[CODE] 2008-02-01,17:58:56 System Repair Engineer 2.5.16.900 Smallfrogs (http://www.KZTechs.com) Windows Vista Home Basic Edition (Build 6000) - 管理权限用户 - 完整功能 以下内容被选中: 所有的启动项目(包括注册表、启动文件夹、服务等) 浏览器加载项 正在运行的进程(包括进程模块信息) 文件关联 Winsock 提供者 Autorun.inf HOSTS 文件 进程特权扫描 启动项目 注册表 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <360Safetray> [(Verified)Qizhi Software (beijing) Co. Ltd] [(Verified)Microsoft Corporation] <360Safebox><"d:\Program Files\360Safebox\safeboxTray.exe" /r> [(Verified)Qizhi Software (beijing) Co. Ltd] <360Antiarp> [(Verified)Qizhi Software (beijing) Co. Ltd] <"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"> [(Verified)Kaspersky Lab] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] [(Verified)Microsoft Windows] [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon] [(Verified)Kaspersky Lab] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] <%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] <"%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE> [N/A] ================================== 启动文件夹 N/A ================================== 服务 [Acronis OS Selector Reinstall Service / AcronisOSSReinstallSvc][Stopped/Auto Start] <"C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe"> [Kaspersky Internet Security / AVP][Running/Auto Start] <"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" -r> [Contrl Center of Storm Media / ccosm][Running/Auto Start] <北京暴风网际科技有限公司> [Com4Qlb / Com4Qlb][Stopped/Manual Start] <"C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe"> [HP Health Check Service / HP Health Check Service][Running/Auto Start] <"c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe"> [hpqwmiex / hpqwmiex][Running/Auto Start] [InstallDriver Table Manager / IDriverT][Stopped/Manual Start] <"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"> [NBService / NBService][Stopped/Manual Start] [NMIndexingService / NMIndexingService][Stopped/Manual Start] <"C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe"> [Cyberlink RichVideo Service(CRVS) / RichVideo][Running/Auto Start] <"C:\Program Files\CyberLink\Shared Files\RichVideo.exe"><> [ServiceLayer / ServiceLayer][Stopped/Manual Start] <"C:\Program Files\PC Connectivity Solution\ServiceLayer.exe"> [XAudioService / XAudioService][Running/Auto Start] ================================== 驱动程序 [360AntiArp / 360AntiArp][Running/System Start] <\??\C:\Windows\system32\drivers\360AntiArp.sys><360安全中心> [adp94xx / adp94xx][Stopped/Disabled] <\SystemRoot\system32\drivers\adp94xx.sys> [adpahci / adpahci][Stopped/Disabled] <\SystemRoot\system32\drivers\adpahci.sys> [adpu160m / adpu160m][Stopped/Disabled] <\SystemRoot\system32\drivers\adpu160m.sys> [adpu320 / adpu320][Stopped/Disabled] <\SystemRoot\system32\drivers\adpu320.sys> [aic78xx / aic78xx][Stopped/Disabled] <\SystemRoot\system32\drivers\djsvs.sys> [aliide / aliide][Stopped/Disabled] <\SystemRoot\system32\drivers\aliide.sys> [amdide / amdide][Stopped/Disabled] <\SystemRoot\system32\drivers\amdide.sys> [Alps Pointing-device Filter Driver / ApfiltrService][Running/Manual Start] [arc / arc][Stopped/Disabled] <\SystemRoot\system32\drivers\arc.sys> [arcsas / arcsas][Stopped/Disabled] <\SystemRoot\system32\drivers\arcsas.sys> [Broadcom Extensible 802.11 Network Adapter Driver / BCM43XV][Stopped/Manual Start] [blbdrive / blbdrive][Stopped/Disabled] <\SystemRoot\system32\drivers\blbdrive.sys> [Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start] <\SystemRoot\system32\drivers\brfiltlo.sys> [Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start] <\SystemRoot\system32\drivers\brfiltup.sys> [Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Disabled] <\SystemRoot\system32\drivers\brserid.sys> [Brother WDM Serial driver / BrSerWdm][Stopped/Disabled] <\SystemRoot\system32\drivers\brserwdm.sys> [Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Disabled] <\SystemRoot\system32\drivers\brusbmdm.sys> [Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start] <\SystemRoot\system32\drivers\brusbser.sys> [cmdide / cmdide][Stopped/Disabled] <\SystemRoot\system32\drivers\cmdide.sys> [Intel(R) PRO Adapter Driver / E100B][Stopped/Manual Start] [Intel(R) PRO/1000 NDIS 6 Adapter Driver / E1G60][Stopped/Manual Start] [elxstor / elxstor][Stopped/Disabled] <\SystemRoot\system32\drivers\elxstor.sys> [Microsoft UAA Function Driver for High Definition Audio Service / HdAudAddService][Running/Manual Start] [HpCISSs / HpCISSs][Stopped/Disabled] <\SystemRoot\system32\drivers\hpcisss.sys> [HpqKbFilter Driver / HpqKbFiltr][Running/Manual Start] [HP Remote Control HID Device / HpqRemHid][Running/Manual Start] [HSFHWAZL / HSFHWAZL][Stopped/Manual Start] [HSF_DPV / HSF_DPV][Running/Manual Start] [HSXHWAZL / HSXHWAZL][Running/Manual Start] [ialm / ialm][Stopped/Manual Start] [Intel AHCI Controller / iaStor][Running/Boot Start] <\SystemRoot\system32\DRIVERS\iaStor.sys> [Intel RAID Controller Vista / iaStorV][Stopped/Disabled] <\SystemRoot\system32\drivers\iastorv.sys> [iirsp / iirsp][Stopped/Disabled] <\SystemRoot\system32\drivers\iirsp.sys> [IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start] [ITEATAPI_Service_Install / iteatapi][Stopped/Disabled] <\SystemRoot\system32\drivers\iteatapi.sys> [ITERAID_Service_Install / iteraid][Stopped/Disabled] <\SystemRoot\system32\drivers\iteraid.sys> [kl1 / kl1][Running/System Start] [Kaspersky Lab Boot Guard Driver / klbg][Running/Boot Start] <\SystemRoot\system32\drivers\klbg.sys> [Kaspersky Lab KLFltDev / KLFLTDEV][Running/Manual Start] [Kaspersky Lab Driver / KLIF][Running/System Start] [Kaspersky Anti-Virus NDIS 6 Filter / KLIM6][Running/System Start] [LSI_FC / LSI_FC][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_fc.sys> [LSI_SAS / LSI_SAS][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_sas.sys> [LSI_SCSI / LSI_SCSI][Stopped/Disabled] <\SystemRoot\system32\drivers\lsi_scsi.sys> [mdmxsdk / mdmxsdk][Running/Auto Start] [megasas / megasas][Stopped/Disabled] <\SystemRoot\system32\drivers\megasas.sys> [Mraid35x / Mraid35x][Stopped/Disabled] <\SystemRoot\system32\drivers\mraid35x.sys> [Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit / NETw3v32][Stopped/Manual Start] [Intel(R) Wireless WiFi Link 适配器驱动程序(适用于 Windows Vista 32 位) / NETw4v32][Stopped/Manual Start] [nfrd960 / nfrd960][Stopped/Disabled] <\SystemRoot\system32\drivers\nfrd960.sys> [N-trig HID Tablet Driver / ntrigdigi][Stopped/Disabled] <\SystemRoot\system32\drivers\ntrigdigi.sys> [nvlddmkm / nvlddmkm][Running/Manual Start] [nvraid / nvraid][Stopped/Disabled] <\SystemRoot\system32\drivers\nvraid.sys> [nvstor / nvstor][Stopped/Disabled] <\SystemRoot\system32\drivers\nvstor.sys> [IPX Traffic Filter Driver / NwlnkFlt][Stopped/Manual Start] [IPX Traffic Forwarder Driver / NwlnkFwd][Stopped/Manual Start] [PCAMp50 NDIS Protocol Driver / PCAMp50][Stopped/Manual Start] [PCASp50 NDIS Protocol Driver / PCASp50][Running/Manual Start] [PCCS Mode Change Filter Driver / pccsmcfd][Stopped/Manual Start] [QLogic Fibre Channel Miniport Driver / ql2300][Stopped/Disabled] <\SystemRoot\system32\drivers\ql2300.sys> [QLogic iSCSI Miniport Driver / ql40xx][Stopped/Disabled] <\SystemRoot\system32\drivers\ql40xx.sys> [rimmptsk / rimmptsk][Running/Auto Start] [rimsptsk / rimsptsk][Running/Auto Start] [Ricoh xD-Picture Card Driver / rismxdp][Running/Auto Start] [SafeBoxKrnl / SafeBoxKrnl][Running/System Start] <\??\d:\Program Files\360Safebox\SafeBoxKrnl.sys><360安全中心> [Prolific2 Serial port driver / Ser2pl][Stopped/Manual Start] [SiSRaid2 / SiSRaid2][Stopped/Disabled] <\SystemRoot\system32\drivers\sisraid2.sys> [SiSRaid4 / SiSRaid4][Stopped/Disabled] <\SystemRoot\system32\drivers\sisraid4.sys> [sptd / sptd][Running/Boot Start] <\SystemRoot\System32\Drivers\sptd.sys> [Symc8xx / Symc8xx][Stopped/Disabled] <\SystemRoot\system32\drivers\symc8xx.sys> [Symantec Network Security Intermediate Filter Service / SymIM][Stopped/Manual Start] [SymIMMP / SymIMMP][Stopped/Manual Start] [Sym_hi / Sym_hi][Stopped/Disabled] <\SystemRoot\system32\drivers\sym_hi.sys> [Sym_u3 / Sym_u3][Stopped/Disabled] <\SystemRoot\system32\drivers\sym_u3.sys> [TesSafe / TesSafe][Stopped/Manual Start] <\??\C:\Windows\system32\TesSafe.sys> [uliahci / uliahci][Stopped/Disabled] <\SystemRoot\system32\drivers\uliahci.sys> [UlSata / UlSata][Stopped/Disabled] <\SystemRoot\system32\drivers\ulsata.sys> [ulsata2 / ulsata2][Stopped/Disabled] <\SystemRoot\system32\drivers\ulsata2.sys> [viaide / viaide][Stopped/Disabled] <\SystemRoot\system32\drivers\viaide.sys> [vsmraid / vsmraid][Stopped/Disabled] <\SystemRoot\system32\drivers\vsmraid.sys> [winachsf / winachsf][Running/Manual Start] [XAudio / XAudio][Running/Auto Start] [NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwlh][Running/Manual Start] ================================== 浏览器加载项 [ThunderAtOnce Class] {01443AEC-0FD1-40fd-9C87-E93D1494C233} [Adobe PDF Reader Link Helper] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [IEVkbdBHO Class] {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} [SSVHelper Class] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [SafeMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [FlashFXP Helper for Internet Explorer] {E5A1691B-D188-4419-AD02-90002030B8EE} [Java Plug-in 1.6.0_02] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} [启动迅雷5] {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} [浩方对战平台] {0A155D3C-68E2-4215-A47A-E800A446447A} [Web 流量保护状态] {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} [信息检索(&R)] {92780B25-18CC-41C8-B9BE-3C9C571A8263} [DLoader