[CODE] 2010-02-10,22:56:52 System Repair Engineer 2.8.2.1321 Smallfrogs (http://www.KZTechs.com) Windows Vista Home Basic Edition Service Pack 2 (Build 6002) - 管理权限用户 - 完整功能以下内容被选中：所有的启动项目（包括注册表、启动文件夹、服务等）浏览器加载项正在运行的进程（包括进程模块信息）文件关联 Winsock 提供者 Autorun.inf HOSTS 文件进程特权扫描计划任务 Windows 安全更新检查 API HOOK 隐藏进程启动项目注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] <"C:\Program Files\Tencent\QQ\Bin\QQ.exe" /background> [(Verified)Tencent Technology(Shenzhen) Company Limited] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] <> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <"C:\Program Files\Rising\RFW\RsTray.exe" -system> [(Verified)Beijing Rising Information Technology Corporation Limited] <"C:\Program Files\Rising\Rav\RsTray.exe" -system> [(Verified)Beijing Rising Information Technology Corporation Limited] <"C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"> [(Verified)Adobe Systems, Incorporated] <"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"> [(Verified)Adobe Systems, Incorporated] [(Verified)NVIDIA Corporation] <%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe> [(Verified)Synaptics Incorporated] [(Verified)Realtek Semiconductor Corp] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] [(Verified)Beijing Rising Information Technology Corporation Limited] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] [(Verified)Microsoft Windows] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\GoToAssist] [(Verified)Citrix Online] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] <"C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP> [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] <%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] <"%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] <%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI> [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] [(Verified)Microsoft Corporation] [HKEY_CURRENT_USER\Control Panel\Desktop] [(Verified)Microsoft Windows] ================================== 启动文件夹 [蓝牙控制盘] C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [Broadcom Corporation.]> [QQ游戏启动加速程序] C:\PROGRA~1\腾讯游戏\QQGAME\Accel.exe [深圳市腾讯计算机系统有限公司]> [QQ游戏启动加速程序] C:\PROGRA~1\腾讯游戏\QQGAME\Accel.exe [深圳市腾讯计算机系统有限公司]> [蓝牙控制盘] C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [Broadcom Corporation.]> ================================== 服务 [Andrea RT Filters Service / AERTFilters][Running/Auto Start] [Bluetooth Service / btwdins][Running/Auto Start] [GoToAssist / GoToAssist][Stopped/Manual Start] <"C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe" Start=service> [Google 更新服务 (gupdate1ca2aefae0e8d20) / gupdate1ca2aefae0e8d20][Stopped/Auto Start] <"C:\Program Files\Google\Update\GoogleUpdate.exe" /svc> [Google Software Updater / gusvc][Stopped/Auto Start] <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"> [Intel(R) Matrix Storage Event Monitor / IAANTMON][Running/Auto Start] [ICBC Daemon Service / ICBC Daemon Service][Stopped/Auto Start] [NVIDIA Display Driver Service / nvsvc][Running/Auto Start] [o2flash / o2flash][Running/Auto Start] [QQ Certificate Service / QQCertificateService][Running/Auto Start] <"C:\Program Files\Common Files\tencent\paycent\tenpaycert.exe"> [QQDoctor RTP Service / QQDrRtpSvc][Running/Auto Start] <"C:\Program Files\Tencent\QQDoctor\QQDrRtpSvc.exe" -r> [Rav Service / RsRavMon][Running/Auto Start] <"C:\Program Files\Rising\Rav\RavMonD.exe"> [RFW Service / RsRFWMon][Running/Auto Start] <"C:\Program Files\Rising\RFW\RavMonD.exe"> [SupportSoft Sprocket Service (DellSupportCenter) / sprtsvc_DellSupportCenter][Running/Auto Start] <"C:\Program Files\Dell Support Center\bin\sprtsvc.exe" /service /P DellSupportCenter> [stllssvr / stllssvr][Stopped/Manual Start] <"c:\Program Files\Common Files\SureThing Shared\stllssvr.exe"> [Tencent Software Update Service / TSUSVC][Stopped/Auto Start] <"C:\Program Files\Tencent\QQSoftMgr\1.0.358.203\TencentUpdateSvc.exe" -run> [Dell Wireless WLAN Tray Service / wltrysvc][Running/Auto Start] ================================== 驱动程序 [adp94xx / adp94xx][Stopped/Disabled] <\SystemRoot\system32\drivers\adp94xx.sys> [adpahci / adpahci][Stopped/Disabled] <\SystemRoot\system32\drivers\adpahci.sys> [adpu160m / adpu160m][Stopped/Disabled] <\SystemRoot\system32\drivers\adpu160m.sys> [adpu320 / adpu320][Stopped/Disabled] <\SystemRoot\system32\drivers\adpu320.sys> [aic78xx / aic78xx][Stopped/Disabled] <\SystemRoot\system32\drivers\djsvs.sys> [aliide / aliide][Stopped/Disabled] <\SystemRoot\system32\drivers\aliide.sys> [ApolloProtect / ApolloProtect][Stopped/Manual Start] <\??\D:\LUNA\Apollo\Apollo.sys> [arc / arc][Stopped/Disabled] <\SystemRoot\system32\drivers\arc.sys> [arcsas / arcsas][Stopped/Disabled] <\SystemRoot\system32\drivers\arcsas.sys> [BCM42RLY / BCM42RLY][Running/Manual Start] [DELL 无线网卡驱动程序 / BCM43XX][Running/Manual Start] [Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start] <\SystemRoot\system32\drivers\brfiltlo.sys> [Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start] <\SystemRoot\system32\drivers\brfiltup.sys> [Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Disabled] <\SystemRoot\system32\drivers\brserid.sys> [Brother WDM Serial driver / BrSerWdm][Stopped/Disabled] <\SystemRoot\system32\drivers\brserwdm.sys> [Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Disabled] <\SystemRoot\system32\drivers\brusbmdm.sys> [Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start] <\SystemRoot\system32\drivers\brusbser.sys> [蓝牙音频设备 / btwaudio][Stopped/Manual Start] [Bluetooth AVDT / btwavdt][Stopped/Manual Start] [Bluetooth L2CAP Service / btwl2cap][Stopped/Manual Start] [btwrchid / btwrchid][Stopped/Manual Start] [cmdide / cmdide][Stopped/Disabled] <\SystemRoot\system32\drivers\cmdide.sys> [Creative Camera Class Upper Filter Driver / CtClsFlt][Running/Manual Start] [Intel(R) PRO/1000 NDIS 6 Adapter Driver / E1G60][Stopped/Manual Start] [EagleNT / EagleNT][Stopped/Manual Start] <\??\C:\Windows\system32\drivers\EagleNT.sys> [elxstor / elxstor][Stopped/Disabled] <\SystemRoot\system32\drivers\elxstor.sys> [COMPAL Embedded System Control / EMSC][Running/Boot Start] <\SystemRoot\system32\DRIVERS\EMSC.SYS> [hookcont / hookcont][Running/System Start] [hooksys / hooksys][Running/System Start] [HpCISSs / HpCISSs][Stopped/Disabled] <\SystemRoot\system32\drivers\hpcisss.sys> [Intel AHCI Controller / iaStor][Running/Boot Start] <\SystemRoot\system32\DRIVERS\iaStor.sys> [Intel RAID Controller Vista / iaStorV][Stopped/Disabled] <\SystemRoot\system32\drivers\iastorv.sys> [iirsp / iirsp][Stopped/Disabled] <\SystemRoot\system32\drivers\iirsp.sys> [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start] [IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start] [ITEATAPI_Service_Install / iteatapi][Stopped/Disabled] <\SystemRoot\system32\drivers\iteatapi.sys> [ITERAID_Service_Install / iteraid][Stopped/Disabled] <\SystemRoot\system32\drivers\iteraid.sys> [Loong / Loong][Stopped/Manual Start] <\??