[CODE]

2008-08-05,16:43:24

SysLog Scanner 1.0.0.8.0721
Arswp (http://www.arswp.com)

Windows XP Professional Service Pack 1 (build 2600) - Administrators



========================================
注册项

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\System32\ctfmon.exe>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <PPS Accelerator><D:\PPS\PPStream\ppsap.exe>  [(Verified)PPStream Inc, 1, 0, 11, 133, C:2008-07-21 15:20 M:2008-07-18 14:46]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2008-08-03 17:28|NVIDIA Corporation, 6.14.10.5303, C:2003-11-17 10:33 M:2008-08-03 17:28]
    <ATIPTA><"C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe">  [ATI Technologies, Inc., 6.14.10.5157, C:2005-09-28 15:01 M:2005-06-28 21:05]
    <SystemTray><systray.exe>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <SoundMan><SOUNDMAN.EXE>  [Realtek Semiconductor Corp., 5, 1, 0, 59, C:2007-04-16 15:28 M:2007-04-16 15:28]
    <Grid Service><"C:\Program Files\GridService\peer.exe" -n Grid>  [FS2YOU, 2, 1, 10, 8196, C:2008-07-14 01:41 M:2008-07-14 01:41]
    <HBmhly><"C:\WINDOWS\System32\HBmhly.exe" -r>  []
    <BIE><; Rundll32.exe C:\WINDOWS\DOWNLO~1\BDSrHook.dll,Rundll32>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2008-08-03 17:28]
    <BigDogPath><; C:\WINDOWS\VM_STI.EXE ONDA PC Camera>  [VM., 4.2.610.4, C:2004-04-01 05:02 M:2003-01-21 15:19]
    <IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [Microsoft Corporation, 8.1.4005.0, C:2004-05-23 16:15 M:2003-03-27 04:00]
    <PHIME2002A><; C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [Microsoft Corporation, 5.2.2801, C:2004-05-23 16:15 M:2003-03-27 04:00]
    <PHIME2002ASync><; C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [Microsoft Corporation, 5.2.2801, C:2004-05-23 16:15 M:2003-03-27 04:00]
    <RavMon><; >  [N/A, C:1601-01-01 08:00 M:1601-01-01 08:00]
    <RavTimer><; >  [N/A, C:1601-01-01 08:00 M:1601-01-01 08:00]
    <TkBellExe><; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [RealNetworks, Inc., 0.1.0.3427, C:2003-01-05 23:37 M:2007-11-25 17:35]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <Shell><Explorer.exe>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <Userinit><C:\WINDOWS\System32\userinit.exe,>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><zsqf.dll,ytfa.dll,ytfb.dll,ytfc.dll>  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><%windir%\logonui.exe>  [sandip, , C:2007-10-21 00:03 M:2004-03-22 10:35]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager]
    <BootExecute><autocheck autochk *>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDLLs]
    <advapi32><advapi32.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <comdlg32><comdlg32.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <gdi32><gdi32.dll>  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    <imagehlp><imagehlp.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <kernel32><kernel32.dll>  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    <lz32><lz32.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <ole32><ole32.dll>  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    <oleaut32><oleaut32.dll>  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    <olecli32><olecli32.dll>  [Microsoft Corporation, 1.07 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    <olecnv32><olecnv32.dll>  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2003-03-26 20:00 M:2005-07-26 12:38]
    <olesvr32><olesvr32.dll>  [Microsoft Corporation, 1.09 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <olethk32><olethk32.dll>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <rpcrt4><rpcrt4.dll>  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    <shell32><shell32.dll>  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    <url><url.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <urlmon><urlmon.dll>  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
    <user32><user32.dll>  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    <version><version.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <wininet><wininet.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    <wldap32><wldap32.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\System32\browseui.dll>  [Microsoft Corporation, 6.00.2800.1892 (xpsp2.060829-0020), C:2008-07-19 18:55 M:2006-09-04 14:24]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\System32\browseui.dll>  [Microsoft Corporation, 6.00.2800.1892 (xpsp2.060829-0020), C:2008-07-19 18:55 M:2006-09-04 14:24]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    <{E0F3526A-4165-4589-80CD-50B6FBAC3BDA}><C:\WINDOWS\System32\adsntzt.dll>  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    <{898E02AB-9372-4a2c-9C4A-FFE1AF61097F}><C:\WINDOWS\System32\comuidsg.dll>  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:19]
    <{9E8287B0-0F3A-48ae-99C5-A6E0AAC36BC5}><C:\WINDOWS\System32\certmgrkd.dll>  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    <{7A6DF30E-D0F2-446f-B4F0-BF4232D60E07}><C:\WINDOWS\System32\cliconfgzx.dll>  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:20]
    <{00020002-0002-0002-0002-00020002BB15}><C:\WINDOWS\System32\avicapwm.dll>  [N/A, C:2001-08-05 12:22 M:2001-08-05 12:22]
    <{71A78CD4-E470-4a18-8457-E0E0283DD507}><C:\WINDOWS\System32\lweurqhx.dll>  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    <{2876D76C-CAAA-4313-AF97-8D1D9A2A1087}><C:\WINDOWS\System32\dpvvoxmh.dll>  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:02]
    <{D3112B69-A745-4805-874E-ABD480EA1299}><C:\WINDOWS\System32\bootvidgj.dll>  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    <{00180018-0018-0018-0018-00180018BB15}><C:\WINDOWS\System32\mstimewd.dll>  [N/A, C:2001-08-05 12:17 M:2001-08-05 12:17]
    <{76D44356-B494-443a-BEDC-AA68DE4255E6}><C:\WINDOWS\System32\dispexcb.dll>  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    <{21BE5FDF-D4CB-4850-AD99-21E68B50BF3F}><C:\WINDOWS\System32\ipsydopv.dll>  [N/A, C:2008-08-05 12:38 M:2008-08-05 12:38]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载]
    <><D:\新建文件夹\Program\GetUrl.htm>  [N/A, C:2008-08-04 11:45 M:2008-06-13 09:55]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载全部链接]
    <><D:\新建文件夹\Program\GetAllUrl.htm>  [N/A, C:2008-08-04 11:45 M:2008-06-13 09:55]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到QQ表情]
    <><D:\QQ\AddEmotion.htm>  [N/A, C:2008-06-30 17:14 M:2008-06-30 17:14]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [Microsoft Corporation, 5.131.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [Microsoft Corporation, 5.1.2600.1599 (xpsp2.040919-1003), C:2008-07-19 18:46 M:2004-10-28 09:30]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
    <浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2008-08-03 17:28|Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{306D6C21-C1B6-4629-986C-E59E1875B8AF}]
    <><"C:\WINDOWS\System32\rundll32.exe" "C:\Program Files\Messenger\msgsc.dll",HideIconsUser>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2008-08-03 17:28|Microsoft Corporation, 4.7.0041, C:2004-05-23 16:24 M:2002-08-20 13:39]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2004-05-23 16:26 M:2003-03-27 04:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2008-08-03 17:28|Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00|N/A, C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
    <Windows Messenger><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2008-08-03 17:28|Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00|N/A, C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2008-08-03 17:28|Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00|N/A, C:2008-07-20 09:16 M:2005-01-28 15:25]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2004-05-23 16:26 M:2003-03-27 04:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}]
    <启动迅雷5><D:\新建文件夹\Thunder.exe>  [Thunder Networking Technologies,LTD, 5, 6, 8, 19, C:2008-08-04 11:45 M:2008-07-10 21:15]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}]
    <相关站点><%SystemRoot%\web\related.htm>  [N/A, C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\BJ Language Monitor]
    <PrintMonitor: BJ Language Monitor><cnbjmon.dll>  [Microsoft Corporation, 5.1.2503.0 (Lab06_N.010129-0357), C:2001-08-31 16:02 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\Local Port]
    <PrintMonitor: Local Port><localspl.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\OLFax Ports]
    <PrintMonitor: OLFax Ports><OLFMNT40.DLL>  [Microsoft Corporation, 9.0.98.0105, C:1999-03-12 18:28 M:1999-03-12 18:28]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\PJL Language Monitor]
    <PrintMonitor: PJL Language Monitor><pjlmon.dll>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2001-08-31 16:03 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\Standard TCP/IP Port]
    <PrintMonitor: Standard TCP/IP Port><tcpmon.dll>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\USB Monitor]
    <PrintMonitor: USB Monitor><usbmon.dll>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]


========================================
启动项

[快捷方式 到 宽带连接]
    <C:\Documents and Settings\ok\「开始」菜单\程序\启动\快捷方式 到 宽带连接.lnk --> ""  > []
[QQ游戏启动加速程序]
    <C:\Documents and Settings\ok\「开始」菜单\程序\启动\QQ游戏启动加速程序.lnk --> "D:\QQ\QQGame\Accel.exe"  > [(Verified)深圳市腾讯计算机系统有限公司, 2, 0, 103, 5, C:2007-06-17 19:00 M:2007-06-17 19:00]


========================================
计划任务

[Symantec NetDetect.job]
    <C:\WINDOWS\tasks\Symantec NetDetect.job --> "C:\Program Files\Symantec\LiveUpdate\NDETECT.EXE"  > [(Verified)Symantec Corporation, 1.70.22.0, C:2004-05-23 17:14 M:2002-01-22 17:48]


========================================
组件


ShredTaskScheduler
[Browseui 预加载程序]
    {438755C2-A8BA-11D1-B96B-00A0C90312E1}  <%SystemRoot%\System32\browseui.dll>  [Microsoft Corporation, 6.00.2800.1892 (xpsp2.060829-0020), C:2008-07-19 18:55 M:2006-09-04 14:24]
[组件类别缓存程序]
    {8C7461EF-2B13-11d2-BE35-3078302C2030}  <%SystemRoot%\System32\browseui.dll>  [Microsoft Corporation, 6.00.2800.1892 (xpsp2.060829-0020), C:2008-07-19 18:55 M:2006-09-04 14:24]

ShellExecuteHook
[URL 执行挂钩]
    {AEB6717E-7E19-11d0-97EE-00C04FD91972}  <shell32.dll>  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
[]
    {E0F3526A-4165-4589-80CD-50B6FBAC3BDA}  <C:\WINDOWS\System32\adsntzt.dll>  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
[]
    {898E02AB-9372-4a2c-9C4A-FFE1AF61097F}  <C:\WINDOWS\System32\comuidsg.dll>  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:19]
[]
    {9E8287B0-0F3A-48ae-99C5-A6E0AAC36BC5}  <C:\WINDOWS\System32\certmgrkd.dll>  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
[]
    {7A6DF30E-D0F2-446f-B4F0-BF4232D60E07}  <C:\WINDOWS\System32\cliconfgzx.dll>  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:20]
[]
    {00020002-0002-0002-0002-00020002BB15}  <C:\WINDOWS\System32\avicapwm.dll>  [N/A, C:2001-08-05 12:22 M:2001-08-05 12:22]
[]
    {71A78CD4-E470-4a18-8457-E0E0283DD507}  <C:\WINDOWS\System32\lweurqhx.dll>  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
[]
    {2876D76C-CAAA-4313-AF97-8D1D9A2A1087}  <C:\WINDOWS\System32\dpvvoxmh.dll>  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:02]
[]
    {D3112B69-A745-4805-874E-ABD480EA1299}  <C:\WINDOWS\System32\bootvidgj.dll>  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
[]
    {00180018-0018-0018-0018-00180018BB15}  <C:\WINDOWS\System32\mstimewd.dll>  [N/A, C:2001-08-05 12:17 M:2001-08-05 12:17]
[]
    {76D44356-B494-443a-BEDC-AA68DE4255E6}  <C:\WINDOWS\System32\dispexcb.dll>  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
[]
    {21BE5FDF-D4CB-4850-AD99-21E68B50BF3F}  <C:\WINDOWS\System32\ipsydopv.dll>  [N/A, C:2008-08-05 12:38 M:2008-08-05 12:38]

