瑞星卡卡安全论坛
光影圣堂 - 2007-9-13 15:35:00
Trojan.IMMSG.Win32.TBMSG.ld 杀完重起又有了,安全模式下也没用!瑞星杀不干净,急求高人指点!!!
[用户系统信息]Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)
光影圣堂 - 2007-9-13 16:45:00
快帮帮我啊,有谁知道啊
花花雪狐 - 2007-9-13 16:47:00
日志呢?楼主应该好好看一下置顶的帖子!
光影圣堂 - 2007-9-13 17:31:00
[CODE]
2007-09-13,16:58:55
System Repair Engineer 2.5.16.900
Smallfrogs (http://www.KZTechs.com)
Windows 2000 Professional (Build 2195) - 管理权限用户 - 完整功能
以下内容被选中:
所有的启动项目(包括注册表、启动文件夹、服务等)
浏览器加载项
正在运行的进程(包括进程模块信息)
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
进程特权扫描
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<internat.exe><internat.exe> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Synchronization Manager><mobsync.exe /logon> [(Verified)Microsoft Windows 2000 Publisher]
<TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [RealNetworks, Inc.]
<runeip><"C:\Program Files\Rising\AntiSpyware\runiep.exe" /startup> [Beijing Rising Technology Co., Ltd.]
<RavTask><"D:\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<DiskMan32><C:\winnt\DiskMan32.exe> []
<mppds><C:\winnt\mppds.exe> []
<cmdbcs><C:\winnt\cmdbcs.exe> []
<upxdnd><C:\winnt\upxdnd.exe> []
<msccrt><C:\winnt\msccrt.exe> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
<Shell><c:\winnt\system\mainsv.exe> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
<MSDEG32><LYLoader.exe> [N/A]
<MSDWG32><LYLoadbr.exe> [N/A]
<MSDCG32 ><LYLeador.exe> [N/A]
<MSDOG32><LYLoador.exe> [N/A]
<MSDSG32><LYLoadar.exe> [N/A]
<MSDMG32><LYLoadmr.exe> []
<MSDHG32><LYLoadhr.exe> [N/A]
<MSDQG32><LYLoadqr.exe> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><EXPLORER.EXE> [(Verified)Microsoft Windows 2000 Publisher]
<Userinit><userinit.exe> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><avzxamn.dll> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows 2000 Publisher]
<{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\winnt\system32\RavExt.dll> [Beijing Rising Technology Co., Ltd.]
<{12FAACDE-34DA-CCD4-AB4D-DA34485A3421}><C:\winnt\System32\rsjzapm.dll> [N/A]
<{1960356A-458E-DE24-BD50-268F589A56A1}><C:\winnt\System32\avwlamn.dll> [N/A]
<{1859245F-345D-BC13-AC4F-145D47DA34F1}><C:\winnt\System32\avzxamn.dll> [N/A]
<{AC2DC2EF-5165-40A3-8CDF-41DCA1B0901A}><C:\winnt\System32\shlhook.dll> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellService
ObjectDelayLoad]
<Network.ConnectionTray><C:\WINNT\system32\NETSHELL.dll> [(Verified)Microsoft Windows 2000 Publisher]
<WebCheck><%SystemRoot%\System32\webcheck.dll> [(Verified)Microsoft Windows 2000 Publisher]
<SysTray><st
object.dll> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
<WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
<WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
<WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
<WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
<WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\System32\browseui.dll> [(Verified)Microsoft Windows 2000 Publisher]
<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\System32\browseui.dll> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
<N/A><C:\winnt\inf\unregmp2.exe /ShowWMP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
<浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 5><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINNT\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\winnt\INF\wmp.inf,PerUserStub> []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<通讯簿 5><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
<Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
<Internet Explorer 5><%SystemRoot%\system32\ie4uinit.exe> [(Verified)Microsoft Windows 2000 Publisher]
==================================
启动文件夹
[Microsoft Office]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Microsoft Office.lnk --> C:\PROGRA~1\MICROS~2\Office\OSA9.EXE [Microsoft Corporation]><H>
[核新SSL通讯安全代理]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\核新SSL通讯安全代理.lnk --> C:\PROGRA~1\hexin\sslproxy\SSLCnt.exe [杭州核新软件技术有限公司]><N>
==================================
服务
[20AC2056 / 20AC2056][Stopped/Auto Start]
<C:\winnt\System32\1806E37A.EXE -k><Microsoft Corporation>
[Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]
<C:\winnt\System32\dmadmin.exe /com><VERITAS Software Corp.>
[OracleOraHome81TNSListener / OracleOraHome81TNSListener][Running/Auto Start]
<D:\Oracle\Ora81\BIN\TNSLSNR ><N/A>
[OracleServiceORACL / OracleServiceORACL][Running/Auto Start]
<d:\oracle\ora81\bin\ORACLE.EXE ORACL><Oracle Corporation>
[Rising Process Communication Center / RsCCenter][Running/Auto Start]
<"D:\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon][Running/Auto Start]
<"D:\RISING\RAV\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[Portable Media Serial Number Service / WmdmPmSN][Stopped/Manual Start]
<C:\winnt\System32\svchost.exe -k netsvcs-->C:\winnt\System32\mspmsnsv.dll><Microsoft Corporation>
光影圣堂 - 2007-9-13 17:32:00
==================================
驱动程序
[BaseTDI / BaseTDI][Running/Auto Start]
<\??\C:\winnt\System32\drivers\basetdi.sys><Beijing Rising Technology Co., Ltd.>
[C-Media PCI Audio Driver (WDM) / cmpci][Running/Manual Start]
<system32\drivers\cmpci.sys><C-Media Inc>
[dmboot / dmboot][Stopped/Disabled]
<System32\drivers\dmboot.sys><VERITAS Software Corp.>
[Logical Disk Manager Driver / dmio][Running/Boot Start]
<\SystemRoot\System32\drivers\dmio.sys><VERITAS Software Corp.>
[dmload / dmload][Running/Boot Start]
<\SystemRoot\System32\drivers\dmload.sys><VERITAS Software Corp.>
[ExpScaner / ExpScaner][Running/Auto Start]
<\??\D:\RISING\RAV\ExpScan.sys><>
[HOOKAPI / HOOKAPI][Stopped/Manual Start]
<\??\D:\PROGRAM FILES\RISING\RAV\HookApi.Sys><N/A>
[HookCont / HookCont][Running/Auto Start]
<\??\D:\RISING\RAV\HOOKCONT.sys><Rising>
[HookReg / HookReg][Running/Auto Start]
<\??\D:\RISING\RAV\HookReg.sys><>
[HookSys / HookSys][Running/Auto Start]
<\??\D:\RISING\RAV\HookSys.sys><Rising>
[KRegEx / KRegEx][Stopped/Manual Start]
<\??\C:\winnt\system32\drivers\KRegEx.sys><N/A>
[MEMSCAN / MEMSCAN][Stopped/Auto Start]
<\??\D:\RISING\RAV\MEMSCAN.sys><Beijing Rising Technology Co., Ltd.>
[New0 / New0][Running/Auto Start]
<\??\C:\WINNT\System32\new.sys><N/A>
[Netgroup Packet Filter / NPF][Stopped/Manual Start]
<System32\DRIVERS\npf.sys><CACE Technologies>
[npkcrypt / npkcrypt][Running/Auto Start]
<\??\D:\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[npkycryp / npkycryp][Stopped/Manual Start]
<\??\D:\QQ\npkycryp.sys><N/A>
[nv4 / nv4][Running/Manual Start]
<System32\DRIVERS\nv4.sys><NVIDIA Corporation>