\D:\《龙》\client\long.sys> [LSI_FC / LSI_FC][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_fc.sys> [LSI_SAS / LSI_SAS][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_sas.sys> [LSI_SCSI / LSI_SCSI][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_scsi.sys> [megasas / megasas][Stopped/Disabled] <\SystemRoot\system32\drivers\megasas.sys> [MegaSR / MegaSR][Stopped/Disabled] <\SystemRoot\system32\drivers\megasr.sys> [McAfee Inc. mfeavfk / mfeavfk][Stopped/Manual Start] [McAfee Inc. mfebopk / mfebopk][Stopped/Manual Start] [McAfee Inc. mfehidk / mfehidk][Running/System Start] [McAfee Inc. mferkdk / mferkdk][Stopped/Manual Start] [McAfee Inc. mfesmfk / mfesmfk][Stopped/Manual Start] [Mraid35x / Mraid35x][Stopped/Disabled] <\SystemRoot\system32\drivers\mraid35x.sys> [nfrd960 / nfrd960][Stopped/Disabled] <\SystemRoot\system32\drivers\nfrd960.sys> [N-trig HID Tablet Driver / ntrigdigi][Stopped/Disabled] <\SystemRoot\system32\drivers\ntrigdigi.sys> [nvlddmkm / nvlddmkm][Running/Manual Start] [NVIDIA nForce RAID Driver / nvraid][Stopped/Disabled] <\SystemRoot\system32\drivers\nvraid.sys> [nvstor / nvstor][Stopped/Disabled] <\SystemRoot\system32\drivers\nvstor.sys> [IPX Traffic Filter Driver / NwlnkFlt][Stopped/Manual Start] [IPX Traffic Forwarder Driver / NwlnkFwd][Stopped/Manual Start] [O2MDRDR / O2MDRDR][Running/Manual Start] [O2SDRDR / O2SDRDR][Running/Manual Start] [PCD5SRVC{F6CE0040-33AA1442-05040104} - PCDR Kernel Mode Service Helper Driver / PCD5SRVC{F6CE0040-33AA1442-05040104}][Stopped/Manual Start] <\??\C:\PROGRA~1\DELLSU~1\HWDiag\bin\PCD5SRVC.pkms> [PxHelp20 / PxHelp20][Running/Boot Start] <\SystemRoot\System32\Drivers\PxHelp20.sys> [QKeyServiceDisplay / QKeyService][Running/Boot Start] <\SystemRoot\system32\KeyCrypt.sys> [QLogic Fibre Channel Miniport Driver / ql2300][Stopped/Disabled] <\SystemRoot\system32\drivers\ql2300.sys> [QLogic iSCSI Miniport Driver / ql40xx][Stopped/Disabled] <\SystemRoot\system32\drivers\ql40xx.sys> [Rising RfwARP Driver / RFWARP][Running/Auto Start] [Rising RfwBase Driver / RfwBase9][Running/System Start] [rfwtdi / rfwtdi][Running/Auto Start] <\??\C:\Program Files\Rising\RFW\rfwtdi.sys> [rsassist / rsassist][Running/Auto Start] [rsfwdrv / rsfwdrv][Running/System Start] <\??\C:\Program Files\Rising\RFW\rsfwdrv.sys> [RsNTGDI / RsNTGDI][Running/Boot Start] <\SystemRoot\system32\Drivers\RsNTGdi.sys> [RsProtect / RsProtect][Running/System Start] [Realtek 8169 NT Driver / RTL8169][Running/Manual Start] [SiSRaid4 / SiSRaid4][Stopped/Disabled] <\SystemRoot\system32\drivers\sisraid4.sys> [sptd / sptd][Running/Boot Start] <\SystemRoot\System32\Drivers\sptd.sys> [Symc8xx / Symc8xx][Stopped/Disabled] <\SystemRoot\system32\drivers\symc8xx.sys> [Sym_hi / Sym_hi][Stopped/Disabled] <\SystemRoot\system32\drivers\sym_hi.sys> [Sym_u3 / Sym_u3][Stopped/Disabled] <\SystemRoot\system32\drivers\sym_u3.sys> [Synaptics TouchPad Driver / SynTP][Running/Manual Start] [TAP VPN Adapter / tapvpn][Stopped/Manual Start] [TesDrvPt / TesDrvPt][Stopped/Manual Start] <\??\C:\Windows\system32\TesDrvPt.sys> [TSKSP / TSKSP][Running/Manual Start] <\??\C:\Program Files\Tencent\QQDoctor\TsKsp.sys> [uliahci / uliahci][Stopped/Disabled] <\SystemRoot\system32\drivers\uliahci.sys> [UlSata / UlSata][Stopped/Disabled] <\SystemRoot\system32\drivers\ulsata.sys> [ulsata2 / ulsata2][Stopped/Disabled] <\SystemRoot\system32\drivers\ulsata2.sys> [viaide / viaide][Stopped/Disabled] <\SystemRoot\system32\drivers\viaide.sys> [vsmraid / vsmraid][Stopped/Disabled] <\SystemRoot\system32\drivers\vsmraid.sys> [TesSafe / TesSafe][Stopped/Manual Start] <\??\C:\Windows\system32\TesSafe.sys> ================================== 浏览器加载项 [QQCycloneHelper Class] {00000000-12C9-4305-82F9-43058F20E8D2} [WebThunder Browser Helper] {00000AAA-A363-466E-BEF5-9BB68697AA7F} <, > [ThunderAtOnce Class] {01443AEC-0FD1-40fd-9C87-E93D1494C233} [Tencent Browser Helper] {0C7C23EF-A848-485B-873C-0ED954731014} [Adobe PDF Link Helper] {18DF081C-E8AD-4283-A596-FA578C2EBDC3} [] {1A3440C6-F123-4CAB-84EE-C814E1AE0D8F} <, > [KwAddr Class] {28B3B717-A610-4e32-8555-B8BA4779CF8A} [QQ工具栏] {29CF293A-1E7D-4069-9E11-E39698D0AF95} [DetectAddin Class] {2D90D33C-DE76-42D0-9040-E4466DDC24AC} [QvodExtend] {53AC8551-0DE0-4606-8A1E-A51AF20ADD60} <, > [ed2k Dectector] {56746166-BC44-45f4-ADCE-52EAC919BB79} <, > [] {669751ED-D558-49AE-B01A-3B374CC7910E} [Search Helper] {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} [] {7B434A2A-9E4C-48F2-8373-5801F316A4D5} [CTSWebSiteMon Class] {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [Windows Live 登录帮助程序] {9030D464-4C02-4ABF-8ECC-5164760863C6} [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [Google Toolbar Notifier BHO] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [ICBC Anti-Phishing class] {BB4491A2-D11A-4c6b-91C0-B53246A3122B} [Adobe Shockwave Flash Helper] {C92AE615-4D46-4489-96FA-C5D6A38B3AB1} [Java(tm) Plug-In 2 SSV Helper] {DBC80044-A445-435b-BC74-9C25C1C588A9} [Windows Live Toolbar Helper] {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} [BlogThisToolbarButton Class] {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} [@btrez.dll,-4015] {CCA281CA-C863-46ef-9331-5C8D4460577F} <, > [&Windows Live Toolbar] {21FA44EF-376D-4D53-9B0F-8A89D3229068} [QQ工具栏] {29CF293A-1E7D-4069-9E11-E39698D0AF95} [nEdit Control] {32D72994-45B9-42B5-8980-FB561D1BE2D0} [AxInputControl Class] {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} [Java Plug-in 1.6.0_15] {8AD9C840-044E-11D1-B3E9-00805F499D93} [pEdit Control] {9CE079AF-AA90-44F4-BBB3-7C6DB300F5C9} > [Submit Class] {A3CD7F74-93C9-4BC4-B892-CCDF1514F714} <, > [Java Plug-in 1.6.0_07] {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [Java Plug-in 1.6.0_15] {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [Java Plug-in 1.6.0_15] {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [QQPasswordCtrl Class] {E787FD25-8D7C-4693-AE67-9406BC6E22DF} [safeInput Class] {ECCBA956-80E5-11D3-9285-0080ADB811C9} <, > [QQCycloneHelper Class] {00000000-12C9-4305-82F9-43058F20E8D2} [WebThunder Browser Helper] {00000AAA-A363-466E-BEF5-9BB68697AA7F} <, > [ThunderAtOnce Class] {01443AEC-0FD1-40FD-9C87-E93D1494C233} [WebThunder Class] {03507A1A-E0C5-4404-AA26-205385C0892D} <, > [] {0A0DDBD3-6641-40B9-873F-BBDD26D6C14E} <, > [Tencent Browser Helper] {0C7C23EF-A848-485B-873C-0ED954731014} [] {0EF38BF4-D5DF-402F-9422-70F5666AA200} <, > [Adobe PDF Link Helper] {18DF081C-E8AD-4283-A596-FA578C2EBDC3} [] {1A3440C6-F123-4CAB-84EE-C814E1AE0D8F} <, > [InstallHelper Class] {1DABF8D5-8430-4985-9B7F-A30E53D709B3} [] {1E315374-71A5-471A-B683-4C4ADB5C588B} <, > [] {219C3416-8CB2-491A-A3C7-D9FCDDC9D600} <, > [&Windows Live Toolbar] {21FA44EF-376D-4D53-9B0F-8A89D3229068} [] {2318C2B1-4965-11D4-9B18-009027A5CD4F} <, > [] {27B4851A-3207-45A2-B947-BE8AFE6163AB} <, > [KwAddr Class] {28B3B717-A610-4E32-8555-B8BA4779CF8A} [QQ工具栏] {29CF293A-1E7D-4069-9E11-E39698D0AF95} [DetectAddin Class] {2D90D33C-DE76-42D0-9040-E4466DDC24AC} [nEdit Control] {32D72994-45B9-42B5-8980-FB561D1BE2D0} [GDGetTokenInfo Class] {3AA9CF07-DF20-48FF-98BE-DED276E40146} [Thunder Agent Class] {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} [QQPYChecker Class] {5052B4D0-9DF7-45ef-88EF-F42C0EA33A43} [QvodExtend] {53AC8551-0DE0-4606-8A1E-A51AF20ADD60} <, > [ed2k Dectector] {56746166-BC44-45F4-ADCE-52EAC919BB79} <, > [isInstalled Class] {5852F5ED-8BF4-11D4-A245-0080C6F74284} [] {669751ED-D558-49AE-B01A-3B374CC7910E} [Windows