Class] {78ABDC59-D8E7-44D3-9A76-9A0918C52B4A} [Java Plug-in 1.6.0_02] {8AD9C840-044E-11D1-B3E9-00805F499D93} [Java Plug-in 1.6.0_02] {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} [Java Plug-in 1.6.0_02] {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [ThunderAtOnce Class] {01443AEC-0FD1-40FD-9C87-E93D1494C233} [Adobe PDF Reader Link Helper] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [ULiveCtrl Control] {070CA17A-4BD2-4612-83B4-32B1B9159B48} [GerneralPeerID Class] {0A47E819-F82E-4D5D-B806-6A9EA94D68CD} [PeerDraw Class] {10072CEC-8CC1-11D1-986E-00A0C955B42E} <%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll, N/A> [VistaWUWebControl Class] {12A66224-5E8A-4679-8941-0B9B960BF5EA} <%SystemRoot%\system32\wuwebv.dll, N/A> [Windows Media Player] {22D6F312-B0F6-11D0-94AB-0080C74C7E95} [PhotoDraw Class] {2375BEE5-F175-4F1C-81EC-8E4E2E72E2DD} [HTML Document] {25336920-03F9-11CF-8FD0-00AA00686F13} [XML DOM Document] {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\System32\msxml3.dll, N/A> [RealPlayer RAM Download Handler] {2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93} [Tabular Data Control] {333C7BC4-460F-11D0-BC04-0080C7055A83} [IETag Factory] {38481807-CA0E-42D2-BF39-B33AF135CC4D} [XML Document] {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\System32\msxml3.dll, N/A> [Thunder Agent Class] {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} [VaCom.Application] {51E88884-1306-4444-B22D-C34119E44232} [Shell Name Space] {55136805-B2DE-11D1-B9F2-00A0C98BC547} [IEVkbdBHO Class] {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} [XMP Class] {6483F145-A768-4C41-AACC-52D4D7845851} [XDRM] {693571CB-54A3-4E90-9D52-EEAE1334E2D3} [StormPlayer Object] {6BE52E1D-E586-474F-A6E2-1A85A9B4D9FB} [Windows Media Player] {6BF52A52-394A-11D3-B153-00C04F79FAA6} <%SystemRoot%\system32\wmp.dll, N/A> [SSVHelper Class] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [MediaComm Class] {7670648D-461B-42AF-BDFE-46D26AF5EFF2} [DLoader Class] {78ABDC59-D8E7-44D3-9A76-9A0918C52B4A} [360SafeLive] {87515F61-A66C-4319-A0E0-D416CB8059E3} [z9981z] {884B6FB1-B27D-4719-B64F-0EF41D469FDE} [Microsoft Web Browser] {8856F961-340A-11D0-A96B-00C04FD705A2} [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [XML DOM Document 4.0] {88D969C0-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml4.dll, N/A> [Free Threaded XML DOM Document 4.0] {88D969C1-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml4.dll, N/A> [XSL Template 4.0] {88D969C3-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml4.dll, N/A> [XML HTTP 4.0] {88D969C5-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml4.dll, N/A> [XML DOM 文档 5.0] {88D969E5-F192-11D4-A65F-0040963251E5} [Free Threaded XML DOM Document 5.0] {88D969E6-F192-11D4-A65F-0040963251E5} [XSL Template 5.0] {88D969E8-F192-11D4-A65F-0040963251E5} [XML HTTP 5.0] {88D969EA-F192-11D4-A65F-0040963251E5} [XML DOM Document 6.0] {88D96A05-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml6.dll, N/A> [XML HTTP 6.0] {88D96A0A-F192-11D4-A65F-0040963251E5} <%SystemRoot%\System32\msxml6.dll, N/A> [RMGetLicense Class] {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} [DapCtrl Class] {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} [SafeMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [RDS.DataSpace] {BD96C556-65A3-11D0-983A-00C04FC29E36} <%CommonProgramFiles%\System\msadc\msadco.dll, N/A> [QQPlayerSvr Proxy Control] {CD108273-D434-43E6-AA90-1469F97EB398} [AUDIO__MID Moniker Class] {CD3AFA74-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, N/A> [AUDIO__MP3 Moniker Class] {CD3AFA76-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, N/A> [AUDIO__MPEGURL Moniker Class] {CD3AFA78-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, N/A> [AUDIO__X_MS_WMA Moniker Class] {CD3AFA84-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, N/A> [VIDEO__X_MS_ASF Moniker Class] {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, N/A> [RealPlayer G2 Control] {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [] {E1771B7F-98BE-407F-BA67-AA16ADA5D0C5} [FlashFXP Helper for Internet Explorer] {E5A1691B-D188-4419-AD02-90002030B8EE} [XML HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, N/A> [Thunder DapPlayer] {EEDD6FF9-13DE-496B-9A1C-D78B3215E266} [XPPlayer Class] {F3E70CEA-956E-49CC-B444-73AFE593AD7F} [XML DOM Document] {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, N/A> [XML HTTP] {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, N/A> ["添加到反广告"] [使用迅雷下载] [使用迅雷下载全部链接] [导出到 Microsoft Office Excel(&X)] [添加到QQ表情] ================================== 正在运行的进程 [PID: 548 / SYSTEM][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 616 / SYSTEM][C:\Windows\system32\csrss.