[CODE]

2008-08-15,22:54:19

SysLog Scanner 1.0 - build 20080726
Arswp (http://www.arswp.com)

Windows XP Professional Service Pack 2 (build 2600) - Administrators



========================================
注册项

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <PhotoViewer><"C:\Program Files\Poco\PhotoViewer\update.exe" -p PhotoViewer>  [(Verified)广州数联软件技术有限公司, 1, 0, 0, 1, C:2008-01-24 18:10 M:2008-01-24 18:10]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)NVIDIA Corporation, 6.14.10.8198, C:2006-11-22 20:02 M:2005-12-10 03:06]
    <stup.exe><Rundll32.exe C:\PROGRA~1\TENCENT\SSPlus\SPlus.dll,Rundll32 R>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)TENCENT, 5, 0, 4, 11, C:2008-08-05 21:53 M:2008-07-09 10:33]
    <runeip><"C:\Program Files\Rising\AntiSpyware\rstray.exe" /startup>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.15, C:2008-08-15 11:09 M:2008-08-15 11:08]
    <IMJPMIG8.1><; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32>  []
    <PHIME2002A><; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  []
    <PHIME2002ASync><; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32>  []
    <RfwMain><"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup>  []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
    <KKDelay><C:\Program Files\Rising\AntiSpyware\RunOnce.exe>  [(Verified)Beijing Rising Information Technology Co., Ltd., 19, 0, 0, 3, C:2008-08-15 09:40 M:2008-08-15 11:08]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <Shell><Explorer.exe>  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><kmon.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDLLs]
    <ole32><ole32.dll>  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    <shell32><shell32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用网际快车下载]
    <><C:\Program Files\FlashGet\jc_link.htm>  [N/A, C:2008-03-25 17:51 M:2000-02-06 11:06]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用网际快车下载全部链接]
    <><C:\Program Files\FlashGet\jc_all.htm>  [N/A, C:2008-03-25 17:51 M:2000-02-06 11:06]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\导出到 Microsoft Office Excel(&X)]
    <><res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到QQ表情]
    <><E:\QQ2006\AddEmotion.htm>  []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2007-12-04 15:18 M:2004-08-17 12:00|(Verified)N/A, C:2004-08-17 12:00 M:2004-08-17 12:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2007-12-04 15:18 M:2004-08-17 12:00|(Verified)N/A, C:2006-11-02 23:38 M:2006-11-02 23:38]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2007-12-04 15:18 M:2004-08-17 12:00|Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{E5D12C4E-7B4F-11D3-B5C9-0050045C3C96}]
    <情景聊天><http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yahoomsg>  []


========================================
启动项



========================================
计划任务



========================================
组件


ShellServiceObjectDelayLoad
[PostBootReminder 对象]
    {7849596a-48ea-486e-8937-a2a3009f31a9}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
[烧 CD 的 ShellFolder]
    {fbeb8a05-beee-4442-804e-409d6c4515e9}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]

ShellExecuteHook
[URL 执行挂钩]
    {AEB6717E-7E19-11d0-97EE-00C04FD91972}  <shell32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]

Shell Extension
[Shell Extensions for RealOne Player]
    {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4}  <C:\Program Files\Real\RealPlayer\rpshell.dll>  [(Verified)RealNetworks, Inc., 1.0.2.44, C:2006-11-22 23:17 M:2008-08-15 11:40]

Protocols
[WebView MIME Filter]
    {733AC4CB-F1A4-11d0-B951-00A0C90312E1}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]

BrowserHelperObject
[Tencent Browser Helper]
    {0C7C23EF-A848-485B-873C-0ED954731014}  <C:\Program Files\TENCENT\SSPlus\SAddr.dll>  [(Verified)Tencent, 5, 0, 7, 12, C:2008-08-05 21:53 M:2008-07-15 11:06]
[RealPlayer Download and Record Plugin for Internet Explorer]
    {3049C3E9-B461-4BC5-8870-4C09146192CA}  <C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll>  [(Verified)RealPlayer, 1.0.1.57, C:2008-08-15 11:41 M:2008-08-15 11:41]
[Kingsoft Trojan Webshield]
    {4E8A5278-C04E-4FE3-BF78-8A7CCD6EF333}  <C:\Program Files\baidu\SafeCenter\iebuddy.dll>  [(Verified)Kingsoft Corporation, 2008,05,15,156, C:2008-07-13 00:34 M:2008-08-15 08:50]
[]
    {669751ED-D558-49AE-B01A-3B374CC7910E}  <C:\WINDOWS\system32\SSup.dll>  [(Verified)TENCENT, 5, 0, 4, 12, C:2008-08-05 21:53 M:2008-08-04 14:30]
[BandIE Class]
    {77FEF28E-EB96-44FF-B511-3185DEA48697}  <C:\PROGRA~1\baidu\bar\baidubar.dll>  [Baidu.com, Inc., 2, 0, 2, 175, C:2008-04-24 18:37 M:2008-01-11 11:45]
[卡卡上网安全助手]
    {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}  <C:\WINDOWS\system32\urlFilter.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-08-15 11:09 M:2008-08-15 11:08]

