流氓软件“搜易财富火箭”删不了 bbs.ikaka.com

gtkx - 2007-5-14 20:07:00

[CODE]

2007-05-13,19:11:46

System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<KavPFW><"C:\KAV2007\KPFW32.EXE"> [Kingsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<KavStart><"C:\KAV2007\KAVStart.exe" -startup> [Kingsoft Corporation]
<360Safetray><d:\Program Files\360safe\safemon\360Tray.exe /start> [奇虎网]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Publisher]
<Userinit><C:\WINDOWS\system32\Userinit.exe> [(Verified)Microsoft Windows Publisher]
<UIHost><LogonUI.EXE> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\System Safety Monitor]
<WinlogonNotify: System Safety Monitor><SSMWinlogonEx.dll> [(Verified)System Safety Limited]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe> [Microsoft Corporation]

==================================
启动文件夹
N/A

==================================
服务
[Human Interface Device Access / HidServ][Stopped/Disabled]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
<"C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe"><Macrovision Corporation>
[Kingsoft Antivirus KWatch Service / KWatchSvc][Running/Auto Start]
<C:\KAV2007\KWatch.EXE><Kingsoft Corporation>
[Kingsoft Personal Firewall Service / KPfwSvc][Running/Auto Start]
<"C:\KAV2007\KPfwSvc.EXE"><Kingsoft Corporation>

==================================
驱动程序
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
<system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[ialm / ialm][Running/Manual Start]
<system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[KNetWch / KNetWch][Running/System Start]
<\??\C:\KAV2007\KNetWch.SYS><Kingsoft Corporation>
[KWatch3 / KWatch3][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\KWatch3.SYS><Kingsoft Corporation>
[npkcrypt / npkcrypt][Stopped/Auto Start]
<\??\D:\Program Files\Tencent\QQ\npkcrypt.sys><N/A>
[Padus ASPI Shell / pfc][Running/Manual Start]
<system32\drivers\pfc.sys><Padus, Inc.>
[PnpWmkDrv / PnpWmkDrv][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\PnpWmkDrv.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsAntiSpyware / RsAntiSpyware][Running/Boot Start]
<\SystemRoot\system32\drivers\RsBoot.sys><Beijing Rising>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
<system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[System Safety Monitor 2.0 Core Engine / safemon][Running/Boot Start]
<\SystemRoot\system32\drivers\safemon.sys><System Safety Limited>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><N/A>
[SmartAVS / SmartAVS][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\drivers\SmartAVS.sys><All-In-Smart [CWJ]>
[49931 / 49931][Running/Manual Start]
<2 - 系统找不到指定的文件。
><N/A>

==================================
浏览器加载项
[IE7pro BHO]
{00011268-E188-40DF-A514-835FCD78B1BF} <d:\Program Files\IE7Pro\IE7Pro.dll, IE7Pro.com>
[ThunderAtOnce Class]
{01443AEC-0FD1-40fd-9C87-E93D1494C233} <d:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
[Adobe PDF Reader Link Helper]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[FGCatchUrl]
{2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <D:\Program Files\FlashGet\jccatch.dll, www.flashget.com>
[CBrowseStakeout Class]
{55302805-482E-470E-8A57-6795A1487F90} <C:\KAV2007\KAVAFish.DLL, Kingsoft Corporation>
[Thunder Browser Helper]