[PProtect / PProtect][Stopped/System Start]
<\??\D:\KV2006\PProtect.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsAntiSpyware / RsAntiSpyware][Running/Boot Start]
<\SystemRoot\System32\drivers\RsBoot.sys><Beijing Rising Technology Co., Ltd.>
[RsNTGDI / RsNTGDI][Running/Boot Start]
<\SystemRoot\System32\Drivers\RsNTGdi.sys><Beijing Rising Technology Co., Ltd.>
[RSPPSYS / RSPPSYS][Running/Auto Start]
<\??\D:\RISING\RAV\RSPPSYS.sys><Rising>
[Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
<System32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[SecDrv / SecDrv][Running/Auto Start]
<\??\C:\WINNT\System32\drivers\SECDRV.SYS><Macrovision Europe Ltd>
[SANHO Digital Electronic CO,LTD. CDXCSF/CD6F VAR Driver / SHUSBVar][Stopped/Auto Start]
<System32\Drivers\cdvar.sys><N/A>
[SmartCd / SmartCd][Stopped/Manual Start]
<System32\Drivers\SmartCd.sys><N/A>
[Sony Digital Imaging Base / sonyhcb][Running/Boot Start]
<\SystemRoot\System32\DRIVERS\sonyhcb.sys><Sony Corporation>
[Sony Digital Imaging Video / sonyhcs][Stopped/Manual Start]
<System32\DRIVERS\sonyhcs.sys><Sony Corporation>
[Sony Memory Stick Driver(SONYPVM1) / SONYPVM1][Running/Boot Start]
<\SystemRoot\System32\DRIVERS\SONYPVM1.SYS><Sony Corporation>
[Sony USB Filter Driver (SONYPVU1) / SONYPVU1][Stopped/Manual Start]
<System32\DRIVERS\SONYPVU1.SYS><Sony Corporation>
[TSP / TSP][Stopped/Manual Start]
<\??\C:\WINNT\system32\drivers\klif.sys><N/A>
[World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
<System32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
==================================
浏览器加载项
[Web Browser Applet Control]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINNT\System32\msjava.dll, Microsoft Corporation>
[解霸]
{367E0A21-8601-4986-9C9A-153BF5ACA118} <C:\HEROSOFT\Hero3000\MPLAYER.EXE, N/A>
[豪杰]
{6c45dd20-3e0a-11d4-8c74-5254ab163ead} <http://202.108.223.44/, N/A>
[速载]
{a0651e80-3d70-11d4-8c74-5254ab163ead} <, N/A>
[解霸]
{b5047660-3b09-11d4-8c74-5254ab163ead} <, N/A>
[音频]
{ba601560-3b18-11d4-8c74-5254ab163ead} <, N/A>
[@shdoclc.dll,-866]
{c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <D:\QQ\QQ.EXE, TENCENT>
[金山快译(&K)]
{6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} <C:\PROGRA~1\Kingsoft\FASTAI~1\IEBand.dll, >
[@msdxmLC.dll,-1@2052,电台(&R)]
{8E718888-423F-11D2-876E-00A0C9082467} <C:\WINNT\System32\msdxm.ocx, Microsoft Corporation>
[nc Class]
{2496941B-49AA-447D-8548-9DF72C6F0BFF} <D:\Java\j2re1.4.2_05\bin\NCOcx.dll, >
[CellWeb5 Control]
{3F166327-8030-4881-8BD2-EA25350E574A} <C:\winnt\System32\cellweb5.ocx, Cell Software, Inc.>
[Java Plug-in 1.4.2_05]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <D:\Java\j2re1.4.2_05\bin\npjpi142_05.dll, JavaSoft / Sun Microsystems, Inc.>
[Tencent Safety Online Base Module]
{C09B522F-8AED-4E21-A65C-DC1AB652BAEE} <C:\WINNT\DOWNLO~1\TSOBase.ocx, Tencent Corporation>
[Java Plug-in 1.4.1_06]
{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA} <C:\Program Files\Java\j2re1.4.1_06\bin\npjpi141_06.dll, JavaSoft / Sun Microsystems, Inc.>
[RootCertInstall Class]
{D1056C7C-E30B-4234-9A4B-7E1038B167A7} <C:\WINNT\DOWNLO~1\RootCert.dll, >
[Shockwave Flash
Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\winnt\System32\Macromed\Flash\Flash8a.ocx, Macromedia, Inc.>
[上传到QQ网络硬盘]
<D:\QQ\AddToNetDisk.htm, N/A>
[播放或下载所有连接]
<, N/A>
[添加到QQ自定义面板]
<D:\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
<D:\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<D:\QQ\SendMMS.htm, N/A>
[解霸实时播放]
<C:\HEROSOFT\Hero3000\MPURLGET.HTM, N/A>
[超级解霸实时播放]
<, N/A>
光影圣堂 - 2007-9-13 17:33:00
==================================
正在运行的进程
[PID: 140][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.00.2170.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\System32\sfcfiles.dll] [Microsoft Corporation, 5.00.2195.1]
[PID: 164][\??\C:\winnt\system32\csrss.exe] [Microsoft Corporation, 5.00.2137.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\CSRSRV.dll] [Microsoft Corporation, 5.00.2137.1]
[C:\winnt\system32\basesrv.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\winsrv.dll] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\MSVCRT.dll] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\imm32.dll] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USERENV.DLL] [Microsoft Corporation, 5.00.2185.1]
[PID: 160][\??\C:\winnt\system32\winlogon.exe] [Microsoft Corporation, 5.00.2182.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\KERNEL32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USERENV.DLL] [Microsoft Corporation, 5.00.2185.1]
[C:\winnt\system32\NDDEAPI.DLL] [Microsoft Corporation, 5.00.2137.1]
[C:\winnt\system32\SFC.DLL] [Microsoft Corporation, 5.00.2164.1]
[C:\winnt\system32\sfcfiles.dll] [Microsoft Corporation, 5.00.2195.1]
[C:\winnt\system32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\system32\PROFMAP.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\NETAPI32.dll] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\system32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\msgina.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\SHELL32.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\COMCTL32.DLL] [Microsoft Corporation, 5.81]
[C:\winnt\system32\WINMM.dll] [Microsoft Corporation, 5.00.2161.1]
[C:\winnt\system32\setupapi.dll] [Microsoft Corporation, 5.00.2183.1]
[C:\winnt\System32\90B7D3FD.DLL] [N/A, ]
[C:\winnt\system32\urlmon.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\OLE32.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\VERSION.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\LZ32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WININET.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\wdmaud.drv] [Microsoft Corporation, 5.00.2147.1]
[C:\winnt\system32\cscdll.dll] [Microsoft Corporation, 5.00.2189.1]
[C:\winnt\system32\WlNotify.dll] [Microsoft Corporation, 5.00.2164.1]
[C:\winnt\system32\WINSCARD.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\CRYPT32.DLL] [Microsoft Corporation, 5.131.2173.1]
[C:\winnt\system32\MSASN1.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WINSPOOL.DRV] [Microsoft Corporation, 5.00.2167.1]
[C:\winnt\system32\cscui.dll] [Microsoft Corporation, 5.00.2172.1]
[C:\winnt\system32\msacm32.drv] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\MSACM32.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4512]
[C:\winnt\system32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\winnt\system32\msv1_0.dll] [Microsoft Corporation, 5.00.2164.1]
