瑞星卡卡安全论坛
恋恋小雪 - 2007-1-10 8:53:00
每次把软件存到U盘里,再复制到电脑里后,就不能运行了...
用瑞星杀不出来...怎么办呢???
烧香的熊猫 - 2007-1-10 9:02:00
好像u盘的事,换个u盘看看
afkp4e7 - 2007-1-10 9:11:00
就是感染了你吧
安全防卫 - 2007-1-10 9:27:00
格式化一下.能否解决问题~~~~~~~~~~~~
恋恋小雪 - 2007-1-10 9:29:00
格式化没用的……怎么了呀。。。
1楼的那个熊猫~~终于被解决了。。。
恋恋小雪 - 2007-1-10 9:30:00
| 引用: |
【烧香的熊猫的贴子】好像u盘的事,换个u盘看看
……………… |
后来连我的MP3也这样了。。不是盘的问题。。
烧香的熊猫 - 2007-1-10 9:32:00
========Content========
扫System Repair Engineer日志上来
恋恋小雪 - 2007-1-10 9:36:00
| 引用: |
【烧香的熊猫的贴子】========Content========
扫System Repair Engineer日志上来
……………… |
请问。。具体怎么扫?不好意思,我不太懂。。劳驾了
afkp4e7 - 2007-1-10 9:39:00
http://www.kztechs.com/sreng/sreng2.zip
System Repair Engineer
附件:
795322200711093031.JPG
烧香的熊猫 - 2007-1-10 9:41:00
下载地址
http://www.kztechs.com/sreng/sreng2.zip
解压,运行,扫描日志,把日志贴上来
恋恋小雪 - 2007-1-10 9:42:00
好,==
烧香的熊猫 - 2007-1-10 9:55:00
保存报告,把报告文本里的内容复制,粘贴上来
恋恋小雪 - 2007-1-10 10:01:00
第1部分:
[CODE]
2007-01-10,09:51:10
System Repair Engineer 2.3.13.690
Smallfrogs (http://www.KZTechs.com)
Windows 2000 Professional Service Pack 4 (Build 2195)
- 管理权限用户 - 完整功能
以下内容被选中:
所有的启动项目(包括注册表、启动文件夹、服务等)
浏览器加载项
正在运行的进程(包括进程模块信息)
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><ctfmon.exe> [Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<FlashPlayerUpdate><C:\WINNT\system32\Macromed\Flash\GetFlash.exe> [(Verified)Adobe Systems, Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Synchronization Manager><mobsync.exe /logon> [(Verified)Microsoft Corporation]
<IgfxTray><C:\WINNT\system32\igfxtray.exe> [(Verified)Intel Corporation]
<HotKeysCmds><C:\WINNT\system32\hkcmd.exe> [(Verified)Intel Corporation]
<SoundMan><SOUNDMAN.EXE> [(Verified)Realtek Semiconductor Corp.]
<IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload> [(Verified)Microsoft Corporation]
<DAEMON Tools-1033><"C:\Program Files\D-Tools\daemon.exe" -lang 1033> [VeNoM386 and SwENSkE]
<SunJavaUpdateSched><C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe> [N/A]
<NuTCSetupEnviron><C:\Program Files\Rational\Rational Test\nutcroot\bin\ncoeenv.exe> [N/A]
<LanStar Client><C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\CltLoad.exe> [N/A]
<stup.exe><C:\PROGRA~1\TENCENT\Adplus\stup.exe> [N/A]
<RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<360Safetray><C:\Program Files\360safe\safemon\360tray.exe> [奇虎网]
<RfwMain><"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><EXPLORER.EXE> [(Verified)Microsoft Corporation]
<Userinit><C:\WINNT\system32\userinit.exe,> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINNT\system32\RavExt.dll> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\CCMProtect]
<WinlogonNotify: CCMProtect><C:\WINNT\system32\CProtect.dll> [Unifound]
恋恋小雪 - 2007-1-10 10:02:00
第2部分:
==================================
启动文件夹
[服务管理器]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\服务管理器.lnk --> C:\PROGRA~1\MI6841~1\80\Tools\Binn\sqlmangr.exe [Microsoft Corporation]><N>
[腾讯QQ]
<C:\Documents and Settings\a\「开始」菜单\程序\启动\腾讯QQ.lnk --> D:\PROGRA~1\Tencent\QQ\QQ.exe [TENCENT]><N>
==================================
服务
[ASP.NET State Service / aspnet_state][Stopped/Manual Start]
<C:\WINNT\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
[Visual Studio Debugger Proxy Service / DbgProxy][Stopped/Manual Start]
<C:\Program Files\Microsoft Visual Studio .NET 2003\Common7\Packages\Debugger\dbgproxy.exe><Microsoft Corporation>
[Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]
<C:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.>
[InterBase Guardian / InterBaseGuardian][Running/Auto Start]
<C:\Program Files\Borland\InterBase\bin\ibguard.exe><Borland Software Corporation>
[InterBase Server / InterBaseServer][Running/Manual Start]
<C:\Program Files\Borland\InterBase\bin\ibserver.exe><Borland Software Corporation>
[MATLAB Server / matlabserver][Running/Auto Start]
<C:\MATLAB6p1\webserver\bin\win32\matlabserver.exe><N/A>
[Machine Debug Manager / MDM][Running/Auto Start]
<"C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe"><Microsoft Corporation>
[Microsoft Search / MSSEARCH][Running/Auto Start]
<"C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe"><Microsoft Corporation>
[MSSQLSERVER / MSSQLSERVER][Running/Auto Start]
<C:\PROGRA~1\MI6841~1\MSSQL\binn\sqlservr.exe><Microsoft Corporation>
[MSSQLServerADHelper / MSSQLServerADHelper][Stopped/Manual Start]
<C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe><Microsoft Corporation>
[NuTCRACKERService / NuTCRACKERService][Running/Auto Start]
<C:\WINNT\system32\nutsrv4.exe><DataFocus, Inc.>
[OracleClientCache80 / OracleClientCache80][Stopped/Manual Start]
<C:\orant\BIN\ONRSD80.EXE><N/A>
[Rising Proxy Service / RfwProxySrv][Stopped/Manual Start]
<c:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService][Running/Auto Start]
<c:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter][Running/Auto Start]
<"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon][Running/Auto Start]
<"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[SQLSERVERAGENT / SQLSERVERAGENT][Stopped/Manual Start]
<C:\PROGRA~1\MI6841~1\MSSQL\binn\sqlagent.exe><Microsoft Corporation>
[Apache Tomcat / Tomcat5][Stopped/Manual Start]
<C:\Program Files\Apache Software Foundation\Tomcat5\bin\tomcat.exe //RS//Tomcat5><Apache Software Foundation>
[Portable Media Serial Number Service / WmdmPmSN][Stopped/Manual Start]
<C:\WINNT\System32\svchost.exe -k netsvcs-->C:\WINNT\system32\mspmsnsv.dll><Microsoft Corporation>
==================================
驱动程序
[Service for WDM 3D Audio Driver / ALCXSENS][Running/Manual Start]
<system32\drivers\ALCXSENS.SYS><Sensaura>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
<system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[Rising TDI Base Driver / BaseTDI][Running/Auto Start]
<System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[Daemon / Daemon][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\daemon.sys><VeNoM386 and SwENSkE>
[dmboot / dmboot][Stopped/Disabled]
<System32\drivers\dmboot.sys><VERITAS Software Corp.>
[Logical Disk Manager Driver / dmio][Running/Boot Start]
<\SystemRoot\System32\drivers\dmio.sys><VERITAS Software Corp.>
[dmload / dmload][Running/Boot Start]
<\SystemRoot\System32\drivers\dmload.sys><VERITAS Software Corp.>
[ExpScaner / ExpScaner][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\ExpScan.sys><>
[hardlock / hardlock][Running/Auto Start]
<\??\C:\WINNT\system32\drivers\hardlock.sys><Aladdin Knowledge Systems>
[Haspnt / Haspnt][Running/Auto Start]
<\??\C:\WINNT\system32\drivers\Haspnt.sys><Aladdin Knowledge Systems>
[HOOKAPI / HOOKAPI][Stopped/Manual Start]
<\??\C:\PROGRAM FILES\RISING\RAV\HOOKAPI.SYS><瑞星软件有限公司>
[HookCont / HookCont][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\HOOKCONT.sys><Rising>
[HookReg / HookReg][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\HookReg.sys><>
[HookSys / HookSys][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\HookSys.sys><Rising>
[HookUrl / HookUrl][Running/Auto Start]
<\??\C:\Program Files\Rising\Rfw\HookUrl.sys><Beijing Rising Technology Co., Ltd.>
[ialm / ialm][Running/Manual Start]
<system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[MEMSCAN / MEMSCAN][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司>
[mProcRs / mProcRs][Running/Auto Start]
<\??\c:\program files\rising\rfw\mProcRs.sys><Beijing Rising Technology Co., Ltd.>
[New0 / New0][Running/Auto Start]
<\??\C:\WINNT\system32\new.sys><N/A>
[npkcrypt / npkcrypt][Running/Auto Start]
<\??\C:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsFwDrv / RsFwDrv][Running/Auto Start]
<\??\C:\Program Files\Rising\Rfw\RsFwDrv.sys><Beijing Rising Technology Co., Ltd.>
[RsNTGDI / RsNTGDI][Running/Boot Start]
<\SystemRoot\system32\Drivers\RsNTGdi.sys><Beijing Rising Technology Co., Ltd.>
[RSPPSYS / RSPPSYS][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\RSPPSYS.sys><Rising>
[Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
<system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Superk53 / Superk53][Running/Auto Start]
<\SystemRoot\System32\drivers\superk53.sys><Microsoft Corporation>
[TDDI / TDDI][Running/Auto Start]
<\??\C:\WINNT\system32\drivers\tddi.sys><SafeNet China Ltd.>
[World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
<system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
恋恋小雪 - 2007-1-10 10:03:00
第2部分
==================================
启动文件夹
[服务管理器]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\服务管理器.lnk --> C:\PROGRA~1\MI6841~1\80\Tools\Binn\sqlmangr.exe [Microsoft Corporation]><N>
[腾讯QQ]
<C:\Documents and Settings\a\「开始」菜单\程序\启动\腾讯QQ.lnk --> D:\PROGRA~1\Tencent\QQ\QQ.exe [TENCENT]><N>
==================================
服务
[ASP.NET State Service / aspnet_state][Stopped/Manual Start]
<C:\WINNT\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
[Visual Studio Debugger Proxy Service / DbgProxy][Stopped/Manual Start]
<C:\Program Files\Microsoft Visual Studio .NET 2003\Common7\Packages\Debugger\dbgproxy.exe><Microsoft Corporation>
[Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]
<C:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.>
[InterBase Guardian / InterBaseGuardian][Running/Auto Start]
<C:\Program Files\Borland\InterBase\bin\ibguard.exe><Borland Software Corporation>
