再扫描下~看看他还有什么~不行我把整个硬盘格式化了~ bbs.ikaka.com

酒醉的小强 - 2006-11-9 11:36:00

2006-11-09,11:25:53

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Corporation]
<Super Rabbit IEPro><C:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE /LOAD> [Super Rabbit Soft]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
<run><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<TkBellExe><; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [(Verified)RealNetworks, Inc.]
<BigDogPath><; C:\WINDOWS\VM_STI.EXE USB PC Camera 301P> [N/A]
<RfwMain><"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.]
<RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<GZGWBN><"C:\Documents and Settings\z\桌面\gwbnauto.exe"> [N/A]
<UnlockerAssistant><"f:\Program Files\Unlocker\UnlockerAssistant.exe"> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<RavStub><"C:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Corporation]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Corporation]

==================================
启动文件夹
[腾讯QQ]
<C:\Documents and Settings\z\「开始」菜单\程序\启动\腾讯QQ.lnk --> C:\PROGRA~1\Tencent\QQ\QQ.exe [TENCENT]><N>

==================================
服务
[Human Interface Device Access / HidServ]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[Rising Proxy Service / RfwProxySrv]
<c:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
<c:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
<"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon]
<"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>

酒醉的小强 - 2006-11-9 11:37:00

==================================
驱动程序
[Rising TDI Base Driver / BaseTDI]
<System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[ExpScaner / ExpScaner]
<\??\C:\Program Files\Rising\Rav\ExpScan.sys><>
[HookCont / HookCont]
<\??\C:\Program Files\Rising\Rav\HOOKCONT.sys><Rising tech Co. ltd>
[HookReg / HookReg]
<\??\C:\Program Files\Rising\Rav\HookReg.sys><>
[HookSys / HookSys]
<\??\C:\Program Files\Rising\Rav\HookSys.sys><Rising>
[HookUrl / HookUrl]
<\??\C:\Program Files\Rising\Rfw\HookUrl.sys><Beijing Rising Technology Co., Ltd.>
[MEMSCAN / MEMSCAN]
<\??\C:\Program Files\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司>
[mProcRs / mProcRs]
<\??\c:\program files\rising\rfw\mProcRs.sys><Beijing Rising Technology Co., Ltd.>
[npkcrypt / npkcrypt]
<\??\C:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[nv / nv]
<system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[Direct Parallel Link Driver / Ptilink]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsFwDrv / RsFwDrv]
<\??\C:\Program Files\Rising\Rfw\RsFwDrv.sys><Beijing Rising Technology Co., Ltd.>
[RSPPSYS / RSPPSYS]
<\??\C:\PROGRAM FILES\RISING\RAV\RSPPSYS.sys><Rising>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139]
<system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv]
<system32\DRIVERS\secdrv.sys><N/A>
[ViaIde / ViaIde]
<\SystemRoot\system32\DRIVERS\viaide.sys><Microsoft Corporation>
[VIA AC'97 Audio Controller (WDM) / VIAudio]
<system32\drivers\ac97via.sys><VIA Technologies, Inc.>