Shell Extension
[Windows Media Player Play as Playlist Context Menu Handler]
    {8DD448E6-C188-4aed-AF92-44956194EB1F}  <C:\WINDOWS\System32\wmpshell.dll>  [Microsoft Corporation, 10.00.00.3802, C:2005-01-28 15:25 M:2005-01-28 15:25]
[Windows Media Player Burn Audio CD Context Menu Handler]
    {CE3FB1D1-02AE-4a5f-A6E9-D9F1B4073E6C}  <C:\WINDOWS\System32\wmpshell.dll>  [Microsoft Corporation, 10.00.00.3802, C:2005-01-28 15:25 M:2005-01-28 15:25]
[Windows Media Player Add to Playlist Context Menu Handler]
    {F1B9284F-E9DC-4e68-9D7E-42362A59F0FD}  <C:\WINDOWS\System32\wmpshell.dll>  [Microsoft Corporation, 10.00.00.3802, C:2005-01-28 15:25 M:2005-01-28 15:25]
[Sendmail service]
    {9E56BE60-C50F-11CF-9A2C-00A0C90A90CE}  <C:\WINDOWS\System32\sendmail.dll>  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Sendmail service]
    {9E56BE61-C50F-11CF-9A2C-00A0C90A90CE}  <C:\WINDOWS\System32\sendmail.dll>  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Crypto PKO Extension]
    {7444C717-39BF-11D1-8CD9-00C04FC29D45}  <C:\WINDOWS\System32\cryptext.dll>  [Microsoft Corporation, 5.131.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Crypto Sign Extension]
    {7444C719-39BF-11D1-8CD9-00C04FC29D45}  <C:\WINDOWS\System32\cryptext.dll>  [Microsoft Corporation, 5.131.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[ActiveX 高速缓存文件夹]
    {88C6C381-2E85-11D0-94DE-444553540000}  <%SystemRoot%\System32\occache.dll>  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[WebCheck]
    {E6FB5E20-DE35-11CF-9C87-00AA005127ED}  <%SystemRoot%\System32\webcheck.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Subscription Mgr]
    {ABBE31D0-6DAE-11D0-BECA-00C04FD940BE}  <%SystemRoot%\System32\webcheck.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[预订文件夹]
    {F5175861-2688-11d0-9C5E-00AA00A45957}  <%SystemRoot%\System32\webcheck.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[WebCheckWebCrawler]
    {08165EA0-E946-11CF-9C87-00AA005127ED}  <%SystemRoot%\System32\webcheck.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[WebCheckChannelAgent]
    {E3A8BDE6-ABCE-11d0-BC4B-00C04FD929DB}  <%SystemRoot%\System32\webcheck.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[TrayAgent]
    {E8BB6DC0-6B4E-11d0-92DB-00A0C90C2BD7}  <%SystemRoot%\System32\webcheck.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Code Download Agent]
    {7D559C10-9FE9-11d0-93F7-00AA0059CE02}  <%SystemRoot%\System32\webcheck.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[ConnectionAgent]
    {E6CC6978-6B6E-11D0-BECA-00C04FD940BE}  <%SystemRoot%\System32\webcheck.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[PostAgent]
    {D8BD2030-6FC9-11D0-864F-00AA006809D9}  <%SystemRoot%\System32\webcheck.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[WebCheck SyncMgr Handler]
    {7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB}  <%SystemRoot%\System32\webcheck.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[FTP Folders Webview]
    {63da6ec0-2e98-11cf-8d82-444553540000}  <C:\WINDOWS\System32\msieftp.dll>  [Microsoft Corporation, 6.00.2800.1724 (xpsp2.050802-1533), C:2003-03-26 20:00 M:2005-08-06 01:24]
[Shell Extensions for RealOne Player]
    {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4}  <C:\Program Files\Real\RealPlayer\rpshell.dll>  [RealNetworks, Inc., 1.0.1.2156, C:2003-01-05 23:37 M:2007-11-25 17:35]
[WinRAR shell extension]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <F:\魔兽\WINRAR\rarext.dll>  [N/A, C:2008-05-21 20:52 M:2007-05-30 08:28]
[Portable Media Devices]
    {640167b4-59b0-47a6-b335-a6b3c0695aea}  <%SystemRoot%\System32\Audiodev.dll>  [Microsoft Corporation, 5.2.3802.3802 built by: dnsrv(bld4act), C:2005-01-28 15:25 M:2005-01-28 15:25]
[Portable Media Devices Menu]
    {cc86590a-b60a-48e6-996b-41d25ed39a1e}  <%SystemRoot%\System32\Audiodev.dll>  [Microsoft Corporation, 5.2.3802.3802 built by: dnsrv(bld4act), C:2005-01-28 15:25 M:2005-01-28 15:25]
[]
    {669751ED-D558-49AE-B01A-3B374CC7910E}  <C:\WINDOWS\System32\SSup.dll>  [(Verified)TENCENT, 5, 0, 4, 10, C:2008-07-29 16:38 M:2008-06-05 09:12]
[频道文件]
    {f39a0dc0-9cc8-11d0-a599-00c04fd64433}  <%SystemRoot%\System32\cdfview.dll>  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[频道快捷方式]
    {f3aa0dc0-9cc8-11d0-a599-00c04fd64434}  <%SystemRoot%\System32\cdfview.dll>  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[频道句柄对象]
    {f3ba0dc0-9cc8-11d0-a599-00c04fd64435}  <%SystemRoot%\System32\cdfview.dll>  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Channel Menu]
    {f3da0dc0-9cc8-11d0-a599-00c04fd64437}  <%SystemRoot%\System32\cdfview.dll>  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Channel Properties]
    {f3ea0dc0-9cc8-11d0-a599-00c04fd64438}  <%SystemRoot%\System32\cdfview.dll>  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]

Protocols
[AP Class Install Handler filter]
    {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1}  <C:\WINDOWS\System32\urlmon.dll>  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
[AP lzdhtml encoding/decoding Filter]
    {8f6b0360-b80d-11d0-a9b3-006097942311}  <C:\WINDOWS\System32\urlmon.dll>  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
[WebView MIME Filter]
    {733AC4CB-F1A4-11d0-B951-00A0C90312E1}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
[Microsoft HTML About Pluggable Protocol]
    {3050F406-98B5-11CF-BB82-00AA00BDCE0B}  <%SystemRoot%\System32\mshtml.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[CDL: Asychronous Pluggable Protocol Handler]
    {3dd53d40-7b8b-11D0-b013-00aa0059ce02}  <C:\WINDOWS\System32\urlmon.dll>  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
[DVD: Pluggable Protocol]
    {12D51199-0DB5-46FE-A120-47A3D7D937CC}  <C:\WINDOWS\System32\msvidctl.dll>  [Microsoft Corporation, 6.05.00001.900 built by: DIRECTX, C:2005-11-08 20:42 M:2004-07-09 04:26]
[file:, local: Asychronous Pluggable Protocol Handler]
    {79eac9e7-baf9-11ce-8c82-00aa004ba90b}  <C:\WINDOWS\System32\urlmon.dll>  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
[ftp: Asychronous Pluggable Protocol Handler]
    {79eac9e3-baf9-11ce-8c82-00aa004ba90b}  <C:\WINDOWS\System32\urlmon.dll>  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
[gopher: Asychronous Pluggable Protocol Handler]
    {79eac9e4-baf9-11ce-8c82-00aa004ba90b}  <C:\WINDOWS\System32\urlmon.dll>  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
[http: Asychronous Pluggable Protocol Handler]
    {79eac9e2-baf9-11ce-8c82-00aa004ba90b}  <C:\WINDOWS\System32\urlmon.dll>  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
[https: Asychronous Pluggable Protocol Handler]
    {79eac9e5-baf9-11ce-8c82-00aa004ba90b}  <C:\WINDOWS\System32\urlmon.dll>  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
[Microsoft InfoTech Protocols for IE 4.0]
    {9D148291-B9C8-11D0-A4CC-0000F80149F6}  <C:\WINDOWS\System32\itss.dll>  [Microsoft Corporation, 5.2.3790.315 (srv03_gdr.050421-1728), C:2004-05-23 17:00 M:2005-05-27 10:04]
[Microsoft HTML Javascript Pluggable Protocol]
    {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B}  <%SystemRoot%\System32\mshtml.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Microsoft HTML Mailto Pluggable Protocol]
    {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B}  <%SystemRoot%\System32\mshtml.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[MHTML Asychronous Pluggable Protocol Handler]
    {05300401-BCBC-11d0-85E3-00C04FD85AB4}  <%SystemRoot%\System32\inetcomm.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2004-05-23 16:26 M:2003-03-27 04:00]
[mk: Asychronous Pluggable Protocol Handler]
    {79eac9e6-baf9-11ce-8c82-00aa004ba90b}  <C:\WINDOWS\System32\urlmon.dll>  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
[Microsoft HTML Resource Pluggable Protocol]
    {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B}  <%SystemRoot%\System32\mshtml.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Microsoft HTML Resource Pluggable Protocol]
    {76E67A63-06E9-11D2-A840-006008059382}  <%SystemRoot%\System32\mshtml.dll>  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[TV: Pluggable Protocol]
    {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E}  <C:\WINDOWS\System32\msvidctl.dll>  [Microsoft Corporation, 6.05.00001.900 built by: DIRECTX, C:2005-11-08 20:42 M:2004-07-09 04:26]
[AsyncPProt Class]
    {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020}  <C:\WINDOWS\System32\msdxm.ocx>  [Microsoft Corporation, 6.4.09.1125, C:2003-03-26 20:00 M:2003-03-26 20:00]
[WiaProtocol Class]
    {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE}  <C:\WINDOWS\System32\wiascr.dll>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]

UrlSeachHook
[Microsoft Url 搜索挂接]
    {CFBFAE00-17A6-11D0-99CB-00C04FD64497}  <%SystemRoot%\System32\shdocvw.dll>  [Microsoft Corporation, 6.00.2800.1892 (xpsp2.060829-0020), C:2008-07-19 18:55 M:2006-09-04 14:24]

ToolBar
[电台(&R)]
    {8E718888-423F-11D2-876E-00A0C9082467}  <C:\WINDOWS\System32\msdxm.ocx>  [Microsoft Corporation, 6.4.09.1125, C:2003-03-26 20:00 M:2003-03-26 20:00]
[QQToolbar]
    {29CF293A-1E7D-4069-9E11-E39698D0AF95}  <C:\Program Files\Tencent\QQToolbar\IEBar.dll>  [(Verified)TENCENT, 2, 1, 8, 11, C:2008-08-01 16:49 M:2008-08-01 10:32]

ActiveX Extension
[Thunder Agent Class]
    {485463B7-8FB2-4B3B-B29B-8B919B0EACCE}  <D:\新建文件夹\ComDlls\ThunderAgent_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 4, 23, C:2008-08-04 11:46 M:2008-06-13 09:43]
[XMP Class]
    {6483F145-A768-4C41-AACC-52D4D7845851}  <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work>  [Copyright XunLei 2007, 2, 1, 2, 77, C:2008-08-04 11:46 M:2008-07-29 16:40]
[XDRM]
    {693571CB-54A3-4E90-9D52-EEAE1334E2D3}  <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work>  [Copyright XunLei 2007, 1, 0, 0, 7, C:2008-08-04 11:46 M:2008-07-29 16:40]
[MediaComm Class]
    {7670648D-461B-42AF-BDFE-46D26AF5EFF2}  <D:\新建文件夹\Components\InMedia\MediaAddin17.dll>  [Thunder Networking Technologies,LTD, 3, 1, 5, 78, C:2008-08-04 11:46 M:2008-07-29 16:40]
[360SafeLive]
    {87515F61-A66C-4319-A0E0-D416CB8059E3}  <D:\杀毒\360安全卫士\360safe\live.dll>  [(Verified)360.cn, 1, 0, 1, 1027, C:2008-04-09 17:07 M:2008-04-09 17:07]
[DapCtrl Class]
    {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8}  <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.1.5803.60.(142).dll>  [ShenZhen Thunder Networking Technologies Ltd., 2, 1, 5803, 60, C:2008-08-04 11:46 M:2008-07-29 16:40]
[Thunder DapPlayer]
    {EEDD6FF9-13DE-496B-9A1C-D78B3215E266}  <D:\新建文件夹\Components\DownAndPlay\DapPlayer3.0.5712.71.142.dll>  [ShenZhen Thunder Networking Technologies Ltd., 3, 0, 5712, 71, C:2008-08-04 11:46 M:2008-07-29 16:40]
[XPPlayer Class]
    {F3E70CEA-956E-49CC-B444-73AFE593AD7F}  <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.0.0.181.(142).dll>  [Xunlei Networking Technologies,LTD, 2, 0, 0, 181, C:2008-08-04 11:46 M:2008-07-29 16:40]

Context Menu
[BriefcaseMenu]
    {85BBD920-42A0-1069-A2E4-08002B30309D}  <syncui.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Offline Files]
    {750fdf0e-2a26-11d1-a3ea-080036587f03}  <%SystemRoot%\System32\cscui.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Open With]
    {09799AFB-AD67-11d1-ABCD-00C04FC30936}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
[Open With EncryptionMenu]
    {A470F8CF-A1E8-4f65-8335-227475AA5C46}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
[WinRAR]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <F:\魔兽\WINRAR\rarext.dll>  [N/A, C:2008-05-21 20:52 M:2007-05-30 08:28]
[Send To]
    {7BA4C740-9E81-11CF-99D3-00AA004AE837}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
[Sharing]
    {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}  <ntshrui.dll>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]