[InterBase Server / InterBaseServer][Running/Manual Start]
<C:\Program Files\Borland\InterBase\bin\ibserver.exe><Borland Software Corporation>
[MATLAB Server / matlabserver][Running/Auto Start]
<C:\MATLAB6p1\webserver\bin\win32\matlabserver.exe><N/A>
[Machine Debug Manager / MDM][Running/Auto Start]
<"C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe"><Microsoft Corporation>
[Microsoft Search / MSSEARCH][Running/Auto Start]
<"C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe"><Microsoft Corporation>
[MSSQLSERVER / MSSQLSERVER][Running/Auto Start]
<C:\PROGRA~1\MI6841~1\MSSQL\binn\sqlservr.exe><Microsoft Corporation>
[MSSQLServerADHelper / MSSQLServerADHelper][Stopped/Manual Start]
<C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe><Microsoft Corporation>
[NuTCRACKERService / NuTCRACKERService][Running/Auto Start]
<C:\WINNT\system32\nutsrv4.exe><DataFocus, Inc.>
[OracleClientCache80 / OracleClientCache80][Stopped/Manual Start]
<C:\orant\BIN\ONRSD80.EXE><N/A>
[Rising Proxy Service / RfwProxySrv][Stopped/Manual Start]
<c:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService][Running/Auto Start]
<c:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter][Running/Auto Start]
<"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon][Running/Auto Start]
<"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[SQLSERVERAGENT / SQLSERVERAGENT][Stopped/Manual Start]
<C:\PROGRA~1\MI6841~1\MSSQL\binn\sqlagent.exe><Microsoft Corporation>
[Apache Tomcat / Tomcat5][Stopped/Manual Start]
<C:\Program Files\Apache Software Foundation\Tomcat5\bin\tomcat.exe //RS//Tomcat5><Apache Software Foundation>
[Portable Media Serial Number Service / WmdmPmSN][Stopped/Manual Start]
<C:\WINNT\System32\svchost.exe -k netsvcs-->C:\WINNT\system32\mspmsnsv.dll><Microsoft Corporation>
==================================
驱动程序
[Service for WDM 3D Audio Driver / ALCXSENS][Running/Manual Start]
<system32\drivers\ALCXSENS.SYS><Sensaura>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
<system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[Rising TDI Base Driver / BaseTDI][Running/Auto Start]
<System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[Daemon / Daemon][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\daemon.sys><VeNoM386 and SwENSkE>
[dmboot / dmboot][Stopped/Disabled]
<System32\drivers\dmboot.sys><VERITAS Software Corp.>
[Logical Disk Manager Driver / dmio][Running/Boot Start]
<\SystemRoot\System32\drivers\dmio.sys><VERITAS Software Corp.>
[dmload / dmload][Running/Boot Start]
<\SystemRoot\System32\drivers\dmload.sys><VERITAS Software Corp.>
[ExpScaner / ExpScaner][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\ExpScan.sys><>
[hardlock / hardlock][Running/Auto Start]
<\??\C:\WINNT\system32\drivers\hardlock.sys><Aladdin Knowledge Systems>
[Haspnt / Haspnt][Running/Auto Start]
<\??\C:\WINNT\system32\drivers\Haspnt.sys><Aladdin Knowledge Systems>
[HOOKAPI / HOOKAPI][Stopped/Manual Start]
<\??\C:\PROGRAM FILES\RISING\RAV\HOOKAPI.SYS><瑞星软件有限公司>
[HookCont / HookCont][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\HOOKCONT.sys><Rising>
[HookReg / HookReg][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\HookReg.sys><>
[HookSys / HookSys][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\HookSys.sys><Rising>
[HookUrl / HookUrl][Running/Auto Start]
<\??\C:\Program Files\Rising\Rfw\HookUrl.sys><Beijing Rising Technology Co., Ltd.>
[ialm / ialm][Running/Manual Start]
<system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[MEMSCAN / MEMSCAN][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司>
[mProcRs / mProcRs][Running/Auto Start]
<\??\c:\program files\rising\rfw\mProcRs.sys><Beijing Rising Technology Co., Ltd.>
[New0 / New0][Running/Auto Start]
<\??\C:\WINNT\system32\new.sys><N/A>
[npkcrypt / npkcrypt][Running/Auto Start]
<\??\C:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsFwDrv / RsFwDrv][Running/Auto Start]
<\??\C:\Program Files\Rising\Rfw\RsFwDrv.sys><Beijing Rising Technology Co., Ltd.>
[RsNTGDI / RsNTGDI][Running/Boot Start]
<\SystemRoot\system32\Drivers\RsNTGdi.sys><Beijing Rising Technology Co., Ltd.>
[RSPPSYS / RSPPSYS][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\RSPPSYS.sys><Rising>
[Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
<system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Superk53 / Superk53][Running/Auto Start]
<\SystemRoot\System32\drivers\superk53.sys><Microsoft Corporation>
[TDDI / TDDI][Running/Auto Start]
<\??\C:\WINNT\system32\drivers\tddi.sys><SafeNet China Ltd.>
[World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
<system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
恋恋小雪 - 2007-1-10 10:04:00
地3部分
==================================
浏览器加载项
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[IeCatch2 Class]
{A5366673-E8CA-11D3-9CD9-0090271D075B} <C:\PROGRA~1\FLASHGET\jccatch.dll, Amaze Soft>
[NavigatMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360safe\safemon\safemon.dll, N/A>
[Web Browser Applet Control]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINNT\system32\Msjava.dll, Microsoft Corporation>
[Edit with XML Spy]
{2222EF56-F49E-4d07-A14E-8D2B08766958} <, N/A>
[豪杰超级解霸V8]
{367E0A21-8601-4986-9C9A-153BF5ACA118} <C:\Herosoft\HeroV8\STHSDVD.EXE, herosoft>
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[@shdoclc.dll,-866]
{c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <d:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[FlashGet]
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\flashget.exe, Amaze Soft>
[@msdxmLC.dll,-1@2052,电台(&R)]
{8E718888-423F-11D2-876E-00A0C9082467} <C:\WINNT\system32\msdxm.ocx, Microsoft Corporation>
[FlashGet Bar]
{E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\fgiebar.dll, Amaze Soft>
[金山快译(&K)]
{6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} <C:\PROGRA~1\Kingsoft\FASTAI~1\IEBand.dll, >
[Java Plug-in 1.4.2_05]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll, JavaSoft / Sun Microsystems, Inc.>
[Java Plug-in 1.4.2_05]
{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} <C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll, JavaSoft / Sun Microsystems, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINNT\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[Edit with X&ML Spy]
<C:\Program Files\Altova\XMLSPY2004\spy.htm, N/A>
[上传到QQ网络硬盘]
<D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[使用网际快车下载]
<C:\PROGRA~1\FLASHGET\jc_link.htm, N/A>
[使用网际快车下载全部链接]
<C:\PROGRA~1\FLASHGET\jc_all.htm, N/A>
[添加到QQ自定义面板]
<D:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
<D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<D:\Program Files\Tencent\QQ\SendMMS.htm, N/A>
[豪杰超级解霸V8实时播放]
<C:\Herosoft\HeroV8\MPURLGET.HTM, N/A>
==================================
正在运行的进程
[PID: 164][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.00.2195.6601]
[PID: 188][\??\C:\WINNT\system32\csrss.exe] [Microsoft Corporation, 5.00.2195.6601]
[PID: 184][\??\C:\WINNT\system32\winlogon.exe] [Microsoft Corporation, 5.00.2195.6997]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[PID: 236][C:\WINNT\system32\services.exe] [Microsoft Corporation, 5.00.2195.7035]
[C:\WINNT\system32\dmserver.dll] [VERITAS Software Corp., 2195.6605.297.3]
[PID: 248][C:\WINNT\system32\lsass.exe] [Microsoft Corporation, 5.00.2195.7011]
[PID: 400][c:\program files\rising\rfw\rfwsrv.exe] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 33]
[c:\program files\rising\rfw\RfwRule.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 13]
[c:\program files\rising\rfw\rfwlog.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 6]
[c:\program files\rising\rfw\Rfwdrv.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 21]
[c:\program files\rising\rfw\psapi.dll] [Microsoft Corporation, 4.00]
[c:\program files\rising\rfw\MonDrv.dll] [rs, 1, 0, 0, 4]
[c:\program files\rising\rfw\ProcLib.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 9]
[PID: 424][C:\WINNT\system32\svchost.exe] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 460][C:\Program Files\Rising\Rav\CCenter.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3]
[PID: 560][C:\WINNT\system32\spoolsv.exe] [Microsoft Corporation, 5.00.2195.7059]
[C:\WINNT\system32\OLFMNT40.DLL] [Microsoft Corporation, 9.0.98.0105]
[C:\WINNT\system32\spool\PRTPROCS\W32X86\olfpnt40.dll] [Microsoft Corporation, 9.0.98.0105]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 600][C:\WINNT\system32\svchost.exe] [Microsoft Corporation, 5.00.2134.1]
[PID: 620][C:\Program Files\Borland\InterBase\bin\ibguard.exe] [Borland Software Corporation, WI-V6.5.0.28]
[C:\WINNT\system32\gds32.dll] [Borland Software Corporation, WI-V6.5.0.28]
[PID: 656][C:\MATLAB6p1\webserver\bin\win32\matlabserver.exe] [N/A, N/A]
[c:\matlab6p1\bin\win32\libeng.dll] [The MathWorks Inc., 6.1.0.118605]
[c:\matlab6p1\bin\win32\libut.dll] [The MathWorks Inc., 6.1.0.118132]
[c:\matlab6p1\bin\win32\libmx.dll] [The MathWorks Inc., 6.1.0.362]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\mwoles05.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\libmex.dll] [The MathWorks Inc., 6.1.0.118278]
