5} <%SystemRoot%\system32\msxml4.dll, N/A> [XML HTTP 4.0] {88D969C5-F192-11D4-A65F-0040963251E5} <%SystemRoot%\system32\msxml4.dll, N/A> [XML DOM 文档 5.0] {88D969E5-F192-11D4-A65F-0040963251E5} [XML HTTP 5.0] {88D969EA-F192-11D4-A65F-0040963251E5} [XML DOM Document 6.0] {88D96A05-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml6.dll, (Signed) N/A> [XML HTTP 6.0] {88D96A0A-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml6.dll, (Signed) N/A> [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [DapCtrl Class] {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} [Google Toolbar Notifier BHO] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [SafeMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [QQPlayerCtrl Class] {CD108273-D434-43E6-AA90-1469F97EB398} [AUDIO__MP3 Moniker Class] {CD3AFA76-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, (Signed) N/A> [AUDIO__X_MS_WMA Moniker Class] {CD3AFA84-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, (Signed) N/A> [VIDEO__X_MS_WMV Moniker Class] {CD3AFA94-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, (Signed) N/A> [RealPlayer G2 Control] {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [PlayerCtrl Class] {E05BC2A3-9A46-4A32-80C9-023A473F5B23} [PasswordEditCtrl Class] {E787FD25-8D7C-4693-AE67-9406BC6E22DF} [TimwpDll.TimwpCheck] {ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} [XML HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [Thunder DapPlayer] {EEDD6FF9-13DE-496B-9A1C-D78B3215E266} [] {EF99BD32-C1FB-11D2-892F-0090271D4F88} <, > [XPPlayer Class] {F3E70CEA-956E-49CC-B444-73AFE593AD7F} [XML DOM Document] {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [XML HTTP] {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [使用光影编辑和美化] [使用迅雷下载] [使用迅雷下载全部链接] [导出到 Microsoft Office Excel(&X)] [添加到QQ表情] <, > ================================== 正在运行的进程 [PID: 380 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 476 / SYSTEM][C:\Windows\system32\csrss.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 532 / SYSTEM][C:\Windows\system32\wininit.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 544 / SYSTEM][C:\Windows\system32\csrss.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 576 / SYSTEM][C:\Windows\system32\services.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] [PID: 588 / SYSTEM][C:\Windows\system32\lsass.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 600 / SYSTEM][C:\Windows\system32\lsm.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 748 / SYSTEM][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 808 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] [PID: 864 / SYSTEM][D:\软件\瑞星杀毒软件\Rising\Rav\CCenter.exe] [Beijing Rising Information Technology Co., Ltd., 20.0.0.33] [PID: 880 / SYSTEM][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 904 / SYSTEM][C:\Windows\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4190] [PID: 928 / LOCAL SERVICE][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 968 / SYSTEM][C:\Windows\system32\winlogon.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 984 / SYSTEM][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 1000 / SYSTEM][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] [PID: 1244 / NETWORK SERVICE][C:\Windows\system32\SLsvc.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 1308 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 1428 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 1620 / SYSTEM][C:\Windows\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4190] [C:\Windows\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2513] [C:\Windows\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2530] [C:\Windows\system32\ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4176] [PID: 1692 / SYSTEM][C:\Windows\System32\spoolsv.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] [PID: 1716 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] [PID: 1968 / SYSTEM][C:\Acer\Empowering Technology\ePerformance\MemCheck.exe] [, 1.0.0.0] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7fe79782947b85d961fd55cb5e02a129\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\fcc712bc5da45a672e7f1ad176dbd5a5\System.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\61b951bd03727a096c1c02cb18d5ce30\System.ServiceProcess.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\8fbca0140921ed343cb511595869a0ed\System.Runtime.Remoting.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Acer\Empowering Technology\ePerformance\MemCheck.Interface.dll] [, 1.0.0.0] [C:\Acer\Empowering Technology\ePerformance\ePerformance.Library.dll] [, 1.0.0.0] [C:\Acer\Empowering Technology\ePerformance\log4net.dll] [The Apache Software Foundation, 1.2.10.0] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\d7b63c1d2ab17ac3cc24881c4ff78b63\System.Configuration.