========================================
服务

[Application Layer Gateway Service / ALG][Running/Manual Start]
    <%SystemRoot%\System32\alg.exe>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
    <%SystemRoot%\System32\Ati2evxx.exe>  [(Verified)ATI Technologies Inc., 6.14.10.4197, C:2008-05-12 23:43 M:2008-05-12 23:43]
[Windows Audio / AudioSrv][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\audiosrv.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Background Intelligent Transfer Service / BITS][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\qmgr.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 6.6.2600.1569 (xpsp2_gdr.040517-1325), C:2004-05-23 16:26 M:2004-07-02 06:08]
[Contrl Center of Storm Media / ccosm][Running/Auto Start]
    <C:\Program Files\StormII\stormliv.exe /asservice>  [(Verified)北京暴风网际科技有限公司, 3, 8, 3, 15, C:2008-03-11 14:33 M:2008-03-11 14:33]
[Cryptographic Services / CryptSvc][Running/Auto Start]
    <%SystemRoot%\system32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\cryptsvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1190 (xpsp2.030320-1720), C:2004-05-23 17:00 M:2003-03-26 08:41]
[DHCP Client / Dhcp][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\dhcpcsvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1847 (xpsp2.060519-0009), C:2003-03-26 20:00 M:2006-05-19 20:14]
[Logical Disk Manager / dmserver][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\dmserver.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corp., 2600.0.503.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
[DNS Client / Dnscache][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k NetworkService --> "%SystemRoot%\System32\dnsrslvr.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Error Reporting Service / ERSvc][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\ersvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Event Log / Eventlog][Running/Auto Start]
    <%SystemRoot%\system32\services.exe>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[COM+ Event System / EventSystem][Running/Manual Start]
    <C:\WINDOWS\System32\svchost.exe -k netsvcs --> "C:\WINDOWS\System32\es.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
[Fast User Switching Compatibility / FastUserSwitchingCompatibility][Running/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\shsvcs.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 6.00.2800.1605 (xpsp2.040919-1003), C:2008-07-19 18:46 M:2004-10-28 09:30]
[Help and Support / helpsvc][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:26 M:2003-03-27 04:00]
[Infrared Monitor / Irmon][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\irmon.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2008-08-03 23:05 M:2002-09-09 15:53]
[TCP/IP NetBIOS Helper / LmHosts][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k LocalService --> "%SystemRoot%\System32\lmhsvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Network Connections / Netman][Running/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\netman.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1733 (xpsp2.050819-1534), C:2008-07-19 19:18 M:2005-08-23 02:36]
[Network Location Awareness (NLA) / Nla][Running/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\mswsock.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Plug and Play / PlugPlay][Running/Auto Start]
    <%SystemRoot%\system32\services.exe>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Protected Storage / ProtectedStorage][Running/Auto Start]
    <%SystemRoot%\system32\lsass.exe>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Remote Access Connection Manager / RasMan][Running/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\rasmans.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1861 (xpsp2.060622-0007), C:2008-07-19 19:24 M:2006-06-22 18:59]
[Remote Registry / RemoteRegistry][Running/Auto Start]
    <%SystemRoot%\system32\svchost.exe -k LocalService --> "%SystemRoot%\system32\regsvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Remote Procedure Call (RPC) / RpcSs][Running/Auto Start]
    <%SystemRoot%\system32\svchost -k rpcss --> "C:\WINDOWS\System32\srpcss.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|N/A, C:2008-07-19 19:20 M:2005-07-26 12:38]
[Security Accounts Manager / SamSs][Running/Auto Start]
    <%SystemRoot%\system32\lsass.exe>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Task Scheduler / Schedule][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\system32\schedsvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1564 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
[Secondary Logon / seclogon][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\seclogon.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[System Event Notification / SENS][Running/Auto Start]
    <%SystemRoot%\system32\svchost.exe -k netsvcs --> "%SystemRoot%\system32\sens.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Internet Connection Firewall (ICF) / Internet Connection Sharing (ICS) / SharedAccess][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\ipnathlp.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1364 (xpsp2.040109-1800), C:2004-05-24 09:20 M:2004-03-30 09:50]
[Shell Hardware Detection / ShellHWDetection][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\shsvcs.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 6.00.2800.1605 (xpsp2.040919-1003), C:2008-07-19 18:46 M:2004-10-28 09:30]
[Print Spooler / Spooler][Running/Auto Start]
    <%SystemRoot%\system32\spoolsv.exe>  [Microsoft Corporation, 5.1.2600.1699 (xpsp2.050610-1533), C:2008-07-19 19:18 M:2005-06-11 07:55]
[System Restore Service / srservice][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "C:\WINDOWS\System32\srsvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:26 M:2003-03-27 04:00]
[Windows Image Acquisition (WIA) / stisvc][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k imgsvc --> "%SystemRoot%\system32\wiaservc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Telephony / TapiSrv][Running/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\tapisrv.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1715 (xpsp2.050706-1530), C:2008-07-19 18:59 M:2005-07-09 00:09]
[Terminal Services / TermService][Running/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\termsrv.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
[Themes / Themes][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\shsvcs.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 6.00.2800.1605 (xpsp2.040919-1003), C:2008-07-19 18:46 M:2004-10-28 09:30]
[Distributed Link Tracking Client / TrkWks][Running/Auto Start]
    <%SystemRoot%\system32\svchost.exe -k netsvcs --> "%SystemRoot%\system32\trkwks.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Windows User Mode Driver Framework / UMWdf][Running/Auto Start]
    <C:\WINDOWS\System32\wdfmgr.exe>  [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act), C:2005-01-28 01:36 M:2005-01-28 01:36]
[Upload Manager / uploadmgr][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:26 M:2003-03-27 04:00]
[Windows Time / W32Time][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "C:\WINDOWS\System32\w32time.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[WebClient / WebClient][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k LocalService --> "%SystemRoot%\System32\webclnt.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1790 (xpsp2.060103-1544), C:2008-07-19 19:22 M:2006-01-04 11:37]
[Windows Management Instrumentation / winmgmt][Running/Auto Start]
    <%systemroot%\system32\svchost.exe -k netsvcs --> "%SystemRoot%\system32\wbem\WMIsvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
[自动更新 / wuauserv][Running/Auto Start]
    <%systemroot%\system32\svchost.exe -k netsvcs --> "C:\WINDOWS\System32\wuauserv.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.4.3630.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
[Wireless Zero Configuration / WZCSVC][Running/Auto Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\wzcsvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2002-09-09 15:53 M:2003-03-26 20:00]

[Application Management / AppMgmt][Stopped/Manual Start]
    <%SystemRoot%\system32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\appmgmts.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[ATI Smart / ATI Smart][Stopped/Auto Start]
    <C:\WINDOWS\system32\ati2sgag.exe>  [Copyright (C) 1998 - 2005 ATI Technologies Inc., 5.13.0024, C:2005-09-28 15:00 M:2005-06-28 21:05]
[Indexing Service / CiSvc][Stopped/Manual Start]
    <%SystemRoot%\system32\cisvc.exe>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[ClipBook / ClipSrv][Stopped/Manual Start]
    <%SystemRoot%\system32\clipsrv.exe>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[COM+ System Application / COMSysApp][Stopped/Manual Start]
    <C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]
    <%SystemRoot%\System32\dmadmin.exe /com>  [Microsoft Corp., Veritas Software, 2600.0.503.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
    <"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe">  [Macrovision Corporation, 10.50.125, C:2004-10-22 02:24 M:2004-10-22 02:24]
[IMAPI CD-Burning COM Service / ImapiService][Stopped/Manual Start]
    <C:\WINDOWS\System32\imapi.exe>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[IPv6 Internet 连接防火墙 / Ip6FwHlp][Stopped/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\Ip6FwHlp.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1240 (xpsp2.030618-0119), C:2003-06-30 16:35 M:2003-06-30 16:35]
[NetMeeting Remote Desktop Sharing / mnmsrvc][Stopped/Manual Start]
    <C:\WINDOWS\System32\mnmsrvc.exe>  [Microsoft Corporation, 4.4.3400, C:2004-05-23 16:26 M:2003-03-27 04:00]
[Distributed Transaction Coordinator / MSDTC][Stopped/Manual Start]
    <C:\WINDOWS\System32\msdtc.exe>  [Microsoft Corporation, 2001.12.4414.42, C:2004-05-23 16:24 M:2003-03-27 04:00]
[Windows Installer / MSIServer][Stopped/Manual Start]
    <C:\WINDOWS\System32\msiexec.exe /V>  [Microsoft Corporation, 3.1.4000.1823, C:2007-06-12 18:09 M:2005-05-04 14:45]
[Network DDE / NetDDE][Stopped/Manual Start]
    <%SystemRoot%\system32\netdde.exe>  [Microsoft Corporation, 5.1.2600.1567 (xpsp2_gdr.040517-1325), C:2008-07-19 18:37 M:2004-06-17 08:10]
[Network DDE DSDM / NetDDEdsdm][Stopped/Manual Start]
    <%SystemRoot%\system32\netdde.exe>  [Microsoft Corporation, 5.1.2600.1567 (xpsp2_gdr.040517-1325), C:2008-07-19 18:37 M:2004-06-17 08:10]
[Removable Storage / NtmsSvc][Stopped/Manual Start]
    <%SystemRoot%\system32\svchost.exe -k netsvcs --> "%SystemRoot%\system32\ntmssvc.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2400.1106, C:2003-03-26 20:00 M:2003-03-26 20:00]
[NVIDIA Display Driver Service / NVSvc][Stopped/Auto Start]
    <%SystemRoot%\System32\nvsvc32.exe>  [(Verified)NVIDIA Corporation, 6.14.10.5303, C:2003-11-17 10:33 M:2008-08-03 17:28]
[IPSEC Services / PolicyAgent][Stopped/Auto Start]
    <%SystemRoot%\System32\lsass.exe>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Remote Desktop Help Session Manager / RDSessMgr][Stopped/Manual Start]
    <C:\WINDOWS\system32\sessmgr.exe>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
[Routing and Remote Access / RemoteAccess][Stopped/Disabled]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\mprdim.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[QoS RSVP / RSVP][Stopped/Manual Start]
    <%SystemRoot%\System32\rsvp.exe>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Smart Card Helper / SCardDrv][Stopped/Manual Start]
    <%SystemRoot%\System32\SCardSvr.exe>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Smart Card / SCardSvr][Stopped/Manual Start]
    <%SystemRoot%\System32\SCardSvr.exe>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[SSDP Discovery Service / SSDPSRV][Stopped/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k LocalService --> "%SystemRoot%\System32\ssdpsrv.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[MS Software Shadow Copy Provider / SwPrv][Stopped/Manual Start]
    <C:\WINDOWS\System32\dllhost.exe /Processid:{3EFF23EB-C11D-4AC1-9E0D-6C9F55DA592A}>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Performance Logs and Alerts / SysmonLog][Stopped/Manual Start]
    <%SystemRoot%\system32\smlogsvc.exe>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Telnet / TlntSvr][Stopped/Disabled]
    <C:\WINDOWS\System32\tlntsvr.exe>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Universal Plug and Play Device Host / upnphost][Stopped/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k LocalService --> "%SystemRoot%\System32\upnphost.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Uninterruptible Power Supply / UPS][Stopped/Manual Start]
    <%SystemRoot%\System32\ups.exe>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[User Privilege Service / usprserv][Stopped/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Volume Shadow Copy / VSS][Stopped/Manual Start]
    <%SystemRoot%\System32\vssvc.exe>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Portable Media Serial Number Service / WmdmPmSN][Stopped/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "C:\WINDOWS\System32\MsPMSNSv.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 10.0.3790.3802, C:2005-01-28 08:53 M:2005-01-28 08:53]
[Windows Management Instrumentation Driver Extensions / Wmi][Stopped/Manual Start]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\advapi32.dll">  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00|Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[WMI Performance Adapter / WmiApSrv][Stopped/Manual Start]
    <C:\WINDOWS\System32\wbem\wmiapsrv.exe>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2004-05-23 16:23 M:2003-03-27 04:00]


