电脑报官方论坛

 找回密码
 注册
楼主: harry0723

[求助] 电脑中毒后病毒没有被彻底清除,大家帮忙看看吧(已解决) [复制链接]

小小版主

成事不说,遂事不谏

Rank: 9Rank: 9Rank: 9

树叶
726
金币
26769
积分
2722

贡献勋章 SecurityExpert(病毒与安全)

发表于 2011-5-25 12:55:48 |显示全部楼层
回复  流风33


    我自己手动点右键-属性-取消隐藏恢复了一些,这样行吗?
但是开始菜单的我不知道该 ...
harry0723 发表于 2011-5-25 12:05

手动也行,就是慢点,要进到开始菜单的文件夹路径里去,如C:\Documents and Settings\Administrator\「开始」菜单,不过这是XP的,WIN7的不一样

小小版主

成事不说,遂事不谏

Rank: 9Rank: 9Rank: 9

树叶
726
金币
26769
积分
2722

贡献勋章 SecurityExpert(病毒与安全)

发表于 2011-5-25 12:56:38 |显示全部楼层
本帖最后由 流风33 于 2011-5-25 12:58 编辑

回复 8# harry0723
乱码,应该功能还在,看看能不能执行扫描的,或者把那个 win7 anti-spyware 2011打包加密发上来

小有所成

小小的菜鸟

Rank: 4

树叶
1
金币
2573
积分
69
发表于 2011-5-25 13:07:09 |显示全部楼层
本帖最后由 流风33 于 2011-5-25 15:12 编辑

回复 12# 流风33

2011-05-25,00:04:46

System Repair Engineer 2.8.4.1331
Smallfrogs (http://www.KZTechs.com)

Windows 7 Ultimate Edition Service Pack 1 (Build 7601) - ?????? - ????

???????:
    ???????(???????????????)
    ??????
    ???????(????????)
    ????
    Winsock ???
    Autorun.inf
    HOSTS ??
    ??????
    ????
    Windows ??????
    API HOOK
    ????


????
???
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
    <run><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <SNUVCDSM><C:\Windows\snuvcdsm.exe>  [(Verified)Chicony Electronics Co., Ltd.]
    <KSafeTray><"D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KSafeTray.exe" -autorun>  [Kingsoft Corporation]
    <SynTPEnh><C:\Program Files\Synaptics\SynTP\SynTPEnh.exe>  [(Verified)Synaptics Incorporated]
    <LManager><C:\Program Files\Launch Manager\LManager.exe>  [(Verified)Dritek System Inc.]
    <StartCCC><"C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun>  [File is missing]
    <{0228e555-4f9c-4e35-a3ec-b109a192b4c2}><C:\Program Files\Google\Gmail Notifier\gnotify.exe>  [Google Inc.]
    <kxesc><"C:\Program Files\Common Files\Kingsoft\kiscommon\kxetray.exe" -autorun>  [(Verified)Zhuhai  Kingsoft Software Co.,Ltd]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><explorer.exe>  [(Verified)Microsoft Windows]
    <Userinit><C:\Windows\system32\userinit.exe,>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <WebCheck><>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><%SystemRoot%\system32\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><C:\Windows\System32\ie4uinit.exe -UserIconConfig>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
    <Browser Customizations><"C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Windows><"%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Web Platform Customizations><C:\Windows\System32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation]

==================================
?????
N/A

==================================
??
[AMD External Events Utility / AMD External Events Utility][Running/Auto Start]
  <C:\Windows\system32\atiesrxx.exe><AMD>
[Google 更新服务 (gupdate) / gupdate][Stopped/Manual Start]
  <"C:\Program Files\Google\Update\GoogleUpdate.exe" /svc><Google Inc.>
[KSafe service / KSafeSvc][Running/Auto Start]
  <"D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KSafeSvc.exe" -svc><Kingsoft Corporation>
[Kingsoft Security App Service / kxesapp][Running/Auto Start]
  <"C:\Program Files\Common Files\Kingsoft\kiscommon\kxesapp.exe" /service kxesapp><Kingsoft Corporation>
[Kingsoft Core Service / kxescore][Running/Auto Start]
  <"C:\Program Files\Common Files\Kingsoft\kiscommon\kxescore.exe" /service kxescore><Kingsoft Corporation>
[Kingsoft Antivirus Update Service / KxEUpSrv][Running/Auto Start]
  <"C:\Program Files\Common Files\Kingsoft\kiscommon\upsvc.exe"><Kingsoft Corporation>
[Tencent Software Update Service / TSUSVC][Stopped/Auto Start]
  <"D:\应用程序\QQSoftMgr\1.0.375.203\TencentUpdateSvc.exe" -run><Tencent>

