瑞星卡卡安全论坛
(世)源清 - 2005-8-24 22:33:00
System Information Collect Tool - Designed By Smallfrogs
20050824-22:05
Windows XP Service Pack 2
Internet Explorer: 6.0.2900.2180
*****************************************************************
Runing Processes information
*****************************************************************
=====================================================
PROCESS NAME: System
-----------------------------------------------------
Process ID = 0x00000004
Thread count= 54
Parent process ID = 0
Priority Class = 32
Modules:
------------------------------------
=====================================================
PROCESS NAME: SMSS.EXE
-----------------------------------------------------
Process ID = 0x00000208
Thread count= 3
Parent process ID = 4
Priority Class = 32
Modules:
------------------------------------
\SystemRoot\System32\smss.exe (0x48580000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
=====================================================
PROCESS NAME: csrss.exe
-----------------------------------------------------
WARNING: OpenProcess failed with error 5 ()
Process ID = 0x00000250
Thread count= 11
Parent process ID = 520
Modules:
------------------------------------
=====================================================
PROCESS NAME: winlogon.exe
-----------------------------------------------------
Process ID = 0x00000268
Thread count= 16
Parent process ID = 520
Priority Class = 128
Modules:
------------------------------------
\??\C:\WINDOWS\system32\winlogon.exe (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\AUTHZ.dll (0x77FE0000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\NDdeApi.dll (0x758A0000)
C:\WINDOWS\system32\PROFMAP.dll (0x75890000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\PSAPI.DLL (0x76BC0000)
C:\WINDOWS\system32\REGAPI.dll (0x76B90000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\WINSTA.dll (0x762D0000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MSGINA.dll (0x758D0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\ODBC32.dll (0x73540000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\odbcint.dll (0x20000000)
C:\WINDOWS\system32\SHSVCS.dll (0x76E10000)
C:\WINDOWS\system32\sfc.dll (0x76B80000)
C:\WINDOWS\system32\sfc_os.dll (0x76C30000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\Apphelp.dll (0x76D70000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\WINSCARD.DLL (0x72360000)
C:\WINDOWS\system32\WTSAPI32.dll (0x76F20000)
C:\WINDOWS\system32\sxs.dll (0x75E00000)
C:\WINDOWS\system32\uxtheme.dll (0x5ADC0000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\cscdll.dll (0x76570000)
C:\WINDOWS\system32\WlNotify.dll (0x758B0000)
C:\WINDOWS\system32\WINSPOOL.DRV (0x72F70000)
C:\WINDOWS\system32\MPR.dll (0x71A90000)
C:\WINDOWS\system32\rsaenh.dll (0x0FFD0000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\SAMLIB.dll (0x71B70000)
C:\WINDOWS\system32\cscui.dll (0x76590000)
C:\WINDOWS\system32\xpsp2res.dll (0x01460000)
C:\WINDOWS\system32\NTMARTA.DLL (0x76CB0000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
=====================================================
PROCESS NAME: services.exe
-----------------------------------------------------
Process ID = 0x00000294
Thread count= 15
Parent process ID = 616
Priority Class = 32
Modules:
------------------------------------
C:\WINDOWS\system32\services.exe (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\SCESRV.dll (0x75840000)
C:\WINDOWS\system32\AUTHZ.dll (0x77FE0000)
C:\WINDOWS\system32\umpnpmgr.dll (0x7E1E0000)
C:\WINDOWS\system32\WINSTA.dll (0x762D0000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\NCObjAPI.DLL (0x5F9A0000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\WINDOWS\system32\ShimEng.dll (0x5CC30000)
C:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\WINDOWS\system32\secur32.dll (0x77FC0000)
C:\WINDOWS\system32\Apphelp.dll (0x76D70000)
C:\WINDOWS\system32\eventlog.dll (0x76CE0000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\PSAPI.DLL (0x76BC0000)
C:\WINDOWS\system32\wtsapi32.dll (0x76F20000)
=====================================================
PROCESS NAME: lsass.exe
-----------------------------------------------------
Process ID = 0x000002a0
Thread count= 21
Parent process ID = 616
Priority Class = 32
Modules:
------------------------------------
C:\WINDOWS\system32\lsass.exe (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\LSASRV.dll (0x74480000)
C:\WINDOWS\system32\MPR.dll (0x71A90000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\NTDSAPI.dll (0x76770000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\SAMLIB.dll (0x71B70000)
C:\WINDOWS\system32\SAMSRV.dll (0x743A0000)
C:\WINDOWS\system32\cryptdll.dll (0x76760000)
C:\WINDOWS\system32\ShimEng.dll (0x5CC30000)
C:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\WINDOWS\system32\msprivs.dll (0x20000000)
C:\WINDOWS\system32\kerberos.dll (0x71C70000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\netlogon.dll (0x74410000)
C:\WINDOWS\system32\w32time.dll (0x76790000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\WINDOWS\system32\schannel.dll (0x767C0000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\wdigest.dll (0x742E0000)
C:\WINDOWS\system32\rsaenh.dll (0x0FFD0000)
C:\WINDOWS\system32\scecli.dll (0x74370000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\WINDOWS\system32\ipsecsvc.dll (0x74340000)
C:\WINDOWS\system32\AUTHZ.dll (0x77FE0000)
C:\WINDOWS\system32\oakley.DLL (0x73ED0000)
C:\WINDOWS\system32\WINIPSEC.DLL (0x742D0000)
C:\WINDOWS\system32\pstorsvc.dll (0x74300000)
C:\WINDOWS\system32\psbase.dll (0x74320000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\dssenh.dll (0x68100000)
=====================================================
PROCESS NAME: svchost.exe
-----------------------------------------------------
Process ID = 0x00000338
Thread count= 16
Parent process ID = 660
Priority Class = 32
(世)源清 - 2005-8-24 22:35:00
Modules:
------------------------------------
C:\WINDOWS\system32\svchost.exe (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\ShimEng.dll (0x5CC30000)
C:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\WINDOWS\system32\NTMARTA.DLL (0x76CB0000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\SAMLIB.dll (0x71B70000)
c:\windows\system32\rpcss.dll (0x76230000)
c:\windows\system32\Secur32.dll (0x77FC0000)
c:\windows\system32\WS2_32.dll (0x71A20000)
c:\windows\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\WINDOWS\system32\WTSAPI32.dll (0x76F20000)
C:\WINDOWS\system32\WINSTA.dll (0x762D0000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
c:\windows\system32\termsrv.dll (0x761C0000)
c:\windows\system32\ICAAPI.dll (0x74ED0000)
c:\windows\system32\SETUPAPI.dll (0x76060000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
c:\windows\system32\AUTHZ.dll (0x77FE0000)
c:\windows\system32\mstlsapi.dll (0x75070000)
c:\windows\system32\ACTIVEDS.dll (0x77C90000)
c:\windows\system32\adsldpc.dll (0x76DE0000)
c:\windows\system32\ATL.DLL (0x76AF0000)
C:\WINDOWS\system32\REGAPI.dll (0x76B90000)
C:\WINDOWS\system32\rsaenh.dll (0x0FFD0000)
C:\WINDOWS\system32\Apphelp.dll (0x76D70000)
=====================================================
PROCESS NAME: svchost.exe
-----------------------------------------------------
WARNING: OpenProcess failed with error 5 ()
Process ID = 0x00000388
Thread count= 11
Parent process ID = 660
Modules:
------------------------------------
=====================================================
PROCESS NAME: svchost.exe
-----------------------------------------------------
Process ID = 0x000003e4
Thread count= 67
Parent process ID = 660
Priority Class = 32
(世)源清 - 2005-8-24 22:35:00
Modules:
------------------------------------
C:\WINDOWS\System32\svchost.exe (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\System32\ShimEng.dll (0x5CC30000)
C:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\System32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\System32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\System32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\System32\LPK.DLL (0x62C20000)
C:\WINDOWS\System32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\WINDOWS\System32\NTMARTA.DLL (0x76CB0000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\System32\SAMLIB.dll (0x71B70000)
C:\WINDOWS\System32\xpsp2res.dll (0x20000000)
c:\windows\system32\shsvcs.dll (0x76E10000)
C:\WINDOWS\System32\WINSTA.dll (0x762D0000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
c:\windows\system32\dhcpcsvc.dll (0x76D50000)
c:\windows\system32\DNSAPI.dll (0x76EF0000)
c:\windows\system32\WS2_32.dll (0x71A20000)
c:\windows\system32\WS2HELP.dll (0x71A10000)
c:\windows\system32\iphlpapi.dll (0x76D30000)
c:\windows\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\System32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\System32\rsaenh.dll (0x0FFD0000)
c:\windows\system32\wzcsvc.dll (0x77290000)
c:\windows\system32\rtutils.dll (0x76E50000)
c:\windows\system32\WMI.dll (0x76D00000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
c:\windows\system32\WTSAPI32.dll (0x76F20000)
c:\windows\system32\ESENT.dll (0x5DF20000)
c:\windows\system32\ATL.DLL (0x76AF0000)
C:\WINDOWS\System32\rastls.dll (0x75DB0000)
C:\WINDOWS\system32\CRYPTUI.dll (0x75430000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\System32\MPRAPI.dll (0x76D10000)
C:\WINDOWS\System32\ACTIVEDS.dll (0x77C90000)
C:\WINDOWS\System32\adsldpc.dll (0x76DE0000)
C:\WINDOWS\System32\SETUPAPI.dll (0x76060000)
C:\WINDOWS\System32\RASAPI32.dll (0x76EB0000)
C:\WINDOWS\System32\rasman.dll (0x76E60000)
C:\WINDOWS\System32\TAPI32.dll (0x76E80000)
C:\WINDOWS\System32\SCHANNEL.dll (0x767C0000)
C:\WINDOWS\System32\WinSCard.dll (0x72360000)
C:\WINDOWS\System32\raschap.dll (0x75D90000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\System32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\System32\COMRes.dll (0x77020000)
c:\windows\system32\schedsvc.dll (0x76B40000)
c:\windows\system32\NTDSAPI.dll (0x76770000)
C:\WINDOWS\System32\MSIDLE.DLL (0x74EB0000)
c:\windows\system32\audiosrv.dll (0x70DE0000)
c:\windows\system32\wkssvc.dll (0x76850000)
c:\windows\system32\cryptsvc.dll (0x75EB0000)
c:\windows\system32\certcli.dll (0x752B0000)
c:\windows\system32\netman.dll (0x77CD0000)
c:\windows\system32\netshell.dll (0x74770000)
c:\windows\system32\credui.dll (0x76BD0000)
c:\windows\system32\WZCSAPI.DLL (0x72FA0000)
c:\windows\system32\srvsvc.dll (0x74FF0000)
c:\windows\pchealth\helpctr\binaries\pchsvc.dll (0x74EA0000)
c:\windows\system32\es.dll (0x768A0000)
c:\windows\system32\ersvc.dll (0x74EE0000)
c:\windows\system32\wuauserv.dll (0x50000000)
c:\windows\system32\wbem\wmisvc.dll (0x67180000)
C:\WINDOWS\system32\VSSAPI.DLL (0x75340000)
C:\WINDOWS\system32\wuaueng.dll (0x50040000)
C:\WINDOWS\System32\ADVPACK.dll (0x751C0000)
C:\WINDOWS\System32\SHFOLDER.dll (0x76750000)
C:\WINDOWS\System32\WINSPOOL.DRV (0x72F70000)
C:\WINDOWS\System32\WINHTTP.dll (0x4A410000)
C:\WINDOWS\System32\Cabinet.dll (0x750B0000)
C:\WINDOWS\System32\mspatcha.dll (0x602D0000)
C:\WINDOWS\System32\sfc.dll (0x76B80000)
C:\WINDOWS\System32\sfc_os.dll (0x76C30000)
c:\windows\system32\w32time.dll (0x76790000)
c:\windows\system32\MSVCP60.dll (0x75FF0000)
c:\windows\system32\trkwks.dll (0x74FD0000)
c:\windows\system32\srsvc.dll (0x75100000)
c:\windows\system32\POWRPROF.dll (0x74A30000)
c:\windows\system32\seclogon.dll (0x73C90000)
c:\windows\system32\sens.dll (0x72260000)
C:\WINDOWS\System32\SXS.DLL (0x75E00000)
c:\windows\system32\wscsvc.dll (0x4C1A0000)
c:\windows\system32\msi.dll (0x01DB0000)