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f76a7622c73e26e4d2daf54068d7ff79\System.Xml.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_zh-CHS_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\c11c5eb32a435c14a33e62b1e150e988\System.Web.ni.dll] [Microsoft Corporation, 2.0.50727.833 (QFE.050727-8300)] [PID: 272 / SYSTEM][C:\Program Files\StormII\stormliv.exe] [北京暴风网际科技有限公司, 3, 8, 3, 15] [C:\Program Files\StormII\MSVCP60.dll] [Microsoft Corporation, 6.02.3104.0] [PID: 448 / SYSTEM][C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe] [Egis Incorporated, 3, 0, 92, 4] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [PID: 672 / SYSTEM][C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe] [Google, 2.4.1368.5602.beta] [PID: 1512 / SYSTEM][C:\Program Files\Common Files\LightScribe\LSSrvc.exe] [Hewlett-Packard Company, 1.4.142.1] [C:\Program Files\Common Files\LightScribe\LSSProxy.dll] [Hewlett-Packard Company, 1.4.142.1] [C:\Program Files\Common Files\LightScribe\LSLog.dll] [Hewlett-Packard Company, 1.4.142.1] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [PID: 1540 / SYSTEM][C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe] [Logitech Inc., 1.17.1048.0] [C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSCli.dll] [Logitech Inc., 1.17.1048.0] [C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSPS.dll] [, ] [PID: 280 / SYSTEM][C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe] [Logitech Inc., 11.80.1048.0] [PID: 12 / SYSTEM][C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe] [Nero AG, 3, 5, 3, 0] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Nero\Nero8\Nero BackItUp\NB.dll] [Nero AG, 3, 5, 3, 0] [C:\Program Files\Nero\Nero8\Nero BackItUp\NeroAPIGlueLayerUnicode.dll] [Nero AG, 8.3.6.0] [C:\Program Files\Nero\Nero8\Nero BackItUp\LBFC.dll] [Nero AG, 3, 5, 3, 0] [C:\Program Files\Nero\Nero8\Nero BackItUp\NBHDMgr.dll] [Nero AG, 3, 5, 3, 0] [PID: 2080 / SYSTEM][C:\Windows\system32\IoctlSvc.exe] [Prolific Technology Inc., 1, 6, 0, 0] [PID: 2092 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 2152 / SYSTEM][D:\软件\瑞星杀毒软件\Rising\Rav\scannerd.exe] [Beijing Rising Information Technology Co., Ltd., 20.0.0.24] [PID: 2176 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 2224 / SYSTEM][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 2252 / SYSTEM][C:\Windows\system32\SearchIndexer.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 2308 / SYSTEM][C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe] [Acer Inc., 2.5.4.4] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7fe79782947b85d961fd55cb5e02a129\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\fcc712bc5da45a672e7f1ad176dbd5a5\System.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\61b951bd03727a096c1c02cb18d5ce30\System.ServiceProcess.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\8fbca0140921ed343cb511595869a0ed\System.Runtime.Remoting.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Acer\Empowering Technology\eRecovery\ServiceInterface.dll] [, 2.05.4001] [C:\Acer\Empowering Technology\eRecovery\IERYETF.dll] [, 2.05.4001] [C:\Acer\Empowering Technology\eRecovery\INT15.dll] [N/A, ] [C:\Windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_zh-CHS_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\3fe3f7ba542ab78e52e49d19640a7e64\System.Management.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [PID: 2372 / SYSTEM][C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe] [, 2.05.4302] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7fe79782947b85d961fd55cb5e02a129\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\fcc712bc5da45a672e7f1ad176dbd5a5\System.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\61b951bd03727a096c1c02cb18d5ce30\System.ServiceProcess.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Acer\Empowering Technology\eSettings\Service\log4net.dll] [The Apache Software Foundation, 1.2.10.0] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\d7b63c1d2ab17ac3cc24881c4ff78b63\System.Configuration.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f76a7622c73e26e4d2daf54068d7ff79\System.Xml.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\8fbca0140921ed343cb511595869a0ed\System.Runtime.Remoting.