[PID: 4364 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 4892 / Rita][C:\Program Files\Tencent\QQ\Bin\TXPlatform.exe]  [Tencent, 1, 26, 760, 0]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
    [C:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll]  [N/A, ]
[PID: 5168 / Rita][C:\Windows\system32\igfxsrvc.exe]  [Intel Corporation, 7.14.10.1591]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
    [C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1591]
    [C:\Windows\system32\igfxdev.dll]  [Intel Corporation, 7.14.10.1591]
[PID: 5340 / Rita][C:\Program Files\Common Files\PPLiveNetwork\PPAP.exe]  [PPLive Corporation, 2, 3, 0, 2]
    [C:\Program Files\Common Files\PPLiveNetwork\MngModule.dll]  [, 1, 7, 0, 26]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
    [C:\Program Files\PPLive\PPTV\plugout\client_ap.dll]  [PPTV, 1.0.0.23]
    [C:\Program Files\Common Files\PPLiveNetwork\kernel\sop.dll]  [Synacast, 1.1.0.9]
    [C:\Program Files\Common Files\PPLiveNetwork\kernel\live\live.dll]  [Synacast, 1, 3, 1, 4]
    [C:\Program Files\Common Files\PPLiveNetwork\kernel\Send_Log_Kernel_Module.dll]  [Synacast, 1.0.0.6]
    [C:\Program Files\Common Files\PPLiveNetwork\TipsClient.dll]  [, 1, 0, 2, 3]
    [C:\Program Files\Common Files\PPLiveNetwork\kernel\Hookkernel.dll]  [Synacast, 1.1.0.22]
    [C:\Program Files\Common Files\PPLiveNetwork\kernel\peer.dll]  [Synacast, 1, 5, 3, 9]
    [C:\Program Files\Common Files\PPLiveNetwork\kernel\PPHookShell.dll]  [PPTV, 1.1.0.5]
[PID: 5768 / Rita][C:\Program Files\Lenovo\Camera Center\bin\LenovoCameraCenter.exe]  [Lenovo, 1.0.0.0]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\894183c0c47bd4772fbfad4c1a7e3b71\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.4200 (NetFxQFE.050727-4200)]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b8e4a9556d3ddd49ec70aae0516c2007\System.ni.dll]  [Microsoft Corporation, 2.0.50727.4205 (VistaSP2GDR.050727-4200)]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\64b4c60e1b2b417000db5d8c2828a53f\System.Drawing.ni.dll]  [Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\9c6fe9d44d22834993e9aa23cc9dc272\System.Windows.Forms.ni.dll]  [Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)]
    [C:\Program Files\Lenovo\Camera Center\bin\CameraApplicationLaunchPadLibrary.dll]  [, 1.0.0.0]
    [C:\Program Files\Lenovo\Camera Center\bin\ApplicationLogger.dll]  [lenovo, 1.0.0.0]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f4e9769eaf42b9c2c0d795b1a99c3dbc\System.Xml.ni.dll]  [Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)]
    [C:\Program Files\Lenovo\Camera Center\bin\CameraApplicationLaunchPadDataObjects.dll]  [, 1.0.0.0]
    [C:\Program Files\Lenovo\Camera Center\bin\CameraApplicationLaunchPadSettings.dll]  [lenovo, 1.0.0.0]
    [C:\Program Files\Lenovo\Camera Center\bin\CameraApplicationLaunchPadSettingsNotifyIcon.dll]  [lenovo, 1.0.0.0]
    [C:\Program Files\Lenovo\Camera Center\bin\BrandingInfo.dll]  [lenovo, 1.0.0.0]
    [C:\Program Files\Lenovo\Camera Center\bin\CameraApplicationLaunchPadResources.dll]  [lenovo, 1.0.0.0]
    [C:\Program Files\Lenovo\Camera Center\bin\LocalizationWrapper.dll]  [, 1.0.0.0]
    [C:\Program Files\Lenovo\Camera Center\bin\zh-CHS\LocalizationWrapper.resources.dll]  [, 1.0.0.0]
    [C:\Program Files\Lenovo\Camera Center\bin\CameraApplicationLaunchPadGui.dll]  [lenovo, 1.0.0.0]
[PID: 5792 / Rita][C:\Program Files\Windows Sidebar\sidebar.exe]  [Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 32]
    [C:\Windows\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Windows\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[PID: 1908 / Rita][C:\Program Files\ThinkPad\ConnectUtilities\ACGadgetWrapper.exe]  [Lenovo, 5.20]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcLocSettings.dll]  [Lenovo, 5.20]
    [C:\Program Files\ThinkPad\ConnectUtilities\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\ThinkPad\ConnectUtilities\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACHelper.dll]  [Lenovo, 5.20]