酒醉的小强 - 2006-11-9 11:37:00

==================================
浏览器加载项
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[超级兔子上网精灵]
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <C:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[QQIEFloatBarCfgCmd Class]
{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[超级兔子上网精灵]
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[PeerDraw Class]
{10072CEC-8CC1-11D1-986E-00A0C955B42E} <C:\WINDOWS\system32\dllcache\vgx.dll, Microsoft Corporation>
[超级兔子上网精灵]
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[超级兔子上网精灵]
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[RDS.DataSpace]
{BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[上传到QQ网络硬盘]
<C:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[添加到QQ自定义面板]
<C:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
<C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<C:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 416][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 476][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 500][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 544][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 556][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 712][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 780][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 892][C:\Program Files\Rising\Rav\CCenter.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3]
[PID: 908][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 976][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1080][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1096][C:\Program Files\Rising\Rav\Ravmond.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 1, 47]
[C:\Program Files\Rising\Rav\BWList.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
[C:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[C:\Program Files\Rising\Rav\RsPPsys.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3]
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
[C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\Program Files\Rising\Rav\RsLog.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
[C:\Program Files\Rising\Rav\HOOKSYS.dll] [Beijing Rising Technology Co., Ltd., 18, 1, 0, 12]
[C:\Program Files\Rising\Rav\Scanner.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 33]
[C:\Program Files\Rising\Rav\libload.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 10]
[C:\Program Files\Rising\Rav\VirusLib.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 13]
[C:\Program Files\Rising\Rav\regmon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6]
[C:\Program Files\Rising\Rav\HookWeb.dll] [rising, 18, 0, 0, 2]
[C:\Program Files\Rising\Rav\MemMon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 12]
[C:\Program Files\Rising\Rav\expscan.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\Program Files\Rising\Rav\mPorts.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 3]
[C:\Program Files\Rising\Rav\MailMon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
[C:\Program Files\Rising\Rav\SpamEng.dll] [N/A, 18, 0, 0, 6]
[C:\Program Files\Rising\Rav\engine.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 35]
[C:\Program Files\Rising\Rav\PostTrt.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 18]
[C:\Program Files\Rising\Rav\UnExe.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
[C:\Program Files\Rising\Rav\ScanExec.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 15]
[C:\Program Files\Rising\Rav\ScanEx.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 30]
[C:\Program Files\Rising\Rav\RSUnpack.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 19]
[C:\Program Files\Rising\Rav\ExtFile.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 24]
[C:\Program Files\Rising\Rav\NvFile.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 7]
[C:\Program Files\Rising\Rav\ScanMac.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 10]
[C:\Program Files\Rising\Rav\ScanSct.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
[C:\Program Files\Rising\Rav\ExtOLE.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6]
[C:\Program Files\Rising\Rav\Unpacker.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
[C:\Program Files\Rising\Rav\ExtMail.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 13]
[PID: 1140][c:\program files\rising\rfw\rfwsrv.exe] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 32]
[c:\program files\rising\rfw\RfwRule.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 13]
[c:\program files\rising\rfw\rfwlog.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 6]
[c:\program files\rising\rfw\Rfwdrv.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 21]
[c:\program files\rising\rfw\MonDrv.dll] [rs, 1, 0, 0, 4]
[c:\program files\rising\rfw\ProcLib.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 9]
[c:\program files\rising\rfw\mPorts.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 3]
[PID: 1340][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\mp3infp.dll] [win32lab.com, 2.44.3.0]
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\Program Files\WinRAR\rarext.dll] [N/A, N/A]
[C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 21]

酒醉的小强 - 2006-11-9 11:37:00

[PID: 1464][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[PID: 1536][C:\Program Files\Rising\Rav\RavStub.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 16]
[C:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 1720][c:\program files\rising\rfw\RfwMain.exe] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 51]
[c:\program files\rising\rfw\RsGuiLib.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 23]
[c:\program files\rising\rfw\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[c:\program files\rising\rfw\PngDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
[PID: 1832][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)]
[PID: 124][C:\Program Files\Rising\Rav\RavTask.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 22]
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
[C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
[C:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[PID: 164][C:\Program Files\Rising\Rav\Ravmon.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 1, 39]
[C:\Program Files\Rising\Rav\RsGuiLib.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 26]
[C:\Program Files\Rising\Rav\BWList.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
[C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[C:\Program Files\Rising\Rav\PngDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
[PID: 240][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 360][C:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE] [Super Rabbit Soft, 7.86]
[C:\PROGRA~1\SUPERR~1\MagicSet\shlobj71.ocx] [Sky Software (http://www.ssware.com), 7, 1, 0, 0]
[PID: 1016][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 840][C:\Documents and Settings\z\桌面\gwbnauto.exe] [, 1, 0, 0, 3]
[PID: 2084][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3916][C:\WINDOWS\system32\conime.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3716][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll] [Xiang Feng Technology, 2, 2, 0, 1612]
[C:\Program Files\Tencent\QQ\QQIEHelper.dll] [深圳市腾讯计算机系统有限公司, 1, 1, 0, 5]
[C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,16,0]
[PID: 3936][F:\sreng2\SREng\SREng.exe] [Smallfrogs Studio, 2.2.6.605]