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Acer\Empowering Technology\eSettings\Service\eSettings.Model.Computer.dll] [, 2.05.4302] [C:\Acer\Empowering Technology\eSettings\Service\eSettings.Model.ComputerInterfaces.dll] [, 2.05.4302] [C:\Windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_zh-CHS_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\c11c5eb32a435c14a33e62b1e150e988\System.Web.ni.dll] [Microsoft Corporation, 2.0.50727.833 (QFE.050727-8300)] [C:\Acer\Empowering Technology\eSettings\Service\eSettings.Model.Library.dll] [, 2.05.4302] [C:\Acer\Empowering Technology\eSettings\Service\iteio.dll] [, 1, 0, 0, 1] [C:\Acer\Empowering Technology\eSettings\Service\ntport.dll] [Zeal SoftStudio, 2.4.0.3] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\3fe3f7ba542ab78e52e49d19640a7e64\System.Management.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\70c145ed25af403aa899ffcb633350b1\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\35a9f19f21aac42b979be321f1bb5fd4\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Acer\Empowering Technology\eSettings\Service\CPUID.dll] [N/A, ] [C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_zh-CHS_b77a5c561934e089\mscorlib.resources.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [PID: 2392 / LOCAL SERVICE][C:\Windows\system32\WUDFHost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 2652 / NETWORK SERVICE][C:\Windows\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 3024 / ADMIN][C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe] [Logitech Inc., 1.17.1048.0] [C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSCli.dll] [Logitech Inc., 1.17.1048.0] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSPS.dll] [, ] [PID: 3116 / ADMIN][C:\Windows\system32\Dwm.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [PID: 3200 / SYSTEM][C:\Windows\system32\taskeng.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 3256 / ADMIN][C:\Windows\system32\taskeng.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\system32\atitmmxx.dll] [, 6, 14, 11, 17] [C:\Windows\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2530] [PID: 3296 / ADMIN][C:\Windows\Explorer.EXE] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll] [Egis Incorporated, 3.0.0.2] [C:\Acer\Empowering Technology\eDataSecurity\x86\sysenv.dll] [Egis Incorporated., 3, 0, 164, 7] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [D:\软件\诺基亚PC套件\Nokia PC Suite 7\phonebrowser.dll] [Nokia, 7, 0, 103, 0] [D:\软件\诺基亚PC套件\Nokia PC Suite 7\NGSCM.DLL] [Nokia, 7, 0, 140, 6] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [D:\软件\诺基亚PC套件\Nokia PC Suite 7\Lang\PhoneBrowser_chi-sc.nlr] [Nokia, 7, 0, 64, 0] [D:\软件\诺基亚PC套件\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr] [Nokia, 7, 0, 20, 0] [C:\Windows\system32\nvcpl.dll] [NVIDIA Corporation, 7.15.11.6391] [C:\Windows\system32\nvapi.dll] [NVIDIA Corporation, 7.15.11.6391] [C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll] [Thunder Networking Technologies,LTD, 1.0.5.34] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 8.0.0.2006102200] [C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll] [Egis, 3, 0, 4, 0] [C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll] [Thunder Networking Technologies,LTD, 5, 0, 8, 120] [C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_01.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 20] [C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_01.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 16] [C:\Program Files\Common Files\Nero\Lib\MediaLibraryNSE.dll] [Nero AG, 3.3.8.0] [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Nero\Nero8\Nero BackItUp\NBShell.dll] [Nero AG, 3, 5, 3, 0] [C:\Program Files\WinRAR\rarext.dll] [N/A, ] [C:\Windows\system32\RavExt.dll] [Beijing Rising Information Technology Co., Ltd., 20.0.0.18] [PID: 3456 / ADMIN][C:\Acer\Empowering Technology\SysMonitor.exe] [, 1.0.1.0] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7fe79782947b85d961fd55cb5e02a129\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\fcc712bc5da45a672e7f1ad176dbd5a5\System.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\70c145ed25af403aa899ffcb633350b1\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\35a9f19f21aac42b979be321f1bb5fd4\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [PID: 3492 / ADMIN][C:\Program Files\360Safebox\safeboxTray.exe] [360安全中心, 2, 4, 0, 1001] [C:\360safebox\rptup.dll] [360Safe.com, 4, 1, 0, 1003] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\360Safebox\safeboxapi.dll] [360安全中心, 2, 0, 0, 1002] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Program Files\360Safebox\liveupdate.dll] [360安全中心, 1, 2, 0, 1010] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] [PID: 3532 / ADMIN][C:\Program Files\360safe\safemon\360tray.exe] [奇虎网, 5, 0, 0, 1002] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Program Files\360safe\safemon\SafeKrnl.dll] [奇虎网, 4, 3, 0, 1003] [C:\Program Files\360safe\AntiAdwa.dll] [360Safe.com, 