[c:\matlab6p1\bin\win32\libmwservices.dll] [The MathWorks Inc., 6.1.0.123a]
[c:\matlab6p1\bin\win32\mpath.dll] [The MathWorks Inc., 6.1.0.117904]
[PID: 656][c:\matlab6p1\bin\win32\matlab.exe] [The MathWorks Inc., 6.0.0.116632]
[c:\matlab6p1\bin\win32\hg.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\libmat.dll] [The MathWorks Inc., 6.1.0.118124]
[c:\matlab6p1\bin\win32\numerics.dll] [The MathWorks Inc., 6.1.0.458]
[c:\matlab6p1\bin\win32\libmwlapack.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\libmwfftw.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\udd.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\libmwbuiltins.dll] [The MathWorks Inc., 6.1.0.284]
[c:\matlab6p1\bin\win32\uiw.dll] [The MathWorks Inc., 6.1.0.479a]
[c:\matlab6p1\bin\win32\gui.dll] [The MathWorks Inc., 6.1.0.479a]
[c:\matlab6p1\bin\win32\m_interpreter.dll] [The MathWorks Inc., 6.1.0.463]
[c:\matlab6p1\bin\win32\m_pcodeio.dll] [The MathWorks Inc., 6.1.0.118481]
[c:\matlab6p1\bin\win32\m_ir.dll] [The MathWorks Inc., 6.1.0.118263]
[c:\matlab6p1\bin\win32\m_parser.dll] [The MathWorks Inc., 6.1.0.117904]
[c:\matlab6p1\bin\win32\m_pcodegen.dll] [The MathWorks Inc., 6.1.0.118299]
[c:\matlab6p1\bin\win32\simulink.dll] [The MathWorks Inc., 4.1.0.525]
[c:\matlab6p1\bin\win32\ode.dll] [The MathWorks Inc., 6.1.0.117904]
[c:\matlab6p1\bin\win32\hardcopy.dll] [The MathWorks Inc., 6.1.0.488]
[c:\matlab6p1\bin\win32\jmi.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\MFC42.DLL] [Microsoft Corporation, 6.00.8267.0]
[c:\matlab6p1\bin\win32\udd_mi.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\atlas_PIII.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\lapack.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\DFORRT.dll] [Digital Equipment Corporation, 6.0 - 575]
恋恋小雪 - 2007-1-10 10:05:00
第4部分
[PID: 672][C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe] [Microsoft Corporation, 7.10.3077]
[C:\Program Files\Common Files\Microsoft Shared\VS7Debug\csm.dll] [Microsoft Corporation, 7.10.3077]
[C:\WINNT\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Microsoft Shared\VS7Debug\msdbg2.dll] [Microsoft Corporation, 7.10.3077]
[PID: 692][c:\matlab6p1\bin\win32\matlab.exe] [The MathWorks Inc., 6.0.0.116632]
[c:\matlab6p1\bin\win32\mwoles05.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\libmx.dll] [The MathWorks Inc., 6.1.0.362]
[c:\matlab6p1\bin\win32\libut.dll] [The MathWorks Inc., 6.1.0.118132]
[c:\matlab6p1\bin\win32\libmex.dll] [The MathWorks Inc., 6.1.0.118278]
[c:\matlab6p1\bin\win32\libmwservices.dll] [The MathWorks Inc., 6.1.0.123a]
[c:\matlab6p1\bin\win32\mpath.dll] [The MathWorks Inc., 6.1.0.117904]
[c:\matlab6p1\bin\win32\hg.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\libmat.dll] [The MathWorks Inc., 6.1.0.118124]
[c:\matlab6p1\bin\win32\numerics.dll] [The MathWorks Inc., 6.1.0.458]
[c:\matlab6p1\bin\win32\libmwlapack.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\libmwfftw.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\udd.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\libmwbuiltins.dll] [The MathWorks Inc., 6.1.0.284]
[c:\matlab6p1\bin\win32\uiw.dll] [The MathWorks Inc., 6.1.0.479a]
[c:\matlab6p1\bin\win32\gui.dll] [The MathWorks Inc., 6.1.0.479a]
[c:\matlab6p1\bin\win32\m_interpreter.dll] [The MathWorks Inc., 6.1.0.463]
[c:\matlab6p1\bin\win32\m_pcodeio.dll] [The MathWorks Inc., 6.1.0.118481]
[c:\matlab6p1\bin\win32\m_ir.dll] [The MathWorks Inc., 6.1.0.118263]
[c:\matlab6p1\bin\win32\m_parser.dll] [The MathWorks Inc., 6.1.0.117904]
[c:\matlab6p1\bin\win32\m_pcodegen.dll] [The MathWorks Inc., 6.1.0.118299]
[c:\matlab6p1\bin\win32\simulink.dll] [The MathWorks Inc., 4.1.0.525]
[c:\matlab6p1\bin\win32\ode.dll] [The MathWorks Inc., 6.1.0.117904]
[c:\matlab6p1\bin\win32\hardcopy.dll] [The MathWorks Inc., 6.1.0.488]
[c:\matlab6p1\bin\win32\jmi.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\MFC42.DLL] [Microsoft Corporation, 6.00.8267.0]
[c:\matlab6p1\bin\win32\udd_mi.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\atlas_PIII.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\lapack.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\DFORRT.dll] [Digital Equipment Corporation, 6.0 - 575]
[c:\matlab6p1\sys\java\jre\win32\jre\bin\javai.dll] [N/A, N/A]
[c:\matlab6p1\sys\java\jre\win32\jre\bin\zip.dll] [N/A, N/A]
[c:\matlab6p1\sys\java\jre\win32\jre\bin\symcjit.dll] [Symantec Corporation http://www.symantec.com, 3.00.072b]
[c:\matlab6p1\bin\win32\nativejava.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\glren.dll] [The MathWorks Inc., 6.0.0.116632]
[PID: 708][C:\PROGRA~1\MI6841~1\MSSQL\binn\sqlservr.exe] [Microsoft Corporation, 2000.080.0760.00]
[C:\PROGRA~1\MI6841~1\MSSQL\binn\OPENDS60.DLL] [Microsoft Corporation, 2000.080.0194.00]
[C:\PROGRA~1\MI6841~1\MSSQL\binn\UMS.DLL] [Microsoft Corporation, 2000.080.0760.00]
[C:\PROGRA~1\MI6841~1\MSSQL\binn\SQLSORT.DLL] [Microsoft Corporation, 2000.080.0760.00]
[C:\PROGRA~1\MI6841~1\MSSQL\binn\Resources\2052\sqlevn70.RLL] [Microsoft Corporation, 2000.080.0760.00]
[C:\Program Files\Microsoft SQL Server\MSSQL\binn\SSNETLIB.dll] [Microsoft Corporation, 2000.080.0760.00]
[C:\Program Files\Microsoft SQL Server\MSSQL\binn\SSNMPN70.dll] [Microsoft Corporation, 2000.080.0534.00]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[C:\PROGRA~1\MI6841~1\MSSQL\binn\SSmsLPCn.dll] [Microsoft Corporation, 2000.080.0760.00]
[C:\Program Files\Microsoft SQL Server\MSSQL\binn\SQLFTQRY.DLL] [Microsoft Corporation, 2000.080.0760.00]
[C:\Program Files\Common Files\system\ole db\SQLOLEDB.DLL] [Microsoft Corporation, 2000.081.9031.018]
[C:\WINNT\system32\MSDART.DLL] [Microsoft Corporation, 2.71.9031.4 built by: Lab06_N(dagbuild)]
[PID: 772][C:\Program Files\Rising\Rav\RavStub.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 4]
[C:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[PID: 908][C:\WINNT\system32\nutsrv4.exe] [DataFocus, Inc., 4.50.0000]
[C:\WINNT\system32\nutmsg4.dll] [DataFocus, Inc., 4.50.0000]
[PID: 928][C:\WINNT\system32\regsvc.exe] [Microsoft Corporation, 5.00.2195.6701]
[PID: 932][C:\WINNT\system32\MSTask.exe] [Microsoft Corporation, 4.71.2195.6972]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 1024][C:\WINNT\System32\WBEM\WinMgmt.exe] [Microsoft Corporation, 1.50.1085.0100]
[PID: 1068][C:\WINNT\system32\svchost.exe] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 1104][C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe] [Microsoft Corporation, 9.107.8320.0]
[C:\Program Files\Common Files\System\MSSearch\Bin\mssws.dll] [Microsoft Corporation, 9.107.8320.0]
[C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\mssrch.dll] [Microsoft Corporation, 9.107.8320.0]
[C:\Program Files\Common Files\System\MSSearch\Bin\tquery.dll] [Microsoft Corporation, 9.107.8320.0]
[C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\propdefs.dll] [Microsoft Corporation, 9.107.8320.0]
[C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\srchidx.dll] [Microsoft Corporation, 9.107.8320.0]
[PID: 220][C:\WINNT\system32\CCMClientNT.exe] [, 5.25.20050330]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CPMDesktop.dll] [RealVNC Ltd., 3, 3, 7, 0]
[C:\WINNT\system32\othread2.dll] [N/A, N/A]
[C:\WINNT\system32\VNCHooks.dll] [RealVNC Ltd., 3, 3, 7, 0]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[PID: 1364][C:\WINNT\Explorer.EXE] [Microsoft Corporation, 5.00.3700.6690]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 7]
[C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 6.0.1.2003110300]
[C:\PROGRA~1\FLASHGET\jccatch.dll] [Amaze Soft, 1, 1, 4, 0]
[C:\WINNT\system32\MSDART.DLL] [Microsoft Corporation, 2.71.9031.4 built by: Lab06_N(dagbuild)]
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[C:\WINNT\system32\msimtf.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\PROGRA~1\WINZIP\WZSHLSTB.DLL] [WinZip Computing, Inc., 4.1 (32-bit)]
[C:\Program Files\WinRAR\rarext.dll] [N/A, N/A]
[C:\Program Files\Common Files\Microsoft Shared\Web Folders\2052\nsextint.dll] [N/A, N/A]
[C:\PROGRA~1\WINZIP\wzshlex1.dll] [WinZip Computing, Inc., 4.1 (32-bit)]
[C:\PROGRA~1\WINZIP\WZCAB3.DLL] [WinZip Computing, Inc., 3.1 (32-bit)]
[PID: 1396][C:\Program Files\Borland\InterBase\bin\ibserver.exe] [Borland Software Corporation, WI-V6.5.0.28]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 1604][C:\WINNT\system32\igfxtray.exe] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\hccutils.DLL] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxdev.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxres.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxress.dll] [Intel Corporation, 3.0.0.3889]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
恋恋小雪 - 2007-1-10 10:05:00
第5部分
[PID: 1384][C:\WINNT\system32\hkcmd.exe] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\hccutils.DLL] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxdev.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxhk.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxres.dll] [Intel Corporation, 3.0.0.3889]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[PID: 1640][C:\WINNT\SOUNDMAN.EXE] [Realtek Semiconductor Corp., 5.1.0.27]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[PID: 1664][C:\Program Files\D-Tools\daemon.exe] [VeNoM386 and SwENSkE, 3.0.0.0]