C:\WINDOWS\system32\comsvcs.dll (0x75690000)
C:\WINDOWS\system32\MTXCLU.DLL (0x75050000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\colbact.DLL (0x75090000)
C:\WINDOWS\System32\CLUSAPI.DLL (0x762A0000)
C:\WINDOWS\System32\RESUTILS.DLL (0x75010000)
c:\windows\system32\ipnathlp.dll (0x66700000)
c:\windows\system32\AUTHZ.dll (0x77FE0000)
c:\windows\system32\browser.dll (0x76BA0000)
C:\WINDOWS\System32\wbem\wbemcomn.dll (0x751F0000)
C:\WINDOWS\System32\Wbem\wbemcore.dll (0x75D00000)
C:\WINDOWS\System32\Wbem\esscli.dll (0x75270000)
C:\WINDOWS\System32\Wbem\FastProx.dll (0x755F0000)
C:\WINDOWS\System32\wbem\wmiutils.dll (0x74F80000)
C:\WINDOWS\System32\wbem\repdrvfs.dll (0x75160000)
c:\windows\system32\tapisrv.dll (0x73350000)
c:\windows\system32\PSAPI.DLL (0x76BC0000)
C:\WINDOWS\System32\upnp.dll (0x76540000)
C:\WINDOWS\System32\SSDPAPI.dll (0x74E60000)
C:\WINDOWS\System32\wbem\wmiprvsd.dll (0x594C0000)
C:\WINDOWS\system32\NCObjAPI.DLL (0x5F9A0000)
C:\WINDOWS\System32\netcfgx.dll (0x75550000)
C:\WINDOWS\System32\wbem\wbemess.dll (0x752F0000)
c:\windows\system32\rasmans.dll (0x723F0000)
c:\windows\system32\WINIPSEC.DLL (0x742D0000)
C:\WINDOWS\System32\rasadhlp.dll (0x76F90000)
C:\WINDOWS\System32\rastapi.dll (0x75130000)
C:\WINDOWS\System32\unimdm.tsp (0x57980000)
C:\WINDOWS\System32\uniplat.dll (0x71F90000)
C:\WINDOWS\System32\kmddsp.tsp (0x57A00000)
C:\WINDOWS\System32\ndptsp.tsp (0x579E0000)
C:\WINDOWS\System32\ipconf.tsp (0x57A10000)
C:\WINDOWS\System32\h323.tsp (0x57A30000)
C:\WINDOWS\System32\wbem\ncprov.dll (0x5F970000)
C:\WINDOWS\System32\hidphone.tsp (0x57A20000)
C:\WINDOWS\System32\HID.DLL (0x68BE0000)
C:\WINDOWS\System32\rasppp.dll (0x721D0000)
C:\WINDOWS\System32\ntlsapi.dll (0x72420000)
C:\WINDOWS\system32\kerberos.dll (0x71C70000)
C:\WINDOWS\System32\cryptdll.dll (0x76760000)
C:\WINDOWS\System32\RASDLG.dll (0x754B0000)
C:\WINDOWS\system32\Apphelp.dll (0x76D70000)
C:\WINDOWS\System32\wbem\wbemsvc.dll (0x74E30000)
c:\windows\system32\qmgr.dll (0x69AB0000)
C:\WINDOWS\system32\MPR.dll (0x71A90000)
C:\WINDOWS\System32\qmgrprxy.dll (0x5DEB0000)
=====================================================
PROCESS NAME: svchost.exe
-----------------------------------------------------
WARNING: OpenProcess failed with error 5 ()
Process ID = 0x00000420
Thread count= 5
Parent process ID = 660
Modules:
------------------------------------
=====================================================
PROCESS NAME: svchost.exe
-----------------------------------------------------
WARNING: OpenProcess failed with error 5 ()
Process ID = 0x00000490
Thread count= 15
Parent process ID = 660
Modules:
------------------------------------
=====================================================
PROCESS NAME: rfwsrv.exe
-----------------------------------------------------
Process ID = 0x000004d0
Thread count= 12
Parent process ID = 660
Priority Class = 32
(世)源清 - 2005-8-24 22:36:00
Modules:
------------------------------------
c:\program files\rising\rfw\rfwsrv.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\MFC42.DLL (0x73D30000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
c:\program files\rising\rfw\Rfwdrv.dll (0x10000000)
c:\program files\rising\rfw\psapi.dll (0x731B0000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
c:\program files\rising\rfw\rfwrule.dll (0x003F0000)
c:\program files\rising\rfw\rfwlog.dll (0x01030000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
=====================================================
PROCESS NAME: spoolsv.exe
-----------------------------------------------------
Process ID = 0x000005a0
Thread count= 11
Parent process ID = 660
Priority Class = 32
Modules:
------------------------------------
C:\WINDOWS\system32\spoolsv.exe (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\ShimEng.dll (0x5CC30000)
C:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\WINDOWS\system32\SPOOLSS.DLL (0x74240000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\WINDOWS\system32\localspl.dll (0x74C10000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\sfc_os.dll (0x76C30000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\winspool.drv (0x72F70000)
C:\WINDOWS\system32\netapi32.dll (0x5FDD0000)
C:\WINDOWS\system32\cnbjmon.dll (0x74200000)
C:\WINDOWS\system32\pjlmon.dll (0x741E0000)
C:\WINDOWS\system32\tcpmon.dll (0x72390000)
C:\WINDOWS\system32\usbmon.dll (0x72380000)
C:\WINDOWS\System32\spool\PRTPROCS\W32X86\vprproc.dll (0x00AC0000)
C:\WINDOWS\System32\mswsock.dll (0x719C0000)
C:\WINDOWS\System32\winrnr.dll (0x76F80000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\win32spl.dll (0x75AC0000)
C:\WINDOWS\system32\NETRAP.dll (0x71C00000)
C:\WINDOWS\system32\NTDSAPI.dll (0x76770000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\WINDOWS\system32\inetpp.dll (0x74260000)
=====================================================
PROCESS NAME: Explorer.EXE
-----------------------------------------------------
Process ID = 0x00000678
Thread count= 16
Parent process ID = 1620
Priority Class = 32
(世)源清 - 2005-8-24 22:36:00
Modules:
------------------------------------
C:\WINDOWS\Explorer.EXE (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\BROWSEUI.dll (0x75EF0000)
C:\WINDOWS\system32\SHDOCVW.dll (0x76370000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\CRYPTUI.dll (0x75430000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\ShimEng.dll (0x5CC30000)
C:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\appHelp.dll (0x76D70000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\System32\cscui.dll (0x76590000)
C:\WINDOWS\System32\CSCDLL.dll (0x76570000)
C:\WINDOWS\System32\themeui.dll (0x5B680000)
C:\WINDOWS\System32\Secur32.dll (0x77FC0000)
C:\WINDOWS\System32\MSIMG32.dll (0x762F0000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\WINDOWS\DOWNLO~1\CnsHook.dll (0x37260000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\System32\msutb.dll (0x5FE40000)
C:\WINDOWS\System32\MSCTF.dll (0x74680000)
C:\WINDOWS\system32\LINKINFO.dll (0x76950000)
C:\WINDOWS\system32\ntshrui.dll (0x76960000)
C:\WINDOWS\system32\ATL.DLL (0x76AF0000)
C:\WINDOWS\system32\WINSTA.dll (0x762D0000)
C:\WINDOWS\System32\webcheck.dll (0x74A90000)
C:\WINDOWS\System32\stobject.dll (0x74A60000)
C:\WINDOWS\System32\BatMeter.dll (0x74A50000)
C:\WINDOWS\System32\POWRPROF.dll (0x74A30000)
C:\WINDOWS\System32\WTSAPI32.dll (0x76F20000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\WINDOWS\system32\NETSHELL.dll (0x74770000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\WINDOWS\system32\credui.dll (0x76BD0000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\PROGRA~1\3721\alrex.dll (0x10000000)
C:\WINDOWS\system32\rsaenh.dll (0x0FFD0000)
C:\WINDOWS\system32\msi.dll (0x01890000)
C:\WINDOWS\system32\MPR.dll (0x71A90000)
C:\WINDOWS\System32\drprov.dll (0x75ED0000)
C:\WINDOWS\System32\ntlanman.dll (0x71B90000)
C:\WINDOWS\System32\NETUI0.dll (0x71C50000)
C:\WINDOWS\System32\NETUI1.dll (0x71C10000)
C:\WINDOWS\System32\NETRAP.dll (0x71C00000)
C:\WINDOWS\System32\SAMLIB.dll (0x71B70000)
C:\WINDOWS\System32\davclnt.dll (0x75EE0000)
C:\WINDOWS\system32\WZCSAPI.DLL (0x72FA0000)
C:\WINDOWS\system32\RASDLG.dll (0x754B0000)
C:\WINDOWS\system32\MPRAPI.dll (0x76D10000)
C:\WINDOWS\system32\ACTIVEDS.dll (0x77C90000)
C:\WINDOWS\system32\adsldpc.dll (0x76DE0000)
C:\WINDOWS\system32\RASAPI32.dll (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\RAVEXT.DLL (0x00EA0000)
C:\WINDOWS\system32\SXS.DLL (0x75E00000)
C:\WINDOWS\system32\shdoclc.dll (0x024A0000)
C:\WINDOWS\System32\zipfldr.dll (0x732F0000)
C:\WINDOWS\system32\shscrap.dll (0x5CB80000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\browselc.dll (0x01170000)
C:\PROGRA~1\3721\autolive.dll (0x02F40000)
C:\PROGRA~1\3721\alLiveEx.dll (0x02F70000)
C:\PROGRA~1\3721\Assist\asnoad.dll (0x02C60000)
C:\WINDOWS\system32\asycfilt.dll (0x70E20000)
C:\WINDOWS\System32\mshtml.dll (0x7CC80000)
C:\WINDOWS\System32\msls31.dll (0x74620000)
C:\WINDOWS\system32\DUSER.dll (0x6C520000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (0x4AE90000)
C:\WINDOWS\system32\mscms.dll (0x73AA0000)
C:\WINDOWS\system32\WINSPOOL.DRV (0x72F70000)
C:\WINDOWS\system32\NTMARTA.DLL (0x76CB0000)
c:\progra~1\3721\assist\adfilter.dll (0x025A0000)
C:\PROGRA~1\3721\Assist\repair.dll (0x04440000)
C:\PROGRA~1\3721\Assist\optimum.dll (0x030A0000)
C:\PROGRA~1\3721\Assist\XPStyle.dll (0x030C0000)
C:\PROGRA~1\3721\Assist\assecblk.dll (0x03D10000)
C:\WINDOWS\system32\MSGINA.dll (0x758D0000)
C:\WINDOWS\system32\ODBC32.dll (0x73540000)
C:\WINDOWS\system32\odbcint.dll (0x02C10000)
C:\WINDOWS\system32\MLANG.dll (0x74CF0000)
C:\WINDOWS\system32\WINHTTP.dll (0x4A410000)
C:\WINDOWS\system32\DSOUND.dll (0x73E70000)
C:\WINDOWS\HKNTDLL.dll (0x1C000000)
C:\WINDOWS\System32\shimgvw.dll (0x5CBC0000)
C:\WINDOWS\System32\actxprxy.dll (0x71CC0000)
C:\WINDOWS\system32\MFC42.DLL (0x73D30000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\WINDOWS\System32\ddrawex.dll (0x6D7C0000)
C:\WINDOWS\System32\DDRAW.dll (0x736D0000)
C:\WINDOWS\System32\DCIMAN32.dll (0x73B30000)
C:\Program Files\Rising\Rav\RavScrCh.dll (0x04F50000)
C:\WINDOWS\system32\vbscript.dll (0x73270000)
C:\WINDOWS\system32\jscript.dll (0x75BC0000)
C:\WINDOWS\system32\msadp32.acm (0x72C60000)
C:\Program Files\3721\Assist\asbar.dll (0x37190000)
C:\PROGRA~1\3721\Assist\tbwrap.dll (0x02390000)
C:\PROGRA~1\3721\Assist\aswiper.dll (0x02690000)
C:\PROGRA~1\3721\Assist\asiesec.dll (0x02F00000)
C:\WINDOWS\system32\xunleibho_v5.dll (0x03A10000)
C:\PROGRA~1\yisou\yisoub.dll (0x02C50000)
C:\WINDOWS\system32\diskcopy.dll (0x6CFE0000)
C:\WINDOWS\System32\sendmail.dll (0x5CE80000)
C:\WINDOWS\System32\mydocs.dll (0x723A0000)
C:\WINDOWS\System32\shgina.dll (0x73CE0000)
=====================================================
PROCESS NAME: Rundll32.exe
-----------------------------------------------------
WARNING: OpenProcess failed with error 5 ()
Process ID = 0x000006bc
Thread count= 4
Parent process ID = 1656
Modules:
------------------------------------
=====================================================
PROCESS NAME: RfwMain.exe
-----------------------------------------------------
Process ID = 0x000006e8
Thread count= 3
Parent process ID = 1232
Priority Class = 32
(世)源清 - 2005-8-24 22:37:00
Modules:
------------------------------------
c:\program files\rising\rfw\RfwMain.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\MFC42.DLL (0x73D30000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
c:\program files\rising\rfw\RsGuiLib.dll (0x10000000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
c:\program files\rising\rfw\RSCOMMON.DLL (0x00990000)
c:\program files\rising\rfw\PngDll.dll (0x00BC0000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
c:\program files\rising\rfw\PSAPI.DLL (0x731B0000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\sfc.dll (0x76B80000)
C:\WINDOWS\system32\sfc_os.dll (0x76C30000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\Apphelp.dll (0x76D70000)
C:\WINDOWS\system32\winmm.dll (0x76B10000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
=====================================================
PROCESS NAME: LHotkey.exe
-----------------------------------------------------
Process ID = 0x00000710
Thread count= 1
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\WINDOWS\LHotkey.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\HKNTDLL.dll (0x1C000000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\MSVCRT.dll (0x77BE0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
=====================================================
PROCESS NAME: LCC.exe
