我是网管论坛's Archiver

狂飙1 发表于 2008-6-6 18:44

请高手们来帮我下 江湖救急 急 急

最近玩网游天龙八部老是出现错误报告 不知道咋会事 重做了遍系统 和下载天龙客户断还是不行 请问是咋回事 啊[CODE]
A9i(cs6Je La qh!p@a E%`H p
2008-06-06,18:33:56
#R8WB+]rx$@"P )wtiT7_#Y
System Repair Engineer 2.6.8.980 Lt\&_&]m
Smallfrogs ([url]http://www.KZTechs.com[/url])'ZNb*|S#o&]2Fyj

m xF$],U)? Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能(ut+b oO+B6c
[9p,R s7j&s
以下内容被选中:
d$Cj)T7}XXGh     所有的启动项目(包括注册表、启动文件夹、服务等)6?RR7YTXC9jz"g H(a
    浏览器加载项
%HN:{C;f9dSt     正在运行的进程(包括进程模块信息)Ka;jiGvG'_
    文件关联V+kL3H:H
    Winsock 提供者 [3O0tDl0BCt
    Autorun.inf
0Pve1]_1j+w Ok     HOSTS 文件'Y:Ug;X0X/aSy
    进程特权扫描uQ)q _*V F
Dz2Y,f+cSIH
nEOc$Y9@sT
启动项目uFW0t.?$QtW
注册表hmuLX)mr+e
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
z4b,H9@BH(FI9[~:f     <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Publisher]9h5IO vJ4n
    <bgswitch><C:\WINDOWS\system32\bgswitch.exe>  []
%f0L0R F"g K0W { { [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]s!g9K9u#Z
    <load><>  [N/A]$x2x7U$ke8`f
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run];X L6e8A~d;TSZ
    <NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]p M-la}~f(j
    <SkyTel><SkyTel.EXE>  [(Verified)Microsoft Windows Publisher]x@&_!CL O#~{n
    <RTHDCPL><RTHDCPL.EXE>  [(Verified)Microsoft Windows Publisher]
;|.{a9jxp d.Z3s     <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [(Verified)Microsoft Windows Publisher]
S:r C_c:O     <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [(Verified)Microsoft Windows Publisher]C%E~-{ bT}C,B5^)D
    <nwiz><nwiz.exe /install>  []
.|*Rw6|{|I\     <NvMediaCenter><RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]u'S~o"q#@hD4vl
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [File is missing]yTT*gO&Pq
    <Alcmtr><ALCMTR.EXE>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]3`5RN8ydj
    <RavTask><"D:\瑞星.10\Rising\Rav\RavTask.exe" -system>  [(Verified)Beijing Rising Science and Technology Corporation Limited]q/`H)H.qjpg
    <runeip><"C:\Program Files\Rising\AntiSpyware\runiep.exe" /startup>  [Beijing Rising Technology Co., Ltd.]
%fI+z#v4K kjd [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
&g @j9LbW     <shell><Explorer.exe>  [(Verified)Microsoft Windows Publisher]
5Jx T.iB;p&k     <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
Q1^+['\ ow!h     <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
\_!Nu`3n6z [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
R6d&kk&l     <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINDOWS\system32\RavExt.dll>  [(Verified)Beijing Rising Science and Technology Corporation Limited]1WFMMB`G
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
~ tPpO     <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [File is missing]4_~F@@u;^ `:v
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}],~@M Hj\4_$w
    <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
%m4n+y%bY:fL [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]7ZH6jmm!A-Q0`1sY
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]8We\ p*Y4{6b t
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
0A%`+g:Q\ K1W.t2~     <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
#R^}!z6z9^%P [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
!~B'p+c&CS     <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Publisher]T5P1R_'PR
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
]+V(ujT.M5d     <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Publisher]3Gx O&e)uQ$Z7`t!i
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
{I&{%I9? Xg)k-G l\%e     <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
Y&g*|QP1j;f9P4Um [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]h&^'m(tUi4DB.a
    <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]_q!r7kX:^9`
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Your Image File Name Here without a path]G1k;A/E2c Qx3`
    <IFEO[Your Image File Name Here without a path]><ntsd -d>  [N/A]'X(}Q-ToA