==================================
????
[adp94xx / adp94xx][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\adp94xx.sys><Adaptec, Inc.>
[adpahci / adpahci][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\adpahci.sys><Adaptec, Inc.>
[adpu320 / adpu320][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\adpu320.sys><Adaptec, Inc.>
[aic78xx / aic78xx][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\djsvs.sys><Adaptec, Inc.>
[aliide / aliide][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\aliide.sys><Acer Laboratories Inc.>
[amdkmdag / amdkmdag][Running/Manual Start]
  <system32\DRIVERS\atikmdag.sys><ATI Technologies Inc.>
[amdkmdap / amdkmdap][Running/Manual Start]
  <system32\DRIVERS\atikmpag.sys><Advanced Micro Devices, Inc.>
[amdsata / amdsata][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\amdsata.sys><Advanced Micro Devices>
[amdsbs / amdsbs][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\amdsbs.sys><AMD Technologies Inc.>
[amdxata / amdxata][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\amdxata.sys><Advanced Micro Devices>
[arc / arc][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\arc.sys><Adaptec, Inc.>
[arcsas / arcsas][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\arcsas.sys><Adaptec, Inc.>
[Atheros Extensible Wireless LAN device driver / athr][Running/Manual Start]
  <system32\DRIVERS\athr.sys><Atheros Communications, Inc.>
[ATI Function Driver for HD Audio Service / AtiHDAudioService][Stopped/Manual Start]
  <system32\drivers\AtihdW73.sys><ATI Technologies, Inc.>
[ATI Function Driver for High Definition Audio Service / AtiHdmiService][Running/Manual Start]
  <system32\drivers\AtiHdmi.sys><ATI Technologies, Inc.>
[atikmdag / atikmdag][Stopped/Manual Start]
  <system32\DRIVERS\atikmdag.sys><ATI Technologies Inc.>
[AMD PCI Express (3GIO) Filter / AtiPcie][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\AtiPcie.sys><Advanced Micro Devices Inc.>
[Broadcom NetXtreme II VBD / b06bdrv][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\bxvbdx.sys><Broadcom Corporation>
[Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 / b57nd60x][Stopped/Manual Start]
  <system32\DRIVERS\b57nd60x.sys><Broadcom Corporation>
[BC / BC][Stopped/Boot Start]
  <\SystemRoot\system32\Drivers\BC.sys><Kingsoft Corporation>
[Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\BrFiltLo.sys><Brother Industries, Ltd.>
[Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\BrFiltUp.sys><Brother Industries, Ltd.>
[Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\Brserid.sys><Brother Industries Ltd.>
[Brother WDM Serial driver / BrSerWdm][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\BrSerWdm.sys><Brother Industries Ltd.>
[Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\BrUsbMdm.sys><Brother Industries Ltd.>
[Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\BrUsbSer.sys><Brother Industries Ltd.>
[cmdide / cmdide][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\cmdide.sys><CMD Technology, Inc.>
[Conexant UAA Function Driver for High Definition Audio Service / CnxtHdAudService][Running/Manual Start]
  <system32\drivers\CHDRT32.sys><Conexant Systems Inc.>
[ET USB 2760 Camera / DCamUSBET][Stopped/Manual Start]
  <system32\DRIVERS\etDevice.sys><eMPIA Technology, Inc.>
[Dritek Keyboard Filter Driver / DKbFltr][Running/Manual Start]
  <system32\DRIVERS\DKbFltr.sys><Dritek System Inc.>
[Broadcom NetXtreme II 10 GigE VBD / ebdrv][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\evbdx.sys><Broadcom Corporation>
[elxstor / elxstor][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\elxstor.sys><Emulex>
[ET USB Device Lower Filter / FiltUSBET][Stopped/Manual Start]
  <system32\DRIVERS\etFilter.sys><eMPIA Technology Inc.>
[Hauppauge Consumer Infrared Receiver / hcw85cir][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\hcw85cir.sys><Hauppauge Computer Works, Inc.>
[HpSAMD / HpSAMD][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\HpSAMD.sys><Hewlett-Packard Company>
[HSF_DPV / HSF_DPV][Running/Manual Start]
  <system32\DRIVERS\HSX_DPV.sys><Conexant Systems, Inc.>
[HSXHWAZL / HSXHWAZL][Running/Manual Start]
  <system32\DRIVERS\HSXHWAZL.sys><Conexant Systems, Inc.>
[Intel RAID Controller Windows 7 / iaStorV][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\iaStorV.sys><Intel Corporation>
[iirsp / iirsp][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\iirsp.sys><Intel Corp./ICP vortex GmbH>
[ISO DVD/CD-ROM Device Driver / ISODrive][Running/System Start]
  <\??\D:\应用程序\UltraISO\UltraISO\drivers\ISODrive.sys><EZB Systems, Inc.>
[Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0 / k57nd60x][Running/Manual Start]
  <system32\DRIVERS\k57nd60x.sys><Broadcom Corporation>
[KAVBootC / KAVBootC][Running/Boot Start]
  <\SystemRoot\system32\drivers\KAVBootC.sys><Kingsoft Corporation>
[KAVSafe / KAVSafe][Running/Auto Start]
  <\??\C:\Windows\system32\Drivers\KAVSafe.sys><Kingsoft Corporation>
[kisknl / kisknl][Running/Auto Start]
  <\??\C:\Windows\system32\drivers\kisknl.sys><Kingsoft Corporation>
[kmodurl / kmodurl][Running/System Start]
  <\??\D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kmodurl.sys><Kingsoft Corporation>
[ksapi / ksapi][Running/Manual Start]
  <\??\C:\Windows\system32\drivers\ksapi.sys><Kingsoft Corporation>
[LSI_FC / LSI_FC][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_fc.sys><LSI Corporation>
[LSI_SAS / LSI_SAS][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_sas.sys><LSI Corporation>
[LSI_SAS2 / LSI_SAS2][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_sas2.sys><LSI Corporation>
[LSI_SCSI / LSI_SCSI][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_scsi.sys><LSI Corporation>
[mdmxsdk / mdmxsdk][Running/Auto Start]
  <system32\DRIVERS\mdmxsdk.sys><Conexant>
[megasas / megasas][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\megasas.sys><LSI Corporation>
[MegaSR / MegaSR][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\MegaSR.sys><LSI Corporation, Inc.>
[nfrd960 / nfrd960][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\nfrd960.sys><IBM Corporation>
[WinPcap Packet Driver (NPF) / NPF][Stopped/Manual Start]
  <system32\drivers\NPF.sys><CACE Technologies, Inc.>
[nvraid / nvraid][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\nvraid.sys><NVIDIA Corporation>
[nvstor / nvstor][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\nvstor.sys><NVIDIA Corporation>
[ql2300 / ql2300][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\ql2300.sys><QLogic Corporation>
[ql40xx / ql40xx][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\ql40xx.sys><QLogic Corporation>
[Service for HDMI / RTHDMIAzAudService][Stopped/Manual Start]
  <system32\drivers\RtHDMIV.sys><N/A>
[SASDIFSV / SASDIFSV][Stopped/System Start]
  <\??\C:\Users\CIA\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS><N/A>
[SASKUTIL / SASKUTIL][Stopped/System Start]
  <\??\C:\Users\CIA\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS><N/A>
[ET USB Still Image Capture Device / ScanUSBET][Stopped/Manual Start]
  <system32\DRIVERS\etScan.sys><eMPIA Technology, Inc.>
[SiSRaid2 / SiSRaid2][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\SiSRaid2.sys><Silicon Integrated Systems Corp.>
[SiSRaid4 / SiSRaid4][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\sisraid4.sys><Silicon Integrated Systems>
[USB2.0 PC Camera (SNP2UVC) / SNP2UVC][Running/Manual Start]
  <system32\DRIVERS\snp2uvc.sys><>
[SrvHsfHDA / SrvHsfHDA][Stopped/Manual Start]
  <system32\DRIVERS\VSTAZL3.SYS><Conexant Systems, Inc.>
[SrvHsfV92 / SrvHsfV92][Stopped/Manual Start]
  <system32\DRIVERS\VSTDPV3.SYS><Conexant Systems, Inc.>
[SrvHsfWinac / SrvHsfWinac][Stopped/Manual Start]
  <system32\DRIVERS\VSTCNXT3.SYS><Conexant Systems, Inc.>
[stexstor / stexstor][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\stexstor.sys><Promise Technology>
[Synth3dVsc / Synth3dVsc][Stopped/Manual Start]
  <System32\drivers\synth3dvsc.sys><N/A>
[Synaptics TouchPad Driver / SynTP][Running/Manual Start]
  <system32\DRIVERS\SynTP.sys><Synaptics Incorporated>
[tcphoc / tcphoc][Stopped/Manual Start]
  <\??\D:\应用程序\迅雷\XLDoctor\7.1.7.2244_1\Program\tcphoc.sys><N/A>
[TesSafe / TesSafe][Stopped/Manual Start]
  <\??\C:\Windows\system32\TesSafe.sys><TENCENT>
[tsusbhub / tsusbhub][Stopped/Manual Start]
  <system32\drivers\tsusbhub.sys><N/A>
[AMD USB Filter Driver / usbfilter][Running/Manual Start]
  <system32\DRIVERS\usbfilter.sys><Advanced Micro Devices>
[VGPU / VGPU][Stopped/Manual Start]
  <System32\drivers\rdvgkmd.sys><N/A>
[viaide / viaide][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\viaide.sys><VIA Technologies, Inc.>
[存储卷 / volsnap][Running/Boot Start]
  <\SystemRoot\system32\drivers\volsnap.sys><N/A>
[vsmraid / vsmraid][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\vsmraid.sys><VIA Technologies Inc.,Ltd>
[winachsf / winachsf][Running/Manual Start]
  <system32\DRIVERS\HSX_CNXT.sys><Conexant Systems, Inc.>
[XAudio / XAudio][Running/Auto Start]
  <system32\DRIVERS\XAudio32.sys><Conexant Systems, Inc.>
[XDva385 / XDva385][Stopped/Manual Start]
  <\??\C:\Windows\system32\XDva385.sys><N/A>
[Xbox 360 Wireless Receiver Driver Service 21 / xusb21][Stopped/Manual Start]
  <system32\DRIVERS\xusb21.sys><Microsoft Corporation>