========================================
驱动

[Microsoft ACPI Driver / ACPI][Running/Boot Start]
    <System32\DRIVERS\ACPI.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[ADProt / ADProt][Running/System Start]
    <\SystemRoot\system32\drivers\ADProt.sys>  [腾讯科技（深圳）有限公司, 5, 0, 1, 19, C:2008-07-29 23:50 M:2008-07-29 23:50]
[AFD 网络支持环境 / AFD][Running/Auto Start]
    <\SystemRoot\System32\drivers\afd.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Intel AGP Bus Filter / agp440][Running/Boot Start]
    <System32\DRIVERS\agp440.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2004-09-02 20:16 M:2001-08-17 13:58]
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
    <system32\drivers\ALCXWDM.SYS>  [Realtek Semiconductor Corp., 5.10.00.6280 built by: WinDDK, C:2008-01-24 16:36 M:2008-01-24 16:36]
[标准 IDE/ESDI 硬盘控制器 / atapi][Running/Boot Start]
    <System32\DRIVERS\atapi.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2008-08-02 14:50 M:2002-08-29 01:27]
[ati2mtag / ati2mtag][Running/Manual Start]
    <System32\DRIVERS\ati2mtag.sys>  [(Verified)ATI Technologies Inc., 6.14.10.6806, C:2008-05-13 00:30 M:2008-05-13 00:30]
[音频存根驱动程序 / audstub][Running/Manual Start]
    <System32\DRIVERS\audstub.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2004-05-23 16:20 M:2001-08-17 13:59]
[CD-ROM Driver / Cdrom][Running/System Start]
    <System32\DRIVERS\cdrom.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[d347bus / d347bus][Running/Boot Start]
    <System32\DRIVERS\d347bus.sys>  [ , 3.47.0.0 built by: WinDDK, C:2005-11-08 20:37 M:2004-08-22 16:31]
[d347prt / d347prt][Running/Boot Start]
    <System32\Drivers\d347prt.sys>  [ , 3.47.0.0 built by: WinDDK, C:2005-11-08 20:37 M:2004-08-22 16:31]
[磁盘驱动器 / Disk][Running/Boot Start]
    <System32\DRIVERS\disk.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Logical Disk Manager Driver / dmio][Running/Boot Start]
    <System32\drivers\dmio.sys>  [Microsoft Corp., Veritas Software, 2600.0.503.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
[dmload / dmload][Running/Boot Start]
    <System32\drivers\dmload.sys>  [Microsoft Corp., Veritas Software., 2600.0.503.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
[Floppy Disk Controller Driver / Fdc][Running/Manual Start]
    <System32\DRIVERS\fdc.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[FsVga / FsVga][Running/System Start]
    <System32\DRIVERS\fsvga.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2001-08-31 15:43 M:2003-03-26 20:00]
[Volume Manager Driver / Ftdisk][Running/Boot Start]
    <System32\DRIVERS\ftdisk.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Generic Packet Classifier / Gpc][Running/Manual Start]
    <System32\DRIVERS\msgpc.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[HBKernel Driver / HBKernel][Running/Boot Start]
    <system32\DRIVERS\HBKernel.sys>  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:38]
[Microsoft HID Class Driver / HidUsb][Running/Manual Start]
    <System32\DRIVERS\hidusb.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2005-09-28 16:39 M:2001-08-17 14:02]
[i8042 键盘和 PS/2 鼠标端口驱动程序 / i8042prt][Running/System Start]
    <System32\DRIVERS\i8042prt.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[IntelIde / IntelIde][Running/Boot Start]
    <System32\DRIVERS\intelide.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-09-02 20:10 M:2002-09-09 15:45]
[IP Traffic Filter Driver / IpFilterDriver][Running/System Start]
    <\??\C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[IP Network Address Translator / IpNat][Running/Manual Start]
    <System32\DRIVERS\ipnat.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[IPSEC driver / IPSec][Running/System Start]
    <System32\DRIVERS\ipsec.sys>  [Microsoft Corporation, 5.1.2600.1842 (xpsp2.060513-0133), C:2003-03-26 20:00 M:2006-05-13 18:13]
[IrDA Protocol / irda][Running/Auto Start]
    <System32\DRIVERS\irda.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2008-08-03 23:05 M:2001-08-17 13:51]
[IR Enumerator Service / IRENUM][Running/Manual Start]
    <System32\DRIVERS\irenum.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2004-05-23 16:15 M:2003-03-27 04:00]
[Microsoft Serial Infrared Driver / irsir][Running/Manual Start]
    <System32\DRIVERS\irsir.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2008-08-03 23:05 M:2001-08-17 13:51]
[PnP ISA/EISA Bus Driver / isapnp][Running/Boot Start]
    <System32\DRIVERS\isapnp.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Kingsoft AntiARP NIDS Driver / KAntiarp][Running/Manual Start]
    <System32\DRIVERS\kantiarp.sys>  [(Verified)Kingsoft Corporation, 2007,12,18,123, C:2008-07-15 20:17 M:2007-12-18 11:34]
[Keyboard Class Driver / Kbdclass][Running/System Start]
    <System32\DRIVERS\kbdclass.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Mouse Class Driver / Mouclass][Running/System Start]
    <System32\DRIVERS\mouclass.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2002-09-09 15:49 M:2003-03-26 20:00]
[Mouse HID Driver / mouhid][Running/Manual Start]
    <System32\DRIVERS\mouhid.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2005-09-28 16:39 M:2001-08-31 15:31]
[WebDav Client Redirector / MRxDAV][Running/Manual Start]
    <System32\DRIVERS\mrxdav.sys>  [Microsoft Corporation, 5.1.2600.1673 (xpsp2.050425-1717), C:2003-03-26 20:00 M:2005-04-26 09:58]
[Remote Access NDIS TAPI Driver / NdisTapi][Running/Manual Start]
    <System32\DRIVERS\ndistapi.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[NDIS 用户模式 I/O 协议 / Ndisuio][Running/Manual Start]
    <System32\DRIVERS\ndisuio.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2002-08-29 01:35 M:2003-03-26 20:00]
[Remote Access NDIS WAN Driver / NdisWan][Running/Manual Start]
    <System32\DRIVERS\ndiswan.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[NetBT / NetBT][Running/System Start]
    <System32\DRIVERS\netbt.sys>  [Microsoft Corporation, 5.1.2600.1243 (xpsp2.030702-2125), C:2003-03-26 20:00 M:2003-07-08 16:48]
[npkcrypt / npkcrypt][Running/Auto Start]
    <\??\D:\冒险岛\冒险岛online\npkcrypt.sys>  [INCA Internet Co., Ltd., 2006. 5. 3. 1, C:2008-01-28 10:30 M:2008-01-28 10:30]
[Parallel port driver / Parport][Running/Manual Start]
    <System32\DRIVERS\parport.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2002-09-09 15:36 M:2003-03-26 20:00]
[PCI Bus Driver / PCI][Running/Boot Start]
    <System32\DRIVERS\pci.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[PCIIde / PCIIde][Running/Boot Start]
    <System32\DRIVERS\pciide.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2008-08-02 14:50 M:2001-08-31 15:42]
[WAN Miniport (PPTP) / PptpMiniport][Running/Manual Start]
    <System32\DRIVERS\raspptp.sys>  [Microsoft Corporation, 5.1.2600.1129 (xpsp2.020921-0842), C:2003-03-26 20:00 M:2002-10-02 08:52]
[处理器驱动程序 / Processor][Running/System Start]
    <System32\DRIVERS\processr.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2002-09-09 15:37 M:2003-03-26 20:00]
[StarForce Protection Environment Driver v6 / prodrv06][Running/System Start]
    <\SystemRoot\System32\drivers\prodrv06.sys>  [Protection Technology, 6.29, C:2003-10-10 21:06 M:2003-10-10 21:06]
[StarForce Protection Helper Driver v2 / prohlp02][Running/Boot Start]
    <System32\drivers\prohlp02.sys>  [Protection Technology, 2.29, C:2003-10-10 22:06 M:2003-10-10 22:06]
[StarForce Protection Synchronization Driver v1 / prosync1][Running/Boot Start]
    <System32\drivers\prosync1.sys>  [Protection Technology, 1.5, C:2003-09-06 20:22 M:2003-09-06 20:22]
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
    <System32\DRIVERS\ptilink.sys>  [Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Remote Access Auto Connection Driver / RasAcd][Running/System Start]
    <System32\DRIVERS\rasacd.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[WAN Miniport (IrDA) / Rasirda][Running/Manual Start]
    <System32\DRIVERS\rasirda.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2008-08-03 23:05 M:2001-08-17 13:51]
[WAN Miniport (L2TP) / Rasl2tp][Running/Manual Start]
    <System32\DRIVERS\rasl2tp.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[远程访问 PPPOE 驱动程序 / RasPppoe][Running/Manual Start]
    <System32\DRIVERS\raspppoe.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Direct Parallel / Raspti][Running/Manual Start]
    <System32\DRIVERS\raspti.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[RDPCDD / RDPCDD][Running/System Start]
    <System32\DRIVERS\RDPCDD.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Terminal Server Device Redirector Driver / rdpdr][Running/Manual Start]
    <System32\DRIVERS\rdpdr.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2002-08-29 01:06]
[Digital CD Audio Playback Filter Driver / redbook][Running/System Start]
    <System32\DRIVERS\redbook.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:19 M:2002-09-09 15:37]
[FN300 series 10/100M PCI Network Adapter Driver / rtl8139][Running/Manual Start]
    <System32\DRIVERS\FN311.sys>  [Realtek Semiconductor Corporation, 5.504.613.2002, C:2008-05-19 17:17 M:2002-06-13 11:38]
[Secdrv / Secdrv][Running/Auto Start]
    <System32\DRIVERS\secdrv.sys>  [Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.00.060, C:2003-03-26 20:00 M:2007-06-12 18:20]
[Serenum Filter Driver / serenum][Running/Manual Start]
    <System32\DRIVERS\serenum.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Serial port driver / Serial][Running/System Start]
    <System32\DRIVERS\serial.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[StarForce Protection Helper Driver / sfhlp01][Running/Boot Start]
    <System32\drivers\sfhlp01.sys>  [Protection Technology, 1.4, C:2003-09-06 20:27 M:2003-09-06 20:27]
[ATI-437A Serial ATA Controller / SI3112r][Running/Boot Start]
    <System32\DRIVERS\SI3112r.sys>  [Silicon Image, Inc., 1, 0, 0, 51, C:2005-06-01 23:40 M:2005-06-01 23:40]
[SATALink driver accelerator / SiFilter][Running/Boot Start]
    <System32\DRIVERS\SiWinAcc.sys>  [Silicon Image, Inc., 1.0.0.9, C:2005-06-01 23:40 M:2005-06-01 23:40]
[System Restore Filter Driver / sr][Running/Boot Start]
    <System32\DRIVERS\sr.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:26 M:2003-03-27 04:00]
[Software Bus Driver / swenum][Running/Manual Start]
    <System32\DRIVERS\swenum.sys>  [Microsoft Corporation, 5.3.0000000.900 built by: DIRECTX, C:2005-11-08 20:42 M:2002-12-12 00:14]
[Microsoft Kernel System Audio Device / sysaudio][Running/Manual Start]
    <system32\drivers\sysaudio.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-09-02 20:13 M:2002-08-29 02:01]
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
    <System32\DRIVERS\tcpip.sys>  [Microsoft Corporation, 5.1.2600.1831 (xpsp2.060420-0256), C:2003-03-26 20:00 M:2006-04-20 19:38]
[Terminal Device Driver / TermDD][Running/System Start]
    <System32\DRIVERS\termdd.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2002-09-09 15:54]
[Microcode Update Driver / Update][Running/Manual Start]
    <System32\DRIVERS\update.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Microsoft USB 2.0 Enhanced Host Controller Miniport Driver / usbehci][Running/Manual Start]
    <System32\DRIVERS\usbehci.sys>  [Microsoft Corporation, 5.1.2600.1243 (xpsp2.030702-2125), C:2003-07-03 17:50 M:2003-07-03 17:50]
[USB2 Enabled Hub / usbhub][Running/Manual Start]
    <System32\DRIVERS\usbhub.sys>  [Microsoft Corporation, 5.1.2600.1243 (xpsp2.030702-2125), C:2003-07-03 17:52 M:2003-07-03 17:52]
[Microsoft USB Open Host Controller Miniport Driver / usbohci][Running/Manual Start]
    <System32\DRIVERS\usbohci.sys>  [Microsoft Corporation, 5.1.2600.1243 (xpsp2.030702-2125), C:2003-07-03 17:51 M:2003-07-03 17:51]
[VgaSave / VgaSave][Running/System Start]
    <\SystemRoot\System32\drivers\vga.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[VIA AGP Bus Filter / viaagp][Running/Boot Start]
    <System32\DRIVERS\viaagp.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2004-05-23 16:19 M:2001-08-17 13:58]
[ViaIde / ViaIde][Running/Boot Start]
    <System32\DRIVERS\viaide.sys>  [Microsoft Corporation, 1.00.01.00, C:2003-03-26 20:00 M:2003-03-26 20:00]
[Remote Access IP ARP Driver / Wanarp][Running/Manual Start]
    <System32\DRIVERS\wanarp.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Microsoft WINMM WDM Audio Compatibility Driver / wdmaud][Running/Manual Start]
    <system32\drivers\wdmaud.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-09-02 20:13 M:2002-08-29 02:00]