[C:\WINNT\daemon.dll] [VeNoM386 and SwENSkE, 3.0.0.0]
[C:\Program Files\D-Tools\PFCTOC.DLL] [Padus(R), Inc., 1, 0, 0, 8]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[PID: 1676][C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe] [N/A, N/A]
[PID: 1756][C:\Program Files\360safe\safemon\360tray.exe] [奇虎网, 1, 0, 0, 1001]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\Program Files\360safe\safemon\SafeKrnl.dll] [奇虎网, 1, 0, 0, 1001]
[C:\Program Files\360safe\AntiAdwa.dll] [360Safe.com, 2, 2, 1, 1000]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[PID: 1772][C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\lanclt.exe] [N/A, N/A]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\MFC42.DLL] [Microsoft Corporation, 6.00.8267.0]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\SimCom.dll] [N/A, N/A]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\gbm.dll] [N/A, N/A]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\lanSound.dll] [N/A, N/A]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\Collusion.dll] [Golden Soft Corp., 2.0]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\LanCap32.dll] [Goldensoft Co., LTD, 3, 0, 0, 1]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\LanComp.dll] [Goldensoft, Co., LTD., 2, 0, 0, 2]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\LanEng32.dll] [Goldensoft, Co., LTD, 2, 0, 0, 1]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\CltRes.DLL] [YZRD, 4, 0, 0, 0]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[PID: 1700][C:\WINNT\system32\ctfmon.exe] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\system32\MSUTB.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\mui\fallback\0804\msutb.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[PID: 1808][C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe] [Microsoft Corporation, 2000.080.0760.00]
[C:\WINNT\system32\SQLUNIRL.dll] [Microsoft Corporation, 2000.080.0728.00]
[C:\Program Files\Microsoft SQL Server\80\Tools\Binn\W95SCM.dll] [Microsoft Corporation, 2000.080.0760.00]
[C:\Program Files\Microsoft SQL Server\80\Tools\Binn\SQLSVC.dll] [Microsoft Corporation, 2000.080.0760.00]
[C:\WINNT\system32\odbcbcp.dll] [Microsoft Corporation, 2000.081.9031.014]
[C:\Program Files\Microsoft SQL Server\80\Tools\Binn\SQLRESLD.dll] [Microsoft Corporation, 2000.080.0382.00]
[C:\Program Files\Microsoft SQL Server\80\Tools\Binn\Resources\2052\SQLSVC.RLL] [Microsoft Corporation, 2000.080.0194.00]
[C:\Program Files\Microsoft SQL Server\80\Tools\Binn\Resources\2052\sqlmangr.RLL] [Microsoft Corporation, 2000.080.0194.00]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[PID: 1828][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2800.1106]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 6.0.1.2003110300]
[C:\PROGRA~1\FLASHGET\jccatch.dll] [Amaze Soft, 1, 1, 4, 0]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[C:\WINNT\system32\msimtf.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\Common Files\Microsoft Shared\INK\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[C:\WINNT\IME\sptip.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\mui\fallback\0804\sptip.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\WINNT\system32\JPWB.IME] [常诚研制, 4.00.950]
[C:\WINNT\system32\WINWB86.IME] [Microsoft Corporation, 5.00.2000.3]
[C:\WINNT\system32\WINWB98.IME] [Microsoft Corporation, 5.00.2000.3]
[C:\WINNT\system32\KIme.ime] [金山软件公司, 1, 0, 0, 1]
[C:\WINNT\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,16,0]
[C:\WINNT\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\mscorie.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\mscorld.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINNT\system32\msdmo.dll] [N/A, N/A]
[C:\PROGRA~1\COMMON~1\KingSoft\Extract\KSEngine.dll] [金山软件有限公司, 3, 0, 0, 0
恋恋小雪 - 2007-1-10 10:05:00
第6部分
[PID: 1712][C:\WINNT\system32\svchost.exe] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 2100][C:\WINNT\system32\wuauclt.exe] [Microsoft Corporation, 5.8.0.2607 built by: dnsrv(wmbla)]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[PID: 1876][C:\PROGRA~1\FLASHGET\flashget.exe] [Amaze Soft, 1, 6, 0, 0]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 624][C:\Program Files\Microsoft Office\Office\WINWORD.EXE] [Microsoft Corporation, 9.0.2823]
[C:\Program Files\Microsoft Office\Office\MSO9.DLL] [Microsoft Corporation, 9.0.2812]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\Program Files\Rising\Rav\RsPlugIn.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 14]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\PROGRA~1\Kingsoft\FASTAI~1\AddIns\WORDAD~1.DLL] [, 1, 0, 0, 1]
[C:\Program Files\Common Files\Microsoft Shared\Proof\mslid.dll] [Microsoft Corporation, 1.0.2305]
[C:\Program Files\Microsoft Office\Office\msohev.dll] [Microsoft Corporation, 9.0.2626]
[C:\PROGRA~1\COMMON~1\MICROS~1\VBA\VBA6\VBE6.DLL] [Microsoft Corporation, 6.04.9969]
[C:\PROGRA~1\COMMON~1\MICROS~1\VBA\VBA6\2052\VBE6INTL.DLL] [Microsoft Corporation, 6.03.9070]
[C:\PROGRA~1\MICROS~2\Office\2052\OBALLOON.DLL] [Microsoft Corporation, 9.0.2720]
[C:\PROGRA~1\MICROS~2\Office\BLNMGRPS.DLL] [N/A, N/A]
[C:\Program Files\Common Files\Microsoft Shared\Proof\wdbrkchs.dll] [Microsoft Corporation, 1.0]
[C:\Program Files\Common Files\Microsoft Shared\Proof\MSSPELL3.DLL] [Microsoft Corporation, 1.1.6215]
[PID: 2152][C:\WINNT\msagent\AgentSvr.exe] [Microsoft Corporation, 2.00.0.3424]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\Program Files\Microsoft Office\Office\BLNMGR.DLL] [N/A, N/A]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[PID: 1696][D:\Program Files\Tencent\QQ\QQ.exe] [TENCENT, 0, 0, 0, 0]
[D:\Program Files\Tencent\QQ\QQBaseClassInDll.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQHelperDll.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\BasicCtrlDll.dll] [Tencent, 6, 0, 200, 320]
[D:\Program Files\Tencent\QQ\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0]
[C:\WINNT\system32\MSVCP60.dll] [Microsoft Corporation, 6.00.8972.0]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[D:\Program Files\Tencent\QQ\RICHED32.DLL] [Microsoft Corporation, 5.00.2134.1]
[D:\Program Files\Tencent\QQ\RICHED20.dll] [Microsoft Corporation, 5.31.23.1218]
[D:\Program Files\Tencent\QQ\QQAPI.dll] [, 1, 0, 0, 1]
[d:\Program Files\Tencent\QQ\TIMProxy.dll] [tencent, 0, 3, 2, 4]
[D:\Program Files\Tencent\QQ\LoginCtrl.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\npkcntc.dll] [INCA Internet Co., Ltd., 2006, 6, 27, 1]
[D:\Program Files\Tencent\QQ\npkpdb.dll] [INCA Internet Co., Ltd., 2003, 10, 1, 1]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[D:\Program Files\Tencent\QQ\QQRes.dll] [tencent, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\WizardCtrl.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQMainFrame.dll] [N/A, N/A]
[C:\WINNT\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,16,0]
[D:\Program Files\Tencent\QQ\CQQApplication.dll] [N/A, N/A]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\NewSkin.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\HostingMgr.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\CameraDll.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\MailSummary.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQKnowledgeSearch.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQAllInOne.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\GroupLive.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\SCCore.dll] [TENCENT, 2, 0, 0, 1]
[D:\Program Files\Tencent\QQ\gdiplus.dll] [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)]
[D:\Program Files\Tencent\QQ\QQSpace.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\vbscript.dll] [Microsoft Corporation, 5.6.0.7426]
[C:\WINNT\system32\msdmo.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQGroupMng.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\UserDefinedHead.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQPlugin.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQConfigPlugin.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QRingMng.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQAvatar.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\FlashAvatarDll.dll] [, 1, 4, 0, 1]
[D:\Program Files\Tencent\QQ\LongConnection.dll] [tencent, 5, 0, 200, 160]
[D:\Program Files\Tencent\QQ\PhoneAPI.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\DialerAllinOne.dll] [tencent, 1, 4, 0, 0]
[D:\Program Files\Tencent\QQ\QQPet.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQSysMsgMng.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\BQQApplication.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQSettingCtrl.dll] [, 1, 0, 0, 1]
[C:\WINNT\system32\msimtf.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[D:\Program Files\Tencent\QQ\QQCustomFace.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\CommercesMng.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\PersonalDesktop.dll] [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