-----------------------------------------------------
Process ID = 0x00000718
Thread count= 2
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\Program Files\Lenovo\联想键盘驱动\LCC.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\WINSPOOL.DRV (0x72F70000)
C:\WINDOWS\system32\RASAPI32.dll (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\RASDLG.dll (0x754B0000)
C:\WINDOWS\system32\MPRAPI.dll (0x76D10000)
C:\WINDOWS\system32\ACTIVEDS.dll (0x77C90000)
C:\WINDOWS\system32\adsldpc.dll (0x76DE0000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\ATL.DLL (0x76AF0000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\SAMLIB.dll (0x71B70000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
=====================================================
PROCESS NAME: VTTimer.exe
-----------------------------------------------------
Process ID = 0x00000724
Thread count= 1
Parent process ID = 1656
Priority Class = 32
(世)源清 - 2005-8-24 22:37:00
Modules:
------------------------------------
C:\WINDOWS\system32\VTTimer.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\NTMARTA.DLL (0x76CB0000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\SAMLIB.dll (0x71B70000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
=====================================================
PROCESS NAME: SOUNDMAN.EXE
-----------------------------------------------------
Process ID = 0x0000072c
Thread count= 2
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\WINDOWS\SOUNDMAN.EXE (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\HID.DLL (0x68BE0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
=====================================================
PROCESS NAME: realsched.exe
-----------------------------------------------------
Process ID = 0x00000734
Thread count= 4
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\Program Files\Common Files\Real\Update_OB\realsched.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\shell32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\NTMARTA.DLL (0x76CB0000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\SAMLIB.dll (0x71B70000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
=====================================================
PROCESS NAME: RavTimer.exe
-----------------------------------------------------
Process ID = 0x00000764
Thread count= 2
Parent process ID = 1656
Priority Class = 64
Modules:
------------------------------------
C:\PROGRA~1\RISING\RAV\RAVTIMER.EXE (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\PROGRA~1\RISING\RAV\RSCOMMON.DLL (0x10000000)
C:\PROGRA~1\RISING\RAV\RSAPPMGR.DLL (0x00B20000)
C:\PROGRA~1\RISING\RAV\CfgDll.dll (0x08B40000)
C:\PROGRA~1\RISING\RAV\RsCommX.dll (0x08CB0000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\ODBC32.dll (0x73540000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\odbcint.dll (0x20000000)
C:\WINDOWS\system32\odbccp32.dll (0x4D3D0000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\VBAJET32.DLL (0x0F9A0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\WINDOWS\system32\wsock32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\RASAPI32.DLL (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\sensapi.dll (0x72240000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\System32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\Apphelp.dll (0x76D70000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
=====================================================
PROCESS NAME: MINIPP.exe
-----------------------------------------------------
Process ID = 0x00000118
Thread count= 6
Parent process ID = 1656
Priority Class = 32
(世)源清 - 2005-8-24 22:38:00
Modules:
------------------------------------
C:\Program Files\MINIPP\MINIPP.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\OLEPRO32.DLL (0x5EFE0000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\Program Files\MINIPP\boost_thread-vc6-mt-1_31.dll (0x10000000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\System32\winrnr.dll (0x76F80000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\WINDOWS\system32\asycfilt.dll (0x70E20000)
C:\WINDOWS\system32\appHelp.dll (0x76D70000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\ntshrui.dll (0x76960000)
C:\WINDOWS\system32\ATL.DLL (0x76AF0000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\WINDOWS\system32\MPR.dll (0x71A90000)
C:\WINDOWS\System32\drprov.dll (0x75ED0000)
C:\WINDOWS\System32\ntlanman.dll (0x71B90000)
C:\WINDOWS\System32\NETUI0.dll (0x71C50000)
C:\WINDOWS\System32\NETUI1.dll (0x71C10000)
C:\WINDOWS\System32\NETRAP.dll (0x71C00000)
C:\WINDOWS\System32\SAMLIB.dll (0x71B70000)
C:\WINDOWS\System32\davclnt.dll (0x75EE0000)
C:\WINDOWS\system32\MSGINA.dll (0x758D0000)
C:\WINDOWS\system32\WINSTA.dll (0x762D0000)
C:\WINDOWS\system32\ODBC32.dll (0x73540000)
C:\WINDOWS\system32\odbcint.dll (0x01E80000)
C:\WINDOWS\system32\rsaenh.dll (0x0FFD0000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\WINDOWS\system32\RASAPI32.DLL (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\wsock32.dll (0x71A40000)
=====================================================
PROCESS NAME: Rundll32.exe
-----------------------------------------------------
Process ID = 0x00000234
Thread count= 1
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\WINDOWS\system32\rundll32.exe (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\ShimEng.dll (0x5CC30000)
C:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\PROGRA~1\3721\autolive.dll (0x10000000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\PROGRA~1\3721\alLiveEx.dll (0x00A30000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\RASAPI32.DLL (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\sensapi.dll (0x72240000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\PROGRA~1\3721\notifier.dll (0x00B70000)
=====================================================
PROCESS NAME: BCUP.exe
-----------------------------------------------------
Process ID = 0x00000240
Thread count= 2
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\WINDOWS\system32\BCUP.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\WINSPOOL.DRV (0x72F70000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\System32\winrnr.dll (0x76F80000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
=====================================================
PROCESS NAME: assistse.exe
-----------------------------------------------------
Process ID = 0x000002e4
Thread count= 2
Parent process ID = 1656
Priority Class = 32
(世)源清 - 2005-8-24 22:38:00
Modules:
------------------------------------
C:\PROGRA~1\3721\assistse.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\PROGRA~1\3721\shell\Assecblk.dll (0x10000000)
C:\PROGRA~1\3721\shell\MenuInfo.dll (0x00B10000)
C:\WINDOWS\system32\SensApi.dll (0x72240000)
C:\PROGRA~1\3721\shell\IEAngel.dll (0x00B20000)
C:\PROGRA~1\3721\shell\AsMenu.dll (0x00B30000)
C:\PROGRA~1\3721\Assist\assist.dll (0x00B40000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
=====================================================
PROCESS NAME: SysExplr.exe
-----------------------------------------------------
Process ID = 0x000004ec
Thread count= 1
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\Herosoft\HeroV8\SysExplr.EXE (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\WinSxS\X86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\COMCTL32.dll (0x77180000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\Herosoft\HeroV8\HttpReq.dll (0x10000000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\Herosoft\HeroV8\CoolMenu.dll (0x00380000)
C:\Herosoft\HeroV8\httphlp.dll (0x00390000)
C:\Herosoft\HeroV8\AVCDROM.dll (0x003A0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\Herosoft\HeroV8\Sys936.DLL (0x00AB0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
=====================================================
PROCESS NAME: ctfmon.exe
-----------------------------------------------------
Process ID = 0x00000544
Thread count= 1
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\WINDOWS\system32\ctfmon.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\WINDOWS\system32\MSUTB.dll (0x5FE40000)
C:\WINDOWS\system32\ShimEng.dll (0x5CC30000)
C:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
=====================================================
PROCESS NAME: msmsgs.exe
-----------------------------------------------------
Process ID = 0x0000054c
Thread count= 2
Parent process ID = 1656
Priority Class = 32
(世)源清 - 2005-8-24 22:38:00
Modules:
------------------------------------
C:\Program Files\Messenger\msmsgs.exe (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\WinSxS\X86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\COMCTL32.dll (0x77180000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (0x4AE90000)
C:\WINDOWS\system32\MSIMG32.dll (0x762F0000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\cryptdll.dll (0x76760000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\XPOB2RES.DLL (0x20000000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\xpsp2res.dll (0x00950000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\SXS.DLL (0x75E00000)
C:\WINDOWS\System32\es.dll (0x768A0000)
C:\WINDOWS\system32\wtsapi32.dll (0x76F20000)
C:\WINDOWS\system32\WINSTA.dll (0x762D0000)
C:\WINDOWS\system32\credui.dll (0x76BD0000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
=====================================================
PROCESS NAME: Thunder.exe
-----------------------------------------------------
Process ID = 0x000002cc
Thread count= 11
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\Program Files\Thunder\Thunder.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\Program Files\Thunder\log4cplus.dll (0x10000000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\Program Files\Thunder\ICF.dll (0x00380000)
C:\WINDOWS\system32\MFC42.DLL (0x73D30000)
C:\Program Files\Thunder\WebBrowserEx.dll (0x00390000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\COMCTL32.dll (0x77180000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\Program Files\Thunder\boost_thread-vc6-mt-1_31.dll (0x003A0000)
C:\Program Files\Thunder\dbghelp.dll (0x72960000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\SHFolder.dll (0x76750000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\WINDOWS\system32\LINKINFO.dll (0x76950000)
C:\WINDOWS\system32\ntshrui.dll (0x76960000)
C:\WINDOWS\system32\ATL.DLL (0x76AF0000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\System32\winrnr.dll (0x76F80000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\System32\shdocvw.dll (0x76370000)
C:\WINDOWS\system32\CRYPTUI.dll (0x75430000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\WINDOWS\system32\SXS.DLL (0x75E00000)
C:\WINDOWS\system32\asycfilt.dll (0x70E20000)
C:\WINDOWS\system32\RASAPI32.DLL (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\WINDOWS\System32\netshell.dll (0x74770000)
C:\WINDOWS\System32\credui.dll (0x76BD0000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\System32\wbem\wbemprox.dll (0x74E50000)
C:\WINDOWS\System32\wbem\wbemcomn.dll (0x751F0000)
C:\WINDOWS\System32\shdoclc.dll (0x00EB0000)
C:\WINDOWS\system32\mlang.dll (0x74CF0000)
C:\WINDOWS\System32\wbem\wbemsvc.dll (0x74E30000)
C:\WINDOWS\System32\wbem\fastprox.dll (0x755F0000)
C:\WINDOWS\system32\NTDSAPI.dll (0x76770000)
C:\WINDOWS\System32\netcfgx.dll (0x75550000)
C:\WINDOWS\System32\CLUSAPI.dll (0x762A0000)
C:\WINDOWS\System32\mshtml.dll (0x7CC80000)
C:\WINDOWS\System32\msls31.dll (0x74620000)
C:\WINDOWS\system32\sensapi.dll (0x72240000)
C:\WINDOWS\System32\msimtf.dll (0x74650000)