[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc][Stopped/Manual Start]
    <system32\drivers\ac97intc.sys>  [Intel Corporation, 5.10.3523 built by: WinDDK, C:2004-09-02 20:16 M:2001-08-17 12:20]
[Microsoft Kernel Acoustic Echo Canceller / aec][Stopped/Manual Start]
    <system32\drivers\aec.sys>  [Microsoft Corporation, 5.1.2601.1095 built by: xpsp1, C:2004-09-02 20:13 M:2002-08-28 23:16]
[RAS Asynchronous Media Driver / AsyncMac][Stopped/Manual Start]
    <System32\DRIVERS\asyncmac.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[ati2mtaa / ati2mtaa][Stopped/Manual Start]
    <System32\DRIVERS\ati2mtaa.sys>  [ATI Technologies Inc., 6.13.10.5019, C:2004-05-23 16:19 M:2002-09-09 15:36]
[ATM ARP Client Protocol / Atmarpc][Stopped/Manual Start]
    <System32\DRIVERS\atmarpc.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[ATSpy / ATSpy][Stopped/Manual Start]
    <\??\C:\WINDOWS\System32\ATSpy.sys>  []
[Closed Caption Decoder / CCDECODE][Stopped/Manual Start]
    <System32\DRIVERS\CCDECODE.sys>  [Microsoft Corporation, 5.3.0000000.900 built by: DIRECTX, C:2005-11-08 20:42 M:2004-07-09 04:26]
[dmboot / dmboot][Stopped/Disabled]
    <System32\drivers\dmboot.sys>  [Microsoft Corp., Veritas Software, 2600.0.503.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
[Microsoft Kernel DLS Syntheiszer / DMusic][Stopped/Manual Start]
    <system32\drivers\DMusic.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2004-09-02 20:13 M:2001-08-17 13:59]
[Microsoft Kernel DRM Audio Descrambler / drmkaud][Stopped/Manual Start]
    <system32\drivers\drmkaud.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-09-02 20:13 M:2002-08-29 01:32]
[dump_wmimmc / dump_wmimmc][Stopped/Manual Start]
    <\??\D:\冒险岛\冒险岛online\GameGuard\dump_wmimmc.sys>  []
[EagleNT / EagleNT][Stopped/Manual Start]
    <\??\C:\WINDOWS\System32\drivers\EagleNT.sys>  []
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS][Stopped/Manual Start]
    <System32\DRIVERS\fetnd5.sys>  [VIA Technologies, Inc.              , 2.66, C:2003-01-05 01:12 M:2001-08-17 12:13]
[软盘驱动程序 / Flpydisk][Stopped/Manual Start]
    <System32\DRIVERS\flpydisk.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Game Port Enumerator / gameenum][Stopped/Manual Start]
    <System32\DRIVERS\gameenum.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-09-02 20:13 M:2002-08-29 01:32]
[CD 烧制筛选驱动器 / Imapi][Stopped/System Start]
    <System32\DRIVERS\imapi.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
[IPv6 防火墙驱动程序 / Ip6Fw][Stopped/Manual Start]
    <System32\DRIVERS\Ip6Fw.sys>  [Microsoft Corporation, 5.1.2600.1240 (xpsp2.030618-0119), C:2003-06-30 16:35 M:2003-06-30 16:35]
[IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start]
    <System32\DRIVERS\ipinip.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Microsoft Kernel Wave Audio Mixer / kmixer][Stopped/Manual Start]
    <system32\drivers\kmixer.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-09-02 20:13 M:2002-08-29 01:32]
[msiffei / msiffei][Stopped/Manual Start]
    <System32\Drivers\msiffei.sys>  []
[Microsoft Streaming Service Proxy / MSKSSRV][Stopped/Manual Start]
    <system32\drivers\MSKSSRV.sys>  [Microsoft Corporation, 5.3.0000000.900 built by: DIRECTX, C:2005-11-08 20:42 M:2002-12-12 00:14]
[Microsoft Streaming Clock Proxy / MSPCLOCK][Stopped/Manual Start]
    <system32\drivers\MSPCLOCK.sys>  [Microsoft Corporation, 5.3.0000000.900 built by: DIRECTX, C:2005-11-08 20:42 M:2002-12-12 00:14]
[Microsoft Streaming Quality Manager Proxy / MSPQM][Stopped/Manual Start]
    <system32\drivers\MSPQM.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2005-11-08 20:42 M:2001-08-23 05:00]
[Microsoft Streaming Tee/Sink-to-Sink Converter / MSTEE][Stopped/Manual Start]
    <system32\drivers\MSTEE.sys>  [Microsoft Corporation, 5.3.0000000.900 built by: DIRECTX, C:2005-11-08 20:42 M:2002-12-12 00:14]
[Microsoft MPU-401 MIDI UART Driver / ms_mpu401][Stopped/Manual Start]
    <system32\drivers\msmpu401.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2004-09-02 20:10 M:2001-08-17 14:00]
[NABTS/FEC VBI Codec / NABTSFEC][Stopped/Manual Start]
    <System32\DRIVERS\NABTSFEC.sys>  [Microsoft Corporation, 5.3.0000000.900 built by: DIRECTX, C:2005-11-08 20:42 M:2004-07-09 04:26]
[Microsoft TV/Video Connection / NdisIP][Stopped/Manual Start]
    <System32\DRIVERS\NdisIP.sys>  [Microsoft Corporation, 5.3.0000000.900 built by: DIRECTX, C:2005-11-08 20:42 M:2004-07-09 04:26]
[npkycryp / npkycryp][Stopped/Manual Start]
    <\??\C:\WINDOWS\System32\npkycryp.sys>  []
[NPPTNT2 / NPPTNT2][Stopped/Manual Start]
    <\??\C:\WINDOWS\System32\npptNT2.sys>  [INCA Internet Co., Ltd., 2005, 1, 5, 1, C:2008-08-04 15:19 M:2005-01-04 08:43]
[nv / nv][Stopped/Manual Start]
    <System32\DRIVERS\nv4_mini.sys>  [(Verified)NVIDIA Corporation, 6.14.10.5303, C:2003-11-17 10:33 M:2008-08-03 17:28]
[IPX Traffic Filter Driver / NwlnkFlt][Stopped/Manual Start]
    <System32\DRIVERS\nwlnkflt.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[IPX Traffic Forwarder Driver / NwlnkFwd][Stopped/Manual Start]
    <System32\DRIVERS\nwlnkfwd.sys>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[Intel PentiumIII Processor Driver / P3][Stopped/System Start]
    <System32\DRIVERS\p3.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2002-09-09 15:36 M:2003-03-26 20:00]
[BDA Slip De-Framer / SLIP][Stopped/Manual Start]
    <System32\DRIVERS\SLIP.sys>  [Microsoft Corporation, 5.3.0000000.900 built by: DIRECTX, C:2005-11-08 20:42 M:2004-07-09 04:26]
[Microsoft Kernel Audio Splitter / splitter][Stopped/Manual Start]
    <system32\drivers\splitter.sys>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-09-02 20:13 M:2002-08-29 01:32]
[BDA IPSink / streamip][Stopped/Manual Start]
    <System32\DRIVERS\StreamIP.sys>  [Microsoft Corporation, 5.3.0000000.900 built by: DIRECTX, C:2005-11-08 20:42 M:2004-07-09 04:26]
[Microsoft Kernel GS Wavetable Synthesizer / swmidi][Stopped/Manual Start]
    <system32\drivers\swmidi.sys>  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2004-09-02 20:13 M:2001-08-17 14:00]
[TesSafe / TesSafe][Stopped/Manual Start]
    <\??\C:\WINDOWS\System32\TesSafe.sys>  [TENCENT, 0, 0, 6, 8, C:2008-08-01 18:34 M:2008-08-01 18:34]
[USB 大容量存储设备 / USBSTOR][Stopped/Manual Start]
    <System32\DRIVERS\USBSTOR.SYS>  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2005-09-28 15:11 M:2002-08-29 01:32]
[Microsoft USB Universal Host Controller Miniport Driver / usbuhci][Stopped/Manual Start]
    <System32\DRIVERS\usbuhci.sys>  [Microsoft Corporation, 5.1.2600.1243 (xpsp2.030702-2125), C:2003-07-03 17:51 M:2003-07-03 17:51]
[VIA AC'97 Audio Controller (WDM) / VIAudio][Stopped/Manual Start]
    <system32\drivers\viaudios.sys>  [(Verified)VIA Technologies, Inc., 6.14.01.3870s built by: VIA, C:2004-08-25 17:08 M:2003-06-16 11:05]
[VNN VNC Virtual Network Adapter / vnndev][Stopped/Manual Start]
    <System32\DRIVERS\vnnvnic.sys>  [VNN B.J., 2.00, C:2005-10-04 16:21 M:2004-07-04 01:36]
[World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
    <System32\DRIVERS\WSTCODEC.SYS>  [Microsoft Corporation, 5.3.0000000.900 built by: DIRECTX, C:2005-11-08 20:42 M:2004-07-09 04:26]
[ONDA PC Camera / ZSMC301b][Stopped/Manual Start]
    <System32\Drivers\usbVM31b.sys>  [VM, 4.2.1010.41, C:2004-04-01 05:02 M:2004-03-22 16:22]


========================================
进程

[PID: 424 / SYSTEM]   \SystemRoot\System32\smss.exe   [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]

[PID: 480 / SYSTEM]   \??\C:\WINDOWS\system32\csrss.exe   [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\CSRSRV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\basesrv.dll  [Microsoft Corporation, 5.1.2600.1566 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\winsrv.dll  [Microsoft Corporation, 5.1.2600.1740 (xpsp2.050831-1533), C:2003-03-26 20:00 M:2005-09-01 09:51]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\KERNEL32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\sxs.dll  [Microsoft Corporation, 5.1.2600.1579 (xpsp2.040720-1705), C:2008-07-19 18:42 M:2004-08-21 05:53]
    C:\WINDOWS\System32\gdipro.dll  [N/A, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\sys07003.dll  [N/A, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\OLE32.DLL  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\comctl32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\System32\imm32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 528 / SYSTEM]   \??\C:\WINDOWS\system32\winlogon.exe   [Microsoft Corporation, 5.1.2600.1557 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-17 08:08]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\AUTHZ.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\NDdeApi.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\PROFMAP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\NETAPI32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\REGAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SETUPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WINSTA.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\system32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\System32\MSGINA.dll  [Microsoft Corporation, 5.1.2600.1343 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\COMCTL32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\System32\ODBC32.dll  [Microsoft Corporation, 3.520.9030.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\comdlg32.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\System32\odbcint.dll  [Microsoft Corporation, 3.520.7713.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SHSVCS.dll  [Microsoft Corporation, 6.00.2800.1605 (xpsp2.040919-1003), C:2008-07-19 18:46 M:2004-10-28 09:30]
    C:\WINDOWS\system32\sfc.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\sfc_os.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINTRUST.dll  [Microsoft Corporation, 5.131.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\IMAGEHLP.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINSCARD.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WTSAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINMM.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\sxs.dll  [Microsoft Corporation, 5.1.2600.1579 (xpsp2.040720-1705), C:2008-07-19 18:42 M:2004-08-21 05:53]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\system32\cscdll.dll  [Microsoft Corporation, 5.1.2600.1599 (xpsp2.040919-1003), C:2008-07-19 18:46 M:2004-10-28 09:30]
    C:\WINDOWS\system32\WlNotify.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINSPOOL.DRV  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\MPR.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rsaenh.dll  [Microsoft Corporation, 5.1.2600.1029 (xpsp1.020426-1800), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SAMLIB.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\cscui.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\NTMARTA.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msv1_0.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wdmaud.drv  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2008-08-02 15:42 M:2001-08-31 16:04]
    C:\WINDOWS\System32\msacm32.drv  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSACM32.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\midimap.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]

[PID: 576 / SYSTEM]   C:\WINDOWS\system32\services.exe   [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SCESRV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\AUTHZ.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\umpnpmgr.dll  [Microsoft Corporation, 5.1.2600.1734 (xpsp2.050822-1657), C:2008-07-19 19:19 M:2005-08-23 11:52]
    C:\WINDOWS\system32\WINSTA.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\NCObjAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\system32\secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\eventlog.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\system32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\wtsapi32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\netapi32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]

[PID: 588 / SYSTEM]   C:\WINDOWS\system32\lsass.exe   [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\LSASRV.dll  [Microsoft Corporation, 5.1.2600.1597 (xpsp2.040919-1003), C:2003-03-26 20:00 M:2004-10-28 09:30]
    C:\WINDOWS\system32\MPR.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\NETAPI32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\system32\NTDSAPI.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\system32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\system32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SAMLIB.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SAMSRV.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\cryptdll.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\system32\msprivs.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\kerberos.dll  [Microsoft Corporation, 5.1.2600.1701 (xpsp2.050614-1532), C:2008-07-19 19:17 M:2005-06-16 01:51]
    C:\WINDOWS\system32\msv1_0.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\netlogon.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\w32time.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\MSVCP60.dll  [Microsoft Corporation, 6.00.8972.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\iphlpapi.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\schannel.dll  [Microsoft Corporation, 5.1.2600.1347 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\wdigest.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rsaenh.dll  [Microsoft Corporation, 5.1.2600.1029 (xpsp1.020426-1800), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\setupapi.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\scecli.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\OLE32.DLL  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\shell32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\system32\comctl32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\system32\pstorsvc.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\psbase.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msapsspc.dll  [Microsoft Corporation, 6.00.7755, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\MSVCRT40.dll  [Microsoft Corporation, 4.20 - OS use only. DO NOT DISTRIBUTE, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\MSVCIRT.dll  [Microsoft Corporation, 7.0.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\digest.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msnsspc.dll  [Microsoft Corporation, 6.1.1825.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\dssenh.dll  [Microsoft Corporation, 5.1.2600.1029 (xpsp1.020426-1800), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 748 / SYSTEM]   C:\WINDOWS\System32\Ati2evxx.exe   [(Verified)ATI Technologies Inc., 6.14.10.4197, C:2008-05-12 23:43 M:2008-05-12 23:43]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\MSVCRT.DLL  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SETUPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\System32\wtsapi32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINSTA.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\powrprof.dll  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\cfgMgr32.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msv1_0.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Ati2edxx.dll  [(Verified)ATI Technologies, Inc., 6, 14, 10, 2513, C:2008-05-12 23:45 M:2008-05-12 23:45]
    C:\WINDOWS\System32\atipdlxx.dll  [(Verified)ATI Technologies, Inc., 6, 14, 10, 2533, C:2008-05-12 23:45 M:2008-05-12 23:45]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]