4, 2, 0, 1001] [C:\Program Files\360safe\live.dll] [360.cn, 1, 0, 1, 1028] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] [PID: 3604 / ADMIN][C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe] [, ] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\Common Files\LogiShrd\LComMgr\DevMngr.dll] [, ] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSCli.dll] [Logitech Inc., 1.17.1048.0] [C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSPS.dll] [, ] [C:\Program Files\Logitech\QuickCam\EFVal.dll] [, ] [C:\Program Files\Common Files\LogiShrd\LComMgr\LogiCordless.dll] [, ] [C:\Program Files\Common Files\LogiShrd\LComMgr\LogiCordless4001.dll] [, ] [C:\Program Files\Common Files\LogiShrd\LComMgr\LogiVOIPDevicePlugin.dll] [, ] [C:\Program Files\Common Files\Nero\DSFilter\NeFLVSplitter.ax] [Nero AG, 5, 5, 9, 9] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Common Files\Thunder Network\KanKan\RealMediaSplitter.1.0.2.2.(13).ax] [Gabest, 1, 0, 2, 2] [C:\Program Files\Common Files\Nero\DSFilter\NeMP4Splitter.ax] [Nero AG, 5, 5, 9, 9] [C:\Program Files\Common Files\Nero\DSFilter\NeSplitter.ax] [Nero AG, 5, 5, 9, 9] [PID: 3636 / ADMIN][C:\Program Files\Logitech\QuickCam\Quickcam.exe] [, ] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\Logitech\QuickCam\LAppRes.dll] [, ] [C:\Program Files\Common Files\LogiShrd\LComMgr\DevMngr.dll] [, ] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSCli.dll] [Logitech Inc., 1.17.1048.0] [C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSPS.dll] [, ] [C:\Program Files\Logitech\QuickCam\EFVal.dll] [, ] [C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManagerPS.dll] [Logitech Inc., 11.80.1065.0] [PID: 3684 / ADMIN][C:\Program Files\Google\Google Updater\GoogleUpdater.exe] [Google, 2.4.1368.5602.beta] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\Google\Google Updater\2.4.1368.5602\ci.dll] [Google, 2.4.1368.5602.beta] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll] [Google Inc., 4, 1, 805, 4472] [PID: 3828 / ADMIN][D:\软件\超级兔子\MagicSet\ds.exe] [Super Rabbit Software, 1.50] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Windows\system32\vb6chs.dll] [Microsoft Corporation, 6.00.8988] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [PID: 3988 / ADMIN][D:\软件\瑞星杀毒软件\Rising\Rav\RavTask.exe] [Beijing Rising Information Technology Co., Ltd., 20.0.0.24] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [D:\软件\瑞星杀毒软件\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [D:\软件\瑞星杀毒软件\Rising\Rav\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [D:\软件\瑞星杀毒软件\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17] [D:\软件\瑞星杀毒软件\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.1] [D:\软件\瑞星杀毒软件\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 20.0.0.19] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [PID: 4012 / ADMIN][D:\软件\瑞星杀毒软件\Rising\Rav\RSTray.exe] [Beijing Rising Information Technology Co., Ltd., 21.0.0.16] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [D:\软件\瑞星杀毒软件\Rising\Rav\rsmginfo.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 8] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [D:\软件\瑞星杀毒软件\Rising\Rav\RsXML.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2] [D:\软件\瑞星杀毒软件\Rising\Rav\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [D:\软件\瑞星杀毒软件\Rising\Rav\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [D:\软件\瑞星杀毒软件\Rising\Rav\ComServ.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.31] [D:\软件\瑞星杀毒软件\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [D:\软件\瑞星杀毒软件\Rising\Rav\rscommon.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17] [D:\软件\瑞星杀毒软件\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [D:\软件\瑞星杀毒软件\Rising\Rav\pngdll.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5] [D:\软件\瑞星杀毒软件\Rising\Rav\runiep.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.41] [D:\软件\瑞星杀毒软件\Rising\Rav\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.6] [D:\软件\瑞星杀毒软件\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [D:\软件\瑞星杀毒软件\Rising\Rav\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] [PID: 2508 / ADMIN][C:\Program Files\fenglei\DVDCheck.exe] [风雷影音工作室, 1, 0, 0, 1] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 772 / ADMIN][C:\Program Files\Windows Sidebar\sidebar.