==================================
??????
[Adobe PDF Link Helper]
  {18DF081C-E8AD-4283-A596-FA578C2EBDC3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated>
[Office Document Cache Handler]
  {B4F3A835-0E21-4959-BA22-42B3008E02FF} <D:\应用程序\OFFICE~1\Office14\URLREDIR.DLL, Microsoft Corporation>
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435b-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.>
[Send to OneNote from Internet Explorer button]
  {2670000A-7350-4f3c-8081-5663EE0C6C49} <D:\应用程序\Office 2010\Office14\ONBttnIE.dll, Microsoft Corporation>
[查看网页全部图片]
  {548BF84E-9665-47f9-B635-7380F8943E90} <, >
[Linked Notes button]
  {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} <D:\应用程序\Office 2010\Office14\ONBttnIELinkedNotes.dll, Microsoft Corporation>
[Java Plug-in 1.6.0_23]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[Java Plug-in 1.6.0_23]
  {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[Java Plug-in 1.6.0_23]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\npjpi160_23.dll, (Signed) Sun Microsystems, Inc.>
[Microsoft Office Template and Media Control]
  {02BCC737-B171-4746-94C9-0D8A0B2C0089} <D:\应用程序\OFFICE~1\Office14\IEAWSDC.DLL, >
[Outlook Today's Data-binding control]
  {0468C085-CA5B-11D0-AF08-00609797F0E0} <D:\应用程序\OFFICE~1\Office14\OUTLCTL.DLL, >
[]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, >
[]
  {0EA37B17-6B8B-4085-8257-F3A4AA69C27A} <, >
[Player Class]
  {11F2A418-94B2-4e16-9B0C-B00C0435F903} <D:\应用程序\QQlive\LiveMedia.dll, Tencent>
[GeoGlobeCtrl Class]
  {16630F6A-3BAB-4532-9C71-F29E91DDA1B3} <C:\Program Files\GeoGlobe Runtime\Bin\GeoGlobeActiveX.dll, 武大吉奥信息技术有限公司>
[Adobe PDF Link Helper]
  {18DF081C-E8AD-4283-A596-FA578C2EBDC3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated>
[InstallHelper Class]
  {1DABF8D5-8430-4985-9B7F-A30E53D709B3} <C:\Windows\system32\MMInstaller.dll, (Signed) Tencent>
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\Windows\System32\wmpdxm.dll, (Signed) Microsoft Corporation>
[QQCPHelper.CPAdder]
  {23752AA7-CAD7-40C2-99EE-7A9CD3C20C6D} <D:\应用程序\QQ\Bin\CPHelper.dll, Tencent>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\Windows\System32\mshtml.dll, (Signed) Microsoft Corporation>
[XML DOM Document]
  {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[Thunder Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <D:\应用程序\迅雷\ComDlls\ThunderAgent5.9.28.1564.dll, 深圳市迅雷网络技术有限公司>
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\Windows\System32\ieframe.dll, (Signed) Microsoft Corporation>
[isInstalled Class]
  {5852F5ED-8BF4-11D4-A245-0080C6F74284} <C:\Program Files\Java\jre6\bin\wsdetect.dll, (Signed) Sun Microsystems, Inc.>
[QQLiveOcx Class]
  {5EF7B131-C278-4034-BC88-2CE28B128681} <D:\应用程序\QQlive\LiveOcx\LiveOcx.dll, Tencent>
[]
  {5FFF24BC-DC02-4808-B4E0-A8E2C93FE407} <, >
[QQLiveFile Class]
  {6B232760-90F1-41c3-9902-C8552C1D8A72} <D:\应用程序\QQlive\LiveOcx\FileVersion.dll, Tencent>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[Access UserInfo by Script]
  {6EE9CD3E-A386-4DAE-9737-A759DBF927AE} <D:\应用程序\迅雷\ComDlls\UserAgent.dll, 深圳市迅雷网络技术有限公司>
[]
  {7670648D-461B-42AF-BDFE-46D26AF5EFF2} <, >
[XDownloaddManager Class]
  {802F530B-A8F6-4631-AE49-6BACAAC6373E} <D:\应用程序\迅雷\ComDlls\xunleiBHO_Now.dll, 深圳市迅雷网络技术有限公司>
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\Windows\System32\ieframe.dll, (Signed) Microsoft Corporation>
[XML DOM Document 6.0]
  {88D96A05-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml6.dll, (Signed) N/A>
[XML HTTP 6.0]
  {88D96A0A-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml6.dll, (Signed) N/A>
[cpbrkpie Control]
  {9522B3FB-7A2B-4646-8AF6-36E7F593073C} <C:\Windows\COUPON~1.OCX, (Signed) >
[OFrameObject Class]
  {9701758C-4373-482E-B13C-776C048EC890} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.7107.333.(662).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[VersionDetector Class]
  {9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9B} <C:\Program Files\Common Files\Thunder Network\KanKan\vd.1.1.0.32.(269).dll, (Signed) 深圳市迅雷网络技术有限公司>
[HallToolkit Class]
  {A24E6133-404F-4431-A296-2DE576FC5AEE} <C:\Program Files\Common Files\Thunder Network\XLGame\HallTool.1.0.0.6.(533).dll, (Signed) Thunder Networking Technologies,LTD>
[APlayer Control]
  {A9322148-C691-4B9D-91FC-B9C461DBE9DD} <C:\Program Files\Common Files\Thunder Network\APlayer\APlayer_001.dll, (Signed) ShenZhen Thunder Networking Technologies, LTD>
[CCTVUpdateInstall]
  {AC414988-E5BB-4C2C-873B-EA53D2F3D23A} <C:\Users\CIA\AppData\Roaming\CCTV\tv\CCTVUpdateInstall.dll, N/A>
[DapCtrl Class]
  {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.7107.333.(662).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[Office Document Cache Handler]
  {B4F3A835-0E21-4959-BA22-42B3008E02FF} <D:\应用程序\OFFICE~1\Office14\URLREDIR.DLL, Microsoft Corporation>
[FTNUpload Class]
  {BDEACC50-F56D-4D60-860F-CF6ED1766D65} <C:\Program Files\Common Files\Tencent\TXFTN\TXFTNActiveX1.13.dll, (Signed) Tencent>
[xinstallerimpl Class]
  {C052A649-6FEA-4AF3-81E4-DE31A8AD46B5} <C:\Windows\system32\xoli2.dll, (Signed) 深圳市迅雷网络技术有限公司>
[xinstallerimpl_s Class]
  {C052A64A-6FEA-4AF3-81E4-DE31A8AD46B5} <, >
[KooPlayer Control]
  {C728DAB8-FDF5-4CD7-89DD-879D25794C77} <C:\Users\CIA\AppData\Roaming\CCTV\tv\CCTVPL~1.OCX, N/A>
[VIDEO__X_MS_ASF Moniker Class]
  {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\Windows\system32\Macromed\Flash\Flash10q.ocx, (Signed) Adobe Systems, Inc.>
[]
  {D928E486-C465-4A64-976D-F3B24BBECC69} <, >
[AFContextMenuCtrl Class]
  {D9806E4E-82CE-4A75-83D0-A062EC605349} <D:\应用程序\Office 2010\Office14\SOCIALCONNECTOR.DLL, Microsoft Corporation>
[QQLive Class]
  {D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62} <D:\应用程序\QQlive\LiveAPI.dll, Tencent>
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435B-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.>
[xoliimpl Class]
  {DD5BF6D1-6663-47E0-9DFA-5C343CAF178E} <C:\Windows\xinstaller.dll, (Signed) 深圳市迅雷技术有限公司>
[Microsoft Silverlight]
  {DFEAF541-F3E1-4C24-ACAC-99C30715084A} <C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll, (Signed)  Microsoft Corporation>
[PlayerCtrl Class]
  {E05BC2A3-9A46-4a32-80C9-023A473F5B23} <D:\应用程序\QQ\Plugin\Com.Tencent.QQMusic\bin\QQMusic\QzoneMusic.dll, Tencent>
[Xunlei Digital Video DRM Control]
  {E577393C-3468-4911-9DA0-484C3F4C47D7} <C:\Program Files\Common Files\Thunder Network\APlayer\Codecs\xlvsource.ax, >
[SSOForPTLogin2 Class]
  {EAAED308-7322-4B9B-965E-171933ADD473} <C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.20\Bin\SSOAxCtrlForPTLogin.dll, (Signed) >
[TimwpDll.TimwpCheck]
  {ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} <D:\应用程序\QQ\Bin\Timwp.dll, Tencent>
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[PPLive Lite Class]
  {EF0D1A14-1033-41A2-A589-240C01EDC078} <C:\Program Files\Internet Explorer\PPLite\plugin\pplugin2.dll, (Signed) >
[]
  {F3E70CEA-956E-49CC-B444-73AFE593AD7F} <, >
[XML DOM Document]
  {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[QQLiveOcxShell Class]
  {F7E55BDF-9528-46ba-B550-777859627591} <D:\应用程序\QQlive\LiveOcx\LiveOcx.dll, Tencent>
[GEPluginCoClass Object]
  {F9152AEC-3462-4632-8087-EEE3C3CDDA24} <C:\Program Files\Google\Google Earth\plugin\ie\6.0.1.2032\plugin_ax.dll, Google>
[使用光影编辑和美化]
  <D:\应用程序\光影魔术手\nEO iMAGING\NeoOpenNeo.htm, N/A>
[使用迅雷下载]
  <D:\应用程序\迅雷\Program\GetUrl.htm, N/A>
[使用迅雷下载全部链接]
  <D:\应用程序\迅雷\Program\GetAllUrl.htm, N/A>
[使用迅雷查看图片]
  <D:\应用程序\迅雷\Program\repairimage.htm, N/A>
[发送至 OneNote(&N)]
  <res://D:\应用程序\OFFICE~1\Office14\ONBttnIE.dll/105, N/A>
[导出到 Microsoft Excel(&X)]
  <res://D:\应用程序\OFFICE~1\Office14\EXCEL.EXE/3000, N/A>