Media Player] {6BF52A52-394A-11D3-B153-00C04F79FAA6} [] {6DF96C8A-6DE8-42FC-99AE-AD2F488C1991} <, > [Search Helper] {6EBF7485-159F-4BFF-A14F-B9E3AAC4465B} [AxInputControl Class] {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} [] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <, > [MediaComm Class] {7670648D-461B-42AF-BDFE-46D26AF5EFF2} [] {7B434A2A-9E4C-48F2-8373-5801F316A4D5} [CTSWebSiteMon Class] {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} [] {7DB2D5A0-7241-4E79-B68D-6309F01C5231} <, > [Microsoft Web Browser] {8856F961-340A-11D0-A96B-00C04FD705A2} [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [AxSubmitControl Class] {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} [SSOForPTLogin Class] {8FC1EE75-72B3-4A23-B987-2B1C4C8A611B} [Windows Live 登录帮助程序] {9030D464-4C02-4ABF-8ECC-5164760863C6} [] {962EFB8E-2683-42D4-AC74-AAA4C759B9C6} <, > [OFrameObject Class] {9701758C-4373-482E-B13C-776C048EC890} [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [pEdit Control] {9CE079AF-AA90-44F4-BBB3-7C6DB300F5C9} > [VersionDetector Class] {9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9B} [Submit Class] {A3CD7F74-93C9-4BC4-B892-CCDF1514F714} <, > [APlayer Control] {A9322148-C691-4B9D-91FC-B9C461DBE9DD} [] {AA58ED58-01DD-4D91-8333-CF10577473F7} <, > [DapCtrl Class] {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} [Google Toolbar Notifier BHO] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [InfoSecICBCNetSign Class] {B1FBC1AD-5644-4084-882A-0F8BA85E7506} [] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <, > [QQCertificateCtrl Class] {BAEA0695-03A4-43BB-8495-C7025E1A8F42} [ICBC Anti-Phishing class] {BB4491A2-D11A-4C6B-91C0-B53246A3122B} [] {C82C15DA-F838-4964-AF08-4709005C66E5} <, > [] {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <, > [Adobe Shockwave Flash Helper] {C92AE615-4D46-4489-96FA-C5D6A38B3AB1} [] {CCA281CA-C863-46EF-9331-5C8D4460577F} <, > [Microsoft Url Search Hook] {CFBFAE00-17A6-11D0-99CB-00C04FD64497} [Windows Live 登录控制] {D2517915-48CE-4286-970F-921E881B8C5C} [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [ToolbarBrowserHelper Class] {D2F8A635-8B0F-47BF-915E-6F456767A300} <, > [Tencent SearchHook] {DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9} [Java(tm) Plug-In 2 SSV Helper] {DBC80044-A445-435B-BC74-9C25C1C588A9} [] {DF76A633-1E37-4A16-A943-0938402FFA8B} <, > [Microsoft Silverlight] {DFEAF541-F3E1-4C24-ACAC-99C30715084A} [PlayerCtrl Class] {E05BC2A3-9A46-4a32-80C9-023A473F5B23} [Windows Live Toolbar Helper] {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} [QQPasswordCtrl Class] {E787FD25-8D7C-4693-AE67-9406BC6E22DF} [safeInput Class] {ECCBA956-80E5-11D3-9285-0080ADB811C9} <, > [TimwpDll.TimwpCheck] {ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} [XML HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [XPPlayer Class] {F3E70CEA-956E-49CC-B444-73AFE593AD7F} [XML HTTP 3.0] {F5078F35-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [XML HTTP] {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A> [] {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} <, > [] {FEBA8EC4-8262-485B-B97B-AD3113768E89} <, > [&使用QQ旋风下载] [&使用QQ旋风下载全部链接] [Foxy 下載] [Foxy 搜尋] [使用迅雷下载] [使用迅雷下载全部链接] [使用迅雷查看图片] [使用迅雷离线下载] [图像发送到 Bluetooth 设备(&B)...] [复制到我的QQ记事本] [页面发送到 Bluetooth 设备(&B)...] ================================== 正在运行的进程 [PID: 468 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 6.0.6002.18005 (lh_sp2rtm.090410-1830)] [PID: 540 / SYSTEM][C:\Windows\system32\csrss.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 588 / SYSTEM][C:\Windows\system32\csrss.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 596 / SYSTEM][C:\Windows\system32\wininit.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [PID: 632 / SYSTEM][C:\Windows\system32\services.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [PID: 644 / SYSTEM][C:\Windows\system32\lsass.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [PID: 652 / SYSTEM][C:\Windows\system32\lsm.exe] [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)] [PID: 716 / SYSTEM][C:\Windows\system32\winlogon.exe] [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)] [PID: 848 / SYSTEM][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 892 / SYSTEM][C:\Windows\system32\nvvsvc.exe] [NVIDIA Corporation, 8.17.11.9562] [PID: 920 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 960 / SYSTEM][C:\Program Files\Rising\Rav\RavMonD.exe] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\Rav\combase.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17] [C:\Program Files\Rising\Rav\cnt09.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] [C:\Program Files\Rising\Rav\moncomm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 9] [C:\Program Files\Rising\Rav\MonBase.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\Rav\Rslog.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.41] [C:\Program Files\Rising\Rav\mondrv.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] [C:\Program Files\Rising\Rav\defmon.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 46] [C:\Program Files\Rising\Rav\moncom08.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\Rav\MonRule.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10] [C:\Program Files\Rising\Rav\FileMon.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 29] [C:\Program Files\Rising\Rav\MailMon.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 22] [C:\Program Files\Rising\Rav\HookWeb.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 12] [C:\Program Files\Rising\Rav\rsindent.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 11] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\Rav\taskplug.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10] [C:\Program Files\Rising\Rav\scansrvp.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.7] [C:\Program Files\Rising\Rav\cnt08.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\Rav\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0] [C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\Hooksys.dll] [Beijing Rising Information Technology Co., Ltd., 24, 0, 0, 3] [C:\Program Files\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [C:\Program Files\Rising\Rav\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [C:\Program Files\Rising\Rav\HookCont.dll] [Beijing Rising Information Technology Co., Ltd., 24, 0, 0, 1] [C:\Program Files\Rising\Rav\BACore.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 35] [C:\Program Files\Rising\Rav\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] [C:\Program Files\Rising\Rav\refs.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\Rav\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\Rav\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\Rav\rsnetsvr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\Rav\bawhite.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\Rav\RSStore.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] [C:\Program Files\Rising\Rav\Scanner.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.22] [C:\Program Files\Rising\Rav\ScanAdd.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.4] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Program Files\Rising\Rav\rstask.