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 1744 / ADMIN][C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\NMSQLDB.dll] [Nero AG, 3.3.8.0] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Program Files\Common Files\Nero\Lib\NMLogCxx.dll] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\log4cxx.dll] [Nero AG, 1, 0, 1, 0] [C:\Program Files\Common Files\Nero\Lib\NMIndexingServicePS.dll] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\NMCoFoundation.dll] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\NMPluginBase.dll] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\NMFullTextExtraction.dll] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\NMSearchPluginSimilarImages.dll] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\NMDataServices.dll] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvrPS.dll] [Nero AG, 3.3.8.0] [PID: 2592 / ADMIN][D:\软件\瑞星杀毒软件\Rising\Rav\Ravmon.exe] [Beijing Rising Information Technology Co., Ltd., 20.0.01.27] [D:\软件\瑞星杀毒软件\Rising\Rav\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0] [D:\软件\瑞星杀毒软件\Rising\Rav\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [D:\软件\瑞星杀毒软件\Rising\Rav\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [D:\软件\瑞星杀毒软件\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [D:\软件\瑞星杀毒软件\Rising\Rav\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [D:\软件\瑞星杀毒软件\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17] [D:\软件\瑞星杀毒软件\Rising\Rav\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41] [D:\软件\瑞星杀毒软件\Rising\Rav\refs.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18] [D:\软件\瑞星杀毒软件\Rising\Rav\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27] [D:\软件\瑞星杀毒软件\Rising\Rav\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17] [D:\软件\瑞星杀毒软件\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 20.0.0.1] [D:\软件\瑞星杀毒软件\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 20.0.0.19] [D:\软件\瑞星杀毒软件\Rising\Rav\MonRule.dll] [Beijing Rising Information Technology Co., Ltd., 20.0.0.29] [D:\软件\瑞星杀毒软件\Rising\Rav\PngDll.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [D:\软件\瑞星杀毒软件\Rising\Rav\Rsguilib.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 90] [D:\软件\瑞星杀毒软件\Rising\Rav\RsXML.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2] [PID: 1160 / SYSTEM][C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe] [Nero AG, 3.3.8.0] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Common Files\Nero\Lib\NMIndexingServicePS.dll] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\NMLogCxx.dll] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\log4cxx.dll] [Nero AG, 1, 0, 1, 0] [C:\Program Files\Common Files\Nero\Lib\NMDataServices.dll] [Nero AG, 3.3.8.0] [C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvrPS.dll] [Nero AG, 3.3.8.0] [PID: 4216 / ADMIN][C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] [Logitech Inc., 2.56.102.0] [C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.87-8876480SL\Program\backWeb.dll] [BackWeb Technologies Inc., Version 8.1.1 (Build 87R)] [C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.87-8876480SL\Program\bwsec.dll] [BackWeb Technologies Inc., Version 5.1.1 (Build 87R)] [C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.87-8876480SL\Program\clntutil.dll] [N/A, ] [C:\PROGRA~1\Logitech\DESKTO~1\8876480\811~1.87-\program\EN\ClientRC.dll] [BackWeb Technologies Inc., Version 8.1.1 (Build 87R)] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWfiles-8876480.dll] [Logitech Inc., Version 8.1.1 (Build 87R)] [C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.87-8876480SL\Program\BWfiles.dll] [BackWeb Technologies Inc., Version 8.1.1 (Build 87R)] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\Logitech\Desktop Messenger\8876480\Program\SyncExt.dll] [Logitech, Inc., 2.56.102.0] [PID: 4376 / ADMIN][C:\Program Files\Windows Sidebar\sidebar.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [D:\软件\瑞星杀毒软件\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5] [C:\Windows\system32\atiumdag.dll] [ATI Technologies Inc. , 7.14.10.0567] [C:\Windows\system32\atiumdva.dll] [ATI Technologies Inc. , 7.14.10.0182] [C:\Windows\system32\icm32.dll] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 4884 / ADMIN][C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE] [Acer Inc., 2.5.4011.0] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7fe79782947b85d961fd55cb5e02a129\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Acer\Empowering Technology\log4net.dll] [The Apache Software Foundation, 1.2.10.0] [C:\Acer\Empowering Technology\Acer.Empowering.Framework.DialogManager.dll] [, 1.0.0.0] [C:\Acer\Empowering Technology\Acer.Empowering.Shared.UI.dll] [Acer Inc., 2.5.0.0] [C:\Acer\Empowering Technology\Acer.Empowering.Windows.Forms.dll] [Acer inc., 2.0.27.0] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\fcc712bc5da45a672e7f1ad176dbd5a5\System.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\70c145ed25af403aa899ffcb633350b1\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\35a9f19f21aac42b979be321f1bb5fd4\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\d7b63c1d2ab17ac3cc24881c4ff78b63\System.Configuration.