狙剑(V2008)-系统体检记录 狙剑下载地址:http://www.ZhuLinFeng.com/ ====================================================== 操作系统:Windows XP 版本号:5.1.2600.2 (Service Pack 2) ====================================================== SSDT-HOOK: 序号:11 函数:NtAdjustPrivilegesToken 模块:\??\d:\tddownload\狙剑v2008-0429\SnipeSword.sys HOOK类型:HOOK 序号:17 函数:NtAllocateVirtualMemory 模块:\??\d:\tddownload\狙剑v2008-0429\SnipeSword.sys HOOK类型:HOOK 序号:19 函数:NtAssignProcessToJobObject 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:31 函数:NtConnectPort 模块:\??\F:\data\RfwolHJ\Rising\RFW\rfwtdi.sys HOOK类型:HOOK 序号:41 函数:NtCreateKey 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:43 函数:NtCreateMutant 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:47 函数:NtCreateProcess 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:48 函数:NtCreateProcessEx 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:50 函数:NtCreateSection 模块:\??\d:\tddownload\狙剑v2008-0429\SnipeSword.sys HOOK类型:HOOK 序号:53 函数:NtCreateThread 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:57 函数:NtDebugActiveProcess 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:63 函数:NtDeleteKey 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:65 函数:NtDeleteValueKey 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:66 函数:NtDeviceIoControlFile 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:68 函数:NtDuplicateObject 模块:\??\d:\tddownload\狙剑v2008-0429\SnipeSword.sys HOOK类型:HOOK 序号:97 函数:NtLoadDriver 模块:\??\d:\tddownload\狙剑v2008-0429\SnipeSword.sys HOOK类型:HOOK 序号:103 函数:NtLockVirtualMemory 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:119 函数:NtOpenKey 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:122 函数:NtOpenProcess 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:125 函数:NtOpenSection 模块:\??\d:\tddownload\狙剑v2008-0429\SnipeSword.sys HOOK类型:HOOK 序号:137 函数:NtProtectVirtualMemory 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:145 函数:NtQueryDirectoryFile 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:177 函数:NtQueryValueKey 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:180 函数:NtQueueApcThread 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:192 函数:NtRenameKey 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:200 函数:NtRequestWaitReplyPort 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:204 函数:NtRestoreKey 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:213 函数:NtSetContextThread 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:237 函数:NtSetSecurityObject 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:240 函数:NtSetSystemInformation 模块:\??\d:\tddownload\狙剑v2008-0429\SnipeSword.sys HOOK类型:HOOK 序号:242 函数:NtSetSystemTime 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:247 函数:NtSetValueKey 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:253 函数:NtSuspendProcess 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:254 函数:NtSuspendThread 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:255 函数:NtSystemDebugControl 模块:\??\d:\tddownload\狙剑v2008-0429\SnipeSword.sys HOOK类型:HOOK 序号:257 函数:NtTerminateProcess 模块:\??\d:\tddownload\狙剑v2008-0429\SnipeSword.sys HOOK类型:HOOK 序号:258 函数:NtTerminateThread 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:267 函数:NtUnmapViewOfSection 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK 序号:277 函数:NtWriteVirtualMemory 模块:\SystemRoot\system32\drivers\HOOKHELP.sys HOOK类型:HOOK ====================================================== FSD-HOOK: 序号:0 IRP:IRP_MJ_CREATE HOOK模块:\SystemRoot\system32\drivers\HOOKHELP.sys INLINE-HOOK模块: 序号:2 IRP:IRP_MJ_CLOSE HOOK模块:\SystemRoot\system32\drivers\HOOKHELP.sys INLINE-HOOK模块: 序号:4 IRP:IRP_MJ_WRITE HOOK模块:\SystemRoot\system32\drivers\HOOKHELP.sys INLINE-HOOK模块: 序号:6 IRP:IRP_MJ_SET_INFORMATION HOOK模块:\SystemRoot\system32\drivers\HOOKHELP.sys INLINE-HOOK模块: 序号:13 IRP:IRP_MJ_FILE_SYSTEM_CONTROL HOOK模块:\SystemRoot\system32\drivers\HOOKHELP.sys INLINE-HOOK模块: 序号:18 IRP:IRP_MJ_CLEANUP HOOK模块:\SystemRoot\system32\drivers\HOOKHELP.sys INLINE-HOOK模块: 序号:21 IRP:IRP_MJ_SET_SECURITY HOOK模块:\SystemRoot\system32\drivers\HOOKHELP.sys INLINE-HOOK模块: ====================================================== 文件过滤系统驱动: 文件系统:\FileSystem\Ntfs 文件:C:\WINDOWS\system32\drivers\Ntfs.sys ====================================================== 内核Inline-HOOK: 跳转模块:\??\C:\WINDOWS\system32\drivers\SafeBoxKrnl.sys Inline-函数:KeUserModeCallback 跳转模块:\??\C:\WINDOWS\system32\drivers\SafeBoxKrnl.sys Inline-函数:KeReleaseInStackQueuedSpinLockFromDpcLevel + 0xB5D ====================================================== API-HOOK: 无 ====================================================== 无微软签名进程: 进程:C:\WINDOWS\system32\Ati2evxx.exe 进程:D:\TDDOWNLOAD\狙剑V2008-0429\SnipeSword.exe 进程:C:\WINDOWS\system32\Ati2evxx.exe 进程:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe 进程:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe 进程:system ====================================================== 无微软签名模块 进程:C:\WINDOWS\System32\alg.exe 模块:C:\WINDOWS\System32\UxTheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\Ati2evxx.exe 模块:C:\WINDOWS\system32\uxtheme.dll 模块:C:\WINDOWS\system32\ati2evxx.dll 模块:C:\WINDOWS\system32\atipdlxx.dll 模块:C:\WINDOWS\system32\Ati2edxx.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:F:\Program Files\Rising\Rav\CCENTER.EXE 模块:C:\WINDOWS\system32\uxtheme.dll 模块:F:\Program Files\Rising\Rav\cnt08.dll 模块:F:\Program Files\Rising\Rav\cnt09.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:F:\Program Files\Rising\Rav\combase.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:F:\data\RfwolHJ\Rising\RFW\RavTask.exe 模块:F:\data\RfwolHJ\Rising\RFW\rstask.dll 模块:C:\WINDOWS\system32\uxtheme.dll 模块:F:\data\RfwolHJ\Rising\RFW\rsstub.dll 模块:F:\data\RfwolHJ\Rising\RFW\proccomm.dll 模块:C:\WINDOWS\system32\MSVCP71.dll 模块:C:\WINDOWS\system32\MSVCR71.dll 模块:F:\data\RfwolHJ\Rising\RFW\CfgDll.dll 模块:F:\data\RfwolHJ\Rising\RFW\RSAPPMGR.dll 模块:F:\data\RfwolHJ\Rising\RFW\rsconf.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:D:\TDDOWNLOAD\狙剑V2008-0429\SnipeSword.exe 模块:C:\WINDOWS\system32\uxtheme.dll 模块:C:\WINDOWS\system32\wininet.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\svchost.exe 模块:C:\WINDOWS\system32\UxTheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:F:\data\RfwolHJ\Rising\RFW\CCENTER.EXE 模块:C:\WINDOWS\system32\uxtheme.dll 模块:F:\data\RfwolHJ\Rising\RFW\cnt09.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:F:\data\RfwolHJ\Rising\RFW\combase.