gtkx - 2007-5-14 20:08:00

{889D2FEB-5411-4565-8998-1DD2C5261283} <d:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
[NavigatMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D} <D:\Program Files\360safe\safemon\safemon.dll, >
[FlashGet GetFlash Class]
{F156768E-81EF-470C-9057-481BA8380DBA} <d:\Program Files\FlashGet\getflash.dll, www.flashget.com>
[IE7pro ToolsExt]
{0026439F-A980-4f18-8C95-4F1CBBF9C1D8} <d:\Program Files\IE7Pro\IE7Pro.dll, IE7Pro.com>
[启动迅雷5]
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <d:\Program Files\Thunder Network\Thunder\Thunder.exe, Thunder Networking Technologies,LTD>
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <d:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[快车]
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <d:\Program Files\FlashGet\FlashGet.exe, FlashGet.com>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[MUWebControl Class]
{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, Microsoft Corporation>
[KSHScan Control]
{ACFE8232-03C5-4AEC-AF5E-42B806724096} <, N/A>
[Tencent Safety Online Base Module]
{C09B522F-8AED-4E21-A65C-DC1AB652BAEE} <C:\WINDOWS\DOWNLO~1\TSOBase.ocx, Tencent Corporation>
[WebActivater Control]
{C661F36D-DF85-4EF4-83C7-E107B83D04B1} <C:\WINDOWS\system32\3DShowVM.ocx, QQ>
[Office Update Installation Engine]
{C7DB51B4-BCF7-4923-8874-7F1A0DC92277} <C:\WINDOWS\opuc.dll, Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9c.ocx, Adobe Systems, Inc.>
[Ravonline]
{DA984A6D-508E-11D6-AA49-0050FF3C628D} <C:\WINDOWS\Downloaded Program Files\RsOnline.dll, Beijing Rising Tech. Co., Ltd.>
[Rising Web Scan Object]
{E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <C:\WINDOWS\Downloaded Program Files\OL2005.dll, Beijing Rising Technology Co., Ltd.>
[McFreeScan Class]
{EF791A6B-FC12-4C68-99EF-FB9E207A39E6} <, N/A>
[IE7pro BHO]
{00011268-E188-40DF-A514-835FCD78B1BF} <d:\Program Files\IE7Pro\IE7Pro.dll, IE7Pro.com>
[ThunderAtOnce Class]
{01443AEC-0FD1-40FD-9C87-E93D1494C233} <d:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
[Adobe PDF Reader Link Helper]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[IeHelper Class]
{0D42E1BD-09DD-4873-A826-9C7E793EB7B6} <d:\Program Files\Thunder Network\Thunder\Components\ResWorker\DSIeHelper.dll, Thunder Networking Technologies,LTD>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, Microsoft Corporation>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\Mshtml.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[FGCatchUrl]