    [C:\Program Files\ThinkPad\ConnectUtilities\ACGUIHlpr.dll]  [Lenovo, 5.20]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcSvcStub.dll]  [Lenovo, 5.20]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgr.dll]  [Lenovo, 5.20]
    [C:\Program Files\ThinkPad\ConnectUtilities\AcCryptHlpr.dll]  [Lenovo, 5.20]
    [C:\Program Files\ThinkPad\ConnectUtilities\MFC71U.DLL]  [Microsoft Corporation, 7.10.5057.0]
    [C:\Windows\system32\MFC71CHS.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\ThinkPad\ConnectUtilities\Res\SC\GUIHlprRes.dll]  [Lenovo, 4, 5, 0, 0]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
[PID: 5116 / SYSTEM][c:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe]  [Lenovo Group Limited, 8.02.0009.00]
[PID: 4828 / Rita][C:\PROGRA~1\ThinkPad\UTILIT~1\PWMUIAux.exe]  [Lenovo Group Limited, 1.0.0.0]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\894183c0c47bd4772fbfad4c1a7e3b71\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.4200 (NetFxQFE.050727-4200)]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b8e4a9556d3ddd49ec70aae0516c2007\System.ni.dll]  [Microsoft Corporation, 2.0.50727.4205 (VistaSP2GDR.050727-4200)]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\7f4e2ded203a366244d61ee0af84a2d3\WindowsBase.ni.dll]  [Microsoft Corporation, 3.0.6920.4016 built by: VistaSP2GDR]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\d786572e9e7270cbf3604f4a34d9244e\PresentationCore.ni.dll]  [Microsoft Corporation, 3.0.6920.4016 built by: VistaSP2GDR]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\0832f9155d800cb802e70409447c1128\PresentationFramework.ni.dll]  [Microsoft Corporation, 3.0.6920.4016 built by: VistaSP2GDR]
    [C:\Program Files\ThinkPad\Utilities\zh-CN\PWMUIAux.resources.dll]  [N/A, ]
    [C:\Program Files\ThinkPad\Utilities\PWMUICtl.dll]  [Lenovo Group Limited, 1.0.0.0]
    [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.762]
    [C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.762]
    [C:\PROGRA~1\ThinkPad\UTILIT~1\SC\PWMROV.DLL]  [N/A, ]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\64b4c60e1b2b417000db5d8c2828a53f\System.Drawing.ni.dll]  [Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)]
    [C:\Windows\system32\igdumdx32.dll]  [Intel Corporation, 7.15.10.1591]
    [C:\Windows\system32\igdumd32.dll]  [Intel Corporation, 7.15.10.1591]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2de8703db894217915906f081ac3c8b0\PresentationFramework.Aero.ni.dll]  [Microsoft Corporation, 3.0.6920.4000 built by: QFE]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af2c855fe34c856715fcbe4bd4e07cc1\PresentationFramework.Luna.ni.dll]  [Microsoft Corporation, 3.0.6920.4000 built by: QFE]
[PID: 5324 / Rita][C:\Windows\system32\wuauclt.exe]  [(Verified) Microsoft Corporation, 7.4.7600.226 (winmain_wtr_wsus3sp2(wmbla).090806-1834)]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
[PID: 7080 / Rita][C:\Program Files\Rising\Rav\rsmain.exe]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.4]
    [C:\Program Files\Rising\Rav\rspalmgr.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.24]
    [C:\Program Files\Rising\Rav\RSXML.DLL]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
    [C:\Program Files\Rising\Rav\RsGuiLib.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 57]
    [C:\Program Files\Rising\Rav\rslang.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1]
    [C:\Program Files\Rising\Rav\rsconf.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.1]
    [C:\Program Files\Rising\Rav\rspalvd.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.7]
    [C:\Program Files\Rising\Rav\ravppops.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 21]
    [C:\Program Files\Rising\Rav\ravbintl.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 22]
    [C:\Program Files\Rising\Rav\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\Rising\Rav\ravpsafe.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.31]
    [C:\Program Files\Rising\Rav\MonState.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
    [C:\Program Files\Rising\Rav\ScanPrxy.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.4]
