您现在的位置:首页病毒救援 > 请帮我看下SREngLOG.log > 正文

请帮我看下SREngLOG.log

2010/01/21 17:56 作者:再也不喝了 点击:535 评论:2
[CODE]
2010-01-21,17:38:53
System Repair Engineer 2.8.2.1321
Smallfrogs (http://www.KZTechs.com)
Windows XP Professional Service Pack 3 (Build 2600) - 管理权限用户 - 完整功能
以下内容被选中:
所有的启动项目(包括注册表、启动文件夹、服务等)
浏览器加载项
正在运行的进程(包括进程模块信息)
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
进程特权扫描
计划任务
Windows 安全更新检查
API HOOK
隐藏进程

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
[Microsoft Corporation]
[(Verified)SHANGHAI ZHONGYUAN NETWORKS LIMITED]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
[Realtek Semiconductor Corp.]
[AMD]
<"C:\TWscreen\TWscreen.exe"> [TUWEN]
<"C:\Program Files\Rising\RFW\RsTray.exe" -system> [(Verified)Beijing Rising Information Technology Corporation Limited]
<"C:\Program Files\Rising\Rav\RsTray.exe" -system> [(Verified)Beijing Rising Information Technology Corporation Limited]
[Realtek Semiconductor Corp.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
[Microsoft Corporation]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{AEB6717E-7E19-11d0-97EE-00C04FD91972}> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<%SystemRoot%\system32\SHELL32.dll> [Microsoft Corporation]
<%SystemRoot%\system32\SHELL32.dll> [Microsoft Corporation]
<%SystemRoot%\system32\webcheck.dll> [Microsoft Corporation]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
<%SystemRoot%\System32\dimsntfy.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [Microsoft Corporation]
<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
<%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
<浏览器自定义组件> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
[]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
[]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
[]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
[Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
<%SystemRoot%\system32\ie4uinit.exe> [Microsoft Corporation]
==================================
启动文件夹
N/A
==================================
服务
[Alerter / Alerter][Stopped/Disabled]
%SystemRoot%\system32\alrsvc.dll>
[Application Layer Gateway Service / ALG][Running/Manual Start]

[Application Management / AppMgmt][Stopped/Manual Start]
%SystemRoot%\System32\appmgmts.dll>
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]

[Windows Audio / AudioSrv][Running/Auto Start]
%SystemRoot%\System32\audiosrv.dll>
[Background Intelligent Transfer Service / BITS][Stopped/Manual Start]
C:\WINDOWS\system32\qmgr.dll>
[Computer Browser / Browser][Running/Auto Start]
%SystemRoot%\System32\browser.dll>
[Indexing Service / CiSvc][Stopped/Disabled]

[ClipBook / ClipSrv][Stopped/Disabled]

[COM+ System Application / COMSysApp][Stopped/Manual Start]

[Cryptographic Services / CryptSvc][Running/Auto Start]
%SystemRoot%\System32\cryptsvc.dll>
[DCOM Server Process Launcher / DcomLaunch][Running/Auto Start]
%SystemRoot%\system32\rpcss.dll>
[DHCP Client / Dhcp][Running/Auto Start]
%SystemRoot%\System32\dhcpcsvc.dll>
[Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]

[Logical Disk Manager / dmserver][Running/Auto Start]
%SystemRoot%\System32\dmserver.dll>
[DNS Client / Dnscache][Running/Auto Start]
%SystemRoot%\System32\dnsrslvr.dll>
[Wired AutoConfig / Dot3svc][Stopped/Manual Start]
%SystemRoot%\System32\dot3svc.dll>
[Extensible Authentication Protocol Service / EapHost][Stopped/Manual Start]
%SystemRoot%\System32\eapsvc.dll>
[Error Reporting Service / ERSvc][Running/Auto Start]
%SystemRoot%\System32\ersvc.dll>
[Event Log / Eventlog][Running/Auto Start]

[COM+ Event System / EventSystem][Running/Manual Start]
C:\WINDOWS\system32\es.dll>
[Fast User Switching Compatibility / FastUserSwitchingCompatibility][Running/Manual Start]
%SystemRoot%\System32\shsvcs.dll>
[Help and Support / helpsvc][Stopped/Disabled]
%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll>
[HID Input Service / HidServ][Stopped/Auto Start]
%SystemRoot%\System32\hidserv.dll>
[Health Key and Certificate Management Service / hkmsvc][Stopped/Manual Start]
%SystemRoot%\System32\kmsvc.dll>
[HTTP SSL / HTTPFilter][Stopped/Manual Start]
%SystemRoot%\System32\w3ssl.dll>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
<"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe">
[IMAPI CD-Burning COM Service / ImapiService][Stopped/Manual Start]

[Kingsoft Rescue Service / Kingsoft Rescue Service][Running/Auto Start]

[Kingsoft Antivirus XEngine Service(Beta) / KxEServBeta][Running/Auto Start]

[Server / LanmanServer][Running/Auto Start]
%SystemRoot%\System32\srvsvc.dll>
[Workstation / lanmanworkstation][Running/Auto Start]
%SystemRoot%\System32\wkssvc.dll>
[TCP/IP NetBIOS Helper / LmHosts][Running/Auto Start]
%SystemRoot%\System32\lmhsvc.dll>
[Messenger / Messenger][Stopped/Disabled]
%SystemRoot%\System32\msgsvc.dll>
[NetMeeting Remote Desktop Sharing / mnmsrvc][Stopped/Manual Start]

[Distributed Transaction Coordinator / MSDTC][Stopped/Manual Start]

[Windows Installer / MSIServer][Stopped/Manual Start]

[Network Access Protection Agent / napagent][Stopped/Manual Start]
%SystemRoot%\System32\qagentrt.dll>
[Network DDE / NetDDE][Stopped/Disabled]

[Network DDE DSDM / NetDDEdsdm][Stopped/Disabled]

[Net Logon / Netlogon][Stopped/Manual Start]

[Network Connections / Netman][Running/Manual Start]
%SystemRoot%\System32\netman.dll>
[Network Location Awareness (NLA) / Nla][Running/Manual Start]
%SystemRoot%\System32\mswsock.dll>
[NT LM Security Support Provider / NtLmSsp][Stopped/Manual Start]

[Removable Storage / NtmsSvc][Stopped/Manual Start]
%SystemRoot%\system32\ntmssvc.dll>
[Plug and Play / PlugPlay][Running/Auto Start]

[IPSEC Services / PolicyAgent][Running/Auto Start]

[Protected Storage / ProtectedStorage][Running/Auto Start]

[Remote Access Auto Connection Manager / RasAuto][Stopped/Manual Start]
%SystemRoot%\System32\rasauto.dll>
[Remote Access Connection Manager / RasMan][Running/Manual Start]
%SystemRoot%\System32\rasmans.dll>
[Remote Desktop Help Session Manager / RDSessMgr][Stopped/Manual Start]