==================================
???????
[PID: 308 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 408 / SYSTEM][C:\Windows\system32\csrss.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 480 / SYSTEM][C:\Windows\system32\wininit.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 488 / SYSTEM][C:\Windows\system32\csrss.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 536 / SYSTEM][C:\Windows\system32\services.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 552 / SYSTEM][C:\Windows\system32\lsass.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 560 / SYSTEM][C:\Windows\system32\lsm.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 592 / SYSTEM][C:\Windows\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 6.1.7601.17514 (win7sp1_rtm.101119-1850)]
[PID: 716 / SYSTEM][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 796 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 844 / SYSTEM][C:\Windows\system32\atiesrxx.exe]  [AMD, 6.14.11.1077]
[PID: 916 / LOCAL SERVICE][C:\Windows\System32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [C:\Windows\system32\CX32MP19.dll]  [Conexant Systems Inc., 4.80.19.12]
[PID: 960 / SYSTEM][C:\Windows\System32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 984 / SYSTEM][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1088 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1184 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1276 / SYSTEM][C:\Windows\system32\WLANExt.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [C:\Windows\system32\athihvs.dll]  [Atheros, 2.0.0.25]
[PID: 1292 / SYSTEM][C:\Windows\system32\conhost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 1448 / SYSTEM][C:\Windows\system32\atieclxx.exe]  [AMD, 6.14.11.1077]
    [C:\Windows\system32\atiadlxx.dll]  [Advanced Micro Devices, Inc., 6.14.10.1054]
[PID: 1616 / SYSTEM][D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KSafeSvc.exe]  [Kingsoft Corporation, 2.6.3.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kdump.dll]  [Kingsoft Corporation, 2011,03,08,1746]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kxebase.dll]  [Kingsoft Corporation, 2010,5,12,402]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\scom.dll]  [Kingsoft Corporation, 2010,5,12,402]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kxecore\kxecore.dll]  [Kingsoft Corporation, 2010,5,12,402]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kse\ksbcommsp.dll]  [Kingsoft Corporation, 2011,02,14,1702]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kexectrl.dll]  [Kingsoft Corporation, 2010,09,18,1422]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksscore.dll]  [Kingsoft Corporation, 2011,04,21,115]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kse\ksecorex.dll]  [Kingsoft Corporation, 2011,03,29,1600]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.4053]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.4053]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\kae\kaecore.dat]  [Kingsoft Corporation, 2010,12,16,1454]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kse\wfs.dll]  [Kingsoft Corporation, 2011,04,20,1616]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kse\sqlite.dll]  [Kingsoft Corporation, 2010,03,30,781]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kse\ksbwdet2.dll]  [Kingsoft Corporation, 2011,04,28,1920]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\kae\karchive.dat]  [Kingsoft Corporation, 2010,12,16,1454]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\kae\kaearcha.dat]  [Kingsoft Corporation, 2010,12,16,1454]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\kae\kaeolea.dat]  [Kingsoft Corporation, 2010,12,16,1454]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\kae\kaearchb.dat]  [Kingsoft Corporation, 2011,02,14,1540]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kwssp.dll]  [Kingsoft Corporation, 2011.04.21.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\json.dll]  [N/A, ]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\netstat.dll]  [Kingsoft Corporation, 2.6.3.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\fwproxy.dll]  [Kingsoft Corporation, 2.6.3.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kse\BKReScan.dll]  [Kingsoft Corporation, 2011,03,04,1740]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksreng3.dll]  [Kingsoft Corporation, 2011,04,19,150]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kcldrep.dll]  [Kingsoft Corporation, 2010,11,06,47]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kse\ksecansp.dll]  [Kingsoft Corporation, 2011,04,21,1878]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\kae\kaeunpak.dat]  [Kingsoft Corporation, 2010,06,30,436]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\kae\kaeunpack.dat]  [Kingsoft Corporation, 2010,07,18,365]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\kae\kaecoref.dat]  [Kingsoft Corporation, 2010,12,16,1454]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\kae\kaecorem.dat]  [Kingsoft Corporation, 2010,10,26,1328]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\kae\kaecorea.dat]  [Kingsoft Corporation, 2010,12,16,1454]
[PID: 1680 / SYSTEM][C:\Windows\System32\spoolsv.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [C:\Windows\System32\E_FLBFBA.DLL]  [SEIKO EPSON CORPORATION, 2, 9, 0, 0]
[PID: 2148 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 2264 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [c:\windows\system32\xaudio32.dll]  [Conexant Systems, Inc., 1.00.23.00]
[PID: 2348 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 3052 / CIA][C:\Windows\system32\taskhost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Windows\System32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
[PID: 3132 / CIA][C:\Windows\system32\Dwm.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [C:\Windows\system32\atiuxpag.dll]  [Advanced Micro Devices, Inc. , 8.14.01.6160]
    [C:\Windows\system32\aticfx32.dll]  [ATI Technologies Inc. , 8.17.10.1052]
    [C:\Windows\system32\atidxx32.dll]  [ATI Technologies Inc. , 8.17.10.0318]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
[PID: 3212 / CIA][C:\Windows\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [C:\Windows\System32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0401]
    [C:\Windows\system32\FXSAPI.dll]  [Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [D:\应用程序\金山毒霸套装\Kingsoft\Kingsoft Antivirus\ktaskbar.dll]  [Kingsoft Corporation, 2010,05,26,732]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\Kingsoft Antivirus\kis.dll]  [Kingsoft Corporation, 2011,04,26,89]
    [C:\Windows\system32\atiu9pag.dll]  [Advanced Micro Devices, Inc. , 8.14.01.6160]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamchs.dll]  [Advanced Micro Devices, Inc., 6.14.10.2001]
    [D:\应用程序\金山毒霸套装\Kingsoft\Kingsoft Antivirus\kavmenu.dll]  [Kingsoft Corporation, 2010,12,21,273]
    [C:\Program Files\HaoZip\HaoZipExt.dll]  [好压软件工作室, 2.2.1.6302]
    [D:\Computer Science\Textpad\System\shellext32.dll]  [Helios Software Solutions, 1.51]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll]  [Advanced Micro Devices, Inc., 6.14.10.2001]
    [C:\Windows\system32\icm32.dll]  [Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 3564 / CIA][C:\Windows\snuvcdsm.exe]  [, 1, 0, 2, 0]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
[PID: 3600 / CIA][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe]  [Synaptics Incorporated, 12.2.2 05Feb09]
    [C:\Windows\system32\SynCOM.dll]  [Synaptics Incorporated, 12.2.2 05Feb09]
    [C:\Windows\system32\SynTPAPI.dll]  [Synaptics Incorporated, 12.2.2 05Feb09]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
[PID: 3808 / SYSTEM][C:\Windows\system32\SearchIndexer.exe]  [(Verified) Microsoft Corporation, 7.00.7600.16385 (win7_rtm.090713-1255)]
[PID: 3860 / CIA][C:\Program Files\Synaptics\SynTP\SynTPHelper.exe]  [Synaptics Incorporated, 12.2.2 05Feb09]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
[PID: 4024 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 4084 / CIA][C:\Program Files\Launch Manager\LManager.exe]  [Dritek System Inc., 3.0.2.951]
    [C:\Program Files\Launch Manager\ComFnUtl.dll]  [Dritek System Inc., 2, 1, 0, 807]
    [C:\Program Files\Launch Manager\CDRomUtl.dll]  [Dritek System Inc., 1, 0, 0, 120]
    [C:\Program Files\Launch Manager\MixerUtl.dll]  [Dritek System Inc., 1.0.0.2]
    [C:\Program Files\Launch Manager\Wnd2File.dll]  [Dritek System Inc., 2, 0, 0, 1]
    [C:\Program Files\Launch Manager\PowerUtl.dll]  [Dritek System Inc., 1, 0, 0, 227]
    [C:\Program Files\Launch Manager\OSDUtl2.dll]  [Dritek System Inc., 1.0.0.6]
    [C:\Program Files\Launch Manager\SzUPFUtl.dll]  [Dritek System Inc., 2, 1, 0, 1]
    [C:\Program Files\Launch Manager\LgKCUtl.Dll]  [Dritek System Inc., 3, 2, 0, 1114]
    [C:\Program Files\Launch Manager\NTKCUtl.dll]  [Dritek System Inc., 2, 0, 0, 207]
    [C:\Program Files\Launch Manager\VistaVol.DLL]  [Dritek System Inc., 1, 0, 1, 703]
    [C:\Program Files\Launch Manager\CdDirIo.dll]  [, 1, 0, 0, 2]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
[PID: 2216 / CIA][C:\Program Files\Google\Gmail Notifier\gnotify.exe]  [Google Inc., 1.0.25.0]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [C:\Windows\System32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0401]
[PID: 2316 / CIA][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe]  [Advanced Micro Devices Inc., 2.0.0.0]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\fe70d777535c215f4fe9f9def2b4c815\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.5444 (Win7SP1GDR.050727-5400)]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\033c4be35e173939c647b9eab467f3ba\System.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\d4e82d7d148d82bec5a0099f8c0a9d7c\System.Drawing.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cd5d6686dd65a70df2bb47350e5565f2\System.Windows.Forms.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3951.39117]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3951.38984]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll]  [Advanced Micro Devices Inc., 2.0.3951.38988]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3951.39115]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3951.38989]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll]  [Advanced Micro Devices Inc., 2.0.3951.38988]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\fefab06818fb2664595d1ef8f3d4faf3\System.Runtime.Remoting.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\96f6b52f336da35be955a03e895b332e\System.Web.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3951.39117]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3951.38986]
[PID: 2904 / CIA][D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KSafeTray.exe]  [Kingsoft Corporation, 2.6.3.1402]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kdump.dll]  [Kingsoft Corporation, 2011,03,08,1746]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksafedb.dll]  [Kingsoft Corporation, 2.6.3.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\krunopt.dll]  [Kingsoft Corporation, 2.6.3.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kwsctrl.dll]  [Kingsoft Corporation, 2.6.3.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kse\bkrescan.dll]  [Kingsoft Corporation, 2011,03,04,1740]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kse\sqlite.dll]  [Kingsoft Corporation, 2010,03,30,781]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksafeup.dll]  [Kingsoft Corporation, 2.6.3.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\zlib1.dll]  [, 1.2.3]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\ksignup.dll]  [Kingsoft Corporation, 1.1.0.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\KEng\KSGMerge.DLL]  [Kingsoft Corporation, 2011,03,25,1594]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksafevul.dll]  [Kingsoft Corporation, 2.6.3.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kavmgr.dll]  [Kingsoft Corporation, 2.6.3.1401]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\kplugeng.dll]  [Kingsoft Corporation, 2.6.3.1401]
[PID: 3916 / NETWORK SERVICE][C:\Program Files\Windows Media Player\wmpnetwk.exe]  [Microsoft Corporation, 12.0.7600.16385 (win7_rtm.090713-1255)]