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 668 / SYSTEM][C:\Windows\system32\wininit.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 676 / SYSTEM][C:\Windows\system32\csrss.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 712 / SYSTEM][C:\Windows\system32\services.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 728 / SYSTEM][C:\Windows\system32\lsass.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 736 / SYSTEM][C:\Windows\system32\lsm.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 844 / SYSTEM][C:\Windows\system32\winlogon.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 932 / SYSTEM][C:\Windows\system32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 992 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 1044 / SYSTEM][C:\Windows\System32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2596B7AD-475B-4143-A43E-FF04483B71E6}\mpengine.dll] [Microsoft Corporation, 1.1.3520.0] [PID: 1084 / LOCAL SERVICE][C:\Windows\System32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 1116 / SYSTEM][C:\Windows\System32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 1144 / SYSTEM][C:\Windows\system32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 1244 / NETWORK SERVICE][C:\Windows\system32\SLsvc.exe] [Microsoft Corporation, 6.0.6000.16509 (vista_gdr.070620-1500)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 1284 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL] [Microsoft Corporation, 11.0.5510] [PID: 1544 / SYSTEM][C:\Windows\System32\spoolsv.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Windows\System32\mdimon.dll] [Microsoft Corporation, 11.3.1897.0] [C:\Windows\system32\spool\PRTPROCS\W32X86\mdippr.dll] [Microsoft Corporation, 11.3.1897.0] [PID: 1572 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 1784 / SYSTEM][C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prremote.dll] [Kaspersky Lab, 8.0.0.454] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\fssync.dll] [Kaspersky Lab, 8.0.5.454] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\Ushata.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\CLLDR.DLL] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prloader.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prkernel.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\pxstub.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\params.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\winreg.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\mkavio.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\tempfile.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\tm.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\nfio.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\fsdrvplg.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\bl.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\wmihlpr.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\regmap.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\ndetect.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\crpthlpr.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\dtreg.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\sfdb.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\schedule.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\timer.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\thpimpl.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\lic.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\report.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\reportdb.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\hashmd5.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\avs.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\vmarea.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\avlib.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\avspm.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\qb.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\procmon.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\propmap.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\filemap.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\syswatch.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\netwatch.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\oas.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\adialtsk.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\hips.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\CKAHUM.dll] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\CKAHComm.dll] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\ckahrule.dll] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\CKAHStat.dll] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\antispam.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\aphisht.