[Routing and Remote Access / RemoteAccess][Stopped/Disabled]
%SystemRoot%\System32\mprdim.dll>
[Remote Registry / RemoteRegistry][Stopped/Disabled]
%SystemRoot%\system32\regsvc.dll>
[Remote Procedure Call (RPC) Locator / RpcLocator][Stopped/Manual Start]

[Remote Procedure Call (RPC) / RpcSs][Running/Auto Start]
%SystemRoot%\system32\rpcss.dll>
[Rav Service / RsRavMon][Running/Auto Start]
<"C:\Program Files\Rising\Rav\RavMonD.exe">
[RFW Service / RsRFWMon][Running/Auto Start]
<"C:\Program Files\Rising\RFW\RavMonD.exe">
[QoS RSVP / RSVP][Stopped/Manual Start]

[Security Accounts Manager / SamSs][Running/Auto Start]

[Smart Card / SCardSvr][Stopped/Manual Start]

[Task Scheduler / Schedule][Stopped/Disabled]
%SystemRoot%\system32\schedsvc.dll>
[Secondary Logon / seclogon][Running/Auto Start]
%SystemRoot%\System32\seclogon.dll>
[System Event Notification / SENS][Running/Auto Start]
%SystemRoot%\system32\sens.dll>
[Windows Firewall/Internet Connection Sharing (ICS) / SharedAccess][Running/Auto Start]
%SystemRoot%\System32\ipnathlp.dll>
[Shell Hardware Detection / ShellHWDetection][Running/Auto Start]
%SystemRoot%\System32\shsvcs.dll>
[Print Spooler / Spooler][Running/Auto Start]

[System Restore Service / srservice][Running/Auto Start]
C:\WINDOWS\system32\srsvc.dll>
[SSDP Discovery Service / SSDPSRV][Running/Manual Start]
%SystemRoot%\System32\ssdpsrv.dll>
[Windows Image Acquisition (WIA) / stisvc][Stopped/Manual Start]
%SystemRoot%\system32\wiaservc.dll>
[MS Software Shadow Copy Provider / SwPrv][Stopped/Manual Start]

[Performance Logs and Alerts / SysmonLog][Stopped/Manual Start]

[Telephony / TapiSrv][Running/Manual Start]
%SystemRoot%\System32\tapisrv.dll>
[Terminal Services / TermService][Running/Manual Start]
%SystemRoot%\System32\termsrv.dll>
[Themes / Themes][Running/Auto Start]
%SystemRoot%\System32\shsvcs.dll>
[Telnet / TlntSvr][Stopped/Disabled]

[Distributed Link Tracking Client / TrkWks][Running/Auto Start]
%SystemRoot%\system32\trkwks.dll>
[Windows User Mode Driver Framework / UMWdf][Running/Auto Start]

[Universal Plug and Play Device Host / upnphost][Stopped/Manual Start]
%SystemRoot%\System32\upnphost.dll>
[Uninterruptible Power Supply / UPS][Stopped/Manual Start]

[Volume Shadow Copy / VSS][Stopped/Manual Start]

[Windows Time / W32Time][Running/Auto Start]
C:\WINDOWS\system32\w32time.dll>
[WatchData ccb V3.2 / WDMonitorCCB][Running/Auto Start]

[WebClient / WebClient][Running/Auto Start]
%SystemRoot%\System32\webclnt.dll>
[Windows Management Instrumentation / winmgmt][Running/Auto Start]
%SystemRoot%\system32\wbem\WMIsvc.dll>
[Portable Media Serial Number Service / WmdmPmSN][Stopped/Manual Start]
C:\WINDOWS\system32\MsPMSNSv.dll>
[Windows Management Instrumentation Driver Extensions / Wmi][Stopped/Manual Start]
%SystemRoot%\System32\advapi32.dll>
[WMI Performance Adapter / WmiApSrv][Stopped/Manual Start]

[Security Center / wscsvc][Running/Auto Start]
%SYSTEMROOT%\system32\wscsvc.dll>
[Automatic Updates / wuauserv][Running/Auto Start]
C:\WINDOWS\system32\wuauserv.dll>
[Wireless Zero Configuration / WZCSVC][Running/Auto Start]
%SystemRoot%\System32\wzcsvc.dll>
[Network Provisioning Service / xmlprov][Stopped/Manual Start]
%SystemRoot%\System32\xmlprov.dll>
[主动防御 / ZhuDongFangYu][Stopped/Manual Start]
<"C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe"><360.cn>
==================================
驱动程序
[360SelfProtection / 360SelfProtection][Running/System Start]
<360安全中心>
[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc][Stopped/Manual Start]

[Microsoft ACPI Driver / ACPI][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\ACPI.sys>
[Microsoft Kernel Acoustic Echo Canceller / aec][Stopped/Manual Start]

[AFD / AFD][Running/System Start]
<\SystemRoot\System32\drivers\afd.sys>
[Intel AGP Bus Filter / agp440][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\agp440.sys>
[AmdK8 Compatible Device / AmdK8][Stopped/Manual Start]

[AMD Low Level Device Driver / AmdLLD][Running/Manual Start]

[RAS Asynchronous Media Driver / AsyncMac][Stopped/Manual Start]

[标准 IDE/ESDI 硬盘控制器 / atapi][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\atapi.sys>
[ati2mtag / ati2mtag][Running/Manual Start]

[ATM ARP Client Protocol / Atmarpc][Stopped/Manual Start]

[音频存根驱动程序 / audstub][Running/Manual Start]

[BC / BC][Running/Boot Start]
<\SystemRoot\system32\Drivers\BC.sys>
[BFSDRV / BFSDRV][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\bfsdrv.sys><360安全中心>
[bootsafe / bootsafe][Running/Boot Start]
<\SystemRoot\system32\Drivers\bootsafe.sys><>
[BREGDRV / BREGDRV][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\bregdrv.sys><360安全中心>
[CD-ROM Driver / Cdrom][Running/System Start]

[磁盘驱动器 / Disk][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\disk.sys>
[Dritek Keyboard Filter Driver / DKbFltr][Running/Manual Start]

[dmboot / dmboot][Stopped/Disabled]

[Logical Disk Manager Driver / dmio][Running/Boot Start]
<\SystemRoot\System32\drivers\dmio.sys>
[dmload / dmload][Running/Boot Start]
<\SystemRoot\System32\drivers\dmload.sys>
[Microsoft Kernel DLS Syntheiszer / DMusic][Stopped/Manual Start]

[Microsoft Kernel DRM Audio Descrambler / drmkaud][Stopped/Manual Start]

[EfiSystemMon / EfiMon][Running/System Start]
<奇虎网>
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS][Stopped/Manual Start]

[FltMgr / FltMgr][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\fltMgr.sys>
[FsVga / FsVga][Running/System Start]

