[CODE]

2008-12-19,20:55:33

SysLog Scanner 1.0 - build 20080726
Arswp (http://www.arswp.com)

Windows XP Professional Service Pack 2 (build 2600) - Administrators



========================================
注册项

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32>  []
    <PHIME2002A><; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  []
    <PHIME2002ASync><; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32>  []
    <HBService32><System.exe>  [HB Software, 1, 2, 1, 1007, C:2008-12-18 16:38 M:2008-12-18 16:38]
    <SoundMan><SondMan.exe>  [1, 1.00, C:2006-10-18 21:47 M:2006-10-18 21:47]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run]
    <MPMKrnl><rundll32 "C:\WINDOWS\MKMKrnl.dll",KMainProc>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><HBmhly.dll,HBWOW.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]

[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><C:\WINDOWS\system32\七彩泡泡.SCR>  [Microsoft Corporation, 6.0.5308.17 (winmain_idx01.060217-2200), C:2007-04-21 01:02 M:2006-03-01 04:53]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <msnmsg><C:\Program Files\Messenger\msgmr.dll>  [Microsoft Corporation, 4.7.3000, C:2008-12-18 16:38 M:2008-12-19 10:56]
    <ThunderAdvise><C:\WINDOWS\Downloaded Program Files\ThunderAdvise.dll>  [Thunder Networking Technologies,LTD, 5, 0, 8, 74, C:2008-12-18 16:38 M:2008-12-18 16:38]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{950D1600-DE4A-448D-93B4-7BAE5A7A8052}><950D1600.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    <{DFB3DAC5-B0B5-4B05-BFCF-FB42737778FA}><DFB3DAC5.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    <{DA63E650-537C-4042-87BB-9D19D844680B}><DA63E650.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    <{2EF0D734-21FD-4225-A1A2-BCD296182AAF}><2EF0D734.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    <{F8E07BB2-7A19-4057-80F1-E14646E630B4}><F8E07BB2.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    <{D9C002DD-EA51-43A2-9009-54EAAAF031A4}><D9C002DD.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    <{A1A6BC2E-C6A1-43C1-8884-A31D772F42B8}><A1A6BC2E.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    <{5934EA2B-B2C4-4BE7-BF7A-FBA781A12E40}><5934EA2B.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    <{56BC86C7-0692-4F94-A2C1-6CF1DBF8096C}><56BC86C7.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    <{201476D0-2B18-462E-AB9F-3E2B0CC8732B}><201476D0.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:39]
    <{A55F538E-9E65-4706-9458-852BF6592063}><A55F538E.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    <{122B901E-493F-4AD9-BC69-7DE8C3E52FCC}><122B901E.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    <{E1384213-0948-4A60-A9E3-875B191CC2E7}><E1384213.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    <{4D023DE9-F4B5-4BE0-99C6-7C7AD0CF5426}><4D023DE9.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    <{08223B03-1B38-4A33-A83A-A4D3CC1D6E4E}><08223B03.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    <{1FD51F1F-97E4-498C-AB12-93332EEAD266}><1FD51F1F.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    <{E0D39066-96D7-4891-8527-488ADAFCD60F}><E0D39066.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    <{66AFCB56-FAA9-42D2-8C72-2767A46C7FA8}><66AFCB56.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    <{9CA963CA-107C-4089-B0AB-31380F90D7E3}><9CA963CA.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    <{C8FFD223-C0FB-40C5-94A0-FD7891AC18E9}><C8FFD223.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:40]
    <{BA7EDF54-8408-4B21-B351-7B447B344BA4}><BA7EDF54.dll>  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    <{E4814792-EFA3-4C20-93D0-8B130A59F9A8}><E4814792.dll>  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    <{3D144530-43DA-47CC-B7C7-A3A9F3B9A6B2}><3D144530.dll>  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    <{B6E23E89-C925-4BF7-92EB-77EFDF8C58A6}><B6E23E89.dll>  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    <{01AFE3DC-2242-436E-9B44-6DD1C664E828}><01AFE3DC.dll>  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    <{E783C505-FA27-48BD-9B35-C84E5CEA523F}><E783C505.dll>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载]
    <><C:\Program Files\Thunder\Program\geturl.htm>  [N/A, C:2007-10-27 14:39 M:2007-10-27 14:39]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载全部链接]
    <><C:\Program Files\Thunder\Program\getallurl.htm>  [N/A, C:2007-10-27 14:39 M:2007-10-27 14:39]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\导出到 Microsoft Office Excel(&X)]
    <><res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000>  []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
    <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)N/A, C:2004-08-17 12:00 M:2004-08-17 12:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub>  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|(Verified)N/A, C:2007-12-18 14:14 M:2005-01-28 15:25]