gtkx - 2007-5-14 20:08:00

正在运行的进程
[PID: 300][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 356][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1228][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[D:\Program Files\360safe\safemon\safemon.dll] [, 3, 2, 0, 1001]
[C:\KAV2007\KASocket.dll] [Kingsoft Corporation, 2006, 12, 21, 241]
[C:\KAV2007\KMailOEBand.dll] [Kingsoft Corporation, 2006, 12, 1, 139]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0]
[C:\WINDOWS\system32\igfxpph.dll] [Intel Corporation, 3.0.0.4342]
[C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.4342]
[C:\WINDOWS\system32\igfxres.dll] [Intel Corporation, 3.0.0.4342]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4342]
[C:\WINDOWS\system32\igfxdev.dll] [Intel Corporation, 3.0.0.4342]
[C:\Program Files\WinRAR\rarext.dll] [N/A, ]
[C:\KAV2007\KAVEXT.DLL] [Kingsoft Corporation, 2005, 8, 5, 16]
[D:\Program Files\TuneUp Utilities 2007\SDShelEx-win32.dll] [TuneUp Software GmbH, 2.0.0.2]
[PID: 1996][C:\KAV2007\KAVStart.exe] [Kingsoft Corporation, 2007, 4, 9, 269]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71CHS.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\KAV2007\KAVIPC2.DLL] [Kingsoft Corporation, 2007, 1, 15, 30]
[C:\KAV2007\SvcTimer.DLL] [Kingsoft Corporation, 2006.12.22.84]
[D:\Program Files\360safe\safemon\safemon.dll] [, 3, 2, 0, 1001]
[C:\KAV2007\KAVPassp.dll] [Kingsoft Corporation, 2006, 12, 30, 271]
[C:\KAV2007\PopSprt3.dll] [Kingsoft Corporation, 2007, 1, 16, 45]
[C:\KAV2007\KAPlugin.DLL] [Kingsoft Corporation, 2005, 9, 28, 21]
[C:\KAV2007\KASocket.dll] [Kingsoft Corporation, 2006, 12, 21, 241]
[C:\KAV2007\KMailOEBand.dll] [Kingsoft Corporation, 2006, 12, 1, 139]
[PID: 2004][D:\Program Files\360safe\safemon\360Tray.exe] [奇虎网, 3, 3, 0, 1004]
[D:\Program Files\360safe\safemon\safemon.dll] [, 3, 2, 0, 1001]
[D:\Program Files\360safe\safemon\SafeKrnl.dll] [奇虎网, 3, 2, 0, 1001]
[D:\Program Files\360safe\AntiAdwa.dll] [360Safe.com, 3, 3, 0, 1004]
[C:\KAV2007\KASocket.dll] [Kingsoft Corporation, 2006, 12, 21, 241]
[PID: 2020][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\KAV2007\KASocket.dll] [Kingsoft Corporation, 2006, 12, 21, 241]
[PID: 208][C:\KAV2007\KMailMon.EXE] [Kingsoft Corporation, 2007, 2, 25, 948]
[C:\KAV2007\KAntiSpm.dll] [Kingsoft Corporation, 2007, 2, 25, 129]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\KAV2007\KAVIPC2.DLL] [Kingsoft Corporation, 2007, 1, 15, 30]
[C:\KAV2007\KAECall2.DLL] [Kingsoft Corporation, 2004, 12, 28, 7]
[C:\KAV2007\KAEPlat.DLL] [Kingsoft Corp., 2007, 2, 4, 61]
[C:\KAV2007\KAEMem.DAT] [Kingsoft, 2006, 9, 25, 16]
[C:\KAV2007\KAEUnpack.DAT] [Kingsoft Corp., 2007, 4, 12, 116]
[D:\Program Files\360safe\safemon\safemon.dll] [, 3, 2, 0, 1001]
[C:\KAV2007\KAConfig.DLL] [Kingsoft Corporation, 2007, 1, 11, 41]
[C:\KAV2007\KASocket.dll] [Kingsoft Corporation, 2006, 12, 21, 241]
[C:\KAV2007\KMailOEBand.dll] [Kingsoft Corporation, 2006, 12, 1, 139]
[PID: 1340][C:\KAV2007\KPFW32.EXE] [Kingsoft Corporation, 2007, 2, 2, 687]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71CHS.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\KAV2007\KMailOEBand.dll] [Kingsoft Corporation, 2006, 12, 1, 139]
[D:\Program Files\360safe\safemon\safemon.dll] [, 3, 2, 0, 1001]
[C:\KAV2007\KASocket.dll] [Kingsoft Corporation, 2006, 12, 21, 241]
[C:\KAV2007\KAVIPC2.DLL] [Kingsoft Corporation, 2007, 1, 15, 30]
[C:\KAV2007\KAConfig.DLL] [Kingsoft Corporation, 2007, 1, 11, 41]
[C:\KAV2007\FiltList.dll] [N/A, ]
[C:\KAV2007\KAVPassp.DLL] [Kingsoft Corporation, 2006, 12, 30, 271]
[PID: 2540][D:\杀毒辅助工具\sreng2.4.12.806\SREng.EXE] [Smallfrogs Studio, 2.4.12.806]
[C:\KAV2007\KMailOEBand.dll] [Kingsoft Corporation, 2006, 12, 1, 139]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[D:\Program Files\360safe\safemon\safemon.dll] [, 3, 2, 0, 1001]
[C:\KAV2007\KASocket.dll] [Kingsoft Corporation, 2006, 12, 21, 241]

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM Error. ["hh.exe" %1]
.HLP Error. [winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

gtkx - 2007-5-14 20:09:00

==================================
Winsock 提供者
RSVP UDP Service Provider
C:\WINDOWS\system32\ESPI11.dll(DYWT, ESPI)
RSVP TCP Service Provider
C:\WINDOWS\system32\ESPI11.dll(DYWT, ESPI)

==================================
Autorun.inf
N/A

==================================
HOSTS 文件

gtkx - 2007-5-14 20:09:00

N/A
==================================
API HOOK
入口点错误：LoadLibraryExW (危险等级: 一般, 被下面模块所HOOK: C:\KAV2007\KASocket.dll)
入口点错误：CreateProcessA (危险等级: 一般, 被下面模块所HOOK: D:\Program Files\360safe\safemon\safemon.dll)
入口点错误：CreateProcessW (危险等级: 一般, 被下面模块所HOOK: D:\Program Files\360safe\safemon\safemon.dll)

==================================
隐藏进程
N/A

==================================

[/CODE]

gtkx - 2007-5-15 20:04:00

大家顺便看看卡卡扫的进程（我看日志发不完，到我的网盘去下载日志吧RasProc.txt）

http://gtkx.ys168.com

gtkx - 2007-5-15 20:05:00

[smss.exe]
PID = 0x12c
CommandLine =
smss.exe
0x48580000
C:\WINDOWS\system32\smss.exe
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT Session Manager
2004-08-04 00:52:38

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

[csrss.exe]
PID = 0x164
CommandLine = C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
csrss.exe
0x4a680000
c:\windows\system32\csrss.exe
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Client Server Runtime Process
2004-08-04 00:52:30