[PID: 212][C:\winnt\system32\services.exe] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\NETAPI32.DLL] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\system32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\UMPNPMGR.DLL] [Microsoft Corporation, 5.00.2182.1]
[C:\winnt\system32\USERENV.DLL] [Microsoft Corporation, 5.00.2185.1]
[C:\winnt\system32\SCESRV.DLL] [Microsoft Corporation, 5.00.2188.1]
[C:\winnt\system32\NTDSAPI.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\eventlog.dll] [Microsoft Corporation, 5.00.2178.1]
[C:\winnt\system32\dhcpcsvc.dll] [Microsoft Corporation, 5.00.2153.1]
[C:\winnt\system32\ICMP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\IPHLPAPI.DLL] [Microsoft Corporation, 5.00.2173.2]
[C:\winnt\system32\MPRAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\OLE32.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4512]
[C:\winnt\system32\ACTIVEDS.DLL] [Microsoft Corporation, 5.00.2172.1]
[C:\winnt\system32\ADSLDPC.DLL] [Microsoft Corporation, 5.00.2172.1]
[C:\winnt\system32\RTUTILS.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\SETUPAPI.DLL] [Microsoft Corporation, 5.00.2183.1]
[C:\winnt\system32\RASAPI32.DLL] [Microsoft Corporation, 5.00.2188.1]
[C:\winnt\system32\RASMAN.DLL] [Microsoft Corporation, 5.00.2188.1]
[C:\winnt\system32\TAPI32.DLL] [Microsoft Corporation, 5.00.2182.1]
[C:\winnt\system32\COMCTL32.DLL] [Microsoft Corporation, 5.81]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\winnt\system32\dnsrslvr.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\lmhsvc.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WINSTA.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\dmserver.dll] [VERITAS Software Corp., 2191.1.296.2]
[C:\winnt\system32\CFGMGR32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\Srvsvc.dll] [Microsoft Corporation, 5.00.2178.1]
[C:\winnt\system32\WINSPOOL.DRV] [Microsoft Corporation, 5.00.2167.1]
[C:\winnt\system32\wkssvc.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\CRYPTDLL.DLL] [Microsoft Corporation, 5.00.2135.1]
[C:\winnt\system32\cryptsvc.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\seclogon.dll] [Microsoft Corporation, 5.00.2135.1]
[C:\winnt\system32\trkwks.dll] [Microsoft Corporation, 5.00.2166.1]
[C:\winnt\system32\psbase.dll] [Microsoft Corporation, 5.00.2146.1]
[C:\winnt\system32\alrsvc.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\browser.dll] [Microsoft Corporation, 5.00.2142.1]
[C:\winnt\system32\msgsvc.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\mswsock.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\msafd.dll] [Microsoft Corporation, 5.00.2153.1]
[C:\winnt\System32\wshtcpip.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\rnr20.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\System32\winrnr.dll] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\rasadhlp.dll] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\wmicore.dll] [Microsoft Corporation, 5.00.2178.1]
[C:\winnt\system32\rsabase.dll] [Microsoft Corporation, 5.00.2150.1]
[C:\winnt\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2173.1]
[C:\winnt\system32\MSASN1.DLL] [Microsoft Corporation, 5.00.2134.1]
光影圣堂 - 2007-9-13 17:34:00
[PID: 224][C:\winnt\system32\lsass.exe] [Microsoft Corporation, 5.00.2184.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\KERNEL32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\LSASRV.dll] [Microsoft Corporation, 5.00.2184.1]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\CRYPTDLL.DLL] [Microsoft Corporation, 5.00.2135.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\SAMSRV.DLL] [Microsoft Corporation, 5.00.2192.1]
[C:\winnt\system32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\MSASN1.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\NETAPI32.DLL] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\system32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\msprivs.dll] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\system32\kerberos.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\msv1_0.dll] [Microsoft Corporation, 5.00.2164.1]
[C:\winnt\system32\rsabase.dll] [Microsoft Corporation, 5.00.2150.1]
[C:\winnt\system32\ole32.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\USERENV.dll] [Microsoft Corporation, 5.00.2185.1]
[C:\winnt\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2173.1]
[C:\winnt\system32\netlogon.dll] [Microsoft Corporation, 5.00.2182.1]
[C:\winnt\system32\NTDSAPI.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\schannel.dll] [Microsoft Corporation, 5.00.2170.1]
[C:\winnt\system32\mpr.dll] [Microsoft Corporation, 5.00.2146.1]
[C:\winnt\system32\setupapi.dll] [Microsoft Corporation, 5.00.2183.1]
[C:\winnt\system32\COMCTL32.dll] [Microsoft Corporation, 5.81]
[C:\winnt\system32\scecli.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\polagent.dll] [Microsoft Corporation, 5.00.2183.1]
[C:\winnt\system32\MFC42U.DLL] [Microsoft Corporation, 6.00.8665.0]
[C:\winnt\system32\OAKLEY.DLL] [Microsoft Corporation, 5.00.2174.1]
[C:\winnt\system32\IPHLPAPI.DLL] [Microsoft Corporation, 5.00.2173.2]
[C:\winnt\system32\ICMP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\MPRAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4512]
[C:\winnt\system32\ACTIVEDS.DLL] [Microsoft Corporation, 5.00.2172.1]
[C:\winnt\system32\ADSLDPC.DLL] [Microsoft Corporation, 5.00.2172.1]
[C:\winnt\system32\RTUTILS.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\RASAPI32.DLL] [Microsoft Corporation, 5.00.2188.1]
[C:\winnt\system32\RASMAN.DLL] [Microsoft Corporation, 5.00.2188.1]
[C:\winnt\system32\TAPI32.DLL] [Microsoft Corporation, 5.00.2182.1]
[C:\winnt\system32\DHCPCSVC.DLL] [Microsoft Corporation, 5.00.2153.1]
[C:\winnt\System32\MFC42LOC.DLL] [Microsoft Corporation, 6.00.8665.0]
[C:\winnt\system32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\winnt\system32\msafd.dll] [Microsoft Corporation, 5.00.2153.1]
[C:\winnt\System32\wshtcpip.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\dssbase.dll] [Microsoft Corporation, 5.00.2150.1]
[PID: 376][C:\winnt\system32\svchost.exe] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\OLE32.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[c:\winnt\system32\rpcss.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[c:\winnt\system32\USERENV.DLL] [Microsoft Corporation, 5.00.2185.1]
[c:\winnt\system32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[c:\winnt\system32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[c:\winnt\system32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\system32\mswsock.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\msafd.dll] [Microsoft Corporation, 5.00.2153.1]