C:\WINDOWS\system32\appHelp.dll (0x76D70000)
C:\WINDOWS\HKNTDLL.dll (0x1C000000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\WINDOWS\system32\rsaenh.dll (0x0FFD0000)
=====================================================
PROCESS NAME: QQ.exe
-----------------------------------------------------
Process ID = 0x0000060c
Thread count= 11
Parent process ID = 1656
Priority Class = 32
(世)源清 - 2005-8-24 22:45:00
WARNING: OpenProcess failed with error 5 ()
Process ID = 0x00000848
Thread count= 3
Parent process ID = 660
Modules:
------------------------------------
=====================================================
PROCESS NAME: iexplore.exe
-----------------------------------------------------
Process ID = 0x00000754
Thread count= 14
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\Program Files\Internet Explorer\iexplore.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\SHDOCVW.dll (0x76370000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\CRYPTUI.dll (0x75430000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\PROGRA~1\3721\scrblock.dll (0x10000000)
C:\PROGRA~1\3721\alrex.dll (0x00A60000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\DOWNLO~1\CnsHint.dll (0x00A70000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\BROWSEUI.dll (0x75EF0000)
C:\WINDOWS\system32\browselc.dll (0x20000000)
C:\PROGRA~1\3721\autolive.dll (0x00AD0000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\PROGRA~1\3721\alLiveEx.dll (0x00B10000)
C:\WINDOWS\system32\appHelp.dll (0x76D70000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\DOWNLO~1\cnsplus.dll (0x00BA0000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\System32\cscui.dll (0x76590000)
C:\WINDOWS\System32\CSCDLL.dll (0x76570000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
c:\program files\google\googletoolbar.dll (0x00F90000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\rsaenh.dll (0x0FFD0000)
C:\WINDOWS\system32\RASAPI32.DLL (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\Program Files\3721\Assist\asbar.dll (0x37190000)
C:\PROGRA~1\3721\Assist\tbwrap.dll (0x01140000)
C:\PROGRA~1\3721\Assist\asnoad.dll (0x01190000)
C:\WINDOWS\system32\asycfilt.dll (0x70E20000)
C:\WINDOWS\System32\mshtml.dll (0x7CC80000)
C:\WINDOWS\System32\msls31.dll (0x74620000)
C:\PROGRA~1\3721\Assist\aswiper.dll (0x01BF0000)
C:\PROGRA~1\3721\Assist\asiesec.dll (0x01C30000)
C:\Program Files\yisou\yisou.dll (0x01CC0000)
C:\WINDOWS\WORLD2\TOOLBAR\hmtoolbar.dll (0x01D00000)
C:\WINDOWS\System32\msxml3.dll (0x5DD50000)
C:\WINDOWS\system32\WINHTTP.dll (0x4A410000)
C:\WINDOWS\System32\mlang.dll (0x74CF0000)
C:\WINDOWS\system32\xunleibho_v5.dll (0x023D0000)
C:\WINDOWS\system32\MFC42.DLL (0x73D30000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\Program Files\Tencent\QQ\QQIEHelper.dll (0x023F0000)
C:\WINDOWS\system32\OLEACC.dll (0x74BE0000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\WINDOWS\DOWNLO~1\CnsHook.dll (0x37260000)
C:\WINDOWS\system32\SXS.DLL (0x75E00000)
C:\PROGRA~1\yisou\yisoub.dll (0x024C0000)
C:\WINDOWS\system32\shdoclc.dll (0x024E0000)
C:\WINDOWS\system32\xpsp2res.dll (0x02560000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\WINDOWS\System32\msimtf.dll (0x74650000)
C:\Program Files\Rising\Rav\RavScrCh.dll (0x010F0000)
C:\WINDOWS\system32\vbscript.dll (0x73270000)
C:\WINDOWS\system32\jscript.dll (0x75BC0000)
C:\WINDOWS\System32\iepeers.dll (0x67140000)
C:\WINDOWS\System32\WINSPOOL.DRV (0x72F70000)
C:\WINDOWS\DOWNLO~1\CnsMinIO.dll (0x02CB0000)
C:\WINDOWS\DOWNLO~1\cnsio.dll (0x02CD0000)
C:\WINDOWS\HKNTDLL.dll (0x1C000000)
C:\WINDOWS\system32\MPR.dll (0x71A90000)
C:\WINDOWS\System32\drprov.dll (0x75ED0000)
C:\WINDOWS\System32\ntlanman.dll (0x71B90000)
C:\WINDOWS\System32\NETUI0.dll (0x71C50000)
C:\WINDOWS\System32\NETUI1.dll (0x71C10000)
C:\WINDOWS\System32\NETRAP.dll (0x71C00000)
C:\WINDOWS\System32\SAMLIB.dll (0x71B70000)
C:\WINDOWS\System32\davclnt.dll (0x75EE0000)
C:\WINDOWS\system32\MSGINA.dll (0x758D0000)
C:\WINDOWS\system32\WINSTA.dll (0x762D0000)
C:\WINDOWS\system32\ODBC32.dll (0x73540000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\odbcint.dll (0x03C60000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\WINDOWS\system32\macromed\flash\flash.ocx (0x04490000)
C:\WINDOWS\System32\ddrawex.dll (0x6D7C0000)
C:\WINDOWS\System32\DDRAW.dll (0x736D0000)
C:\WINDOWS\System32\DCIMAN32.dll (0x73B30000)
C:\WINDOWS\System32\mshtmled.dll (0x753B0000)
C:\WINDOWS\System32\actxprxy.dll (0x71CC0000)
c:\progra~1\3721\assist\adfilter.dll (0x07830000)
C:\PROGRA~1\3721\Assist\repair.dll (0x07850000)
C:\PROGRA~1\3721\Assist\optimum.dll (0x07900000)
C:\PROGRA~1\3721\Assist\XPStyle.dll (0x07950000)
C:\PROGRA~1\3721\Assist\assecblk.dll (0x07A00000)
C:\WINDOWS\system32\ImgUtil.dll (0x66B50000)
C:\WINDOWS\system32\winabc.ime (0x4A3E0000)
C:\WINDOWS\system32\ntshrui.dll (0x76960000)
C:\WINDOWS\system32\ATL.DLL (0x76AF0000)
C:\WINDOWS\system32\LINKINFO.dll (0x76950000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (0x4AE90000)
C:\WINDOWS\system32\mscms.dll (0x73AA0000)
C:\WINDOWS\system32\MSRATING.dll (0x60150000)
C:\WINDOWS\system32\msratelc.dll (0x60180000)
C:\PROGRA~1\Tencent\QQ\CPHelper.dll (0x600B0000)
C:\Program Files\Tencent\QQ\TIMProxy.dll (0x60400000)
C:\WINDOWS\system32\msi.dll (0x0A760000)
C:\WINDOWS\system32\plugin.ocx (0x72A90000)
C:\WINDOWS\system32\NTMARTA.DLL (0x76CB0000)
C:\WINDOWS\system32\corpol.dll (0x6E830000)
C:\WINDOWS\system32\SOFTPUB.DLL (0x73240000)
C:\WINDOWS\system32\sfc_os.dll (0x76C30000)
=====================================================
PROCESS NAME: QQ.exe
-----------------------------------------------------
Process ID = 0x00000ae0
Thread count= 8
Parent process ID = 1656
Priority Class = 32
(世)源清 - 2005-8-24 22:45:00
Modules:
------------------------------------
C:\Program Files\Tencent\QQ\QQ.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll (0x10000000)
C:\Program Files\Tencent\QQ\QQHelperDll.dll (0x60860000)
C:\Program Files\Tencent\QQ\BasicCtrlDll.dll (0x00370000)
C:\Program Files\Tencent\QQ\MFC42.DLL (0x6BC40000)
C:\WINDOWS\system32\MSVCRT.dll (0x77BE0000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\OLEPRO32.DLL (0x5EFE0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSVFW32.dll (0x73B40000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\Program Files\Tencent\QQ\RICHED32.DLL (0x00AF0000)
C:\Program Files\Tencent\QQ\RICHED20.dll (0x74B80000)
C:\Program Files\Tencent\QQ\QQAPI.dll (0x60630000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\Program Files\Tencent\QQ\TIMProxy.dll (0x60400000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\SXS.DLL (0x75E00000)
C:\Program Files\Tencent\QQ\HostingMgr.dll (0x60170000)
C:\Program Files\Tencent\QQ\LoginCtrl.dll (0x60220000)
C:\WINDOWS\HKNTDLL.dll (0x1C000000)
C:\Program Files\Tencent\QQ\QQRes.dll (0x01800000)
C:\Program Files\Tencent\QQ\QQMainFrame.dll (0x608D0000)
C:\WINDOWS\system32\asycfilt.dll (0x70E20000)
C:\Program Files\Tencent\QQ\CQQApplication.dll (0x02220000)
C:\Program Files\Tencent\QQ\NewSkin.dll (0x60300000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\Program Files\Tencent\QQ\PersonalDesktop.dll (0x02300000)
C:\Program Files\Tencent\QQ\QQAddr.dll (0x02490000)
C:\Program Files\Tencent\QQ\QQSpace.dll (0x60F00000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\System32\winrnr.dll (0x76F80000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\Program Files\Tencent\QQ\BQQApplication.dll (0x60040000)
C:\WINDOWS\System32\shdocvw.dll (0x76370000)
C:\WINDOWS\system32\CRYPTUI.dll (0x75430000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\Program Files\Tencent\QQ\vbscript.dll (0x6B600000)
C:\Program Files\Tencent\QQ\VideoDevice.dll (0x02BD0000)
C:\Program Files\Tencent\QQ\inplus.dll (0x02F80000)
C:\WINDOWS\System32\devenum.dll (0x75AF0000)
C:\WINDOWS\system32\setupapi.dll (0x76060000)
C:\WINDOWS\system32\msdmo.dll (0x73620000)
C:\Program Files\Tencent\QQ\QQPlugin.dll (0x60AC0000)
C:\Program Files\Tencent\QQ\QQAvatar.dll (0x60660000)
C:\Program Files\Tencent\QQ\FlashAvatarDll.dll (0x01230000)
C:\Program Files\Tencent\QQ\QQConfigPlugin.dll (0x607E0000)
C:\WINDOWS\system32\DINPUT.dll (0x72210000)
C:\Program Files\Tencent\QQ\PhoneAPI.dll (0x603A0000)
C:\Program Files\Tencent\QQ\DialerAllinOne.dll (0x01B10000)
C:\WINDOWS\system32\HID.DLL (0x68BE0000)
C:\WINDOWS\system32\CFGMGR32.dll (0x74A40000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\Program Files\Tencent\QQ\UserDefinedHead.dll (0x610A0000)
C:\Program Files\Tencent\QQ\QRingMng.dll (0x60F40000)
C:\Program Files\Tencent\QQ\LongConnection.dll (0x01B80000)
C:\Program Files\Tencent\QQ\QQPet.dll (0x60AA0000)
C:\WINDOWS\system32\appHelp.dll (0x76D70000)
C:\WINDOWS\DOWNLO~1\CnsHook.dll (0x37260000)
C:\Program Files\Tencent\QQ\QQSceneMng.dll (0x60E80000)
C:\Program Files\Tencent\QQ\QQSysMsgMng.dll (0x60F20000)
C:\Program Files\Tencent\QQ\QQSettingCtrl.dll (0x60EA0000)
C:\Program Files\Tencent\QQ\QQAllInOne.dll (0x00C70000)
C:\WINDOWS\system32\MSIMG32.dll (0x762F0000)
C:\Program Files\Tencent\QQ\CameraDll.dll (0x00D90000)
C:\Program Files\Tencent\QQ\SCCore.dll (0x00DC0000)
C:\WINDOWS\system32\macromed\flash\flash.ocx (0x03560000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\mlang.dll (0x74CF0000)
C:\WINDOWS\system32\RASAPI32.DLL (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\Program Files\Tencent\QQ\AudioDevice.dll (0x00EC0000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
=====================================================
PROCESS NAME: QQ.exe
-----------------------------------------------------
Process ID = 0x00000a0c
Thread count= 11
Parent process ID = 1876
Priority Class = 32
Modules:
------------------------------------
C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
=====================================================
PROCESS NAME: alg.exe
-----------------------------------------------------
(世)源清 - 2005-8-24 22:46:00
Modules:
------------------------------------
C:\Program Files\Tencent\QQ\QQ.EXE (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll (0x10000000)
C:\Program Files\Tencent\QQ\QQHelperDll.dll (0x60860000)
C:\Program Files\Tencent\QQ\BasicCtrlDll.dll (0x00370000)
C:\Program Files\Tencent\QQ\MFC42.DLL (0x6BC40000)
C:\WINDOWS\system32\MSVCRT.dll (0x77BE0000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\OLEPRO32.DLL (0x5EFE0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSVFW32.dll (0x73B40000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\Program Files\Tencent\QQ\RICHED32.DLL (0x00AF0000)
C:\Program Files\Tencent\QQ\RICHED20.dll (0x74B80000)
C:\Program Files\Tencent\QQ\QQAPI.dll (0x60630000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\Program Files\Tencent\QQ\TIMProxy.dll (0x60400000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\SXS.DLL (0x75E00000)
C:\Program Files\Tencent\QQ\HostingMgr.dll (0x60170000)
C:\Program Files\Tencent\QQ\LoginCtrl.dll (0x60220000)
C:\WINDOWS\HKNTDLL.dll (0x1C000000)
C:\Program Files\Tencent\QQ\QQRes.dll (0x01700000)
C:\Program Files\Tencent\QQ\QQMainFrame.dll (0x608D0000)
C:\WINDOWS\system32\asycfilt.dll (0x70E20000)
C:\Program Files\Tencent\QQ\CQQApplication.dll (0x02120000)
C:\Program Files\Tencent\QQ\NewSkin.dll (0x60300000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\Program Files\Tencent\QQ\PersonalDesktop.dll (0x02090000)
C:\Program Files\Tencent\QQ\QQAddr.dll (0x02390000)
C:\Program Files\Tencent\QQ\QQSpace.dll (0x60F00000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\System32\winrnr.dll (0x76F80000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\Program Files\Tencent\QQ\BQQApplication.dll (0x60040000)