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

CSRSRV.dll
0x75aa0000
C:\WINDOWS\system32\csrsrv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Client Server Runtime Process
2004-08-04 00:52:08

basesrv.dll
0x75ab0000
C:\WINDOWS\system32\basesrv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT BASE API Server DLL
2004-08-04 00:52:08

winsrv.dll
0x764e0000
C:\WINDOWS\system32\winsrv.dll
5.1.2600.3103 (xpsp_sp2_gdr.070316-1309)
Microsoft Corporation
Windows Server DLL
2007-03-17 21:45:06

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

KERNEL32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

LPK.DLL
0x62c20000
C:\WINDOWS\system32\lpk.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Language Pack
2004-08-04 00:52:14

USP10.dll
0x73fa0000
C:\WINDOWS\system32\usp10.dll
1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Uniscribe Unicode script processor
2004-08-04 00:52:26

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

sxs.dll
0x75e00000
C:\WINDOWS\system32\sxs.dll
5.1.2600.3019 (xpsp_sp2_gdr.061019-0414)
Microsoft Corporation
Fusion 2.5
2006-10-20 09:37:48

[winlogon.exe]
PID = 0x17c
CommandLine = winlogon.exe
winlogon.exe
0x1000000
c:\windows\system32\winlogon.exe
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT Logon Application
2004-08-04 00:52:38

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

kernel32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

AUTHZ.dll
0x77fe0000
C:\WINDOWS\system32\authz.dll
5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)
Microsoft Corporation
Authorization Framework
2005-03-03 02:10:06

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

CRYPT32.dll
0x765e0000
C:\WINDOWS\system32\crypt32.dll
5.131.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Crypto API32
2004-08-04 00:52:08

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

gtkx - 2007-5-15 20:05:00

MSASN1.dll
0x76db0000
C:\WINDOWS\system32\msasn1.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ASN.1 Runtime APIs
2004-08-04 00:52:16

NDdeApi.dll
0x758a0000
C:\WINDOWS\system32\nddeapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Network DDE Share Management APIs
2004-08-04 00:52:20

PROFMAP.dll
0x75890000
C:\WINDOWS\system32\profmap.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Userenv
2004-08-04 00:52:22

NETAPI32.dll
0x5fdd0000
C:\WINDOWS\system32\netapi32.dll
5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)
Microsoft Corporation
Net Win32 API DLL
2006-08-17 20:29:48

USERENV.dll
0x759d0000
C:\WINDOWS\system32\userenv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Userenv
2004-08-04 00:52:26

PSAPI.DLL
0x76bc0000
C:\WINDOWS\system32\psapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Process Status Helper
2004-08-04 00:52:22

REGAPI.dll
0x76b90000
C:\WINDOWS\system32\regapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Registry Configuration APIs
2004-08-04 00:52:24

Secur32.dll
0x77fc0000
C:\WINDOWS\system32\secur32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Security Support Provider Interface
2004-08-04 00:52:24

SETUPAPI.dll
0x76060000
C:\WINDOWS\system32\setupapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Setup API
2004-08-04 00:52:24

VERSION.dll
0x77bd0000
C:\WINDOWS\system32\version.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Version Checking and File Installation Libraries
2004-08-04 00:52:26

WINSTA.dll
0x762d0000
C:\WINDOWS\system32\winsta.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Winstation Library
2004-08-04 00:52:28

WINTRUST.dll
0x76c00000
C:\WINDOWS\system32\wintrust.dll
5.131.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Trust Verification APIs
2004-08-04 00:52:28

IMAGEHLP.dll
0x76c60000
C:\WINDOWS\system32\imagehlp.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT Image Helper
2004-08-04 00:52:12

WS2_32.dll
0x71a20000
C:\WINDOWS\system32\ws2_32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 32-Bit DLL
2004-08-04 00:52:28

WS2HELP.dll
0x71a10000
C:\WINDOWS\system32\ws2help.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 Helper for Windows NT
2004-08-04 00:52:28

IMM32.DLL
0x76300000
C:\WINDOWS\system32\imm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows XP IMM32 API Client DLL
2004-08-04 00:52:12

LPK.DLL
0x62c20000
C:\WINDOWS\system32\lpk.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Language Pack
2004-08-04 00:52:14

USP10.dll
0x73fa0000
C:\WINDOWS\system32\usp10.dll
1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Uniscribe Unicode script processor
2004-08-04 00:52:26