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\httpanlz.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\ahids.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\trafmon2.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\mc.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\avpgs.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\pdm2rt.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\sc.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\httpscan.ppl] [Kaspersky Lab, 8.0.0.454] [C:\ProgramData\Kaspersky Lab\AVP8\Bases\kavbase.kdl] [Kaspersky Lab, 1.5.0.2] [c:\program files\kaspersky lab\kaspersky internet security 2009\smtpprtc.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\pop3prtc.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\maildisp.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\imapprtc.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\nntpprtc.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\urlflt.ppl] [Kaspersky Lab, 8.0.0.454] [C:\ProgramData\Kaspersky Lab\AVP8\Bases\klavemu.kdl] [Kaspersky Lab, 1.47.12.10] [C:\ProgramData\Kaspersky Lab\AVP8\Bases\klnkd.kdl] [Kaspersky Lab, 1.0.0.11] [C:\ProgramData\Kaspersky Lab\AVP8\Bases\vlns.kdl] [Kaspersky Lab, 1.4.3.1] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avzkrnl.dll] [, 4.30.0.10] [c:\program files\kaspersky lab\kaspersky internet security 2009\ichk2.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\ichksa.ppl] [Kaspersky Lab, 8.0.0.454] [C:\ProgramData\Kaspersky Lab\AVP8\Bases\webav.kdl] [Kaspersky Lab, 1.4.3.1] [c:\program files\kaspersky lab\kaspersky internet security 2009\uniarc.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\minizip.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\cab.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\arj.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\rar.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\lha.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\mdb.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\msoe.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\mailmsg.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\dmap.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\ods.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\wdiskio.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\buffer.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\memscan.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\memmodsc.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\ntfsstrm.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\stenum2.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\inifile.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\btimages.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\prseqio.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\unstored.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\inflate.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\prutil.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\mdmap.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\btdisk.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\unlzx.ppl] [Kaspersky Lab, 8.0.0.454] [PID: 1828 / SYSTEM][C:\Program Files\StormII\stormliv.exe] [北京暴风网际科技有限公司, 3, 8, 6, 20] [C:\Program Files\StormII\MSVCP60.dll] [Microsoft Corporation, 6.02.3104.0] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\COMCTL32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL] [Microsoft Corporation, 11.0.5510] [PID: 1980 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 396 / NETWORK SERVICE][C:\Windows\system32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 1204 / SYSTEM][C:\Program Files\CyberLink\Shared Files\RichVideo.exe] [, 2.0.1120 ] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 1388 / LOCAL SERVICE][C:\Windows\system32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 2060 / SYSTEM][C:\Windows\System32\svchost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 2084 / SYSTEM][C:\Windows\system32\SearchIndexer.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 2132 / SYSTEM][C:\Windows\system32\DRIVERS\xaudio.exe] [Conexant Systems, Inc., 1.00.12.00] [PID: 2212 / SYSTEM][C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe] [Hewlett-Packard Development Company, L.P., 2, 0, 1, 9] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 2400 / gaoxuesong][C:\Windows\system32\Dwm.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Windows\system32\nvd3dum.dll] [NVIDIA Corporation, 7.15.11.5665] [PID: 2452 / gaoxuesong][C:\Windows\system32\taskeng.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Windows\system32\nvapi.dll] [NVIDIA Corporation, 7.15.11.5665] [PID: 2560 / SYSTEM][C:\Windows\system32\taskeng.