7I2}+lT1N ==================================
0{x8H;Rwy9Z Ci 启动文件夹
'ze+I9CU4j~x N/A
;`ef a\at p#c3}qy2v4G3G&L
==================================
k2g8^n.TDVHq 服务
-e(tmJN [Human Interface Device Access / HidServ][Stopped/Disabled]
!@1KW"y:}1d   <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
4P4iX3@ Yu J'a [NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
:~P&E.g xY#@J   <C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>E$\Bf5jrHHG _
[P4P Service / P4P Service][Stopped/Manual Start]
f1jC4h5}w$Z(Yq   <2 - 系统找不到指定的文件。#l#wIxFTIb~
><(File is missing)>
1|+j-?3xJe%Q [Rising Process Communication Center / RsCCenter][Running/Auto Start]
S5eFMV,Q$L   <"D:\瑞星.10\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>2S m:QC0qV
[Rising RealTime Monitor / RsRavMon][Stopped/Auto Start]
&USM7b$W'n"z S8dL   <"D:\瑞星.10\RISING\RAV\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>v-X"g u{ z]SK
[Windows User Mode Driver Framework / UMWdf][Stopped/Auto Start]
5UP_Y!MqHpY K   <C:\WINDOWS\system32\wdfmgr.exe><(File is missing)>
-x/D(aQ/JWkG|
2b]U8Su@ m ==================================
D7u j5aj+D(e8W@ 驱动程序
;e!w3j3tP FO4~:z` h [2310_00 / 2310_00][Stopped/Boot Start]/\;A\ v1UJUU
  <\SystemRoot\System32\BIRD\2310_00.sys><HighPoint Technologies, Inc.>
\#Xl$R1w(mvPi z [3WAREDRV / 3WAREDRV][Stopped/Boot Start] dM^;{#jqS8DV
  <\SystemRoot\System32\BIRD\3WAREDRV.SYS><N/A>{B'v"P]OT;S
[3WAREGSM / 3WAREGSM][Stopped/Boot Start]/LtD!Iz$r
  <\SystemRoot\System32\BIRD\3waregsm.sys><N/A> _9J#S6|}
[3WDRV100 / 3WDRV100][Stopped/Boot Start]
c ]$Ww*f[G+y0p   <\SystemRoot\System32\BIRD\3WDRV100.SYS><N/A>
@xIWHb.t&g [A320RAID / A320RAID][Stopped/Boot Start].^9h:rRUB*M!^m
  <\SystemRoot\System32\BIRD\a320raid.sys><Adaptec, Inc.> Z'H5NW$zvx
[AAC / AAC][Stopped/Boot Start]
(w'TiIc:Lz   <\SystemRoot\System32\BIRD\aac.sys><Adaptec, Inc.>
a!W.t+e%e#c:^*p kz [AACSAS / AACSAS][Stopped/Boot Start]
"ge@4n'bV   <\SystemRoot\System32\BIRD\aacsas.sys><Adaptec, Inc.>Lga\@7c!@
[AAR81XX / AAR81XX][Stopped/Boot Start]{/@9xAH5rs*z i
  <\SystemRoot\System32\BIRD\aar81xx.sys><Adaptec, Inc.>
[#S#My r OX [AARSI3X / AARSI3X][Stopped/Boot Start]bLoY7K
  <\SystemRoot\System32\BIRD\aarsi3x.sys><Adaptec, Inc.>
E(vT ?dol [ADP94XX / ADP94XX][Stopped/Boot Start].t5fzSqN
  <\SystemRoot\System32\BIRD\adp94xx.sys><Adaptec, Inc.>/f9TA]M
[ADPU320 / ADPU320][Stopped/Boot Start]R5D2A"Q;E
  <\SystemRoot\System32\BIRD\adpu320.sys><Adaptec, Inc.>
LP+B Yz,h N [AEC6210 / AEC6210][Stopped/Boot Start]!v8\;La2S
  <\SystemRoot\System32\BIRD\aec6210.sys><ACARD Technology Corp.>
m6[ [4A;sgp.{C [AEC6260 / AEC6260][Stopped/Boot Start]
'qk`$h`   <\SystemRoot\System32\BIRD\aec6260.sys><ACARD Technology Corp.>
o)Iv4ac1},{'~%P [AEC6280 / AEC6280][Stopped/Boot Start]
i%e UD3}!m   <\SystemRoot\System32\BIRD\aec6280.sys><ACARD Technology Corp.>`/@:\:D|2r.f
[AEC67160 / AEC67160][Stopped/Boot Start]({#m-H4|)Ggp1`O
  <\SystemRoot\System32\BIRD\aec67160.sys><ACARD Technology Corp.>
^u7Am8g"sF [AEC67162 / AEC67162][Stopped/Boot Start]
u"kRG+e$O   <\SystemRoot\System32\BIRD\aec67162.sys><ACARD Technology Corp.>)hbG _Ud;RA%M
[AEC671X / AEC671X][Stopped/Boot Start]Hg*\|6B [G
  <\SystemRoot\System32\BIRD\AEC671X.sys><ACARD Technology Corp.>4u+r%a8^_l#[
[AEC6880 / AEC6880][Stopped/Boot Start]THMk,RKh#z2r
  <\SystemRoot\System32\BIRD\AEC6880.sys><ACARD Technology Corp.>
9mQ/fh&A WP7`A [AEC6897 / AEC6897][Stopped/Boot Start]m:]Ej/X{+} u oO
  <\SystemRoot\System32\BIRD\aec6897.sys><ACARD Technology Corp.>
/jJL e7vQ [AEC68X5 / AEC68X5][Stopped/Boot Start]
)yf0oV(@#~s   <\SystemRoot\System32\BIRD\aec68x5.sys><ACARD Technology Corp.>
Ia]i3I]s@} [AMD Processor Driver / AmdK8][Running/System Start]
UKD&C i   <system32\DRIVERS\AmdK8.sys><Advanced Micro Devices>
)Q;C ~-U ]L1~&?0l [ARCM_X86 / ARCM_X86][Stopped/Boot Start];b)m5K \0@o
  <\SystemRoot\System32\BIRD\arcm_x86.sys><ARECA  Technology Corporation>7d.Rj Y[2A/??
[asc / asc][Stopped/Boot Start]`1BvV{ll'f
  <\SystemRoot\System32\BIRD\asc.sys><Advanced System Products, Inc.>
7W+?%BBY;lsr [BCHTSW32 / BCHTSW32][Stopped/Boot Start]
vAgYk?+_   <\SystemRoot\System32\BIRD\bchtsw32.sys><Broadcom Corporation>fkf6Wg"O)OC
[buslogic / buslogic][Stopped/Boot Start]v N+I/| ri OM9D&u
  <\SystemRoot\System32\bird\buslogic.sys><Microsoft Corporation>
0nN a XdN;j7D [CDA1000 / CDA1000][Stopped/Boot Start]'Nb/K0Z!Y7UG X
  <\SystemRoot\System32\BIRD\cda1000.sys><Adaptec, Inc.> P\f*S$];o3V y
[CmdIde / CmdIde][Running/Boot Start]
},b ](x#s   <\SystemRoot\System32\BIRD\cmdide.sys><CMD Technology, Inc.>8~f?0q~9I,o
[CPQARRY2 / CPQARRY2][Stopped/Boot Start]} b5bP1QC
  <\SystemRoot\System32\BIRD\cpqarry2.sys><Compaq Computer Corporation>
m&~7mp lc1S [CPQCISSM / CPQCISSM][Stopped/Boot Start]:Y[(u6s8jS b
  <\SystemRoot\System32\BIRD\cpqcissm.sys><Hewlett-Packard Company>
^M0? tQ [CSB6IDE / CSB6IDE][Running/Boot Start]
R xv*j0n4`2rE   <\SystemRoot\System32\BIRD\csb6ide.sys><ServerWorks Corporation>[Ns*uOL4h6PT+l
[dac2w2k / dac2w2k][Stopped/Boot Start]
Y g)At_s   <\SystemRoot\System32\BIRD\dac2w2k.sys><Mylex Corporation>2GR#I}xf
[DMX3191 / DMX3191][Stopped/Boot Start]^8O#H_0gp0vnS&hP
  <\SystemRoot\System32\BIRD\DMX3191.sys><Microsoft Corporation>Q(VdF;zA)\pk-R
[DMX3194 / DMX3194][Stopped/Boot Start]D;w#@]8F6D3G%e
  <\SystemRoot\System32\BIRD\dmx3194.sys><Microsoft Corporation>
`p*g})k {g0A6DF [DPTSCSI / DPTSCSI][Stopped/Boot Start]-@bN.Q!t.CO
  <\SystemRoot\System32\BIRD\dptscsi.sys><Distributed Processing Technology Corp.>
-HN N bZ)z [FASTSX / FASTSX][Stopped/Boot Start]N h bi!e l
  <\SystemRoot\System32\BIRD\fastsx.sys><Promise Technology, Inc.>
f'r OwU;J [FASTTRAK / FASTTRAK][Stopped/Boot Start]K L+H,v _Z
  <\SystemRoot\System32\BIRD\fasttrak.sys><Promise Technology, Inc.>
z'@Z$_+HZ [FASTTX2K / FASTTX2K][Stopped/Boot Start]0\QN*D#Ca
  <\SystemRoot\System32\BIRD\fasttx2k.sys><Promise Technology, Inc.>
Vvp:teEP [fd16_700 / fd16_700][Stopped/Boot Start]0]Y/N:yk#M zC)W
  <\SystemRoot\System32\BIRD\fd16_700.sys><Microsoft Corporation>
BS@-l1[b0_$\ [fireport / fireport][Stopped/Boot Start]
l{2S#gh @   <\SystemRoot\System32\BIRD\fireport.sys><Microsoft Corporation> Fh-Z4x"o5W~e
[flashpnt / flashpnt][Stopped/Boot Start]@3p%Q.?(|eG
  <\SystemRoot\System32\BIRD\flashpnt.sys><Mylex,Corp.>
(V8w;b0]:u(B NDh-{+F [FT8300 / FT8300][Stopped/Boot Start]p t$[ `i8nMw!iW
  <\SystemRoot\System32\BIRD\ft8300.sys><Promise Technology, Inc.>
6a\+~F+G/OK [FTSATA2 / FTSATA2][Stopped/Boot Start]
B8mSkKf*k!t)ID   <\SystemRoot\System32\DRIVERS\ftsata2.sys><N/A>#c/PtiE
[GD31244 / GD31244][Stopped/Boot Start]
5P WBY7K._0u~}g   <\SystemRoot\System32\BIRD\gd31244.sys><Intel Corporation>["E2~ J].J)]Oj
[gdrv / gdrv][Stopped/Manual Start]{tS~ xA5Je
  <\??\C:\WINDOWS\gdrv.sys><Windows (R) Codename Longhorn DDK provider>Q,](ECU]l