[PID: 4304 / CIA][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe]  [ATI Technologies Inc., 2.0.0.0]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\fe70d777535c215f4fe9f9def2b4c815\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.5444 (Win7SP1GDR.050727-5400)]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\033c4be35e173939c647b9eab467f3ba\System.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\d4e82d7d148d82bec5a0099f8c0a9d7c\System.Drawing.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cd5d6686dd65a70df2bb47350e5565f2\System.Windows.Forms.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3951.39117]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3951.38984]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3951.38989]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3951.38985]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll]  [Advanced Micro Devices Inc., 2.0.3951.38988]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3951.39115]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\fefab06818fb2664595d1ef8f3d4faf3\System.Runtime.Remoting.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll]  [Advanced Micro Devices Inc., 2.0.3951.38988]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3951.39117]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.SkinFactory.dll]  [Advanced Micro Devices Inc., 2.0.3951.38994]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll]  [Advanced Micro Devices Inc., 2.0.3951.39117]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\e4be545cbe1875f0f1f2fa20d614b3f9\System.Xml.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll]  [Advanced Micro Devices, Inc., 2.0.3951.38993]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll]  [Advanced Micro Devices Inc., 2.0.3951.38990]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll]  [Advanced Micro Devices Inc., 2.0.3951.38990]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38989]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll]  [Advanced Micro Devices Inc., 2.0.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll]  [Advanced Micro Devices, Inc., 2.0.3299.28586]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll]  [Advanced Micro Devices Inc., 2.0.3951.38992]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3951.38986]
    [C:\Windows\system32\atiadlxx.dll]  [Advanced Micro Devices, Inc., 6.14.10.1054]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38992]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll]  [Advanced Micro Devices Inc., 2.0.3951.39135]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39124]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38986]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38991]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll]  [ATI Technologies Inc., 2.0.2573.17685]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll]  [ATI Technologies Inc., 2.0.2573.17684]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll]  [Advanced Micro Devices Inc., 2.0.3951.38994]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATIDEMGX.dll]  [Advanced Micro Devices, Inc., 2.0.3882.23348]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\e80f44851696e7e15982d5a57ce715b5\System.Configuration.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Windows\system32\atipdlxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2563]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll]  [Advanced Mirco Devices, Inc., 2.0.3951.38996]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll]  [Advanced Mirco Devices, Inc., 2.0.3951.38988]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll]  [Advanced Micro Devices, Inc., 2.0.2743.23304]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38995]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38990]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll]  [Advanced Micro Devices, Inc., 2.0.3951.38993]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll]  [Advanced Micro Devices, Inc., 2.0.3015.27871]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39030]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39063]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll]  [Advanced Micro Devices Inc., 2.0.3951.39023]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39008]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39060]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll]  [Advanced Micro Devices, Inc., 2.0.3951.39066]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll]  [Advanced Micro Devices, Inc., 2.0.3951.39058]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39008]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39021]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39075]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39060]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39021]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39075]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39171]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39063]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39124]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39047]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39169]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39090]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0906.dll]  [Advanced Micro Devices, Inc., 2.0.2743.23304]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39069]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39009]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38995]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39068]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39125]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39058]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39127]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0912.dll]  [Advanced Micro Devices, Inc., 2.0.2743.23304]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39097]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0706.dll]  [Advanced Micro Devices, Inc., 2.0.2743.23304]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39096]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll]  [Advanced Micro Devices, Inc., 2.0.3455.26939]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39008]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll]  [Advanced Micro Devices, Inc., 2.0.3951.39058]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll]  [Advanced Micro Devices, Inc., 2.0.3286.19924]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll]  [Advanced Micro Devices, Inc., 2.0.3057.24943]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll]  [ , 1.0.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3951.39144]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39143]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll]  [Advanced Micro Devices, Inc., 2.0.3951.38993]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3951.38986]
    [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\96f6b52f336da35be955a03e895b332e\System.Web.ni.dll]  [Microsoft Corporation, 2.0.50727.5420 (Win7SP1.050727-5400)]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll]  [Advanced Micro Devices Inc., 2.0.3951.38991]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39134]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38991]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll]  [Advanced Micro Devices Inc., 2.0.3951.39109]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll]  [Advanced Micro Devices, Inc., 2.0.3951.39000]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.dll]  [Advanced Micro Devices, Inc., 2.0.3951.39016]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38987]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38987]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.Private.dll]  [Advanced Micro Devices Inc., 2.0.3951.39015]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39016]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39016]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39077]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39088]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll]  [Advanced Micro Devices, Inc., 2.0.3951.39161]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39031]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager2.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39168]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39024]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39148]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll]  [Advanced Micro Devices, Inc., 2.0.3951.39002]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.38987]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll]  [Advanced Micro Devices Inc., 2.0.3951.39001]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39007]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3951.39007]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Dashboard.dll]  [Advanced Mirco Devices, Inc., 2.0.3951.39128]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39025]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager2.Graphics.Dashboard.dll]  [Advanced Micro Devices, Inc., 2.0.3951.39163]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll]  [, 1.0.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39064]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39059]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll]  [Advanced Micro Devices, Inc., 2.0.3951.39067]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll]  [Advanced Micro Devices, Inc., 2.0.3951.39053]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39076]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39026]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39061]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39171]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39125]
    [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3951.39144]
[PID: 5848 / CIA][D:\应用程序\QQ\Bin\QQ.exe]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\Common.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\zlib.dll]  [, 1, 2, 5, 0]
    [D:\应用程序\QQ\Bin\libexpat.dll]  [, 2, 0, 1, 0]
    [C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.5592_none_d1cb520e4353d918\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.5592]
    [D:\应用程序\QQ\Bin\KernelUtil.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\xImage.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\libpng.dll]  [, 1, 2, 2, 3]
    [D:\应用程序\QQ\Bin\libjpeg6.dll]  [, 6, 2, 0, 0]
    [D:\应用程序\QQ\Bin\GF.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\xGraphic32.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\jgImage.dll]  [Tencent, 1, 60, 2010, 0]
    [D:\应用程序\QQ\Bin\jgIOStub.dll]  [Tencent, 1, 60, 2010, 0]
    [D:\应用程序\QQ\Bin\AFUtil.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\IPC.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\FlashService.dll]  [Tencent, 1, 61, 2103, 0]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [D:\应用程序\QQ\Bin\LoginPanel.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\MSVCP60.dll]  [Microsoft Corporation, 6.00.8168.0]
    [D:\应用程序\QQ\Bin\IM.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\AppMisc.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\AppUtil.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\TaskTray.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\TXPFProxy.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\MainFrame.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\AppFramework.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\SkinMgr.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\AFCtrl.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\ProcessSession.DLL]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\SystemMsg.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\ConfigCenter.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\ChatFrameApp.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\GroupApp.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\Contacts.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\InformationBox.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.SNSApp\Bin\SNSApp.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.PayCenter\Bin\PayCenter.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.QQVipMisc\Bin\QQVipMisc.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.VAS\Bin\VAS.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.WenWen\Bin\WenWen.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.NetBar\Bin\NetBar.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.PaiPai\Bin\PaiPai.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.Wireless\Bin\Wireless.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.CRM\Bin\CRM.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.PaiPaiGift\Bin\PaiPaiGift.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.QQShow\Bin\QQShow.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.Qzone\Bin\Qzone.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.AudioVideo\Bin\AudioVideo.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.Soso\Bin\Soso.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.Weather\Bin\Weather.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.Memo\Bin\Memo.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.QQPet\Bin\QQPet.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.QQVip\Bin\QQVip.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.Mail\Bin\Mail.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.FileTransfer\Bin\FileTransfer.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.QQRing\Bin\QQRing.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.WBlog\Bin\WBlog.dll]  [Tencent, 1, 61, 2103, 0]
    [C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.20\Bin\SSOPlatform.dll]  [Tencent, 1.2.1.20]
    [C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.20\Bin\SSOCommon.DLL]  [Tencent, 1.2.1.10]