UrlSeachHook
[Tencent SearchHook]
    {DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9}  <C:\Program Files\TENCENT\SSPlus\SAddr.dll>  [(Verified)Tencent, 5, 0, 7, 12, C:2008-08-05 21:53 M:2008-07-15 11:06]

ToolBar
[QQToolbar]
    {29CF293A-1E7D-4069-9E11-E39698D0AF95}  <C:\Program Files\Tencent\QQToolbar\IEBar.dll>  [(Verified)TENCENT, 2, 0, 24, 12, C:2007-12-12 16:34 M:2008-05-08 15:34]
[&Google]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F}  <c:\program files\google\googletoolbar1.dll>  [(Verified)Google Inc., 4, 0, 1306, 3130, C:2008-03-21 16:34 M:2008-03-21 16:34]
[FlashGet Bar]
    {E0E899AB-F487-11D5-8D29-0050BA6940E3}  <C:\PROGRA~1\FLASHGET\fgiebar.dll>  [Amaze Soft, 1, 2, 0, 0, C:2008-03-25 17:51 M:2002-05-27 03:17]
[百度工具栏]
    {B580CF65-E151-49C3-B73F-70B13FCA8E86}  <C:\PROGRA~1\baidu\bar\baidubar.dll>  [Baidu.com, Inc., 2, 0, 2, 175, C:2008-04-24 18:37 M:2008-01-11 11:45]
[DAEMON Tools Toolbar]
    {32099AAC-C132-4136-9E9A-4E364A424E17}  <C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll>  [(Verified)Copyright 2001, 1, 0, 0, 1, C:2008-07-08 23:59 M:2008-07-08 23:59]