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 3768 / SYSTEM][c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe] [Hewlett-Packard, 2.3.0.2] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7fe79782947b85d961fd55cb5e02a129\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System\fcc712bc5da45a672e7f1ad176dbd5a5\System.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\61b951bd03727a096c1c02cb18d5ce30\System.ServiceProcess.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\8fbca0140921ed343cb511595869a0ed\System.Runtime.Remoting.ni.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [C:\Windows\assembly\GAC_MSIL\HP.ActiveSupportLibrary\2.0.0.1__01a974bc1760f423\HP.ActiveSupportLibrary.dll] [Hewlett-Packard, 2.0.0.2] [C:\Windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_zh-CHS_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll] [Microsoft Corporation, 2.0.50727.312 (rtmLHS.050727-3100)] [PID: 3944 / gaoxuesong][C:\Windows\system32\taskeng.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 1240 / gaoxuesong][C:\Windows\System32\rundll32.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 3336 / gaoxuesong][C:\Program Files\Tencent\QQ\QQ.exe] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQHelperDll.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\BasicCtrlDll.dll] [TENCENT, 8,0,777,1805] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\COMCTL32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Program Files\Tencent\QQ\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0] [C:\Windows\system32\MFC42LOC.DLL] [Microsoft Corporation, 6.00.8168.0] [C:\Program Files\Tencent\QQ\RICHED32.DLL] [Microsoft Corporation, 5.00.2134.1] [C:\Program Files\Tencent\QQ\RICHED20.dll] [Microsoft Corporation, 5.31.23.1218] [C:\Program Files\Tencent\QQ\QQAPI.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\TXPFProxy.dll] [N/A, ] [C:\Program Files\Tencent\QQ\LoginCtrl.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\LoginCtrlRes.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQRes.dll] [TENCENT, 8,0,776,1805] [C:\Program Files\Tencent\QQ\QQMainFrame.dll] [N/A, ] [C:\Program Files\Tencent\QQ\gdiplus.dll] [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Tencent\QQ\UnReadMsgMgr.dll] [N/A, ] [C:\Program Files\Tencent\QQ\CQQApplication.dll] [N/A, ] [C:\Program Files\Tencent\QQ\QQPlugin.dll] [N/A, ] [C:\Program Files\Tencent\QQ\FlashAvatarDll.dll] [, 1, 4, 0, 1] [C:\Program Files\Tencent\QQ\NewSkin.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\MailSummary.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQSpace.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\vbscript.dll] [Microsoft Corporation, 5.6.0.7426] [C:\Program Files\Tencent\QQ\QQKnowledgeSearch.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\OEMApplication.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQGroupMng.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQAllInOne.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\SCCore.dll] [TENCENT, 1, 6, 0, 2] [C:\Program Files\Tencent\QQ\CameraDll.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQPet.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQSysMsgMng.dll] [N/A, ] [C:\Program Files\Tencent\QQ\UserDefinedHead.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQConfigPlugin.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQCustomFace.dll] [N/A, ] [C:\Program Files\Tencent\QQ\QRingMng.dll] [N/A, ] [C:\Program Files\Tencent\QQ\QQAvatar.dll] [N/A, ] [C:\Program Files\Tencent\QQ\LongConnection.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\PhoneAPI.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\DialerAllinOne.dll] [tencent, 1, 4, 0, 0] [C:\Program Files\Tencent\QQ\BQQApplication.dll] [N/A, ] [C:\Program Files\Tencent\QQ\CommercesMng.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\PersonalDesktop.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQAddr.dll] [深圳市腾讯计算机系统有限公司, 5, 0, 101, 330] [C:\Program Files\Tencent\QQ\QQSceneMng.dll] [N/A, ] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Tencent\QQ\AddrSearch.dll] [腾讯科技(深圳)有限公司, 2, 0, 1, 10] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\scrchpg.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\klscav.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prremote.dll] [Kaspersky Lab, 8.0.0.454] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prloader.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prkernel.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\params.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\pxstub.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\tempfile.ppl] [Kaspersky Lab, 8.0.0.454] [C:\Windows\system32\nvd3dum.dll] [NVIDIA Corporation, 7.15.11.5665] [C:\Program Files\Tencent\QQ\QQSettingCtrl.