[Volume Manager Driver / Ftdisk][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\ftdisk.sys>
[Generic Packet Classifier / Gpc][Running/Manual Start]

[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]

[Microsoft HID Class Driver / hidusb][Running/Manual Start]

[hookcont / hookcont][Running/System Start]

[HookPort / HookPort][Running/Boot Start]
<\SystemRoot\System32\Drivers\Hookport.sys><360安全中心>
[hooksys / hooksys][Running/System Start]

[HTTP / HTTP][Running/Manual Start]

[i8042 键盘及 PS/2 鼠标端口驱动程序 / i8042prt][Running/System Start]

[CD 烧制筛选驱动器 / Imapi][Stopped/System Start]

[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]

[IPv6 Windows Firewall Driver / Ip6Fw][Stopped/Manual Start]

[IP Traffic Filter Driver / IpFilterDriver][Stopped/Manual Start]

[IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start]

[IP Network Address Translator / IpNat][Running/Manual Start]

[IPSEC driver / IPSec][Running/System Start]

[IR Enumerator Service / IRENUM][Stopped/Manual Start]

[PnP ISA/EISA Bus Driver / isapnp][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\isapnp.sys>
[Keyboard Class Driver / Kbdclass][Running/System Start]

[Keyboard HID Driver / kbdhid][Stopped/System Start]

[Microsoft Kernel Wave Audio Mixer / kmixer][Running/Manual Start]

[Mouse Class Driver / Mouclass][Running/System Start]

[Mouse HID Driver / mouhid][Running/Manual Start]

[WebDav Client Redirector / MRxDAV][Running/Manual Start]

[MRxSmb / MRxSmb][Running/System Start]

[Microsoft Streaming Service Proxy / MSKSSRV][Stopped/Manual Start]

[Microsoft Streaming Clock Proxy / MSPCLOCK][Stopped/Manual Start]

[Microsoft Streaming Quality Manager Proxy / MSPQM][Stopped/Manual Start]

[Microsoft System Management BIOS Driver / mssmbios][Running/Manual Start]

[Remote Access NDIS TAPI Driver / NdisTapi][Running/Manual Start]

[NDIS 用户模式 I/O 协议 / Ndisuio][Running/Manual Start]

[Remote Access NDIS WAN Driver / NdisWan][Running/Manual Start]

[NetBIOS Interface / NetBIOS][Running/System Start]

[NetBios over Tcpip / NetBT][Running/System Start]

[nv / nv][Stopped/Manual Start]

[IPX Traffic Filter Driver / NwlnkFlt][Stopped/Manual Start]

[IPX Traffic Forwarder Driver / NwlnkFwd][Stopped/Manual Start]

[Intel PentiumIII Processor Driver / P3][Stopped/System Start]

[Parallel port driver / Parport][Running/Manual Start]

[PCI Bus Driver / PCI][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\pci.sys>
[PCIIde / PCIIde][Running/Boot Start]
<\SystemRoot\System32\drivers\pciide.sys>
[WAN Miniport (PPTP) / PptpMiniport][Running/Manual Start]

[处理器驱动程序 / Processor][Running/System Start]

[QoS Packet Scheduler / PSched][Running/Manual Start]

[Direct Parallel Link Driver / Ptilink][Running/Manual Start]

[Quantum DeepScanner Servers / qutmdserv][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\drivers\qutmdrv.sys><360.cn>
[qutmipc / qutmipc][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\qutmipc.sys><360安全中心>
[Remote Access Auto Connection Driver / RasAcd][Running/System Start]

[WAN Miniport (L2TP) / Rasl2tp][Running/Manual Start]

[远程访问 PPPOE 驱动程序 / RasPppoe][Running/Manual Start]

[Direct Parallel / Raspti][Running/Manual Start]

[Rdbss / Rdbss][Running/System Start]

[RDPCDD / RDPCDD][Running/System Start]

[Terminal Server Device Redirector Driver / rdpdr][Running/Manual Start]

[Digital CD Audio Playback Filter Driver / redbook][Running/System Start]

[Rising RfwARP Driver / RFWARP][Running/Auto Start]

[Rising RfwBase Driver / RfwBase9][Running/Manual Start]

[rfwtdi / rfwtdi][Running/Auto Start]
<\??\C:\Program Files\Rising\RFW\rfwtdi.sys>
[rsassist / rsassist][Running/Auto Start]

[rsfwdrv / rsfwdrv][Running/System Start]
<\??\C:\Program Files\Rising\RFW\rsfwdrv.sys>
[RsNTGDI / RsNTGDI][Running/Boot Start]
<\SystemRoot\system32\Drivers\RsNTGdi.sys>
[Secdrv / Secdrv][Stopped/Manual Start]

[Serenum Filter Driver / Serenum][Running/Manual Start]

[Serial port driver / Serial][Running/System Start]

[Microsoft Kernel Audio Splitter / splitter][Stopped/Manual Start]

[System Restore Filter Driver / sr][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\sr.sys>
[Srv / Srv][Running/Manual Start]

[Software Bus Driver / swenum][Running/Manual Start]

[Microsoft Kernel GS Wavetable Synthesizer / swmidi][Stopped/Manual Start]

[Microsoft Kernel System Audio Device / sysaudio][Running/Manual Start]

[TCP/IP Protocol Driver / Tcpip][Running/System Start]

[Terminal Device Driver / TermDD][Running/System Start]

[Microcode Update Driver / Update][Running/Manual Start]

[Microsoft USB Generic Parent Driver / usbccgp][Stopped/Manual Start]
<\SystemRoot\system32\drivers\usbccgp.sys>
[Microsoft USB 2.0 Enhanced Host Controller Miniport Driver / usbehci][Running/Manual Start]

[USB2 Enabled Hub / usbhub][Running/Manual Start]

[Microsoft USB Open Host Controller Miniport Driver / usbohci][Running/Manual Start]

[Microsoft USB PRINTER Class / usbprint][Running/Manual Start]

[USB 大容量存储设备 / USBSTOR][Running/Manual Start]

[Microsoft USB Universal Host Controller Miniport Driver / usbuhci][Running/Boot Start]
<\SystemRoot\system32\drivers\usbuhci.sys>
[VgaSave / VgaSave][Running/System Start]
<\SystemRoot\System32\drivers\vga.sys>
[Remote Access IP ARP Driver / Wanarp][Running/Manual Start]

[Microsoft WINMM WDM Audio Compatibility Driver / wdmaud][Running/Manual Start]

[WpdUsb / WpdUsb][Stopped/Manual Start]

[NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwxp][Running/Manual Start]