ActiveX Extension
[AcroIEHlprObj Class]
    {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}  <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll>  [(Verified)Adobe Systems Incorporated, 7.0.0.2004121400, C:2004-12-14 01:56 M:2004-12-14 01:56]
[Tencent Browser Helper]
    {0C7C23EF-A848-485B-873C-0ED954731014}  <C:\Program Files\TENCENT\SSPlus\SAddr.dll>  [(Verified)Tencent, 5, 0, 7, 12, C:2008-08-05 21:53 M:2008-07-15 11:06]
[iTrusPTA Class]
    {1E0DFFCF-27FF-4574-849B-55007349FEDA}  <C:\WINDOWS\system32\aliedit\pta.dll>  [(Verified)Copyright 2001, 2, 5, 1, 509, C:2007-04-19 18:43 M:2008-04-29 10:36]
[&Google]
    {2318C2B1-4965-11D4-9B18-009027A5CD4F}  <c:\program files\google\googletoolbar1.dll>  [(Verified)Google Inc., 4, 0, 1306, 3130, C:2008-03-21 16:34 M:2008-03-21 16:34]
[QQToolbar]
    {29CF293A-1E7D-4069-9E11-E39698D0AF95}  <C:\Program Files\Tencent\QQToolbar\IEBar.dll>  [(Verified)TENCENT, 2, 0, 24, 12, C:2007-12-12 16:34 M:2008-05-08 15:34]
[RealPlayer Download and Record Plugin for Internet Explorer]
    {3049C3E9-B461-4BC5-8870-4C09146192CA}  <C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll>  [(Verified)RealPlayer, 1.0.1.57, C:2008-08-15 11:41 M:2008-08-15 11:41]
[DAEMON Tools Toolbar]
    {32099AAC-C132-4136-9E9A-4E364A424E17}  <C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll>  [(Verified)Copyright 2001, 1, 0, 0, 1, C:2008-07-08 23:59 M:2008-07-08 23:59]
[IEBuddyExtControl Class]
    {3AECD3C1-7085-4731-96DC-47B6CF7EF749}  <C:\Program Files\baidu\SafeCenter\iebuddyext.dll>  [(Verified)Kingsoft Corporation, 2007,09,29,200, C:2008-07-13 00:34 M:2008-08-15 08:50]
[EditCtrl Class]
    {488A4255-3236-44B3-8F27-FA1AECAA8844}  <C:\WINDOWS\system32\aliedit\aliedit.dll>  [(Verified)Copyright 2007, 2, 1, 2, 1, C:2007-04-19 18:46 M:2008-05-20 10:51]
[KLeakScan Class]
    {4BB7444F-E4DA-4E02-AAAD-505A0E9855D4}  <C:\Program Files\KOS\KosClean.dll>  [(Verified)Kingsoft Corporation, 2008,06,11,152, C:2008-08-15 09:01 M:2008-08-15 09:01]
[Kingsoft Trojan Webshield]
    {4E8A5278-C04E-4FE3-BF78-8A7CCD6EF333}  <C:\Program Files\baidu\SafeCenter\iebuddy.dll>  [(Verified)Kingsoft Corporation, 2008,05,15,156, C:2008-07-13 00:34 M:2008-08-15 08:50]
[XMP Class]
    {6483F145-A768-4C41-AACC-52D4D7845851}  <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work>  [Copyright XunLei 2007, 2, 1, 0, 64, C:2008-03-21 16:34 M:2008-05-15 16:22]
[]
    {669751ED-D558-49AE-B01A-3B374CC7910E}  <C:\WINDOWS\system32\SSup.dll>  [(Verified)TENCENT, 5, 0, 4, 12, C:2008-08-05 21:53 M:2008-08-04 14:30]
[XDRM]
    {693571CB-54A3-4E90-9D52-EEAE1334E2D3}  <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work>  [Copyright XunLei 2007, 1, 0, 0, 7, C:2008-03-21 16:34 M:2008-05-12 10:15]
[Active Desktop Mover]
    {72267F6A-A6F9-11D0-BC94-00C04FB67863}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
[AxInputControl Class]
    {73E4740C-08EB-4133-896B-8D0A7C9EE3CD}  <C:\WINDOWS\DOWNLO~1\INPUTC~1.DLL>  [Copyright 2003, 1, 0, 0, 12, C:2005-07-25 15:51 M:2005-07-25 15:51]
[Vagaa_CHK Control]
    {75124323-C599-4253-8CE1-86389192EDC1}  <F:\Media\Vagaa\exts\VAGAA_~1.OCX>  []
[BandIE Class]
    {77FEF28E-EB96-44FF-B511-3185DEA48697}  <C:\PROGRA~1\baidu\bar\baidubar.dll>  [Baidu.com, Inc., 2, 0, 2, 175, C:2008-04-24 18:37 M:2008-01-11 11:45]
[UiManagerCtrl Class]