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\ImageOle.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQLiveQMng.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQMagicFace.dll] [TENCENT, 8,0,777,1805] [C:\Windows\system32\IMSC40A.IME] [Microsoft Corporation, 6.0.0.2527] [C:\PROGRA~1\COMMON~1\MICROS~1\IME\SHARED2.0\MSCAND20.DLL] [Microsoft Corporation, 9.0.5510.0] [C:\Windows\system32\SOGOUPY.IME] [Sogou.com Inc., 3.5.0.0] [D:\SogouInput\Plugin\SgImeWord.dll] [Sogou.com Inc., 3.5.0.0] [C:\Program Files\Tencent\QQ\GroupConnection.dll] [TENCENT, 8,0,777,1805] [C:\Program Files\Tencent\QQ\QQFileTransfer.dll] [TENCENT, 8,0,777,1805] [PID: 3004 / gaoxuesong][C:\Program Files\Tencent\QQ\TXPlatform.exe] [Tencent, 1, 0, 170, 0] [C:\Program Files\Tencent\QQ\TXPFProxy.dll] [N/A, ] [PID: 5276 / gaoxuesong][C:\Windows\system32\conime.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 6456 / gaoxuesong][C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prremote.dll] [Kaspersky Lab, 8.0.0.454] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\fssync.dll] [Kaspersky Lab, 8.0.5.454] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\Ushata.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\CLLDR.DLL] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prloader.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prkernel.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\pxstub.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\params.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\winreg.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\mkavio.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\tempfile.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\avpgui.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\nfio.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\fsdrvplg.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\basegui.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\thpimpl.ppl] [Kaspersky Lab, 8.0.0.454] [PID: 5416 / gaoxuesong][C:\Windows\explorer.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9ec96e7127\gdiplus.dll] [Microsoft Corporation, 5.2.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll] [Thunder Networking Technologies,LTD, 1.0.5.29] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 8.0.0.2006102200] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll] [Thunder Networking Technologies,LTD, 5, 0, 8, 96] [D:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_00.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 20] [D:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_01.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 16] [D:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [C:\Program Files\MSN Messenger\fsshext.8.1.0178.00.dll] [Microsoft Corporation, 8.1.0178.00] [C:\Program Files\Common Files\Ahead\Lib\MediaLibraryNSE.dll] [Nero AG, 1, 5, 13, 0] [C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Common Files\Ahead\Lib\MFC71U.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll] [Nero AG, 2, 7, 3, 0] [C:\Program Files\WinRAR\rarext.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ShellEx.dll] [Kaspersky Lab, 8.0.0.454] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Cyberlink\PowerDirector\PDM1Splter.ax] [CyberLink Corp., 2.3.1118 ] [C:\Program Files\Cyberlink\PowerDirector\PDM2Splter.ax] [CyberLink Corp., 2.3.1118 ] [C:\Program Files\CyberLink\Power2Go\P2Gm2spliter.ax] [CyberLink Corp., 2.4.2301 ] [C:\Program Files\CyberLink\Power2Go\P2Gm1spliter.ax] [CyberLink Corp., 2.4.2301 ] [C:\Program Files\muvee Technologies\muvee autoProducer 6.1 - SE\mvBurnerDll\mcspmpeg.ax] [MainConcept AG, 1.1.4178.0 2006/05/29] [C:\Program Files\muvee Technologies\muvee autoProducer 6.1 - SE\mvBurnerDll\mcmpegin.dll] [MainConcept AG, 1.2.4178.0 2006/06/19] [C:\Program Files\Common Files\Ahead\DSFilter\NeVideo.ax] [Nero AG, 5, 2, 12, 1] [C:\Program Files\Common Files\Ahead\Lib\AdvrCntr3.dll] [Nero AG, 2,4,1, 312] [C:\Program Files\muvee Technologies\muvee autoProducer 6.1 - SE\mvBurnerDll\mcdsmpeg.ax] [MainConcept AG, 1.1.4178.0 2006/05/19] [C:\Program Files\muvee Technologies\muvee autoProducer 6.1 - SE\mvBurnerDll\mcmpgdec.dll] [MainConcept AG, 2.0.4178.0 2006/06/07] [C:\Program Files\Common Files\Ahead\DSFilter\NeMP4Splitter.ax] [Nero AG, 5, 2, 12, 1] [d:\Program Files\Thunder Network\Thunder\Components\DownAndPlay\RealMediaSplitter.ax] [Gabest, 1, 0, 1, 0] [C:\Program Files\HP\QuickPlay\Kernel\DMP\CLWMFDemux.ax] [CyberLink, 1, 0, 0, 1302] [C:\Program Files\Common Files\Ahead\DSFilter\NeSplitter.ax] [Nero AG, 5, 2, 12, 1] [C:\Program Files\Common Files\muvee