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] [C:\Program Files\Rising\Rav\rsstub.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\Rav\ScanSrv.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.3] [C:\Program Files\Rising\Rav\scanpe.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10] [C:\Program Files\Rising\Rav\pearc.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\Rav\ur000.dat] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\Rav\urutils.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\Rav\revm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] [C:\Program Files\Rising\Rav\ffr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\Rav\nvfile.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\Rav\scanexec.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\Rav\unexe.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\Rav\scanex.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 68] [C:\Program Files\Rising\Rav\scantj.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\Rav\methodex.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\Rav\heurex.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 15] [C:\Program Files\Rising\Rav\pecompd.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] [C:\Program Files\Rising\Rav\ur001.dat] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\Rav\extmail.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] [C:\Program Files\Rising\Rav\scansct.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\Rav\extsfx.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\Rav\ScanRavT.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.4] [C:\Program Files\Rising\Rav\ScanBT.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.19] [C:\Program Files\Rising\Rav\ScanStub.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [C:\Program Files\Rising\Rav\SysMail.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [C:\Program Files\Rising\Rav\ur025.dat] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\Rav\scriptci.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\Rav\ur023.dat] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\Rav\extarch.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 8] [C:\Program Files\Rising\Rav\extole.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\Rav\extcomp.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\Rav\ur004.dat] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\Rav\ur027.dat] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\Rav\scanmac.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\Rav\extalgo.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\Rav\extcryp.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [PID: 1000 / SYSTEM][C:\Program Files\Rising\RFW\RavMonD.exe] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\RFW\combase.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17] [C:\Program Files\Rising\RFW\cnt09.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] [C:\Program Files\Rising\RFW\MonBase.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\RFW\MonComm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 9] [C:\Program Files\Rising\RFW\rfwlog.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.15] [C:\Program Files\Rising\RFW\rfwrule.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Rising\RFW\rfwsrv.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.2] [C:\Program Files\Rising\RFW\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\RFW\mPorts.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0] [C:\Program Files\Rising\RFW\rfwdrvc.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.1] [C:\Program Files\Rising\RFW\Rfwdrv.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.5] [C:\Program Files\Rising\RFW\RfwArp.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.5] [C:\Program Files\Rising\RFW\rsnetsvr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\RFW\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\RFW\urlrule.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [C:\Program Files\Rising\RFW\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] [C:\Program Files\Rising\RFW\refs.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\RFW\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\RFW\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\RFW\rfwproxy.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 67] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Program Files\Rising\RFW\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\RFW\rsindent.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 11] [C:\Program Files\Rising\RFW\taskplug.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10] [C:\Program Files\Rising\RFW\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0] [C:\Program Files\Rising\RFW\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0] [C:\Program Files\Rising\RFW\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\RFW\NComm2.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\RFW\rstask.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] [C:\Program Files\Rising\RFW\rsstub.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\RFW\urllib.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 1036 / SYSTEM][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 1088 / LOCAL SERVICE][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Windows\system32\MBWrp32.dll] [Creative Technology Ltd., 1.0.0.110] [C:\Windows\system32\MBAPO32.dll] [Creative Technology Ltd., 1.0.9.0] [C:\Windows\system32\RtkAPO.dll] [Realtek Semiconductor Corp., 11, 0, 6000, 101] [PID: 1116 / SYSTEM][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [PID: 1148 / SYSTEM][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [PID: 1340 / SYSTEM][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 1360 / NETWORK SERVICE][C:\Windows\system32\SLsvc.exe] [(Verified) Microsoft Corporation, 6.0.6002.18005 (lh_sp2rtm.090410-1830)] [PID: 1452 / SYSTEM][C:\Windows\system32\nvvsvc.exe] [NVIDIA Corporation, 8.17.11.9562] [C:\Windows\system32\NVSVC.DLL] [NVIDIA Corporation, 8.17.11.9562] [C:\Windows\system32\nvapi.dll] [NVIDIA Corporation, 8.17.11.9562] [C:\Windows\system32\NVSVCR.DLL] [NVIDIA Corporation, 8.17.11.9562] [PID: 1464 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 1732 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 1864 / SYSTEM][C:\Windows\System32\WLTRYSVC.EXE] [N/A, ] [PID: 1880 / SYSTEM][C:\Windows\System32\bcmwltry.exe] [Dell Inc., 5.10.38.30] [C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.1_none_e163563597edeada\msvcm90.dll] [Microsoft Corporation, 9.00.30729.1] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\894183c0c47bd4772fbfad4c1a7e3b71\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.4200 (NetFxQFE.050727-4200)] [C:\Windows\System32\bcmwlrmt.dll] [N/A, ] [C:\Windows\System32\wltrynt.dll] [Broadcom Corporation, 5.10.38.30] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\13cce38e8de5fd54853390e4e98abd0e\System.ni.dll] [Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\5fada30bf7c201ababed5104184b9754\System.Runtime.Remoting.ni.dll] [Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\f3554229f9241c34b5acd5061bb7a9b6\System.Management.ni.dll] [Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)] [PID: 324 / SYSTEM][C:\Windows\System32\spoolsv.