[PID: 780 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    c:\windows\system32\srpcss.dll  [N/A, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\system32\rpcss.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\system32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\userenv.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rsaenh.dll  [Microsoft Corporation, 5.1.2600.1029 (xpsp1.020426-1800), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\system32\iphlpapi.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\winrnr.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\rasadhlp.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\system32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 888 / SYSTEM]   C:\WINDOWS\System32\svchost.exe   [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    c:\windows\system32\shsvcs.dll  [Microsoft Corporation, 6.00.2800.1605 (xpsp2.040919-1003), C:2008-07-19 18:46 M:2004-10-28 09:30]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\shell32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\system32\comctl32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\System32\WINSTA.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\dhcpcsvc.dll  [Microsoft Corporation, 5.1.2600.1847 (xpsp2.060519-0009), C:2003-03-26 20:00 M:2006-05-19 20:14]
    c:\windows\system32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    c:\windows\system32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    c:\windows\system32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\iphlpapi.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    c:\windows\system32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\System32\rsaenh.dll  [Microsoft Corporation, 5.1.2600.1029 (xpsp1.020426-1800), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\termsrv.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    c:\windows\system32\ICAAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\AUTHZ.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\mstlsapi.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\ACTIVEDS.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\adsldpc.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\NETAPI32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\ATL.DLL  [Microsoft Corporation, 3.00.9435, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    c:\windows\system32\wzcsvc.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2002-09-09 15:53 M:2003-03-26 20:00]
    c:\windows\system32\rtutils.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\WMI.dll  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\WTSAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\ESENT.dll  [Microsoft Corporation, 5.1.2468.0 (Lab03_N(jliem).010306-1456), C:2008-07-19 18:31 M:2005-10-21 06:33]
    C:\WINDOWS\System32\NTMARTA.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SAMLIB.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\irmon.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2008-08-03 23:05 M:2002-09-09 15:53]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\MSWSOCK.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\REGAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\winmm.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wshirda.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2008-08-03 23:05 M:2001-08-31 16:04]
    C:\WINDOWS\System32\rastls.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\CRYPTUI.dll  [Microsoft Corporation, 5.131.2600.1243 (xpsp2.030702-2125), C:2003-07-24 16:42 M:2003-07-24 16:42]
    C:\WINDOWS\System32\WINTRUST.dll  [Microsoft Corporation, 5.131.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\IMAGEHLP.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MPRAPI.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SETUPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\RASAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasman.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\TAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SCHANNEL.dll  [Microsoft Corporation, 5.1.2600.1347 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\System32\WinSCard.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\raschap.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\schedsvc.dll  [Microsoft Corporation, 5.1.2600.1564 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    c:\windows\system32\NTDSAPI.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msv1_0.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSIDLE.DLL  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\audiosrv.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\qmgr.dll  [Microsoft Corporation, 6.6.2600.1569 (xpsp2_gdr.040517-1325), C:2004-05-23 16:26 M:2004-07-02 06:08]
    C:\WINDOWS\system32\MPR.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\SHFOLDER.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\WINHTTP.dll  [Microsoft Corporation, 5.1.2600.1557 (xpsp2_gdr.040517-1325), C:2008-08-03 19:01 M:2004-07-02 06:08]
    c:\windows\system32\cryptsvc.dll  [Microsoft Corporation, 5.1.2600.1190 (xpsp2.030320-1720), C:2004-05-23 17:00 M:2003-03-26 08:41]
    c:\windows\system32\certcli.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\netman.dll  [Microsoft Corporation, 5.1.2600.1733 (xpsp2.050819-1534), C:2008-07-19 19:18 M:2005-08-23 02:36]
    c:\windows\pchealth\helpctr\binaries\pchsvc.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:26 M:2003-03-27 04:00]
    c:\windows\system32\es.dll  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    c:\windows\system32\ersvc.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\dmserver.dll  [Microsoft Corp., 2600.0.503.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\trkwks.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\tapisrv.dll  [Microsoft Corporation, 5.1.2600.1715 (xpsp2.050706-1530), C:2008-07-19 18:59 M:2005-07-09 00:09]
    c:\windows\system32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\srsvc.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:26 M:2003-03-27 04:00]
    c:\windows\system32\POWRPROF.dll  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\seclogon.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\sens.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\wuauserv.dll  [Microsoft Corporation, 5.4.3630.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    c:\windows\system32\wbem\wmisvc.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    c:\windows\system32\wbem\wbemcomn.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    C:\WINDOWS\System32\VSSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\w32time.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\MSVCP60.dll  [Microsoft Corporation, 6.00.8972.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\rasmans.dll  [Microsoft Corporation, 5.1.2600.1861 (xpsp2.060622-0007), C:2008-07-19 19:24 M:2006-06-22 18:59]
    c:\windows\system32\WINIPSEC.DLL  [Microsoft Corporation, 5.1.2600.1842 (xpsp2.060513-0133), C:2008-07-19 19:24 M:2006-05-14 17:13]
    c:\windows\system32\netcfgx.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\CLUSAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINSPOOL.DRV  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Cabinet.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\mspatcha.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\NETSHELL.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\credui.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\upnp.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SSDPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SXS.DLL  [Microsoft Corporation, 5.1.2600.1579 (xpsp2.040720-1705), C:2008-07-19 18:42 M:2004-08-21 05:53]
    C:\WINDOWS\System32\hnetcfg.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\comsvcs.dll  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\colbact.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\MTXCLU.DLL  [Microsoft Corporation, 2001.12.4414.65, C:2008-07-19 19:23 M:2006-03-02 03:45]
    C:\WINDOWS\system32\WSOCK32.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\RESUTILS.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Wbem\wbemcore.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    C:\WINDOWS\System32\Wbem\esscli.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    C:\WINDOWS\System32\Wbem\FastProx.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    C:\WINDOWS\System32\rastapi.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wbem\wbemsvc.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2004-05-23 16:23 M:2003-03-27 04:00]
    C:\WINDOWS\System32\unimdm.tsp  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\uniplat.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\sfc.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\sfc_os.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\kmddsp.tsp  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wbem\wmiutils.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    C:\WINDOWS\System32\wbem\repdrvfs.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    C:\WINDOWS\System32\ndptsp.tsp  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ipconf.tsp  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\h323.tsp  [Microsoft Corporation, 5.1.2600.1348 (xpsp2.040109-1800), C:2004-05-24 09:20 M:2004-03-30 09:50]
    C:\WINDOWS\System32\hidphone.tsp  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\HID.DLL  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2001-08-31 16:02 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasppp.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntlsapi.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wbem\wmiprvsd.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    C:\WINDOWS\System32\NCObjAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasadhlp.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\System32\wbem\wbemess.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    c:\windows\system32\ipnathlp.dll  [Microsoft Corporation, 5.1.2600.1364 (xpsp2.040109-1800), C:2004-05-24 09:20 M:2004-03-30 09:50]
    C:\WINDOWS\System32\RASDLG.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\dssenh.dll  [Microsoft Corporation, 5.1.2600.1029 (xpsp1.020426-1800), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wbem\ncprov.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2004-05-23 16:23 M:2003-03-27 04:00]
    C:\WINDOWS\System32\wbem\wbemcons.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2004-05-23 16:23 M:2003-03-27 04:00]

[PID: 1040 / NETWORK SERVICE]   C:\WINDOWS\System32\svchost.exe   [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    c:\windows\system32\dnsrslvr.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    c:\windows\system32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    c:\windows\system32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    c:\windows\system32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\iphlpapi.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MPRAPI.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ACTIVEDS.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\adsldpc.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\NETAPI32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ATL.DLL  [Microsoft Corporation, 3.00.9435, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rtutils.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SAMLIB.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SETUPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 1076 / LOCAL SERVICE]   C:\WINDOWS\System32\svchost.exe   [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    c:\windows\system32\lmhsvc.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\iphlpapi.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    c:\windows\system32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    c:\windows\system32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\webclnt.dll  [Microsoft Corporation, 5.1.2600.1790 (xpsp2.060103-1544), C:2008-07-19 19:22 M:2006-01-04 11:37]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\system32\shell32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\system32\comctl32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\System32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wsock32.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\regsvc.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\ssdpsrv.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\System32\RASAPI32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasman.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\NETAPI32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\System32\TAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rtutils.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINMM.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\sensapi.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\System32\winrnr.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasadhlp.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]

[PID: 1372 / ok]   C:\WINDOWS\Explorer.EXE   [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\BROWSEUI.dll  [Microsoft Corporation, 6.00.2800.1892 (xpsp2.060829-0020), C:2008-07-19 18:55 M:2006-09-04 14:24]
    C:\WINDOWS\System32\SHDOCVW.dll  [Microsoft Corporation, 6.00.2800.1892 (xpsp2.060829-0020), C:2008-07-19 18:55 M:2006-09-04 14:24]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\system32\comctl32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\appHelp.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\cscui.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\CSCDLL.dll  [Microsoft Corporation, 5.1.2600.1599 (xpsp2.040919-1003), C:2008-07-19 18:46 M:2004-10-28 09:30]
    C:\WINDOWS\System32\themeui.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSIMG32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Msimtf.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSCTF.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\actxprxy.dll  [Microsoft Corporation, 6.00.2600.0000 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\msutb.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\netapi32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\System32\SETUPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LINKINFO.dll  [Microsoft Corporation, 5.1.2600.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\System32\ntshrui.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ATL.DLL  [Microsoft Corporation, 3.00.9435, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\adsntzt.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\System32\comuidsg.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:19]
    C:\WINDOWS\System32\certmgrkd.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\cliconfgzx.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:20]
    C:\WINDOWS\System32\avicapwm.dll  [N/A, C:2001-08-05 12:22 M:2001-08-05 12:22]
    C:\WINDOWS\System32\lweurqhx.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\dpvvoxmh.dll  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:02]
    C:\WINDOWS\System32\bootvidgj.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\mstimewd.dll  [N/A, C:2001-08-05 12:17 M:2001-08-05 12:17]
    C:\WINDOWS\System32\dispexcb.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\ipsydopv.dll  [N/A, C:2008-08-05 12:38 M:2008-08-05 12:38]
    C:\WINDOWS\System32\urlmon.dll  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
    C:\WINDOWS\System32\WINSTA.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\webcheck.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\stobject.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\BatMeter.dll  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\POWRPROF.dll  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WTSAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\hkz.dll  [N/A, C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\WSOCK32.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\System32\winrnr.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\NETSHELL.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\credui.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\iphlpapi.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\msi.dll  [Microsoft Corporation, 3.1.4000.2435, C:2007-06-12 18:09 M:2005-05-04 14:45]
    C:\WINDOWS\System32\WINTRUST.dll  [Microsoft Corporation, 5.131.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\IMAGEHLP.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rsaenh.dll  [Microsoft Corporation, 5.1.2600.1029 (xpsp1.020426-1800), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\comdlg32.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\browselc.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasadhlp.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\system32\MPR.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\drprov.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\davclnt.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSGINA.dll  [Microsoft Corporation, 5.1.2600.1343 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\System32\ODBC32.dll  [Microsoft Corporation, 3.520.9030.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\odbcint.dll  [Microsoft Corporation, 3.520.7713.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SAMLIB.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\sti.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\CFGMGR32.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\printui.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINSPOOL.DRV  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ACTIVEDS.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\adsldpc.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINMM.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\RASDLG.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MPRAPI.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rtutils.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\RASAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasman.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\TAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SXS.DLL  [Microsoft Corporation, 5.1.2600.1579 (xpsp2.040720-1705), C:2008-07-19 18:42 M:2004-08-21 05:53]