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1 localhost

==================================

酒醉的小强 - 2006-11-9 11:38:00

还是qq郁闷老是说有问题重起~

mopery - 2006-11-9 11:39:00

冒问题..

酒醉的小强 - 2006-11-9 11:40:00

我也郁闷就是qq出问题~

酒醉的小强 - 2006-11-9 11:46:00

他给我的信息~
Microsoft Windows XP Service Pack 2 [Build 5.1.2600]

QQ 15.75.440 3FF2317230C8957DD86A490DF98E44EA
-----------------------------------
Type: EXCEPTION_ACCESS_VIOLATION
Address: 0x60AE02A8
Error: Read address 0x00000000

Call stack:
0x60AC0000[202A8] MFC42.DLL: (61615712,0,0,0)
0x611B0000[5AFA6] QQAllInOne.dll: (15772472,61710240,0,1230380)
0x611B0000[5BD2A] QQAllInOne.dll: (15772472,0,1230556,1621892821)
0x611B0000[925D7] QQAllInOne.dll: (1232136,0,61424032,61424032)
0x60AC0000[1ED5] MFC42.DLL: (2453,1232136,1630510280,1230608)
0x10000000[9B840] QQBaseClassInDll.dll: (2453,1232136,0,1230608)
0x60AC0000[1CEA] MFC42.DLL: (2453,1232136,0,1230884)
0x60AC0000[1C73] MFC42.DLL: (0,984040,2453,1232136)
0x60AC0000[1BFB] MFC42.DLL: (984040,2453,1232136,0)
0x611B0000[11405C] QQAllInOne.dll: (984040,2453,1232136,0)
0x77D10000[8734] USER32.dll: (1630289966,984040,2453,1232136)
0x77D10000[8816] USER32.dll: (0,1630289966,984040,2453)
0x77D10000[B89B] USER32.dll: (8858168,8819984,1232136,0)
0x77D10000[1F3E3] USER32.dll: (984040,2453,1232136,0)
0x03100000[57E8] QQSpace.dll: (15772472,15432144,1630907264,1398696)
0x03100000[23A9] QQSpace.dll: (15432144,480303608,2010313626,61710240)
0x611B0000[5BCB0] QQAllInOne.dll: (61710240,0,1629858805,0)
0x611B0000[AAF16] QQAllInOne.dll: (0,0,61424032,61424032)
0x60AC0000[1ED5] MFC42.DLL: (1652,0,1630510328,1232476)
0x10000000[9B840] QQBaseClassInDll.dll: (1652,0,0,1232476)
0x60AC0000[1CEA] MFC42.DLL: (1652,0,0,1232752)
0x60AC0000[1C73] MFC42.DLL: (0,984040,1652,0)
0x60AC0000[1BFB] MFC42.DLL: (984040,1652,0,0)
0x611B0000[11405C] QQAllInOne.dll: (984040,1652,0,0)
0x77D10000[8734] USER32.dll: (1630289966,984040,1652,0)
0x77D10000[8816] USER32.dll: (0,1630289966,984040,1652)
0x77D10000[B89B] USER32.dll: (8858168,8819984,0,0)
0x77D10000[1F3E3] USER32.dll: (984040,1652,0,0)
0x616D0000[1B43B] QQGroupMng.dll: (12117600,58276640,60639424,54812880)
0x616D0000[158B4] QQGroupMng.dll: (58390624,209308592,1233292,1399616)
0x616D0000[1540C] QQGroupMng.dll: (54812964,58390624,58313648,1233872)
0x00400000[375B7] qq.exe: (1233292,61980360,8000,60640632)
0x00400000[37E65] qq.exe: (88,1233872,1233619,58391252)
0x00400000[3859E] qq.exe: (88,1233872,1233619,58391252)
0x00400000[3AC12] qq.exe: (88,1233872,1233619,58391252)
0x00400000[3AB84] qq.exe: (88,1233872,1233619,58391252)
0x00400000[3B2C9] qq.exe: (58391252,88,1233872,1233619)
0x00400000[34AB6] qq.exe: (16777216,61818864,8000,88)
0x00400000[34F5D] qq.exe: (0,61818864,8000,88)
0x00400000[3590D] qq.exe: (0,61818864,8000,88)
0x00400000[35879] qq.exe: (0,61818864,8000,88)
0x00400000[35AE3] qq.exe: (54769004,0,61818864,8000)
0x00400000[45057] qq.exe: (0,61818864,8000,88)
0x00400000[4530E] qq.exe: (0,1244208,4502652,0)
0x00400000[D2ED6] qq.exe: (0,0,54769296,0)
0x00400000[4B47C] qq.exe: (0,0,54769296,1244252)
0x00400000[4B3FC] qq.exe: (0,1431944,58384416,1432048)
0x60AC0000[19F9D] MFC42.DLL: (1608,912,1,1621991025)
0X60AC0000[19EF6] MFC42.DLL: (1621892821,1608,1,11566240)
0X60AC0000[19E88] MFC42.DLL: (1608,1,11566240,11566240)