C:\WINDOWS\System32\shdocvw.dll (0x76370000)
C:\WINDOWS\system32\CRYPTUI.dll (0x75430000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\Program Files\Tencent\QQ\vbscript.dll (0x6B600000)
C:\Program Files\Tencent\QQ\VideoDevice.dll (0x02AD0000)
C:\Program Files\Tencent\QQ\inplus.dll (0x02E80000)
C:\WINDOWS\System32\devenum.dll (0x75AF0000)
C:\WINDOWS\system32\setupapi.dll (0x76060000)
C:\WINDOWS\system32\msdmo.dll (0x73620000)
C:\Program Files\Tencent\QQ\QQPlugin.dll (0x60AC0000)
C:\Program Files\Tencent\QQ\UserDefinedHead.dll (0x610A0000)
C:\Program Files\Tencent\QQ\QQAvatar.dll (0x60660000)
C:\Program Files\Tencent\QQ\FlashAvatarDll.dll (0x01230000)
C:\Program Files\Tencent\QQ\QQConfigPlugin.dll (0x607E0000)
C:\WINDOWS\system32\DINPUT.dll (0x72210000)
C:\Program Files\Tencent\QQ\PhoneAPI.dll (0x603A0000)
C:\Program Files\Tencent\QQ\DialerAllinOne.dll (0x01A10000)
C:\WINDOWS\system32\HID.DLL (0x68BE0000)
C:\WINDOWS\system32\CFGMGR32.dll (0x74A40000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\Program Files\Tencent\QQ\QRingMng.dll (0x60F40000)
C:\Program Files\Tencent\QQ\LongConnection.dll (0x01A80000)
C:\Program Files\Tencent\QQ\QQPet.dll (0x60AA0000)
C:\Program Files\Tencent\QQ\QQAllInOne.dll (0x02F60000)
C:\WINDOWS\system32\MSIMG32.dll (0x762F0000)
C:\Program Files\Tencent\QQ\CameraDll.dll (0x020A0000)
C:\Program Files\Tencent\QQ\SCCore.dll (0x020D0000)
C:\Program Files\Tencent\QQ\QQCustomFace.dll (0x607F0000)
C:\WINDOWS\system32\msadp32.acm (0x72C60000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (0x4AE90000)
C:\Program Files\Tencent\QQ\QQMagicFace.dll (0x608C0000)
C:\WINDOWS\system32\macromed\flash\flash.ocx (0x03300000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\mlang.dll (0x74CF0000)
C:\Program Files\Tencent\QQ\QQSceneMng.dll (0x60E80000)
C:\WINDOWS\system32\appHelp.dll (0x76D70000)
C:\WINDOWS\DOWNLO~1\CnsHook.dll (0x37260000)
C:\Program Files\Tencent\QQ\GroupConnection.dll (0x03A90000)
C:\Program Files\Tencent\QQ\ImageOle.dll (0x60200000)
C:\Program Files\Tencent\QQ\QQSysMsgMng.dll (0x60F20000)
C:\WINDOWS\system32\winabc.ime (0x4A3E0000)
C:\Program Files\Tencent\QQ\QQFileTransfer.dll (0x00FF0000)
C:\Program Files\Tencent\QQGame\GameLogCore.Dll (0x02C80000)
C:\Program Files\Tencent\QQGame\VHelp.dll (0x00ED0000)
C:\Program Files\Tencent\QQGame\QQGameAvatarShow.dll (0x00F10000)
C:\Program Files\Tencent\QQGame\Core.dll (0x00EE0000)
C:\Program Files\Tencent\QQGame\NetCenter.dll (0x01020000)
C:\Program Files\Tencent\QQGame\CmdCenter.dll (0x01040000)
C:\Program Files\Tencent\QQGame\HelpDll.dll (0x03790000)
C:\Program Files\Tencent\QQGame\GameLogAidMgr.dll (0x02D50000)
C:\Program Files\Tencent\QQGame\Res.dll (0x03610000)
C:\Program Files\Tencent\QQGame\COMToolKit.dll (0x00EF0000)
C:\Program Files\Tencent\QQGame\QQGameAvatar.dll (0x03660000)
C:\WINDOWS\System32\mydocs.dll (0x723A0000)
C:\WINDOWS\system32\ntshrui.dll (0x76960000)
C:\WINDOWS\system32\ATL.DLL (0x76AF0000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\Program Files\Tencent\QQ\QQGroupMng.dll (0x60820000)
C:\WINDOWS\System32\shdoclc.dll (0x037E0000)
C:\WINDOWS\system32\RASAPI32.DLL (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\System32\mshtml.dll (0x7CC80000)
C:\WINDOWS\System32\msls31.dll (0x74620000)
C:\WINDOWS\System32\msimtf.dll (0x74650000)
C:\Program Files\Rising\Rav\RavScrCh.dll (0x00EA0000)
C:\WINDOWS\system32\vbscript.dll (0x73270000)
C:\WINDOWS\system32\jscript.dll (0x75BC0000)
C:\WINDOWS\System32\mshtmled.dll (0x753B0000)
C:\Program Files\Tencent\QQ\vqqset.dll (0x610D0000)
C:\Program Files\Tencent\QQ\MagicShowCtrl.dll (0x60280000)
C:\Program Files\Tencent\QQ\MagicShow.dll (0x03990000)
=====================================================
PROCESS NAME: QQ.exe
-----------------------------------------------------
Process ID = 0x000000b8
Thread count= 11
Parent process ID = 1876
Priority Class = 32
(世)源清 - 2005-8-24 22:46:00
Modules:
------------------------------------
C:\Program Files\Tencent\QQ\QQ.EXE (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll (0x10000000)
C:\Program Files\Tencent\QQ\QQHelperDll.dll (0x60860000)
C:\Program Files\Tencent\QQ\BasicCtrlDll.dll (0x00370000)
C:\Program Files\Tencent\QQ\MFC42.DLL (0x6BC40000)
C:\WINDOWS\system32\MSVCRT.dll (0x77BE0000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\OLEPRO32.DLL (0x5EFE0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSVFW32.dll (0x73B40000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\Program Files\Tencent\QQ\RICHED32.DLL (0x00AF0000)
C:\Program Files\Tencent\QQ\RICHED20.dll (0x74B80000)
C:\Program Files\Tencent\QQ\QQAPI.dll (0x60630000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\Program Files\Tencent\QQ\TIMProxy.dll (0x60400000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\SXS.DLL (0x75E00000)
C:\Program Files\Tencent\QQ\HostingMgr.dll (0x60170000)
C:\Program Files\Tencent\QQ\LoginCtrl.dll (0x60220000)
C:\WINDOWS\HKNTDLL.dll (0x1C000000)
C:\Program Files\Tencent\QQ\QQRes.dll (0x01700000)
C:\Program Files\Tencent\QQ\QQMainFrame.dll (0x608D0000)
C:\WINDOWS\system32\asycfilt.dll (0x70E20000)
C:\Program Files\Tencent\QQ\CQQApplication.dll (0x02120000)
C:\Program Files\Tencent\QQ\NewSkin.dll (0x60300000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\Program Files\Tencent\QQ\PersonalDesktop.dll (0x02090000)
C:\Program Files\Tencent\QQ\QQAddr.dll (0x02390000)
C:\Program Files\Tencent\QQ\QQSpace.dll (0x60F00000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\System32\winrnr.dll (0x76F80000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\Program Files\Tencent\QQ\BQQApplication.dll (0x60040000)
C:\WINDOWS\System32\shdocvw.dll (0x76370000)
C:\WINDOWS\system32\CRYPTUI.dll (0x75430000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\Program Files\Tencent\QQ\vbscript.dll (0x6B600000)
C:\Program Files\Tencent\QQ\VideoDevice.dll (0x02AD0000)
C:\Program Files\Tencent\QQ\inplus.dll (0x02E80000)
C:\WINDOWS\System32\devenum.dll (0x75AF0000)
C:\WINDOWS\system32\setupapi.dll (0x76060000)
C:\WINDOWS\system32\msdmo.dll (0x73620000)
C:\Program Files\Tencent\QQ\QQPlugin.dll (0x60AC0000)
C:\Program Files\Tencent\QQ\UserDefinedHead.dll (0x610A0000)
C:\Program Files\Tencent\QQ\QQAvatar.dll (0x60660000)
C:\Program Files\Tencent\QQ\FlashAvatarDll.dll (0x01230000)
C:\Program Files\Tencent\QQ\QQConfigPlugin.dll (0x607E0000)
C:\WINDOWS\system32\DINPUT.dll (0x72210000)
C:\Program Files\Tencent\QQ\PhoneAPI.dll (0x603A0000)
C:\Program Files\Tencent\QQ\DialerAllinOne.dll (0x01A10000)
C:\WINDOWS\system32\HID.DLL (0x68BE0000)
C:\WINDOWS\system32\CFGMGR32.dll (0x74A40000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\Program Files\Tencent\QQ\QRingMng.dll (0x60F40000)
C:\Program Files\Tencent\QQ\LongConnection.dll (0x01A80000)
C:\Program Files\Tencent\QQ\QQPet.dll (0x60AA0000)
C:\WINDOWS\system32\appHelp.dll (0x76D70000)
C:\WINDOWS\DOWNLO~1\CnsHook.dll (0x37260000)
C:\Program Files\Tencent\QQ\QQSceneMng.dll (0x60E80000)
C:\Program Files\Tencent\QQ\QQSysMsgMng.dll (0x60F20000)
C:\Program Files\Tencent\QQ\QQAllInOne.dll (0x02F60000)
C:\WINDOWS\system32\MSIMG32.dll (0x762F0000)
C:\Program Files\Tencent\QQ\CameraDll.dll (0x00C50000)
C:\Program Files\Tencent\QQ\SCCore.dll (0x00C80000)
C:\Program Files\Tencent\QQ\QQCustomFace.dll (0x607F0000)
C:\WINDOWS\system32\msadp32.acm (0x72C60000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (0x4AE90000)
C:\Program Files\Tencent\QQ\ImageOle.dll (0x60200000)
C:\Program Files\Tencent\QQ\QQMagicFace.dll (0x608C0000)
C:\WINDOWS\system32\macromed\flash\flash.ocx (0x03180000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\mlang.dll (0x74CF0000)
C:\WINDOWS\system32\winabc.ime (0x4A3E0000)
C:\Program Files\Tencent\QQ\GroupConnection.dll (0x02B30000)
C:\Program Files\Tencent\QQGame\GameLogCore.Dll (0x04230000)
C:\Program Files\Tencent\QQGame\VHelp.dll (0x035F0000)
C:\Program Files\Tencent\QQGame\QQGameAvatarShow.dll (0x04300000)
C:\Program Files\Tencent\QQGame\Core.dll (0x03600000)
C:\Program Files\Tencent\QQGame\NetCenter.dll (0x04340000)
C:\Program Files\Tencent\QQGame\CmdCenter.dll (0x04360000)
C:\Program Files\Tencent\QQGame\HelpDll.dll (0x04390000)
C:\Program Files\Tencent\QQGame\GameLogAidMgr.dll (0x043E0000)
C:\Program Files\Tencent\QQGame\Res.dll (0x04400000)
C:\Program Files\Tencent\QQGame\COMToolKit.dll (0x03B10000)
C:\Program Files\Tencent\QQGame\QQGameAvatar.dll (0x04440000)
C:\WINDOWS\system32\RASAPI32.DLL (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\System32\shdoclc.dll (0x03F80000)
C:\WINDOWS\System32\mshtml.dll (0x7CC80000)
C:\WINDOWS\System32\msls31.dll (0x74620000)
C:\WINDOWS\System32\msimtf.dll (0x74650000)
C:\Program Files\Rising\Rav\RavScrCh.dll (0x04150000)
C:\WINDOWS\system32\vbscript.dll (0x73270000)
C:\WINDOWS\system32\jscript.dll (0x75BC0000)
C:\WINDOWS\System32\mshtmled.dll (0x753B0000)
C:\Program Files\Tencent\QQ\MagicShowCtrl.dll (0x60280000)
C:\Program Files\Tencent\QQ\MagicShow.dll (0x04090000)
C:\Program Files\Tencent\QQ\QQFileTransfer.dll (0x03510000)
C:\Program Files\Tencent\QQ\QQSettingCtrl.dll (0x60EA0000)
C:\Program Files\Tencent\QQ\AudioDevice.dll (0x00EB0000)
=====================================================
PROCESS NAME: QQ.exe
-----------------------------------------------------
Process ID = 0x00000b8c
Thread count= 9
Parent process ID = 1876
Priority Class = 32
(世)源清 - 2005-8-24 22:47:00
Modules:
------------------------------------
C:\Program Files\Tencent\QQ\QQ.EXE (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll (0x10000000)
C:\Program Files\Tencent\QQ\QQHelperDll.dll (0x60860000)
C:\Program Files\Tencent\QQ\BasicCtrlDll.dll (0x00370000)
C:\Program Files\Tencent\QQ\MFC42.DLL (0x6BC40000)
C:\WINDOWS\system32\MSVCRT.dll (0x77BE0000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\OLEPRO32.DLL (0x5EFE0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSVFW32.dll (0x73B40000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\Program Files\Tencent\QQ\RICHED32.DLL (0x00AF0000)
C:\Program Files\Tencent\QQ\RICHED20.dll (0x74B80000)
C:\Program Files\Tencent\QQ\QQAPI.dll (0x60630000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\Program Files\Tencent\QQ\TIMProxy.dll (0x60400000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\SXS.DLL (0x75E00000)
C:\Program Files\Tencent\QQ\HostingMgr.dll (0x60170000)
C:\Program Files\Tencent\QQ\LoginCtrl.dll (0x60220000)
C:\WINDOWS\HKNTDLL.dll (0x1C000000)
C:\Program Files\Tencent\QQ\QQRes.dll (0x01700000)
C:\Program Files\Tencent\QQ\QQMainFrame.dll (0x608D0000)
C:\WINDOWS\system32\asycfilt.dll (0x70E20000)
C:\Program Files\Tencent\QQ\CQQApplication.dll (0x02090000)
C:\Program Files\Tencent\QQ\NewSkin.dll (0x60300000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\Program Files\Tencent\QQ\PersonalDesktop.dll (0x02180000)
C:\Program Files\Tencent\QQ\QQAddr.dll (0x02310000)
C:\Program Files\Tencent\QQ\QQSpace.dll (0x60F00000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\System32\winrnr.dll (0x76F80000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\Program Files\Tencent\QQ\BQQApplication.dll (0x60040000)
C:\WINDOWS\System32\shdocvw.dll (0x76370000)
C:\WINDOWS\system32\CRYPTUI.dll (0x75430000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\Program Files\Tencent\QQ\vbscript.dll (0x6B600000)
C:\Program Files\Tencent\QQ\VideoDevice.dll (0x02A50000)
C:\Program Files\Tencent\QQ\inplus.dll (0x02E00000)
C:\WINDOWS\System32\devenum.dll (0x75AF0000)
C:\WINDOWS\system32\setupapi.dll (0x76060000)
C:\WINDOWS\system32\msdmo.dll (0x73620000)
C:\Program Files\Tencent\QQ\QQPlugin.dll (0x60AC0000)