========================================
启动项



========================================
计划任务



========================================
组件


ShellServiceObjectDelayLoad
[]
    {DA191DE0-AA86-4ED0-4B87-293D48B2AE99}  <C:\Program Files\Messenger\msgmr.dll>  [Microsoft Corporation, 4.7.3000, C:2008-12-18 16:38 M:2008-12-19 10:56]
[ThunderHlpObj Class]
    {97421D0D-E07F-40DF-8F07-99597B9585AD}  <C:\WINDOWS\Downloaded Program Files\ThunderAdvise.dll>  [Thunder Networking Technologies,LTD, 5, 0, 8, 74, C:2008-12-18 16:38 M:2008-12-18 16:38]

ShellExecuteHook
[]
    {950D1600-DE4A-448D-93B4-7BAE5A7A8052}  <950D1600.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[]
    {DFB3DAC5-B0B5-4B05-BFCF-FB42737778FA}  <DFB3DAC5.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[]
    {DA63E650-537C-4042-87BB-9D19D844680B}  <DA63E650.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[]
    {2EF0D734-21FD-4225-A1A2-BCD296182AAF}  <2EF0D734.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[]
    {F8E07BB2-7A19-4057-80F1-E14646E630B4}  <F8E07BB2.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[]
    {D9C002DD-EA51-43A2-9009-54EAAAF031A4}  <D9C002DD.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[]
    {A1A6BC2E-C6A1-43C1-8884-A31D772F42B8}  <A1A6BC2E.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[]
    {5934EA2B-B2C4-4BE7-BF7A-FBA781A12E40}  <5934EA2B.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[]
    {56BC86C7-0692-4F94-A2C1-6CF1DBF8096C}  <56BC86C7.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[]
    {201476D0-2B18-462E-AB9F-3E2B0CC8732B}  <201476D0.dll>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:39]
[]
    {A55F538E-9E65-4706-9458-852BF6592063}  <A55F538E.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
[]
    {122B901E-493F-4AD9-BC69-7DE8C3E52FCC}  <122B901E.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
[]
    {E1384213-0948-4A60-A9E3-875B191CC2E7}  <E1384213.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
[]
    {4D023DE9-F4B5-4BE0-99C6-7C7AD0CF5426}  <4D023DE9.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
[]
    {08223B03-1B38-4A33-A83A-A4D3CC1D6E4E}  <08223B03.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
[]
    {1FD51F1F-97E4-498C-AB12-93332EEAD266}  <1FD51F1F.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
[]
    {E0D39066-96D7-4891-8527-488ADAFCD60F}  <E0D39066.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
[]
    {66AFCB56-FAA9-42D2-8C72-2767A46C7FA8}  <66AFCB56.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
[]
    {9CA963CA-107C-4089-B0AB-31380F90D7E3}  <9CA963CA.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
[]
    {C8FFD223-C0FB-40C5-94A0-FD7891AC18E9}  <C8FFD223.dll>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:40]
[]
    {BA7EDF54-8408-4B21-B351-7B447B344BA4}  <BA7EDF54.dll>  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
[]
    {E4814792-EFA3-4C20-93D0-8B130A59F9A8}  <E4814792.dll>  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
[]
    {3D144530-43DA-47CC-B7C7-A3A9F3B9A6B2}  <3D144530.dll>  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
[]
    {B6E23E89-C925-4BF7-92EB-77EFDF8C58A6}  <B6E23E89.dll>  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
[]
    {01AFE3DC-2242-436E-9B44-6DD1C664E828}  <01AFE3DC.dll>  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
[]
    {E783C505-FA27-48BD-9B35-C84E5CEA523F}  <E783C505.dll>  []