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 488 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 1048 / SYSTEM][C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe] [Andrea Electronics Corporation, 1.0.32.9] [PID: 1580 / SYSTEM][C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe] [Broadcom Corporation., 6.1.0.4600] [PID: 2220 / SYSTEM][C:\Program Files\Google\Update\GoogleUpdate.exe] [Google Inc., 1.2.131.7] [C:\Program Files\Google\Update\1.2.183.13\goopdate.dll] [Google Inc., 1.2.183.13] [PID: 2256 / SYSTEM][C:\Windows\system32\DRIVERS\o2flash.exe] [O2Micro International, 1, 0, 0, 3] [PID: 2288 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [PID: 2364 / SYSTEM][C:\Program Files\Common Files\tencent\paycent\tenpaycert.exe] [Tencent, 1, 2, 0, 3] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [PID: 2424 / SYSTEM][C:\Program Files\Tencent\QQDoctor\QQDrRtpSvc.exe] [Tencent, 3, 2, 27, 400] [PID: 2456 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 2496 / SYSTEM][C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe] [Microsoft Corporation, 1.3.59.0] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [PID: 2544 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 2628 / SYSTEM][C:\Windows\System32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 2684 / SYSTEM][C:\Windows\system32\SearchIndexer.exe] [(Verified) Microsoft Corporation, 7.00.6002.18005 (lh_sp2rtm.090410-1830)] [PID: 2728 / SYSTEM][C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe] [Intel Corporation, 8.5.0.1032] [C:\Program Files\Intel\Intel Matrix Storage Manager\ISDI.dll] [Intel Corporation, 8.5.0.1032] [C:\Program Files\Intel\Intel Matrix Storage Manager\CHS\PlugInRAID_CHS.dll] [Intel Corporation, 8.5.0.1032] [PID: 3660 / de][C:\Windows\system32\Dwm.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Windows\system32\btmmhook.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\system32\nvd3dum.dll] [NVIDIA Corporation, 8.17.11.9562] [C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ] [PID: 3672 / de][C:\Windows\system32\taskeng.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\nvapi.dll] [NVIDIA Corporation, 8.17.11.9562] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [PID: 3720 / de][C:\Windows\Explorer.EXE] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Windows\system32\btncopy.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\system32\btmmhook.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\system32\nvshext.dll] [NVIDIA Corporation, 195.62] [C:\Windows\system32\nvapi.dll] [NVIDIA Corporation, 8.17.11.9562] [D:\Thunder\ComDlls\ATL71.DLL] [Microsoft Corporation, 7.10.6101.0] [D:\Thunder\ComDlls\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [D:\Thunder\ComDlls\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\PROGRA~1\Youdao\Toolbar\ydtbv2.2\YODAOT~1.DLL] [网易公司, 2.20.11.5000] [D:\Thunder\ComDlls\xunleiBHO_Now.dll] [深圳市迅雷网络技术有限公司, 5,9,16,1306] [C:\Windows\system32\BtwNamespaceExt.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\system32\BtwNeLib.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\system32\btwapi.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Windows\system32\btosif.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80U.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Windows\system32\btwpimif.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1\ATL80.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_03ca5532205cb096\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [C:\Windows\system32\BCMWLCPL.CPL] [Dell Inc., 5.10.38.30] [C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.1_none_e163563597edeada\msvcm90.dll] [Microsoft Corporation, 9.00.30729.1] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\894183c0c47bd4772fbfad4c1a7e3b71\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.4200 (NetFxQFE.050727-4200)] [C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ] [C:\Program Files\Tencent\QQSoftMgr\1.0.358.203\QQSoftExt.dll] [Tencent, 1, 0, 0, 1] [C:\Program Files\WinRAR\rarext.dll] [, ] [C:\Windows\system32\RavExt.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [C:\Windows\system32\kakaext.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [PID: 3820 / de][C:\Program Files\Tencent\QQDoctor\QQDoctorRTP.exe] [Tencent, 3, 2, 100, 400] [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80U.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Program Files\Tencent\QQDoctor\SafeCommon.dll] [Tencent, 1, 40, 1370, 0] [C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1\ATL80.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_03ca5532205cb096\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Program Files\Tencent\QQDoctor\TSFSEngine.dat] [Tencent, 2009, 3, 11, 7] [C:\Program Files\Tencent\QQDoctor\TSFileFilter.dat] [tencent, 2007, 12, 5, 01] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Program Files\Tencent\QQDoctor\TSKSPLIB.dat] [Tencent, 2009, 9, 25, 20] [C:\Program Files\Tencent\QQDoctor\TSWebMon.dat] [Tencent, 2009, 12, 11, 10] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 4080 / de][C:\Program Files\Rising\RFW\RsTray.exe] [Beijing Rising Information Technology Co., Ltd., 22.0.0.10] [C:\Program Files\Rising\RFW\comserv.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.15] [C:\Program Files\Rising\RFW\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\RFW\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\RFW\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\RFW\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\RFW\rsxml.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\RFW\MonState.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\RFW\rfwrule.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Rising\RFW\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [C:\Program Files\Rising\RFW\rspalvd.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.7] [C:\Program Files\Rising\RFW\rsguilib.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 57] [C:\Program Files\Rising\RFW\ravbintl.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 22] [C:\Program Files\Rising\RFW\rsnetsvr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] [C:\Program Files\Rising\RFW\rsmginfo.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\RFW\rfwtray.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 39] [C:\Program Files\Rising\RFW\ravppops.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 21] [C:\Program Files\Rising\RFW\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0] [C:\Program Files\Rising\RFW\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0] [C:\Program Files\Rising\RFW\PngDll.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\RFW\rfwlog.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.15] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 4092 / de][C:\Program Files\Rising\Rav\RsTray.exe] [Beijing Rising Information Technology Co., Ltd., 22.0.0.10] [C:\Program Files\Rising\Rav\comserv.