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\ctfmon.exe 模块:C:\WINDOWS\system32\UxTheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\Ati2evxx.exe 模块:C:\WINDOWS\system32\uxtheme.dll 模块:C:\WINDOWS\system32\atipdlxx.dll 模块:C:\WINDOWS\system32\Ati2edxx.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\services.exe 模块:C:\WINDOWS\system32\UxTheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\svchost.exe 模块:C:\WINDOWS\system32\WININET.dll 模块:C:\WINDOWS\system32\UxTheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\csrss.exe 模块:C:\WINDOWS\system32\sxs.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:F:\data\RfwolHJ\Rising\RFW\rfwsrv.exe 模块:F:\data\RfwolHJ\Rising\RFW\urllib.dll 模块:C:\WINDOWS\system32\uxtheme.dll 模块:F:\data\RfwolHJ\Rising\RFW\proccomm.dll 模块:F:\data\RfwolHJ\Rising\RFW\CfgDll.dll 模块:F:\data\RfwolHJ\Rising\RFW\RSAPPMGR.dll 模块:F:\data\RfwolHJ\Rising\RFW\rfwproxy.dll 模块:F:\data\RfwolHJ\Rising\RFW\relibldr.dll 模块:F:\data\RfwolHJ\Rising\RFW\viruslib.dll 模块:F:\data\RfwolHJ\Rising\RFW\refs.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:F:\data\RfwolHJ\Rising\RFW\recomp.dll 模块:F:\data\RfwolHJ\Rising\RFW\urlrule.dll 模块:F:\data\RfwolHJ\Rising\RFW\comx3.dll 模块:F:\data\RfwolHJ\Rising\RFW\rsnetsvr.dll 模块:F:\data\RfwolHJ\Rising\RFW\Rfwdrv.dll 模块:F:\data\RfwolHJ\Rising\RFW\rfwdrvc.dll 模块:F:\data\RfwolHJ\Rising\RFW\mPorts.dll 模块:F:\data\RfwolHJ\Rising\RFW\rfwsrv.dll 模块:F:\data\RfwolHJ\Rising\RFW\Syslay.dll 模块:F:\data\RfwolHJ\Rising\RFW\rfwrule.dll 模块:F:\data\RfwolHJ\Rising\RFW\rfwlog.dll 模块:F:\data\RfwolHJ\Rising\RFW\MonComm.dll 模块:F:\data\RfwolHJ\Rising\RFW\MonBase.dll 模块:C:\WINDOWS\system32\MSVCP71.dll 模块:C:\WINDOWS\system32\MSVCR71.dll 模块:F:\data\RfwolHJ\Rising\RFW\combase.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\svchost 模块:C:\WINDOWS\system32\UxTheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:F:\360\360safebox\safeboxTray.exe 模块:F:\360\360safebox\liveupdate.dll 模块:F:\360\360safebox\safeboxapi.dll 模块:C:\WINDOWS\system32\uxtheme.dll 模块:F:\360\360safebox\360wservice.dll 模块:C:\WINDOWS\system32\urlmon.dll 模块:C:\WINDOWS\system32\WININET.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:F:\data\RfwolHJ\Rising\RFW\RsTray.exe 模块:C:\WINDOWS\system32\urlmon.dll 模块:F:\data\RfwolHJ\Rising\RFW\rfwlog.dll 模块:F:\data\RfwolHJ\Rising\RFW\PngDll.dll 模块:F:\data\RfwolHJ\Rising\RFW\rfwtray.dll 模块:F:\data\RfwolHJ\Rising\RFW\rsmginfo.dll 模块:F:\data\RfwolHJ\Rising\RFW\rsnetsvr.dll 模块:F:\data\RfwolHJ\Rising\RFW\ravbintl.dll 模块:C:\WINDOWS\system32\WININET.dll 模块:F:\data\RfwolHJ\Rising\RFW\rsguilib.dll 模块:C:\WINDOWS\system32\MFC71.DLL 模块:F:\data\RfwolHJ\Rising\RFW\rspalvd.dll 模块:F:\data\RfwolHJ\Rising\RFW\CfgDll.dll 模块:F:\data\RfwolHJ\Rising\RFW\RSAPPMGR.dll 模块:F:\data\RfwolHJ\Rising\RFW\rsconf.dll 模块:F:\data\RfwolHJ\Rising\RFW\rfwrule.dll 模块:F:\data\RfwolHJ\Rising\RFW\MonState.dll 模块:F:\data\RfwolHJ\Rising\RFW\ProcComm.dll 模块:F:\data\RfwolHJ\Rising\RFW\rsxml.dll 模块:F:\data\RfwolHJ\Rising\RFW\comx3.dll 模块:F:\data\RfwolHJ\Rising\RFW\Syslay.dll 模块:F:\data\RfwolHJ\Rising\RFW\rslang.dll 模块:F:\data\RfwolHJ\Rising\RFW\ComServ.dll 模块:C:\WINDOWS\system32\MSVCP71.dll 模块:C:\WINDOWS\system32\MSVCR71.dll 模块:C:\WINDOWS\system32\uxtheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.3106.38550__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Dashboard\2.0.3106.38813__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3106.38668__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3106.38573__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3106.38724__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3106.38657__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3106.38706__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3106.38666__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3106.38689__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3106.38519__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3106.38565__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3106.38805__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3091.17982__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3106.38510__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3091.17977__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3091.17968__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3106.38503__90ba9c70f846762e\CLI.Component.Dashboard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3106.38579__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3106.38746__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3091.18001__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray.resources\2.0.3106.38774_zh-CHS_90ba9c70f846762e\CLI.Component.Systemtray.resources.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3106.38558__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3106.38542__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3106.38731__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll 模块:C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3106.38798__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3091.17987__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3106.38533__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3091.17978__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3091.17970__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3091.17961__90ba9c70f846762e\CLI.Component.Client.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3106.38526__90ba9c70f846762e\CLI.Component.Wizard.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3091.17970__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3106.38774__90ba9c70f846762e\CLI.Component.Systemtray.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3091.17978__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3106.38485__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\7ad8f351d5bb714482394c49b7f4b83e\System.Web.ni.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.3091.17977__90ba9c70f846762e\APM.Foundation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.3106.38482__90ba9c70f846762e\APM.Server.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Shared\2.0.3091.18001__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay4.Graphics.Runtime\2.0.3106.38812__90ba9c70f846762e\CLI.Aspect.PowerPlay4.