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
$fP(_"bS#^"]dp   <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
a4{$k'L3r2T p~E,s2YK [HookCont / HookCont][Running/System Start]
6bd P-~\Zk   <\SystemRoot\system32\drivers\HookCont.sys><Beijing Rising Technology Co., Ltd> g%N\ u.CM
[HookNtos / HookNtos][Running/System Start]lB)OA'v-[.bam
  <\SystemRoot\system32\drivers\HookNtos.sys><Beijing Rising Technology Co., Ltd>
+N'f2s]$[;b| [HookReg / HookReg][Running/System Start]!kl|Q;Ke
  <\SystemRoot\system32\drivers\HookReg.sys><Beijing Rising Technology Co., Ltd>
go4i Z;O\ ` u [HookSys / HookSys][Running/System Start].s Yl;TP
  <\SystemRoot\system32\drivers\HookSys.sys><Beijing Rising Technology Co., Ltd>
B{Q [Iw8{6tt [HPCISSS2 / HPCISSS2][Stopped/Boot Start]
-B7U#l$Z Ek%@c#s{   <\SystemRoot\System32\BIRD\hpcisss2.sys><Hewlett-Packard Company>1Ku0`U%R2k
[HPT371 / HPT371][Stopped/Boot Start]2i1S^a;M$r'WgR!X1v
  <\SystemRoot\System32\BIRD\HPT371.sys><HighPoint Technologies, Inc.>KxV1S|h
[HPT374 / HPT374][Stopped/Boot Start]
1D B#r\O S   <\SystemRoot\System32\BIRD\hpt374.sys><HighPoint Technologies, Inc.>t-VXcC(R n
[HPT3XX / HPT3XX][Stopped/Boot Start]y2G"{4j6f Mm
  <\SystemRoot\System32\BIRD\hpt3xx.sys><HighPoint Technologies, Inc.>$cozc1l~ ~
[IASTOR / IASTOR][Running/Boot Start]
jF&?Jv7n^ q@~1@   <\SystemRoot\System32\BIRD\iaStor.sys><Intel Corporation>
U;{ |.Mm_lk$b%Y [IFT2000 / IFT2000][Stopped/Boot Start]
t\qeo,Z   <\SystemRoot\System32\BIRD\ift2000.sys><Infortrend Technology, Inc.>
~2K3Or3c [INIA100 / INIA100][Stopped/Boot Start]
Ep`"?E Qwa'F   <\SystemRoot\System32\BIRD\INIA100.sys><Initio corp.>:E}(?4x!w5x@@9q;VA
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
J;X2o(e `FKph   <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
:vm4Mv7N'{ [IPSRAIDN / IPSRAIDN][Stopped/Boot Start]
(v4aCG u\y'Y aT0D   <\SystemRoot\System32\BIRD\ipsraidn.sys><IBM Corporation>0G)|*R\#y1{
[ITERAID / ITERAID][Stopped/Boot Start] XXg-?CZ
  <\SystemRoot\System32\BIRD\iteraid.sys><Integrated Technology Express, Inc.>
7w(xN"ar [JRAID / JRAID][Stopped/Boot Start]
7azI#o/k]0I0xA1b   <\SystemRoot\System32\BIRD\JRAID.SYS><JMicron Technology Corp.>
6w7|"NuN4g)~ [M5228 / M5228][Stopped/Boot Start]}7d`E T8H
  <\SystemRoot\System32\BIRD\m5228.sys><ALi Corporation.>
#@0I ys\,Ez qfn [M5281 / M5281][Stopped/Boot Start]
JOhq8D)r   <\SystemRoot\System32\BIRD\m5281.sys><ALi Corporation>
Vj[8?g,G)u*P@ [M5287 / M5287][Stopped/Boot Start]*@] l'mP
  <\SystemRoot\System32\BIRD\m5287.sys><ULi Electronics Inc.>},X)Ry9efS5S
[M5288 / M5288][Stopped/Boot Start]g7DBYv
  <\SystemRoot\System32\BIRD\m5288.sys><ULi Electronics Inc.>
+v7ha2H:ft X#Y [M5289 / M5289][Stopped/Boot Start]
P.ItI yrA A0[Y   <\SystemRoot\System32\BIRD\m5289.sys><ULi Electronics Inc.>
'p2V/]%d Z:CFjXE[5fM"U [MEGAIDE / MEGAIDE][Stopped/Boot Start]
byh pU x R   <\SystemRoot\System32\BIRD\MegaIDE.sys><LSI Logic Corporation.>
(g|#AxHj7lyy:r:I ~B [mraid35x / mraid35x][Stopped/Boot Start]{`"jz9`3I0B
  <\SystemRoot\System32\BIRD\mraid35x.sys><LSI Logic Corporation>
Gh#M4d3c#P&E'E [NFRD960 / NFRD960][Stopped/Boot Start]"H U5n`3rG'A(Y:gij
  <\SystemRoot\System32\BIRD\nfrd960.sys><IBM Corporation> W f _{(|? c
[NetGroup Packet Filter Driver / NPF][Running/Manual Start]
u0X9jMmfe3z   <system32\drivers\npf.sys><CACE Technologies>r{c;bHX%xiH}N
[npkcrypt / npkcrypt][Running/Auto Start]:i3D |2p*Y4~r
  <\??\C:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.> D0}1Ya2q6r
[nv / nv][Running/System Start]
4{%m?f^9F_;L   <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
0GQB XMr!QE [nvata / nvata][Running/Boot Start]
d` FY:a~"V2d~   <\SystemRoot\system32\DRIVERS\nvata.sys><NVIDIA Corporation>
,W6{:Y&h$WU [NVATABUS / NVATABUS][Running/Boot Start]
M$\e&c"v U}   <\SystemRoot\System32\BIRD\NVATABUS.SYS><NVIDIA Corporation>,U4}1@rL4u&i qY
[NVIDIA nForce Networking Controller Driver / NVENETFD][Running/Manual Start]
YHtO^xp9@C]E   <system32\DRIVERS\NVENETFD.sys><NVIDIA Corporation>$b UV)Z E
[NVIDIA Network Bus Enumerator / nvnetbus][Running/Manual Start]
z5kyt(O v#|   <system32\DRIVERS\nvnetbus.sys><NVIDIA Corporation>4Ui$|$Wb3e+S
[NVRAID / NVRAID][Stopped/Boot Start]
Z"{$j*{;Ko   <\SystemRoot\System32\BIRD\NVRAID.SYS><NVIDIA Corporation>&b4Z;S$y(V*P X
[perc2 / perc2][Stopped/Boot Start]:j0n tc\6bC
  <\SystemRoot\System32\BIRD\perc2.sys><Adaptec, Inc.>
h"t"xFsXi? [PNP649R / PNP649R][Stopped/Boot Start] M'UQ sb)U*N&@
  <\SystemRoot\System32\BIRD\pnp649r.sys><CMD Technology, Inc.>IZ |]3ox
[PNP680 / PNP680][Stopped/Boot Start]I5SDGI FfJ,s
  <\SystemRoot\System32\BIRD\pnp680.sys><Silicon Image, Inc.>2ZG4fh$|Sy
[PNP680R / PNP680R][Stopped/Boot Start]
1L0`2g)[&iy   <\SystemRoot\System32\BIRD\pnp680r.sys><Silicon Image, Inc>
Mh7p;YRW+kH [Direct Parallel Link Driver / Ptilink][Running/Manual Start]pw/n]q
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
;pr'y [ VgR2F!e [ql1080 / ql1080][Stopped/Boot Start]
%H$T:L0vL i   <\SystemRoot\System32\BIRD\ql1080.sys><QLogic Corporation>v d;h!B{(l
[ql12160 / ql12160][Stopped/Boot Start]I`2{,Z"rA
  <\SystemRoot\System32\BIRD\ql12160.sys><QLogic Corporation>
W v"B)@|1~\S [ql1280 / ql1280][Stopped/Boot Start]l!Zl SP]
  <\SystemRoot\System32\BIRD\ql1280.sys><QLogic Corporation>1a$c t[3T?
[RAIDSRC / RAIDSRC][Stopped/Boot Start]
4w5A*L%CRc [;N   <\SystemRoot\System32\BIRD\raidsrc.sys><Intel/ICP>.~vGY&Q/G]yW
[RR232X / RR232X][Stopped/Boot Start]
S)zRQ.k8j   <\SystemRoot\System32\BIRD\rr232x.sys><HighPoint Technologies, Inc.>-k1Ds fg1S0W7x8j
[RsAntiSpyware / RsAntiSpyware][Running/Boot Start]
-vQ.fdCd3s+x   <\SystemRoot\system32\drivers\RsBoot.sys><Beijing Rising Technology Co., Ltd.>
1`6a0p+Xl8G+R [RsNTGDI / RsNTGDI][Running/Boot Start]
-Rn1o#``1No   <\SystemRoot\system32\Drivers\RsNTGdi.sys><Beijing Rising Technology Co., Ltd.> s4q;^+H*PwKf^u!R
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Stopped/Manual Start]T;ZM(_1ej
  <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>@3o1[8f"C
[S150SX8 / S150SX8][Stopped/Boot Start]
q B H:Pc8]   <\SystemRoot\System32\BIRD\S150sx8.sys><Promise Technology, Inc.>
+rq2oADh s2Q8aX#R [Secdrv / Secdrv][Stopped/Manual Start]
l0gc4L6?|%vd   <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
*Wsw%?S3P%H [SI3112 / SI3112][Stopped/Boot Start]
hx$V|$j5IZ   <\SystemRoot\System32\BIRD\SI3112.sys><Silicon Image, Inc.>
#k3y C1`O/`w%g [SI3112R / SI3112R][Stopped/Boot Start]
f;~ xz h k   <\SystemRoot\System32\BIRD\SI3112r.sys><Silicon Image, Inc>
Hg.Op{.cK-H8` [SI3114 / SI3114][Stopped/Boot Start]j|u'S*p5`Ca
  <\SystemRoot\System32\BIRD\SI3114.sys><Silicon Image, Inc.> d'NOX(wcwPVg
[SI3114R / SI3114R][Stopped/Boot Start]
B R@&Lqs   <\SystemRoot\SYSTEM32\BIRD\SI3114R.sys><Silicon Image, Inc>0Gn~,U$S
