启动文件夹

N/A



--------------------------------------------------------------------------------



服务

[Ati External Event Utility / Ati External Event Utility][Running/Auto Start]
(C:\Windows\system32\Ati2evxx.exe)(ATI Technologies Inc.)
[Contrl Center of Storm Media / ccosm][Running/Auto Start]
(E:\下载的程序\storm\stormliv.exe /asservice)(北京暴风网际科技有限公司)
[ConfigFree Service / ConfigFree Service][Running/Auto Start]
("C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe")(TOSHIBA CORPORATION)
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
("C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe")(Macrovision Corporation)
[Jumpstart Wifi Protected Setup / jswpsapi][Stopped/Manual Start]
(C:\Program Files\Jumpstart\jswpsapi.exe)(Atheros Communications, Inc.)
[Kingsoft Basic Service / kaccore][Stopped/Manual Start]
("C:\Program Files\kingsoft\kac\service\kaccore.exe")(Kingsoft Corporation)
[Macromedia Licensing Service / Macromedia Licensing Service][Stopped/Manual Start]
("C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe")()
[O2Micro Flash Memory Card Service / o2flash][Running/Auto Start]
("c:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe")(O2Micro International)
[Rav Process Communication Center / RavCCenter][Stopped/Auto Start]
(C:\Program Files\Rising\Rav\CCENTER.EXE)(Beijing Rising Information Technology Co., Ltd.)
[Rising RavTask Manager / RavTask][Running/Auto Start]
("C:\Program Files\Rising\Rav\RavTask.exe" RavTask)(Beijing Rising Information Technology Co., Ltd.)
[Rising RealTime Monitor / RsRavMon][Stopped/Auto Start]
(C:\Program Files\Rising\Rav\RavMonD.exe)(Beijing Rising Information Technology Co., Ltd.)
[Rising Scan Service / RsScanSrv][Stopped/Auto Start]
(C:\Program Files\Rising\Rav\ScanFrm.exe)(Beijing Rising Information Technology Co., Ltd.)
[Shell Hardware Detection / ShellHWDetection][Running/Auto Start]
(C:\Windows\System32\svchost.exe -k netsvcs--)%SystemRoot%\System32\shsvcs.dll)(Microsoft Corporation)
[Themes / Themes][Running/Auto Start]
(C:\Windows\System32\svchost.exe -k netsvcs--)%SystemRoot%\system32\shsvcs.dll)(Microsoft Corporation)
[TOSHIBA Navi Support Service / TNaviSrv][Running/Auto Start]
(C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe)(TOSHIBA Corporation)
[TOSHIBA Optical Disc Drive Service / TODDSrv][Running/Auto Start]
(C:\Windows\system32\TODDSrv.exe)(TOSHIBA Corporation)
[TOSHIBA Power Saver / TosCoSrv][Running/Auto Start]
("C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe")(TOSHIBA Corporation)
[TOSHIBA SMART Log Service / TOSHIBA SMART Log Service][Running/Auto Start]
("C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe")(TOSHIBA Corporation)
[Ulead Burning Helper / UleadBurningHelper][Running/Auto Start]
(C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe)(Ulead Systems, Inc.)
[Windows Time / W32Time][Stopped/Auto Start]
(C:\Windows\system32\svchost.exe -k LocalService--)C:\Windows\System32\bits\clihxwcil.dll)(N/A)
[XAudioService / XAudioService][Running/Auto Start]
(C:\Windows\system32\DRIVERS\xaudio.exe)(Conexant Systems, Inc.)