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3091.17990__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3106.38667__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3091.17992__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3106.38723__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.3091.17987__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.3106.38549__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll 模块:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3091.17990__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3106.38665__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3091.17982__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3106.38704__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3091.17990__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3106.38667__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3091.17991__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3106.38687__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3091.17988__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3106.38578__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3091.17993__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3106.38756__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3091.17976__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll 模块:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3091.17979__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3106.38664__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3091.17992__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3091.17993__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3106.38714__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3091.17983__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3106.38517__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll 模块:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3091.17961__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3091.18004__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.3106.38486__90ba9c70f846762e\ATIDEMOS.dll 模块:C:\Program Files\ATI Technologies\ATI.ACE\Core-Implementation\32\wbhelp2.dll 模块:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.3091.17980__90ba9c70f846762e\DEM.OS.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3106.38837__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3091.17981__90ba9c70f846762e\DEM.OS.I0602.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3091.17970__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3106.38494__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\d59d5084a22c924b87c42935c58031b2\Accessibility.ni.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\71b3d680b8c5984691dff94eb676ee25\System.Configuration.ni.dll 模块:C:\WINDOWS\system32\atiadlxx.dll 模块:C:\WINDOWS\system32\ATIDEMGX.dll 模块:C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll 模块:C:\WINDOWS\system32\SXS.DLL 模块:C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3091.17981__90ba9c70f846762e\DEM.Graphics.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll 模块:C:\PROGRA~1\ATITEC~1\ATI.ACE\CORE-I~1\32\wbocx.ocx 模块:C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3091.17980__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3091.17968__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory.resources\2.0.3106.38488_zh-CHS_90ba9c70f846762e\CLI.Component.SkinFactory.resources.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3091.18004__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3106.38822__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3091.17968__90ba9c70f846762e\AEM.Server.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3091.17956__90ba9c70f846762e\NEWAEM.Foundation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3106.38484__90ba9c70f846762e\AEM.Server.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.3091.17963__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3091.17967__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3091.17961__90ba9c70f846762e\CLI.Foundation.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3091.17979__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3106.38485__90ba9c70f846762e\CLI.Component.Runtime.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\7930a5df18071c41a79cb1ff151e6e00\System.Xml.ni.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3091.18035__90ba9c70f846762e\CLI.Foundation.XManifest.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3106.38488__90ba9c70f846762e\CLI.Component.SkinFactory.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3106.38785__90ba9c70f846762e\MOM.Implementation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3091.17965__90ba9c70f846762e\LOG.Foundation.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3106.38782__90ba9c70f846762e\LOG.Foundation.Implementation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3091.17977__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3091.17957__90ba9c70f846762e\CLI.Foundation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3091.17977__90ba9c70f846762e\MOM.Foundation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3091.17954__90ba9c70f846762e\LOG.Foundation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3106.38784__90ba9c70f846762e\CCC.Implementation.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1952593fe3370c4098cc1e7ac723d356\System.Windows.Forms.ni.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\27fa361f76c5534fbee15a2377334c41\System.Drawing.ni.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\594aecd4fcacc3418e79dea1f8b23538\System.ni.dll 模块:C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll 模块:C:\WINDOWS\system32\uxtheme.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\a330b6f127c694498fb862d60742f2b7\mscorlib.ni.dll 模块:C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll 模块:C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 模块:C:\WINDOWS\system32\mscoree.dll 进程:C:\WINDOWS\system32\svchost 模块:C:\WINDOWS\system32\UxTheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\winlogon.exe 模块:C:\WINDOWS\system32\Ati2evxx.dll 模块:C:\WINDOWS\system32\uxtheme.dll 模块:C:\WINDOWS\system32\sfc_os.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\Explorer.EXE 模块:C:\Program Files\Microsoft Office\OFFICE11\msohev.dll 模块:C:\Program Files\Thunder\Components\ResWorker\DataProcessor_00.dll 模块:C:\Program Files\Thunder\Components\ResWorker\DsBho_00.dll 模块:C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll 模块:C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll 模块:C:\WINDOWS\system32\RavExt.dll 模块:C:\Program Files\WinRAR\rarext.dll 模块:C:\WINDOWS\system32\shdoclc.dll 模块:C:\WINDOWS\system32\SXS.DLL 模块:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamchs.dll 模块:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll 模块:C:\WINDOWS\system32\urlmon.dll 模块:C:\Program Files\FreeLaunchBar\flb.dll 模块:C:\WINDOWS\system32\UxTheme.dll 模块:C:\WINDOWS\system32\SHDOCVW.dll 模块:C:\WINDOWS\system32\WININET.dll 模块:C:\WINDOWS\system32\BROWSEUI.