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f76a7622c73e26e4d2daf54068d7ff79\System.Xml.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Acer\Empowering Technology\Acer.Empowering.Framework.Presenter.dll] [Acer Inc., 2.5.4011.0] [C:\Acer\Empowering Technology\Acer.Empowering.Framework.LaunchBarView.dll] [Acer Inc., 2.5.4011.0] [C:\Acer\Empowering Technology\Acer.Empowering.Framework.Shared.dll] [Acer Inc., 2.5.0.0] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Acer\Empowering Technology\Acer.Empowering.Framework.Host.dll] [Acer Inc., 2.5.4011.0] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\3fe3f7ba542ab78e52e49d19640a7e64\System.Management.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Acer\Empowering Technology\Acer.Empowering.Framework.PasswordSetting.dll] [, 2.5.4011.0] [C:\Acer\Empowering Technology\Acer.Empowering.Framework.Interface.dll] [Acer Inc., 2.5.4011.0] [C:\Acer\Empowering Technology\zh-CHS\Acer.Empowering.Framework.LaunchBarView.resources.dll] [Acer Inc., 2.5.4011.0] [C:\Acer\Empowering Technology\eDataSecurity\eDSplugin.dll] [Egis Incorporated., 2.8.4360.339] [C:\Acer\Empowering Technology\eDataSecurity\EDS.Windows.Forms.dll] [Egis Incorporated., 3.0.3058.62] [C:\Acer\Empowering Technology\eDataSecurity\x86\sysenv.dll] [Egis Incorporated., 3, 0, 164, 7] [C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_zh-CHS_b77a5c561934e089\mscorlib.resources.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Acer\Empowering Technology\eSettings\eSettings.Plugin.dll] [, 2.05.4302] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\8fbca0140921ed343cb511595869a0ed\System.Runtime.Remoting.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\61b951bd03727a096c1c02cb18d5ce30\System.ServiceProcess.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Acer\Empowering Technology\eSettings.Model.ComputerInterfaces.dll] [, 2.05.4302] [C:\Acer\Empowering Technology\eSettings\eSettings.View.dll] [, 2.05.4302] [C:\Acer\Empowering Technology\eSettings\eSettings.Presenter.dll] [, 2.05.4302] [C:\Acer\Empowering Technology\eRecovery\eRecoveryUI.dll] [Acer Inc., 2.5.4014.0] [C:\Acer\Empowering Technology\eRecovery\ServiceInterface.dll] [, 2.05.4001] [C:\Acer\Empowering Technology\ePerformance\ePerformance.Plugin.dll] [, 1.0.0.0] [C:\Acer\Empowering Technology\ePerformance\ePerformance.Presenter.dll] [, 1.0.0.0] [C:\Acer\Empowering Technology\ePerformance\ePerformance.Model.Interface.dll] [, 1.0.0.0] [C:\Acer\Empowering Technology\ePerformance\ePerformance.Model.dll] [, 1.0.0.0] [C:\Acer\Empowering Technology\ePerformance\ePerformance.Library.dll] [, 1.0.0.0] [C:\Acer\Empowering Technology\MemCheck.Interface.dll] [, 1.0.0.0] [C:\Acer\Empowering Technology\eRecovery\zh-CHS\eRecoveryUI.resources.dll] [Acer Inc., 2.5.4011.0] [C:\Acer\Empowering Technology\eSettings\zh-CHS\eSettings.Plugin.resources.dll] [, 2.05.4302] [C:\Acer\Empowering Technology\eSettings\zh-CHS\eSettings.Presenter.resources.dll] [, 2.05.4302] [C:\Acer\Empowering Technology\ePerformance\zh-CHS\ePerformance.Plugin.resources.dll] [, 1.0.0.0] [PID: 4988 / ADMIN][C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE] [Acer Inc., 2.5.5.3] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 5216 / ADMIN][C:\Windows\system32\wbem\unsecapp.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 5356 / SYSTEM][C:\Windows\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 5812 / SYSTEM][C:\Program Files\PC Connectivity Solution\ServiceLayer.exe] [Nokia., 7, 0, 13, 0] [C:\Program Files\PC Connectivity Solution\PCCS_DBEngine.dll] [Nokia, 7, 0, 0, 0] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 4168 / ADMIN][C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe] [Logitech Inc., 11.80.1065.0] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Program Files\Common Files\LogiShrd\LComMgr\DevMngr.dll] [, ] [C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManagerPS.dll] [Logitech Inc., 11.80.1065.0] [C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSCli.dll] [Logitech Inc., 1.17.1048.0] [C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSPS.dll] [, ] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [C:\Program Files\Logitech\QuickCam\EFVal.dll] [, ] [PID: 696 / SYSTEM][C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe] [, 7, 0, 5, 0] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 4492 / SYSTEM][C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe] [, 7, 0, 1, 0] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 5924 / ADMIN][D:\软件\瑞星杀毒软件\Rising\Rav\RsAgent.exe] [Beijing Rising Information