HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ HP Software Update Hewlett-Packard Product Assistant Hewlett-Packard Co. c:\program files\hp\hp software update\hpwuschd2.exe
+ NvCplDaemon NVIDIA Display Properties Extension NVIDIA Corporation c:\winnt.0\system32\nvcpl.dll
+ nwiz NVIDIA nView Wizard, Version 66.93 NVIDIA Corporation c:\winnt.0\system32\nwiz.exe
+ RavTask RavTimer Beijing Rising Technology Co., Ltd. d:\program files\rising\rav\ravtask.exe
+ RfwMain Rising Personal FireWall Main Program Beijing Rising Technology Co., Ltd. d:\program files\rising\rfw\rfwmain.exe
+ SoundMan Realtek Sound Manager Realtek Semiconductor Corp. c:\winnt.0\soundman.exe
+ Thunder Thunder Networking Technologies,LTD d:\program files\thunder network\thunder\thunder.exe
C:\Documents and Settings\Administrator\「开始」菜单\程序\启动
+ ADSL拨号王.lnk ADSL Shell HelloNet d:\program files\hellonet\hellonet.exe
HKLM\SOFTWARE\Classes\Protocols\Handler
+ ic32pp c:\winnt.0\wc98pp.dll
HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components
+ 0 文件未找到:
About:Home
+ 1 文件未找到: http://www.fjgb.com/line/index.asp
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
+ Rising Execute File Exts hook Rising Shell Ext Module Beijing Rising Technology Co., Ltd. c:\winnt.0\system32\ravext.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ RISING Rising Shell Ext Module Beijing Rising Technology Co., Ltd. c:\winnt.0\system32\ravext.dll
HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ 金山毒霸 文件未找到: CLSID\{f154d460-3584-11d3-a8b8-5254ab111f56}\InprocServer32
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects
+ Thunder Browser Helper XunLeiBHO Thunder Networking Technologies,LTD d:\program files\thunder network\thunder\comdlls\xunleibho_002.dll
+ ThunderIEHelper Class xunleibho BHO Thunder Networking Technologies,LTD c:\winnt.0\system32\xunleibho_v13.dll
HKLM\Software\Microsoft\Internet Explorer\Extensions
+ 启动迅雷 Thunder Networking Technologies,LTD d:\program files\thunder network\thunder\thunder.exe
+ 相关站点 c:\winnt.0\web\related.htm
HKLM\System\CurrentControlSet\Services
+ NVSvc NVIDIA Driver Helper Service, Version 66.93 NVIDIA Corporation c:\winnt.0\system32\nvsvc32.exe
+ RfwService Rising Personal FireWall Service Beijing Rising Technology Co., Ltd. d:\program files\rising\rfw\rfwsrv.exe
+ RsCCenter CCenter Beijing Rising Technology Co., Ltd. d:\program files\rising\rav\ccenter.exe
+ RsRavMon RavMond Beijing Rising Technology Co., Ltd. d:\program files\rising\rav\ravmond.exe
+ StarWindService StarWind iSCSI Target (Alcohol Edition) Rocket Division Software d:\program files\alcohol soft\alcohol 120\starwind\starwindservice.exe
HKLM\System\CurrentControlSet\Services
+ ALCXWDM Realtek AC'97 Audio Driver (WDM) Realtek Semiconductor Corp. c:\winnt.0\system32\drivers\alcxwdm.sys
+ BaseTDI basetdi Beijing Rising Technology Co., Ltd. c:\winnt.0\system32\drivers\basetdi.sys
+ bbcap Mirror Miniport Driver Windows (R) 2000 DDK provider c:\winnt.0\system32\drivers\bbcap.sys
+ BRPPPOE c:\winnt.0\system32\drivers\brpppoe.sys
+ cdnprot 文件未找到: system32\drivers\cdnprot.sys
+ dmio NT Disk Manager I/O Driver VERITAS Software Corp. c:\winnt.0\system32\drivers\dmio.sys
+ dmload NT Disk Manager Startup Driver VERITAS Software Corp. c:\winnt.0\system32\drivers\dmload.sys
+ ExpScaner ExpScan.sys d:\program files\rising\rav\expscan.sys
+ HookCont TDI HOOK Driver Rising tech Co. ltd d:\program files\rising\rav\hookcont.sys
+ HookReg d:\program files\rising\rav\hookreg.sys
+ HookSys Hooksys Rising d:\program files\rising\rav\hooksys.sys
+ HookUrl HookUrl Beijing Rising Technology Co., Ltd. d:\program files\rising\rfw\hookurl.sys
+ kmsinput c:\winnt.0\system32\drivers\kmsinput.sys
+ MEMSCAN MemScan Driver 瑞星软件有限公司 d:\program files\rising\rav\memscan.sys
+ mProcRs Rising Personal FireWall mprocrs.sys Beijing Rising Technology Co., Ltd. d:\program files\rising\rfw\mprocrs.sys
+ npkcrypt nProtect KeyCrypt Driver INCA Internet Co., Ltd. d:\program files\tencent\qq\npkcrypt.sys
+ NPPTNT2 nProtect NPSC Kernel Mode Driver for NT INCA Internet Co., Ltd. c:\winnt.0\system32\npptnt2.sys
+ nv NVIDIA Compatible Windows 2000 Miniport Driver, Version 66.93 NVIDIA Corporation c:\winnt.0\system32\drivers\nv4_mini.sys
+ prodrv06 StarForce Protection Environment Driver Protection Technology c:\winnt.0\system32\drivers\prodrv06.sys
+ prohlp02 StarForce Protection Helper Driver Protection Technology c:\winnt.0\system32\drivers\prohlp02.sys
+ prosync1 StarForce Protection Synchronization Driver Protection Technology c:\winnt.0\system32\drivers\prosync1.sys
+ Ptilink Parallel Technologies DirectParallel IO Library Parallel Technologies, Inc. c:\winnt.0\system32\drivers\ptilink.sys
+ QuakeDRV 文件未找到: system32\DRIVERS\quakedrv.sys
+ RsFwDrv nt_fwdrv Beijing Rising Technology Co., Ltd. d:\program files\rising\rfw\rsfwdrv.sys
+ sfhlp01 StarForce Protection Helper Driver Protection Technology c:\winnt.0\system32\drivers\sfhlp01.sys
+ sptd c:\winnt.0\system32\drivers\sptd.sys
+ TSP 文件未找到: C:\WINNT.0\system32\drivers\klif.sys
+ vaxscsi c:\winnt.0\system32\drivers\vaxscsi.sys
+ xinstall c:\winnt.0\system32\drivers\xinstall.sys
+ yukonw2k NDIS5 Miniport Driver for Marvell Yukon Gigabit Ethernet Adapter Marvell Semiconductor Inc. c:\winnt.0\system32\drivers\yukonw2k.sys
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\UIHost
+ %windir%\Resources\PalTheme\logonui.exe Windows Logon UI 极限主题 c:\winnt.0\resources\paltheme\logonui.exe
HKCU\Control Panel\Desktop\Scrnsave.exe
+ C:\WINNT.0\cd2a.scr c:\winnt.0\cd2a.scr
HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors
+ LIDIL Language Monitor LanguageMonitor Hewlett-Packard Company c:\winnt.0\system32\hpzll3xu.dll