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:F:\Program Files\Rising\Rav\RsTray.exe 模块:C:\WINDOWS\system32\urlmon.dll 模块:F:\Program Files\Rising\Rav\rsmginfo.dll 模块:F:\Program Files\Rising\Rav\ScanPrxy.dll 模块:F:\Program Files\Rising\Rav\RavITray.dll 模块:F:\Program Files\Rising\Rav\PngDll.dll 模块:F:\Program Files\Rising\Rav\MonTray.dll 模块:F:\Program Files\Rising\Rav\mruleui.dll 模块:F:\Program Files\Rising\Rav\ravbintl.dll 模块:C:\WINDOWS\system32\WININET.dll 模块:F:\Program Files\Rising\Rav\rspalvd.dll 模块:F:\Program Files\Rising\Rav\CfgDll.dll 模块:F:\Program Files\Rising\Rav\RSAPPMGR.dll 模块:F:\Program Files\Rising\Rav\rsconf.dll 模块:F:\Program Files\Rising\Rav\rsguilib.dll 模块:C:\WINDOWS\system32\MFC71.DLL 模块:F:\Program Files\Rising\Rav\ScanEvnt.dll 模块:F:\Program Files\Rising\Rav\MonState.dll 模块:F:\Program Files\Rising\Rav\ProcComm.dll 模块:F:\Program Files\Rising\Rav\rsxml.dll 模块:F:\Program Files\Rising\Rav\comx3.dll 模块:F:\Program Files\Rising\Rav\Syslay.dll 模块:F:\Program Files\Rising\Rav\rslang.dll 模块:F:\Program Files\Rising\Rav\ComServ.dll 模块:C:\WINDOWS\system32\MSVCP71.dll 模块:C:\WINDOWS\system32\MSVCR71.dll 模块:C:\WINDOWS\system32\uxtheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:F:\Program Files\Rising\Rav\rsnetsvr.exe 模块:C:\WINDOWS\system32\urlmon.dll 模块:C:\WINDOWS\system32\uxtheme.dll 模块:F:\Program Files\Rising\Rav\ProcComm.dll 模块:C:\WINDOWS\system32\MSVCP71.dll 模块:C:\WINDOWS\system32\MSVCR71.dll 模块:F:\Program Files\Rising\Rav\comx3.dll 模块:F:\Program Files\Rising\Rav\Syslay.dll 模块:F:\Program Files\Rising\Rav\NComm.dll 模块:C:\WINDOWS\system32\WININET.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\spoolsv.exe 模块:C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll 模块:C:\WINDOWS\system32\mdimon.dll 模块:C:\WINDOWS\system32\sfc_os.dll 模块:C:\WINDOWS\system32\UxTheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM 模块:C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3091.17956__90ba9c70f846762e\NEWAEM.Foundation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3106.38784__90ba9c70f846762e\CCC.Implementation.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\7ad8f351d5bb714482394c49b7f4b83e\System.Web.ni.dll 模块:C:\WINDOWS\system32\urlmon.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3091.17977__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3091.17977__90ba9c70f846762e\MOM.Foundation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3106.38782__90ba9c70f846762e\LOG.Foundation.Implementation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3091.17965__90ba9c70f846762e\LOG.Foundation.Private.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3091.17954__90ba9c70f846762e\LOG.Foundation.dll 模块:C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3106.38785__90ba9c70f846762e\MOM.Implementation.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1952593fe3370c4098cc1e7ac723d356\System.Windows.Forms.ni.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\27fa361f76c5534fbee15a2377334c41\System.Drawing.ni.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\594aecd4fcacc3418e79dea1f8b23538\System.ni.dll 模块:C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll 模块:C:\WINDOWS\system32\uxtheme.dll 模块:C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\a330b6f127c694498fb862d60742f2b7\mscorlib.ni.dll 模块:C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll 模块:C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 模块:C:\WINDOWS\system32\mscoree.dll 进程:F:\Program Files\Rising\Rav\RavMonD.exe 模块:F:\Program Files\Rising\Rav\ur001.dat 模块:F:\Program Files\Rising\Rav\extmail.dll 模块:F:\Program Files\Rising\Rav\revm.dll 模块:F:\Program Files\Rising\Rav\urutils.dll 模块:F:\Program Files\Rising\Rav\ur000.dat 模块:F:\Program Files\Rising\Rav\scanpe.dll 模块:F:\Program Files\Rising\Rav\pearc.dll 模块:F:\Program Files\Rising\Rav\scansct.dll 模块:F:\Program Files\Rising\Rav\extfile.dll 模块:F:\Program Files\Rising\Rav\scanex.dll 模块:F:\Program Files\Rising\Rav\unexe.dll 模块:F:\Program Files\Rising\Rav\scanexec.dll 模块:F:\Program Files\Rising\Rav\nvfile.dll 模块:F:\Program Files\Rising\Rav\ffr.dll 模块:C:\WINDOWS\system32\uxtheme.dll 模块:F:\Program Files\Rising\Rav\relibldr.dll 模块:F:\Program Files\Rising\Rav\viruslib.dll 模块:F:\Program Files\Rising\Rav\Scanner.dll 模块:F:\Program Files\Rising\Rav\ScanAdd.dll 模块:F:\Program Files\Rising\Rav\RSStore.dll 模块:F:\Program Files\Rising\Rav\refs.dll 模块:F:\Program Files\Rising\Rav\recomp.dll 模块:C:\WINDOWS\system32\sfc_os.dll 模块:F:\Program Files\Rising\Rav\BACore.dll 模块:F:\Program Files\Rising\Rav\rsnetsvr.dll 模块:F:\Program Files\Rising\Rav\HookCont.dll 模块:F:\Program Files\Rising\Rav\ProcCom.dll 模块:F:\Program Files\Rising\Rav\RsCommX2.dll 模块:F:\Program Files\Rising\Rav\Hooksys.dll 模块:F:\Program Files\Rising\Rav\comx3.dll 模块:F:\Program Files\Rising\Rav\Syslay.dll 模块:F:\Program Files\Rising\Rav\CfgDll.dll 模块:F:\Program Files\Rising\Rav\RSAPPMGR.dll 模块:F:\Program Files\Rising\Rav\proccomm.dll 模块:F:\Program Files\Rising\Rav\HookWeb.dll 模块:F:\Program Files\Rising\Rav\MailMon.dll 模块:F:\Program Files\Rising\Rav\FileMon.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:F:\Program Files\Rising\Rav\MonRule.dll 模块:F:\Program Files\Rising\Rav\moncom08.dll 模块:F:\Program Files\Rising\Rav\defmon.dll 模块:F:\Program Files\Rising\Rav\mondrv.dll 模块:F:\Program Files\Rising\Rav\Rslog.dll 模块:F:\Program Files\Rising\Rav\MonBase.dll 模块:F:\Program Files\Rising\Rav\moncomm.dll 模块:C:\WINDOWS\system32\MSVCP71.dll 模块:C:\WINDOWS\system32\MSVCR71.dll 模块:F:\Program Files\Rising\Rav\combase.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:F:\Program Files\Rising\Rav\RavTask.exe 模块:C:\WINDOWS\system32\uxtheme.dll 模块:F:\Program Files\Rising\Rav\rsstub.dll 模块:F:\Program Files\Rising\Rav\rstask.dll 模块:F:\Program Files\Rising\Rav\CfgDll.dll 模块:F:\Program Files\Rising\Rav\RSAPPMGR.dll 模块:F:\Program Files\Rising\Rav\rsconf.dll 模块:F:\Program Files\Rising\Rav\proccomm.dll 模块:C:\WINDOWS\system32\MSVCP71.dll 模块:C:\WINDOWS\system32\MSVCR71.