[C:\winnt\System32\wshtcpip.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\rnr20.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\System32\winrnr.dll] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\rasadhlp.dll] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\RTUTILS.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\winnt\system32\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4512]
[C:\winnt\system32\msv1_0.dll] [Microsoft Corporation, 5.00.2164.1]
[C:\winnt\system32\msi.dll] [Microsoft Corporation, 2.0.2600.2]
[C:\winnt\system32\netapi32.dll] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\system32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[PID: 452][C:\winnt\system32\spoolsv.exe] [Microsoft Corporation, 5.00.2161.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\KERNEL32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\GDI32.dll] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\SPOOLSS.DLL] [Microsoft Corporation, 5.00.2161.1]
[C:\winnt\system32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\rasadhlp.dll] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\RTUTILS.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\localspl.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\OLE32.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4512]
[C:\winnt\system32\VERSION.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\LZ32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\system32\SFC.DLL] [Microsoft Corporation, 5.00.2164.1]
[C:\winnt\system32\sfcfiles.dll] [Microsoft Corporation, 5.00.2195.1]
[C:\winnt\system32\winspool.drv] [Microsoft Corporation, 5.00.2167.1]
[C:\winnt\system32\netapi32.dll] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\system32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\cnbjmon.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\pjlmon.dll] [Microsoft Corporation, 5.00.2165.1]
[C:\winnt\system32\tcpmon.dll] [Microsoft Corporation, 5.00.2165.1]
[C:\winnt\system32\usbmon.dll] [Microsoft Corporation, 5.00.2165.1]
[C:\winnt\system32\COMCTL32.dll] [Microsoft Corporation, 5.81]
[C:\winnt\system32\msfaxmon.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\rnr20.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\System32\winrnr.dll] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\win32spl.dll] [Microsoft Corporation, 5.00.2162.1]
[C:\winnt\system32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\winnt\system32\inetpp.dll] [Microsoft Corporation, 5.00.2161.1]
[C:\winnt\system32\ICMP.DLL] [Microsoft Corporation, 5.00.2134.1]
光影圣堂 - 2007-9-13 17:35:00
[PID: 528][C:\WINNT\System32\svchost.exe] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\OLE32.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[c:\winnt\system32\es.dll] [Microsoft Corporation, 1999.9.3422.21]
[c:\winnt\system32\TXFAUX.DLL] [Microsoft Corporation, 1999.9.3422.24]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4512]
[C:\WINNT\System32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[c:\winnt\system32\ntmssvc.dll] [Microsoft Corporation, 5.00.2187.1]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\VERSION.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\LZ32.DLL] [Microsoft Corporation, 5.00.2134.1]
[c:\winnt\system32\sens.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\COMCTL32.dll] [Microsoft Corporation, 5.81]
[C:\WINNT\System32\WS2_32.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\System32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[c:\winnt\system32\tapisrv.dll] [Microsoft Corporation, 5.00.2186.1]
[C:\WINNT\System32\secur32.dll] [Microsoft Corporation, 5.00.2154.1]
[c:\winnt\system32\rasmans.dll] [Microsoft Corporation, 5.00.2188.1]
[c:\winnt\system32\rtutils.dll] [Microsoft Corporation, 5.00.2168.1]
[c:\winnt\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2173.1]
[c:\winnt\system32\MSASN1.DLL] [Microsoft Corporation, 5.00.2134.1]
[c:\winnt\system32\netcfgx.dll] [Microsoft Corporation, 5.00.2175.1]
[c:\winnt\system32\DNSAPI.dll] [Microsoft Corporation, 5.00.2181.1]
[c:\winnt\system32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[c:\winnt\system32\RASAPI32.dll] [Microsoft Corporation, 5.00.2188.1]
[c:\winnt\system32\RASMAN.DLL] [Microsoft Corporation, 5.00.2188.1]
[c:\winnt\system32\TAPI32.DLL] [Microsoft Corporation, 5.00.2182.1]
[c:\winnt\system32\RASDLG.dll] [Microsoft Corporation, 5.00.2194.1]
[c:\winnt\system32\MPRAPI.dll] [Microsoft Corporation, 5.00.2181.1]
[c:\winnt\system32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[c:\winnt\system32\NETAPI32.DLL] [Microsoft Corporation, 5.00.2194.1]
[c:\winnt\system32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[c:\winnt\system32\ACTIVEDS.DLL] [Microsoft Corporation, 5.00.2172.1]
[c:\winnt\system32\ADSLDPC.DLL] [Microsoft Corporation, 5.00.2172.1]
[c:\winnt\system32\SETUPAPI.DLL] [Microsoft Corporation, 5.00.2183.1]
[c:\winnt\system32\USERENV.DLL] [Microsoft Corporation, 5.00.2185.1]
[C:\WINNT\System32\NTMARTA.DLL] [Microsoft Corporation, 5.00.2158.1]
[C:\WINNT\System32\WINSPOOL.DRV] [Microsoft Corporation, 5.00.2167.1]
[C:\WINNT\System32\NTDSAPI.dll] [Microsoft Corporation, 5.00.2160.1]
[C:\WINNT\System32\iphlpapi.dll] [Microsoft Corporation, 5.00.2173.2]
[C:\WINNT\System32\ICMP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\System32\DHCPCSVC.DLL] [Microsoft Corporation, 5.00.2153.1]
[C:\WINNT\System32\ATL.DLL] [Microsoft Corporation, 3.00.8449]
[C:\WINNT\System32\NTMSDBA.dll] [Microsoft Corporation, 5.00.2187.1]
[C:\winnt\system32\Shell32.dll] [Microsoft Corporation, 5.00.2920.0000]
[c:\winnt\system32\netman.dll] [Microsoft Corporation, 5.00.2175.1]
[C:\WINNT\System32\COMSVCS.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\WINNT\System32\MSDTCPRX.DLL] [Microsoft Corporation, 1999.9.3422.10]
[C:\WINNT\System32\MTXCLU.DLL] [Microsoft Corporation, 1999.9.3421.3]
[C:\WINNT\System32\CLUSAPI.DLL] [Microsoft Corporation, 5.00.2179.1]
[C:\WINNT\System32\RESUTILS.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\WINNT\system32\NETSHELL.dll] [Microsoft Corporation, 5.00.2176.1]
[C:\WINNT\System32\WMI.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\WINNT\System32\rastapi.dll] [Microsoft Corporation, 5.00.2188.1]
[C:\WINNT\System32\unimdm.tsp] [Microsoft Corporation, 5.00.2175.1]
[C:\WINNT\System32\uniplat.dll] [Microsoft Corporation, 5.00.2151.1]