--------------------------------------------------------------------------------



驱动程序

[adp94xx / adp94xx][Stopped/Disabled]
(\SystemRoot\system32\drivers\adp94xx.sys)(Adaptec, Inc.)
[adpahci / adpahci][Stopped/Disabled]
(\SystemRoot\system32\drivers\adpahci.sys)(Adaptec, Inc.)
[adpu160m / adpu160m][Stopped/Disabled]
(\SystemRoot\system32\drivers\adpu160m.sys)(Adaptec, Inc.)
[adpu320 / adpu320][Stopped/Disabled]
(\SystemRoot\system32\drivers\adpu320.sys)(Adaptec, Inc.)
[aic78xx / aic78xx][Stopped/Disabled]
(\SystemRoot\system32\drivers\djsvs.sys)(Adaptec, Inc.)
[aliide / aliide][Stopped/Disabled]
(\SystemRoot\system32\drivers\aliide.sys)(Acer Laboratories Inc.)
[arc / arc][Stopped/Disabled]
(\SystemRoot\system32\drivers\arc.sys)(Adaptec, Inc.)
[arcsas / arcsas][Stopped/Disabled]
(\SystemRoot\system32\drivers\arcsas.sys)(Adaptec, Inc.)
[Atheros Extensible Wireless LAN device driver / athr][Stopped/Manual Start]
(system32\DRIVERS\athr.sys)(Atheros Communications, Inc.)
[atikmdag / atikmdag][Running/Manual Start]
(system32\DRIVERS\atikmdag.sys)(ATI Technologies Inc.)
[blbdrive / blbdrive][Stopped/Disabled]
(\SystemRoot\system32\drivers\blbdrive.sys)(N/A)
[BREGDRV / BREGDRV][Stopped/Manual Start]
(\??\C:\Windows\system32\drivers\bregdrv.sys)(360安全中心)
[Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start]
(\SystemRoot\system32\drivers\brfiltlo.sys)(Brother Industries, Ltd.)
[Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start]
(\SystemRoot\system32\drivers\brfiltup.sys)(Brother Industries, Ltd.)
[Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Disabled]
(\SystemRoot\system32\drivers\brserid.sys)(Brother Industries Ltd.)
[Brother WDM Serial driver / BrSerWdm][Stopped/Disabled]
(\SystemRoot\system32\drivers\brserwdm.sys)(Brother Industries Ltd.)
[Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Disabled]
(\SystemRoot\system32\drivers\brusbmdm.sys)(Brother Industries Ltd.)
[Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start]
(\SystemRoot\system32\drivers\brusbser.sys)(Brother Industries Ltd.)
[cmdide / cmdide][Stopped/Disabled]
(\SystemRoot\system32\drivers\cmdide.sys)(CMD Technology, Inc.)
[Microsoft UAA Function Driver for High Definition Audio Service / CnxtHdAudAddService][Running/Manual Start]
(system32\drivers\CHDART.sys)(Conexant Systems Inc.)
[Intel(R) PRO/1000 NDIS 6 Adapter Driver / E1G60][Stopped/Manual Start]
(system32\DRIVERS\E1G60I32.sys)(Intel Corporation)
[elxstor / elxstor][Stopped/Disabled]
(\SystemRoot\system32\drivers\elxstor.sys)(Emulex)
[hookcont / hookcont][Running/System Start]
(system32\drivers\HookCont.sys)(Beijing Rising Information Technology Co., Ltd.)
[hooksys / hooksys][Running/System Start]
(system32\drivers\HookSys.sys)(Beijing Rising Information Technology Co., Ltd.)