==================================
浏览器加载项
[ThunderAtOnce Class]
{01443AEC-0FD1-40fd-9C87-E93D1494C233}
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283}
[SafeMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D}
[]
{e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, N/A>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000}
[ThunderAtOnce Class]
{01443AEC-0FD1-40FD-9C87-E93D1494C233}
[Player Class]
{11F2A418-94B2-4e16-9B0C-B00C0435F903}
[InstallHelper Class]
{1DABF8D5-8430-4985-9B7F-A30E53D709B3}
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95}
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A}
[]
{433FF083-4046-488D-B22F-1782BA0A284C} <, >
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555}
[Thunder Agent Class]
{485463B7-8FB2-4B3B-B29B-8B919B0EACCE}
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A>
[QQLiveFile Class]
{6B232760-90F1-41c3-9902-C8552C1D8A72}
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6}
[Active Desktop Mover]
{72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[]
{78ABDC59-D8E7-44D3-9A76-9A0918C52B4A} <, >
[360SafeLive]
{87515F61-A66C-4319-A0E0-D416CB8059E3}
[Microsoft Web 浏览器]
{8856F961-340A-11D0-A96B-00C04FD705A2}
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283}
[]
{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} <, >
[]
{A849E2DF-E0E3-4EB7-ACF4-403807D90000} <, >
[Microsoft Scriptlet Component]
{AE24FDAE-03C6-11D1-8B76-0080C744F389}
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[SwxcryptSimple Control]
{B68A6EED-9D99-4565-BAFA-289CEAC0FB9C}
[SafeMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D}
[AUDIO__MP3 Moniker Class]
{CD3AFA76-B84F-48F0-9393-7EDC34128127}
[AUDIO__WAV Moniker Class]
{CD3AFA7B-B84F-48F0-9393-7EDC34128127}
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000}
[QQLive Class]
{D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62}
[PlayerCtrl Class]
{E05BC2A3-9A46-4A32-80C9-023A473F5B23}
[]
{E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[]
{FB5DA724-162B-11D3-8B9B-AA70B4B0B524} <, >
[使用迅雷下载]

[使用迅雷下载全部链接]

[导出到 Microsoft Office Excel(&X)]

[添加到QQ表情]

发表评论 评论总数:2【论坛浏览】

1楼评论者:再也不喝了 于 2010-01-21 17:57 评论道:

==================================
正在运行的进程
[PID: 952 / SYSTEM][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[PID: 1024 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\CSRSRV.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\basesrv.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\winsrv.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GDI32.dll] [Microsoft Corporation, 5.1.2600.5698 (xpsp_sp3_gdr.081022-1932)]
[C:\WINDOWS\system32\KERNEL32.dll] [Microsoft Corporation, 5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)]
[C:\WINDOWS\system32\USER32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LPK.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USP10.dll] [Microsoft Corporation, 1.0420.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\ADVAPI32.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\RPCRT4.dll] [Microsoft Corporation, 5.1.2600.5795 (xpsp_sp3_gdr.090415-1241)]
[C:\WINDOWS\system32\Secur32.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\sxs.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1056 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\kernel32.dll] [Microsoft Corporation, 5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)]
[C:\WINDOWS\system32\ADVAPI32.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\RPCRT4.dll] [Microsoft Corporation, 5.1.2600.5795 (xpsp_sp3_gdr.090415-1241)]
[C:\WINDOWS\system32\Secur32.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\AUTHZ.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\msvcrt.dll] [Microsoft Corporation, 7.0.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\MSASN1.dll] [Microsoft Corporation, 5.1.2600.5875 (xpsp_sp3_gdr.090904-1413)]
[C:\WINDOWS\system32\USER32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GDI32.dll] [Microsoft Corporation, 5.1.2600.5698 (xpsp_sp3_gdr.081022-1932)]
[C:\WINDOWS\system32\NDdeApi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\PROFMAP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\NETAPI32.dll] [Microsoft Corporation, 5.1.2600.5694 (xpsp_sp3_gdr.081015-1312)]
[C:\WINDOWS\system32\USERENV.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\PSAPI.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\REGAPI.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\SETUPAPI.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\VERSION.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\WINSTA.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\WINTRUST.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\IMAGEHLP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\WS2_32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WS2HELP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\IMM32.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LPK.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USP10.dll] [Microsoft Corporation, 1.0420.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\MSGINA.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\COMCTL32.dll] [Microsoft Corporation, 5.82 (xpsp.080413-2105)]
[C:\WINDOWS\system32\ODBC32.dll] [Microsoft Corporation, 3.525.1132.0 (xpsp.080413-0852)]
[C:\WINDOWS\system32\comdlg32.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\SHELL32.dll] [Microsoft Corporation, 6.00.2900.5853 (xpsp_sp3_gdr.090727-1736)]
[C:\WINDOWS\system32\SHLWAPI.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll] [Microsoft Corporation, 6.0 (xpsp.080413-2105)]
[C:\WINDOWS\system32\odbcint.dll] [Microsoft Corporation, 3.525.1117.0 built by: (_sqlbld)]
[C:\WINDOWS\system32\SHSVCS.dll] [Microsoft Corporation, 6.00.2900.5853 (xpsp_sp3_gdr.090727-1736)]
[C:\WINDOWS\system32\sfc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\sfc_os.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\ole32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\Apphelp.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime] [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\WINSCARD.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\WTSAPI32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\sxs.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\WINMM.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\Ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4176]
[C:\WINDOWS\system32\OLEAUT32.dll] [Microsoft Corporation, 5.1.2600.5512]
[C:\WINDOWS\system32\rsaenh.dll] [Microsoft Corporation, 5.1.2600.5507 (xpsp.080318-1711)]
[C:\WINDOWS\system32\cscdll.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\System32\dimsntfy.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\WlNotify.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\MPR.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WINSPOOL.DRV] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\msv1_0.dll] [Microsoft Corporation, 5.1.2600.5876 (xpsp_sp3_qfe.090909-1423)]
[C:\WINDOWS\system32\cryptdll.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\iphlpapi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\SAMLIB.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\cscui.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\wdmaud.drv] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\xpsp2res.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\NTMARTA.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\WLDAP32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\WINDOWS\system32\MSACM32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\midimap.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.700]
[C:\WINDOWS\system32\CLBCATQ.DLL] [Microsoft Corporation, 2001.12.4414.700]
[PID: 1100 / SYSTEM][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\kernel32.dll] [Microsoft Corporation, 5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)]
[C:\WINDOWS\system32\ADVAPI32.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\RPCRT4.dll] [Microsoft Corporation, 5.1.2600.5795 (xpsp_sp3_gdr.090415-1241)]
[C:\WINDOWS\system32\Secur32.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\msvcrt.dll] [Microsoft Corporation, 7.0.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\NCObjAPI.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\MSVCP60.dll] [Microsoft Corporation, 6.02.3104.0]
[C:\WINDOWS\system32\SCESRV.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\AUTHZ.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\USER32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GDI32.dll] [Microsoft Corporation, 5.1.2600.5698 (xpsp_sp3_gdr.081022-1932)]
[C:\WINDOWS\system32\USERENV.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\umpnpmgr.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\WINSTA.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\NETAPI32.dll] [Microsoft Corporation, 5.1.2600.5694 (xpsp_sp3_gdr.081015-1312)]
[C:\WINDOWS\system32\ShimEng.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\AppPatch\AcAdProc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\IMM32.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LPK.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USP10.dll] [Microsoft Corporation, 1.0420.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\Apphelp.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\VERSION.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\eventlog.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\PSAPI.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\WS2_32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WS2HELP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\wtsapi32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1112 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\kernel32.dll] [Microsoft Corporation, 5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)]
[C:\WINDOWS\system32\ADVAPI32.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\RPCRT4.dll] [Microsoft Corporation, 5.1.2600.5795 (xpsp_sp3_gdr.090415-1241)]
[C:\WINDOWS\system32\Secur32.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\LSASRV.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\MPR.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\USER32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GDI32.dll] [Microsoft Corporation, 5.1.2600.5698 (xpsp_sp3_gdr.081022-1932)]
[C:\WINDOWS\system32\MSASN1.dll] [Microsoft Corporation, 5.1.2600.5875 (xpsp_sp3_gdr.090904-1413)]
[C:\WINDOWS\system32\msvcrt.dll] [Microsoft Corporation, 7.0.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\NETAPI32.dll] [Microsoft Corporation, 5.1.2600.5694 (xpsp_sp3_gdr.081015-1312)]
[C:\WINDOWS\system32\NTDSAPI.dll] [Microsoft Corporation, 5.1.2600.5582 (xpsp_sp3_qfe.080416-1432)]
[C:\WINDOWS\system32\DNSAPI.dll] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249)]
[C:\WINDOWS\system32\WS2_32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WS2HELP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WLDAP32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\SAMLIB.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\SAMSRV.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\cryptdll.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\ShimEng.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\AppPatch\AcGenral.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\WINMM.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\ole32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\OLEAUT32.dll] [Microsoft Corporation, 5.1.2600.5512]
[C:\WINDOWS\system32\MSACM32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\VERSION.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\SHELL32.dll] [Microsoft Corporation, 6.00.2900.5853 (xpsp_sp3_gdr.090727-1736)]
[C:\WINDOWS\system32\SHLWAPI.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USERENV.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\IMM32.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LPK.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USP10.dll] [Microsoft Corporation, 1.0420.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll] [Microsoft Corporation, 6.0 (xpsp.080413-2105)]
[C:\WINDOWS\system32\comctl32.dll] [Microsoft Corporation, 5.82 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msprivs.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\kerberos.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\msv1_0.dll] [Microsoft Corporation, 5.1.2600.5876 (xpsp_sp3_qfe.090909-1423)]
[C:\WINDOWS\system32\iphlpapi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\netlogon.dll] [Microsoft Corporation, 5.1.2600.5582 (xpsp_sp3_qfe.080416-1432)]
[C:\WINDOWS\system32\w32time.dll] [Microsoft Corporation, 5.1.2600.5582 (xpsp_sp3_qfe.080416-1432)]
[C:\WINDOWS\system32\MSVCP60.dll] [Microsoft Corporation, 6.02.3104.0]