C:\Program Files\Tencent\QQ\UserDefinedHead.dll (0x610A0000)
C:\Program Files\Tencent\QQ\QQConfigPlugin.dll (0x607E0000)
C:\WINDOWS\system32\DINPUT.dll (0x72210000)
C:\Program Files\Tencent\QQ\QQAvatar.dll (0x60660000)
C:\Program Files\Tencent\QQ\FlashAvatarDll.dll (0x01230000)
C:\Program Files\Tencent\QQ\PhoneAPI.dll (0x603A0000)
C:\Program Files\Tencent\QQ\DialerAllinOne.dll (0x01A10000)
C:\WINDOWS\system32\HID.DLL (0x68BE0000)
C:\WINDOWS\system32\CFGMGR32.dll (0x74A40000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\Program Files\Tencent\QQ\QRingMng.dll (0x60F40000)
C:\Program Files\Tencent\QQ\LongConnection.dll (0x01A80000)
C:\Program Files\Tencent\QQ\QQPet.dll (0x60AA0000)
C:\WINDOWS\system32\appHelp.dll (0x76D70000)
C:\WINDOWS\DOWNLO~1\CnsHook.dll (0x37260000)
C:\Program Files\Tencent\QQ\QQSceneMng.dll (0x60E80000)
C:\Program Files\Tencent\QQ\QQSysMsgMng.dll (0x60F20000)
C:\Program Files\Tencent\QQ\QQAllInOne.dll (0x02EE0000)
C:\WINDOWS\system32\MSIMG32.dll (0x762F0000)
C:\Program Files\Tencent\QQ\CameraDll.dll (0x00E50000)
C:\Program Files\Tencent\QQ\SCCore.dll (0x00E80000)
C:\Program Files\Tencent\QQGame\GameLogCore.Dll (0x00F70000)
C:\Program Files\Tencent\QQGame\VHelp.dll (0x00F30000)
C:\Program Files\Tencent\QQGame\QQGameAvatarShow.dll (0x02A90000)
C:\Program Files\Tencent\QQGame\Core.dll (0x01040000)
C:\Program Files\Tencent\QQGame\NetCenter.dll (0x01050000)
C:\Program Files\Tencent\QQGame\CmdCenter.dll (0x02C00000)
C:\Program Files\Tencent\QQGame\HelpDll.dll (0x02C30000)
C:\Program Files\Tencent\QQGame\GameLogAidMgr.dll (0x02AD0000)
C:\Program Files\Tencent\QQGame\Res.dll (0x02C80000)
C:\Program Files\Tencent\QQGame\COMToolKit.dll (0x02A70000)
C:\Program Files\Tencent\QQGame\QQGameAvatar.dll (0x02CC0000)
C:\Program Files\Tencent\QQ\QQFileTransfer.dll (0x00C50000)
C:\Program Files\Tencent\QQ\QQCustomFace.dll (0x607F0000)
C:\WINDOWS\system32\msadp32.acm (0x72C60000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (0x4AE90000)
C:\Program Files\Tencent\QQ\QQMagicFace.dll (0x608C0000)
C:\WINDOWS\system32\macromed\flash\flash.ocx (0x03700000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\mlang.dll (0x74CF0000)
C:\Program Files\Tencent\QQ\GroupConnection.dll (0x039E0000)
C:\WINDOWS\system32\winabc.ime (0x4A3E0000)
=====================================================
PROCESS NAME: QQ.exe
-----------------------------------------------------
Process ID = 0x00000888
Thread count= 9
Parent process ID = 1876
Priority Class = 32
(世)源清 - 2005-8-24 22:47:00
Modules:
------------------------------------
C:\Program Files\Tencent\QQ\QQ.EXE (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll (0x10000000)
C:\Program Files\Tencent\QQ\QQHelperDll.dll (0x60860000)
C:\Program Files\Tencent\QQ\BasicCtrlDll.dll (0x00370000)
C:\Program Files\Tencent\QQ\MFC42.DLL (0x6BC40000)
C:\WINDOWS\system32\MSVCRT.dll (0x77BE0000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\OLEPRO32.DLL (0x5EFE0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSVFW32.dll (0x73B40000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\Program Files\Tencent\QQ\RICHED32.DLL (0x00AF0000)
C:\Program Files\Tencent\QQ\RICHED20.dll (0x74B80000)
C:\Program Files\Tencent\QQ\QQAPI.dll (0x60630000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\Program Files\Tencent\QQ\TIMProxy.dll (0x60400000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\SXS.DLL (0x75E00000)
C:\Program Files\Tencent\QQ\HostingMgr.dll (0x60170000)
C:\Program Files\Tencent\QQ\LoginCtrl.dll (0x60220000)
C:\WINDOWS\HKNTDLL.dll (0x1C000000)
C:\Program Files\Tencent\QQ\QQRes.dll (0x01700000)
C:\Program Files\Tencent\QQ\QQMainFrame.dll (0x608D0000)
C:\WINDOWS\system32\asycfilt.dll (0x70E20000)
C:\Program Files\Tencent\QQ\CQQApplication.dll (0x02120000)
C:\Program Files\Tencent\QQ\NewSkin.dll (0x60300000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\Program Files\Tencent\QQ\PersonalDesktop.dll (0x02090000)
C:\Program Files\Tencent\QQ\QQAddr.dll (0x02390000)
C:\Program Files\Tencent\QQ\QQSpace.dll (0x60F00000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\System32\winrnr.dll (0x76F80000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\Program Files\Tencent\QQ\BQQApplication.dll (0x60040000)
C:\WINDOWS\System32\shdocvw.dll (0x76370000)
C:\WINDOWS\system32\CRYPTUI.dll (0x75430000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\urlmon.dll (0x75C60000)
C:\Program Files\Tencent\QQ\vbscript.dll (0x6B600000)
C:\Program Files\Tencent\QQ\VideoDevice.dll (0x02AD0000)
C:\Program Files\Tencent\QQ\inplus.dll (0x02E80000)
C:\WINDOWS\System32\devenum.dll (0x75AF0000)
C:\WINDOWS\system32\setupapi.dll (0x76060000)
C:\WINDOWS\system32\msdmo.dll (0x73620000)
C:\Program Files\Tencent\QQ\QQPlugin.dll (0x60AC0000)
C:\Program Files\Tencent\QQ\UserDefinedHead.dll (0x610A0000)
C:\Program Files\Tencent\QQ\QQAvatar.dll (0x60660000)
C:\Program Files\Tencent\QQ\FlashAvatarDll.dll (0x01230000)
C:\Program Files\Tencent\QQ\QQConfigPlugin.dll (0x607E0000)
C:\WINDOWS\system32\DINPUT.dll (0x72210000)
C:\Program Files\Tencent\QQ\PhoneAPI.dll (0x603A0000)
C:\Program Files\Tencent\QQ\DialerAllinOne.dll (0x01A10000)
C:\WINDOWS\system32\HID.DLL (0x68BE0000)
C:\WINDOWS\system32\CFGMGR32.dll (0x74A40000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\Program Files\Tencent\QQ\QRingMng.dll (0x60F40000)
C:\Program Files\Tencent\QQ\LongConnection.dll (0x01A80000)
C:\Program Files\Tencent\QQ\QQPet.dll (0x60AA0000)
C:\WINDOWS\system32\appHelp.dll (0x76D70000)
C:\WINDOWS\DOWNLO~1\CnsHook.dll (0x37260000)
C:\Program Files\Tencent\QQ\QQSceneMng.dll (0x60E80000)
C:\Program Files\Tencent\QQ\QQSysMsgMng.dll (0x60F20000)
C:\Program Files\Tencent\QQ\QQAllInOne.dll (0x02F60000)
C:\WINDOWS\system32\MSIMG32.dll (0x762F0000)
C:\Program Files\Tencent\QQ\CameraDll.dll (0x00D50000)
C:\Program Files\Tencent\QQ\SCCore.dll (0x00D80000)
C:\Program Files\Tencent\QQ\QQCustomFace.dll (0x607F0000)
C:\WINDOWS\system32\msadp32.acm (0x72C60000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (0x4AE90000)
C:\Program Files\Tencent\QQ\QQMagicFace.dll (0x608C0000)
C:\WINDOWS\system32\macromed\flash\flash.ocx (0x03480000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\mlang.dll (0x74CF0000)
C:\Program Files\Tencent\QQ\GroupConnection.dll (0x020D0000)
C:\Program Files\Tencent\QQ\ImageOle.dll (0x60200000)
C:\Program Files\Tencent\QQGame\GameLogCore.Dll (0x00C60000)
C:\Program Files\Tencent\QQGame\VHelp.dll (0x00D30000)
C:\Program Files\Tencent\QQGame\QQGameAvatarShow.dll (0x03810000)
C:\Program Files\Tencent\QQGame\Core.dll (0x00D40000)
C:\Program Files\Tencent\QQGame\NetCenter.dll (0x03850000)
C:\Program Files\Tencent\QQGame\CmdCenter.dll (0x03870000)
C:\Program Files\Tencent\QQGame\HelpDll.dll (0x038A0000)
C:\Program Files\Tencent\QQGame\GameLogAidMgr.dll (0x038F0000)
C:\Program Files\Tencent\QQGame\Res.dll (0x03F10000)
C:\Program Files\Tencent\QQGame\COMToolKit.dll (0x02110000)
C:\Program Files\Tencent\QQGame\QQGameAvatar.dll (0x03F40000)
=====================================================
PROCESS NAME: svchost.exe
-----------------------------------------------------
Process ID = 0x000006e4
Thread count= 5
Parent process ID = 660
Priority Class = 32
Modules:
------------------------------------
C:\WINDOWS\System32\svchost.exe (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\System32\ShimEng.dll (0x5CC30000)
C:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\System32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\System32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\System32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\System32\LPK.DLL (0x62C20000)
C:\WINDOWS\System32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
c:\windows\system32\wiaservc.dll (0x749C0000)
c:\windows\system32\CFGMGR32.dll (0x74A40000)
c:\windows\system32\setupapi.DLL (0x76060000)
c:\windows\system32\mscms.dll (0x73AA0000)
c:\windows\system32\WINSPOOL.DRV (0x72F70000)
c:\windows\system32\WINSTA.dll (0x762D0000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\System32\xpsp2res.dll (0x20000000)
C:\WINDOWS\System32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\System32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\System32\actxprxy.dll (0x71CC0000)
C:\WINDOWS\System32\sti.dll (0x73B10000)
=====================================================
PROCESS NAME: conime.exe
-----------------------------------------------------
Process ID = 0x000022e0
Thread count= 1
Parent process ID = 8648
Priority Class = 32
(世)源清 - 2005-8-24 22:48:00
Modules:
------------------------------------
C:\WINDOWS\system32\conime.exe (0x01000000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\IMM32.dll (0x76300000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\ShimEng.dll (0x5CC30000)
C:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\comctl32.dll (0x5D170000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
=====================================================
PROCESS NAME: RavMonD.exe
-----------------------------------------------------
Process ID = 0x00001838
Thread count= 12
Parent process ID = 660
Priority Class = 32
Modules:
------------------------------------
C:\PROGRAM FILES\RISING\RAV\Ravmond.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\PROGRAM FILES\RISING\RAV\guidll.dll (0x10000000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\PROGRAM FILES\RISING\RAV\RsCommX.dll (0x003D0000)
C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.DLL (0x00890000)
C:\PROGRAM FILES\RISING\RAV\CfgDll.dll (0x088B0000)
C:\Program Files\Rising\Rav\Scanner.dll (0x08C30000)
C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL (0x08C70000)
C:\Program Files\Rising\Rav\libload.dll (0x13100000)
C:\Program Files\Rising\Rav\VirusLib.dll (0x08ED0000)
C:\PROGRAM FILES\RISING\RAV\MailMon.dll (0x09350000)
C:\Program Files\Rising\Rav\engine.dll (0x13A80000)
C:\Program Files\Rising\Rav\UnExe.dll (0x09390000)
C:\Program Files\Rising\Rav\SpamEng.dll (0x09880000)
C:\Program Files\Rising\Rav\ScanEx.dll (0x09930000)
C:\Program Files\Rising\Rav\PostTrt.dll (0x14300000)
C:\Program Files\Rising\Rav\NvFile.dll (0x09990000)
C:\PROGRAM FILES\RISING\RAV\MemMon.dll (0x099C0000)
C:\Program Files\Rising\Rav\ScanMac.dll (0x13AF0000)
C:\PROGRAM FILES\RISING\RAV\expscan.dll (0x09EF0000)
C:\Program Files\Rising\Rav\ScanSct.dll (0x09F10000)
C:\Program Files\Rising\Rav\ScanExec.dll (0x13AB0000)
C:\PROGRAM FILES\RISING\RAV\mPorts.dll (0x09F60000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\PROGRAM FILES\RISING\RAV\PSAPI.DLL (0x731B0000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\PROGRAM FILES\RISING\RAV\regmon.dll (0x09FE0000)
C:\Program Files\Rising\Rav\Unpacker.dll (0x0A0F0000)
C:\PROGRAM FILES\RISING\RAV\HookWeb.dll (0x0A150000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\ODBC32.dll (0x73540000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\system32\odbcint.dll (0x20000000)
C:\WINDOWS\system32\odbccp32.dll (0x4D3D0000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\VBAJET32.DLL (0x0F9A0000)
C:\Program Files\Rising\Rav\ExtOLE.dll (0x0B680000)
=====================================================
PROCESS NAME: RavStub.exe
-----------------------------------------------------
Process ID = 0x00002110
Thread count= 4
Parent process ID = 6200
Priority Class = 32
Modules:
------------------------------------
C:\PROGRAM FILES\RISING\RAV\RavStub.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\MFC42.DLL (0x73D30000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\COMCTL32.dll (0x77180000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\PROGRAM FILES\RISING\RAV\RsCommX.dll (0x10000000)