酒醉的小强 - 2006-11-9 11:46:00

Modules:
-----------------------------------
[ 0x00400000 ] C:\Program Files\Tencent\QQ\qq.exe [0.0.0.0,2006-09-07 12:20:49]
[ 0x00570000 ] C:\Program Files\Tencent\QQ\QQHelperDll.dll [1.0.0.1,2006-08-23 10:29:34]
[ 0x01490000 ] C:\Program Files\Tencent\QQ\LoginCtrl.dll [1.0.0.1,2006-08-23 19:03:32]
[ 0x01500000 ] C:\Program Files\Tencent\QQ\npkcntc.dll [2006.6.27.1,2006-08-15 17:09:47]
[ 0x01550000 ] C:\Program Files\Tencent\QQ\npkpdb.dll [2003.10.1.1,2003-10-09 12:33:47]
[ 0x01E00000 ] C:\Program Files\Tencent\QQ\QQRes.dll [1.0.0.1,2006-08-22 19:44:04]
[ 0x02280000 ] C:\Program Files\Tencent\QQ\QQPlugin.dll [,2006-08-23 14:31:50]
[ 0x02880000 ] C:\Program Files\Tencent\QQ\GroupLive.dll [,2006-10-23 15:36:59]
[ 0x02A10000 ] C:\Program Files\Tencent\QQ\CQQApplication.dll [,2006-08-23 17:01:00]
[ 0x03100000 ] C:\Program Files\Tencent\QQ\QQSpace.dll [1.0.0.1,2006-10-19 12:16:11]
[ 0x10000000 ] C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll [1.0.0.1,2006-09-11 11:27:21]
[ 0x20000000 ] C:\WINDOWS\system32\xpsp2res.dll [5.1.2600.2180,2004-08-04 15:54:11]
[ 0x30000000 ] C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx [9.0.16.0,2006-06-23 03:30:12]
[ 0x5ADC0000 ] C:\WINDOWS\system32\UxTheme.dll [6.0.2900.2180,2004-08-04 15:52:01]
[ 0x5D170000 ] C:\WINDOWS\system32\COMCTL32.dll [5.82.2900.2982,2006-08-25 23:49:43]
[ 0x5EFE0000 ] C:\WINDOWS\system32\OLEPRO32.DLL [5.1.2600.2180,2004-08-04 15:52:54]
[ 0x5FDD0000 ] C:\WINDOWS\system32\NETAPI32.dll [5.1.2600.2952,2006-07-14 23:41:05]
[ 0x60090000 ] C:\Program Files\Tencent\QQ\BasicCtrlDll.dll [5.0.200.370,2006-08-16 16:12:18]
[ 0x60130000 ] C:\Program Files\Tencent\QQ\CameraDll.dll [1.0.0.1,2006-08-19 15:38:47]
[ 0x60300000 ] C:\Program Files\Tencent\QQ\DialerAllinOne.dll [1.4.0.0,2005-07-28 15:51:16]
[ 0x60350000 ] C:\Program Files\Tencent\QQ\FlashAvatarDll.dll [1.4.0.1,2005-05-26 13:00:02]
[ 0x60390000 ] C:\Program Files\Tencent\QQ\gdiplus.dll [5.1.3102.2180,2004-08-04 15:50:55]
[ 0x60650000 ] C:\Program Files\Tencent\QQ\GroupConnection.dll [0.3.3.5,2006-08-10 16:53:55]