[HpCISSs / HpCISSs][Stopped/Disabled]
(\SystemRoot\system32\drivers\hpcisss.sys)(Hewlett-Packard Company)
[HSF_DPV / HSF_DPV][Running/Manual Start]
(system32\DRIVERS\HSX_DPV.sys)(Conexant Systems, Inc.)
[HSXHWAZL / HSXHWAZL][Running/Manual Start]
(system32\DRIVERS\HSXHWAZL.sys)(Conexant Systems, Inc.)
[Intel AHCI Controller / iaStor][Running/Boot Start]
(\SystemRoot\system32\DRIVERS\iaStor.sys)(Intel Corporation)
[Intel RAID Controller Vista / iaStorV][Stopped/Disabled]
(\SystemRoot\system32\drivers\iastorv.sys)(Intel Corporation)
[iirsp / iirsp][Stopped/Disabled]
(\SystemRoot\system32\drivers\iirsp.sys)(Intel Corp./ICP vortex GmbH)
[IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start]
(system32\DRIVERS\ipinip.sys)(N/A)
[ITEATAPI_Service_Install / iteatapi][Stopped/Disabled]
(\SystemRoot\system32\drivers\iteatapi.sys)(Integrated Technology Express, Inc.)
[ITERAID_Service_Install / iteraid][Stopped/Disabled]
(\SystemRoot\system32\drivers\iteraid.sys)(Integrated Technology Express, Inc.)
[JumpStart Wireless Filter Driver / jswpslwf][Running/System Start]
(system32\DRIVERS\jswpslwf.sys)(Atheros Communications, Inc.)
[LSI_FC / LSI_FC][Stopped/Disabled]
(\SystemRoot\system32\drivers\lsi_fc.sys)(LSI Logic)
[LSI_SAS / LSI_SAS][Stopped/Disabled]
(\SystemRoot\system32\drivers\lsi_sas.sys)(LSI Logic)
[LSI_SCSI / LSI_SCSI][Stopped/Disabled]
(\SystemRoot\system32\drivers\lsi_scsi.sys)(LSI Logic)
[mdmxsdk / mdmxsdk][Running/Auto Start]
(system32\DRIVERS\mdmxsdk.sys)(Conexant)
[megasas / megasas][Stopped/Disabled]
(\SystemRoot\system32\drivers\megasas.sys)(LSI Logic Corporation)
[Mraid35x / Mraid35x][Stopped/Disabled]
(\SystemRoot\system32\drivers\mraid35x.sys)(LSI Logic Corporation)
[Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit / NETw3v32][Stopped/Manual Start]
(system32\DRIVERS\NETw3v32.sys)(Intel? Corporation)
[nfrd960 / nfrd960][Stopped/Disabled]
(\SystemRoot\system32\drivers\nfrd960.sys)(IBM Corporation)
[Netgroup Packet Filter / NPF][Stopped/Manual Start]
(system32\DRIVERS\npf.sys)(CACE Technologies)
[N-trig HID Tablet Driver / ntrigdigi][Stopped/Disabled]
(\SystemRoot\system32\drivers\ntrigdigi.sys)(N-trig Innovative Technologies)
[nvraid / nvraid][Stopped/Disabled]
(\SystemRoot\system32\drivers\nvraid.sys)(NVIDIA Corporation)
[nvstor / nvstor][Stopped/Disabled]
(\SystemRoot\system32\drivers\nvstor.sys)(NVIDIA Corporation)
[IPX Traffic Filter Driver / NwlnkFlt][Stopped/Manual Start]
(system32\DRIVERS\nwlnkflt.sys)(N/A)
[IPX Traffic Forwarder Driver / NwlnkFwd][Stopped/Manual Start]
(system32\DRIVERS\nwlnkfwd.sys)(N/A)
[O2MDRDR / O2MDRDR][Running/Manual Start]
(system32\DRIVERS\o2media.sys)(O2Micro)
[Generic IO & Memory Access / QIOMem][Running/Manual Start]
(system32\DRIVERS\QIOMem.sys)(TOSHIBA)