[D:\Program Files\Tencent\QQ\QQAddr.dll] [深圳市腾讯计算机系统有限公司, 5, 0, 101, 271]
[D:\Program Files\Tencent\QQ\GroupConnection.dll] [Tencent, 0, 3, 3, 5]
[D:\Program Files\Tencent\QQ\ImageOle.dll] [TODO: <Company name>, 1.0.0.1]
[D:\Program Files\Tencent\QQ\QQSceneMng.dll] [N/A, N/A]
[C:\WINNT\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\mscorie.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\mscorld.dll] [Microsoft Corporation, 1.1.4322.573]
[D:\Program Files\Tencent\QQ\QQPhoneHelper.dll] [腾讯科技(深圳)有限公司, 2, 1, 3, 30]
[D:\Program Files\Tencent\QQ\QQZip.dll] [tencent, 0, 3, 2, 4]
恋恋小雪 - 2007-1-10 10:06:00
最后
[PID: 1328][D:\Program Files\Tencent\QQ\TIMPlatform.exe] [tencent, 0, 3, 1, 8]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[d:\Program Files\Tencent\QQ\TIMProxy.dll] [tencent, 0, 3, 2, 4]
[PID: 1400][D:\Program Files\Tencent\QQ\QQ.exe] [TENCENT, 0, 0, 0, 0]
[D:\Program Files\Tencent\QQ\QQBaseClassInDll.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQHelperDll.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\BasicCtrlDll.dll] [Tencent, 6, 0, 200, 320]
[D:\Program Files\Tencent\QQ\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0]
[C:\WINNT\system32\MSVCP60.dll] [Microsoft Corporation, 6.00.8972.0]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[D:\Program Files\Tencent\QQ\RICHED32.DLL] [Microsoft Corporation, 5.00.2134.1]
[D:\Program Files\Tencent\QQ\RICHED20.dll] [Microsoft Corporation, 5.31.23.1218]
[D:\Program Files\Tencent\QQ\QQAPI.dll] [, 1, 0, 0, 1]
[d:\Program Files\Tencent\QQ\TIMProxy.dll] [tencent, 0, 3, 2, 4]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\LoginCtrl.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\npkcntc.dll] [INCA Internet Co., Ltd., 2006, 6, 27, 1]
[D:\Program Files\Tencent\QQ\npkpdb.dll] [INCA Internet Co., Ltd., 2003, 10, 1, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[D:\Program Files\Tencent\QQ\QQRes.dll] [tencent, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\WizardCtrl.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQMainFrame.dll] [N/A, N/A]
[C:\WINNT\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,16,0]
[D:\Program Files\Tencent\QQ\CQQApplication.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\NewSkin.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\HostingMgr.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\CameraDll.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\MailSummary.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQKnowledgeSearch.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQAllInOne.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\GroupLive.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\SCCore.dll] [TENCENT, 2, 0, 0, 1]
[D:\Program Files\Tencent\QQ\gdiplus.dll] [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)]
[D:\Program Files\Tencent\QQ\QQSpace.dll] [, 1, 0, 0, 1]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\vbscript.dll] [Microsoft Corporation, 5.6.0.7426]
[C:\WINNT\system32\msdmo.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQGroupMng.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\UserDefinedHead.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQPlugin.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQCustomFace.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQPet.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQConfigPlugin.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\FlashAvatarDll.dll] [, 1, 4, 0, 1]
[D:\Program Files\Tencent\QQ\QRingMng.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQMagicFace.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQAvatar.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQSceneMng.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\GroupConnection.dll] [Tencent, 0, 3, 3, 5]
[D:\Program Files\Tencent\QQ\LongConnection.dll] [tencent, 5, 0, 200, 160]
[D:\Program Files\Tencent\QQ\PhoneAPI.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\DialerAllinOne.dll] [tencent, 1, 4, 0, 0]
[D:\Program Files\Tencent\QQ\QQSysMsgMng.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\BQQApplication.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\ImageOle.dll] [TODO: <Company name>, 1.0.0.1]
[C:\WINNT\system32\msimtf.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[D:\Program Files\Tencent\QQ\QQSettingCtrl.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQZip.dll] [tencent, 0, 3, 2, 4]
[D:\Program Files\Tencent\QQ\CommercesMng.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\PersonalDesktop.dll] [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
[D:\Program Files\Tencent\QQ\QQAddr.dll] [深圳市腾讯计算机系统有限公司, 5, 0, 101, 271]
[D:\Program Files\Tencent\QQ\QQPhoneHelper.dll] [腾讯科技(深圳)有限公司, 2, 1, 3, 30]
[D:\Program Files\Tencent\QQ\QQFileTransfer.dll] [Tencent, 0, 3, 3, 5]
[PID: 2376][D:\sreng2\SREng.EXE] [Smallfrogs Studio, 2.3.13.690]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
==================================
文件关联
.TXT Error. [NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINNT\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]
==================================
Winsock 提供者
UniFound IEMonitor [TCP/IP]
C:\WINNT\system32\IEMonitor.dll(N/A, N/A)
==================================
Autorun.inf
N/A
==================================
HOSTS 文件
127.0.0.1 localhost
==================================
API HOOK
警告!System Repair Engineer 提醒
你下面的函数内容与预期值不符,他
们可能被一些恶意的软件所修改:
入口点错误:CreateProcessA
入口点错误:CreateProcessW
==================================
[/CODE]
恋恋小雪 - 2007-1-10 10:06:00
没插U盘扫的。。。
烧香的熊猫 - 2007-1-10 10:19:00
修复文件关联,看来不像病毒干的,用主板上的usb接口试试看
恋恋小雪 - 2007-1-10 10:26:00
但是,我把电脑上的软件压缩用QQ传给同学,她不能解压,文件损坏
那我把U盘插上在扫?
恋恋小雪 - 2007-1-10 10:32:00
[CODE]
2007-01-10,10:21:46
System Repair Engineer 2.3.13.690
Smallfrogs (http://www.KZTechs.com)
Windows 2000 Professional Service Pack 4 (Build 2195)
- 管理权限用户 - 完整功能
以下内容被选中:
所有的启动项目(包括注册表、启动文件夹、服务等)
浏览器加载项
正在运行的进程(包括进程模块信息)
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><ctfmon.exe> [Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<FlashPlayerUpdate><C:\WINNT\system32\Macromed\Flash\GetFlash.exe> [(Verified)Adobe Systems, Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Synchronization Manager><mobsync.exe /logon> [(Verified)Microsoft Corporation]
<IgfxTray><C:\WINNT\system32\igfxtray.exe> [(Verified)Intel Corporation]
<HotKeysCmds><C:\WINNT\system32\hkcmd.exe> [(Verified)Intel Corporation]
<SoundMan><SOUNDMAN.EXE> [(Verified)Realtek Semiconductor Corp.]
<IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload> [(Verified)Microsoft Corporation]
<DAEMON Tools-1033><"C:\Program Files\D-Tools\daemon.exe" -lang 1033> [VeNoM386 and SwENSkE]
<SunJavaUpdateSched><C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe> [N/A]
<NuTCSetupEnviron><C:\Program Files\Rational\Rational Test\nutcroot\bin\ncoeenv.exe> [N/A]
<LanStar Client><C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\CltLoad.exe> [N/A]
<stup.exe><C:\PROGRA~1\TENCENT\Adplus\stup.exe> [N/A]
<RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<360Safetray><C:\Program Files\360safe\safemon\360tray.exe> [奇虎网]
<RfwMain><"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><EXPLORER.EXE> [(Verified)Microsoft Corporation]
<Userinit><C:\WINNT\system32\userinit.exe,> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINNT\system32\RavExt.dll> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\CCMProtect]
<WinlogonNotify: CCMProtect><C:\WINNT\system32\CProtect.dll> [Unifound]
==================================
启动文件夹
[服务管理器]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\服务管理器.lnk --> C:\PROGRA~1\MI6841~1\80\Tools\Binn\sqlmangr.exe [Microsoft Corporation]><N>
[腾讯QQ]
<C:\Documents and Settings\a\「开始」菜单\程序\启动\腾讯QQ.lnk --> D:\PROGRA~1\Tencent\QQ\QQ.exe [TENCENT]><N>
==================================
服务
[ASP.NET State Service / aspnet_state][Stopped/Manual Start]
<C:\WINNT\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
[Visual Studio Debugger Proxy Service / DbgProxy][Stopped/Manual Start]
<C:\Program Files\Microsoft Visual Studio .NET 2003\Common7\Packages\Debugger\dbgproxy.exe><Microsoft Corporation>
[Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]
<C:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.>
[InterBase Guardian / InterBaseGuardian][Running/Auto Start]
<C:\Program Files\Borland\InterBase\bin\ibguard.exe><Borland Software Corporation>
[InterBase Server / InterBaseServer][Running/Manual Start]
<C:\Program Files\Borland\InterBase\bin\ibserver.exe><Borland Software Corporation>
[MATLAB Server / matlabserver][Running/Auto Start]
<C:\MATLAB6p1\webserver\bin\win32\matlabserver.exe><N/A>
[Machine Debug Manager / MDM][Running/Auto Start]
<"C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe"><Microsoft Corporation>
[Microsoft Search / MSSEARCH][Running/Auto Start]
<"C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe"><Microsoft Corporation>
[MSSQLSERVER / MSSQLSERVER][Running/Auto Start]
<C:\PROGRA~1\MI6841~1\MSSQL\binn\sqlservr.exe><Microsoft Corporation>
[MSSQLServerADHelper / MSSQLServerADHelper][Stopped/Manual Start]