[PID: 1424 / SYSTEM]   C:\WINDOWS\system32\spoolsv.exe   [Microsoft Corporation, 5.1.2600.1699 (xpsp2.050610-1533), C:2008-07-19 19:18 M:2005-06-11 07:55]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\system32\SPOOLSS.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\system32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\system32\rasadhlp.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\system32\localspl.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\sfc_os.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WINTRUST.dll  [Microsoft Corporation, 5.131.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\IMAGEHLP.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\winspool.drv  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\netapi32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\system32\cnbjmon.dll  [Microsoft Corporation, 5.1.2503.0 (Lab06_N.010129-0357), C:2001-08-31 16:02 M:2003-03-26 20:00]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\OLFMNT40.DLL  [Microsoft Corporation, 9.0.98.0105, C:1999-03-12 18:28 M:1999-03-12 18:28]
    C:\WINDOWS\system32\pjlmon.dll  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2001-08-31 16:03 M:2003-03-26 20:00]
    C:\WINDOWS\system32\tcpmon.dll  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\usbmon.dll  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\spool\PRTPROCS\W32X86\olfpnt40.dll  [Microsoft Corporation, 9.0.98.0105, C:1998-12-13 00:29 M:1998-12-13 00:29]
    C:\WINDOWS\System32\winrnr.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\inetpp.dll  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\icmp.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\iphlpapi.DLL  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\system32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 1556 / LOCAL SERVICE]   C:\WINDOWS\System32\alg.exe   [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ATL.DLL  [Microsoft Corporation, 3.00.9435, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WSOCK32.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSWSOCK.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\hnetcfg.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\RASAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasman.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\NETAPI32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\System32\TAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\System32\rtutils.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINMM.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\netshell.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\credui.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\System32\iphlpapi.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\DHCPCSVC.DLL  [Microsoft Corporation, 5.1.2600.1847 (xpsp2.060519-0009), C:2003-03-26 20:00 M:2006-05-19 20:14]
    C:\WINDOWS\System32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\System32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\system32\comctl32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 1600 / SYSTEM]   C:\Program Files\StormII\stormliv.exe   [(Verified)北京暴风网际科技有限公司, 3, 8, 3, 15, C:2008-03-11 14:33 M:2008-03-11 14:33]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\Program Files\StormII\MSVCP60.dll  [Microsoft Corporation, 6.02.3104.0, C:2007-09-21 19:43 M:2007-09-21 19:43]
    C:\WINDOWS\System32\MFC42.DLL  [Microsoft Corporation, 6.00.8665.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\comdlg32.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\COMCTL32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SETUPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\System32\MFC42LOC.DLL  [Microsoft Corporation, 6.00.8665.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\msxml3.dll  [Microsoft Corporation, 8.30.9926.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\System32\winrnr.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\atl.dll  [Microsoft Corporation, 3.00.9435, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\cryptdll.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasadhlp.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\system32\urlmon.dll  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
    C:\WINDOWS\System32\mlang.dll  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 1780 / SYSTEM]   C:\WINDOWS\System32\svchost.exe   [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    c:\windows\system32\wiaservc.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\OLE32.DLL  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    c:\windows\system32\CFGMGR32.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\setupapi.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\mscms.dll  [Microsoft Corporation, 5.1.2600.1710 (xpsp2.050628-1527), C:2008-07-19 18:58 M:2005-06-29 09:55]
    c:\windows\system32\WINSPOOL.DRV  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    c:\windows\system32\WINSTA.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\actxprxy.dll  [Microsoft Corporation, 6.00.2600.0000 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\sti.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 1800 / LOCAL SERVICE]   C:\WINDOWS\System32\wdfmgr.exe   [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act), C:2005-01-28 01:36 M:2005-01-28 01:36]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\SETUPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]

[PID: 356 / ok]   C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe   [ATI Technologies, Inc., 6.14.10.5157, C:2005-09-28 15:01 M:2005-06-28 21:05]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\system32\comctl32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\System32\hkz.dll  [N/A, C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\WSOCK32.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zcr.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2008-08-05 12:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\lod.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2008-08-05 12:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\ipsydopv.dll  [N/A, C:2008-08-05 12:38 M:2008-08-05 12:38]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\dispexcb.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\mstimewd.dll  [N/A, C:2001-08-05 12:17 M:2001-08-05 12:17]
    C:\WINDOWS\System32\bootvidgj.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\dpvvoxmh.dll  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:02]
    C:\WINDOWS\System32\lweurqhx.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\avicapwm.dll  [N/A, C:2001-08-05 12:22 M:2001-08-05 12:22]
    C:\WINDOWS\System32\cliconfgzx.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:20]
    C:\WINDOWS\System32\certmgrkd.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\comuidsg.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:19]
    C:\WINDOWS\System32\adsntzt.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll  [ATI Technologies, Inc., 6.14.10.5157, C:2005-09-28 15:01 M:2005-06-28 21:05]
    C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATRPUIXX.CHS  [ATI Technologies, Inc., 6.14.10.5157, C:2005-09-28 15:01 M:2005-06-28 21:05]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\Program Files\ATI Technologies\ATI Control Panel\atipdxxx.dll  [ATI Technologies, Inc., 6.14.10.5157, C:2005-09-28 15:01 M:2005-06-28 21:05]
    C:\WINDOWS\System32\DINPUT8.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\HID.DLL  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2001-08-31 16:02 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SETUPAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINMM.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSCTF.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 944 / ok]   C:\WINDOWS\SOUNDMAN.EXE   [Realtek Semiconductor Corp., 5, 1, 0, 59, C:2007-04-16 15:28 M:2007-04-16 15:28]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\System32\SETUPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINMM.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\HID.DLL  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2001-08-31 16:02 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\system32\comctl32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\System32\hkz.dll  [N/A, C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\VERSION.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WSOCK32.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zcr.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2008-08-05 12:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\lod.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2008-08-05 12:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\ipsydopv.dll  [N/A, C:2008-08-05 12:38 M:2008-08-05 12:38]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\OLE32.DLL  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\dispexcb.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\mstimewd.dll  [N/A, C:2001-08-05 12:17 M:2001-08-05 12:17]
    C:\WINDOWS\System32\bootvidgj.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\dpvvoxmh.dll  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:02]
    C:\WINDOWS\System32\lweurqhx.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\avicapwm.dll  [N/A, C:2001-08-05 12:22 M:2001-08-05 12:22]
    C:\WINDOWS\System32\cliconfgzx.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:20]
    C:\WINDOWS\System32\certmgrkd.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\comuidsg.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:19]
    C:\WINDOWS\System32\adsntzt.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSCTF.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 1212 / ok]   C:\Program Files\GridService\peer.exe   [FS2YOU, 2, 1, 10, 8196, C:2008-07-14 01:41 M:2008-07-14 01:41]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\NETAPI32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\IMAGEHLP.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\iphlpapi.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\system32\comctl32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\System32\winrnr.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasadhlp.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\psapi.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\System32\hkz.dll  [N/A, C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\WSOCK32.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zcr.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2008-08-05 12:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\lod.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2008-08-05 12:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\ipsydopv.dll  [N/A, C:2008-08-05 12:38 M:2008-08-05 12:38]
    C:\WINDOWS\System32\dispexcb.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\mstimewd.dll  [N/A, C:2001-08-05 12:17 M:2001-08-05 12:17]
    C:\WINDOWS\System32\bootvidgj.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\dpvvoxmh.dll  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:02]
    C:\WINDOWS\System32\lweurqhx.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\avicapwm.dll  [N/A, C:2001-08-05 12:22 M:2001-08-05 12:22]
    C:\WINDOWS\System32\cliconfgzx.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:20]
    C:\WINDOWS\System32\certmgrkd.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\comuidsg.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:19]
    C:\WINDOWS\System32\adsntzt.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSCTF.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 1756 / ok]   C:\WINDOWS\System32\ctfmon.exe   [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\MSCTF.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSUTB.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\hkz.dll  [N/A, C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\VERSION.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WSOCK32.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zcr.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2008-08-05 12:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\lod.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2008-08-05 12:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\ipsydopv.dll  [N/A, C:2008-08-05 12:38 M:2008-08-05 12:38]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\System32\dispexcb.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\mstimewd.dll  [N/A, C:2001-08-05 12:17 M:2001-08-05 12:17]
    C:\WINDOWS\System32\bootvidgj.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\System32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\dpvvoxmh.dll  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:02]
    C:\WINDOWS\System32\lweurqhx.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\avicapwm.dll  [N/A, C:2001-08-05 12:22 M:2001-08-05 12:22]
    C:\WINDOWS\System32\cliconfgzx.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:20]
    C:\WINDOWS\System32\certmgrkd.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\comuidsg.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:19]
    C:\WINDOWS\System32\adsntzt.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 1876 / ok]   D:\PPS\PPStream\ppsap.exe   [(Verified)PPStream Inc, 1, 0, 11, 133, C:2008-07-21 15:20 M:2008-07-18 14:46]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\System32\WINSPOOL.DRV  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\COMCTL32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\OLE32.DLL  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\System32\MSCTF.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\hkz.dll  [N/A, C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\WSOCK32.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zcr.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2008-08-05 12:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\lod.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2008-08-05 12:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\ipsydopv.dll  [N/A, C:2008-08-05 12:38 M:2008-08-05 12:38]
    C:\WINDOWS\System32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\dispexcb.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\mstimewd.dll  [N/A, C:2001-08-05 12:17 M:2001-08-05 12:17]
    C:\WINDOWS\System32\bootvidgj.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\System32\dpvvoxmh.dll  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:02]
    C:\WINDOWS\System32\lweurqhx.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\avicapwm.dll  [N/A, C:2001-08-05 12:22 M:2001-08-05 12:22]
    C:\WINDOWS\System32\cliconfgzx.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:20]
    C:\WINDOWS\System32\certmgrkd.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\comuidsg.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:19]
    C:\WINDOWS\System32\adsntzt.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    D:\PPS\PPStream\1.0.11.138\vodnet.dll  [(Verified)PPStream Inc., 1, 0, 11, 138, C:2008-08-03 15:28 M:2008-08-03 15:28]
    C:\WINDOWS\system32\comdlg32.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINMM.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    D:\PPS\PPStream\1.0.11.138\vodres.dll  [(Verified)PPStream Inc., 1, 0, 11, 138, C:2008-08-03 15:26 M:2008-08-03 15:26]
    C:\WINDOWS\system32\imagehlp.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\shfolder.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    D:\PPS\PPStream\ppssg.dll  [(Verified)PPStream Inc., 1, 0, 11, 133, C:2008-07-18 14:45 M:2008-07-18 14:45]
    D:\PPS\PPStream\1.1.0.2599\fds.dll  [(Verified)PPStream Inc., 1, 0, 0, 82, C:2008-08-04 16:18 M:2008-08-04 16:18]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rsaenh.dll  [Microsoft Corporation, 5.1.2600.1029 (xpsp1.020426-1800), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\netapi32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\System32\winrnr.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasadhlp.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\System32\iphlpapi.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\RASAPI32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasman.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\TAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rtutils.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\sensapi.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\urlmon.dll  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]