    {8E620797-825C-4F1C-8876-72E414FC639D}  <C:\Program Files\UitvDll\UiManager.dll>  [(Verified)UiTV Corporation, 3, 0, 6, 2, C:2008-06-13 11:28 M:2008-08-12 16:25]
[卡卡上网安全助手]
    {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}  <C:\WINDOWS\system32\urlFilter.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-08-15 11:09 M:2008-08-15 11:08]
[百度工具栏]
    {B580CF65-E151-49C3-B73F-70B13FCA8E86}  <C:\PROGRA~1\baidu\bar\baidubar.dll>  [Baidu.com, Inc., 2, 0, 2, 175, C:2008-04-24 18:37 M:2008-01-11 11:45]
[ScreenCapture Class]
    {BFB79EE1-04AE-4D4A-B85E-27EE5F30C095}  <C:\WINDOWS\system32\TXGYMailActiveX.dll>  [(Verified)Tencent Inc., 1, 0, 1, 28, C:2007-12-27 10:56 M:2007-12-27 10:56]
[KScanSpyWare Class]
    {C847FDE7-B612-47ED-B32C-4000C9DD26B6}  <C:\Program Files\KOS\KosClean.dll>  [(Verified)Kingsoft Corporation, 2008,06,11,152, C:2008-08-15 09:01 M:2008-08-15 09:01]
[CUiCheckCtrl Object]
    {CC2FF467-0BD8-408A-B591-07F8790C7321}  <C:\Program Files\UitvDll\UiCheck.dll>  [(Verified)UiTV Corporation, 1.0.0.6, C:2008-06-13 11:28 M:2008-06-20 10:06]
[RealPlayer G2 Control]
    {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA}  <C:\WINDOWS\system32\rmoc3260.dll>  [(Verified)RealNetworks, Inc., 6.0.10.53, C:2006-11-22 23:17 M:2008-08-15 11:40]
[Shockwave Flash Object]
    {D27CDB6E-AE6D-11CF-96B8-444553540000}  <C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx>  [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32]
[SafeCenterEyeOnIE Class]
    {D2DA0BDA-D20F-4B0B-98D4-8BEAAE175E6D}  <C:\Program Files\baidu\SafeCenter\safecenterstatus.dll>  [(Verified)Kingsoft Corporation, 2008,07,02,143, C:2008-06-09 11:30 M:2008-07-12 22:36]
[KUpdateObj2 Class]
    {D82303B7-A754-4DCB-8AFC-8CF99435AACE}  <C:\WINDOWS\system32\KingSoft\KOS\UpdateOcx2.dll>  [(Verified)Kingsoft Corporation, 2008,05,04,77, C:2008-05-04 14:53 M:2008-05-04 14:53]
[FlashGet Bar]
    {E0E899AB-F487-11D5-8D29-0050BA6940E3}  <C:\PROGRA~1\FLASHGET\fgiebar.dll>  [Amaze Soft, 1, 2, 0, 0, C:2008-03-25 17:51 M:2002-05-27 03:17]
[KVirusScan Class]
    {E176B817-4905-4CDF-8C9C-0AF3EA3B4AC7}  <C:\Program Files\KOS\KosClean.dll>  [(Verified)Kingsoft Corporation, 2008,06,11,152, C:2008-08-15 09:01 M:2008-08-15 09:01]
[KAccountManager Class]
    {E176B817-4905-4CDF-8C9C-0AF3EA3B4AC9}  <C:\Program Files\KOS\KosClean.dll>  [(Verified)Kingsoft Corporation, 2008,06,11,152, C:2008-08-15 09:01 M:2008-08-15 09:01]
[BaiduMercurySvr Class]
    {E55624A3-B56C-41D7-9962-96E45467B276}  <%ProgramFiles%\baidu\SafeCenter\bacctl.dll>  []
[PasswordEditCtrl Class]
    {E787FD25-8D7C-4693-AE67-9406BC6E22DF}  <C:\WINDOWS\system32\qqedit\qqedit.dll>  [(Verified)腾讯科技（深圳）有限公司, 1, 1, 0, 5, C:2008-01-07 17:08 M:2008-01-07 17:08]
[Thunder DapCtrl]
    {EF1EA76E-5428-4e40-85A1-D4DD2893183A}  <D:\QQ\375802738\DownAndPlay\DapCtrl1.3.17.20.847.dll>  [ShenZhen Thunder Networking Technologies Ltd., 1.3.17.20, C:2008-03-21 16:34 M:2008-01-02 10:10]
[QvodCtrl Class]
    {F3D0D36F-23F8-4682-A195-74C92B03D4AF}  <D:\dianyin\psp\QvodInsert.dll>  [Shenzhen QVOD Technology Co.,Ltd, 2, 5, 0, 53, C:2007-12-27 16:43 M:2008-01-14 17:53]
[IERPCtl Class]
    {FDC7A535-4070-4B92-A0EA-D9994BCC0DC5}  <C:\Program Files\Real\RealPlayer\rpplugins\ierpplug.dll>  [(Verified)RealNetworks, Inc., 1.0.2.45, C:2008-08-15 11:40 M:2008-08-15 11:40]