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\System32\svchost.exe 模块:C:\WINDOWS\system32\wups2.dll 模块:C:\WINDOWS\System32\SXS.DLL 模块:C:\WINDOWS\System32\sfc_os.dll 模块:C:\WINDOWS\system32\wuaueng.dll 模块:c:\windows\system32\wuauserv.dll 模块:C:\WINDOWS\system32\WININET.dll 模块:C:\WINDOWS\System32\UxTheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:F:\Program Files\Rising\Rav\ScanFrm.exe 模块:C:\WINDOWS\system32\uxtheme.dll 模块:F:\Program Files\Rising\Rav\comx3.dll 模块:F:\Program Files\Rising\Rav\Syslay.dll 模块:F:\Program Files\Rising\Rav\ScanSrv.dll 模块:F:\Program Files\Rising\Rav\proccomm.dll 模块:F:\Program Files\Rising\Rav\scansrvp.dll 模块:F:\Program Files\Rising\Rav\moncomm.dll 模块:F:\Program Files\Rising\Rav\combase.dll 模块:C:\WINDOWS\system32\MSVCP71.dll 模块:C:\WINDOWS\system32\MSVCR71.dll 模块:C:\WINDOWS\system32\GDI32.dll 进程:C:\WINDOWS\system32\lsass.exe 模块:C:\WINDOWS\system32\UxTheme.dll 模块:C:\WINDOWS\system32\SHLWAPI.dll 模块:C:\WINDOWS\system32\GDI32.dll ====================================================== 无签名自启动项(包含了IE劫持、服务、SPI等): 名称: 注册键:◆ Logon Run ↓ 注册值: 类别: 名称:StartCCC 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run 注册值:"C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun 类别:2 名称: 注册键:◆ Serivce And Drivers ↓ 注册值: 类别: 名称:ahcix86 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\ahci8086.sys 类别:21 名称:Ati HotKey Poller 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:%SystemRoot%\system32\Ati2evxx.exe 类别:21 名称:ATI Smart 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\system32\ati2sgag.exe 类别:21 名称:ati2mtag 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\ati2mtag.sys 类别:21 名称:Changer 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\System32\Drivers\Changer.sys 类别:21 名称:HDAudBus 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\HDAudBus.sys 类别:21 名称:i2omgmt 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\System32\Drivers\i2omgmt.sys 类别:21 名称:iteatapi 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\iteatapi.sys 类别:21 名称:JGOGO 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\JGOGO.sys 类别:21 名称:JRAID 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\jraid.sys 类别:21 名称:lbrtfdc 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\System32\Drivers\lbrtfdc.sys 类别:21 名称:m5228 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\m5228.sys 类别:21 名称:m5281 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\m5281.sys 类别:21 名称:m5287 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\m5287.sys 类别:21 名称:m5288 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\m5288.sys 类别:21 名称:m5289 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\m5289.sys 类别:21 名称:mv61xx 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\mv61xx.sys 类别:21 名称:nvatabus 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\nvatabus.sys 类别:21 名称:nvgts 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\nvgts.sys 类别:21 名称:nvrd32 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\nvrd32.sys 类别:21 名称:PCIDump 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\System32\Drivers\PCIDump.sys 类别:21 名称:PDCOMP 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\System32\Drivers\PDCOMP.sys 类别:21 名称:PDFRAME 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\System32\Drivers\PDFRAME.sys 类别:21 名称:PDRELI 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\System32\Drivers\PDRELI.sys 类别:21 名称:PDRFRAME 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\System32\Drivers\PDRFRAME.sys 类别:21 名称:Secdrv 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\secdrv.sys 类别:21 名称:SI3112r 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\SI3112r.sys 类别:21 名称:SiFilter 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\SiWinAcc.sys 类别:21 名称:SiSGbeXP 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\SiSGbeXP.sys 类别:21 名称:SiSRaid 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\SiSRaid.sys 类别:21 名称:SiSRaid2 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\SiSRaid2.sys 类别:21 名称:SiSRaid4 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\sisraid4.sys 类别:21 名称:Tcpip 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\tcpip.sys 类别:21 名称:viamraid 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:system32\DRIVERS\viamraid.sys 类别:21 名称:WDICA 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\System32\Drivers\WDICA.sys 类别:21 名称:Winsock 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:C:\WINDOWS\System32\Drivers\Winsock.sys 类别:21 名称:HidServ 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 注册值:%SystemRoot%\System32\hidserv.dll 类别:11 名称: 注册键:◆ WinLogon ↓ 注册值: 类别: 名称:AtiExtEvent 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify 注册值:Ati2evxx.dll 类别:1 名称:WgaLogon 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify 注册值:WgaLogon.dll 类别:1 名称:SCRNSAVE.EXE 注册键:HKEY_CURRENT_USER\Control Panel\Desktop 注册值:C:\WINDOWS\system32\bubbles.scr 类别:3 名称: 注册键:◆ Internet Explorer ↓ 注册值: 类别: 名称:AutoConfigProxy 注册键:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings 注册值:wininet.dll 类别:3 名称:{CFBFAE00-17A6-11D0-99CB-00C04FD64497} 注册键:HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{485463B7-8FB2-4B3B-B29B-8B919B0EACCE} 注册键:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats 注册值:C:\Program Files\Thunder\ComDlls\ThunderAgent_Now.dll 类别:4 名称:{6483F145-A768-4C41-AACC-52D4D7845851} 注册键:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats 注册值:C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work 类别:4 名称:{693571CB-54A3-4E90-9D52-EEAE1334E2D3} 注册键:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats 注册值:C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work 类别:4 名称:{EEDD6FF9-13DE-496B-9A1C-D78B3215E266} 注册键:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats 注册值:C:\Program Files\Thunder\Components\DownAndPlay\DapPlayer3.0.28.50.dll 类别:4 名称: 注册键:◆ Internet Explorer Extersions ↓ 注册值: 类别: 名称:{6096E38F-5AC1-4391-8EC4-75DFA92FB32F} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions 注册值:http://bbs.deepin.org 类别:1 名称: 注册键:◆ Internet Explorer ActiveX ↓ 注册值: 类别: 名称:{01E04581-4EEE-11D0-BFE9-00AA005B4383} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:%SystemRoot%\system32\browseui.dll 类别:4 名称:{03D9F3F2-B0E3-11D2-B081-006008039BF0} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\javaprxy.dll 类别:4 名称:{08B0e5c0-4FCB-11CF-AAA5-00401C608501} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\msjava.dll 类别:4 名称:{13de4a42-8d21-4c8e-bf9c-8f69cb068fca} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\Program Files\Common Files\Microsoft