[ 0x606C0000 ] C:\Program Files\Tencent\QQ\HostingMgr.dll [1.0.0.1,2006-08-22 19:33:41]
[ 0x60790000 ] C:\Program Files\Tencent\QQ\ImageOle.dll [1.0.0.1,2006-08-22 19:02:54]
[ 0x609B0000 ] C:\Program Files\Tencent\QQ\LongConnection.dll [5.0.200.160,2006-08-17 17:01:06]
[ 0x60A90000 ] C:\Program Files\Tencent\QQ\MailSummary.dll [1.0.0.1,2006-08-22 20:03:35]
[ 0x60AC0000 ] C:\Program Files\Tencent\QQ\MFC42.DLL [6.0.8665.0,1999-12-11 01:17:01]
[ 0x60C60000 ] C:\Program Files\Tencent\QQ\NewSkin.dll [1.0.0.1,2006-08-22 19:12:04]
[ 0x60DC0000 ] C:\Program Files\Tencent\QQ\PhoneAPI.dll [1.0.0.1,2006-08-22 19:36:22]
[ 0x60FD0000 ] C:\WINDOWS\system32\hnetcfg.dll [5.1.2600.2180,2004-08-04 15:51:15]
[ 0x611B0000 ] C:\Program Files\Tencent\QQ\QQAllInOne.dll [,2006-08-22 20:02:36]
[ 0x61380000 ] C:\Program Files\Tencent\QQ\QQAPI.dll [1.0.0.1,2006-08-22 19:29:15]
[ 0x61630000 ] C:\Program Files\Tencent\QQ\QQConfigPlugin.dll [1.0.0.1,2006-08-22 19:29:26]
[ 0x61640000 ] C:\Program Files\Tencent\QQ\QQCustomFace.dll [,2006-08-22 19:45:28]
[ 0x616D0000 ] C:\Program Files\Tencent\QQ\QQGroupMng.dll [1.0.0.1,2006-08-22 19:27:02]
[ 0x61820000 ] C:\Program Files\Tencent\QQ\QQMainFrame.dll [,2006-08-22 19:38:34]
[ 0x619C0000 ] C:\Program Files\Tencent\QQ\QQPet.dll [1.0.0.1,2006-08-22 19:34:45]
[ 0x61BE0000 ] C:\WINDOWS\system32\MFC42LOC.DLL [6.0.8665.0,2001-09-01 07:01:06]
[ 0x61F50000 ] C:\Program Files\Tencent\QQ\QQSceneMng.dll [,2006-08-22 19:44:48]
[ 0x61F80000 ] C:\Program Files\Tencent\QQ\QQSettingCtrl.dll [1.0.0.1,2006-08-22 19:31:46]
[ 0x62110000 ] C:\Program Files\Tencent\QQ\QRingMng.dll [,2006-08-22 19:24:18]
[ 0x62130000 ] C:\Program Files\Tencent\QQ\RICHED20.dll [5.31.23.1218,2003-03-26 11:45:31]
[ 0x621A0000 ] C:\Program Files\Tencent\QQ\RICHED32.DLL [5.0.2134.1,1999-12-11 01:14:55]
[ 0x62350000 ] C:\Program Files\Tencent\QQ\SCCore.dll [2.0.0.1,2006-08-07 11:12:33]
[ 0x624A0000 ] C:\Program Files\Tencent\QQ\TIMProxy.dll [0.3.2.4,2005-08-18 15:39:48]
[ 0x624E0000 ] C:\Program Files\Tencent\QQ\UserDefinedHead.dll [1.0.0.1,2006-08-22 19:34:16]