Context Menu
[Open With]
    {09799AFB-AD67-11d1-ABCD-00C04FC30936}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
[Open With EncryptionMenu]
    {A470F8CF-A1E8-4f65-8335-227475AA5C46}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
[WinRAR]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2006-11-22 23:05 M:2006-09-14 12:21]
[Send To]
    {7BA4C740-9E81-11CF-99D3-00AA004AE837}  <%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]


========================================
服务

[Human Interface Device Access / HidServ][Stopped/Disabled]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\hidserv.dll">  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
[Qvod Terminal / Qvod Terminal][Running/Auto Start]
    <D:\dianyin\psp\QvodTerminal.exe>  [Shenzhen QVOD Technology Co.,Ltd, 2, 5, 0, 53, C:2008-01-14 17:52 M:2008-01-14 17:52]
[Rising Proxy  Service / RfwProxySrv][Stopped/Auto Start]
    <C:\Program Files\Rising\Rfw\rfwProxy.exe>  []

[Kingsoft Uplive Service / kaccore][Running/Auto Start]
    <"C:\Program Files\Kingsoft\KAC\Service\kaccore.exe">  [(Verified)Kingsoft Corporation, 2008,08,15,204, C:2008-07-13 00:34 M:2008-08-15 20:22]
[Network Location Awareness (NLA) / Nla][Running/Manual Start]
    <%SystemRoot%\system32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\mswsock.dll">  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
    <%SystemRoot%\system32\nvsvc32.exe>  [(Verified)NVIDIA Corporation, 6.14.10.8198, C:2006-11-22 20:02 M:2005-12-10 03:06]
[Rising Personal Firewall Service / RfwService][Stopped/Auto Start]
    <C:\Program Files\Rising\Rfw\rfwsrv.exe>  [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.76, C:2008-08-15 22:48 M:2008-08-15 15:03]
[Windows Network Media Service / UiPlayer][Running/Auto Start]
    <C:\Program Files\UitvDll\msrv.exe>  [(Verified)UiTV Corporation, 1, 0, 1, 4, C:2008-06-13 11:28 M:2008-07-01 11:56]


========================================
驱动

[ADProt / ADProt][Running/System Start]
    <\SystemRoot\system32\drivers\ADProt.sys>  [腾讯科技（深圳）有限公司, 5, 0, 1, 19, C:2008-08-06 08:08 M:2008-08-13 18:27]
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
    <system32\drivers\ALCXWDM.SYS>  [Realtek Semiconductor Corp., 5.10.00.6090 built by: WinDDK, C:2007-12-04 15:21 M:2006-05-19 15:44]
[AMD K8 Processor Driver / AmdK8][Stopped/Manual Start]
    <System32\DRIVERS\amdk8.sys>  [Advanced Micro Devices, 1.1.0 (srv03_sp1_rtm.050324-1447), C:2005-08-12 09:09 M:2005-05-21 20:43]
[CnsStd / CnsStd][Stopped/Auto Start]
    <\SystemRoot\System32\drivers\CnsStd.sys>  []
[Logical Disk Manager Driver / dmio][Running/Boot Start]
    <System32\drivers\dmio.sys>  [Microsoft Corp., Veritas Software, 2600.2180.503.0, C:2004-08-17 12:00 M:2004-08-17 12:00]
[HookUrl / HookUrl][Stopped/Auto Start]
    <\??\C:\Program Files\Rising\Rfw\HookUrl.sys>  []
[kpfdljsi / kpfdljsi][Running/Boot Start]
    <System32\DRIVERS\kpfdljsi.sys>  [Yahoo! China Corporation, 1.8.0.1096, C:2007-12-09 19:43 M:2007-12-09 19:43]
[mProcRs / mProcRs][Stopped/Auto Start]
    <\??\c:\program files\rising\rfw\mProcRs.sys>  []
[MRXSMB / MRxSmb][Stopped/System Start]
    <system32\DRIVERS\mrxsmb.sys>  [Microsoft Corporation, 5.1.2600.2902 (xpsp_sp2_gdr.060505-0036), C:2004-08-17 12:00 M:2006-05-05 17:41]
[npkcrypt / npkcrypt][Running/Auto Start]
    <\??\D:\qq1\npkcrypt.sys>  [INCA Internet Co., Ltd., 2005. 11. 1. 1, C:2006-04-25 17:03 M:2006-04-25 17:03]
[Efficient Networks Enternet P.P.P.o.E LAN  Miniport Driver / NTSPPPOE][Running/Manual Start]
    <system32\DRIVERS\ntspppoe.sys>  [Microsoft Corporation, 5.00.1636.1, C:2007-12-04 16:28 M:2000-11-27 10:56]
[RsFwDrv / RsFwDrv][Stopped/System Start]
    <\??\C:\Program Files\Rising\Rfw\RsFwDrv.sys>  []
[sptd / sptd][Running/Boot Start]
    <System32\Drivers\sptd.sys>  [N/A, C:2008-07-07 21:41 M:2008-07-07 21:41]
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
    <system32\DRIVERS\tcpip.sys>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-20 18:45]