[SI3114R5 / SI3114R5][Stopped/Boot Start][h+u!ZY qqX{
  <\SystemRoot\System32\BIRD\Si3114r5.sys><Silicon Image, Inc>`-Z x]1[tw ]h7i
[SI3124 / SI3124][Stopped/Boot Start]
yr#E4}.esz2` }|   <\SystemRoot\SYSTEM32\BIRD\SI3124.sys><Silicon Image, Inc.>
!\_Me2wN [SI3124R / SI3124R][Stopped/Boot Start]!gBYz`v,VTrb
  <\SystemRoot\SYSTEM32\BIRD\SI3124R.sys><Silicon Image, Inc>
!NG M7jtR3o!x*H'B [SI3124R5 / SI3124R5][Stopped/Boot Start]g9OZ_w+Jq2RW
  <\SystemRoot\SYSTEM32\BIRD\Si3124r5.sys><Silicon Image, Inc>.v^jE]
[SI3132 / SI3132][Stopped/Boot Start]HyQ5Q| ?FH
  <\SystemRoot\System32\BIRD\SI3132.sys><Silicon Image, Inc.>3]9a7q`:tir
[SI3132R5 / SI3132R5][Stopped/Boot Start]Y%D$o'T }&w
  <\SystemRoot\System32\BIRD\Si3132r5.sys><Silicon Image, Inc>
O4_ P%c{9T4s [SIS AGP Bus Filter / sisagp][Running/Boot Start]
r&G(k)b$e,LpC\   <\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>%k'^4q8`_v
[SISRAID / SISRAID][Stopped/Boot Start]|@e0Np"e"].Y7hc6W
  <\SystemRoot\System32\BIRD\SiSRaid.sys><Silicon Integrated Systems>
/TV/nOm:J-AT [SISRAID2 / SISRAID2][Stopped/Boot Start](_&}]"E9y"j^8U"|
  <\SystemRoot\System32\BIRD\SiSRaid2.sys><Silicon Integrated Systems Corp>
R-|nTq5}f-| [SISRAID4 / SISRAID4][Stopped/Boot Start]|Xr1l G@!R`;g
  <\SystemRoot\System32\BIRD\SiSRaid4.sys><Silicon Integrated Systems>E%e/j*U$j"a
[SPTRAK / SPTRAK][Stopped/Boot Start]
!w!H\6~R   <\SystemRoot\System32\BIRD\sptrak.sys><Promise Technology, Inc.>
fq&V"F` [ST8350 / ST8350][Stopped/Boot Start]8v"M'z3a:}
  <\SystemRoot\System32\BIRD\st8350.sys><Promise Technology, Inc.>wP2{&]$i9Jb$a,|^h
[symc810 / symc810][Stopped/Boot Start]-z&JZ#r}!j%V~F&a
  <\SystemRoot\System32\BIRD\symc810.sys><Symbios Logic Inc.>
s&`{c/}7Q E [symc8xx / symc8xx][Stopped/Boot Start]H!W+x ~z{|
  <\SystemRoot\System32\BIRD\symc8xx.sys><LSI Logic>DzC,Bx:xmq7\5E
[SYMMPI / SYMMPI][Stopped/Boot Start]CS-E:fv~o
  <\SystemRoot\System32\BIRD\symmpi.sys><LSI Logic>
S Q7wnr!R&uJ5w [sym_hi / sym_hi][Stopped/Boot Start]q4]!i4e}0wH DF
  <\SystemRoot\System32\BIRD\sym_hi.sys><LSI Logic>e3H0Fw#Pm R8C
[sym_u3 / sym_u3][Stopped/Boot Start] I;`m,uFq
  <\SystemRoot\System32\BIRD\sym_u3.sys><LSI Logic>h[u\z@9{$KO9M
[TRM3X5 / TRM3X5][Stopped/Boot Start]ZLW8HP(w A/F~/tR
  <\SystemRoot\System32\BIRD\trm3x5.sys><Tekram Technology Co., Ltd.>;I] drnP
[ULSATA / ULSATA][Stopped/Boot Start]
c|n r~L1P z }[ h   <\SystemRoot\System32\BIRD\ulsata.sys><Promise Technology, Inc.>v*dP:R9po a
[ULSATA2 / ULSATA2][Stopped/Boot Start]
R*Q yXI(i?-byK   <\SystemRoot\System32\BIRD\ulsata2.sys><Promise Technology, Inc.>
)gh IBgs%I^ [ULTIMA / ULTIMA][Stopped/Boot Start]
@vuq0hLE   <\SystemRoot\System32\BIRD\Ultima.sys><Aralion INC.>
a0A*C p4T/WQ/R [ULTIMARX / ULTIMARX][Stopped/Boot Start] A"m.H4\le
  <\SystemRoot\System32\BIRD\UltimaRX.sys><Aralion INC.>
m#I,KA{ [ultra / ultra][Stopped/Boot Start]
Hk8F(z ]K   <\SystemRoot\System32\BIRD\ultra.sys><Promise Technology, Inc.>:ESSu*kk-O
[VIAMRAID / VIAMRAID][Stopped/Boot Start]H#qj2s+O0_esG
  <\SystemRoot\System32\BIRD\viamraid.sys><VIA Technologies inc,.ltd>
.~J BszX/l%H [W2KADV / W2KADV][Stopped/Boot Start]3`+[CRm
  <\SystemRoot\System32\BIRD\w2kadv.sys><ConnectCom Solutions, Inc.>
hqu*lw^ [WD7296A / WD7296A][Stopped/Boot Start]-b%]\,Hz;Ub\5N){
  <\SystemRoot\System32\BIRD\wd7296a.sys><Western Digital Corporation>
:A1@3_ Y\&I f `?q}
O}kb1~1HSQ/L ==================================3d0^ g/S)V-b!B5F K
浏览器加载项
t,~4k2np [ThunderIEHelper Class]
&s.F2]#F@2h|%Y&f   {0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v14.dll, Thunder Networking Technologies,LTD>
-D'dN0^H&b^ ?p1| [JUJU猫]
%R(}M ^fw!{3K   {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <[url]http://www.jujumao.com[/url], N/A>0wxf0m&_2}
[QQ]S/F;Y_/g"`Db
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <C:\Program Files\Tencent\QQ\QQ.EXE, N/A>
1bKV\0v!hm] [Messenger]
;] rB2J!g lE   {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>U0Zn ck^,u#n~7D
[ThunderIEHelper Class]^0yN^ u/R
  {0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v14.dll, Thunder Networking Technologies,LTD>
4s;H?[.f*g&V [Shockwave Flash Object]
w{$s;i%IP*_   {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash.ocx, Macromedia, Inc.> @1H w0c[%y/_Q
[&使用迅雷下载]
*m;E[$T~1K G/j   <C:\Program Files\Thunder Network\Thunder\geturl.htm, N/A>e T eB~w
[&使用迅雷下载全部链接]
c$ddNRU`?   <C:\Program Files\Thunder Network\Thunder\getallurl.htm, N/A>
vt'j:A5sv:\3gV a [导出到 Microsoft Office Excel(&X)]
`4L$d1j5k9b^5{M   <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A> k$Xf3d7er3g'c
[添加到QQ自定义面板]
q3T/pz3wc6@%z.gN   <C:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
}&m&c q2p,C!M#\ [添加到QQ表情] `KJ}(F*es+\
  <C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
"we^;s+[l [用QQ彩信发送该图片]
AvZ| t)}   <C:\Program Files\Tencent\QQ\SendMMS.htm, N/A>9qu~4L0Ycss8Kf E
,IS*tO5}&H`x
==================================
m-UbT,?5V 正在运行的进程S8^u*Xn] E5K
[PID: 588 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
`5A5?N+bz@t0h3ZB [PID: 656 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
#P`+l3c;m [PID: 680 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]q*Yb#LL
    [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]
-mm~(jKN7o7u-r&h [PID: 728 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
4KW3["w D @s7{ [PID: 740 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]HkM2A-m2L
[PID: 896 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]8O:rc,nd fFV
[PID: 956 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]0g"Kj$U+| X
[PID: 1068 / SYSTEM][D:\瑞星.10\Rising\Rav\CCenter.exe]  [Beijing Rising Technology Co., Ltd., 20.0.0.28]
#T+xK a uxG'_ [PID: 1088 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
}5sx#fp)ge"c [PID: 1192 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
8O*?6u EmJ;tu [PID: 1396 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
+P)H-S$[8E_S [PID: 1508 / SYSTEM][D:\瑞星.10\RISING\RAV\ravmond.exe]  [Beijing Rising Technology Co., Ltd., 20.0.0.76])HF_P6z z8p6o V tFN
    [D:\瑞星.10\RISING\RAV\BWList.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.4]#i Jv#jxw
    [C:\WINDOWS\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
;~ t8{%]:UQbq [/D     [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
+C4?*Cfo)[c4Q@wZ Y     [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]Y6z2[kZ(IS9r
    [D:\瑞星.10\RISING\RAV\RSAPPMGR.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.0]YwqS S(li![
    [D:\瑞星.10\RISING\RAV\CfgDll.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.16]
FEZxj$v     [D:\瑞星.10\RISING\RAV\RsLog.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.34]W3|c B+?6J0s&i|
    [D:\瑞星.10\RISING\RAV\ProcCom.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]Dn5D+h/?gyp+U*Y:h