[C:\WINDOWS\system32\schannel.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\wdigest.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\rsaenh.dll] [Microsoft Corporation, 5.1.2600.5507 (xpsp.080318-1711)]
[C:\WINDOWS\system32\setupapi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\scecli.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\ipsecsvc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\AUTHZ.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\oakley.DLL] [Microsoft Corporation, 5.1.2600.5886 (xpsp_sp3_gdr.091012-1253)]
[C:\WINDOWS\system32\WINIPSEC.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\pstorsvc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\psbase.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\mswsock.dll] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249)]
[C:\WINDOWS\system32\hnetcfg.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\wshtcpip.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\dssenh.dll] [Microsoft Corporation, 5.1.2600.5507 (xpsp.080318-1711)]
[PID: 1276 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4190]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\kernel32.dll] [Microsoft Corporation, 5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)]
[C:\WINDOWS\system32\USER32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GDI32.dll] [Microsoft Corporation, 5.1.2600.5698 (xpsp_sp3_gdr.081022-1932)]
[C:\WINDOWS\system32\ole32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\ADVAPI32.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\RPCRT4.dll] [Microsoft Corporation, 5.1.2600.5795 (xpsp_sp3_gdr.090415-1241)]
[C:\WINDOWS\system32\Secur32.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\msvcrt.dll] [Microsoft Corporation, 7.0.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\OLEAUT32.dll] [Microsoft Corporation, 5.1.2600.5512]
[C:\WINDOWS\system32\USERENV.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\PSAPI.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\SETUPAPI.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\IMM32.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LPK.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USP10.dll] [Microsoft Corporation, 1.0420.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\wtsapi32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\WINSTA.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\NETAPI32.dll] [Microsoft Corporation, 5.1.2600.5694 (xpsp_sp3_gdr.081015-1312)]
[C:\WINDOWS\system32\powrprof.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\cfgMgr32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\msctfime.ime] [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\WINTRUST.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\MSASN1.dll] [Microsoft Corporation, 5.1.2600.5875 (xpsp_sp3_gdr.090904-1413)]
[C:\WINDOWS\system32\IMAGEHLP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msv1_0.dll] [Microsoft Corporation, 5.1.2600.5876 (xpsp_sp3_qfe.090909-1423)]
[C:\WINDOWS\system32\cryptdll.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\iphlpapi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WS2_32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WS2HELP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2513]
[C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2530]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1308 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\kernel32.dll] [Microsoft Corporation, 5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)]
[C:\WINDOWS\system32\ADVAPI32.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\RPCRT4.dll] [Microsoft Corporation, 5.1.2600.5795 (xpsp_sp3_gdr.090415-1241)]
[C:\WINDOWS\system32\Secur32.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\ShimEng.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\AppPatch\AcGenral.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USER32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GDI32.dll] [Microsoft Corporation, 5.1.2600.5698 (xpsp_sp3_gdr.081022-1932)]
[C:\WINDOWS\system32\WINMM.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\ole32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\msvcrt.dll] [Microsoft Corporation, 7.0.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\OLEAUT32.dll] [Microsoft Corporation, 5.1.2600.5512]
[C:\WINDOWS\system32\MSACM32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\VERSION.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\SHELL32.dll] [Microsoft Corporation, 6.00.2900.5853 (xpsp_sp3_gdr.090727-1736)]
[C:\WINDOWS\system32\SHLWAPI.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USERENV.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\IMM32.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LPK.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USP10.dll] [Microsoft Corporation, 1.0420.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll] [Microsoft Corporation, 6.0 (xpsp.080413-2105)]
[C:\WINDOWS\system32\comctl32.dll] [Microsoft Corporation, 5.82 (xpsp.080413-2105)]
[C:\WINDOWS\system32\NTMARTA.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\SAMLIB.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\WLDAP32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\rpcss.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\WS2_32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WS2HELP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\xpsp2res.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\CLBCATQ.DLL] [Microsoft Corporation, 2001.12.4414.700]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.700]
[c:\windows\system32\termsrv.dll] [Microsoft Corporation, 5.1.2600.5581 (xpsp_sp3_qfe.080415-1416)]
[c:\windows\system32\ICAAPI.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[c:\windows\system32\SETUPAPI.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\WINTRUST.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\MSASN1.dll] [Microsoft Corporation, 5.1.2600.5875 (xpsp_sp3_gdr.090904-1413)]
[C:\WINDOWS\system32\IMAGEHLP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[c:\windows\system32\AUTHZ.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\mstlsapi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[c:\windows\system32\ACTIVEDS.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\adsldpc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\NETAPI32.dll] [Microsoft Corporation, 5.1.2600.5694 (xpsp_sp3_gdr.081015-1312)]
[c:\windows\system32\ATL.DLL] [Microsoft Corporation, 3.05.2284]
[C:\WINDOWS\system32\REGAPI.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\rsaenh.dll] [Microsoft Corporation, 5.1.2600.5507 (xpsp.080318-1711)]
[C:\WINDOWS\system32\Apphelp.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[PID: 1388 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\kernel32.dll] [Microsoft Corporation, 5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)]
[C:\WINDOWS\system32\ADVAPI32.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\RPCRT4.dll] [Microsoft Corporation, 5.1.2600.5795 (xpsp_sp3_gdr.090415-1241)]
[C:\WINDOWS\system32\Secur32.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\ShimEng.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\AppPatch\AcGenral.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USER32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GDI32.dll] [Microsoft Corporation, 5.1.2600.5698 (xpsp_sp3_gdr.081022-1932)]
[C:\WINDOWS\system32\WINMM.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\ole32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\msvcrt.dll] [Microsoft Corporation, 7.0.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\OLEAUT32.dll] [Microsoft Corporation, 5.1.2600.5512]
[C:\WINDOWS\system32\MSACM32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\VERSION.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\SHELL32.dll] [Microsoft Corporation, 6.00.2900.5853 (xpsp_sp3_gdr.090727-1736)]
[C:\WINDOWS\system32\SHLWAPI.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USERENV.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\IMM32.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LPK.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USP10.dll] [Microsoft Corporation, 1.0420.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll] [Microsoft Corporation, 6.0 (xpsp.080413-2105)]
[C:\WINDOWS\system32\comctl32.dll] [Microsoft Corporation, 5.82 (xpsp.080413-2105)]
[c:\windows\system32\rpcss.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\WS2_32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WS2HELP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\xpsp2res.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\rsaenh.dll] [Microsoft Corporation, 5.1.2600.5507 (xpsp.080318-1711)]
[C:\WINDOWS\system32\mswsock.dll] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249)]
[C:\WINDOWS\system32\hnetcfg.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\wshtcpip.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\DNSAPI.dll] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249)]
[C:\WINDOWS\system32\iphlpapi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\winrnr.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\WLDAP32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\rasadhlp.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\CLBCATQ.DLL] [Microsoft Corporation, 2001.12.4414.700]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.700]
[PID: 1504 / SYSTEM][C:\Program Files\Rising\Rav\RavMonD.exe] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\kernel32.dll] [Microsoft Corporation, 5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)]
[C:\WINDOWS\system32\USER32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GDI32.dll] [Microsoft Corporation, 5.1.2600.5698 (xpsp_sp3_gdr.081022-1932)]
[C:\WINDOWS\system32\ADVAPI32.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\RPCRT4.dll] [Microsoft Corporation, 5.1.2600.5795 (xpsp_sp3_gdr.090415-1241)]
[C:\WINDOWS\system32\Secur32.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\SHLWAPI.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msvcrt.dll] [Microsoft Corporation, 7.0.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\VERSION.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\ole32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\IMM32.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LPK.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USP10.dll] [Microsoft Corporation, 1.0420.2600.5512 (xpsp.080413-2105)]
[C:\Program Files\Rising\Rav\combase.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17]
[C:\WINDOWS\system32\OLEAUT32.dll] [Microsoft Corporation, 5.1.2600.5512]
[C:\WINDOWS\system32\CLBCATQ.DLL] [Microsoft Corporation, 2001.12.4414.700]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.700]