[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc][Stopped/Manual Start]
    <system32\drivers\ac97intc.sys>  [(Verified)Intel Corporation, 5.10.3523 built by: WinDDK, C:2006-11-07 01:20 M:2001-08-17 12:20]
[AliIde / AliIde][Stopped/Boot Start]
    <System32\DRIVERS\aliide.sys>  [(Verified)Acer Laboratories Inc., 1.20, C:2005-06-29 18:14 M:2005-06-16 08:58]
[CmdIde / CmdIde][Stopped/Boot Start]
    <System32\DRIVERS\cmdide.sys>  [(Verified)CMD Technology, Inc., 2.0.7 (XPClient.010817-1148), C:2004-04-12 20:37 M:2001-08-31 15:29]
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS][Stopped/Manual Start]
    <system32\DRIVERS\fetnd5.sys>  [(Verified)VIA Technologies, Inc.              , 2.66, C:2006-11-07 01:20 M:2001-08-17 12:13]
[KAVBootC / KAVBootC][Running/Boot Start]
    <system32\Drivers\KAVBootC.sys>  [(Verified)Kingsoft Corporation, 2008,04,28,85, C:2008-08-15 08:51 M:2008-07-12 22:38]
[nv / nv][Running/Manual Start]
    <system32\DRIVERS\nv4_mini.sys>  [(Verified)NVIDIA Corporation, 6.14.10.8198, C:2006-11-07 01:20 M:2005-12-10 03:06]
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
    <system32\DRIVERS\ptilink.sys>  [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2004-08-17 12:00 M:2004-08-17 12:00]
[Rising  Rfwbase Driver / RfwBase][Running/Auto Start]
    <System32\DRIVERS\rfwbase.SYS>  [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.10, C:2008-08-15 22:48 M:2008-08-15 15:03]
[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]
    <system32\DRIVERS\Rtnicxp.sys>  [(Verified)Realtek Semiconductor Corporation                           , 5,639,0118,2006 built by: WinDDK, C:2006-11-22 20:03 M:2006-01-18 18:41]
[Secdrv / Secdrv][Stopped/Manual Start]
    <system32\DRIVERS\secdrv.sys>  [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2004-08-17 12:00 M:2007-11-13 18:25]


========================================
进程

[PID: 516 / SYSTEM]   \SystemRoot\System32\smss.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 584 / SYSTEM]   \??\C:\WINDOWS\system32\csrss.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 608 / SYSTEM]   \??\C:\WINDOWS\system32\winlogon.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 652 / SYSTEM]   C:\WINDOWS\system32\services.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 664 / SYSTEM]   C:\WINDOWS\system32\lsass.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]

[PID: 816 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 860 / NETWORK SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]

[PID: 948 / SYSTEM]   C:\WINDOWS\System32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\System32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]

[PID: 1040 / NETWORK SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]

[PID: 1104 / LOCAL SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]

[PID: 1356 / SYSTEM]   C:\WINDOWS\system32\spoolsv.exe   [(Verified)Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519), C:2004-08-17 12:00 M:2005-06-11 07:53]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
    C:\WINDOWS\system32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 1596 / Administrator]   C:\WINDOWS\Explorer.EXE   [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\WINDOWS\system32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\PROGRA~1\TENCENT\SSPlus\SPlus.dll  [(Verified)TENCENT, 5, 0, 4, 11, C:2008-08-05 21:53 M:2008-07-09 10:33]
    C:\Program Files\WinRAR\rarext.dll  [N/A, C:2006-11-22 23:05 M:2006-09-14 12:21]
    C:\WINDOWS\system32\browselc.dll  [Microsoft Corporation, 6.00.2600.0000, C:1980-01-01 00:00 M:2001-09-29 14:39]
    C:\WINDOWS\system32\dsquery.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll  [Adobe Systems, Inc., 7.0.0.0, C:2004-12-14 02:20 M:2004-12-14 02:20]