[QLogic Fibre Channel Miniport Driver / ql2300][Stopped/Disabled]
(\SystemRoot\system32\drivers\ql2300.sys)(QLogic Corporation)
[QLogic iSCSI Miniport Driver / ql40xx][Stopped/Disabled]
(\SystemRoot\system32\drivers\ql40xx.sys)(QLogic Corporation)
[RsNTGDI / RsNTGDI][Running/Boot Start]
(\SystemRoot\system32\Drivers\RsNTGdi.sys)(Beijing Rising Information Technology Co., Ltd.)
[SafeBoxKrnl / SafeBoxKrnl][Running/System Start]
(\??\C:\Windows\system32\drivers\SafeBoxKrnl.sys)(360安全中心)
[SiSRaid2 / SiSRaid2][Stopped/Disabled]
(\SystemRoot\system32\drivers\sisraid2.sys)(Silicon Integrated Systems Corp.)
[SiSRaid4 / SiSRaid4][Stopped/Disabled]
(\SystemRoot\system32\drivers\sisraid4.sys)(Silicon Integrated Systems)
[Symc8xx / Symc8xx][Stopped/Disabled]
(\SystemRoot\system32\drivers\symc8xx.sys)(LSI Logic)
[Sym_hi / Sym_hi][Stopped/Disabled]
(\SystemRoot\system32\drivers\sym_hi.sys)(LSI Logic)
[Sym_u3 / Sym_u3][Stopped/Disabled]
(\SystemRoot\system32\drivers\sym_u3.sys)(LSI Logic)
[Synaptics TouchPad Driver / SynTP][Running/Manual Start]
(system32\DRIVERS\SynTP.sys)(Synaptics, Inc.)
[TCP/IP 协议驱动程序 / Tcpip][Running/System Start]
(System32\drivers\tcpip.sys)(Microsoft Corporation)
[Microsoft IPv6 Protocol Driver / Tcpip6][Stopped/Manual Start]
(system32\DRIVERS\tcpip.sys)(Microsoft Corporation)
[TOSHIBA Writing Engine Filter Driver / tdcmdpst][Running/Manual Start]
(system32\DRIVERS\tdcmdpst.sys)(TOSHIBA Corporation.)
[TOSHIBA tos_sps32 Service / tos_sps32][Running/Boot Start]
(\SystemRoot\system32\DRIVERS\tos_sps32.sys)(TOSHIBA Corporation)
[TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver / TVALZ][Running/Boot Start]
(\SystemRoot\system32\DRIVERS\TVALZ_O.SYS)(TOSHIBA Corporation)
[uliahci / uliahci][Stopped/Disabled]
(\SystemRoot\system32\drivers\uliahci.sys)(ULi Electronics Inc.)
[UlSata / UlSata][Stopped/Disabled]
(\SystemRoot\system32\drivers\ulsata.sys)(Promise Technology, Inc.)
[ulsata2 / ulsata2][Stopped/Disabled]
(\SystemRoot\system32\drivers\ulsata2.sys)(Promise Technology, Inc.)
[UVCFTR / UVCFTR][Running/Manual Start]
(System32\Drivers\UVCFTR_S.SYS)(Chicony Electronics Co., Ltd.)
[viaide / viaide][Stopped/Disabled]
(\SystemRoot\system32\drivers\viaide.sys)(VIA Technologies, Inc.)
[vsmraid / vsmraid][Stopped/Disabled]
(\SystemRoot\system32\drivers\vsmraid.sys)(VIA Technologies Inc.,Ltd)
[winachsf / winachsf][Running/Manual Start]
(system32\DRIVERS\HSX_CNXT.sys)(Conexant Systems, Inc.)
[XAudio / XAudio][Running/Auto Start]
(system32\DRIVERS\xaudio.sys)(Conexant Systems, Inc.)
[Driver for XLPPoEPC Device / XLPPoEPC][Running/Manual Start]
(system32\DRIVERS\XLPPoEPC.sys)(西安信利软件系统公司)
[NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwlh][Running/Manual Start]
(system32\DRIVERS\yk60x86.sys)(Marvell)