    [C:\Program Files\Rising\Rav\pubcfg.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.57]
    [C:\Program Files\Rising\Rav\rsscanbd.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
    [C:\Program Files\Rising\Rav\PngDll.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\RSAPPMGR.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.0]
    [C:\Program Files\Rising\Rav\CfgDll.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.0]
    [C:\Program Files\Rising\Rav\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\Rav\ProcComm.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4]
    [C:\Program Files\Rising\Rav\ravxpage.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 54]
    [C:\Program Files\Rising\Rav\ravxmons.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 16]
    [C:\Program Files\Rising\Rav\ravptool.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.15]
    [C:\Program Files\Rising\Rav\log2file.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.15]
    [C:\Program Files\Rising\Rav\htmllib.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\Windows\system32\Ku6Kss.dll]  [酷6网（北京）信息技术有限公司, 1, 0, 0, 1]
[PID: 7056 / Rita][C:\Program Files\Rising\Rav\RsAgent.exe]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.19]
    [C:\Program Files\Rising\Rav\ProcComm.dll]  [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4]
    [C:\Program Files\Rising\Rav\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\Rav\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\Rising\Rav\ScanPrxy.dll]  [Beijing Rising Information Technology Co., Ltd., 22.0.0.4]
[PID: 6560 / Rita][C:\Windows\MSAgent\agentsvr.exe]  [(Verified) Microsoft Corporation, 5.2.3790.1241]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
[PID: 6728 / Rita][C:\Program Files\Tencent\QQDownload\QQDownload.exe]  [Tencent Technology (Shenzhen) Company Limited, 2, 7, 627, 627]
    [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL]  [Microsoft Corporation, 8.00.50727.762]
    [C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.762]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
    [C:\Program Files\Tencent\QQDownload\xmain.dll]  [Tencent Technology (Shenzhen) Company Limited, 1.9.287.287]
    [C:\Program Files\Tencent\QQDownload\QQDownloadSkin.dll]  [TODO: <Company name>, 1.0.0.1]
    [C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.762]
    [C:\Windows\system32\Ku6Kss.dll]  [酷6网（北京）信息技术有限公司, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQDownload\VBScript.dll]  [Microsoft Corporation, 5.6.0.7426]
    [C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOLUIControl.dll]  [Tencent, 1.0.1.5]
    [C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOCommon.DLL]  [Tencent, 1.2.1.5]
    [C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll]  [Tencent, 1.2.1.6]
    [C:\Program Files\Tencent\QQDownload\xdownload.dll]  [Tencent Technology (Shenzhen) Company Limited, 1.9.348.348]
    [C:\Program Files\Tencent\QQDownload\xcore.dll]  [Tencent Technology(Shenzhen) Company Limited, 2, 1, 101, 90]
    [C:\Program Files\Tencent\QQDownload\SafePlugins\Rav\rsscan.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
[PID: 6344 / Rita][C:\Windows\system32\NOTEPAD.EXE]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
[PID: 6200 / Rita][C:\0 dld\software\sreng2\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.2.1321]
[PID: 6920 / Rita][C:\0 dld\software\sreng2\SRE65f043b7.EXE]  [Smallfrogs Studio, 2.8.2.1321]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kwsui.dll]  [Kingsoft Corporation, 2010,07,05,10]
    [C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll]  [Kingsoft Corporation, 2010,07,10,16]
    [C:\0 dld\software\sreng2\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["%SystemRoot%\hh.exe" %1]
.HLP  OK. [%SystemRoot%\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. ["%SystemRoot%\System32\WScript.exe" "%1" %*]
.JS  Error. [C:\Windows\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost
::1            localhost