[ 0x62510000 ] C:\Program Files\Tencent\QQ\vbscript.dll [5.6.0.7426,2002-02-27 06:58:03]
[ 0x628A0000 ] C:\Program Files\Tencent\QQ\VPortal.dll [1.0.0.4,2006-07-27 16:05:22]
[ 0x62C20000 ] C:\WINDOWS\system32\LPK.DLL [5.1.2600.2180,2004-08-04 15:51:31]
[ 0x68BE0000 ] C:\WINDOWS\system32\HID.DLL [5.1.2600.2180,2004-08-04 15:51:11]
[ 0x68D60000 ] C:\WINDOWS\system32\DBGHELP.dll [5.1.2600.2180,2004-08-04 15:51:09]
[ 0x70E20000 ] C:\WINDOWS\system32\asycfilt.dll [5.1.2600.2180,2004-08-04 15:51:43]
[ 0x719C0000 ] C:\WINDOWS\system32\mswsock.dll [5.1.2600.2180,2004-08-04 15:54:25]
[ 0x71A00000 ] C:\WINDOWS\System32\wshtcpip.dll [5.1.2600.2180,2004-08-04 15:53:13]
[ 0x71A10000 ] C:\WINDOWS\system32\WS2HELP.dll [5.1.2600.2180,2004-08-04 15:53:03]
[ 0x71A20000 ] C:\WINDOWS\system32\WS2_32.dll [5.1.2600.2180,2004-08-04 15:53:02]
[ 0x71A40000 ] C:\WINDOWS\system32\WSOCK32.dll [5.1.2600.2180,2004-08-04 15:53:15]
[ 0x72210000 ] C:\WINDOWS\system32\DINPUT.dll [5.3.2600.2180,2004-08-04 15:51:30]
[ 0x72240000 ] C:\WINDOWS\system32\sensapi.dll [5.1.2600.2180,2004-08-04 15:51:41]
[ 0x723A0000 ] C:\WINDOWS\system32\mydocs.dll [6.0.2900.2180,2004-08-04 15:54:34]
[ 0x72C60000 ] C:\WINDOWS\system32\msadp32.acm [5.1.2600.2180,2004-08-04 15:52:24]
[ 0x72C80000 ] C:\WINDOWS\system32\msacm32.drv [5.1.2600.0,2001-09-01 06:59:06]
[ 0x72C90000 ] C:\WINDOWS\system32\wdmaud.drv [5.1.2600.2180,2004-08-04 15:52:14]
[ 0x72F70000 ] C:\WINDOWS\system32\WINSPOOL.DRV [5.1.2600.2180,2004-08-04 15:52:01]
[ 0x73620000 ] C:\WINDOWS\system32\msdmo.dll [6.5.2600.2180,2004-08-04 15:52:58]
[ 0x73640000 ] C:\WINDOWS\system32\msctfime.ime [5.1.2600.2180,2004-08-04 15:52:36]
[ 0x73AF0000 ] C:\WINDOWS\system32\AVICAP32.dll [5.1.2600.0,2001-09-01 06:58:59]
[ 0x73B40000 ] C:\WINDOWS\system32\MSVFW32.dll [5.1.2600.2180,2004-08-04 15:54:20]
[ 0x73FA0000 ] C:\WINDOWS\system32\USP10.dll [1.420.2600.2180,2004-08-04 15:52:00]
[ 0x74680000 ] C:\WINDOWS\system32\MSCTF.dll [5.1.2600.2180,2004-08-04 15:52:35]
[ 0x74A40000 ] C:\WINDOWS\system32\CFGMGR32.dll [5.1.2600.2180,2004-08-04 15:51:11]