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.15] [C:\Program Files\Rising\Rav\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\Rav\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\Rav\rsxml.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\Rav\MonState.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [C:\Program Files\Rising\Rav\ScanEvnt.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.3] [C:\Program Files\Rising\Rav\rsguilib.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 57] [C:\Program Files\Rising\Rav\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [C:\Program Files\Rising\Rav\rspalvd.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.7] [C:\Program Files\Rising\Rav\ravbintl.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 22] [C:\Program Files\Rising\Rav\mruleui.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 7] [C:\Program Files\Rising\Rav\MonTray.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.74] [C:\Program Files\Rising\Rav\RavITray.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] [C:\Program Files\Rising\Rav\rsmginfo.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [C:\Program Files\Rising\Rav\scanleak.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] [C:\Program Files\Rising\Rav\ravppops.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 21] [C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0] [C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0] [C:\Program Files\Rising\Rav\PngDll.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\ScanPrxy.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.4] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 2296 / de][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] [Synaptics Incorporated, 14.0.4 03Sep09] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Windows\system32\SynCOM.dll] [Synaptics Incorporated, 14.0.4 03Sep09] [C:\Windows\system32\SynTPAPI.dll] [Synaptics Incorporated, 14.0.4 03Sep09] [C:\Windows\system32\btmmhook.dll] [Broadcom Corporation., 6.1.0.4600] [PID: 1324 / de][C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe] [Realtek Semiconductor, 1, 0, 0, 382] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [PID: 3120 / de][C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\system32\btwapi.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Windows\system32\btosif.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\system32\btwhidcs.DLL] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80U.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_03ca5532205cb096\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Windows\system32\btrez.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ] [C:\Windows\system32\btmmhook.dll] [Broadcom Corporation., 6.1.0.4600] [PID: 2592 / de][C:\Program Files\Tencent\QQ\Bin\TXPlatform.exe] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll] [Tencent, 1, 45, 1530, 0] [PID: 2780 / de][C:\Windows\system32\wbem\unsecapp.exe] [(Verified) Microsoft Corporation, 6.0.6002.18005 (lh_sp2rtm.090410-1830)] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [PID: 2944 / SYSTEM][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 5108 / de][C:\Program Files\Synaptics\SynTP\SynTPHelper.exe] [Synaptics Incorporated, 14.0.4 03Sep09] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [PID: 5304 / SYSTEM][C:\Windows\system32\taskeng.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 4144 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 4368 / SYSTEM][C:\Program Files\Dell Support Center\bin\sprtsvc.exe] [SupportSoft, Inc., 7.0.1117.0] [C:\Program Files\Dell Support Center\bin\sprtsched.dll] [SupportSoft, Inc., 7.0.940.0] [C:\Program Files\Dell Support Center\bin\sprtfod.dll] [SupportSoft, Inc., 7.0.940.0] [C:\Program Files\Dell Support Center\bin\LIBEAY32.dll] [SupportSoft, Inc., 0, 9, 8, 4, 1] [C:\Program Files\Dell Support Center\bin\sprtsync.dll] [SupportSoft, Inc., 7.0.1710.0] [C:\Program Files\Dell Support Center\bin\sprtupdate.dll] [SupportSoft, Inc., 7.0.940.0] [C:\Windows\system32\gamecap.dll] [gamecap.net, 1, 0, 0, 4] [PID: 2184 / de][C:\Program Files\龙图腾网吧代理\ip\iPush5.0.exe] [, 1.0.0.5] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Windows\system32\btmmhook.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 4864 / de][C:\Program Files\Tencent\QQ\Bin\QQ.exe] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\Common.dll] [Tencent, 1, 45, 1530, 0] [C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1\ATL80.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Program Files\Tencent\QQ\Bin\KernelUtil.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\GF.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\xGraphic32.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\AppUtil.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\AFUtil.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Program Files\Tencent\QQ\Bin\AppFramework.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\MainFrame.dll] [Tencent, 1, 45, 1530, 0] [C:\Windows\system32\btmmhook.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Program Files\Tencent\QQ\Bin\AFCtrl.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\IM.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll] [Tencent, 1.2.0.32] [C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOCommon.DLL] [Tencent, 1.2.0.9] [C:\Program Files\Tencent\QQ\Bin\TaskTray.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\SkinMgr.dll] [Tencent, 1, 45, 1530, 0] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQShow\Bin\FlashAvatarDll.dll] [Tencent, 1.45.1.45] [C:\Program Files\Tencent\QQ\Bin\KernelMisc.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\AppMisc.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\ChatFrame.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\ConfigCenter.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\CustomFace.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\LongCnn.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\ContactInfoFrame.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\MsgMgr.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\QInterLive.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\SystemMsg.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.PaiPai\Bin\PaiPai.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.AudioVideo\Bin\AudioVideo.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.MMOG\Bin\MMOG.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Soso\Bin\Soso.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Qzone\Bin\Qzone.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Weather\Bin\Weather.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.SoBar\Bin\SoBar.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.PaiPaiGift\Bin\PaiPaiGift.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQLive\Bin\QQLive.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQMusic\Bin\QQMusic.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.taotao\Bin\Taotao.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\GroupApp.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.snsapp\Bin\SNSApp.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.paycenter\Bin\PayCenter.