Shared\INK\INKOBJ.DLL 类别:4 名称:{250770F3-6AF2-11CF-A915-008029E31FCD} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\Program Files\Microsoft Office\OFFICE11\HTML\HTMLMARQ.OCX 类别:4 名称:{25B0F91C-D23D-11D0-9B85-00C04FC2F51D} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{283807B5-2C60-11D0-A31D-00AA00B92C03} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{283807B8-2C60-11D0-A31D-00AA00B92C03} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{2D2E24CB-0CD5-458F-86EA-3E6FA22C8E64} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\quartz.dll 类别:4 名称:{3050F391-98B5-11CF-BB82-00AA00BDCE0B} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:%SystemRoot%\system32\mshtml.dll 类别:4 名称:{3050F4F5-98B5-11CF-BB82-00AA00BDCE0B} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\mshtmled.dll 类别:4 名称:{3050F5C8-98B5-11CF-BB82-00AA00BDCE0B} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:%SystemRoot%\system32\mshtml.dll 类别:4 名称:{3050F667-98B5-11CF-BB82-00AA00BDCE0B} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\mshtml.dll 类别:4 名称:{3050F67D-98B5-11CF-BB82-00AA00BDCE0B} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\mshtml.dll 类别:4 名称:{42B07B28-2280-4937-B035-0293FB812781} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\dxtmsft.dll 类别:4 名称:{50B4791F-4731-11D0-8912-00C04FC2A0CA} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{51B4ABF3-748F-4E3B-A276-C828330E926A} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\quartz.dll 类别:4 名称:{542FB453-5003-11CF-92A2-00AA00B8A733} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{5DFB2651-9668-11D0-B17B-00C04FC2A0CA} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{69AD90EF-1C20-11D1-8801-00C04FC29D46} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{6E3197A3-BBC3-11D4-84C0-00C04F7A06E5} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\IME\imjp8_1\Applets\IMSKDIC.DLL 类别:4 名称:{6e449686-c509-11cf-aafa-00aa00b6015c} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:%SystemRoot%\system32\inseng.dll 类别:4 名称:{7057E952-BD1B-11D1-8919-00C04FC2C836} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:%SystemRoot%\system32\shdocvw.dll 类别:4 名称:{8422DAE3-9929-11CF-B8D3-004033373DA8} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\Program Files\Microsoft Office\OFFICE11\HTML\HTMLMM.OCX 类别:4 名称:{8422DAE7-9929-11CF-B8D3-004033373DA8} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\Program Files\Microsoft Office\OFFICE11\HTML\HTMLMM.OCX 类别:4 名称:{8856F961-340A-11D0-A96B-00C04FD705A2} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\shdocvw.dll 类别:4 名称:{8E26BFC1-AFD6-11CF-BFFC-00AA003CFDFC} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\vmhelper.dll 类别:4 名称:{9CDE7341-3C20-11D0-A330-00AA00B92C03} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{a8dfb9a0-8a20-479f-b538-9387c5eeba2b} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\quartz.dll 类别:4 名称:{AE24FDAE-03C6-11D1-8B76-0080C744F389} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\mshtml.dll 类别:4 名称:{AF604EFE-8897-11D1-B944-00A0C90312E1} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:%SystemRoot%\system32\browseui.dll 类别:4 名称:{AF868304-AB0B-11D0-876A-00C04FC29D46} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{B6FFC24C-7E13-11D0-9B47-00C04FC2F51D} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{BE4191FB-59EF-4825-AEFC-109727951E42} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\IME\CHTIME\APPLETS\CHTSKDIC.DLL 类别:4 名称:{C46C1BC1-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BC4-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BC6-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BC8-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BCA-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BCC-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BCE-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BD0-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BD2-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BD4-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BD6-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BD8-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BDA-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BDC-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BDE-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BE0-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BE2-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BE4-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BE6-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BEC-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BEE-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BF0-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BF2-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{C46C1BF4-3C52-11D0-9200-848C1D000000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{D17506C3-6B26-11D0-8914-00C04FC2A0CA} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\danim.dll 类别:4 名称:{E4979309-7A32-495E-8A92-7B014AAD4961} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\system32\quartz.dll 类别:4 名称:{F5BE8BD2-7DE6-11D0-91FE-00C04FD701A5} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility 注册值:C:\WINDOWS\msagent\AgentCtl.dll 类别:4 名称: 注册键:◆ Internet Explorer Bar ↓ 注册值: 类别: 名称:{4D5C8C25-D075-11d0-B416-00C04FB90376} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars 注册值:%SystemRoot%\system32\shdocvw.dll 类别:4 名称: 注册键:◆ Internet Explorer BHO ↓ 注册值: 类别: 名称: 注册键:◆ Explorer ↓ 注册值: 类别: 名称:about 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:%SystemRoot%\system32\mshtml.dll 类别:8 名称:cdl 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:file 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:ftp 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:gopher 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:http 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:https 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:ipp 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:javascript 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:%SystemRoot%\system32\mshtml.dll 类别:8 名称:local 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:mailto 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:%SystemRoot%\system32\mshtml.dll 类别:8 名称:mk 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:res 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:%SystemRoot%\system32\mshtml.dll 类别:8 名称:sysimage 