[ 0x74CF0000 ] C:\WINDOWS\system32\mlang.dll [6.0.2900.2530,2004-10-16 04:54:41]
[ 0x75430000 ] C:\WINDOWS\system32\CRYPTUI.dll [5.131.2600.2180,2004-08-04 15:51:05]
[ 0x759D0000 ] C:\WINDOWS\system32\USERENV.dll [5.1.2600.2180,2004-08-04 15:51:59]
[ 0x75AF0000 ] C:\WINDOWS\system32\devenum.dll [6.5.2600.2180,2004-08-04 15:51:21]
[ 0x75C60000 ] C:\WINDOWS\system32\urlmon.dll [6.0.2900.2960,2006-07-26 04:40:46]
[ 0x75E00000 ] C:\WINDOWS\system32\SXS.DLL [5.1.2600.2180,2004-08-04 15:54:45]
[ 0x75FF0000 ] C:\WINDOWS\system32\MSVCP60.dll [6.2.3104.0,2004-08-04 15:54:18]
[ 0x76060000 ] C:\WINDOWS\system32\SETUPAPI.dll [5.1.2600.2180,2004-08-04 15:51:45]
[ 0x762F0000 ] C:\WINDOWS\system32\MSIMG32.dll [5.1.2600.2180,2004-08-04 15:53:36]
[ 0x76300000 ] C:\WINDOWS\system32\IMM32.DLL [5.1.2600.2180,2004-08-04 15:51:41]
[ 0x76320000 ] C:\WINDOWS\system32\comdlg32.dll [6.0.2900.2180,2004-08-04 15:51:36]
[ 0x76370000 ] C:\WINDOWS\system32\shdocvw.dll [6.0.2900.2987,2006-09-04 14:12:55]
[ 0x765E0000 ] C:\WINDOWS\system32\CRYPT32.dll [5.131.2600.2180,2004-08-04 15:51:00]
[ 0x76680000 ] C:\WINDOWS\system32\WININET.dll [6.0.2900.2937,2006-06-23 19:11:22]
[ 0x767C0000 ] C:\WINDOWS\system32\schannel.dll [5.1.2600.2180,2004-08-04 15:51:51]
[ 0x76960000 ] C:\WINDOWS\system32\ntshrui.dll [5.1.2600.2180,2004-08-04 15:52:18]
[ 0x76990000 ] C:\WINDOWS\system32\ole32.dll [5.1.2600.2726,2005-07-26 12:39:49]
[ 0x76AF0000 ] C:\WINDOWS\system32\ATL.DLL [3.5.2284.0,2004-08-04 15:51:54]
[ 0x76B10000 ] C:\WINDOWS\system32\WINMM.dll [5.1.2600.2180,2004-08-04 15:52:33]
[ 0x76C00000 ] C:\WINDOWS\system32\WINTRUST.dll [5.131.2600.2180,2004-08-04 15:52:04]
[ 0x76C60000 ] C:\WINDOWS\system32\IMAGEHLP.dll [5.1.2600.2180,2004-08-04 15:51:26]
[ 0x76D30000 ] C:\WINDOWS\system32\iphlpapi.dll [5.1.2600.2912,2006-05-19 21:14:08]
[ 0x76D70000 ] C:\WINDOWS\system32\appHelp.dll [5.1.2600.2180,2004-08-04 15:51:35]
[ 0x76DB0000 ] C:\WINDOWS\system32\MSASN1.dll [5.1.2600.2180,2004-08-04 15:52:28]
[ 0x76E50000 ] C:\WINDOWS\system32\rtutils.dll [5.1.2600.2180,2004-08-04 15:51:50]