    [D:\应用程序\QQ\Bin\PluginCommon.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\RICHED20.dll]  [Microsoft Corporation, 5.50.99.2012]
    [D:\应用程序\QQ\Bin\QInterLive.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\Com.Tencent.GameLife\Bin\GameLife.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\com.tencent.netdisk\Bin\NetDisk.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\com.tencent.netdisk\Bin\DiskIPC.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\com.tencent.netdisk\Bin\DiskCommon.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\com.tencent.netdisk\Bin\FileBase.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\ContactInfoFrame.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\MsgMgr.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\com.tencent.advertisement\Bin\Advertisement.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\com.tencent.today\Bin\Today.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\com.tencent.qqgame\Bin\QQGame.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\OPIEModule.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\LongCnn.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\CustomFace.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\AddrSearch.dll]  [Tencent, 2, 3, 12, 11]
    [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.5592_none_cbf62b764709d1c9\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.5592]
    [D:\应用程序\QQ\Plugin\com.tencent.winks\Bin\Winks.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Plugin\com.tencent.qqmusic\Bin\QQMusic.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\KernelMisc.dll]  [Tencent, 1,61,2040,0]
    [C:\Windows\system32\Macromed\Flash\Flash10q.ocx]  [Adobe Systems, Inc., 10,3,181,14]
    [D:\应用程序\QQ\Plugin\com.tencent.mmog\Bin\MMOG.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\AppCom.dll]  [Tencent, 1, 61, 2103, 0]
    [C:\Windows\system32\aticfx32.dll]  [ATI Technologies Inc. , 8.17.10.1052]
    [C:\Windows\system32\atiu9pag.dll]  [Advanced Micro Devices, Inc. , 8.14.01.6160]
    [C:\Windows\system32\atiumdag.dll]  [ATI Technologies Inc. , 8.14.10.0791]
    [C:\Windows\system32\atiumdva.dll]  [Advanced Micro Devices, Inc. , 8.14.10.0283]
    [D:\应用程序\QQ\Bin\Camera.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\SCCore.dll]  [Tencent, 1, 7, 1, 6]
    [C:\Windows\system32\SOGOUPY.IME]  [Sogou.com Inc., 5.2.0.5374]
    [C:\Program Files\SogouInput\5.2.0.5374\Resource.dll]  [Sogou.com Inc., 5.2.0.5374]
[PID: 5148 / CIA][D:\应用程序\QQ\Bin\TXPlatform.exe]  [Tencent, 1,61,2040,0]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [D:\应用程序\QQ\Bin\TXPFProxy.dll]  [Tencent, 1,61,2040,0]
[PID: 4792 / CIA][D:\应用程序\QQ\Bin\QQExternal.exe]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\Common.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\zlib.dll]  [, 1, 2, 5, 0]
    [D:\应用程序\QQ\Bin\libexpat.dll]  [, 2, 0, 1, 0]
    [C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.5592_none_d1cb520e4353d918\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.5592]
    [D:\应用程序\QQ\Bin\ProcessSession.DLL]  [Tencent, 1,61,2040,0]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [D:\应用程序\QQ\Bin\FlashService.dll]  [Tencent, 1, 61, 2103, 0]
    [D:\应用程序\QQ\Bin\IPC.dll]  [Tencent, 1,61,2040,0]
    [D:\应用程序\QQ\Bin\xGraphic32.dll]  [Tencent, 1,61,2040,0]
    [C:\Windows\system32\Macromed\Flash\Flash10q.ocx]  [Adobe Systems, Inc., 10,3,181,14]
[PID: 2448 / CIA][D:\应用程序\PPS\PPStream\ppsap.exe]  [PPStream Inc, 1, 0, 11, 296]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [D:\应用程序\PPS\PPStream\Vodnet.dll]  [PPStream Inc., 1, 0, 11, 380]
    [D:\应用程序\PPS\PPStream\vodres.dll]  [PPStream Inc., 1, 0, 11, 380]
    [D:\应用程序\PPS\PPStream\fds.dll]  [PPStream Inc., 1, 0, 0, 105]
[PID: 5252 / CIA][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kdump.dll]  [Kingsoft Corporation, 2010,12,02,1546]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswbc.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
[PID: 3328 / CIA][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kdump.dll]  [Kingsoft Corporation, 2010,12,02,1546]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswbc.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [C:\Windows\system32\atiuxpag.dll]  [Advanced Micro Devices, Inc. , 8.14.01.6160]
    [C:\Windows\system32\atiu9pag.dll]  [Advanced Micro Devices, Inc. , 8.14.01.6160]
    [C:\Windows\system32\icm32.dll]  [Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [C:\Windows\system32\aticfx32.dll]  [ATI Technologies Inc. , 8.17.10.1052]
    [C:\Windows\system32\atidxx32.dll]  [ATI Technologies Inc. , 8.17.10.0318]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll]  [Adobe Systems Incorporated, 10.0.1.434]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 10.0.1.434]
    [C:\Program Files\Java\jre6\bin\jp2ssv.dll]  [Sun Microsystems, Inc., 6.0.230.5]
    [C:\Program Files\Java\jre6\bin\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Windows\system32\Macromed\Flash\Flash10q.ocx]  [Adobe Systems, Inc., 10,3,181,14]
[PID: 5100 / CIA][D:\应用程序\QQlive\QQLive.exe]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\Common.dll]  [Tencent, 8, 22, 0, 0]
    [C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.5592_none_d1cb520e4353d918\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.5592]
    [D:\应用程序\QQlive\GF.dll]  [Tencent, 8, 22, 0, 0]
    [D:\应用程序\QQlive\xGraphic32.dll]  [Tencent, 1, 55, 1840, 0]
    [D:\应用程序\QQlive\Log.DLL]  [, 8.35.5771.0]
    [D:\应用程序\QQlive\ExceptCatch.dll]  [Tencent, ]
    [C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.5592_none_cbf62b764709d1c9\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.5592]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [D:\应用程序\QQlive\Core.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\SetupShell.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\Upgrade.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\HttpDownload.dll]  [, 8.35.5771.0]
    [D:\应用程序\QQlive\LiveAPI.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\Login.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\QQLiveCommu.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\ChannelMgr.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\MediaCtrl.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\Win7Feature.dll]  [Tencent, 8.35.5771.0]
    [C:\Windows\system32\Macromed\Flash\Flash10q.ocx]  [Adobe Systems, Inc., 10,3,181,14]
    [D:\应用程序\QQlive\Statistic.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\UserData.dll]  [Tencent, 8.35.5771.0]
    [C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.20\Bin\SSOLUIControl.dll]  [Tencent, 1.0.1.9]
    [C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.20\Bin\SSOCommon.DLL]  [Tencent, 1.2.1.10]
    [C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.20\Bin\SSOPlatform.dll]  [Tencent, 1.2.1.20]
    [D:\应用程序\QQlive\LiveMedia.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\LiveOcx.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\ADManage.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\Encrypt.dll]  [, 8.35.5771.0]
    [D:\应用程序\QQlive\P2PDownload.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\LiveMaster.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\p2papp.dll]  [Tencent, 6.3.5051.222]
    [D:\应用程序\QQlive\p2papi.dll]  [Tencent, 6.3.5051.222]
    [D:\应用程序\QQlive\p2pdata.dll]  [Tencent, 6.3.5051.222]
    [D:\应用程序\QQlive\p2phttp.dll]  [Tencent, 6.3.5051.222]
    [D:\应用程序\QQlive\p2pcore.dll]  [Tencent, 6.3.5051.222]
    [D:\应用程序\QQlive\tnproxy.dll]  [Tencent Technology(Shenzhen) Company Limited, 2, 1, 101, 90]
    [D:\应用程序\QQlive\LivePlayer.dll]  [Tencent, 8.35.5771.0]
    [D:\应用程序\QQlive\MediaSource.dll]  [, 8.35.5771.0]
    [D:\应用程序\QQlive\FMDecoder.dll]  [, 8.35.5771.0]
    [D:\应用程序\QQlive\avcodec-52.dll]  [N/A, ]
    [D:\应用程序\QQlive\avcore-0.dll]  [N/A, ]
    [D:\应用程序\QQlive\avutil-50.dll]  [N/A, ]
    [D:\应用程序\QQlive\pthreadGC2.dll]  [Open Source Software community project, 2, 8, 0, 0]
    [D:\应用程序\QQlive\avformat-52.dll]  [N/A, ]
    [D:\应用程序\QQlive\LiveVOD.dll]  [Tencent, 8.35.5771.0]
    [C:\Windows\system32\atiu9pag.dll]  [Advanced Micro Devices, Inc. , 8.14.01.6160]
    [D:\应用程序\QQlive\QQLiveDxDll.dll]  [, 8.35.5771.0]
    [D:\应用程序\QQlive\StreamIO.dll]  [, 8.35.5771.0]
    [C:\Windows\system32\aticfx32.dll]  [ATI Technologies Inc. , 8.17.10.1052]
    [C:\Windows\system32\atiumdag.dll]  [ATI Technologies Inc. , 8.14.10.0791]
    [C:\Windows\system32\atiumdva.dll]  [Advanced Micro Devices, Inc. , 8.14.10.0283]
    [D:\应用程序\QQlive\MiniTips.dll]  [Tencent, 8.35.5771.0]
[PID: 176 / CIA][C:\Program Files\Mozilla Firefox\firefox.exe]  [Mozilla Corporation, 2.0.1]
    [C:\Program Files\Mozilla Firefox\xul.dll]  [Mozilla Foundation, 2.0.1]
    [C:\Program Files\Mozilla Firefox\mozsqlite3.dll]  [sqlite.org, 3.7.4]
    [C:\Program Files\Mozilla Firefox\MOZCRT19.dll]  [Mozilla Foundation, 8.00.0000]
    [C:\Program Files\Mozilla Firefox\mozjs.dll]  [N/A, ]
    [C:\Program Files\Mozilla Firefox\nspr4.dll]  [Mozilla Foundation, 4.8.7]
    [C:\Program Files\Mozilla Firefox\smime3.dll]  [Mozilla Foundation, 3.12.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\nss3.dll]  [Mozilla Foundation, 3.12.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\nssutil3.dll]  [Mozilla Foundation, 3.12.9.0]
    [C:\Program Files\Mozilla Firefox\plc4.dll]  [Mozilla Foundation, 4.8.7]
    [C:\Program Files\Mozilla Firefox\plds4.dll]  [Mozilla Foundation, 4.8.7]
    [C:\Program Files\Mozilla Firefox\ssl3.dll]  [Mozilla Foundation, 3.12.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\mozalloc.dll]  [Mozilla Foundation, 2.0.1]
    [C:\Program Files\Mozilla Firefox\MOZCPP19.dll]  [Mozilla Foundation, 8.00.0000]
    [C:\Program Files\Mozilla Firefox\xpcom.dll]  [Mozilla Foundation, 2.0.1]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kdump.dll]  [Kingsoft Corporation, 2010,12,02,1546]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [C:\Program Files\Mozilla Firefox\components\browsercomps.dll]  [Mozilla Foundation, 2.0.1]
    [C:\Users\CIA\AppData\Roaming\Mozilla\Firefox\Profiles\08ll9kxv.default\extensions\cpmanager@mozillaonline.com\components\cpmanager-com.dll]  [N/A, ]
    [C:\Users\CIA\AppData\Roaming\Mozilla\Firefox\Profiles\08ll9kxv.default\extensions\fontsetter@mozillaonline.com\components\ClearTypeTuner.dll]  [N/A, ]
    [C:\Windows\system32\aticfx32.dll]  [ATI Technologies Inc. , 8.17.10.1052]
    [C:\Windows\system32\atiuxpag.dll]  [Advanced Micro Devices, Inc. , 8.14.01.6160]
    [C:\Windows\system32\atidxx32.dll]  [ATI Technologies Inc. , 8.17.10.0318]
    [C:\Program Files\Mozilla Firefox\softokn3.dll]  [Mozilla Foundation, 3.12.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\nssdbm3.dll]  [Mozilla Foundation, 3.12.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\freebl3.dll]  [Mozilla Foundation, 3.12.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\nssckbi.dll]  [Mozilla Foundation, 1.81]
    [C:\Windows\system32\icm32.dll]  [Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
    [C:\Windows\system32\SOGOUPY.IME]  [Sogou.com Inc., 5.2.0.5374]
    [C:\Program Files\SogouInput\5.2.0.5374\Resource.dll]  [Sogou.com Inc., 5.2.0.5374]
[PID: 1260 / CIA][C:\Program Files\Mozilla Firefox\plugin-container.exe]  [Mozilla Corporation, 2.0.1]
    [C:\Program Files\Mozilla Firefox\xul.dll]  [Mozilla Foundation, 2.0.1]
    [C:\Program Files\Mozilla Firefox\mozsqlite3.dll]  [sqlite.org, 3.7.4]
    [C:\Program Files\Mozilla Firefox\MOZCRT19.dll]  [Mozilla Foundation, 8.00.0000]
    [C:\Program Files\Mozilla Firefox\mozjs.dll]  [N/A, ]
    [C:\Program Files\Mozilla Firefox\nspr4.dll]  [Mozilla Foundation, 4.8.7]
    [C:\Program Files\Mozilla Firefox\smime3.dll]  [Mozilla Foundation, 3.12.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\nss3.dll]  [Mozilla Foundation, 3.12.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\nssutil3.dll]  [Mozilla Foundation, 3.12.9.0]
    [C:\Program Files\Mozilla Firefox\plc4.dll]  [Mozilla Foundation, 4.8.7]
    [C:\Program Files\Mozilla Firefox\plds4.dll]  [Mozilla Foundation, 4.8.7]
    [C:\Program Files\Mozilla Firefox\ssl3.dll]  [Mozilla Foundation, 3.12.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\mozalloc.dll]  [Mozilla Foundation, 2.0.1]
    [C:\Program Files\Mozilla Firefox\MOZCPP19.dll]  [Mozilla Foundation, 8.00.0000]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswbc.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
    [C:\Windows\system32\Macromed\Flash\NPSWF32.dll]  [, ]
    [C:\Windows\system32\icm32.dll]  [Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 3032 / CIA][C:\Users\CIA\Desktop\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.4.1331]
[PID: 4452 / CIA][C:\Users\CIA\Desktop\SREf5bb313d.EXE]  [Smallfrogs Studio, 2.8.4.1331]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kwsui.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [C:\Program Files\Common Files\Kingsoft\kiscommon\kswebshield.dll]  [Kingsoft Corporation, 2011,05,06,49]
    [D:\应用程序\金山毒霸套装\Kingsoft\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]