Shell Extension
[Display Panning CPL Extension]
    {42071714-76d4-11d1-8b24-00a0c9068ff3}  <deskpan.dll>  []
[HyperTerminal Icon Ext]
    {88895560-9AA2-1069-930E-00AA0030EBC8}  <C:\WINDOWS\system32\hticons.dll>  [(Verified)Hilgraeve, Inc., 5.1.2600.0, C:2007-12-18 13:47 M:2004-08-17 20:00]
[WinRAR shell extension]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2007-12-18 14:23 M:2007-09-21 17:03]
[PicaView]
    {68f32140-2ca3-11d0-acc1-444553540000}  <C:\Program Files\ACDSee\picaview.dll>  [ACD Systems, Ltd., 2, 0, 0, 78, C:2005-10-06 10:17 M:2005-10-06 10:17]
[Open and Close CDRom]
    {D00CCF25-F552-40D2-9114-6C1924BA8119}  <E:\封装步骤资料\(4)优化及设置\Windows优化大师=不要清理多余注册表信息\WoptiCDRomContmenu.dll>  []

BrowserHelperObject
[ThunderAtOnce Class]
    {01443AEC-0FD1-40fd-9C87-E93D1494C233}  <C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.16, C:2007-10-27 14:39 M:2007-10-27 14:39]
[Thunder Browser Helper]
    {889D2FEB-5411-4565-8998-1DD2C5261283}  <C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 44, C:2007-10-27 14:39 M:2007-10-27 14:39]
[ThunderHlpObj Class]
    {97421D0D-E07F-40DF-8F07-99597B9585AD}  <C:\WINDOWS\Downloaded Program Files\ThunderAdvise.dll>  [Thunder Networking Technologies,LTD, 5, 0, 8, 74, C:2008-12-18 16:38 M:2008-12-18 16:38]

ActiveX Extension
[ThunderAtOnce Class]
    {01443AEC-0FD1-40FD-9C87-E93D1494C233}  <C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.16, C:2007-10-27 14:39 M:2007-10-27 14:39]
[Thunder Agent Class]
    {485463B7-8FB2-4B3B-B29B-8B919B0EACCE}  <C:\Program Files\Thunder\ComDlls\ThunderAgent_Now.dll>  [Thunder Networking Technologies,LTD, 5, 0, 4, 23, C:2007-10-27 14:39 M:2007-10-27 14:39]
[Thunder Browser Helper]
    {889D2FEB-5411-4565-8998-1DD2C5261283}  <C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 44, C:2007-10-27 14:39 M:2007-10-27 14:39]
[ThunderHlpObj Class]
    {97421D0D-E07F-40DF-8F07-99597B9585AD}  <C:\WINDOWS\Downloaded Program Files\ThunderAdvise.dll>  [Thunder Networking Technologies,LTD, 5, 0, 8, 74, C:2008-12-18 16:38 M:2008-12-18 16:38]
[Shockwave Flash Object]
    {D27CDB6E-AE6D-11CF-96B8-444553540000}  <C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx>  [(Verified)Adobe Systems, Inc., 9,0,115,0, C:2007-11-21 08:04 M:2007-11-21 08:04]

Context Menu
[OCCDRoms]
    {D00CCF25-F552-40D2-9114-6C1924BA8119}  <E:\封装步骤资料\(4)优化及设置\Windows优化大师=不要清理多余注册表信息\WoptiCDRomContmenu.dll>  []
[WinRAR]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2007-12-18 14:23 M:2007-09-21 17:03]


========================================
服务

[3ware Controller Service / 3wareSrv][Stopped/Auto Start]
    <%SystemRoot%\System32\3wareSrv.exe>  [N/A, C:2007-12-18 22:27 M:2006-02-26 23:21]
[Contrl Center of Storm Media / ccosm][Running/Auto Start]
    <C:\Program Files\StormII\stormliv.exe /asservice>  [北京暴风网际科技有限公司, 3, 7, 11, 16, C:2007-11-16 17:07 M:2007-11-16 17:07]
[Help and Support / helpsvc][Stopped/Disabled]
    <C:\WINDOWS\system32\inertne.exe --> "%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll">  [N/A, C:2006-12-14 14:29 M:2006-12-14 14:29]

[Network Location Awareness (NLA) / Nla][Running/Auto Start]
    <%SystemRoot%\system32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\mswsock.dll">  [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00|Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]