[ 0x76E60000 ] C:\WINDOWS\system32\rasman.dll [5.1.2600.2180,2004-08-04 15:51:42]
[ 0x76E80000 ] C:\WINDOWS\system32\TAPI32.dll [5.1.2600.2180,2004-08-04 15:51:53]
[ 0x76EB0000 ] C:\WINDOWS\system32\RASAPI32.DLL [5.1.2600.2180,2004-08-04 15:51:38]
[ 0x76EF0000 ] C:\WINDOWS\system32\DNSAPI.dll [5.1.2600.2938,2006-06-27 01:41:39]
[ 0x76F30000 ] C:\WINDOWS\system32\WLDAP32.dll [5.1.2600.2180,2004-08-04 15:52:07]
[ 0x76F80000 ] C:\WINDOWS\System32\winrnr.dll [5.1.2600.2180,2004-08-04 15:51:57]
[ 0x76F90000 ] C:\WINDOWS\system32\rasadhlp.dll [5.1.2600.2938,2006-06-27 01:41:39]
[ 0x76FA0000 ] C:\WINDOWS\system32\CLBCATQ.DLL [2001.12.4414.308,2005-07-26 12:39:45]
[ 0x77020000 ] C:\WINDOWS\system32\COMRes.dll [2001.12.4414.258,2004-08-04 15:51:40]
[ 0x770F0000 ] C:\WINDOWS\system32\OLEAUT32.dll [5.1.2600.2180,2004-08-04 15:52:50]
[ 0x77180000 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [6.0.2900.2982,2006-08-25 23:49:41]
[ 0x77BA0000 ] C:\WINDOWS\system32\midimap.dll [5.1.2600.2180,2004-08-04 15:51:30]
[ 0x77BB0000 ] C:\WINDOWS\system32\MSACM32.dll [5.1.2600.2180,2004-08-04 15:52:08]
[ 0x77BD0000 ] C:\WINDOWS\system32\VERSION.dll [5.1.2600.2180,2004-08-04 15:51:59]
[ 0x77BE0000 ] C:\WINDOWS\system32\msvcrt.dll [7.0.2600.2180,2004-08-04 15:54:19]
[ 0x77D10000 ] C:\WINDOWS\system32\USER32.dll [5.1.2600.2622,2005-03-03 02:10:05]
[ 0x77DA0000 ] C:\WINDOWS\system32\ADVAPI32.dll [5.1.2600.2180,2004-08-04 15:51:22]
[ 0x77E50000 ] C:\WINDOWS\system32\RPCRT4.dll [5.1.2600.2180,2004-08-04 15:51:44]
[ 0x77EF0000 ] C:\WINDOWS\system32\GDI32.dll [5.1.2600.2818,2005-12-29 10:56:04]
[ 0x77F40000 ] C:\WINDOWS\system32\SHLWAPI.dll [6.0.2900.2937,2006-06-23 19:11:21]
[ 0x77FC0000 ] C:\WINDOWS\system32\Secur32.dll [5.1.2600.2180,2004-08-04 15:52:01]
[ 0x7C800000 ] C:\WINDOWS\system32\kernel32.dll [5.1.2600.2945,2006-07-05 18:55:58]
[ 0x7C920000 ] C:\WINDOWS\system32\ntdll.dll [5.1.2600.2180,2004-08-04 15:52:00]
[ 0x7D590000 ] C:\WINDOWS\system32\SHELL32.dll [6.0.2900.2951,2006-07-13 21:34:55]
___________________________________

瑞星卡卡安全论坛