Technologies\MainConcept2\muveedsmpeg.ax] [MainConcept AG, 1, 0, 0, 77] [C:\Program Files\Common Files\muvee Technologies\MainConcept2\muveempgdec.dll] [MainConcept AG, official release build] [C:\Program Files\Common Files\muvee Technologies\MainConcept2\muveespmpeg.ax] [MainConcept AG, 1, 0, 1, 12] [C:\Program Files\Common Files\muvee Technologies\MainConcept2\muveempegin.dll] [MainConcept AG, official release build] [C:\Program Files\Common Files\Ahead\DSFilter\NeSubpicture.ax] [Nero AG, 4,5,17,1] [C:\Program Files\Common Files\Ahead\DSFilter\NeResize.ax] [Nero AG, 4,5,17,] [C:\Program Files\Common Files\Ahead\DSFilter\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Common Files\Ahead\DSFilter\NeOggSplitter.ax] [Nero AG, 4,5,17,1] [C:\Windows\system32\nvcpl.dll] [NVIDIA Corporation, 7.15.11.5665] [PID: 4764 / gaoxuesong][C:\Program Files\Internet Explorer\ieuser.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 272 / gaoxuesong][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 7.00.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9ec96e7127\gdiplus.dll] [Microsoft Corporation, 5.2.6000.16386 (vista_rtm.061101-2205)] [D:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll] [Thunder Networking Technologies,LTD, 1.0.5.29] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 8.0.0.2006102200] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll] [Sun Microsystems, Inc., 6.0.20.6] [C:\Program Files\Java\jre1.6.0_02\bin\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll] [Thunder Networking Technologies,LTD, 5, 0, 8, 96] [D:\Program Files\360safe\safemon\safemon.dll] [360.CN, 4, 2, 0, 1005] [d:\PROGRA~1\FlashFXP\IEFlash.dll] [IniCom Networks, Inc., 3.0.0.1015] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\scrchpg.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\klscav.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prremote.dll] [Kaspersky Lab, 8.0.0.454] [C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prloader.dll] [Kaspersky Lab, 8.0.0.454] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\prkernel.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\params.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\pxstub.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\tempfile.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\nfio.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\fsdrvplg.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\fssync.dll] [Kaspersky Lab, 8.0.5.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\basegui.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\thpimpl.ppl] [Kaspersky Lab, 8.0.0.454] [c:\program files\kaspersky lab\kaspersky internet security 2009\winreg.ppl] [Kaspersky Lab, 8.0.0.454] [C:\Windows\system32\nvd3dum.dll] [NVIDIA Corporation, 7.15.11.5665] [C:\Windows\system32\Macromed\Flash\Flash9f.ocx] [Adobe Systems, Inc., 9,0,124,0] [C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL] [Microsoft Corporation, 11.0.5510] [C:\Windows\system32\Macromed\Common\SwSupport.dll] [Adobe Systems, Inc., 10.2r23] [PID: 10156 / gaoxuesong][C:\Program Files\H3C\H3C 802.1X 客户端\Dot1XClient.exe] [N/A, ] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [C:\Program Files\H3C\H3C 802.1X 客户端\W32N55.dll] [Printing Communications Assoc., Inc. (PCAUSA), 5.5.18.05] [C:\Program Files\H3C\H3C 802.1X 客户端\h3c_utility.dll] [N/A, ] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 9260 / gaoxuesong][C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe] [Adobe Systems, Inc., 9,0,124,0] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 8584 / gaoxuesong][C:\WINDOWS\System32\rundll32.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 5500 / SYSTEM][\\?\C:\Windows\system32\wbem\WMIADAP.EXE] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 9004 / SYSTEM][C:\Windows\system32\wbem\wmiprvse.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [PID: 4884 / LOCAL SERVICE][C:\Windows\system32\WUDFHost.exe] [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [PID: 8556 / gaoxuesong][E:\新建文件夹\sreng2\abc.EXE] [Smallfrogs Studio, 2.5.16.900] [C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\COMCTL32.dll] [Microsoft Corporation, 6.10 (vista_rtm.061101-2205)] [E:\新建文件夹\sreng2\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15] ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["%SystemRoot%\hh.exe" %1] .HLP OK. [%SystemRoot%\winhlp32.exe %1] .INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .VBS OK. ["%SystemRoot%\System32\WScript.exe" "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ::1 localhost ================================== 进程特权扫描 N/A ================================== API HOOK N/A ================================== 隐藏进程 N/A ================================== [/CODE]