[PID: 1684 / SYSTEM]   C:\Program Files\Kingsoft\KAC\Service\kaccore.exe   [(Verified)Kingsoft Corporation, 2008,08,15,204, C:2008-07-13 00:34 M:2008-08-15 20:22]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\Program Files\Kingsoft\KAC\Service\errorreport.dll  [(Verified)Kingsoft Corporation, 2008,07,23,168, C:2008-08-15 08:50 M:2008-08-15 08:49]
    C:\Program Files\Kingsoft\KAC\Service\dbghelp.dll  [Microsoft Corporation, 6.5.0003.7 (vbl_core_fbrel(jshay).050527-1915), C:2008-08-15 08:50 M:2008-08-15 08:50]
    C:\Program Files\Kingsoft\KAC\Service\corehelper.dll  [(Verified)Kingsoft Corporation, 2008,08,15,204, C:2008-07-13 00:34 M:2008-08-15 20:23]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
    C:\WINDOWS\system32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 1728 / SYSTEM]   C:\WINDOWS\system32\nvsvc32.exe   [(Verified)NVIDIA Corporation, 6.14.10.8198, C:2006-11-22 20:02 M:2005-12-10 03:06]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]

[PID: 1756 / SYSTEM]   D:\dianyin\psp\QvodTerminal.exe   [Shenzhen QVOD Technology Co.,Ltd, 2, 5, 0, 53, C:2008-01-14 17:52 M:2008-01-14 17:52]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]

[PID: 1876 / SYSTEM]   C:\Program Files\UitvDll\msrv.exe   [(Verified)UiTV Corporation, 1, 0, 1, 4, C:2008-06-13 11:28 M:2008-07-01 11:56]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\Program Files\UitvDll\UiPlay.dll  [(Verified)UiTV Corporation, 3.0.5.3, C:2008-06-13 11:28 M:2008-08-12 16:25]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]

[PID: 912 / LOCAL SERVICE]   C:\WINDOWS\System32\alg.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2007-12-04 15:19 M:2004-08-17 12:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\System32\MSWSOCK.DLL  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\System32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\WINDOWS\System32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 1208 / Administrator]   C:\PROGRA~1\Rising\Rfw\rfwsrv.exe   [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.76, C:2008-08-15 22:48 M:2008-08-15 15:03]
    C:\WINDOWS\system32\MFC71.DLL  [Microsoft Corporation, 7.10.3077.0, C:2007-12-04 18:08 M:2007-12-04 18:06]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:2004-04-05 10:31 M:2004-04-05 10:31]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:2004-04-05 10:31 M:2008-08-15 11:40]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\Program Files\Rising\Rfw\ProcCom.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-08-15 22:48 M:2008-08-15 15:03]
    C:\PROGRA~1\Rising\Rfw\RsCommX2.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-08-15 22:48 M:2008-08-15 15:03]

[PID: 1432 / Administrator]   C:\WINDOWS\system32\Rundll32.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\PROGRA~1\TENCENT\SSPlus\SPlus.dll  [(Verified)TENCENT, 5, 0, 4, 11, C:2008-08-05 21:53 M:2008-07-09 10:33]

[PID: 1460 / Administrator]   C:\Program Files\Rising\AntiSpyware\rstray.exe   [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.15, C:2008-08-15 11:09 M:2008-08-15 11:08]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\Program Files\Rising\AntiSpyware\rsmginfo.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 8, C:2008-08-15 11:09 M:2008-08-15 11:09]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\PROGRA~1\TENCENT\SSPlus\SPlus.dll  [(Verified)TENCENT, 5, 0, 4, 11, C:2008-08-05 21:53 M:2008-07-09 10:33]
    C:\Program Files\Rising\AntiSpyware\RsXML.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2008-08-15 09:40 M:2008-08-15 11:14]
    C:\Program Files\Rising\AntiSpyware\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:2008-08-15 09:40 M:2008-08-15 11:07]
    C:\Program Files\Rising\AntiSpyware\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:2008-08-15 09:40 M:2008-08-15 11:07]
    C:\Program Files\Rising\AntiSpyware\ComServ.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.31, C:2008-08-15 11:09 M:2008-08-15 11:06]
    C:\Program Files\Rising\AntiSpyware\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-08-15 11:09 M:2008-08-15 11:08]
    C:\Program Files\Rising\AntiSpyware\rscommon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.1.1, C:2008-08-15 11:09 M:2008-08-15 11:08]
    C:\Program Files\Rising\AntiSpyware\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.24, C:2008-08-15 11:09 M:2008-08-15 11:06]
    C:\Program Files\Rising\AntiSpyware\pngdll.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-08-15 11:09 M:2008-08-15 11:07]
    C:\Program Files\Rising\AntiSpyware\runiep.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.32, C:2008-08-15 11:09 M:2008-08-15 11:08]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]