Technology Co., Ltd., 20.0.0.10] [D:\软件\瑞星杀毒软件\Rising\Rav\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0] [D:\软件\瑞星杀毒软件\Rising\Rav\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [D:\软件\瑞星杀毒软件\Rising\Rav\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [D:\软件\瑞星杀毒软件\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [D:\软件\瑞星杀毒软件\Rising\Rav\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 4212 / ADMIN][C:\Windows\MSAgent\agentsvr.exe] [(Verified) Microsoft Corporation, 5.2.3790.1241] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 5596 / ADMIN][D:\软件\瑞星杀毒软件\Rising\Rav\Ras.exe] [Beijing Rising Information Technology Co., Ltd., 6.0.0.7] [D:\软件\瑞星杀毒软件\Rising\Rav\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0] [D:\软件\瑞星杀毒软件\Rising\Rav\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [D:\软件\瑞星杀毒软件\Rising\Rav\KakaMgr.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.27] [D:\软件\瑞星杀毒软件\Rising\Rav\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [D:\软件\瑞星杀毒软件\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [D:\软件\瑞星杀毒软件\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [D:\软件\瑞星杀毒软件\Rising\Rav\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [D:\软件\瑞星杀毒软件\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [D:\软件\瑞星杀毒软件\Rising\Rav\dbmgr.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.4] [D:\软件\瑞星杀毒软件\Rising\Rav\RSXML.DLL] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2] [D:\软件\瑞星杀毒软件\Rising\Rav\pweb.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.19] [D:\软件\瑞星杀毒软件\Rising\Rav\pscan.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.58] [D:\软件\瑞星杀毒软件\Rising\Rav\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.6] [D:\软件\瑞星杀毒软件\Rising\Rav\pset.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.12] [D:\软件\瑞星杀毒软件\Rising\Rav\pdefend.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.14] [D:\软件\瑞星杀毒软件\Rising\Rav\ptools.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.16] [D:\软件\瑞星杀毒软件\Rising\Rav\psysinfo.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.56] [D:\软件\瑞星杀毒软件\Rising\Rav\PngDll.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] [D:\软件\瑞星杀毒软件\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5] [C:\Windows\system32\Macromed\Flash\Flash9f.ocx] [Adobe Systems, Inc., 9,0,124,0] [D:\软件\瑞星杀毒软件\Rising\Rav\kengine.dll] [Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15] [D:\软件\瑞星杀毒软件\Rising\Rav\posttrt.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 24] [D:\软件\瑞星杀毒软件\Rising\Rav\kscanex.dll] [Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 2] [D:\软件\瑞星杀毒软件\Rising\Rav\engine.dll] [Beijing Rising Information Technology Co., Ltd., 19, 0, 0, 26] [D:\软件\瑞星杀毒软件\Rising\Rav\rsdialog.dll] [Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 6] [PID: 708 / ADMIN][D:\软件\瑞星杀毒软件\Rising\Rav\knownsvr.exe] [Beijing Rising Information Technology Co., Ltd., 6.0.0.14] [D:\软件\瑞星杀毒软件\Rising\Rav\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.6] [D:\软件\瑞星杀毒软件\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [D:\软件\瑞星杀毒软件\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 3444 / SYSTEM][C:\Windows\servicing\TrustedInstaller.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 5672 / ADMIN][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 7.00.6000.16386 (vista_rtm.061101-2205)] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll] [Egis Incorporated, 3.0.0.2] [C:\Acer\Empowering Technology\eDataSecurity\x86\sysenv.dll] [Egis Incorporated., 3, 0, 164, 7] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [D:\软件\超级兔子\MagicSet\haokanbar.dll] [Xiang Feng Technology, 3, 5, 0, 1660] [C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll] [Thunder Networking Technologies,LTD, 1.0.5.34] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 8.0.0.2006102200] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll] [Egis, 3, 0, 4, 0] [C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll] [Thunder Networking Technologies,LTD, 5, 0, 8, 120] [C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_01.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 20] [C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_01.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 16] [C:\Windows\system32\UrlFilter.dll] [Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15] [D:\软件\瑞星杀毒软件\Rising\Rav\UrlRule.dll] [Beijing Rising Information Technology Co., Ltd., 1.0.0.15] [C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll] [Google Inc., 4, 1, 805, 4472] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] [D:\软件\瑞星杀毒软件\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5] [C:\Windows\system32\Macromed\Flash\Flash9f.ocx] [Adobe Systems, Inc., 9,0,124,0] [C:\Windows\system32\atiumdag.dll] [ATI Technologies Inc. , 7.14.10.0567] [C:\Windows\system32\atiumdva.dll] [ATI Technologies Inc. , 7.14.10.0182] [C:\Windows\system32\SOGOUPY.IME] [Sogou.com Inc., 3.6.0.1653] [PID: 3056 / ADMIN][C:\Windows\system32\conime.