--------------------------------------------------------------------------------

浏览器加载项

[ThunderAtOnce Class]
{01443AEC-0FD1-40fd-9C87-E93D1494C233} (C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD)
[Adobe PDF Link Helper]
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} (C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated)
[SSVHelper Class]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.)
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} (C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD)
[SafeMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D} (C:\Program Files\360\360Safe\safemon\safemon.dll, (Signed) 360.CN)
[Java Plug-in 1.6.0_03]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} (C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.)
[启动迅雷5]
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436} (C:\Program Files\Thunder Network\Thunder\Thunder.exe, (Signed) 深圳市迅雷网络技术有限公司)
[Java Plug-in 1.6.0_03]
{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} (C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.)
[Java Plug-in 1.6.0_03]
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll, (Signed) Sun Microsystems, Inc.)
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} (C:\Windows\system32\Macromed\Flash\Flash10b.ocx, (Signed) Adobe Systems, Inc.)
[ThunderAtOnce Class]
{01443AEC-0FD1-40FD-9C87-E93D1494C233} (C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD)
[PhotoDrawEx Class]
{05F5F404-7C24-4B39-B5CC-340CEDEB9C0D} (C:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Qzone\bin\QQPhotoDrawEx\QQPhotoDrawEx.dll, (Signed) TENCENT)
[Adobe PDF Reader Link Helper]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated)
[]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} (, )
[]
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436} (, )
[Player Class]
{11F2A418-94B2-4e16-9B0C-B00C0435F903} (C:\Program Files\Tencent\QQLive\LiveMedia.dll, (Signed) Tencent)
[Adobe PDF Link Helper]
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} (C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated)
[InformationCardSigninHelper Class]
{19916E01-B44E-4E31-94A4-4696DF46157B} (C:\Windows\system32\icardie.dll, (Signed) Microsoft Corporation)
[InstallHelper Class]
{1DABF8D5-8430-4985-9B7F-A30E53D709B3} (C:\Program Files\Tencent\QQLive\QQLiveInstaller.dll, (Signed) )
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} (C:\Windows\System32\wmpdxm.dll, (Signed) Microsoft Corporation)
[CDetect Object]
{23F67C64-0B79-4AE3-9FC9-4289F8A03C6B} (E:\程序\Baidu Hi\WebDetect2.dll, (Signed) Baidu.com, Inc.)
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} (C:\Windows\system32\mshtml.dll, (Signed) Microsoft Corporation)
[XML DOM Document]
{2933BF90-7B36-11D2-B20E-00C04F983E60} (%SystemRoot%\System32\msxml3.dll, (Signed) N/A)
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555} (%SystemRoot%\System32\msxml3.dll, (Signed) N/A)
[Thunder Agent Class]
{485463B7-8FB2-4B3B-B29B-8B919B0EACCE} (C:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll, (Signed) Thunder Networking Technologies,LTD)
[]
{4C833081-D026-4FF8-968F-7EAB660D2FBA} (, )
[HHCtrl Object]
{52A2AAAE-085D-4187-97EA-8C30DB990436} (%SystemRoot%\System32\hhctrl.ocx, (Signed) N/A)
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} (C:\Windows\system32\ieframe.dll, (Signed) Microsoft Corporation)
[isInstalled Class]
{5852F5ED-8BF4-11D4-A245-0080C6F74284} (C:\Program Files\Java\jre1.6.0_03\bin\wsdetect.dll, Sun Microsystems, Inc.)
[XMP Class]
{6483F145-A768-4C41-AACC-52D4D7845851} (C:\ProgramData\Thunder Network\KanKan\xplayer.dll_1_work, 深圳市迅雷网络技术有限公司)
[QQLiveFile Class]
{6B232760-90F1-41c3-9902-C8552C1D8A72} (C:\Program Files\Tencent\QQLive\FileVersion.dll, (Signed) Tencent)
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} (%SystemRoot%\system32\wmp.dll, (Signed) N/A)
[]
{6D53EC84-6AAE-4787-AEEE-F4628F01010C} (, )
[SSVHelper Class]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.)
[MediaComm Class]
{7670648D-461B-42AF-BDFE-46D26AF5EFF2} (C:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin19.dll, (Signed) ShenZhen Thunder Networking Technologies,LTD)