[C:\WINNT\System32\CFGMGR32.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\System32\unimdmat.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\System32\modemui.dll] [Microsoft Corporation, 5.00.2146.1]
[C:\WINNT\System32\kmddsp.tsp] [Microsoft Corporation, 5.00.2150.1]
[C:\WINNT\System32\ndptsp.tsp] [Microsoft Corporation, 5.00.2143.1]
[C:\WINNT\System32\ipconf.tsp] [Microsoft Corporation, 5.00.2143.1]
[C:\WINNT\System32\h323.tsp] [Microsoft Corporation, 5.00.2143.1]
[C:\WINNT\System32\rasppp.dll] [Microsoft Corporation, 5.00.2175.1]
[C:\WINNT\System32\ntlsapi.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\raschap.dll] [Microsoft Corporation, 5.00.2175.1]
[C:\winnt\System32\rastls.dll] [Microsoft Corporation, 5.00.2188.1]
[C:\WINNT\System32\SCHANNEL.dll] [Microsoft Corporation, 5.00.2170.1]
[C:\WINNT\System32\WinSCard.dll] [Microsoft Corporation, 5.00.2134.1]
光影圣堂 - 2007-9-13 17:35:00
[PID: 628][D:\Oracle\Ora81\BIN\TNSLSNR.exe] [N/A, ]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[D:\Oracle\Ora81\BIN\oransgr8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oran8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oranl8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oranldap8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\orannzsbb8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oracore8.dll] [Oracle Corporation, 8.1.3.0.0]
[D:\Oracle\Ora81\BIN\oranls8.dll] [Oracle Corporation, 8.1.6.0.0]
[C:\winnt\system32\KERNEL32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\MSVCRT.dll] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\ADVAPI32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\WINMM.dll] [Microsoft Corporation, 5.00.2161.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[D:\Oracle\Ora81\BIN\orageneric8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oracommon8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oraclient8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oravsn8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\orawtc8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oranro8.dll] [Oracle Corporation, 8.1.6.0.0]
[C:\winnt\system32\WSOCK32.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[D:\Oracle\Ora81\BIN\orapls8.dll] [Oracle Corporation, 8]
[D:\Oracle\Ora81\BIN\oraslax8.dll] [Oracle Corporation, 8]
[D:\Oracle\Ora81\BIN\orasql8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oraldapclnt8.dll] [Oracle Corporation, 8.1.5.0.0]
[C:\winnt\system32\ole32.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\OLEAUT32.dll] [Microsoft Corporation, 2.40.4512]
[D:\Oracle\Ora81\BIN\ORATRACE8.dll] [N/A, ]
[D:\Oracle\Ora81\BIN\orancrypt8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oranhost8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\oranoname8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\orancds8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\orantns8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\orannds8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\BIN\orannms8.dll] [N/A, ]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[D:\Oracle\Ora81\bin\oranipc8.dll] [Oracle Corporation, 8.1.6.0.0]
[D:\Oracle\Ora81\bin\orantcp8.dll] [Oracle Corporation, 8.1.6.0.0]
[C:\winnt\System32\rnr20.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\System32\winrnr.dll] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\rasadhlp.dll] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\RTUTILS.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\msafd.dll] [Microsoft Corporation, 5.00.2153.1]
[C:\winnt\System32\wshtcpip.dll] [Microsoft Corporation, 5.00.2134.1]
[PID: 712][d:\oracle\ora81\bin\ORACLE.EXE] [Oracle Corporation, 8.1.6.0.0]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[d:\oracle\ora81\bin\oraclient8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\oracore8.dll] [Oracle Corporation, 8.1.3.0.0]
[d:\oracle\ora81\bin\oranls8.dll] [Oracle Corporation, 8.1.6.0.0]
[C:\winnt\system32\KERNEL32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\MSVCRT.dll] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\ADVAPI32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\WINMM.dll] [Microsoft Corporation, 5.00.2161.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[d:\oracle\ora81\bin\oravsn8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\oracommon8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\orageneric8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\orawtc8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\oranl8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\oran8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\orancrypt8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\oranro8.dll] [Oracle Corporation, 8.1.6.0.0]
[C:\winnt\system32\WSOCK32.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[d:\oracle\ora81\bin\orannzsbb8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\oranldap8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\oraldapclnt8.dll] [Oracle Corporation, 8.1.5.0.0]
[C:\winnt\system32\ole32.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\OLEAUT32.dll] [Microsoft Corporation, 2.40.4512]
[d:\oracle\ora81\bin\oranhost8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\oranoname8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\orancds8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\orantns8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\orannds8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\orannms8.dll] [N/A, ]
[d:\oracle\ora81\bin\ORATRACE8.dll] [N/A, ]
[d:\oracle\ora81\bin\orapls8.dll] [Oracle Corporation, 8]
[d:\oracle\ora81\bin\oraslax8.dll] [Oracle Corporation, 8]
[d:\oracle\ora81\bin\orasql8.dll] [Oracle Corporation, 8.1.6.0.0]
[d:\oracle\ora81\bin\oraplp8.dll] [Oracle Corporation, 8]
[d:\oracle\ora81\bin\oradbicx8.dll] [Oracle Corporation, 8]
[d:\oracle\ora81\bin\orajox8.dll] [N/A, ]
[d:\oracle\ora81\bin\oransgr8.dll] [Oracle Corporation, 8.1.6.0.0]
[C:\winnt\system32\NETAPI32.dll] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\system32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\system32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
光影圣堂 - 2007-9-13 17:36:00
[PID: 768][C:\winnt\system32\regsvc.exe] [Microsoft Corporation, 5.00.2155.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\ADVAPI32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\secur32.dll] [Microsoft Corporation, 5.00.2154.1]