    [D:\瑞星.10\RISING\RAV\RsCommX2.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]
Uwee5j'{?2E%p@     [D:\瑞星.10\RISING\RAV\MonRule.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.29]
lr#yPq$l3C2O     [D:\瑞星.10\RISING\RAV\Hooksys.dll]  [Beijing Rising Technology Co., Ltd, 22, 0, 0, 9].pX8x*h F4z
    [D:\瑞星.10\RISING\RAV\HookReg.dll]  [Beijing Rising Technology Co., Ltd, 22, 0, 0, 4]
'G)C Vv#x[$}!n r:HB&h     [D:\瑞星.10\RISING\RAV\HookNtos.dll]  [Beijing Rising Technology Co., Ltd, 22, 0, 0, 2]!k;{3B{?.}.fl
    [D:\瑞星.10\RISING\RAV\rswalmon.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 22]
A+y+h,\a0Lw     [D:\瑞星.10\RISING\RAV\recomp.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 36]hYlI#P @/o(u
    [D:\瑞星.10\RISING\RAV\refs.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 17]
L(@.f*~ u9n|     [D:\瑞星.10\RISING\RAV\ffr.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 13]
!x,P V\-xCR     [D:\瑞星.10\Rising\Rav\RsStore.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.8]
6gc,T&C/_     [D:\瑞星.10\RISING\RAV\HookCont.dll]  [Beijing Rising Technology Co., Ltd, 22, 0, 0, 1]
wE]9pHz.K v     [D:\瑞星.10\RISING\RAV\extfile.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 29].A5GC{A EhW
    [D:\瑞星.10\Rising\Rav\fakescan.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.13]
4vL(|7^f ]     [D:\瑞星.10\Rising\Rav\Scanner.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.36]
zF}P5itW`t     [D:\瑞星.10\RISING\RAV\pearc.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 5]4l,f4gz%|-oHzM
    [D:\瑞星.10\RISING\RAV\viruslib.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 26]
j2^ r&y~zL [     [D:\瑞星.10\RISING\RAV\relibldr.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]
(@,Mq(?;^c#v b     [D:\瑞星.10\RISING\RAV\HookWeb.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.2]QGp `F
    [D:\瑞星.10\RISING\RAV\nvfile.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 6]4S_e._9bj{
    [D:\瑞星.10\RISING\RAV\scanexec.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 17]
(?^)]J4qK-?     [D:\瑞星.10\RISING\RAV\unexe.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 4]/PY%f O!SU+|i
    [D:\瑞星.10\RISING\RAV\scanex.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 68]
"n9e+UDAx d     [D:\瑞星.10\RISING\RAV\scanpack.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 9]8\0QY azQ&n"r
    [D:\瑞星.10\RISING\RAV\revm.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 8]
Zl|5mU8z*~zj)~E|     [D:\瑞星.10\RISING\RAV\urutils.dll]  [, 20, 0, 0, 6]y(oBa ?aHF
    [D:\瑞星.10\RISING\RAV\ur000.dat]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 18]
k&c:g\i|8Y"a$?,K e     [D:\瑞星.10\RISING\RAV\scansct.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 9]
%T/bYH H.w%I4qO     [D:\瑞星.10\RISING\RAV\scriptci.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]
)C'qo Fa!k e,z     [D:\瑞星.10\RISING\RAV\uroutine.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 26]'B$n fk[0Q
    [D:\瑞星.10\RISING\RAV\ur001.dat]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]uqCl7O _)n3G bH-n}o
    [D:\瑞星.10\RISING\RAV\extmail.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 9]:qc'G;e n.|,{Q[
[PID: 1648 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
z^:mH+m Zh\     [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]
(vR0o%P@m.y"x.VM [PID: 1888 / adminuser][C:\WINDOWS\RTHDCPL.EXE]  [Realtek Semiconductor Corp., 2.1.2.0]
$D/Sa5T8p WM     [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]S3S2C'g`5f:^ hQ0w+P
[PID: 1936 / adminuser][D:\瑞星.10\Rising\Rav\RavTask.exe]  [Beijing Rising Technology Co., Ltd., 20.0.0.23]
(DiJL\iWhi     [D:\瑞星.10\Rising\Rav\ProcCom.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]
A;b0~:ay,}.gB     [D:\瑞星.10\Rising\Rav\RsCommX2.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]#BseP+p jG"d,u
    [D:\瑞星.10\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]
qL;e RY-jQ J1}4h Ed     [D:\瑞星.10\Rising\Rav\RSAPPMGR.DLL]  [Beijing Rising Technology Co., Ltd., 20.0.0.0]
u5J'y"~ Z     [D:\瑞星.10\Rising\Rav\CfgDll.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.16]+Z+vT#J^
[PID: 1944 / adminuser][C:\Program Files\Rising\AntiSpyware\runiep.exe]  [Beijing Rising Technology Co., Ltd., 5.0.0.16]
z8B:A1X*o7?+A     [C:\Program Files\Rising\AntiSpyware\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
d h"QWf^p(xN     [C:\Program Files\Rising\AntiSpyware\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]!z r&gPXh*C
    [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]
%J;vNAD4|6D ? [PID: 1952 / adminuser][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
SMI[D:rk     [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]
L6nDa nc? [PID: 1596 / SYSTEM][D:\瑞星.10\RISING\RAV\RavStub.exe]  [Beijing Rising Technology Co., Ltd., 20.0.0.9]2\ ]7ai^p!b u
    [D:\瑞星.10\RISING\RAV\ProcCom.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]$H1HxU6Mp
    [D:\瑞星.10\RISING\RAV\RsCommX2.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]pBC$Cr%b
    [D:\瑞星.10\RISING\RAV\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]
Oj1mEcL4i [PID: 1788 / adminuser][D:\瑞星.10\Rising\Rav\Ravmon.exe]  [Beijing Rising Technology Co., Ltd., 20.0.01.19]
YxDtH0P R)|     [C:\WINDOWS\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]7Q6c.i?-W XM
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
JF]i&r+Y     [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0] {J1j5eb cc%|
    [D:\瑞星.10\Rising\Rav\ProcCom.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]
w kW)p1E E_n     [D:\瑞星.10\Rising\Rav\RsCommX2.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]+K `_ X{ ?? |#ZJD
    [D:\瑞星.10\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]
*U\ ~!C$xB$f     [D:\瑞星.10\Rising\Rav\recomp.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 36]dw EW+R
    [D:\瑞星.10\Rising\Rav\refs.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 17]?)T)C3L F0F g
    [D:\瑞星.10\Rising\Rav\viruslib.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 26]4iT$t P:t+Ew;u
    [D:\瑞星.10\Rising\Rav\relibldr.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]rk8{/G+r a%A
    [D:\瑞星.10\Rising\Rav\RSAPPMGR.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.0]'A*FIb;P'G-X1o8c
    [D:\瑞星.10\Rising\Rav\CfgDll.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.16]
Tl%ds W,o$Yd     [D:\瑞星.10\Rising\Rav\MonRule.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.29]e6{ yY^)YR9e{*t
    [D:\瑞星.10\Rising\Rav\PngDll.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 4]2x!AHC%u Ic2i#C
    [D:\瑞星.10\Rising\Rav\Rsguilib.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 88]
ZW7`5FYS1p(At;g     [D:\瑞星.10\Rising\Rav\RsXML.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 0]+R+}k9nba!I/x