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 5860 / ADMIN][C:\Windows\notepad.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 2648 / ADMIN][D:\电脑软件\SREngLdr.EXE] [Smallfrogs Studio, 2.7.0.1210] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [PID: 5200 / ADMIN][D:\电脑软件\SRE560c0e1.EXE] [Smallfrogs Studio, 2.7.0.1210] [C:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Windows\TEMP\logishrd\LVPrcInj01.dll] [Logitech Inc., 11.80.1048.0] [D:\电脑软件\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15] [D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL] [Beijing Rising Information Technology Co., Ltd., 20.0.0.7] ================================== 文件关联 .TXT Error. [C:\Windows\notepad.exe %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["%SystemRoot%\hh.exe" %1] .HLP OK. [%SystemRoot%\winhlp32.exe %1] .INI Error. [C:\Windows\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .VBS OK. ["%SystemRoot%\System32\WScript.exe" "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 Rising Net Filter over [MSAFD Tcpip [TCP/IP]] D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL(Beijing Rising Information Technology Co., Ltd., HookSpi Dll) Rising Net Filter over [RSVP TCP 服务提供商] D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL(Beijing Rising Information Technology Co., Ltd., HookSpi Dll) Rising Net Filter D:\软件\瑞星杀毒软件\RISING\RAV\HOOKSPI.DLL(Beijing Rising Information Technology Co., Ltd., HookSpi Dll) ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ::1 localhost ================================== 进程特权扫描 N/A ================================== 计划任务 [已启用] \\RunAsStdUser Task9299 "D:\软件\瑞星杀毒软件\Rising\Rav\Rav.exe" [已启用] \\SogouImeMgr D:\软件\搜狗拼音\SOGOUI~1\360~1.165\PINYIN~1.EXE /S [已启用] \Microsoft\Windows\Bluetooth\UninstallDeviceTask BthUdTask.exe $(Arg0) [已启用] \Microsoft\Windows\CertificateServicesClient\SystemTask N/A [已启用] \Microsoft\Windows\CertificateServicesClient\UserTask N/A [已启用] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam N/A [已启用] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator %SystemRoot%\System32\wsqmcons.exe [已启用] \Microsoft\Windows\Customer Experience Improvement Program\OptinNotification %SystemRoot%\System32\wsqmcons.exe -n 0x1C577FA2B69CAD0 [已启用] \Microsoft\Windows\Defrag\ManualDefrag %windir%\system32\defrag.exe -c [已启用] \Microsoft\Windows\Defrag\ScheduledDefrag %windir%\system32\defrag.exe -c -i [已启用] \Microsoft\Windows\Media Center\ehDRMInit %SystemRoot%\ehome\ehPrivJob.exe /DRMInit [已启用] \Microsoft\Windows\Media Center\mcupdate %SystemRoot%\ehome\mcupdate $(Arg0) -gc [已启用] \Microsoft\Windows\Media Center\OCURActivate %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate [已启用] \Microsoft\Windows\Media Center\OCURDiscovery %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery [已启用] \Microsoft\Windows\Media Center\UpdateRecordPath %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) [已启用] \Microsoft\Windows\MobilePC\HotStart N/A [已启用] \Microsoft\Windows\MobilePC\TMM N/A [已启用] \Microsoft\Windows\MUI\LPRemove %windir%\system32\lpremove.exe [已启用] \Microsoft\Windows\Multimedia\SystemSoundsService N/A [已启用] \Microsoft\Windows\NetworkAccessProtection\NAPStatus UI N/A [已启用] \Microsoft\Windows\Shell\CrawlStartPages N/A [已禁用] \Microsoft\Windows\SideShow\AutoWake N/A [已启用] \Microsoft\Windows\SideShow\GadgetManager N/A [已禁用] \Microsoft\Windows\SideShow\SessionAgent N/A [已禁用] \Microsoft\Windows\SideShow\SystemDataProviders N/A [已启用] \Microsoft\Windows\SystemRestore\SR %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation [已启用] \Microsoft\Windows\Tcpip\IpAddressConflict1 rundll32 ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem [已启用] \Microsoft\Windows\Tcpip\IpAddressConflict2 rundll32 ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem [已启用] \Microsoft\Windows\UPnP\UPnPHostConfig sc.exe config upnphost start= auto [已启用] \Microsoft\Windows\Windows Error Reporting\QueueReporting %windir%\system32\wermgr.exe -queuereporting [已启用] \Microsoft\Windows\WindowsCalendar\Reminders - ADMIN C:\Program Files\Windows Calendar\WinCal.exe /reminder [已启用] \Microsoft\Windows\Wired\GatherWiredInfo %windir%\system32\gatherWiredInfo.vbs [已启用] \Microsoft\Windows\Wireless\GatherWirelessInfo %windir%\system32\gatherWirelessInfo.vbs ================================== API HOOK N/A ================================== 隐藏进程 N/A ================================== [/CODE]