[PID: 784][C:\winnt\system32\MSTask.exe] [Microsoft Corporation, 4.71.2137.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\MSVCRT.dll] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\KERNEL32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\ADVAPI32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\GDI32.dll] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\NETAPI32.dll] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\system32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\system32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\NTDSAPI.dll] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\SHLWAPI.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\SHELL32.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\COMCTL32.DLL] [Microsoft Corporation, 5.81]
[C:\winnt\system32\USERENV.dll] [Microsoft Corporation, 5.00.2185.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\mswsock.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\msafd.dll] [Microsoft Corporation, 5.00.2153.1]
[C:\winnt\System32\wshtcpip.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\rnr20.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\System32\winrnr.dll] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\rasadhlp.dll] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\RTUTILS.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\MSIDLE.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\rsabase.dll] [Microsoft Corporation, 5.00.2150.1]
[C:\winnt\system32\ole32.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\CRYPT32.dll] [Microsoft Corporation, 5.131.2173.1]
[C:\winnt\system32\MSASN1.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4512]
[C:\winnt\system32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\winnt\system32\cscui.dll] [Microsoft Corporation, 5.00.2172.1]
[C:\winnt\system32\CSCDLL.DLL] [Microsoft Corporation, 5.00.2189.1]
[PID: 820][C:\winnt\system32\stisvc.exe] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\MSVCRT.dll] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\KERNEL32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\ADVAPI32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\GDI32.dll] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\SETUPAPI.dll] [Microsoft Corporation, 5.00.2183.1]
[C:\winnt\system32\USERENV.DLL] [Microsoft Corporation, 5.00.2185.1]
[C:\winnt\system32\STI.dll] [Microsoft Corporation, 5.00.2138.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\COMCTL32.dll] [Microsoft Corporation, 5.81]
[PID: 852][C:\winnt\System32\WBEM\WinMgmt.exe] [Microsoft Corporation, 1.50.1085.0001]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\System32\WBEM\wbemcomn.dll] [Microsoft Corporation, 1.50.1085.0001]
[C:\winnt\system32\USER32.dll] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\MSVCRT.dll] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\ADVAPI32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\OLEAUT32.dll] [Microsoft Corporation, 2.40.4512]
[C:\winnt\system32\ole32.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\WINNT\System32\wbem\wbemcore.dll] [Microsoft Corporation, 1.50.1085.0001]
[C:\winnt\system32\VERSION.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\LZ32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\System32\wbem\fastprox.dll] [Microsoft Corporation, 1.50.1085.0001]
[C:\WINNT\System32\wbem\wbemess.dll] [Microsoft Corporation, 1.50.1085.0001]
[C:\WINNT\System32\wbem\wbemsvc.dll] [Microsoft Corporation, 1.50.1085.0000]
[PID: 920][D:\RISING\RAV\RavStub.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 4]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\KERNEL32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\USER32.dll] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\NETAPI32.dll] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\system32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\USERENV.dll] [Microsoft Corporation, 5.00.2185.1]
[C:\winnt\system32\COMCTL32.dll] [Microsoft Corporation, 5.81]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[D:\RISING\RAV\RsCommX.dll] [rising, 18, 0, 0, 1]
[D:\RISING\RAV\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[PID: 1176][C:\Program Files\Common Files\Real\Update_OB\realsched.exe] [RealNetworks, Inc., 0.1.0.3510]
光影圣堂 - 2007-9-13 17:36:00
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\ole32.dll] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\VERSION.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\LZ32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\shell32.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\COMCTL32.DLL] [Microsoft Corporation, 5.81]
[C:\winnt\system32\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4512]
[C:\winnt\System32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\System32\cscui.dll] [Microsoft Corporation, 5.00.2172.1]
[C:\winnt\System32\CSCDLL.DLL] [Microsoft Corporation, 5.00.2189.1]
[C:\winnt\System32\NTMARTA.DLL] [Microsoft Corporation, 5.00.2158.1]
[C:\winnt\System32\WINSPOOL.DRV] [Microsoft Corporation, 5.00.2167.1]
[C:\winnt\system32\WLDAP32.dll] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\System32\NTDSAPI.dll] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\System32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\System32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\System32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\NETAPI32.DLL] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\System32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\System32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 12]
[PID: 1216][C:\Program Files\Rising\AntiSpyware\runiep.exe] [Beijing Rising Technology Co., Ltd., 4.0.0.18]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\System32\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0]
[C:\winnt\system32\MSVCRT.dll] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\KERNEL32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\GDI32.dll] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\ADVAPI32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\SHELL32.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\COMCTL32.DLL] [Microsoft Corporation, 5.81]
[C:\winnt\system32\VERSION.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\LZ32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\System32\MFC42LOC.DLL] [Microsoft Corporation, 6.00.8665.0]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 12]