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qbar\Bin\QBar.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvipmisc\Bin\QQVipMisc.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.wenwen\Bin\WenWen.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\Contacts.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.netbar\Bin\NetBar.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.wireless\Bin\Wireless.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqshow\Bin\QQShow.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.crm\Bin\CRM.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.vas\Bin\VAS.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\InformationBox.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqgame\Bin\QQGame.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqpet\Bin\QQPet.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.mail\Bin\Mail.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvip\Bin\QQVip.dll] [Tencent, 1, 45, 1530, 0] [C:\Windows\system32\Macromed\Flash\Flash10d.ocx] [Adobe Systems, Inc., 10,0,42,34] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.memo\Bin\Memo.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.advertisement\Bin\Advertisement.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.today\Bin\Today.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqring\Bin\QQRing.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqwebsite\Bin\QQWebsite.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Tencent\QQ\Bin\AddrSearch.dll] [Tencent, 2, 3, 12, 11] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.gamelife\Bin\GameLife.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ] [C:\Windows\system32\QQWUBI.IME] [Tencent, 1.0.133.201] [C:\Program Files\Tencent\QQ\Bin\Camera.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\SCCore.dll] [Tencent, 1, 7, 1, 6] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.graffito\Bin\Graffito.dll] [Tencent, 1, 45, 1530, 0] [C:\Windows\system32\nvd3dum.dll] [NVIDIA Corporation, 8.17.11.9562] [C:\Windows\system32\QQPINYIN.IME] [Tencent, 3.1.730.201] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.winks\Bin\Winks.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\vqqsdl.dll] [Tencent, 5, 0, 3, 24] [C:\Program Files\Tencent\QQ\Plugin\com.tencent.remotehelp\Bin\RemoteHelp.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Tencent\QQ\Bin\RHComm.dll] [Tencent, 1, 45, 1530, 0] [PID: 5552 / de][C:\Program Files\Tencent\QQPet\QQPenguin\QQPenguin.exe] [Tencent, 6.4.0.6] [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_03ca5532205cb096\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.4053] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Program Files\Tencent\QQPet\QQPenguin\TenFact.dll] [Tencent, 01.1.10.005] [C:\Program Files\Tencent\QQPet\QQPenguin\framework.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\MainLogic.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\PetManager.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\RIAgentCore.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\SceneManager.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\BaseComponent.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\RSM.dll] [深圳腾讯计算机系统有限公司, 1.0.0.1] [C:\Program Files\Tencent\QQPet\QQPenguin\SocResourceProvider.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\TenPet1.dll] [Tencent, 01.1.10.005] [C:\Program Files\Tencent\QQPet\QQPenguin\QQCrypt.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\GUISystem.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\DataCenter.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\MutexResourceManagerPrj.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\PetDir.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\PetNetWork.DLL] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\OnlineManager.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\QC.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\basicprotocol.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\LiveUpdate.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\BubbleManager.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\FeedLogic.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\FriendsListPrj.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\FriendsSystemLogicPrj.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\GamePlayPrj.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\PetSocWorld.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\homelogicprj.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\InteractSystem.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\JavaScriptAPIPrj.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\MenuTips.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\MessageManager.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\MultiPetFlash.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\PetDazzle.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\AppPlugins.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\PhasesLogicPrj.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\QQMsgTips.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\studylogic.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\systemconfigureprj.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\TickleSystem.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\ToyLogicPrj.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\travellogic.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\worklogic.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\WebLogicPrj.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\ConditionHelper.dll] [N/A, ] [C:\Windows\system32\btmmhook.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Program Files\Tencent\QQPet\QQPenguin\FlashDecoration.dll] [N/A, ] [C:\Program Files\Tencent\QQPet\QQPenguin\FlashAPIX.dll] [N/A, ] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [C:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll] [Tencent, 1, 45, 1530, 0] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Windows\system32\Macromed\Flash\Flash10d.ocx] [Adobe Systems, Inc., 10,0,42,34] [C:\Windows\system32\nvd3dum.dll] [NVIDIA Corporation, 8.17.11.9562] [PID: 7808 / de][C:\Program Files\龙图腾网吧代理\gggg\svchost.exe] [N/A, ] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 7176 / de][C:\Windows\system32\conime.exe] [(Verified) Microsoft Corporation, 6.0.6002.18005 (lh_sp2rtm.090410-1830)] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [PID: 5448 / de][C:\Program Files\GridService\peeradapter.exe] [FS2YOU, 2, 1, 10, 8366] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 7212 / de][C:\Program Files\GridService\peer.exe] [FS2YOU, 2, 1, 10, 8366] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [PID: 6828 / de][C:\Program Files\Rising\AntiSpyware\knownsvr.exe] [Beijing Rising Information Technology Co., Ltd., 6.0.0.14] [C:\Program Files\Rising\AntiSpyware\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.11] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 9400 / de][C:\Program Files\Tencent\TT\bin\ttraveler.exe] [Tencent, 4, 8, 0, 803] [C:\Program Files\Tencent\TT\bin\TTUtilWidget.dll] [Tencent, 4, 8, 0, 803] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Program Files\Tencent\TT\bin\PlatformWidget.dll] [Tencent, 4, 8, 0, 803] [C:\Program Files\Tencent\TT\bin\TTMainFrame.dll] [Tencent, 4, 8, 0, 803] [C:\Program Files\Tencent\TT\bin\TTMBrowser.dll] [Tencent, 4, 8, 0, 803] [C:\Program Files\Tencent\TT\bin\TTabMgr.dll] [Tencent, 4, 8, 0, 803] [C:\Program Files\Tencent\TT\bin\TTStore.dll] [Tencent, 4, 8, 0, 803] [C:\Windows\system32\btmmhook.