========================================
驱动

[aeaudio / aeaudio][Running/Manual Start]
    <system32\drivers\aeaudio.sys>  [Andrea Electronics Corporation, 4.0.1.14, C:2005-03-04 19:53 M:2005-03-04 19:53]
[b1a18a3e / b1a18a3e][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\b1a18a3e.sys>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[b71fe93 / b71fe93][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\b71fe93.sys>  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
[b770ca2 / b770ca2][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\b770ca2.sys>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[Promise driver accelerator / bb-run][Running/Boot Start]
    <system32\DRIVERS\bb-run.sys>  [Promise Technology, Inc.,  1.0.1.2 built by: WinDDK, C:2007-12-18 22:27 M:2003-11-05 15:45]
[Promise Removable Disk Control Driver / dontgo][Running/Boot Start]
    <system32\DRIVERS\DontGo.sys>  [Promise Technology, Inc.,  1.0.0.3 built by: WinDDK, C:2007-12-18 22:27 M:2006-02-26 23:21]
[f28907d / f28907d][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\f28907d.sys>  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
[ialm / ialm][Running/Manual Start]
    <system32\DRIVERS\ialmnt5.sys>  [Intel Corporation, 6.14.10.4342, C:2005-06-21 17:12 M:2005-06-21 17:12]
[NVIDIA nForce RAID Driver / nvrd32][Running/Boot Start]
    <system32\DRIVERS\nvrd32.sys>  [NVIDIA Corporation, 10.1.0.12 built by: WinDDK, C:2007-12-18 22:27 M:2007-05-04 15:50]
[SATALink External Device Filter / SiRemFil][Running/Boot Start]
    <system32\DRIVERS\SiRemFil.sys>  [Silicon Image, Inc., 1, 1, 6, 0, C:2007-12-18 22:27 M:2006-10-18 20:20]
[smwdm / smwdm][Running/Manual Start]
    <system32\drivers\smwdm.sys>  [Realtek Semiconductor Corp., 5.10.00.6240 built by: WinDDK, C:2007-04-25 16:20 M:2007-04-25 16:20]
[System Restore Filter Driver / sr][Stopped/Disabled]
    <system32\DRIVERS\sr.sys>  []
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
    <system32\DRIVERS\tcpip.sys>  [Microsoft Corporation, 5.1.2600.2892 (xpsp_sp2_gdr.060420-0254), C:2004-08-17 12:00 M:2006-04-20 19:51]
[ViBus / ViBus][Stopped/Boot Start]
    <system32\DRIVERS\ViBus.sys>  []
[VIA SATA IDE Hot-plug Driver / xfilt][Running/Boot Start]
    <system32\DRIVERS\xfilt.sys>  [VIA Technologies,Inc, 6.0.5728.160, C:2007-12-18 22:27 M:2006-10-19 00:39]

[Dritek Keyboard Filter Driver / DKbFltr][Running/Manual Start]
    <system32\DRIVERS\DKbFltr.sys>  [(Verified)Dritek System Inc., 1, 2, 1, 420, C:2006-05-15 14:08 M:2006-05-15 14:08]
[Service for NVIDIA(R) nForce(TM) MIDI UART / nvmpu401][Running/Manual Start]
    <system32\drivers\nvmpu401.sys>  [(Verified)NVIDIA Corporation, 6.14.0462.0 built by: NVIDIA, C:2005-04-13 12:34 M:2005-04-13 12:34]
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
    <system32\DRIVERS\ptilink.sys>  [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2004-08-17 12:00 M:2004-08-17 12:00]
[Realtek 10/100/1000 PCI NIC Family NDIS XP Driver / RTL8023xp][Running/Manual Start]
    <system32\DRIVERS\Rtnicxp.sys>  [(Verified)Realtek Semiconductor Corporation                           , 5.673.0712.2007 built by: WinDDK, C:2007-07-12 11:49 M:2007-07-12 11:49]
[Secdrv / Secdrv][Stopped/Manual Start]
    <system32\DRIVERS\secdrv.sys>  [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2004-08-17 12:00 M:2007-11-13 18:25]


========================================
进程

[PID: 560 / SYSTEM]   \SystemRoot\System32\smss.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 632 / SYSTEM]   \??\C:\WINDOWS\system32\csrss.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 656 / SYSTEM]   \??\C:\WINDOWS\system32\winlogon.exe   [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2006-09-24 16:42]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]

[PID: 700 / SYSTEM]   C:\WINDOWS\system32\services.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]

[PID: 712 / SYSTEM]   C:\WINDOWS\system32\lsass.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]

[PID: 880 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]

[PID: 944 / NETWORK SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]

[PID: 1036 / SYSTEM]   C:\WINDOWS\System32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\System32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\System32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\System32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\System32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]

[PID: 1116 / NETWORK SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]

[PID: 1256 / LOCAL SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]

[PID: 1460 / SYSTEM]   C:\WINDOWS\system32\spoolsv.exe   [(Verified)Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519), C:2004-08-17 12:00 M:2005-06-11 07:53]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]