[PID: 808 / SYSTEM][C:\WINDOWS\system32\nvsvc32.exe]  [NVIDIA Corporation, 6.14.10.9163]
9e Dn`F6ac8o q     [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]
FB@K#r%b2i3T     [C:\WINDOWS\system32\nvapi.dll]  [N/A, ]
sZ&] O*cT.b'gjh [PID: 996 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]+bj/J p1n M5E$_
    [C:\WINDOWS\System32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]
F vAK4op:S1xe [PID: 1180 / adminuser][C:\WINDOWS\system32\wscntfy.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
5W)HB8Fb%T X#Krg     [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]
D)nWW0J [PID: 2288 / adminuser][C:\Program Files\racer-ccn-racerpc-ha\racer.exe]  [Putian Runway, 3,3,130,306]J8@'I:~?8Tz
    [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]Q6I:\1{WT/}QX
    [C:\Program Files\racer-ccn-racerpc-ha\rwxre.dll]  [Putian Runway, 3,3,130,306]
;@Ey2is RKk     [C:\Program Files\racer-ccn-racerpc-ha\nspr4.dll]  [Netscape Communications Corporation, 4.6.1].T-I#Xs\E
    [C:\Program Files\racer-ccn-racerpc-ha\xpcom_core.dll]  [Mozilla Foundation, Personal]*zt#oU:Va0m
    [C:\Program Files\racer-ccn-racerpc-ha\plc4.dll]  [Netscape Communications Corporation, 4.6.1]
*?-Hrs'h R     [C:\Program Files\racer-ccn-racerpc-ha\plds4.dll]  [Netscape Communications Corporation, 4.6.1]
5Rj&R Q#\!u,D Gf     [C:\Program Files\racer-ccn-racerpc-ha\nss3.dll]  [Netscape Communications Corporation, 3.10.2]
M6@'b2pT}     [C:\Program Files\racer-ccn-racerpc-ha\softokn3.dll]  [Netscape Communications Corporation, 3.10.2] Pe] @,X k
    [C:\Program Files\racer-ccn-racerpc-ha\js3250.dll]  [Netscape Communications Corporation, 4.0]2Y;]ctn o8T.Ti
    [C:\Program Files\racer-ccn-racerpc-ha\gkgfx.dll]  [Mozilla Foundation, Personal]
] S:W l"}RK9h5v/w     [C:\Program Files\racer-ccn-racerpc-ha\xpcom_compat.dll]  [Mozilla Foundation, Personal]
j IR*syf6Kt     [C:\Program Files\racer-ccn-racerpc-ha\smime3.dll]  [Netscape Communications Corporation, 3.10.2]
]gu[`)J;ws     [C:\Program Files\racer-ccn-racerpc-ha\ssl3.dll]  [Netscape Communications Corporation, 3.10.2]
R+WN ySh     [C:\Program Files\racer-ccn-racerpc-ha\components\jar50.dll]  [Mozilla Foundation, Personal]
I"Uxb:l)ma     [C:\Program Files\racer-ccn-racerpc-ha\components\racer_base_comp.dll]  [Putian Runway, 3,3,130,306]
(P)b.xA8mQ|     [C:\Program Files\racer-ccn-racerpc-ha\racer_base.dll]  [Putian Runway, 3,3,130,306]Xo T.p][ WOdc
    [C:\Program Files\racer-ccn-racerpc-ha\kbdhook.dll]  [Putian Runway, 3,3,130,306] e$u c`;bCu
    [C:\Program Files\racer-ccn-racerpc-ha\components\gklayout.dll]  [Mozilla Foundation, Personal]#K!PsPaR)X
    [C:\Program Files\racer-ccn-racerpc-ha\nssckbi.dll]  [Netscape Communications Corporation, 1.53]
7s bp2`9b `     [C:\Program Files\racer-ccn-racerpc-ha\components\racer_ad_comp.dll]  [Putian Runway, 3,3,130,306] { H_3FB"_%t Jk
    [C:\Program Files\racer-ccn-racerpc-ha\components\racer_access_dhcpplus.dll]  [Putian Runway, 3,3,130,325] Hn)z.KDw3b4n&IK_
    [C:\Program Files\racer-ccn-racerpc-ha\dhcpplus.dll]  [北京润汇科技有限公司, 3, 0, 0, 45] LMCC.dI5\*F4bG
    [C:\Program Files\racer-ccn-racerpc-ha\components\racer_nss4_comp.dll]  [Putian Runway, 3,3,130,306]n;k#s%Bs d:m f
    [C:\Program Files\racer-ccn-racerpc-ha\nss4.dll]  [北京润汇科技有限公司, 1, 0, 0, 4],K jQ2g8y
    [C:\Program Files\racer-ccn-racerpc-ha\wpcap.dll]  [CACE Technologies, 3, 2, 0, 29]
*g$F(qL'j E8D     [C:\Program Files\racer-ccn-racerpc-ha\packet.dll]  [CACE Technologies, 3, 2, 0, 29]
u.k2V.seq3t-RwZD     [C:\Program Files\racer-ccn-racerpc-ha\WanPacket.dll]  [CACE Technologies, 3, 2, 0, 29]1`xC2\)A'T8j}l
    [C:\Program Files\racer-ccn-racerpc-ha\plugins\NPSWF32.dll]  [, ]
1`Y*Ym'DA'w [PID: 2916 / adminuser][C:\Program Files\TTPlayer\TTPlayer.exe]  [, 4, 6, 7, 0] Hea'Pj9F
    [C:\Program Files\TTPlayer\ttpcomm.dll]  [N/A, ],H6dL,F,T&O
    [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]z5O bzB!@9s
    [C:\Program Files\TTPlayer\ttpres.dll]  [, 4, 6, 7, 0]
uBYF8Z%|)Y[     [C:\Program Files\TTPlayer\msdmo.dll]  [Microsoft Corporation, 6.03.01.0400]
)@%mJ+NE [PID: 3264 / adminuser][C:\Program Files\racer-ccn-racerpc-ha\RacerKp.exe]  [北京润汇科技有限公司, 1, 0, 0, 1]
6j] d:}S     [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18]
#@R7i R0XUz [PID: 2248 / adminuser][C:\WINDOWS\explorer.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]r }r)rLc?:au'g
    [C:\WINDOWS\system32\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 18] ?;NP6X w6^
    [C:\WINDOWS\system32\xunleibho_v14.dll]  [Thunder Networking Technologies,LTD, 4, 6, 0, 62]
bkRB&C#[Y_ G     [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Technology Co., Ltd., 20.0.0.17](`t/F0rN-XI2u
    [C:\WINDOWS\system32\nvcpl.dll]  [NVIDIA Corporation, 6.14.10.9163]"\Aq RT
    [C:\WINDOWS\system32\NVRSZHC.DLL]  [NVIDIA Corporation, 6.14.10.9163]2s]d#B6dKYYw
    [C:\WINDOWS\system32\nvapi.dll]  [N/A, ] gSXdGu]#}&i| D
    [C:\WINDOWS\system32\nvshell.dll]  [, ]+eTR)nT#a5z
[PID: 3560 / adminuser][E:\系统清理\sreng980\SREngLdr.EXE]  [Smallfrogs Studio, 2.6.8.980] X1MG't Ch;L
[PID: 3572 / adminuser][E:\系统清理\sreng980\SRE19362787.EXE]  [Smallfrogs Studio, 2.6.8.980])s5h,}8e%hL Q"mqxap
[PID: 2944 / adminuser][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]2S [p.Kn:zx$m
    [C:\WINDOWS\system32\xunleibho_v14.dll]  [Thunder Networking Technologies,LTD, 4, 6, 0, 62]PCC+l)yA S
    [D:\瑞星.10\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]
PK4e#}?-QD r&h     [C:\WINDOWS\system32\Macromed\Flash\Flash.ocx]  [Macromedia, Inc., 6,0,84,0]
;\ v|aj$F2n 2e0}%](MJ)}
==================================
r4e Cs IaH 文件关联)M6D)i`)Pzu"_
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
SZ} Q*E5W .EXE  OK. ["%1" %*]:e*k2RplVG1} r'o
.COM  OK. ["%1" %*]
Q7r d%]X .PIF  OK. ["%1" %*]
hlZI}'gY .REG  OK. [regedit.exe "%1"]
l9_-c,@e.e Bt q{ .BAT  OK. ["%1" %*]
{}m8l5K Nw4eY9}-K"v .SCR  OK. ["%1" /S]
II4G$I.]*\*g .CHM  OK. ["C:\WINDOWS\hh.exe" %1]
7J#|e ~3z1o .HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1] P9[a ~Tq
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] N$Que4Om8F.T
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]S+@&d(W5dq4w4q
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]H-e"~.z^2J9X
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
,Tg | H[T.o@ .LNK  OK. [{00021401-0000-0000-C000-000000000046}]
KKuX ]-Bx/f eT:Z{-i6RYyL [
==================================
$~`nb$w4HM Winsock 提供者
/Jjp4v(QO8C N/AJ_"fNBr
-_Y4U6f&?3]\5Sp
=================================={6D4w&o1y-o
Autorun.inf
4Iw;pX6mZ%^g N/AP.X']#u%X nWv
%u lU:Q R$Lp,t
==================================EH9Y UgPn
HOSTS 文件%q`+TDO'O%d T
127.0.0.1       localhost.X? C)~%mE