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Program Files\Tencent\TT\bin\TTSkin.dll] [Tencent, 4, 8, 0, 803] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [C:\Program Files\Tencent\TT\bin\TTFilter.dll] [Tencent, 4, 8, 0, 803] [C:\Program Files\Tencent\TT\bin\TTNetwork.dll] [Tencent, 4, 8, 0, 803] [C:\Program Files\Tencent\TT\bin\sqlite3.dll] [N/A, ] [C:\Program Files\Tencent\TT\bin\TTPluginMng.dll] [Tencent, 4, 8, 0, 803] [C:\Program Files\Tencent\TT\Plugins\3TTWeather\TTWeather.dll] [Tencent, 1.0.0.1] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17] [C:\Windows\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Windows\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Tencent\TT\bin\FavoriteLogical.dll] [Tencent, 4, 8, 0, 803] [C:\Windows\system32\nvd3dum.dll] [NVIDIA Corporation, 8.17.11.9562] [C:\Windows\system32\Macromed\Flash\Flash10d.ocx] [Adobe Systems, Inc., 10,0,42,34] [C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ] [PID: 7744 / de][C:\Users\de\AppData\Local\Temp\Rar$EX00.030\SREngLdr.EXE] [Smallfrogs Studio, 2.8.2.1321] [PID: 4820 / de][C:\Users\de\AppData\Local\Temp\Rar$EX00.030\SREaed06ca2.EXE] [Smallfrogs Studio, 2.8.2.1321] [C:\Program Files\Tencent\QQDoctor\TSVulMon.DAT] [Tencent, 2010, 1, 25, 27] [C:\Windows\system32\btmmhook.dll] [Broadcom Corporation., 6.1.0.4600] [C:\Users\de\AppData\Local\Temp\Rar$EX00.030\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15] [C:\Windows\system32\GameLink.dll] [www.Easy2Game.com, 17, 2, 6, 8] [PID: 9248 / SYSTEM][C:\Windows\system32\SearchProtocolHost.exe] [(Verified) Microsoft Corporation, 7.00.6002.18005 (lh_sp2rtm.090410-1830)] [PID: 7068 / SYSTEM][C:\Windows\system32\SearchFilterHost.exe] [(Verified) Microsoft Corporation, 7.00.6002.18005 (lh_sp2rtm.090410-1830)] ================================== 文件关联 .TXT Error. [C:\Windows\notepad.exe %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["%SystemRoot%\hh.exe" %1] .HLP OK. [%SystemRoot%\winhlp32.exe %1] .INI Error. [C:\Windows\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .VBS OK. ["%SystemRoot%\System32\WScript.exe" "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 Easy2Game-TCPChain C:\Windows\system32\GameLink.dll(www.Easy2Game.com, Easy2Game Service Provider) Easy2Game-UDPChain C:\Windows\system32\GameLink.dll(www.Easy2Game.com, Easy2Game Service Provider) Easy2Game-TCPChain C:\Windows\system32\GameLink.dll(www.Easy2Game.com, Easy2Game Service Provider) Easy2Game-UDPChain C:\Windows\system32\GameLink.dll(www.Easy2Game.com, Easy2Game Service Provider) Easy2Game-TCPFilter C:\Windows\system32\GameLink.dll(www.Easy2Game.com, Easy2Game Service Provider) Easy2Game-UDPFilter C:\Windows\system32\GameLink.dll(www.Easy2Game.com, Easy2Game Service Provider) Easy2Game-TCPFilter C:\Windows\system32\GameLink.dll(www.Easy2Game.com, Easy2Game Service Provider) Easy2Game-UDPFilter C:\Windows\system32\GameLink.dll(www.Easy2Game.com, Easy2Game Service Provider) GameCap TCP/IP C:\Windows\system32\gamecap.dll(gamecap.net, gamecap Core Driver) GameCap UDP/IP C:\Windows\system32\gamecap.dll(gamecap.net, gamecap Core Driver) GameCap RAW/IP C:\Windows\system32\gamecap.dll(gamecap.net, gamecap Core Driver) GameCap IPLayer C:\Windows\system32\gamecap.dll(gamecap.net, gamecap Core Driver) ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost 127.0.0.1 localhost ================================== 进程特权扫描特殊特权被允许： SeDebugPrivilege [PID = 2184, C:\PROGRAM FILES\龙图腾网吧代理\IP\IPUSH5.0.EXE] 特殊特权被允许： SeDebugPrivilege [PID = 7808, C:\PROGRAM FILES\龙图腾网吧代理\GGGG\SVCHOST.EXE] ================================== 计划任务 [已启用] \\Google Software Updater C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe scheduled_start [已禁用] \\GoogleUpdateTaskMachineCore C:\Program Files\Google\Update\GoogleUpdate.exe /c [已禁用] \\GoogleUpdateTaskMachineUA C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler [已启用] \\RunAsStdUser Task2074 C:\Program Files\Rising\Rav\rsmain.exe /ua /installsource scheduler [已启用] \\{7F1F6BC6-E867-4A7F-BDA4-8B5C99B31C5C} C:\Windows\system32\pcalua.exe -a "C:\Program Files\Tencent\QQSoftMgr\1.0.338.203\Download\tt4.8_setup_copy.exe" -d "C:\Program Files\Tencent\QQSoftMgr\1.0.338.203" -c ##silence=1&handle=918396&supply=103 [已启用] \\{CB2F1E7E-FBA5-47E8-9BF7-749B3D1F5504} C:\Windows\system32\pcalua.exe -a "C:\Program Files\Tencent\QQSoftMgr\1.0.338.203\Download\QQGame2009Release_setup_web.EXE" -d "C:\Program Files\Tencent\QQSoftMgr\1.0.338.203" [已启用] \\{EFBE6143-18ED-4886-865F-53BA95DFF97A} C:\Windows\system32\pcalua.exe -a D:\三国群英传OL决战天下_7500\unins000.exe [已禁用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) N/A [已启用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) N/A [已启用] \Microsoft\Windows\Bluetooth\UninstallDeviceTask BthUdTask.exe $(Arg0) [已启用] \Microsoft\Windows\CertificateServicesClient\SystemTask N/A [已启用] \Microsoft\Windows\CertificateServicesClient\UserTask N/A [已启用] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam N/A [已启用] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator %SystemRoot%\System32\wsqmcons.exe [已启用] \Microsoft\Windows\Customer Experience Improvement Program\OptinNotification %SystemRoot%\System32\wsqmcons.exe -n 0x1C577FA2B69CAD0 [已启用] \Microsoft\Windows\Customer Experience Improvement Program\Uploader %windir%\system32\WSqmCons.exe -u [已启用] \Microsoft\Windows\Defrag\ScheduledDefrag %windir%\system32\defrag.exe -c -i [已启用] \Microsoft\Windows\MobilePC\HotStart N/A [已启用] \Microsoft\Windows\MobilePC\TMM N/A [已启用] \Microsoft\Windows\MUI\LPRemove %windir%\system32\lpremove.exe [已启用] \Microsoft\Windows\Multimedia\SystemSoundsService N/A [已启用] \Microsoft\Windows\NetworkAccessProtection\NAPStatus UI N/A [已启用] \Microsoft\Windows\Shell\CrawlStartPages N/A [已启用] \Microsoft\Windows\SystemRestore\SR %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation [已启用] \Microsoft\Windows\Tcpip\IpAddressConflict1 rundll32 ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem [已启用] \Microsoft\Windows\Tcpip\IpAddressConflict2 rundll32 ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem [已启用] \Microsoft\Windows\UPnP\UPnPHostConfig sc.exe config upnphost start= auto [已启用] \Microsoft\Windows\Windows Error Reporting\QueueReporting %windir%\system32\wermgr.exe -queuereporting [已启用] \Microsoft\Windows\Wired\GatherWiredInfo %windir%\system32\gatherWiredInfo.vbs [已启用] \Microsoft\Windows\Wireless\GatherWirelessInfo %windir%\system32\gatherWirelessInfo.vbs ================================== Windows 安全更新检查 KB978506, 用于 Windows Vista 的 Internet Explorer 8 兼容性视图列表的更新程序 (KB978506) KB905866, Windows Mail 垃圾邮件过滤器更新程序 [2010 年 2 月] (KB905866) ================================== API HOOK N/A ================================== 隐藏进程 N/A ================================== [/CODE]