MSGINA.dll
0x758d0000
C:\WINDOWS\system32\msgina.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT Logon GINA DLL
2004-08-04 00:52:18

SHELL32.dll
0x7d590000
C:\WINDOWS\system32\shell32.dll
6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)
Microsoft Corporation
Windows Shell Common Dll
2006-12-20 05:49:36

SHLWAPI.dll
0x77f40000
C:\WINDOWS\system32\shlwapi.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Shell Light-weight Utility Library
2007-02-19 23:22:06

COMCTL32.dll
0x5d170000
C:\WINDOWS\system32\comctl32.dll
5.82 (xpsp.060825-0040)
Microsoft Corporation
Common Controls Library
2006-08-25 23:49:44

ODBC32.dll
0x73540000
C:\WINDOWS\system32\odbc32.dll
3.525.1117.0 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Data Access - ODBC Driver Manager
2004-08-04 00:52:22

comdlg32.dll
0x76320000
C:\WINDOWS\system32\comdlg32.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Common Dialogs DLL
2004-08-04 00:52:08

comctl32.dll
0x77180000
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
6.0 (xpsp.060825-0040)
Microsoft Corporation
User Experience Controls Library
2006-08-25 23:49:42

odbcint.dll
0x20000000
C:\WINDOWS\system32\odbcint.dll
3.525.1117.0 built by: (_sqlbld)
Microsoft Corporation
Microsoft Data Access - ODBC Resources
2004-08-04 00:51:36

SHSVCS.dll
0x76e10000
C:\WINDOWS\system32\shsvcs.dll
6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)
Microsoft Corporation
Windows Shell Services Dll
2006-12-20 05:49:36

sfc.dll
0x76b80000
C:\WINDOWS\system32\sfc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows File Protection
2004-08-04 00:52:24

sfc_os.dll
0x76c30000
C:\WINDOWS\system32\sfc_os.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows 文件保护
2004-08-04 00:52:24

ole32.dll
0x76990000
C:\WINDOWS\system32\ole32.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Microsoft OLE for Windows
2005-07-26 12:39:50

Apphelp.dll
0x76d70000
C:\WINDOWS\system32\apphelp.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Application Compatibility Client Library
2004-08-04 00:52:06

msctfime.ime
0x73640000
C:\WINDOWS\system32\MSCTFIME.IME
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Text Frame Work Service IME
2004-08-04 00:51:20

WINSCARD.DLL
0x72360000
C:\WINDOWS\system32\winscard.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Smart Card API
2004-08-04 00:52:28

WTSAPI32.dll
0x76f20000
C:\WINDOWS\system32\wtsapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Terminal Server SDK APIs
2004-08-04 00:52:28

sxs.dll

gtkx - 2007-5-15 20:06:00

0x75e00000
C:\WINDOWS\system32\sxs.dll
5.1.2600.3019 (xpsp_sp2_gdr.061019-0414)
Microsoft Corporation
Fusion 2.5
2006-10-20 09:37:48

WINMM.dll
0x76b10000
C:\WINDOWS\system32\winmm.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
MCI API DLL
2004-08-04 00:52:28

uxtheme.dll
0x5adc0000
C:\WINDOWS\system32\uxtheme.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft UxTheme Library
2007-01-30 12:49:58

cscdll.dll
0x76570000
C:\WINDOWS\system32\cscdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Offline Network Agent
2004-08-04 00:52:08

rsaenh.dll
0xffd0000
C:\WINDOWS\system32\rsaenh.dll
5.1.2600.2161 (xpsp.040706-1629)
Microsoft Corporation
Microsoft Enhanced Cryptographic Provider
2004-08-03 22:31:44

WlNotify.dll
0x758b0000
C:\WINDOWS\system32\wlnotify.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Common DLL to receive Winlogon notifications
2004-08-04 00:52:28

WINSPOOL.DRV
0x72f70000
C:\WINDOWS\system32\winspool.drv
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Spooler Driver
2004-08-04 00:52:42

MPR.dll
0x71a90000
C:\WINDOWS\system32\mpr.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Multiple Provider Router DLL
2004-08-04 00:52:16

SAMLIB.dll
0x71b70000
C:\WINDOWS\system32\samlib.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
SAM Library DLL
2004-08-04 00:52:24

msv1_0.dll
0x77c40000
C:\WINDOWS\system32\msv1_0.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Authentication Package v1.0
2004-08-04 00:52:20

iphlpapi.dll
0x76d30000
C:\WINDOWS\system32\iphlpapi.dll
5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)
Microsoft Corporation
IP Helper API
2006-05-19 21:14:08