==================================
????
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["%SystemRoot%\hh.exe" %1]
.HLP  OK. [%SystemRoot%\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. ["%SystemRoot%\System32\WScript.exe" "%1" %*]
.JS   Error. [C:\Windows\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock ???
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS ??
N/A

==================================
??????
???????: SeDebugPrivilege [PID = 2904, D:\应用程序\金山毒霸套装\KINGSOFT\KSAFE\KSAFETRAY.EXE]

==================================
????
[???] \\GoogleUpdateTaskMachineCore
        C:\Program Files\Google\Update\GoogleUpdate.exe /c
[???] \\GoogleUpdateTaskMachineUA
        C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
[???] \\KsafeDelay
        D:\????\??????\Kingsoft\KSafe\KSafeTray.exe -delayruncheck /ua /installsource scheduler
[???] \\SidebarExecute
        C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
[???] \\SogouImeMgr
        C:\PROGRA~1\SOGOUI~1\520~1.537\SGTool.exe --appid=pinyinrepair /S
[???] \\{2B0CB9F2-8577-4B08-A160-535E430227B9}
        C:\Windows\system32\pcalua.exe -a "D:\????\??????\Kingsoft\Kingsoft Antivirus\kismain.exe" -d "D:\????\??????\Kingsoft\Kingsoft Antivirus"
[???] \\{92DA1B54-92EE-4F96-973A-4A9D5784851D}
        D:\Game\Cross Fire\CrossFire\CF_G4box.exe -a "D:\????\??????\Kingsoft\Kingsoft Antivirus\kismain.exe" -d "D:\????\??????\Kingsoft\Kingsoft Antivirus"
[???] \\{9FB91A6E-8765-4F29-9484-326ACC37BD6F}
        C:\Windows\system32\pcalua.exe -a C:\Users\CIA\Desktop\CNTVPlayer101209a.exe -d C:\Users\CIA\Desktop
[???] \\{AD80688F-1927-4FD8-AA01-A07EFE39FB15}
        D:\????\QQ\Bin\QQ.exe -a C:\Users\CIA\Desktop\CNTVPlayer101209a.exe -d C:\Users\CIA\Desktop
[???] \\{F166D29A-4942-4D6C-95D9-611ADA20E620}
        D:\????\QQ\Bin\QQ.exe -a C:\Users\CIA\Desktop\CNTVPlayer101209a.exe -d C:\Users\CIA\Desktop
[???] \Apple\AppleSoftwareUpdate
        C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task
[???] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated)
        N/A
[???] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual)
        N/A
[???] \Microsoft\Windows\AppID\PolicyConverter
        %windir%\system32\appidpolicyconverter.exe
[???] \Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck
        %windir%\system32\appidcertstorecheck.exe
[???] \Microsoft\Windows\Application Experience\AitAgent
        aitagent
[???] \Microsoft\Windows\Application Experience\ProgramDataUpdater
        %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
[???] \Microsoft\Windows\Autochk\Proxy
        %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
[???] \Microsoft\Windows\Bluetooth\UninstallDeviceTask
        BthUdTask.exe $(Arg0)
[???] \Microsoft\Windows\CertificateServicesClient\SystemTask
        N/A
[???] \Microsoft\Windows\CertificateServicesClient\UserTask
        N/A
[???] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam
        N/A
[???] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator
        %SystemRoot%\System32\wsqmcons.exe
[???] \Microsoft\Windows\Defrag\ScheduledDefrag
        %windir%\system32\defrag.exe -c
[???] \Microsoft\Windows\Location\Notifications
        %windir%\System32\LocationNotifications.exe
[???] \Microsoft\Windows\Maintenance\WinSAT
        N/A
[???] \Microsoft\Windows\Media Center\ActivateWindowsSearch
        %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
[???] \Microsoft\Windows\Media Center\ConfigureInternetTimeService
        %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
[???] \Microsoft\Windows\Media Center\DispatchRecoveryTasks
        %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
[???] \Microsoft\Windows\Media Center\ehDRMInit
        %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
[???] \Microsoft\Windows\Media Center\InstallPlayReady
        %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
[???] \Microsoft\Windows\Media Center\mcupdate
        %SystemRoot%\ehome\mcupdate $(Arg0)
[???] \Microsoft\Windows\Media Center\MediaCenterRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
[???] \Microsoft\Windows\Media Center\MediaCenterRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
[???] \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
[???] \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
[???] \Microsoft\Windows\Media Center\OCURActivate
        %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
[???] \Microsoft\Windows\Media Center\OCURDiscovery
        %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
[???] \Microsoft\Windows\Media Center\PBDADiscovery
        %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
[???] \Microsoft\Windows\Media Center\PBDADiscoveryW1
        %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
[???] \Microsoft\Windows\Media Center\PBDADiscoveryW2
        %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
[???] \Microsoft\Windows\Media Center\PeriodicScanRetry
        %windir%\ehome\MCUpdate.exe -pscn 0
[???] \Microsoft\Windows\Media Center\PvrRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
[???] \Microsoft\Windows\Media Center\PvrRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
[???] \Microsoft\Windows\Media Center\PvrScheduleTask
        %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
[???] \Microsoft\Windows\Media Center\PvrScheduleTask
        %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
[???] \Microsoft\Windows\Media Center\RecordingRestart
        %SystemRoot%\ehome\ehrec /RestartRecording
[???] \Microsoft\Windows\Media Center\RegisterSearch
        %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
[???] \Microsoft\Windows\Media Center\ReindexSearchRoot
        %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
[???] \Microsoft\Windows\Media Center\SqlLiteRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
[???] \Microsoft\Windows\Media Center\SqlLiteRecoveryTask
        %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
[???] \Microsoft\Windows\Media Center\StartRecording
        %SystemRoot%\ehome\ehrec /StartRecording
[???] \Microsoft\Windows\Media Center\UpdateRecordPath
        %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
[???] \Microsoft\Windows\MobilePC\HotStart
        N/A
[???] \Microsoft\Windows\MUI\LPRemove
        %windir%\system32\lpremove.exe
[???] \Microsoft\Windows\Multimedia\SystemSoundsService
        N/A
[???] \Microsoft\Windows\NetTrace\GatherNetworkInfo
        %windir%\system32\gatherNetworkInfo.vbs
[???] \Microsoft\Windows\Offline Files\Background Synchronization
        N/A
[???] \Microsoft\Windows\Offline Files\Logon Synchronization
        N/A
[???] \Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
        %SystemRoot%\System32\powercfg.exe -energy -auto
[???] \Microsoft\Windows\Ras\MobilityManager
        N/A
[???] \Microsoft\Windows\SideShow\AutoWake
        N/A
[???] \Microsoft\Windows\SideShow\GadgetManager
        N/A
[???] \Microsoft\Windows\SideShow\SessionAgent
        N/A
[???] \Microsoft\Windows\SideShow\SystemDataProviders
        N/A
[???] \Microsoft\Windows\SystemRestore\SR
        %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
[???] \Microsoft\Windows\Tcpip\IpAddressConflict1
        %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
[???] \Microsoft\Windows\Tcpip\IpAddressConflict2
        %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
[???] \Microsoft\Windows\Time Synchronization\SynchronizeTime
        %windir%\system32\sc.exe start w32time task_started
[???] \Microsoft\Windows\UPnP\UPnPHostConfig
        sc.exe config upnphost start= auto
[???] \Microsoft\Windows\User Profile Service\HiveUploadTask
        N/A
[???] \Microsoft\Windows\Windows Error Reporting\QueueReporting
        %windir%\system32\wermgr.exe -queuereporting
[???] \Microsoft\Windows\Windows Media Sharing\UpdateLibrary
        "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
[???] \Microsoft\Windows\WindowsBackup\AutomaticBackup
        %systemroot%\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
[???] \Microsoft\Windows\WindowsBackup\ConfigNotification
        %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
[???] \Microsoft\Windows\WindowsBackup\Windows Backup Monitor
        %systemroot%\system32\sdclt.exe /CHECKSKIPPED
[???] \Microsoft\Windows\WindowsColorSystem\Calibration Loader
        N/A