<C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe><Microsoft Corporation>
[NuTCRACKERService / NuTCRACKERService][Running/Auto Start]
<C:\WINNT\system32\nutsrv4.exe><DataFocus, Inc.>
[OracleClientCache80 / OracleClientCache80][Stopped/Manual Start]
<C:\orant\BIN\ONRSD80.EXE><N/A>
[Rising Proxy Service / RfwProxySrv][Stopped/Manual Start]
<c:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService][Running/Auto Start]
<c:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter][Running/Auto Start]
<"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon][Running/Auto Start]
<"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[SQLSERVERAGENT / SQLSERVERAGENT][Stopped/Manual Start]
<C:\PROGRA~1\MI6841~1\MSSQL\binn\sqlagent.exe><Microsoft Corporation>
[Apache Tomcat / Tomcat5][Stopped/Manual Start]
<C:\Program Files\Apache Software Foundation\Tomcat5\bin\tomcat.exe //RS//Tomcat5><Apache Software Foundation>
[Portable Media Serial Number Service / WmdmPmSN][Stopped/Manual Start]
<C:\WINNT\System32\svchost.exe -k netsvcs-->C:\WINNT\system32\mspmsnsv.dll><Microsoft Corporation>
==================================
恋恋小雪 - 2007-1-10 10:32:00
驱动程序
[Service for WDM 3D Audio Driver / ALCXSENS][Running/Manual Start]
<system32\drivers\ALCXSENS.SYS><Sensaura>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
<system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[Rising TDI Base Driver / BaseTDI][Running/Auto Start]
<System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[Daemon / Daemon][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\daemon.sys><VeNoM386 and SwENSkE>
[dmboot / dmboot][Stopped/Disabled]
<System32\drivers\dmboot.sys><VERITAS Software Corp.>
[Logical Disk Manager Driver / dmio][Running/Boot Start]
<\SystemRoot\System32\drivers\dmio.sys><VERITAS Software Corp.>
[dmload / dmload][Running/Boot Start]
<\SystemRoot\System32\drivers\dmload.sys><VERITAS Software Corp.>
[ExpScaner / ExpScaner][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\ExpScan.sys><>
[hardlock / hardlock][Running/Auto Start]
<\??\C:\WINNT\system32\drivers\hardlock.sys><Aladdin Knowledge Systems>
[Haspnt / Haspnt][Running/Auto Start]
<\??\C:\WINNT\system32\drivers\Haspnt.sys><Aladdin Knowledge Systems>
[HOOKAPI / HOOKAPI][Stopped/Manual Start]
<\??\C:\PROGRAM FILES\RISING\RAV\HOOKAPI.SYS><瑞星软件有限公司>
[HookCont / HookCont][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\HOOKCONT.sys><Rising>
[HookReg / HookReg][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\HookReg.sys><>
[HookSys / HookSys][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\HookSys.sys><Rising>
[HookUrl / HookUrl][Running/Auto Start]
<\??\C:\Program Files\Rising\Rfw\HookUrl.sys><Beijing Rising Technology Co., Ltd.>
[ialm / ialm][Running/Manual Start]
<system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[MEMSCAN / MEMSCAN][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司>
[mProcRs / mProcRs][Running/Auto Start]
<\??\c:\program files\rising\rfw\mProcRs.sys><Beijing Rising Technology Co., Ltd.>
[New0 / New0][Running/Auto Start]
<\??\C:\WINNT\system32\new.sys><N/A>
[npkcrypt / npkcrypt][Running/Auto Start]
<\??\C:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsFwDrv / RsFwDrv][Running/Auto Start]
<\??\C:\Program Files\Rising\Rfw\RsFwDrv.sys><Beijing Rising Technology Co., Ltd.>
[RsNTGDI / RsNTGDI][Running/Boot Start]
<\SystemRoot\system32\Drivers\RsNTGdi.sys><Beijing Rising Technology Co., Ltd.>
[RSPPSYS / RSPPSYS][Running/Auto Start]
<\??\C:\Program Files\Rising\Rav\RSPPSYS.sys><Rising>
[Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
<system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Superk53 / Superk53][Running/Auto Start]
<\SystemRoot\System32\drivers\superk53.sys><Microsoft Corporation>
[TDDI / TDDI][Running/Auto Start]
<\??\C:\WINNT\system32\drivers\tddi.sys><SafeNet China Ltd.>
[World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
<system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
==================================
恋恋小雪 - 2007-1-10 10:33:00
浏览器加载项
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[IeCatch2 Class]
{A5366673-E8CA-11D3-9CD9-0090271D075B} <C:\PROGRA~1\FLASHGET\jccatch.dll, Amaze Soft>
[NavigatMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360safe\safemon\safemon.dll, N/A>
[Web Browser Applet Control]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINNT\system32\Msjava.dll, Microsoft Corporation>
[Edit with XML Spy]
{2222EF56-F49E-4d07-A14E-8D2B08766958} <, N/A>
[豪杰超级解霸V8]
{367E0A21-8601-4986-9C9A-153BF5ACA118} <C:\Herosoft\HeroV8\STHSDVD.EXE, herosoft>
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[@shdoclc.dll,-866]
{c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <d:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[FlashGet]
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\flashget.exe, Amaze Soft>
[@msdxmLC.dll,-1@2052,电台(&R)]
{8E718888-423F-11D2-876E-00A0C9082467} <C:\WINNT\system32\msdxm.ocx, Microsoft Corporation>
[FlashGet Bar]
{E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\fgiebar.dll, Amaze Soft>
[金山快译(&K)]
{6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} <C:\PROGRA~1\Kingsoft\FASTAI~1\IEBand.dll, >
[Java Plug-in 1.4.2_05]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll, JavaSoft / Sun Microsystems, Inc.>
[Java Plug-in 1.4.2_05]
{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} <C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll, JavaSoft / Sun Microsystems, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINNT\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[Edit with X&ML Spy]
<C:\Program Files\Altova\XMLSPY2004\spy.htm, N/A>
[上传到QQ网络硬盘]
<D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[使用网际快车下载]
<C:\PROGRA~1\FLASHGET\jc_link.htm, N/A>
[使用网际快车下载全部链接]
<C:\PROGRA~1\FLASHGET\jc_all.htm, N/A>
[添加到QQ自定义面板]
<D:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
<D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<D:\Program Files\Tencent\QQ\SendMMS.htm, N/A>
[豪杰超级解霸V8实时播放]
<C:\Herosoft\HeroV8\MPURLGET.HTM, N/A>
==================================
正在运行的进程
[PID: 164][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.00.2195.6601]
[PID: 188][\??\C:\WINNT\system32\csrss.exe] [Microsoft Corporation, 5.00.2195.6601]
[PID: 184][\??\C:\WINNT\system32\winlogon.exe] [Microsoft Corporation, 5.00.2195.6997]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[PID: 236][C:\WINNT\system32\services.exe] [Microsoft Corporation, 5.00.2195.7035]
[C:\WINNT\system32\dmserver.dll] [VERITAS Software Corp., 2195.6605.297.3]
[PID: 248][C:\WINNT\system32\lsass.exe] [Microsoft Corporation, 5.00.2195.7011]
[PID: 400][c:\program files\rising\rfw\rfwsrv.exe] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 33]
[c:\program files\rising\rfw\RfwRule.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 13]
[c:\program files\rising\rfw\rfwlog.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 6]
[c:\program files\rising\rfw\Rfwdrv.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 21]
[c:\program files\rising\rfw\psapi.dll] [Microsoft Corporation, 4.00]
[c:\program files\rising\rfw\MonDrv.dll] [rs, 1, 0, 0, 4]
[c:\program files\rising\rfw\ProcLib.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 9]
[PID: 424][C:\WINNT\system32\svchost.exe] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 460][C:\Program Files\Rising\Rav\CCenter.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3]
[PID: 560][C:\WINNT\system32\spoolsv.exe] [Microsoft Corporation, 5.00.2195.7059]
[C:\WINNT\system32\OLFMNT40.DLL] [Microsoft Corporation, 9.0.98.0105]
[C:\WINNT\system32\spool\PRTPROCS\W32X86\olfpnt40.dll] [Microsoft Corporation, 9.0.98.0105]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 600][C:\WINNT\system32\svchost.exe] [Microsoft Corporation, 5.00.2134.1]
[PID: 620][C:\Program Files\Borland\InterBase\bin\ibguard.exe] [Borland Software Corporation, WI-V6.5.0.28]
[C:\WINNT\system32\gds32.dll] [Borland Software Corporation, WI-V6.5.0.28]
[PID: 656][C:\MATLAB6p1\webserver\bin\win32\matlabserver.exe] [N/A, N/A]
[c:\matlab6p1\bin\win32\libeng.dll] [The MathWorks Inc., 6.1.0.118605]
[c:\matlab6p1\bin\win32\libut.dll] [The MathWorks Inc., 6.1.0.118132]
[c:\matlab6p1\bin\win32\libmx.dll] [The MathWorks Inc., 6.1.0.362]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\mwoles05.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\libmex.dll] [The MathWorks Inc., 6.1.0.118278]
[c:\matlab6p1\bin\win32\libmwservices.dll] [The MathWorks Inc., 6.1.0.123a]
[c:\matlab6p1\bin\win32\mpath.dll] [The MathWorks Inc., 6.1.0.117904]
[PID: 656][c:\matlab6p1\bin\win32\matlab.exe] [The MathWorks Inc., 6.0.0.116632]
[c:\matlab6p1\bin\win32\hg.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\libmat.dll] [The MathWorks Inc., 6.1.0.118124]
[c:\matlab6p1\bin\win32\numerics.dll] [The MathWorks Inc., 6.1.0.458]
[c:\matlab6p1\bin\win32\libmwlapack.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\libmwfftw.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\udd.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\libmwbuiltins.dll] [The MathWorks Inc., 6.1.0.284]
[c:\matlab6p1\bin\win32\uiw.dll] [The MathWorks Inc., 6.1.0.479a]