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:%SystemRoot%\system32\mshtml.dll 类别:8 名称:vbscript 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 注册值:%SystemRoot%\system32\mshtml.dll 类别:8 名称:application/octet-stream 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter 注册值:mscoree.dll 类别:8 名称:application/x-complus 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter 注册值:mscoree.dll 类别:8 名称:application/x-msdownload 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter 注册值:mscoree.dll 类别:8 名称:Class Install Handler 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:deflate 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:gzip 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:lzdhtml 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter 注册值:C:\WINDOWS\system32\urlmon.dll 类别:8 名称:{89B4C1CD-B018-4511-B0A1-5476DBF70820} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components 注册值:C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install 类别:1 名称:{438755C2-A8BA-11D1-B96B-00A0C90312E1} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{8C7461EF-2B13-11d2-BE35-3078302C2030} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称: 注册键:◆ Explorer ShellEx ↓ 注册值: 类别: 名称:WinRAR 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers 注册值:C:\Program Files\WinRAR\rarext.dll 类别:9 名称:WinRAR 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers 注册值:C:\Program Files\WinRAR\rarext.dll 类别:9 名称:ACE 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\Background\shellex\ContextMenuHandlers 注册值:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll 类别:9 名称:{f3da0dc0-9cc8-11d0-a599-00c04fd64437} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ChannelShortcut\ShellEx\ContextMenuHandlers 注册值:%SystemRoot%\system32\cdfview.dll 类别:9 名称:{FBF23B40-E3F0-101B-8488-00AA003E56F8} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\InternetShortcut\shellex\ContextMenuHandlers 注册值:shdocvw.dll 类别:9 名称:{42071714-76d4-11d1-8b24-00a0c9068ff3} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:deskpan.dll 类别:7 名称:{21569614-B795-46b1-85F4-E737A8DC09AD} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{2559a1f7-21d7-11d4-bdaf-00c04f60b9f0} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{2559a1f0-21d7-11d4-bdaf-00c04f60b9f0} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{2559a1f1-21d7-11d4-bdaf-00c04f60b9f0} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{2559a1f2-21d7-11d4-bdaf-00c04f60b9f0} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{2559a1f4-21d7-11d4-bdaf-00c04f60b9f0} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{2559a1f5-21d7-11d4-bdaf-00c04f60b9f0} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{D20EA4E1-3957-11d2-A40B-0C5020524152} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{D20EA4E1-3957-11d2-A40B-0C5020524153} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{5E6AB780-7743-11CF-A12B-00AA004AE837} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{22BF0C20-6DA7-11D0-B373-00A0C9034938} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{91EA3F8B-C99B-11d0-9815-00C04FD91972} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{6413BA2C-B461-11d1-A18A-080036B11A03} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{F61FFEC1-754F-11d0-80CA-00AA005B4383} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{7BA4C742-9E81-11CF-99D3-00AA004AE837} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{169A0691-8DF9-11d1-A1C4-00C04FD75D13} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{AF4F6510-F982-11d0-8595-00AA004CD6D8} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{01E04581-4EEE-11d0-BFE9-00AA005B4383} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{A08C11D2-A228-11d0-825B-00AA005B4383} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{00BB2763-6A77-11D0-A535-00C04FD7D062} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{6756A641-DE71-11d0-831B-00AA005B4383} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{6935DB93-21E8-4ccc-BEB9-9FE3C77A297A} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{7e653215-fa25-46bd-a339-34a2790f3cb7} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{acf35015-526e-4230-9596-becbe19f0ac9} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{00BB2764-6A77-11D0-A535-00C04FD7D062} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{03C036F1-A186-11D0-824A-00AA005B4383} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{00BB2765-6A77-11D0-A535-00C04FD7D062} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{ECD4FC4E-521C-11D0-B792-00A0C90312E1} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{3CCF8A41-5C85-11d0-9796-00AA00B90ADF} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{ECD4FC4C-521C-11D0-B792-00A0C90312E1} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{ECD4FC4D-521C-11D0-B792-00A0C90312E1} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{DD313E04-FEFF-11d1-8ECD-0000F87A470C} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{EF8AD2D1-AE36-11D1-B2D2-006097DF8C11} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{30D02401-6A81-11d0-8274-00C04FD5AE38} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{3028902F-6374-48b2-8DC6-9725E775B926} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{07798131-AF23-11d1-9111-00A0C98BA67D} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{7376D660-C583-11d0-A3A5-00C04FD706EC} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\browseui.dll 类别:7 名称:{EFA24E61-B078-11d0-89E4-00C04FC9E26E} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{EFA24E62-B078-11d0-89E4-00C04FC9E26E} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{0A89A860-D7B1-11CE-8350-444553540000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{A5E46E3A-8849-11D1-9D8C-00C04FC99D61} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{131A6951-7F78-11D0-A979-00C04FD705A2} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{9461b922-3c5a-11d2-bf8b-00c04fb93661} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{E7E4BC40-E76A-11CE-A9BB-00AA004AE837} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{FBF23B40-E3F0-101B-8488-00AA003E56F8} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:shdocvw.dll 类别:7 