==================================
进程特权扫描
N/A

==================================
计划任务
[已启用] \\GoogleUpdateTaskUserS-1-5-21-4156762292-4027623161-4130380227-1000Core
        C:\Users\Rita\AppData\Local\Google\Update\GoogleUpdate.exe /c
[已启用] \\GoogleUpdateTaskUserS-1-5-21-4156762292-4027623161-4130380227-1000UA
        C:\Users\Rita\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
[已启用] \\PCDoctorBackgroundMonitorTask
        C:\Program Files\PCDR5\pcdr5cuiw32.exe -backgroundmon scripts\backgroundmon.xml -st PCDoctorBackgroundMonitorTask
[已启用] \\PMTask
        C:\PROGRA~1\ThinkPad\UTILIT~1\PwmIdTsv.exe -backgroundmon scripts\backgroundmon.xml -st PCDoctorBackgroundMonitorTask
[已启用] \\SogouImeMgr
        C:\PROGRA~1\SOGOUI~1\501~1.418\SGTool.exe --appid=pinyinrepair /S
[已启用] \\{29BE0917-CDDA-4F09-AFDB-353B9A1E2324}
        C:\Windows\system32\pcalua.exe -a "C:\Users\Rita\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CX5YLOV9\WebThunder2009beta1[1].exe" -d C:\Users\Rita
[已禁用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated)
        N/A
[已启用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual)
        N/A
[已启用] \Microsoft\Windows\Bluetooth\UninstallDeviceTask
        BthUdTask.exe $(Arg0)
[已启用] \Microsoft\Windows\CertificateServicesClient\SystemTask
        N/A
[已启用] \Microsoft\Windows\CertificateServicesClient\UserTask
        N/A
[已启用] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam
        N/A
[已启用] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator
        %SystemRoot%\System32\wsqmcons.exe
[已启用] \Microsoft\Windows\Customer Experience Improvement Program\OptinNotification
        %SystemRoot%\System32\wsqmcons.exe -n 0x1C577FA2B69CAD0
[已启用] \Microsoft\Windows\Defrag\ScheduledDefrag
        %windir%\system32\defrag.exe -c -i
[已启用] \Microsoft\Windows\MobilePC\HotStart
        N/A
[已启用] \Microsoft\Windows\MobilePC\TMM
        N/A
[已启用] \Microsoft\Windows\MUI\Lpksetup
        C:\Windows\System32\lpksetup.exe -v
[已启用] \Microsoft\Windows\MUI\LPRemove
        %windir%\system32\lpremove.exe -v
[已启用] \Microsoft\Windows\MUI\Mcbuilder
        C:\Windows\System32\mcbuilder.exe -v
[已启用] \Microsoft\Windows\Multimedia\SystemSoundsService
        N/A
[已启用] \Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
        N/A
[已启用] \Microsoft\Windows\Shell\CrawlStartPages
        N/A
[已启用] \Microsoft\Windows\SystemRestore\SR
        %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict1
        rundll32 ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict2
        rundll32 ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
[已启用] \Microsoft\Windows\UPnP\UPnPHostConfig
        sc.exe config upnphost start= auto
[已启用] \Microsoft\Windows\Windows Error Reporting\QueueReporting
        %windir%\system32\wermgr.exe -queuereporting
[已启用] \Microsoft\Windows\WindowsCalendar\Reminders - Rita
        C:\Program Files\Windows Calendar\WinCal.exe /reminder
[已启用] \Microsoft\Windows\Wired\GatherWiredInfo
        %windir%\system32\gatherWiredInfo.vbs
[已启用] \Microsoft\Windows\Wireless\GatherWirelessInfo
        %windir%\system32\gatherWirelessInfo.vbs

==================================
Windows 安全更新检查
KB973923,  Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package 的安全更新 (KB973923) MS09-035
KB980248,  Windows Vista 更新程序 (KB980248)
KB982632,  用于 Windows Vista 的 Internet Explorer 8 兼容性视图列表的更新程序 (KB982632)
KB982519,  Windows Vista 更新程序 (KB982519)
KB968930,  用于 Windows Vista 的 Windows PowerShell 2.0 和 WinRM 2.0 (KB968930)
KB905866,  Windows Mail 垃圾邮件筛选器更新程序 [2010 年 7 月] (KB905866)
KB915597,  Definition Update for Windows Defender - KB915597 (Definition 1.87.146.0)

==================================
API HOOK
入口点错误：ShellExecuteExW (危险等级: 一般,  被下面模块所HOOK: C:\Users\Rita\AppData\Roaming\Maxthon2\Modules\MxKWS\kswebshield.dll)

==================================
隐藏进程
N/A

==================================


[/CODE]

上传完了。请高人帮忙分析分析啊。

能不能发附件啊

关于如何截图和以附件形式发图到论坛。
http://bbs.ikaka.com/showtopic-8616820.aspx

从日志上看没什么问题，楼主放心吧

您好，您的扫描日志没有发现明显问题。我个人认为这个安装的驱动是针对thinkpad的某项设备。

谢谢天鹰之翼和moc，这下放心一点。可我还是有点疑惑，如果是正常的驱动，显示应该为有效字符。

下次学习一下发附件。