[PID: 3536 / ok]   C:\Program Files\Internet Explorer\IEXPLORE.EXE   [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2004-05-23 16:26 M:2003-03-27 04:00]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\System32\SHDOCVW.dll  [Microsoft Corporation, 6.00.2800.1892 (xpsp2.060829-0020), C:2008-07-19 18:55 M:2006-09-04 14:24]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\system32\comctl32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\System32\MSCTF.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\hkz.dll  [N/A, C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\VERSION.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WSOCK32.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zcr.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2008-08-05 12:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\lod.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2008-08-05 12:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\ipsydopv.dll  [N/A, C:2008-08-05 12:38 M:2008-08-05 12:38]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\dispexcb.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\mstimewd.dll  [N/A, C:2001-08-05 12:17 M:2001-08-05 12:17]
    C:\WINDOWS\System32\bootvidgj.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\dpvvoxmh.dll  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:02]
    C:\WINDOWS\System32\lweurqhx.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\avicapwm.dll  [N/A, C:2001-08-05 12:22 M:2001-08-05 12:22]
    C:\WINDOWS\System32\cliconfgzx.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:20]
    C:\WINDOWS\System32\certmgrkd.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\comuidsg.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:19]
    C:\WINDOWS\System32\adsntzt.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\BROWSEUI.dll  [Microsoft Corporation, 6.00.2800.1892 (xpsp2.060829-0020), C:2008-07-19 18:55 M:2006-09-04 14:24]
    C:\WINDOWS\System32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\browselc.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\appHelp.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Msimtf.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\cscui.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\CSCDLL.dll  [Microsoft Corporation, 5.1.2600.1599 (xpsp2.040919-1003), C:2008-07-19 18:46 M:2004-10-28 09:30]
    C:\WINDOWS\System32\SETUPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\Program Files\Tencent\QQToolbar\IEBar.dll  [(Verified)TENCENT, 2, 1, 8, 11, C:2008-08-01 16:49 M:2008-08-01 10:32]
    C:\WINDOWS\system32\urlmon.dll  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
    C:\WINDOWS\System32\MSVCP60.dll  [Microsoft Corporation, 6.00.8972.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSIMG32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\OLEACC.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rsaenh.dll  [Microsoft Corporation, 5.1.2600.1029 (xpsp1.020426-1800), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\userenv.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\netapi32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\System32\cryptnet.dll  [Microsoft Corporation, 5.131.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WLDAP32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\Documents and Settings\ok\Application Data\TENCENT\QQToolbar\buttons\Toolbar.dll  [(Verified)TENCENT, 2, 1, 8, 11, C:2008-07-25 12:38 M:2008-08-01 10:32]
    C:\Documents and Settings\ok\Application Data\TENCENT\QQToolbar\buttons\TBAddr.dll  [(Verified)TENCENT, 1, 0, 2, 11, C:2008-07-26 00:41 M:2008-07-09 18:17]
    C:\WINDOWS\System32\SXS.DLL  [Microsoft Corporation, 5.1.2600.1579 (xpsp2.040720-1705), C:2008-07-19 18:42 M:2004-08-21 05:53]
    C:\Documents and Settings\ok\Application Data\TENCENT\QQToolbar\buttons\QQMail.dll  [(Verified)TENCENT, 2, 1, 1, 12, C:2008-07-25 12:38 M:2008-05-27 16:54]
    C:\Documents and Settings\ok\Application Data\TENCENT\QQToolbar\buttons\Shuqian.dll  [(Verified)TENCENT, 2, 1, 1, 12, C:2008-07-25 12:38 M:2008-05-27 16:54]
    C:\Documents and Settings\ok\Application Data\TENCENT\QQToolbar\buttons\Wenwen.dll  [(Verified)TENCENT, 2, 1, 1, 12, C:2008-07-25 12:38 M:2008-05-27 16:54]
    C:\Documents and Settings\ok\Application Data\TENCENT\QQToolbar\buttons\Weather.dll  [(Verified)TENCENT, 2, 1, 2, 10, C:2008-07-25 12:38 M:2008-06-19 15:56]
    C:\Documents and Settings\ok\Application Data\TENCENT\QQToolbar\buttons\Paipai.dll  [(Verified)TENCENT, 2,1,1,10, C:2008-07-25 12:38 M:2008-05-27 16:55]
    C:\Documents and Settings\ok\Application Data\TENCENT\QQToolbar\buttons\Qzone.dll  [(Verified)TENCENT, 2, 1, 1, 10, C:2008-07-25 12:38 M:2008-05-27 16:55]
    C:\Documents and Settings\ok\Application Data\TENCENT\QQToolbar\buttons\MusicBox.dll  [(Verified)TENCENT, 2, 1, 1, 10, C:2008-07-25 12:38 M:2008-05-27 16:54]
    C:\Documents and Settings\ok\Application Data\TENCENT\QQToolbar\buttons\Hot.dll  [(Verified)TENCENT, 1, 0, 4, 11, C:2008-07-26 00:41 M:2008-08-01 10:31]
    C:\WINDOWS\System32\Wtsapi32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINSTA.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\mshtml.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\shdoclc.dll  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\mlang.dll  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSLS31.DLL  [Microsoft Corporation, 3.10.349.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wshtcpip.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\RASAPI32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasman.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\TAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rtutils.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINMM.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\rasadhlp.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\system32\jsproxy.dll  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\jscript.dll  [Microsoft Corporation, 5.6.0.8513, C:2003-01-13 14:57 M:2003-01-13 14:57]
    C:\WINDOWS\System32\sensapi.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\DNSAPI.dll  [Microsoft Corporation, 5.1.2600.1863 (xpsp2.060626-0027), C:2008-07-19 19:26 M:2006-06-27 01:48]
    C:\WINDOWS\System32\winrnr.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Macromed\Flash\Flash9f.ocx  [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32]
    C:\WINDOWS\system32\comdlg32.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\wdmaud.drv  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2008-08-02 15:42 M:2001-08-31 16:04]
    C:\WINDOWS\System32\msacm32.drv  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\MSACM32.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\midimap.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\iepeers.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINSPOOL.DRV  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\imgutil.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\msxml3.dll  [Microsoft Corporation, 8.30.9926.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\mshtmled.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\actxprxy.dll  [Microsoft Corporation, 6.00.2600.0000 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 3976 / SYSTEM]   C:\WINDOWS\System32\wuauclt.exe   [(Verified)Microsoft Corporation, 7.0.6000.381 (winmain(wmbla).070730-1740), C:2004-05-23 16:23 M:2007-07-30 19:19]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ESENT.dll  [Microsoft Corporation, 5.1.2468.0 (Lab03_N(jliem).010306-1456), C:2008-07-19 18:31 M:2005-10-21 06:33]
    C:\WINDOWS\System32\WTSAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINSTA.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINSPOOL.DRV  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IPHLPAPI.DLL  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WINHTTP.dll  [Microsoft Corporation, 5.1.2600.1557 (xpsp2_gdr.040517-1325), C:2008-08-03 19:01 M:2004-07-02 06:08]
    C:\WINDOWS\System32\WINTRUST.dll  [Microsoft Corporation, 5.131.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\IMAGEHLP.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Cabinet.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\mspatcha.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]

[PID: 3504 / ok]   D:\杀毒\新版arswp\新版arswp\A r S w p.exe   [A,r,S,w,p.com, 2, 8, 0, 723, C:2008-08-05 16:41 M:2008-07-24 10:20]
    C:\WINDOWS\System32\ntdll.dll  [Microsoft Corporation, 5.1.2600.1217 (xpsp2.030429-2131), C:2003-03-26 20:00 M:2003-05-01 16:57]
    C:\WINDOWS\system32\kernel32.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\SHLWAPI.dll  [Microsoft Corporation, 6.00.2800.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\system32\ADVAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\RPCRT4.dll  [Microsoft Corporation, 5.1.2600.1361 (xpsp2.040109-1800), C:2004-05-23 17:04 M:2004-03-06 10:17]
    C:\WINDOWS\system32\GDI32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\USER32.dll  [Microsoft Corporation, 5.1.2600.1561 (xpsp2_gdr.040517-1325), C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\system32\msvcrt.dll  [Microsoft Corporation, 7.0.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\WININET.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\CRYPT32.dll  [Microsoft Corporation, 5.131.2600.1123 (xpsp2.020921-0842), C:2004-05-23 17:00 M:2002-09-24 06:10]
    C:\WINDOWS\system32\MSASN1.dll  [Microsoft Corporation, 5.1.2600.1362 (xpsp2.040109-1800), C:2003-03-26 20:00 M:2004-03-30 09:50]
    C:\WINDOWS\system32\OLEAUT32.dll  [Microsoft Corporation, 3.50.5016.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\OLE32.DLL  [Microsoft Corporation, 5.1.2600.1720 (xpsp2.050722-1526), C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\system32\VERSION.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\imagehlp.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINTRUST.dll  [Microsoft Corporation, 5.131.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WTSAPI32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WINSTA.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\PSAPI.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\comdlg32.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\COMCTL32.dll  [Microsoft Corporation, 5.82 (xpsp2.060825-0038), C:2003-03-26 20:00 M:2006-08-25 23:54]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2800.1873 (xpsp2.060713-0016), C:2008-07-19 19:28 M:2006-07-13 21:50]
    C:\WINDOWS\System32\WINSPOOL.DRV  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\oledlg.dll  [Microsoft Corporation, 1.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\OLEPRO32.DLL  [Microsoft Corporation, 5.0.5014, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\urlmon.dll  [Microsoft Corporation, 6.00.2800.1143 (xpsp2.021108-1929), C:2004-05-23 17:00 M:2002-11-28 02:06]
    C:\WINDOWS\System32\WSOCK32.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\WS2_32.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\WS2HELP.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\iphlpapi.dll  [Microsoft Corporation, 5.1.2600.1886 (xpsp2.060816-0106), C:2008-07-19 19:29 M:2006-08-16 20:15]
    C:\WINDOWS\System32\MSVCP60.dll  [Microsoft Corporation, 6.00.8972.0, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\SETUPAPI.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\IMM32.DLL  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LPK.DLL  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\USP10.dll  [Microsoft Corporation, 1.0409.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\zsqf.dll  [N/A, C:2008-08-05 12:21 M:2008-08-05 12:21]
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll  [Microsoft Corporation, 6.0 (xpsp2.060825-0038), C:2008-07-19 19:28 M:2006-08-25 23:54]
    C:\WINDOWS\System32\uxtheme.dll  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920), C:2007-11-19 22:42 M:2007-11-19 22:42]
    C:\WINDOWS\System32\MSCTF.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\hkz.dll  [N/A, C:2003-03-26 20:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\zcr.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2008-08-05 12:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\lod.dll  [Microsoft Corporation, 5.1.2600.1560 (xpsp2_gdr.040517-1325), C:2008-08-05 12:00 M:2004-06-18 02:31]
    C:\WINDOWS\System32\ipsydopv.dll  [N/A, C:2008-08-05 12:38 M:2008-08-05 12:38]
    C:\WINDOWS\System32\dispexcb.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\mstimewd.dll  [N/A, C:2001-08-05 12:17 M:2001-08-05 12:17]
    C:\WINDOWS\System32\bootvidgj.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\dpvvoxmh.dll  [N/A, C:2008-08-05 12:01 M:2008-08-05 12:02]
    C:\WINDOWS\System32\lweurqhx.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\System32\avicapwm.dll  [N/A, C:2001-08-05 12:22 M:2001-08-05 12:22]
    C:\WINDOWS\System32\cliconfgzx.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:20]
    C:\WINDOWS\System32\certmgrkd.dll  [N/A, C:2008-08-05 12:20 M:2008-08-05 12:20]
    C:\WINDOWS\System32\comuidsg.dll  [N/A, C:2008-08-05 12:19 M:2008-08-05 12:19]
    C:\WINDOWS\System32\adsntzt.dll  [N/A, C:2008-08-05 12:18 M:2008-08-05 12:18]
    C:\WINDOWS\system32\appHelp.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\CLBCATQ.DLL  [Microsoft Corporation, 2001.12.4414.62, C:2008-07-19 19:20 M:2005-07-26 12:38]
    C:\WINDOWS\System32\COMRes.dll  [Microsoft Corporation, 2001.12.4414.42, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\msctfime.ime  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\Msimtf.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    D:\杀毒\新版arswp\新版arswp\plugin\ArFix.dll  [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2008-08-05 16:41 M:2007-11-28 15:19]
    C:\WINDOWS\System32\shdocvw.dll  [Microsoft Corporation, 6.00.2800.1892 (xpsp2.060829-0020), C:2008-07-19 18:55 M:2006-09-04 14:24]
    C:\WINDOWS\System32\Secur32.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\asycfilt.dll  [Microsoft Corporation, 3.50.5014, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\NETSHELL.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\system32\credui.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\LINKINFO.dll  [Microsoft Corporation, 5.1.2600.1740 (xpsp2.050831-1533), C:2008-07-19 19:20 M:2005-09-01 09:51]
    C:\WINDOWS\System32\ntshrui.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\ATL.DLL  [Microsoft Corporation, 3.00.9435, C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\NETAPI32.dll  [Microsoft Corporation, 5.1.2600.1562 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\system32\USERENV.dll  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\mstask.dll  [Microsoft Corporation, 5.1.2600.1564 (xpsp2_gdr.040517-1325), C:2008-07-19 18:35 M:2004-06-09 06:01]
    C:\WINDOWS\system32\MPR.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
    C:\WINDOWS\System32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.1891 (xpsp2.060825-0038), C:2006-08-25 02:14 M:2006-08-25 02:14]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]


========================================
文件关联

[.hlp] <%SystemRoot%\system32\winhlp32.exe %1> [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
[.vbs] <%SystemRoot%\System32\WScript.exe "%1" %*> [Microsoft Corporation, 5.6.0.6626, C:2003-03-26 20:00 M:2003-03-26 20:00]
[.js] <%SystemRoot%\System32\WScript.exe "%1" %*> [Microsoft Corporation, 5.6.0.6626, C:2003-03-26 20:00 M:2003-03-26 20:00]
[.chm] <"C:\WINDOWS\hh.exe" %1> [Microsoft Corporation, 5.2.3790.315 (srv03_gdr.050421-1728), C:2004-05-23 17:00 M:2005-05-26 06:44]


========================================
AutoRun.INF



========================================
Winsock提供者

MSAFD Tcpip [TCP/IP]
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD Tcpip [UDP/IP]
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD Tcpip [RAW/IP]
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
RSVP UDP Service Provider
    <%SystemRoot%\system32\rsvpsp.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
RSVP TCP Service Provider
    <%SystemRoot%\system32\rsvpsp.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{930B23A9-E9FF-4453-83E4-176BDF5FCF08}] SEQPACKET 6
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{930B23A9-E9FF-4453-83E4-176BDF5FCF08}] DATAGRAM 6
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{C3BC02C7-83AD-40CE-A2EF-578D2C0311BC}] SEQPACKET 5
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{C3BC02C7-83AD-40CE-A2EF-578D2C0311BC}] DATAGRAM 5
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{F377FE3C-016A-490D-A308-5849FBB9C566}] SEQPACKET 4
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{F377FE3C-016A-490D-A308-5849FBB9C566}] DATAGRAM 4
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{A72DE0BC-FD1B-4B01-A349-AE3B2D99C429}] SEQPACKET 3
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{A72DE0BC-FD1B-4B01-A349-AE3B2D99C429}] DATAGRAM 3
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{FB7359BF-B2FF-48B3-80AC-CEBE03D1CB25}] SEQPACKET 0
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{FB7359BF-B2FF-48B3-80AC-CEBE03D1CB25}] DATAGRAM 0
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{F34CB421-78A2-48BF-AB9C-37503B8FBAC2}] SEQPACKET 1
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{F34CB421-78A2-48BF-AB9C-37503B8FBAC2}] DATAGRAM 1
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{07C3063C-CB72-4476-A88F-DF26599EF1E3}] SEQPACKET 2
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{07C3063C-CB72-4476-A88F-DF26599EF1E3}] DATAGRAM 2
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]
MSAFD Irda [IrDA]
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148), C:2003-03-26 20:00 M:2003-03-26 20:00]


========================================
HOSTS

    127.0.0.1 localhost


[/CODE]