名称:{3C374A40-BAE4-11CF-BF7D-00AA006946EE} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{FF393560-C2A7-11CF-BFF4-444553540000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{7BD29E00-76C1-11CF-9DD0-00A0C9034933} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{7BD29E01-76C1-11CF-9DD0-00A0C9034933} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{CFBFAE00-17A6-11D0-99CB-00C04FD64497} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{A2B0DD40-CC59-11d0-A3A5-00C04FD706EC} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{67EA19A0-CCEF-11d0-8024-00C04FD75D13} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{3DC7A020-0ACD-11CF-A9BB-00AA004AE837} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{EFA24E64-B078-11d0-89E4-00C04FC9E26E} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{871C5380-42A0-1069-A2EA-08002B30309D} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\shdocvw.dll 类别:7 名称:{f39a0dc0-9cc8-11d0-a599-00c04fd64433} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\cdfview.dll 类别:7 名称:{f3aa0dc0-9cc8-11d0-a599-00c04fd64434} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\cdfview.dll 类别:7 名称:{f3ba0dc0-9cc8-11d0-a599-00c04fd64435} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\cdfview.dll 类别:7 名称:{f3da0dc0-9cc8-11d0-a599-00c04fd64437} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\cdfview.dll 类别:7 名称:{f3ea0dc0-9cc8-11d0-a599-00c04fd64438} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\cdfview.dll 类别:7 名称:{692F0339-CBAA-47e6-B5B5-3B84DB604E87} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:%SystemRoot%\system32\extmgr.dll 类别:7 名称:{B41DB860-8EE4-11D2-9906-E49FADC173CA} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:C:\Program Files\WinRAR\rarext.dll 类别:7 名称:{57B47F62-4EE4-4BED-A897-2C63198B876F} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:C:\Program Files\Imagine\Imagine.DLL 类别:7 名称:{e82a2d71-5b2f-43a0-97b8-81be15854de8} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:C:\WINDOWS\system32\dfshim.dll 类别:7 名称:{E37E2028-CE1A-4f42-AF05-6CEABC4E5D75} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:C:\WINDOWS\system32\dfshim.dll 类别:7 名称:{5E2121EE-0300-11D4-8D3B-444553540000} 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 注册值:C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll 类别:7 名称: 注册键:◆ LSA Providers ↓ 注册值: 类别: 名称:Security Packages 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa 注册值:channel 类别:3 名称:Security Packages 注册键:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa 注册值:sv1_0 类别:3 名称: 注册键:◆ ImageFile Hijacks ↓ 注册值: 类别: 名称:Imagine 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers 注册值:C:\Program Files\Imagine\Imagine.DLL 类别:9 名称:WinRAR 注册键:HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers 注册值:C:\Program Files\WinRAR\rarext.dll 类别:9 名称: 注册键:◆ Print Monitors ↓ 注册值: 类别: 名称: 注册键:◆ Session Manager ↓ 注册值: 类别: 名称: 注册键:◆ Other ↓ 注册值: 类别: ====================================================== 无签名内核模块: 模块基址:AD9AD000 模块:\??\d:\tddownload\狙剑v2008-0429\SnipeSword.sys 模块基址:BF4E6000 模块:\SystemRoot\System32\ativvaxx.dll 模块基址:BF18F000 模块:\SystemRoot\System32\ati3duag.dll 模块基址:BF14F000 模块:\SystemRoot\System32\atiok3x2.dll 模块基址:BF0E9000 模块:\SystemRoot\System32\atikvmag.dll 模块基址:BF061000 模块:\SystemRoot\System32\ati2cqag.dll 模块基址:BF012000 模块:\SystemRoot\System32\ati2dvag.dll 模块基址:B0F30000 模块:\SystemRoot\system32\DRIVERS\tcpip.sys 模块基址:BA1C8000 模块:\SystemRoot\system32\DRIVERS\SiSGbeXP.sys 模块基址:B9699000 模块:\SystemRoot\system32\DRIVERS\HDAudBus.sys 模块基址:B96D2000 模块:\SystemRoot\system32\DRIVERS\ati2mtag.sys 模块基址:BA5B0000 模块:JGOGO.sys 模块基址:BA4CC000 模块:SiWinAcc.sys 模块基址:B9D01000 模块:viamraid.sys 模块基址:B9D1E000 模块:sisraid4.sys 模块基址:BA338000 模块:SiSRaid2.sys 模块基址:BA138000 模块:SiSRaid.sys 模块基址:B9D2F000 模块:SI3112r.sys 模块基址:B9D49000 模块:nvgts.sys 模块基址:B9D67000 模块:nvatabus.sys 模块基址:B9D80000 模块:mv61xx.sys 模块基址:BA128000 模块:m5289.sys 模块基址:B9D91000 模块:m5288.sys 模块基址:B9DC5000 模块:m5287.sys 模块基址:BA118000 模块:m5281.sys 模块基址:BA108000 模块:m5228.sys 模块基址:BA0F8000 模块:jraid.sys 模块基址:BA0E8000 模块:iteatapi.sys 模块基址:B9DF7000 模块:ahci8086.sys 模块基址:B9F03000 模块:nvrd32.sys ====================================================== 硬件设备及其支持文件列表: 设备:ATI MOBILITY RADEON HD 3470 支持文件:oem5.inf 支持文件:amdpcom32.dll 支持文件:ati2cqag.dll 支持文件:ati2dvag.dll 支持文件:ati2edxx.dll 支持文件:ati2erec.dll 支持文件:ati2evxx.dll 支持文件:ati2evxx.exe 支持文件:ati2mdxx.exe 支持文件:ati2mtag.sys 支持文件:ati3duag.dll 支持文件:atiadlxx.dll 支持文件:atiddc.dll 支持文件:atidemgx.dll 支持文件:atifglpf.xml 支持文件:atiicdxx.dat 支持文件:atiiiexx.dll 支持文件:atikvmag.dll 支持文件:atiodcli.exe 支持文件:atiode.exe 支持文件:atiogl.xml 支持文件:atioglgl.xml 支持文件:atioglx2.dll 支持文件:atioglxx.dll 支持文件:atiok3x2.dll 支持文件:atipdlxx.dll 支持文件:atitvo32.dll 支持文件:ativcoxx.dll 支持文件:ativva5x.dat 支持文件:ativva6x.dat 支持文件:ativvaxx.dat 支持文件:ativvaxx.dll 支持文件:oemdspif.dll 设备:ATI Function Driver for High Definition Audio - ATI AA01 支持文件:oem2.inf 支持文件:AtiHdmi.sys 设备:Realtek High Definition Audio 支持文件:oem4.inf 支持文件:RtkHDAud.sys 支持文件:RTHDCPL.EXE 支持文件:MicCal.exe 支持文件:SkyTel.exe 支持文件:SOUNDMAN.EXE 支持文件:RTLCPL.EXE 支持文件:ALCWZRD.EXE 支持文件:ALCMTR.EXE 支持文件:ALSNDMGR.CPL 支持文件:RTSndMgr.CPL 支持文件:RtlCPAPI.dll 支持文件:RTCOMDLL.dll 支持文件:RtlUpd.exe 设备:SiS191 Ethernet Controller 支持文件:oem3.inf 支持文件:SiSGbe2K.sys 支持文件:SiSGbeXP.sys 设备:Microsoft UAA Bus Driver for High Definition Audio 支持文件:oem1.inf 支持文件:hdaudbus.sys 设备:Microsoft UAA Bus Driver for High Definition Audio 支持文件:oem1.inf 支持文件:hdaudbus.sys ====================================================== 当前已安装软件列表: Acdsee 5.0 ATI - 软件卸载实用程序 ATI Display Driver Free Launch Bar 汉化版 深度一键还原工具 4.8 Microsoft .NET Framework 2.0 瑞星杀毒软件 华军软件专版  瑞星个人防火墙 华军软件专版 搜狗拼音输入法 3.0 正式版 (3.0.3.0) 暴风影音2 WinRAR 压缩文件管理器 Catalyst Control Center Localization Thai ATI Catalyst Control Center ccc-core-preinstall CCC Help Korean Catalyst Control Center Graphics Full Existing ccc-core-static WebFldrs XP Catalyst Control Center Localization Japanese Windows Live Messenger Skins ccc-utility Microsoft .NET Framework 2.0 Microsoft Office Professional Edition 2003 Catalyst Control Center Localization Chinese Standard Catalyst Control Center Localization Chinese Traditional Catalyst Control Center Core Implementation CCC Help Japanese CCC Help English CCC Help Chinese Traditional Microsoft Visual C++ 2005 Redistributable CCC Help Thai Catalyst Control Center Graphics Light Catalyst Control Center Graphics Full New CCC Help Chinese Standard Catalyst Control Center Localization Korean Realtek High Definition Audio Driver Catalyst Control Center - Branding 深度美化主题包 5.0 腾讯 QQ2007 正式版 飘云 4.3 迅雷 5.7.3.389 DDR 10.6 去广告版 ====================================================== Host文件: 127.0.0.1 localhost ====================================================== 系统体检全部完成 2009-04-17-18:19:11