C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL (0x008D0000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
=====================================================
PROCESS NAME: RavMon.exe
-----------------------------------------------------
Process ID = 0x00001820
Thread count= 14
Parent process ID = 8600
Priority Class = 32
(世)源清 - 2005-8-24 22:49:00
Modules:
------------------------------------
c:\program files\rising\rav\RAVMON.EXE (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
c:\program files\rising\rav\RsGuiLib.dll (0x10000000)
C:\WINDOWS\system32\MFC42.DLL (0x73D30000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\WSOCK32.dll (0x71A40000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
c:\program files\rising\rav\RSAPPMGR.DLL (0x003E0000)
c:\program files\rising\rav\CfgDll.dll (0x089F0000)
c:\program files\rising\rav\RsCommX.dll (0x08B60000)
c:\program files\rising\rav\PngDll.dll (0x08C90000)
c:\program files\rising\rav\RSCOMMON.DLL (0x08ED0000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\System32\wbem\wbemprox.dll (0x74E50000)
C:\WINDOWS\System32\wbem\wbemcomn.dll (0x751F0000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\WINDOWS\System32\wbem\wbemsvc.dll (0x74E30000)
C:\WINDOWS\System32\wbem\fastprox.dll (0x755F0000)
C:\WINDOWS\system32\NTDSAPI.dll (0x76770000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
=====================================================
PROCESS NAME: msn6.exe
-----------------------------------------------------
Process ID = 0x000010b0
Thread count= 13
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
C:\Program Files\MSN\MSNCoreFiles\msn6.exe (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\SHELL32.DLL (0x7D590000)
C:\Program Files\MSN\MSNCoreFiles\msnmetal.dll (0x04000000)
C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)
C:\WINDOWS\system32\COMRes.dll (0x77020000)
C:\WINDOWS\system32\PSTOREC.DLL (0x5E1B0000)
C:\WINDOWS\system32\ATL.DLL (0x76AF0000)
C:\WINDOWS\system32\WTSAPI32.DLL (0x76F20000)
C:\WINDOWS\system32\WINSTA.dll (0x762D0000)
C:\Program Files\MSN\MSNCoreFiles\msnmtllc.dll (0x00E90000)
C:\WINDOWS\system32\UXTHEME.DLL (0x5ADC0000)
C:\WINDOWS\system32\URLMON.DLL (0x75C60000)
C:\WINDOWS\system32\Secur32.dll (0x77FC0000)
C:\Program Files\MSN\MSNCoreFiles\LOGONMGR.DLL (0x017E0000)
C:\WINDOWS\system32\RASAPI32.dll (0x76EB0000)
C:\WINDOWS\system32\rasman.dll (0x76E60000)
C:\WINDOWS\system32\WS2_32.dll (0x71A20000)
C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)
C:\WINDOWS\system32\TAPI32.dll (0x76E80000)
C:\WINDOWS\system32\rtutils.dll (0x76E50000)
C:\WINDOWS\system32\WINMM.dll (0x76B10000)
C:\Program Files\MSN\MSNCoreFiles\POPC.DLL (0x01820000)
C:\WINDOWS\system32\xpsp2res.dll (0x20000000)
C:\WINDOWS\system32\SXS.DLL (0x75E00000)
C:\WINDOWS\system32\dsound.dll (0x73E70000)
C:\WINDOWS\system32\msafd.dll (0x719B0000)
C:\WINDOWS\system32\msxml.dll (0x730D0000)
C:\WINDOWS\system32\msv1_0.dll (0x77C40000)
C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)
C:\WINDOWS\system32\wintrust.dll (0x76C00000)
C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)
C:\WINDOWS\system32\USERENV.dll (0x759D0000)
C:\WINDOWS\system32\wdmaud.drv (0x72C90000)
C:\WINDOWS\system32\msacm32.drv (0x72C80000)
C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)
C:\WINDOWS\system32\midimap.dll (0x77BA0000)
C:\WINDOWS\system32\KsUser.dll (0x73E40000)
C:\WINDOWS\system32\msadp32.acm (0x72C60000)
C:\WINDOWS\system32\mlang.dll (0x74CF0000)
C:\WINDOWS\system32\wsock32.dll (0x71A40000)
C:\WINDOWS\system32\mswsock.dll (0x719C0000)
C:\WINDOWS\system32\hnetcfg.dll (0x60FD0000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A00000)
C:\WINDOWS\system32\schannel.dll (0x767C0000)
C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)
C:\WINDOWS\System32\winrnr.dll (0x76F80000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)
C:\WINDOWS\system32\sensapi.dll (0x72240000)
C:\WINDOWS\system32\rasadhlp.dll (0x76F90000)
C:\WINDOWS\system32\rsaenh.dll (0x0FFD0000)
C:\WINDOWS\system32\dssenh.dll (0x68100000)
C:\WINDOWS\System32\shdocvw.dll (0x76370000)
C:\WINDOWS\system32\CRYPTUI.dll (0x75430000)
C:\WINDOWS\system32\appHelp.dll (0x76D70000)
C:\WINDOWS\System32\mshtml.dll (0x7CC80000)
C:\WINDOWS\System32\msls31.dll (0x74620000)
C:\WINDOWS\System32\msimtf.dll (0x74650000)
C:\PROGRA~1\3721\autolive.dll (0x10000000)
C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)
C:\PROGRA~1\3721\alLiveEx.dll (0x02C50000)
C:\WINDOWS\System32\shdoclc.dll (0x02C80000)
C:\Program Files\Rising\Rav\RavScrCh.dll (0x01190000)
C:\WINDOWS\system32\vbscript.dll (0x73270000)
C:\WINDOWS\system32\MFC42.DLL (0x73D30000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\system32\jscript.dll (0x75BC0000)
C:\WINDOWS\System32\dxtrans.dll (0x6C140000)
C:\WINDOWS\System32\ddrawex.dll (0x6D7C0000)
C:\WINDOWS\System32\DDRAW.dll (0x736D0000)
C:\WINDOWS\System32\DCIMAN32.dll (0x73B30000)
C:\WINDOWS\System32\dxtmsft.dll (0x6C180000)
C:\WINDOWS\system32\macromed\flash\flash.ocx (0x03C80000)
C:\WINDOWS\system32\comdlg32.dll (0x76320000)
C:\WINDOWS\System32\iepeers.dll (0x67140000)
C:\WINDOWS\System32\WINSPOOL.DRV (0x72F70000)
C:\Program Files\MSN\MSNCoreFiles\MSMOM.DLL (0x03F60000)
C:\WINDOWS\system32\NTMARTA.DLL (0x76CB0000)
C:\WINDOWS\system32\SAMLIB.dll (0x71B70000)
C:\WINDOWS\System32\qmgrprxy.dll (0x5DEB0000)
C:\WINDOWS\System32\mshtmled.dll (0x753B0000)
C:\WINDOWS\HKNTDLL.dll (0x1C000000)
C:\WINDOWS\System32\browseui.dll (0x75EF0000)
C:\WINDOWS\system32\plugin.ocx (0x72A90000)
(世)源清 - 2005-8-24 22:49:00
=====================================================
PROCESS NAME: SysInfoCollect.EXE
-----------------------------------------------------
Process ID = 0x000013c8
Thread count= 1
Parent process ID = 1656
Priority Class = 32
Modules:
------------------------------------
D:\2535952005811175711\SysInfoCollect.EXE (0x00400000)
C:\WINDOWS\system32\ntdll.dll (0x7C920000)
C:\WINDOWS\system32\kernel32.dll (0x7C800000)
C:\WINDOWS\system32\PSAPI.DLL (0x76BC0000)
C:\WINDOWS\system32\MFC42.DLL (0x73D30000)
C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)
C:\WINDOWS\system32\GDI32.dll (0x77EF0000)
C:\WINDOWS\system32\USER32.dll (0x77D10000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)
C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)
C:\WINDOWS\system32\SHELL32.dll (0x7D590000)
C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)
C:\WINDOWS\system32\IMM32.DLL (0x76300000)
C:\WINDOWS\system32\LPK.DLL (0x62C20000)
C:\WINDOWS\system32\USP10.dll (0x73FA0000)
C:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)
C:\WINDOWS\DOWNLO~1\CnsMin.dll (0x37210000)
C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)
C:\WINDOWS\system32\VERSION.dll (0x77BD0000)
C:\WINDOWS\system32\MSCTF.dll (0x74680000)
C:\PROGRA~1\3721\helper.dll (0x53000000)
C:\WINDOWS\system32\ole32.dll (0x76990000)
C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)
C:\WINDOWS\system32\WININET.dll (0x76680000)
C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)
C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)
C:\WINDOWS\system32\msctfime.ime (0x73640000)
C:\WINDOWS\system32\UxTheme.dll (0x5ADC0000)
(世)源清 - 2005-8-24 22:50:00
*****************************************************************
Local Win32 Service information
*****************************************************************
Alerter [Alerter ] <Stopped>, Binpath = C:\WINDOWS\System32\svchost.exe -k LocalService
Application Layer Gateway Service [ALG ] <Running>, Binpath = C:\WINDOWS\System32\alg.exe
Application Management [AppMgmt ] <Stopped>, Binpath = C:\WINDOWS\system32\svchost.exe -k netsvcs
Windows Audio [AudioSrv ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Background Intelligent Transfer Service [BITS ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Computer Browser [Browser ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Indexing Service [cisvc ] <Stopped>, Binpath = C:\WINDOWS\System32\cisvc.exe
ClipBook [ClipSrv ] <Stopped>, Binpath = C:\WINDOWS\system32\clipsrv.exe
COM+ System Application [COMSysApp ] <Stopped>, Binpath = C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Cryptographic Services [CryptSvc ] <Running>, Binpath = C:\WINDOWS\system32\svchost.exe -k netsvcs
DCOM 服务器进程启动器 [DcomLaunch ] <Running>, Binpath = C:\WINDOWS\system32\svchost -k DcomLaunch
DHCP Client [Dhcp ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Logical Disk Manager Administrative Service [dmadmin ] <Stopped>, Binpath = C:\WINDOWS\System32\dmadmin.exe /com
Logical Disk Manager [dmserver ] <Stopped>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
DNS Client [Dnscache ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k NetworkService
Error Reporting Service [ERSvc ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Event Log [Eventlog ] <Running>, Binpath = C:\WINDOWS\system32\services.exe
COM+ Event System [EventSystem ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Fast User Switching Compatibility [FastUserSwitchingCompatibility ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Help and Support [helpsvc ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Human Interface Device Access [HidServ ] <Stopped>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
HTTP SSL [HTTPFilter ] <Stopped>, Binpath = C:\WINDOWS\System32\svchost.exe -k HTTPFilter
IMAPI CD-Burning COM Service [ImapiService ] <Stopped>, Binpath = C:\WINDOWS\System32\imapi.exe
Server [lanmanserver ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Workstation [lanmanworkstation ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
TCP/IP NetBIOS Helper [LmHosts ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k LocalService
Messenger [Messenger ] <Stopped>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
NetMeeting Remote Desktop Sharing [mnmsrvc ] <Stopped>, Binpath = C:\WINDOWS\System32\mnmsrvc.exe
Distributed Transaction Coordinator [MSDTC ] <Stopped>, Binpath = C:\WINDOWS\System32\msdtc.exe
Windows Installer [MSIServer ] <Stopped>, Binpath = C:\WINDOWS\system32\msiexec.exe /V
Network DDE [NetDDE ] <Stopped>, Binpath = C:\WINDOWS\system32\netdde.exe
Network DDE DSDM [NetDDEdsdm ] <Stopped>, Binpath = C:\WINDOWS\system32\netdde.exe
Net Logon [Netlogon ] <Stopped>, Binpath = C:\WINDOWS\System32\lsass.exe
Network Connections [Netman ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Network Location Awareness (NLA) [Nla ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
NT LM Security Support Provider [NtLmSsp ] <Stopped>, Binpath = C:\WINDOWS\System32\lsass.exe
Removable Storage [NtmsSvc ] <Stopped>, Binpath = C:\WINDOWS\system32\svchost.exe -k netsvcs
Plug and Play [PlugPlay ] <Running>, Binpath = C:\WINDOWS\system32\services.exe
IPSEC Services [PolicyAgent ] <Running>, Binpath = C:\WINDOWS\System32\lsass.exe
Protected Storage [ProtectedStorage ] <Running>, Binpath = C:\WINDOWS\system32\lsass.exe
Remote Access Auto Connection Manager [RasAuto ] <Stopped>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Remote Access Connection Manager [RasMan ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Remote Desktop Help Session Manager [RDSessMgr ] <Stopped>, Binpath = C:\WINDOWS\system32\sessmgr.exe
Routing and Remote Access [RemoteAccess ] <Stopped>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Rising Personal Firewall Service [RfwService ] <Running>, Binpath = c:\program files\rising\rfw\rfwsrv.exe
Remote Procedure Call (RPC) Locator [RpcLocator ] <Stopped>, Binpath = C:\WINDOWS\System32\locator.exe