[PID: 1400][C:\winnt\System32\internat.exe] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\COMCTL32.DLL] [Microsoft Corporation, 5.81]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\System32\SETUPAPI.DLL] [Microsoft Corporation, 5.00.2183.1]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\System32\USERENV.DLL] [Microsoft Corporation, 5.00.2185.1]
[C:\winnt\system32\SHELL32.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\INDICDLL.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 12]
[PID: 1416][C:\Program Files\hexin\sslproxy\SSLCnt.exe] [杭州核新软件技术有限公司, 1.110.2006.1220]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\System32\WSOCK32.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\System32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\System32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\Program Files\hexin\sslproxy\crypteng.dll] [杭州核新软件技术有限公司, 1.44.2003.0426]
[C:\winnt\system32\GDI32.dll] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\Program Files\hexin\sslproxy\sslproxy.dll] [杭州核新软件技术有限公司, 1.52.2002.326]
[C:\Program Files\hexin\sslproxy\CAsAPI.dll] [杭州核新软件技术有限公司, 1.49.2002.422]
[C:\winnt\System32\CRYPT32.dll] [Microsoft Corporation, 5.131.2173.1]
[C:\winnt\System32\MSASN1.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\VERSION.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\LZ32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\Program Files\hexin\sslproxy\Scard.dll] [杭州核新软件技术有限公司, 1.02.2001.0529]
[C:\winnt\system32\comdlg32.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\COMCTL32.DLL] [Microsoft Corporation, 5.81]
[C:\winnt\system32\SHELL32.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\WINSPOOL.DRV] [Microsoft Corporation, 5.00.2167.1]
[C:\winnt\System32\oledlg.dll] [Microsoft Corporation, 1.0]
[C:\winnt\system32\OLE32.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\OLEAUT32.dll] [Microsoft Corporation, 2.40.4512]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\System32\INDICDLL.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\Program Files\hexin\sslproxy\MapProxy.dll] [核新软件技术有限公司, 1.00.2003.0613]
[C:\winnt\system32\msafd.dll] [Microsoft Corporation, 5.00.2153.1]
[C:\winnt\System32\wshtcpip.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 12]
[PID: 1288][C:\winnt\EXPLORER.EXE] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\COMCTL32.DLL] [Microsoft Corporation, 5.81]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\SHELL32.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\INDICDLL.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\OLE32.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\System32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\winnt\system32\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4512]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\System32\cscui.dll] [Microsoft Corporation, 5.00.2172.1]
[C:\winnt\System32\CSCDLL.DLL] [Microsoft Corporation, 5.00.2189.1]
[C:\winnt\System32\SHDOCVW.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\browseui.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\MPR.DLL] [Microsoft Corporation, 5.00.2146.1]
[C:\winnt\System32\USERENV.DLL] [Microsoft Corporation, 5.00.2185.1]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 12]
光影圣堂 - 2007-9-13 17:37:00
[C:\winnt\System32\ntshrui.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\ATL.DLL] [Microsoft Corporation, 3.00.8449]
[C:\winnt\System32\NETAPI32.DLL] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\System32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\System32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\System32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\System32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\System32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\WINNT\system32\NETSHELL.dll] [Microsoft Corporation, 5.00.2176.1]
[C:\winnt\System32\webcheck.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\stobject.dll] [Microsoft Corporation, 5.00.2144.1]
[C:\winnt\System32\BATMETER.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\SETUPAPI.DLL] [Microsoft Corporation, 5.00.2183.1]
[C:\winnt\System32\POWRPROF.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\WINMM.DLL] [Microsoft Corporation, 5.00.2161.1]
[C:\winnt\System32\ntlanman.dll] [Microsoft Corporation, 5.00.2157.1]
[C:\winnt\System32\NETUI0.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\NETUI1.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\wdmaud.drv] [Microsoft Corporation, 5.00.2147.1]
[C:\winnt\System32\msacm32.drv] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\MSACM32.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\MSI.DLL] [Microsoft Corporation, 2.0.2600.2]
[C:\winnt\system32\WININET.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\MLANG.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\LINKINFO.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\CfgMgr32.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\browselc.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\WINNT\System32\docprop2.dll] [Microsoft Corporation, 5.00.2178.1]
[C:\WINNT\System32\MSVFW32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\WINNT\System32\AVIFIL32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\faxshell.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
[C:\winnt\System32\shlhook.dll] [Beijing Rising Technology Co., Ltd., 4.0.0.9]
[C:\winnt\system32\VERSION.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\LZ32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\shdoclc.dll] [Microsoft Corporation, 5.00.2920.0000]
[D:\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[C:\winnt\System32\mydocs.dll] [Microsoft Corporation, 5.00.2920.0000]
[PID: 464][C:\Program Files\WinRAR\WinRAR.exe] [N/A, ]
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\KERNEL32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\COMCTL32.DLL] [Microsoft Corporation, 5.81]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\USER32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\COMDLG32.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\SHELL32.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\system32\OLE32.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\System32\riched32.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\RICHED20.dll] [Microsoft Corporation, 5.30.23.1200]
[C:\winnt\System32\INDICDLL.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\winnt\system32\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4512]
[C:\winnt\System32\cscui.dll] [Microsoft Corporation, 5.00.2172.1]
[C:\winnt\System32\CSCDLL.DLL] [Microsoft Corporation, 5.00.2189.1]