At:o}ju _-Q@ ================================== [)mpI6W#O9d/R
进程特权扫描
5L7oyFX*sa D,HE 特殊特权被允许: SeLoadDriverPrivilege [PID = 1944, C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE]S9H6a'p%Izaq
特殊特权被允许: SeLoadDriverPrivilege [PID = 2288, C:\PROGRAM FILES\RACER-CCN-RACERPC-HA\RACER.EXE]
#^6dc,~M:u/V;p)z#~ 特殊特权被允许: SeLoadDriverPrivilege [PID = 2916, C:\PROGRAM FILES\TTPLAYER\TTPLAYER.EXE]H!HC&c9S+k0rP
特殊特权被允许: SeLoadDriverPrivilege [PID = 3264, C:\PROGRAM FILES\RACER-CCN-RACERPC-HA\RACERKP.EXE]
)bhn;Lv3d 特殊特权被允许: SeDebugPrivilege [PID = 3560, E:\系统清理\SRENG980\SRENGLDR.EXE]
V[#U4B8p6|7e3B"M 特殊特权被允许: SeLoadDriverPrivilege [PID = 3560, E:\系统清理\SRENG980\SRENGLDR.EXE]
-DL"ZRXh
W/H k#w$N ==================================
(KJ4xF,^la*B K6@A F API HOOKe S"d;C([2ezY
N/A
Ne}cBV
t0|{7[&jv ==================================
O1TXa$_#aN 隐藏进程
bQ&n&G XXk N/AN-QhRo@px

