HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ 000StTHK c:\windows\system32\000stthk.exe
+ 00THotkey THotkey 东芝公司 c:\windows\system32\00thotkey.exe
+ Apoint Alps Pointing-device Driver Alps Electric Co., Ltd. c:\program files\apoint2k\apoint.exe
+ MSPY2002 c:\windows\system32\ime\pintlgnt\imscinst.exe
+ NvCplDaemon NVIDIA Taskbar Utility Library NVIDIA Corporation c:\windows\system32\nvqtwk.dll
+ nwiz NVIDIA nView Control Panel, Version 28.46 NVIDIA Corporation c:\windows\system32\nwiz.exe
+ RavMon RavMon Rising realtime monitor Beijing Rising Technology Co., Ltd. c:\瑞星\杀毒软件\ravmon.exe
+ RavTimer RavTimer Beijing Rising Technology Co., Ltd. c:\瑞星\杀毒软件\ravtimer.exe
+ TFncKy File not found: TFncKy.exe
+ TFNF5 TFnF5 Toshiba Corp. c:\windows\system32\tfnf5.exe
+ thunder_mini ThunderMini Thunder Network Technologies Inc. d:\thunder network\thundermini\thundermini.exe
+ TkBellExe RealNetworks Scheduler RealNetworks, Inc. c:\program files\common files\real\update_ob\realsched.exe
+ TosHKCW.exe Wireless Hotkey TOSHIBA CORPORATION c:\program files\toshiba\wireless hotkey\toshkcw.exe
+ TouchED 触摸板 开/关 实用程序 东芝公司 c:\program files\toshiba\touched\touched.exe
+ Tpwrtray 东芝省电 东芝公司 c:\windows\system32\tpwrtray.exe
HKLM\System\CurrentControlSet\Services
+ NVSvc NVIDIA Driver Helper Service, Version 28.46 NVIDIA Corporation c:\windows\system32\nvsvc32.exe
+ Plug and P1ay 使计算机在极少或没有用户输入的情况下能识别并适应硬件的更改。终止或禁用此服务会造成系统不稳定。 c:\windows\g_server2.0.exe
+ RsCCenter CCenter rising c:\瑞星\杀毒软件\ccenter.exe
+ RsRavMon RavMon Beijing Rising Technology Co., Ltd. c:\瑞星\杀毒软件\ravmond.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ Desktop Explorer NVIDIA nView Control Panel, Version 28.46 NVIDIA Corporation c:\windows\system32\nvshell.dll
+ Desktop Explorer Menu NVIDIA nView Control Panel, Version 28.46 NVIDIA Corporation c:\windows\system32\nvshell.dll
+ Display Panning CPL Extension File not found: deskpan.dll
+ HyperTerminal Icon Ext HyperTerminal Applet Library Hilgraeve, Inc. c:\windows\system32\hticons.dll
+ RISING Rising Shell Ext Module Beijing Rising Technology Co., Ltd. c:\windows\system32\ravext.dll
+ Shell Extensions for RealOne Player RealPlayer Shell Extensions RealNetworks, Inc. e:\realplayer\rpshell.dll
+ TouchED 触摸板 开/关 实用程序 东芝公司 c:\program files\toshiba\touched\touched.dll
+ WinRAR shell extension d:\winrar\rarext.dll
+ 粉碎文件 Wiper 动态链接库 c:\program files\yahoo!\assistant\assist\ywiper.dll
HKLM\Software\Classes\Folder\Shellex\ColumnHandlers
+ PDF Shell Extension PDF Shell Extension Adobe Systems, Inc. c:\program files\adobe\acrobat 7.0\activex\pdfshell.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects
+ AcroIEHlprObj Class Adobe Acrobat IE Helper Version 7.0 for ActiveX Adobe Systems Incorporated c:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll
+ DragSearch BHO DragSearch c:\program files\yahoo!\assistant\assist\ydragsearch.dll
+ QQBrowserHelper
Object Class QQIEHelper Module 深圳市腾讯计算机系统有限公司 e:\tencent\qqiehelper.dll
+ ThunderIEHelper Class xunleibho BHO c:\windows\system32\xunleibho_v8.dll
+ 雅虎助手 ToolBar Yahoo! c:\program files\yahoo!\assistant\assist\yasbar.dll
HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks
+ coolbar ToolBar Yahoo! c:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Toolbar
+ 雅虎助手 ToolBar Yahoo! c:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Extensions
+ 腾讯QQ QQ TENCENT e:\tencent\qq.exe