[C:\winnt\system32\MPR.DLL] [Microsoft Corporation, 5.00.2146.1]
[C:\winnt\System32\ntlanman.dll] [Microsoft Corporation, 5.00.2157.1]
[C:\winnt\System32\NETUI0.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\NETUI1.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\NETAPI32.DLL] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\System32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\System32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\System32\WS2_32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WLDAP32.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\System32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\System32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 12]
[C:\winnt\System32\mydocs.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\SHDOCVW.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\USERENV.DLL] [Microsoft Corporation, 5.00.2185.1]
[C:\winnt\System32\MSI.DLL] [Microsoft Corporation, 2.0.2600.2]
[PID: 1476][C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX09.406\SREngPS.EXE] [Smallfrogs Studio, 2.5.16.900]
光影圣堂 - 2007-9-13 17:37:00
[C:\winnt\System32\ntdll.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\system32\kernel32.dll] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\USER32.dll] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\GDI32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\system32\comdlg32.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\ADVAPI32.DLL] [Microsoft Corporation, 5.00.2191.1]
[C:\winnt\system32\RPCRT4.DLL] [Microsoft Corporation, 5.00.2193.1]
[C:\winnt\system32\COMCTL32.DLL] [Microsoft Corporation, 5.81]
[C:\winnt\system32\SHELL32.DLL] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\MSVCRT.DLL] [Microsoft Corporation, 6.10.8637.0]
[C:\winnt\System32\WINSPOOL.DRV] [Microsoft Corporation, 5.00.2167.1]
[C:\winnt\System32\oledlg.dll] [Microsoft Corporation, 1.0]
[C:\winnt\system32\OLE32.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\system32\OLEAUT32.dll] [Microsoft Corporation, 2.40.4512]
[C:\winnt\system32\VERSION.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\LZ32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\CRYPT32.dll] [Microsoft Corporation, 5.131.2173.1]
[C:\winnt\System32\MSASN1.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\WINMM.dll] [Microsoft Corporation, 5.00.2161.1]
[C:\winnt\System32\WS2_32.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\WS2HELP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\system32\WININET.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\System32\IMM32.DLL] [Microsoft Corporation, 5.00.2180.1]
[C:\winnt\System32\RICHED20.DLL] [Microsoft Corporation, 5.30.23.1200]
[C:\winnt\System32\NTMARTA.DLL] [Microsoft Corporation, 5.00.2158.1]
[C:\winnt\system32\WLDAP32.dll] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\System32\NTDSAPI.dll] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\System32\DNSAPI.DLL] [Microsoft Corporation, 5.00.2181.1]
[C:\winnt\System32\WSOCK32.DLL] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\System32\NETAPI32.DLL] [Microsoft Corporation, 5.00.2194.1]
[C:\winnt\System32\SECUR32.DLL] [Microsoft Corporation, 5.00.2154.1]
[C:\winnt\System32\NETRAP.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\SAMLIB.DLL] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\System32\INDICDLL.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 12]
[C:\winnt\System32\sfc.dll] [Microsoft Corporation, 5.00.2164.1]
[C:\winnt\System32\sfcfiles.dll] [Microsoft Corporation, 5.00.2195.1]
[C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX09.406\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15]
[C:\winnt\System32\Winsta.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\utildll.dll] [Microsoft Corporation, 5.00.2153.1]
[C:\winnt\System32\TAPI32.dll] [Microsoft Corporation, 5.00.2182.1]
[C:\winnt\System32\SETUPAPI.dll] [Microsoft Corporation, 5.00.2183.1]
[C:\winnt\System32\USERENV.DLL] [Microsoft Corporation, 5.00.2185.1]
[C:\winnt\System32\wintrust.dll] [Microsoft Corporation, 5.131.2143.1]
[C:\winnt\system32\IMAGEHLP.dll] [Microsoft Corporation, 5.00.2195.1]
[C:\winnt\System32\RASAPI32.DLL] [Microsoft Corporation, 5.00.2188.1]
[C:\winnt\System32\RASMAN.DLL] [Microsoft Corporation, 5.00.2188.1]
[C:\winnt\System32\RTUTILS.DLL] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\System32\sensapi.dll] [Microsoft Corporation, 5.00.2163.1]
[C:\winnt\System32\rsabase.dll] [Microsoft Corporation, 5.00.2150.1]
[C:\winnt\System32\rnr20.dll] [Microsoft Corporation, 5.00.2152.1]
[C:\winnt\System32\winrnr.dll] [Microsoft Corporation, 5.00.2160.1]
[C:\winnt\System32\rasadhlp.dll] [Microsoft Corporation, 5.00.2168.1]
[C:\winnt\system32\urlmon.dll] [Microsoft Corporation, 5.00.2920.0000]
[C:\winnt\system32\msafd.dll] [Microsoft Corporation, 5.00.2153.1]
[C:\winnt\System32\wshtcpip.dll] [Microsoft Corporation, 5.00.2134.1]
[C:\winnt\System32\CLBCATQ.DLL] [Microsoft Corporation, 1999.9.3422.14]
[C:\winnt\System32\cscui.dll] [Microsoft Corporation, 5.00.2172.1]
[C:\winnt\System32\CSCDLL.DLL] [Microsoft Corporation, 5.00.2189.1]
==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM Error. ["hh.exe" %1]
.HLP Error. [winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS Error. [超级解霸3000]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]
==================================
Winsock 提供者
N/A
==================================
Autorun.inf
[C:\]
[AutoRun]
open=auto.exe
shellexecute=auto.exe
shell\Auto\command=auto.exe
[D:\]
[AutoRun]
open=auto.exe
shellexecute=auto.exe
shell\Auto\command=auto.exe
==================================
HOSTS 文件
127.0.0.1 localhost
127.0.0.1 sinaplusserver
127.0.0.1 sinaplusserver
==================================
进程特权扫描
特殊特权被允许: SeLoadDriverPrivilege [PID = 628, D:\ORACLE\ORA81\BIN\TNSLSNR.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 712, D:\ORACLE\ORA81\BIN\ORACLE.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 1176, C:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\REALSCHED.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 1216, C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 1416, C:\PROGRAM FILES\HEXIN\SSLPROXY\SSLCNT.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 464, C:\PROGRAM FILES\WINRAR\WINRAR.EXE]
==================================
API HOOK
N/A
==================================
隐藏进程
N/A
==================================
[/CODE]
光影圣堂 - 2007-9-13 17:39:00
请帮忙看下日志啊
1
© 2000 - 2026 Rising Corp. Ltd.