Remote Procedure Call (RPC) [RpcSs ] <Running>, Binpath = C:\WINDOWS\system32\svchost -k rpcss
Rising Process Communication Center [RsCCenter ] <Running>, Binpath = C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
RsRavMon Service [RsRavMon ] <Running>, Binpath = C:\PROGRAM FILES\RISING\RAV\Ravmond.exe
QoS RSVP [RSVP ] <Stopped>, Binpath = C:\WINDOWS\System32\rsvp.exe
Security Accounts Manager [SamSs ] <Running>, Binpath = C:\WINDOWS\system32\lsass.exe
Smart Card [SCardSvr ] <Stopped>, Binpath = C:\WINDOWS\System32\SCardSvr.exe
Task Scheduler [Schedule ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Secondary Logon [seclogon ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
System Event Notification [SENS ] <Running>, Binpath = C:\WINDOWS\system32\svchost.exe -k netsvcs
Windows Firewall/Internet Connection Sharing (ICS) [SharedAccess ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Shell Hardware Detection [ShellHWDetection ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Print Spooler [Spooler ] <Running>, Binpath = C:\WINDOWS\system32\spoolsv.exe
System Restore Service [srservice ] <Stopped>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
SSDP Discovery Service [SSDPSRV ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k LocalService
Windows Image Acquisition (WIA) [stisvc ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k imgsvc
MS Software Shadow Copy Provider [SwPrv ] <Stopped>, Binpath = C:\WINDOWS\System32\dllhost.exe /Processid:{D2AD94C5-EA7C-4CA6-860D-6164A433B794
(世)源清 - 2005-8-24 22:51:00
}
Performance Logs and Alerts [SysmonLog ] <Stopped>, Binpath = C:\WINDOWS\system32\smlogsvc.exe
Telephony [TapiSrv ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Terminal Services [TermService ] <Running>, Binpath = C:\WINDOWS\System32\svchost -k DComLaunch
Themes [Themes ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
Distributed Link Tracking Client [TrkWks ] <Running>, Binpath = C:\WINDOWS\system32\svchost.exe -k netsvcs
Universal Plug and Play Device Host [upnphost ] <Stopped>, Binpath = C:\WINDOWS\System32\svchost.exe -k LocalService
Uninterruptible Power Supply [UPS ] <Stopped>, Binpath = C:\WINDOWS\System32\ups.exe
Volume Shadow Copy [VSS ] <Stopped>, Binpath = C:\WINDOWS\System32\vssvc.exe
Windows Time [W32Time ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
WebClient [WebClient ] <Running>, Binpath = C:\WINDOWS\System32\svchost.exe -k LocalService
Windows Management Instrumentation [winmgmt ] <Running>, Binpath = C:\WINDOWS\system32\svchost.exe -k netsvcs
Portable Media Serial Number Service [WmdmPmSN ] <Stopped>, Binpath = C:\WINDOWS\System32\svchost.exe -k netsvcs
WMI Performance Adapter [WmiApSrv ] <Stopped>, Binpath = C:\WINDOWS\System32\wbem\wmiapsrv.exe
*****************************************************************
IE BHOs
*****************************************************************
{0005A87D-D626-4B3A-84F9-1D9571695F55} Xunleibho.ThunderIEHelper.1 C:\WINDOWS\system32\xunleibho_v5.dll
{54EBD53A-9BC1-480B-966A-843A333CA162} QQIEHelper.QQBrowserHelperObject.1 C:\Program Files\Tencent\QQ\QQIEHelper.dll
{AA58ED58-01DD-4d91-8333-CF10577473F7} QQIEHelper.QQBrowserHelperObject.1 c:\program files\google\googletoolbar.dll
{BB936323-19FA-4521-BA29-ECA6A121BC78} CoolBar.CoolBarObj.1 C:\Program Files\3721\Assist\asbar.dll
{D157330A-9EF3-49F8-9A67-4141AC41ADD4} CnsMinHK.CnsHook.1 C:\WINDOWS\DOWNLO~1\CnsHook.dll
{EF1D17A9-089F-40cc-8D64-7324CDEBA0DB} BhoObj.AxObj.1 C:\PROGRA~1\yisou\yisoub.dll
*****************************************************************
Boot items in Registry
*****************************************************************
------------------------------------------------------------
0:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
------------------------------------------------------------
ctfmon.exe……C:\WINDOWS\system32\ctfmon.exe
MSMSGS……"C:\Program Files\Messenger\msmsgs.exe" /background
------------------------------------------------------------
1:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce
------------------------------------------------------------
------------------------------------------------------------
2:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
------------------------------------------------------------
------------------------------------------------------------
3:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunServices
------------------------------------------------------------
------------------------------------------------------------
4:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce
------------------------------------------------------------
------------------------------------------------------------
5:HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows 键值名称:load
------------------------------------------------------------
load……
------------------------------------------------------------
6:HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows 键值名称:run
------------------------------------------------------------
------------------------------------------------------------
7:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System 键值名称:Shell
------------------------------------------------------------
------------------------------------------------------------
8:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
------------------------------------------------------------
------------------------------------------------------------
9:HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
------------------------------------------------------------
IMJPMIG8.1……C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
PHIME2002ASync……C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
PHIME2002A……C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
LHotkey……LHotkey.exe
Lcc……C:\Program Files\Lenovo\联想键盘驱动\LCC.exe
VTTimer……VTTimer.exe
SoundMan……SOUNDMAN.EXE
TkBellExe……"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
RfwMain……"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
WinampAgent……"C:\Program Files\Winamp\Winampa.exe"
MS-4011 Memory Patch……D:\RavSasser.exe -Patch
RavTimer……C:\PROGRA~1\RISING\RAV\RAVTIMER.EXE
RavMon……C:\PROGRA~1\RISING\RAV\RAVMON.EXE -SYSTEM
MINI_MINIPP……C:\Program Files\MINIPP\MINIPP.exe
helper.dll……C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32
CnsMin……Rundll32.exe C:\WINDOWS\DOWNLO~1\CnsMin.dll,Rundll32
ADShow……C:\WINDOWS\system32\bcsysnote.ex
BCUpdate……C:\WINDOWS\system32\BCUP.exe
assistse……"C:\PROGRA~1\3721\assistse.exe"
SysExplr……C:\Herosoft\HeroV8\SysExplr.EXE
------------------------------------------------------------
10:HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce
------------------------------------------------------------
------------------------------------------------------------
11:HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
------------------------------------------------------------
------------------------------------------------------------
12:HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunService
------------------------------------------------------------
------------------------------------------------------------
13:HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServiceOnce
------------------------------------------------------------
------------------------------------------------------------
14:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
------------------------------------------------------------
------------------------------------------------------------
15:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon 键值名称:Shell
------------------------------------------------------------
Shell……Explorer.exe
------------------------------------------------------------
16:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon 键值名称:Userinit
------------------------------------------------------------
Userinit……C:\WINDOWS\system32\userinit.exe,
------------------------------------------------------------
17:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows 键值名称:AppInit_DLLs
------------------------------------------------------------
AppInit_DLLs……
(世)源清 - 2005-8-24 22:51:00
*****************************************************************
File association information
*****************************************************************
------------------------------------------------------------
0:HKEY_CLASSES_ROOT\.exe
------------------------------------------------------------
<DEFAULT> = exefile, 正常!
------------------------------------------------------------
1:HKEY_CLASSES_ROOT\exefile\shell\open\command
------------------------------------------------------------
<DEFAULT> = "%1" %*, 正常!
------------------------------------------------------------
2:HKEY_CLASSES_ROOT\exefile\shell\runas\command
------------------------------------------------------------
<DEFAULT> = "%1" %*, 正常!
------------------------------------------------------------
3:HKEY_CLASSES_ROOT\.txt
------------------------------------------------------------
<DEFAULT> = txtfile, 正常!
------------------------------------------------------------
4:HKEY_CLASSES_ROOT\txtfile\shell\open\command
------------------------------------------------------------
<DEFAULT> = %SystemRoot%\system32\NOTEPAD.EXE %1, 正常!
------------------------------------------------------------
5:HKEY_CLASSES_ROOT\.reg
------------------------------------------------------------
<DEFAULT> = regfile, 正常!
------------------------------------------------------------
6:HKEY_CLASSES_ROOT\regfile\shell\open\command
------------------------------------------------------------
<DEFAULT> = regedit.exe "%1", 正常!
------------------------------------------------------------
7:HKEY_CLASSES_ROOT\.bat
------------------------------------------------------------
<DEFAULT> = batfile, 正常!
------------------------------------------------------------
8:HKEY_CLASSES_ROOT\batfile\shell\open\command
------------------------------------------------------------
<DEFAULT> = "%1" %*, 正常!
------------------------------------------------------------
9:HKEY_CLASSES_ROOT\.com
------------------------------------------------------------
<DEFAULT> = comfile, 正常!
------------------------------------------------------------
10:HKEY_CLASSES_ROOT\comfile\shell\open\command
------------------------------------------------------------
<DEFAULT> = "%1" %*, 正常!
------------------------------------------------------------
11:HKEY_CLASSES_ROOT\.scr
------------------------------------------------------------
<DEFAULT> = scrfile, 正常!
------------------------------------------------------------
12:HKEY_CLASSES_ROOT\scrfile\shell\open\command
------------------------------------------------------------
<DEFAULT> = "%1" /S, 正常!
------------------------------------------------------------
13:HKEY_CLASSES_ROOT\.pif
------------------------------------------------------------
<DEFAULT> = piffile, 正常!
------------------------------------------------------------
14:HKEY_CLASSES_ROOT\piffile\shell\open\command
------------------------------------------------------------
<DEFAULT> = "%1" %*, 正常!
(世)源清 - 2005-8-24 22:52:00
谁能告诉我为什么会这么多,!!!
有办法清理没??????
天天泡泡 - 2005-8-24 22:54:00
对于日志的问题,我来重申一遍,如果没有问题,请不要随意上传日志,没有任何作用。你发了这么多,如果不能给一个合理的解释,我将会把你的这个帖子视作变相灌水。
等你的答复。
(世)源清 - 2005-8-24 22:58:00
是啊,我也就是不知为什么这么多才发上来,给大家看看!
有没办法清理!!!
天天泡泡 - 2005-8-24 23:03:00
那你就要说明机器有什么异常情况
(世)源清 - 2005-8-24 23:06:00
谢谢版主提醒,可还是不明白???
我很菜的,能说明白点吗?
呆兔子 - 2005-8-25 10:20:00
???
1
© 2000 - 2026 Rising Corp. Ltd.