[c:\matlab6p1\bin\win32\gui.dll] [The MathWorks Inc., 6.1.0.479a]
[c:\matlab6p1\bin\win32\m_interpreter.dll] [The MathWorks Inc., 6.1.0.463]
[c:\matlab6p1\bin\win32\m_pcodeio.dll] [The MathWorks Inc., 6.1.0.118481]
[c:\matlab6p1\bin\win32\m_ir.dll] [The MathWorks Inc., 6.1.0.118263]
[c:\matlab6p1\bin\win32\m_parser.dll] [The MathWorks Inc., 6.1.0.117904]
[c:\matlab6p1\bin\win32\m_pcodegen.dll] [The MathWorks Inc., 6.1.0.118299]
[c:\matlab6p1\bin\win32\simulink.dll] [The MathWorks Inc., 4.1.0.525]
[c:\matlab6p1\bin\win32\ode.dll] [The MathWorks Inc., 6.1.0.117904]
[c:\matlab6p1\bin\win32\hardcopy.dll] [The MathWorks Inc., 6.1.0.488]
[c:\matlab6p1\bin\win32\jmi.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\MFC42.DLL] [Microsoft Corporation, 6.00.8267.0]
[c:\matlab6p1\bin\win32\udd_mi.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\atlas_PIII.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\lapack.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\DFORRT.dll] [Digital Equipment Corporation, 6.0 - 575]
[PID: 672][C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe] [Microsoft Corporation, 7.10.3077]
[C:\Program Files\Common Files\Microsoft Shared\VS7Debug\csm.dll] [Microsoft Corporation, 7.10.3077]
[C:\WINNT\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Microsoft Shared\VS7Debug\msdbg2.dll] [Microsoft Corporation, 7.10.3077]
[PID: 692][c:\matlab6p1\bin\win32\matlab.exe] [The MathWorks Inc., 6.0.0.116632]
[c:\matlab6p1\bin\win32\mwoles05.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\libmx.dll] [The MathWorks Inc., 6.1.0.362]
[c:\matlab6p1\bin\win32\libut.dll] [The MathWorks Inc., 6.1.0.118132]
[c:\matlab6p1\bin\win32\libmex.dll] [The MathWorks Inc., 6.1.0.118278]
[c:\matlab6p1\bin\win32\libmwservices.dll] [The MathWorks Inc., 6.1.0.123a]
[c:\matlab6p1\bin\win32\mpath.dll] [The MathWorks Inc., 6.1.0.117904]
[c:\matlab6p1\bin\win32\hg.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\libmat.dll] [The MathWorks Inc., 6.1.0.118124]
[c:\matlab6p1\bin\win32\numerics.dll] [The MathWorks Inc., 6.1.0.458]
[c:\matlab6p1\bin\win32\libmwlapack.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\libmwfftw.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\udd.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\libmwbuiltins.dll] [The MathWorks Inc., 6.1.0.284]
[c:\matlab6p1\bin\win32\uiw.dll] [The MathWorks Inc., 6.1.0.479a]
[c:\matlab6p1\bin\win32\gui.dll] [The MathWorks Inc., 6.1.0.479a]
[c:\matlab6p1\bin\win32\m_interpreter.dll] [The MathWorks Inc., 6.1.0.463]
[c:\matlab6p1\bin\win32\m_pcodeio.dll] [The MathWorks Inc., 6.1.0.118481]
[c:\matlab6p1\bin\win32\m_ir.dll] [The MathWorks Inc., 6.1.0.118263]
[c:\matlab6p1\bin\win32\m_parser.dll] [The MathWorks Inc., 6.1.0.117904]
[c:\matlab6p1\bin\win32\m_pcodegen.dll] [The MathWorks Inc., 6.1.0.118299]
[c:\matlab6p1\bin\win32\simulink.dll] [The MathWorks Inc., 4.1.0.525]
[c:\matlab6p1\bin\win32\ode.dll] [The MathWorks Inc., 6.1.0.117904]
[c:\matlab6p1\bin\win32\hardcopy.dll] [The MathWorks Inc., 6.1.0.488]
[c:\matlab6p1\bin\win32\jmi.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\MFC42.DLL] [Microsoft Corporation, 6.00.8267.0]
[c:\matlab6p1\bin\win32\udd_mi.dll] [The MathWorks Inc., 6.1.0.450]
[c:\matlab6p1\bin\win32\atlas_PIII.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\lapack.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\DFORRT.dll] [Digital Equipment Corporation, 6.0 - 575]
[c:\matlab6p1\sys\java\jre\win32\jre\bin\javai.dll] [N/A, N/A]
[c:\matlab6p1\sys\java\jre\win32\jre\bin\zip.dll] [N/A, N/A]
[c:\matlab6p1\sys\java\jre\win32\jre\bin\symcjit.dll] [Symantec Corporation http://www.symantec.com, 3.00.072b]
[c:\matlab6p1\bin\win32\nativejava.dll] [N/A, N/A]
[c:\matlab6p1\bin\win32\glren.dll] [The MathWorks Inc., 6.0.0.116632]
恋恋小雪 - 2007-1-10 10:35:00
[PID: 708][C:\PROGRA~1\MI6841~1\MSSQL\binn\sqlservr.exe] [Microsoft Corporation, 2000.080.0760.00]
[C:\PROGRA~1\MI6841~1\MSSQL\binn\OPENDS60.DLL] [Microsoft Corporation, 2000.080.0194.00]
[C:\PROGRA~1\MI6841~1\MSSQL\binn\UMS.DLL] [Microsoft Corporation, 2000.080.0760.00]
[C:\PROGRA~1\MI6841~1\MSSQL\binn\SQLSORT.DLL] [Microsoft Corporation, 2000.080.0760.00]
[C:\PROGRA~1\MI6841~1\MSSQL\binn\Resources\2052\sqlevn70.RLL] [Microsoft Corporation, 2000.080.0760.00]
[C:\Program Files\Microsoft SQL Server\MSSQL\binn\SSNETLIB.dll] [Microsoft Corporation, 2000.080.0760.00]
[C:\Program Files\Microsoft SQL Server\MSSQL\binn\SSNMPN70.dll] [Microsoft Corporation, 2000.080.0534.00]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[C:\PROGRA~1\MI6841~1\MSSQL\binn\SSmsLPCn.dll] [Microsoft Corporation, 2000.080.0760.00]
[C:\Program Files\Microsoft SQL Server\MSSQL\binn\SQLFTQRY.DLL] [Microsoft Corporation, 2000.080.0760.00]
[C:\Program Files\Common Files\system\ole db\SQLOLEDB.DLL] [Microsoft Corporation, 2000.081.9031.018]
[C:\WINNT\system32\MSDART.DLL] [Microsoft Corporation, 2.71.9031.4 built by: Lab06_N(dagbuild)]
[PID: 772][C:\Program Files\Rising\Rav\RavStub.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 4]
[C:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[PID: 908][C:\WINNT\system32\nutsrv4.exe] [DataFocus, Inc., 4.50.0000]
[C:\WINNT\system32\nutmsg4.dll] [DataFocus, Inc., 4.50.0000]
[PID: 928][C:\WINNT\system32\regsvc.exe] [Microsoft Corporation, 5.00.2195.6701]
[PID: 932][C:\WINNT\system32\MSTask.exe] [Microsoft Corporation, 4.71.2195.6972]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 1024][C:\WINNT\System32\WBEM\WinMgmt.exe] [Microsoft Corporation, 1.50.1085.0100]
[PID: 1068][C:\WINNT\system32\svchost.exe] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 1104][C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe] [Microsoft Corporation, 9.107.8320.0]
[C:\Program Files\Common Files\System\MSSearch\Bin\mssws.dll] [Microsoft Corporation, 9.107.8320.0]
[C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\mssrch.dll] [Microsoft Corporation, 9.107.8320.0]
[C:\Program Files\Common Files\System\MSSearch\Bin\tquery.dll] [Microsoft Corporation, 9.107.8320.0]
[C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\propdefs.dll] [Microsoft Corporation, 9.107.8320.0]
[C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\srchidx.dll] [Microsoft Corporation, 9.107.8320.0]
[PID: 220][C:\WINNT\system32\CCMClientNT.exe] [, 5.25.20050330]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CPMDesktop.dll] [RealVNC Ltd., 3, 3, 7, 0]
[C:\WINNT\system32\othread2.dll] [N/A, N/A]
[C:\WINNT\system32\VNCHooks.dll] [RealVNC Ltd., 3, 3, 7, 0]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[PID: 1364][C:\WINNT\Explorer.EXE] [Microsoft Corporation, 5.00.3700.6690]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 7]
[C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 6.0.1.2003110300]
[C:\PROGRA~1\FLASHGET\jccatch.dll] [Amaze Soft, 1, 1, 4, 0]
[C:\WINNT\system32\MSDART.DLL] [Microsoft Corporation, 2.71.9031.4 built by: Lab06_N(dagbuild)]
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[C:\PROGRA~1\WINZIP\WZSHLSTB.DLL] [WinZip Computing, Inc., 4.1 (32-bit)]
[C:\Program Files\WinRAR\rarext.dll] [N/A, N/A]
[C:\WINNT\system32\msimtf.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
恋恋小雪 - 2007-1-10 10:39:00
[PID: 1396][C:\Program Files\Borland\InterBase\bin\ibserver.exe] [Borland Software Corporation, WI-V6.5.0.28]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 1604][C:\WINNT\system32\igfxtray.exe] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\hccutils.DLL] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxdev.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxres.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxress.dll] [Intel Corporation, 3.0.0.3889]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[PID: 1384][C:\WINNT\system32\hkcmd.exe] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\hccutils.DLL] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxdev.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxhk.dll] [Intel Corporation, 3.0.0.3889]
[C:\WINNT\system32\igfxres.dll] [Intel Corporation, 3.0.0.3889]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[PID: 1640][C:\WINNT\SOUNDMAN.EXE] [Realtek Semiconductor Corp., 5.1.0.27]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[PID: 1664][C:\Program Files\D-Tools\daemon.exe] [VeNoM386 and SwENSkE, 3.0.0.0]
[C:\WINNT\daemon.dll] [VeNoM386 and SwENSkE, 3.0.0.0]
[C:\Program Files\D-Tools\PFCTOC.DLL] [Padus(R), Inc., 1, 0, 0, 8]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[PID: 1676][C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe] [N/A, N/A]
[PID: 1756][C:\Program Files\360safe\safemon\360tray.exe] [奇虎网, 1, 0, 0, 1001]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\Program Files\360safe\safemon\SafeKrnl.dll] [奇虎网, 1, 0, 0, 1001]