[C:\Program Files\Rising\Rav\cnt09.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5]
[C:\WINDOWS\system32\WS2_32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WS2HELP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\Program Files\Rising\Rav\moncomm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 9]
[C:\Program Files\Rising\Rav\MonBase.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\WINDOWS\system32\xpsp2res.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\Program Files\Rising\Rav\Rslog.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.41]
[C:\Program Files\Rising\Rav\mondrv.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6]
[C:\Program Files\Rising\Rav\defmon.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 45]
[C:\WINDOWS\system32\PSAPI.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\Program Files\Rising\Rav\moncom08.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1]
[C:\Program Files\Rising\Rav\MonRule.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10]
[C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll] [Microsoft Corporation, 6.0 (xpsp.080413-2105)]
[C:\WINDOWS\system32\comctl32.dll] [Microsoft Corporation, 5.82 (xpsp.080413-2105)]
[C:\Program Files\Rising\Rav\FileMon.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 29]
[C:\Program Files\Rising\Rav\MailMon.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 22]
[C:\Program Files\Rising\Rav\HookWeb.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 12]
[C:\Program Files\Rising\Rav\rsindent.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 11]
[C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[C:\WINDOWS\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\MSASN1.dll] [Microsoft Corporation, 5.1.2600.5875 (xpsp_sp3_gdr.090904-1413)]
[C:\Program Files\Rising\Rav\taskplug.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10]
[C:\Program Files\Rising\Rav\scansrvp.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.7]
[C:\Program Files\Rising\Rav\cnt08.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Rising\Rav\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4]
[C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0]
[C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0]
[C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
[C:\WINDOWS\system32\Wtsapi32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\WINSTA.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\NETAPI32.dll] [Microsoft Corporation, 5.1.2600.5694 (xpsp_sp3_gdr.081015-1312)]
[C:\Program Files\Rising\Rav\Hooksys.dll] [Beijing Rising Information Technology Co., Ltd., 24, 0, 0, 3]
[C:\Program Files\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
[C:\Program Files\Rising\Rav\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
[C:\Program Files\Rising\Rav\HookCont.dll] [Beijing Rising Information Technology Co., Ltd., 24, 0, 0, 1]
[C:\Program Files\Rising\Rav\BACore.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 32]
[C:\WINDOWS\system32\sfc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\sfc_os.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\WINTRUST.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\IMAGEHLP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\Program Files\Rising\Rav\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6]
[C:\Program Files\Rising\Rav\refs.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\Rav\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\Rav\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\Rav\rsnetsvr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\Rav\bawhite.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\Rav\RSStore.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5]
[C:\Program Files\Rising\Rav\Scanner.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.21]
[C:\Program Files\Rising\Rav\ScanAdd.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.4]
[C:\WINDOWS\system32\mswsock.dll] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249)]
[C:\WINDOWS\system32\hnetcfg.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\wshtcpip.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\Program Files\Rising\Rav\rstask.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5]
[C:\WINDOWS\system32\WINMM.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\Program Files\Rising\Rav\rsstub.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1]
[C:\Program Files\Rising\Rav\ScanSrv.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.3]
[C:\Program Files\Rising\Rav\scanpe.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10]
[C:\Program Files\Rising\Rav\pearc.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
[C:\Program Files\Rising\Rav\ur000.dat] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4]
[C:\Program Files\Rising\Rav\urutils.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1]
[C:\Program Files\Rising\Rav\ffr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4]
[C:\Program Files\Rising\Rav\nvfile.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1]
[C:\Program Files\Rising\Rav\scanexec.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
[C:\Program Files\Rising\Rav\unexe.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
[C:\Program Files\Rising\Rav\scanex.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 62]
[C:\Program Files\Rising\Rav\scansct.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4]
[C:\Program Files\Rising\Rav\scantj.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4]
[C:\Program Files\Rising\Rav\methodex.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\Rav\revm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6]
[C:\Program Files\Rising\Rav\pecompd.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5]
[C:\Program Files\Rising\Rav\heurex.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 15]
[C:\Program Files\Rising\Rav\extmail.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5]
[PID: 1520 / SYSTEM][C:\Program Files\Rising\RFW\RavMonD.exe] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\kernel32.dll] [Microsoft Corporation, 5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)]
[C:\WINDOWS\system32\USER32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GDI32.dll] [Microsoft Corporation, 5.1.2600.5698 (xpsp_sp3_gdr.081022-1932)]
[C:\WINDOWS\system32\ADVAPI32.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\RPCRT4.dll] [Microsoft Corporation, 5.1.2600.5795 (xpsp_sp3_gdr.090415-1241)]
[C:\WINDOWS\system32\Secur32.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\SHLWAPI.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msvcrt.dll] [Microsoft Corporation, 7.0.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\VERSION.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\ole32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\IMM32.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LPK.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USP10.dll] [Microsoft Corporation, 1.0420.2600.5512 (xpsp.080413-2105)]
[C:\Program Files\Rising\RFW\combase.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17]
[C:\WINDOWS\system32\OLEAUT32.dll] [Microsoft Corporation, 5.1.2600.5512]
[C:\WINDOWS\system32\CLBCATQ.DLL] [Microsoft Corporation, 2001.12.4414.700]
[C:\WINDOWS\system32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.700]
[C:\WINDOWS\system32\WS2_32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WS2HELP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\xpsp2res.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\Program Files\Rising\RFW\cnt09.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5]
[C:\Program Files\Rising\RFW\MonBase.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\RFW\MonComm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 9]
[C:\Program Files\Rising\RFW\rfwlog.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.14]
[C:\Program Files\Rising\RFW\rfwrule.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Rising\RFW\rfwsrv.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.2]
[C:\Program Files\Rising\RFW\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[C:\Program Files\Rising\RFW\mPorts.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0]
[C:\Program Files\Rising\RFW\rfwdrvc.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.1]
[C:\Program Files\Rising\RFW\Rfwdrv.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.5]
[C:\WINDOWS\system32\psapi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\Program Files\Rising\RFW\rsnetsvr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\RFW\RfwArp.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.5]
[C:\Program Files\Rising\RFW\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
[C:\WINDOWS\system32\Iphlpapi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\Wtsapi32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\WINSTA.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\NETAPI32.dll] [Microsoft Corporation, 5.1.2600.5694 (xpsp_sp3_gdr.081015-1312)]
[C:\Program Files\Rising\RFW\urlrule.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.1]
[C:\Program Files\Rising\RFW\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6]
[C:\Program Files\Rising\RFW\refs.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\RFW\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\RFW\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\RFW\rfwproxy.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 67]
[C:\WINDOWS\system32\WININET.dll] [Microsoft Corporation, 6.00.2900.5897 (xpsp_sp3_gdr.091028-1650)]
[C:\WINDOWS\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\MSASN1.dll] [Microsoft Corporation, 5.1.2600.5875 (xpsp_sp3_gdr.090904-1413)]
[C:\WINDOWS\system32\WINMM.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll] [Microsoft Corporation, 6.0 (xpsp.080413-2105)]
[C:\WINDOWS\system32\mswsock.dll] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249)]
[C:\WINDOWS\system32\hnetcfg.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\wshtcpip.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\Program Files\Rising\RFW\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1]
[C:\Program Files\Rising\RFW\rsindent.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 11]
[C:\Program Files\Rising\RFW\taskplug.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10]
[C:\Program Files\Rising\RFW\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0]
[C:\Program Files\Rising\RFW\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 22.0.0.0]
[C:\Program Files\Rising\RFW\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4]
[C:\Program Files\Rising\RFW\NComm2.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3]
[C:\Program Files\Rising\RFW\rstask.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5]