==================================
Windows ??????
KB2488113,  Windows 7 ???? (KB2488113)
KB2483139,  ???????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ????????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ???????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ??????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ??????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ??????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ???????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ??????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ????(??)??? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ????(???)??? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ??????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ??????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ???????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????(???)??? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ???????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ??????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ??????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ???????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ?????? - Windows 7 Service Pack 1 (KB2483139)
KB2483139,  ??????? - Windows 7 Service Pack 1 (KB2483139)

==================================
API HOOK
?????:FindFirstFileA (????: ?,  ??????HOOK: 0x016502D9)
?????:LoadLibraryExW (????: ?,  ??????HOOK: 0x016702F1)
?????:CreateProcessA (????: ?,  ??????HOOK: 0x003F02F1)
?????:CreateProcessW (????: ?,  ??????HOOK: 0x016402F1)

==================================
????
N/A

==================================


[/code]

小有所成

小小的菜鸟

Rank: 4

树叶
1
金币
2573
积分
69
发表于 2011-5-25 13:12:24 |显示全部楼层
回复 12# 流风33
那个win7 anti-spyware 已经被杀软清除掉了,但是帖子放不下那么长的扫描报告,我直接把文件上传吧。
win7的开始菜单对应的C盘文件夹在哪呢?
我找了半天找不到

功成名就

闪烁~~

Rank: 9Rank: 9Rank: 9

树叶
24
金币
14767
积分
562
发表于 2011-5-25 13:32:51 |显示全部楼层
回复  流风33
那个win7 anti-spyware 已经被杀软清除掉了,但是帖子放不下那么长的扫描报告,我直接把文件 ...
harry0723 发表于 2011-5-25 13:12



    C:\用户\administrater\
除了那个命令,试下win7权限小工具,~~

小有所成

小小的菜鸟

Rank: 4

树叶
1
金币
2573
积分
69
发表于 2011-5-25 13:48:01 |显示全部楼层
回复 15# glitter64


    谢谢啦,我试过你说的那个路径了,但是点了开始菜单还是一片空白啊、

功成名就

闪烁~~

Rank: 9Rank: 9Rank: 9

树叶
24
金币
14767
积分
562
发表于 2011-5-25 14:06:30 |显示全部楼层
回复  glitter64


    谢谢啦,我试过你说的那个路径了,但是点了开始菜单还是一片空白啊、
harry0723 发表于 2011-5-25 13:48



    er,,我能力有限,这个就不知道了,:q12;等坏猫来分析~

功成名就

闪烁~~

Rank: 9Rank: 9Rank: 9

树叶
24
金币
14767
积分
562
发表于 2011-5-25 14:13:39 |显示全部楼层
那个路径下的文件夹内容被清空了么??
你死过么?死过。死过多少次?据说科学技术法就是为了这个发明的~~
终于更新鸟

小小版主

成事不说,遂事不谏

Rank: 9Rank: 9Rank: 9

树叶
726
金币
26769
积分
2722

贡献勋章 SecurityExpert(病毒与安全)

发表于 2011-5-25 15:28:43 |显示全部楼层
[SASDIFSV / SASDIFSV][Stopped/System Start]
  <\??\C:\Users\CIA\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS><N/A>
[SASKUTIL / SASKUTIL][Stopped/System Start]
  <\??\C:\Users\CIA\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS><N/A>
还有两个,不过在我确认前,你得先确认你的电脑里除了金山外,没有其它antispyware的软件,那么这俩就是残留

开始菜单那个,你打开显示隐藏、系统文件的选项看看,有没有东西在里面,如果有才能修复,如果没有,就是全清空了,就没什么好修复了,反正都是快捷方式,重新拉一个就是
如果您的问题得到解决,请修改标题加上“[已解决]”   在线病毒扫描

功成名就

OS Beginner

Rank: 9Rank: 9Rank: 9

树叶
238
金币
11722
积分
659

系统名医(操作系统) SecurityExpert(病毒与安全)

发表于 2011-5-25 17:38:52 |显示全部楼层
回复 19# 流风33


    哥也遇到过…
您需要登录后才可以回帖 登录 | 注册

感谢版主

Archiver|手机版|电脑报官方网站 ( 渝ICP备10009040号 

GMT+8, 2020-8-6 06:35

Powered by Discuz! X2

© 2001-2011 Comsenz Inc.

回顶部