U vU)_ \X5QJ ==================================&}%Cx:N9e2c+r
RQ`xeWP?*k^l
4~U5X3{N~3M
[/CODE]

network_cao 发表于 2008-6-6 19:40

皓哥用的狂飙III;P ;P

不是凡人 发表于 2008-6-6 22:27

软件: 检查插件,检查系统时间
z8K9g-o7M M-y f qr
"Z/N0AX i0u0hTYo9i 硬件:用“效率源”工具检查硬盘有无坏道,内存是否冲突、显卡是否有毛病WSE raZHR

%f*@ dK;{ 红桃大哥来帮忙看下这个扫描日志:handshake
`p M&^"n)p @R^
SKsH(L [[i] 本帖最后由 不是凡人 于 2008-6-6 22:30 编辑 [/i]]

爱丽舍 发表于 2008-6-7 10:55

[P4P Service / P4P Service][Stopped/Manual Start]
9F TN.T'N'Hq   <2 - 系统找不到指定的文件。.@,U~uVV[^k
><(File is missing)>$~(C}0dq(D\F
[Windows User Mode Driver Framework / UMWdf][Stopped/Auto Start]
(Z#LJ#J`*N H   <C:\WINDOWS\system32\wdfmgr.exe><(File is missing)> bA#{1?4M'c @
第一个服务删除,下面这个我看了看自己机器的,没这个服务,建议也删除;Y%{4z bDg!OV
}%| V1T,a6}/w3S9P
其他的也看不出什么特别的,或试试把瑞星关下运行游戏如何?uDv}`9e
再就是看驱动太多

页: [1]

Powered by Discuz! Archiver 7.0.0  © 2001-2009 Comsenz Inc.