[SproControlOcxV1 Control]
{7EEAF27A-5E63-4472-8E38-9E81D0F5A319} (C:\Users\toshiba\AppData\Local\FairAge\ComCache\SPROCO~1.OCX, (Signed) Sunpro)
[Peer Adapter]
{80E18282-3716-48CA-B50C-F7B7F6A32791} (, )
[360SafeLive]
{87515F61-A66C-4319-A0E0-D416CB8059E3} (C:\Program Files\360\360Safe\live.dll, (Signed) 360.cn)
[Microsoft Web Browser]
{8856F961-340A-11D0-A96B-00C04FD705A2} (C:\Windows\system32\ieframe.dll, (Signed) Microsoft Corporation)
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} (C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD)
[XML HTTP 4.0]
{88D969C5-F192-11D4-A65F-0040963251E5} (c:\Windows\system32\msxml4.dll, (Signed) Microsoft Corporation)
[XML DOM 文档 5.0]
{88D969E5-F192-11D4-A65F-0040963251E5} (C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, Microsoft Corporation)
[XML DOM Document 6.0]
{88D96A05-F192-11D4-A65F-0040963251E5} (%SystemRoot%\System32\msxml6.dll, (Signed) N/A)
[XML HTTP 6.0]
{88D96A0A-F192-11D4-A65F-0040963251E5} (%SystemRoot%\System32\msxml6.dll, (Signed) N/A)
[]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} (, )
[OFrameObject Class]
{9701758C-4373-482E-B13C-776C048EC890} (C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.5814.165.(596).dll, (Signed) 深圳市迅雷网络技术有限公司)
[DapCtrl Class]
{ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} (C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.5814.165.(596).dll, (Signed) 深圳市迅雷网络技术有限公司)
[SafeMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D} (C:\Program Files\360\360Safe\safemon\safemon.dll, (Signed) 360.CN)
[WebPlayer Class]
{B965124A-7C58-45f8-91BF-28A981CE7594} (C:\Program Files\Tencent\QQLive\WebLiveMedia.dll, (Signed) Tencent)
[]
{BC9542CB-A6BA-5759-B022-CAFD393F0F49} (, )
[QQPlayerCtrl Class]
{CD108273-D434-43E6-AA90-1469F97EB398} (C:\Program Files\Tencent\QQMusic\QzoneMusic.dll, (Signed) 深圳腾讯科技)
[AUDIO__X_MS_WAX Moniker Class]
{CD3AFA83-B84F-48F0-9393-7EDC34128127} (%SystemRoot%\system32\wmp.dll, (Signed) N/A)
[AUDIO__X_MS_WMA Moniker Class]
{CD3AFA84-B84F-48F0-9393-7EDC34128127} (%SystemRoot%\system32\wmp.dll, (Signed) N/A)
[VIDEO__X_MS_ASF Moniker Class]
{CD3AFA8F-B84F-48F0-9393-7EDC34128127} (%SystemRoot%\system32\wmp.dll, (Signed) N/A)
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} (C:\Windows\system32\rmoc3260.dll, (Signed) RealNetworks, Inc.)
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} (C:\Windows\system32\Macromed\Flash\Flash10b.ocx, (Signed) Adobe Systems, Inc.)
[QQLive Class]
{D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62} (C:\Program Files\Tencent\QQLive\LiveAPI.dll, (Signed) Tencent)
[PlayerCtrl Class]
{E05BC2A3-9A46-4A32-80C9-023A473F5B23} (C:\Program Files\Tencent\QQMusic\QzoneMusic.dll, (Signed) 深圳腾讯科技)
[TimwpDll.TimwpCheck]
{ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} (C:\PROGRA~1\Tencent\QQ\Bin\Timwp.dll, (Signed) Tencent)
[XML HTTP Request]
{ED8C108E-4349-11D2-91A4-00C04F7969E8} (%SystemRoot%\System32\msxml3.dll, (Signed) N/A)
[XPPlayer Class]
{F3E70CEA-956E-49CC-B444-73AFE593AD7F} (C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.1.58130.251.(596).dll, (Signed) 深圳市迅雷网络技术有限公司)
[XML DOM Document 3.0]
{F5078F32-C551-11D3-89B9-0000F81FE221} (%SystemRoot%\System32\msxml3.dll, (Signed) N/A)
[Free Threaded XML DOM Document 3.0]
{F5078F33-C551-11D3-89B9-0000F81FE221} (%SystemRoot%\System32\msxml3.dll, (Signed) N/A)
[XML HTTP 3.0]
{F5078F35-C551-11D3-89B9-0000F81FE221} (%SystemRoot%\System32\msxml3.dll, (Signed) N/A)
[XSL Template 3.0]
{F5078F36-C551-11D3-89B9-0000F81FE221} (%SystemRoot%\System32\msxml3.dll, (Signed) N/A)
[XML DOM Document]
{F6D90F11-9C73-11D3-B32E-00C04F990BB4} (%SystemRoot%\System32\msxml3.dll, (Signed) N/A)
[XML HTTP]
{F6D90F16-9C73-11D3-B32E-00C04F990BB4} (%SystemRoot%\System32\msxml3.dll, (Signed) N/A)
[使用迅雷下载]
(C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm, N/A)
[使用迅雷下载全部链接]
(C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm, N/A)
[导出到 Microsoft Office Excel(&X)]
(res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A)
[添加到QQ表情]
(C:\Program Files\Tencent\QQ\Bin\AddEmotion.htm, N/A)