[C:\Program Files\360safe\AntiAdwa.dll] [360Safe.com, 2, 2, 1, 1000]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[PID: 1772][C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\lanclt.exe] [N/A, N/A]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\MFC42.DLL] [Microsoft Corporation, 6.00.8267.0]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\SimCom.dll] [N/A, N/A]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\gbm.dll] [N/A, N/A]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\lanSound.dll] [N/A, N/A]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\Collusion.dll] [Golden Soft Corp., 2.0]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\LanCap32.dll] [Goldensoft Co., LTD, 3, 0, 0, 1]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\LanComp.dll] [Goldensoft, Co., LTD., 2, 0, 0, 2]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\LanEng32.dll] [Goldensoft, Co., LTD, 2, 0, 0, 1]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\PROGRA~1\GOLDEN~1\LANSTA~1.0\CltRes.DLL] [YZRD, 4, 0, 0, 0]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[PID: 1700][C:\WINNT\system32\ctfmon.exe] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\system32\MSUTB.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\mui\fallback\0804\msutb.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[PID: 1808][C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe] [Microsoft Corporation, 2000.080.0760.00]
[C:\WINNT\system32\SQLUNIRL.dll] [Microsoft Corporation, 2000.080.0728.00]
[C:\Program Files\Microsoft SQL Server\80\Tools\Binn\W95SCM.dll] [Microsoft Corporation, 2000.080.0760.00]
[C:\Program Files\Microsoft SQL Server\80\Tools\Binn\SQLSVC.dll] [Microsoft Corporation, 2000.080.0760.00]
[C:\WINNT\system32\odbcbcp.dll] [Microsoft Corporation, 2000.081.9031.014]
[C:\Program Files\Microsoft SQL Server\80\Tools\Binn\SQLRESLD.dll] [Microsoft Corporation, 2000.080.0382.00]
[C:\Program Files\Microsoft SQL Server\80\Tools\Binn\Resources\2052\SQLSVC.RLL] [Microsoft Corporation, 2000.080.0194.00]
[C:\Program Files\Microsoft SQL Server\80\Tools\Binn\Resources\2052\sqlmangr.RLL] [Microsoft Corporation, 2000.080.0194.00]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
恋恋小雪 - 2007-1-10 10:39:00
[PID: 1828][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2800.1106]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 6.0.1.2003110300]
[C:\PROGRA~1\FLASHGET\jccatch.dll] [Amaze Soft, 1, 1, 4, 0]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[C:\WINNT\system32\msimtf.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\Common Files\Microsoft Shared\INK\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[C:\WINNT\IME\sptip.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\WINNT\mui\fallback\0804\sptip.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\WINNT\system32\JPWB.IME] [常诚研制, 4.00.950]
[C:\WINNT\system32\WINWB86.IME] [Microsoft Corporation, 5.00.2000.3]
[C:\WINNT\system32\WINWB98.IME] [Microsoft Corporation, 5.00.2000.3]
[C:\WINNT\system32\KIme.ime] [金山软件公司, 1, 0, 0, 1]
[C:\WINNT\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,16,0]
[C:\WINNT\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\mscorie.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\mscorld.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINNT\system32\msdmo.dll] [N/A, N/A]
[PID: 1876][C:\PROGRA~1\FLASHGET\flashget.exe] [Amaze Soft, 1, 6, 0, 0]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[PID: 624][C:\Program Files\Microsoft Office\Office\WINWORD.EXE] [Microsoft Corporation, 9.0.2823]
[C:\Program Files\Microsoft Office\Office\MSO9.DLL] [Microsoft Corporation, 9.0.2812]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\Program Files\Rising\Rav\RsPlugIn.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 14]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[C:\PROGRA~1\Kingsoft\FASTAI~1\AddIns\WORDAD~1.DLL] [, 1, 0, 0, 1]
[C:\Program Files\Common Files\Microsoft Shared\Proof\mslid.dll] [Microsoft Corporation, 1.0.2305]
[C:\Program Files\Microsoft Office\Office\msohev.dll] [Microsoft Corporation, 9.0.2626]
[C:\PROGRA~1\COMMON~1\MICROS~1\VBA\VBA6\VBE6.DLL] [Microsoft Corporation, 6.04.9969]
[C:\PROGRA~1\COMMON~1\MICROS~1\VBA\VBA6\2052\VBE6INTL.DLL] [Microsoft Corporation, 6.03.9070]
[C:\PROGRA~1\MICROS~2\Office\2052\OBALLOON.DLL] [Microsoft Corporation, 9.0.2720]
[C:\PROGRA~1\MICROS~2\Office\BLNMGRPS.DLL] [N/A, N/A]
[C:\Program Files\Common Files\Microsoft Shared\Proof\wdbrkchs.dll] [Microsoft Corporation, 1.0]
[C:\Program Files\Common Files\Microsoft Shared\Proof\MSSPELL3.DLL] [Microsoft Corporation, 1.1.6215]
[C:\Program Files\Common Files\Microsoft Shared\Proof\2052\MSGR2EN.DLL] [Microsoft Corporation, 2.0]
[PID: 2152][C:\WINNT\msagent\AgentSvr.exe] [Microsoft Corporation, 2.00.0.3424]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[C:\Program Files\Microsoft Office\Office\BLNMGR.DLL] [N/A, N/A]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[PID: 1696][D:\Program Files\Tencent\QQ\QQ.exe] [TENCENT, 0, 0, 0, 0]
[D:\Program Files\Tencent\QQ\QQBaseClassInDll.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQHelperDll.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\BasicCtrlDll.dll] [Tencent, 6, 0, 200, 320]
[D:\Program Files\Tencent\QQ\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0]
[C:\WINNT\system32\MSVCP60.dll] [Microsoft Corporation, 6.00.8972.0]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[D:\Program Files\Tencent\QQ\RICHED32.DLL] [Microsoft Corporation, 5.00.2134.1]
[D:\Program Files\Tencent\QQ\RICHED20.dll] [Microsoft Corporation, 5.31.23.1218]
[D:\Program Files\Tencent\QQ\QQAPI.dll] [, 1, 0, 0, 1]
[d:\Program Files\Tencent\QQ\TIMProxy.dll] [tencent, 0, 3, 2, 4]
[D:\Program Files\Tencent\QQ\LoginCtrl.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\npkcntc.dll] [INCA Internet Co., Ltd., 2006, 6, 27, 1]
[D:\Program Files\Tencent\QQ\npkpdb.dll] [INCA Internet Co., Ltd., 2003, 10, 1, 1]
[C:\WINNT\system32\WatchHookNT.dll] [N/A, N/A]
[C:\WINNT\system32\CProtect.dll] [Unifound, 1, 0, 0, 1]
[C:\WINNT\mui\fallback\0804\msctf.dll.mui] [Microsoft Corporation, 1.00.2409.7 built by: Lab06_N]
[D:\Program Files\Tencent\QQ\QQRes.dll] [tencent, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\WizardCtrl.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQMainFrame.dll] [N/A, N/A]
[C:\WINNT\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,16,0]
[D:\Program Files\Tencent\QQ\CQQApplication.dll] [N/A, N/A]
[C:\WINNT\system32\IEMonitor.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\NewSkin.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\HostingMgr.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\CameraDll.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\MailSummary.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQKnowledgeSearch.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQAllInOne.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\GroupLive.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\SCCore.dll] [TENCENT, 2, 0, 0, 1]
[D:\Program Files\Tencent\QQ\gdiplus.dll] [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)]
[D:\Program Files\Tencent\QQ\QQSpace.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\vbscript.dll] [Microsoft Corporation, 5.6.0.7426]
[C:\WINNT\system32\msdmo.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQGroupMng.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\UserDefinedHead.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQPlugin.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQConfigPlugin.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QRingMng.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQAvatar.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\FlashAvatarDll.dll] [, 1, 4, 0, 1]
[D:\Program Files\Tencent\QQ\LongConnection.dll] [tencent, 5, 0, 200, 160]
[D:\Program Files\Tencent\QQ\PhoneAPI.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\DialerAllinOne.dll] [tencent, 1, 4, 0, 0]
[D:\Program Files\Tencent\QQ\QQPet.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\QQSysMsgMng.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\BQQApplication.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\QQSettingCtrl.dll] [, 1, 0, 0, 1]
[C:\WINNT\system32\msimtf.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[D:\Program Files\Tencent\QQ\QQCustomFace.dll] [N/A, N/A]
[D:\Program Files\Tencent\QQ\CommercesMng.dll] [, 1, 0, 0, 1]
[D:\Program Files\Tencent\QQ\PersonalDesktop.dll] [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
[D:\Program Files\Tencent\QQ\QQAddr.dll] [深圳市腾讯计算机系统有限公司, 5, 0, 101, 271]
[D:\Program Files\Tencent\QQ\GroupConnection.dll] [Tencent, 0, 3, 3, 5]
[D:\Program Files\Tencent\QQ\ImageOle.dll] [TODO: <Company name>, 1.0.0.1]
[D:\Program Files\Tencent\QQ\QQSceneMng.dll] [N/A, N/A]
[C:\WINNT\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\mscorie.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINNT\Microsoft.NET\Framework\v1.1.4322\mscorld.dll] [Microsoft Corporation, 1.1.4322.573]
[D:\Program Files\Tencent\QQ\QQPhoneHelper.dll] [腾讯科技(深圳)有限公司, 2, 1, 3, 30]
[D:\Program Files\Tencent\QQ\QQZip.dll] [tencent, 0, 3, 2, 4]
[PID: 1328][D:\Program Files\Tencent\QQ\TIMPlatform.exe] [tencent, 0, 3, 1, 8]
[C:\WINNT\system32\MSCTF.dll] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[C:\Program Files\360safe\safemon\safemon.dll] [N/A, 1, 0, 0, 1001]
[d:\Program Files\Tencent\QQ\TIMProxy.dll] [tencent, 0, 3, 2, 4]
© 2000 - 2026 Rising Corp. Ltd.