[C:\Program Files\Rising\RFW\rsstub.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1]
[C:\WINDOWS\system32\COMCTL32.dll] [Microsoft Corporation, 5.82 (xpsp.080413-2105)]
[C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Rising\RFW\urllib.dll] [Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1]
[C:\WINDOWS\system32\wintrust.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\IMAGEHLP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\rsaenh.dll] [Microsoft Corporation, 5.1.2600.5507 (xpsp.080318-1711)]
[C:\WINDOWS\system32\userenv.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\cryptnet.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\SensApi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\WINHTTP.dll] [Microsoft Corporation, 5.1.2600.5727 (xpsp_sp3_gdr.081215-1359)]
[C:\WINDOWS\system32\WLDAP32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\Cabinet.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\shell32.dll] [Microsoft Corporation, 6.00.2900.5853 (xpsp_sp3_gdr.090727-1736)]
[C:\WINDOWS\system32\wsock32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\RASAPI32.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\rasman.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\TAPI32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\rtutils.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\msv1_0.dll] [Microsoft Corporation, 5.1.2600.5876 (xpsp_sp3_qfe.090909-1423)]
[C:\WINDOWS\system32\cryptdll.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\urlmon.dll] [Microsoft Corporation, 6.00.2900.5897 (xpsp_sp3_gdr.091028-1650)]
[C:\WINDOWS\system32\DNSAPI.dll] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249)]
[C:\WINDOWS\system32\rasadhlp.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[PID: 1536 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\ntdll.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\kernel32.dll] [Microsoft Corporation, 5.1.2600.5781 (xpsp_sp3_gdr.090321-1317)]
[C:\WINDOWS\system32\ADVAPI32.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\RPCRT4.dll] [Microsoft Corporation, 5.1.2600.5795 (xpsp_sp3_gdr.090415-1241)]
[C:\WINDOWS\system32\Secur32.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\system32\ShimEng.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\AppPatch\AcGenral.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USER32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\GDI32.dll] [Microsoft Corporation, 5.1.2600.5698 (xpsp_sp3_gdr.081022-1932)]
[C:\WINDOWS\system32\WINMM.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\ole32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\msvcrt.dll] [Microsoft Corporation, 7.0.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\OLEAUT32.dll] [Microsoft Corporation, 5.1.2600.5512]
[C:\WINDOWS\system32\MSACM32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\system32\VERSION.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\SHELL32.dll] [Microsoft Corporation, 6.00.2900.5853 (xpsp_sp3_gdr.090727-1736)]
[C:\WINDOWS\system32\SHLWAPI.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USERENV.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\IMM32.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LPK.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\USP10.dll] [Microsoft Corporation, 1.0420.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll] [Microsoft Corporation, 6.0 (xpsp.080413-2105)]
[C:\WINDOWS\system32\comctl32.dll] [Microsoft Corporation, 5.82 (xpsp.080413-2105)]
[C:\WINDOWS\System32\NTMARTA.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\System32\SAMLIB.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\WLDAP32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\System32\xpsp2res.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\shsvcs.dll] [Microsoft Corporation, 6.00.2900.5853 (xpsp_sp3_gdr.090727-1736)]
[C:\WINDOWS\System32\WINSTA.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\NETAPI32.dll] [Microsoft Corporation, 5.1.2600.5694 (xpsp_sp3_gdr.081015-1312)]
[c:\windows\system32\dhcpcsvc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\DNSAPI.dll] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249)]
[C:\WINDOWS\system32\WS2_32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\WS2HELP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\iphlpapi.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\wzcsvc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\rtutils.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\WMI.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\MSASN1.dll] [Microsoft Corporation, 5.1.2600.5875 (xpsp_sp3_gdr.090904-1413)]
[c:\windows\system32\EapolQec.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\ATL.DLL] [Microsoft Corporation, 3.05.2284]
[c:\windows\system32\QUtil.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\MSVCP60.dll] [Microsoft Corporation, 6.02.3104.0]
[c:\windows\system32\dot3api.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\WTSAPI32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[c:\windows\system32\ESENT.dll] [Microsoft Corporation, 5.1.2468.0 (Lab03_N(jliem).010306-1456)]
[C:\WINDOWS\System32\rsaenh.dll] [Microsoft Corporation, 5.1.2600.5507 (xpsp.080318-1711)]
[C:\WINDOWS\System32\CLBCATQ.DLL] [Microsoft Corporation, 2001.12.4414.700]
[C:\WINDOWS\System32\COMRes.dll] [Microsoft Corporation, 2001.12.4414.700]
[C:\WINDOWS\System32\SETUPAPI.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\System32\rastls.dll] [Microsoft Corporation, 5.1.2600.5886 (xpsp_sp3_gdr.091012-1253)]
[C:\WINDOWS\system32\CRYPTUI.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\WININET.dll] [Microsoft Corporation, 6.00.2900.5897 (xpsp_sp3_gdr.091028-1650)]
[C:\WINDOWS\system32\WINTRUST.dll] [Microsoft Corporation, 5.131.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\IMAGEHLP.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\System32\MPRAPI.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\ACTIVEDS.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\System32\adsldpc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\System32\RASAPI32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\rasman.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\TAPI32.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\SCHANNEL.dll] [Microsoft Corporation, 5.1.2600.5834 (xpsp_sp3_qfe.090624-1332)]
[C:\WINDOWS\System32\WinSCard.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\PSAPI.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[c:\windows\system32\audiosrv.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0845)]
[C:\WINDOWS\System32\raschap.dll] [Microsoft Corporation, 5.1.2600.5886 (xpsp_sp3_gdr.091012-1253)]
[C:\WINDOWS\system32\msv1_0.dll] [Microsoft Corporation, 5.1.2600.5876 (xpsp_sp3_qfe.090909-1423)]
[C:\WINDOWS\System32\cryptdll.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\wkssvc.dll] [Microsoft Corporation, 5.1.2600.5826 (xpsp_sp3_qfe.090609-1445)]
[c:\windows\system32\NTDSAPI.dll] [Microsoft Corporation, 5.1.2600.5582 (xpsp_sp3_qfe.080416-1432)]
[c:\windows\system32\cryptsvc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\certcli.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\dmserver.dll] [Microsoft Corp., 2600.5512.503.0]
[c:\windows\system32\ersvc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[c:\windows\system32\es.dll] [Microsoft Corporation, 2001.12.4414.706]
[c:\windows\system32\srvsvc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\netman.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\netshell.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\credui.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\dot3dlg.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\OneX.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\eappcfg.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\eappprxy.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\WZCSAPI.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\seclogon.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\srsvc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[c:\windows\system32\POWRPROF.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[c:\windows\system32\trkwks.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\System32\HNETCFG.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\w32time.dll] [Microsoft Corporation, 5.1.2600.5582 (xpsp_sp3_qfe.080416-1432)]
[C:\WINDOWS\system32\mswsock.dll] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249)]
[C:\WINDOWS\System32\wshtcpip.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\wbem\wmisvc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\system32\VSSAPI.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[c:\windows\system32\wuauserv.dll] [Microsoft Corporation, 5.4.3790.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\wuaueng.dll] [Microsoft Corporation, 5.4.3790.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\ADVPACK.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\System32\Cabinet.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\System32\mspatcha.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\System32\sfc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\System32\sfc_os.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\System32\SHFOLDER.dll] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\System32\WINHTTP.dll] [Microsoft Corporation, 5.1.2600.5727 (xpsp_sp3_gdr.081215-1359)]
[C:\WINDOWS\System32\WINSPOOL.DRV] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[c:\windows\system32\browser.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\sens.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[c:\windows\system32\ipnathlp.dll] [Microsoft Corporation, 5.1.2600.5584 (xpsp_sp3_qfe.080421-1413)]
[c:\windows\system32\AUTHZ.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[c:\windows\system32\wscsvc.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[c:\windows\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159]
[C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\System32\SXS.DLL] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\System32\Wbem\wbemcore.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\System32\Wbem\esscli.dll] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[C:\WINDOWS\System32\Wbem\FastProx.dll] [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
[C:\WINDOWS\system32\comsvcs.dll] [Microsoft Corporation, 2001.12.4414.702]
[C:\WINDOWS\system32\colbact.DLL] [Microsoft Corporation, 2001.12.4414.700]
[C:\WINDOWS\system32\MTXCLU.DLL] [Microsoft Corporation, 2001.12.4414.706]

2楼评论者:eyeego 于 2010-01-21 18:57 评论道:

1 请详细说明症状
2 麻烦放附件发
谢谢合作

页码 1/1 首页 上一页 1 下一页 末页