[PID: 1512 / Administrator]   C:\WINDOWS\Explorer.EXE   [(Verified)Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_qfe.070613-1311), C:2004-08-17 12:00 M:2007-06-13 21:10]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\actxprxy.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\950D1600.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DFB3DAC5.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DA63E650.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\2EF0D734.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\F8E07BB2.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\D9C002DD.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\A1A6BC2E.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\5934EA2B.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\56BC86C7.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\201476D0.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:39]
    C:\WINDOWS\system32\A55F538E.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\122B901E.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\E1384213.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\4D023DE9.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\08223B03.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\1FD51F1F.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\E0D39066.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\66AFCB56.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\9CA963CA.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\C8FFD223.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:40]
    C:\WINDOWS\system32\BA7EDF54.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\E4814792.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\3D144530.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\B6E23E89.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\Fonts\Framdee.ttf  [N/A, C:2008-12-18 16:38 M:2008-12-19 20:52]
    C:\WINDOWS\Downloaded Program Files\ThunderAdvise.dll  [Thunder Networking Technologies,LTD, 5, 0, 8, 74, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]
    C:\WINDOWS\system32\browselc.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-10-27 15:08]
    C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.16, C:2007-10-27 14:39 M:2007-10-27 14:39]
    C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 44, C:2007-10-27 14:39 M:2007-10-27 14:39]
    C:\WINDOWS\system32\shdoclc.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]

[PID: 260 / LOCAL SERVICE]   C:\WINDOWS\System32\alg.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\System32\MSWSOCK.DLL  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\System32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\System32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\System32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]

[PID: 288 / SYSTEM]   C:\Program Files\StormII\stormliv.exe   [北京暴风网际科技有限公司, 3, 7, 11, 16, C:2007-11-16 17:07 M:2007-11-16 17:07]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]

[PID: 348 / LOCAL SERVICE]   C:\WINDOWS\system32\wdfmgr.exe   [(Verified)Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act), C:2005-01-28 01:36 M:2005-01-28 01:36]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]

[PID: 1716 / Administrator]   C:\WINDOWS\system32\rundll32.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\MKMKrnl.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]
    C:\WINDOWS\system32\B6E23E89.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\4D023DE9.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\08223B03.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\122B901E.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\201476D0.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:39]
    C:\WINDOWS\system32\56BC86C7.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\5934EA2B.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\A1A6BC2E.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\F8E07BB2.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\D9C002DD.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\2EF0D734.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DA63E650.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\950D1600.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DFB3DAC5.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]

[PID: 1740 / Administrator]   C:\WINDOWS\system32\System.exe   [HB Software, 1, 2, 1, 1007, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\B6E23E89.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\4D023DE9.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\08223B03.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\122B901E.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\201476D0.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:39]
    C:\WINDOWS\system32\56BC86C7.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\5934EA2B.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\A1A6BC2E.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\F8E07BB2.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\D9C002DD.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\2EF0D734.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DA63E650.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\950D1600.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DFB3DAC5.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]

[PID: 1748 / Administrator]   C:\WINDOWS\SondMan.exe   [1, 1.00, C:2006-10-18 21:47 M:2006-10-18 21:47]
    C:\WINDOWS\system32\MSVBVM60.DLL  [Microsoft Corporation, 6.00.9782, C:2004-08-17 12:00 M:2004-02-23 20:42]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\B6E23E89.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\4D023DE9.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\08223B03.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\122B901E.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\201476D0.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:39]
    C:\WINDOWS\system32\56BC86C7.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\5934EA2B.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\A1A6BC2E.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\F8E07BB2.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\D9C002DD.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\2EF0D734.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DA63E650.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\950D1600.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DFB3DAC5.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]

[PID: 1772 / Administrator]   C:\WINDOWS\system32\ctfmon.exe   [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\B6E23E89.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\4D023DE9.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\08223B03.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\122B901E.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\201476D0.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:39]
    C:\WINDOWS\system32\56BC86C7.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\5934EA2B.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\A1A6BC2E.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\F8E07BB2.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\D9C002DD.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\2EF0D734.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DA63E650.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\950D1600.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DFB3DAC5.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]

[PID: 1912 / SYSTEM]   C:\WINDOWS\system32\wuauclt.exe   [(Verified)Microsoft Corporation, 5.4.3790.2180 (xpsp_sp2_rtm.040803-2158), C:2007-12-18 13:49 M:2004-08-17 20:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\01AFE3DC.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]