[PID: 1480 / Administrator]   C:\WINDOWS\system32\ctfmon.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\WINDOWS\system32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\PROGRA~1\TENCENT\SSPlus\SPlus.dll  [(Verified)TENCENT, 5, 0, 4, 11, C:2008-08-05 21:53 M:2008-07-09 10:33]

[PID: 1512 / Administrator]   C:\PROGRA~1\Rising\Rfw\rfwsrv.exe   [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.76, C:2008-08-15 22:48 M:2008-08-15 15:03]
    C:\WINDOWS\system32\MFC71.DLL  [Microsoft Corporation, 7.10.3077.0, C:2007-12-04 18:08 M:2007-12-04 18:06]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:2004-04-05 10:31 M:2004-04-05 10:31]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:2004-04-05 10:31 M:2008-08-15 11:40]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\Program Files\Rising\Rfw\ProcCom.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-08-15 22:48 M:2008-08-15 15:03]
    C:\PROGRA~1\Rising\Rfw\RsCommX2.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-08-15 22:48 M:2008-08-15 15:03]

[PID: 1532 / Administrator]   C:\Program Files\Poco\PhotoViewer\update.exe   [(Verified)广州数联软件技术有限公司, 1, 0, 0, 1, C:2008-01-24 18:10 M:2008-01-24 18:10]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]

[PID: 2400 / Administrator]   C:\Program Files\arswp\ArSwp.exe   [(Verified)ArSwp.com, 2, 8, 0, 728, C:2008-08-15 20:26 M:2008-07-29 22:36]
    C:\WINDOWS\system32\ole32.dll  [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528), C:2004-08-17 12:00 M:2005-07-26 12:39]
    C:\WINDOWS\system32\SHELL32.dll  [Microsoft Corporation, 6.00.2900.3241 (xpsp_sp2_gdr.071025-1248), C:2004-08-17 12:00 M:2007-10-26 00:54]
    C:\WINDOWS\system32\oledlg.dll  [Microsoft Corporation, 1.0 (xpsp_sp2_gdr.061016-0148), C:2004-08-17 12:00 M:2006-10-17 00:15]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 25, C:2008-08-15 11:09 M:2008-08-15 18:48]
    C:\Program Files\Rising\AntiSpyware\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.24, C:2008-08-15 11:09 M:2008-08-15 11:06]
    C:\Program Files\Rising\AntiSpyware\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-08-15 11:09 M:2008-08-15 11:08]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2004-08-07 09:37]
    C:\PROGRA~1\TENCENT\SSPlus\SPlus.dll  [(Verified)TENCENT, 5, 0, 4, 11, C:2008-08-05 21:53 M:2008-07-09 10:33]
    C:\WINDOWS\system32\xpsp2res.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\Program Files\arswp\plugin\ArFix.dll  [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2008-08-15 20:27 M:2007-11-28 15:19]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]


========================================
文件关联

[.hlp] <%SystemRoot%\system32\winhlp32.exe %1> [N/A, C:1601-01-01 08:00 M:1601-01-01 08:00]


========================================
AutoRun.INF



========================================
Winsock提供者

MSAFD Tcpip [TCP/IP]
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD Tcpip [UDP/IP]
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD Tcpip [RAW/IP]
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{F2149842-D74B-4296-8710-F598D63CEDBE}] SEQPACKET 3
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{F2149842-D74B-4296-8710-F598D63CEDBE}] DATAGRAM 3
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{C1A25CB6-F746-4F92-918F-3E084731015C}] SEQPACKET 0
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{C1A25CB6-F746-4F92-918F-3E084731015C}] DATAGRAM 0
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{FCD4B0C8-53FA-44D6-A408-6C7060274ED9}] SEQPACKET 1
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{FCD4B0C8-53FA-44D6-A408-6C7060274ED9}] DATAGRAM 1
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{980B5A24-5754-498C-AE73-EBFAA6E25AE8}] SEQPACKET 2
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{980B5A24-5754-498C-AE73-EBFAA6E25AE8}] DATAGRAM 2
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{117916FA-A83A-4E41-A054-FA5D9B648A42}] SEQPACKET 4
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{117916FA-A83A-4E41-A054-FA5D9B648A42}] DATAGRAM 4
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{C573051B-5655-43B5-A2D5-A7B43283DC3B}] SEQPACKET 5
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{C573051B-5655-43B5-A2D5-A7B43283DC3B}] DATAGRAM 5
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-17 12:00 M:2008-06-21 01:39]


[/CODE]