--------------------------------------------------------------------------------

文件关联

.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["%SystemRoot%\hh.exe" %1]
.HLP OK. [%SystemRoot%\winhlp32.exe %1]
.INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS OK. ["%SystemRoot%\System32\WScript.exe" "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]



--------------------------------------------------------------------------------



Winsock 提供者

N/A



--------------------------------------------------------------------------------



Autorun.inf

N/A



--------------------------------------------------------------------------------



HOSTS 文件

127.0.0.1 localhost
::1 localhost



--------------------------------------------------------------------------------



进程特权扫描

N/A



--------------------------------------------------------------------------------



计划任务

[已启用] \\RunAsStdUser Task11653
C:\Program Files\Rising\Rav\RSAGENT.EXE
[已启用] \\SogouImeMgr
C:\PROGRA~1\SOGOUI~1\413~1.239\PINYIN~1.EXE /S
[已启用] \Microsoft\Windows\Bluetooth\UninstallDeviceTask
BthUdTask.exe $(Arg0)
[已启用] \Microsoft\Windows\CertificateServicesClient\SystemTask
N/A
[已启用] \Microsoft\Windows\CertificateServicesClient\UserTask
N/A
[已启用] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam
N/A
[已启用] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator
%SystemRoot%\System32\wsqmcons.exe
[已启用] \Microsoft\Windows\Customer Experience Improvement Program\OptinNotification
%SystemRoot%\System32\wsqmcons.exe -n 0x1C577FA2B69CAD0
[已启用] \Microsoft\Windows\Defrag\ScheduledDefrag
%windir%\system32\defrag.exe -c -i
[已启用] \Microsoft\Windows\MobilePC\HotStart
N/A
[已启用] \Microsoft\Windows\MobilePC\TMM
N/A
[已启用] \Microsoft\Windows\MUI\LPRemove
%windir%\system32\lpremove.exe
[已启用] \Microsoft\Windows\Multimedia\SystemSoundsService
N/A
[已启用] \Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
N/A
[已启用] \Microsoft\Windows\Shell\CrawlStartPages
N/A
[已启用] \Microsoft\Windows\SystemRestore\SR
%windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict1
rundll32 ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict2
rundll32 ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
[已启用] \Microsoft\Windows\UPnP\UPnPHostConfig
sc.exe config upnphost start= auto
[已启用] \Microsoft\Windows\Windows Error Reporting\QueueReporting
%windir%\system32\wermgr.exe -queuereporting
[已启用] \Microsoft\Windows\Wired\GatherWiredInfo
%windir%\system32\gatherWiredInfo.vbs
[已启用] \Microsoft\Windows\Wireless\GatherWirelessInfo
%windir%\system32\gatherWirelessInfo.vbs



--------------------------------------------------------------------------------



API HOOK

N/A



--------------------------------------------------------------------------------



隐藏进程

N/A



--------------------------------------------------------------------------------