[PID: 1732 / Administrator]   F:\新建文件夹\SREngLdr.EXE   [Smallfrogs Studio, 2.7.0.1210, C:2008-12-16 15:50 M:2008-10-19 15:54]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]

[PID: 1760 / Administrator]   F:\新建文件夹\SREa2239101.EXE   [Smallfrogs Studio, 2.7.0.1210, C:2008-12-19 20:53 M:2008-12-19 20:53]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\B6E23E89.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\4D023DE9.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\08223B03.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\122B901E.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\201476D0.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:39]
    C:\WINDOWS\system32\56BC86C7.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\5934EA2B.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\A1A6BC2E.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\F8E07BB2.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\D9C002DD.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\2EF0D734.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DA63E650.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\950D1600.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DFB3DAC5.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\System32\mswsock.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]

[PID: 2176 / Administrator]   F:\新建文件夹\SREngLogA 1.3.exe   [剑盟技术团队, 1.1.0.0, C:2008-12-16 15:50 M:2007-11-08 20:55]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\shdoclc.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]
    C:\WINDOWS\system32\B6E23E89.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\4D023DE9.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\08223B03.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\122B901E.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\201476D0.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:39]
    C:\WINDOWS\system32\56BC86C7.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\5934EA2B.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\A1A6BC2E.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\F8E07BB2.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\D9C002DD.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\2EF0D734.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DA63E650.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\950D1600.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DFB3DAC5.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]

[PID: 2620 / Administrator]   F:\新建文件夹\arswp\ArSwp.exe   [(Verified)ArSwp.com, 2, 8, 2, 1115, C:2008-12-16 16:10 M:2008-11-15 11:58]
    C:\WINDOWS\system32\HBmhly.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\HBWOW.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2007-12-18 13:55]
    C:\WINDOWS\system32\B6E23E89.dll  [N/A, C:2008-12-18 16:40 M:2008-12-18 16:40]
    C:\WINDOWS\system32\4D023DE9.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\08223B03.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\122B901E.dll  [N/A, C:2008-12-18 16:39 M:2008-12-18 16:39]
    C:\WINDOWS\system32\201476D0.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:39]
    C:\WINDOWS\system32\56BC86C7.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\5934EA2B.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\A1A6BC2E.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\F8E07BB2.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\D9C002DD.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\2EF0D734.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DA63E650.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\950D1600.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    C:\WINDOWS\system32\DFB3DAC5.dll  [N/A, C:2008-12-18 16:38 M:2008-12-18 16:38]
    F:\新建文件夹\arswp\plugin\ArFix.dll  [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2008-12-16 16:10 M:2007-11-28 15:19]
    C:\WINDOWS\system32\mswsock.dll  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
    C:\WINDOWS\system32\oleadp.dll  [Microsoft Corporation, 4.2.5406.0 (xpclient.010817-1148), C:2004-08-17 12:00 M:2007-03-08 23:37]
    C:\WINDOWS\system32\shdoclc.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]


========================================
文件关联



========================================
AutoRun.INF



========================================
Winsock提供者

MSAFD Tcpip [TCP/IP]
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD Tcpip [UDP/IP]
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD Tcpip [RAW/IP]
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{23F9C15A-DEC8-4C0A-8C92-5E7FDF4C99B2}] SEQPACKET 0
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{23F9C15A-DEC8-4C0A-8C92-5E7FDF4C99B2}] DATAGRAM 0
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{502B67A0-8269-47B6-9EFD-2E275686CD52}] SEQPACKET 1
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{502B67A0-8269-47B6-9EFD-2E275686CD52}] DATAGRAM 1
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{E4EFBEFE-4F7E-48FE-B776-395685C41C73}] SEQPACKET 2
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{E4EFBEFE-4F7E-48FE-B776-395685C41C73}] DATAGRAM 2
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{0501B034-AE74-497E-B47F-793441668448}] SEQPACKET 3
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{0501B034-AE74-497E-B47F-793441668448}] DATAGRAM 3
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{7239519C-3CF0-4FD6-90A5-3205065423D0}] SEQPACKET 4
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]
MSAFD NetBIOS [\Device\NetBT_Tcpip_{7239519C-3CF0-4FD6-90A5-3205065423D0}] DATAGRAM 4
    <%SystemRoot%\system32\mswsock.dll>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 12:00 M:2004-08-17 12:00]


========================================
HOSTS

    127.0.0.1 localhost


[/CODE]