SSMWinlogonEx.dll
0x3100000
C:\WINDOWS\system32\SSMWinlogonEx.dll
2.0.8.584
System Safety Limited
System Safety Winlogon Notification
2007-03-20 22:04:04

cscui.dll
0x76590000
C:\WINDOWS\system32\cscui.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Client Side Caching UI
2004-08-04 00:52:08

wldap32.dll
0x76f30000
C:\WINDOWS\system32\wldap32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Win32 LDAP API DLL
2004-08-04 00:52:28

MPRAPI.dll
0x76d10000
C:\WINDOWS\system32\mprapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT MP Router Administration DLL
2004-08-04 00:52:16

ACTIVEDS.dll
0x77c90000
C:\WINDOWS\system32\activeds.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ADs Router Layer DLL
2004-08-04 00:52:06

adsldpc.dll
0x76de0000
C:\WINDOWS\system32\adsldpc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ADs LDAP Provider C DLL
2004-08-04 00:52:06

ATL.DLL
0x76af0000
C:\WINDOWS\system32\atl.dll
3.05.2284
Microsoft Corporation
ATL Module for Windows XP (Unicode)
2004-08-04 00:52:08

OLEAUT32.dll
0x770f0000
C:\WINDOWS\system32\oleaut32.dll
5.1.2600.2180
Microsoft Corporation

2004-08-04 00:52:22

rtutils.dll
0x76e50000
C:\WINDOWS\system32\rtutils.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Routing Utilities
2004-08-04 00:52:24

xpsp2res.dll
0x16c0000
C:\WINDOWS\system32\xpsp2res.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Service Pack 2 Messages
2004-08-04 00:51:48

wdmaud.drv
0x72c90000
C:\WINDOWS\system32\wdmaud.drv
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WDM Audio driver mapper
2004-08-04 00:52:42

NTMARTA.DLL
0x76cb0000
C:\WINDOWS\system32\ntmarta.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT MARTA provider
2004-08-04 00:52:20

msacm32.drv
0x72c80000
C:\WINDOWS\system32\msacm32.drv
5.1.2600.0 (xpclient.010817-1148)
Microsoft Corporation
Microsoft Sound Mapper
2002-10-07 20:00:00

MSACM32.dll
0x77bb0000
C:\WINDOWS\system32\msacm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft ACM Audio Filter
2004-08-04 00:52:16

midimap.dll
0x77ba0000
C:\WINDOWS\system32\midimap.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft MIDI Mapper
2004-08-04 00:52:16

COMRes.dll
0x77020000
C:\WINDOWS\system32\comres.dll
2001.12.4414.258
Microsoft Corporation

2004-08-04 00:52:08

CLBCATQ.DLL
0x76fa0000
C:\WINDOWS\system32\clbcatq.dll
2001.12.4414.308
Microsoft Corporation

2005-07-26 12:39:46

[SERVICES.EXE]
PID = 0x1a8
CommandLine = C:\WINDOWS\system32\services.exe
services.exe
0x1000000
C:\WINDOWS\system32\services.exe
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Services and Controller app

gtkx - 2007-5-15 20:08:00

2004-08-04 00:52:38

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

kernel32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

USERENV.dll
0x759d0000
C:\WINDOWS\system32\userenv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Userenv
2004-08-04 00:52:26

SCESRV.dll
0x75840000
C:\WINDOWS\system32\scesrv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Security Configuration Editor Engine
2004-08-04 00:52:24

AUTHZ.dll
0x77fe0000
C:\WINDOWS\system32\authz.dll
5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)
Microsoft Corporation
Authorization Framework
2005-03-03 02:10:06

umpnpmgr.dll
0x7e1e0000
C:\WINDOWS\system32\umpnpmgr.dll
5.1.2600.2744 (xpsp_sp2_gdr.050822-1647)
Microsoft Corporation
User-mode Plug-and-Play Service
2005-08-23 11:39:56

WINSTA.dll
0x762d0000
C:\WINDOWS\system32\winsta.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Winstation Library
2004-08-04 00:52:28

NETAPI32.dll
0x5fdd0000
C:\WINDOWS\system32\netapi32.dll
5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)
Microsoft Corporation
Net Win32 API DLL
2006-08-17 20:29:48

NCObjAPI.DLL
0x5f9a0000
C:\WINDOWS\system32\ncobjapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation

2004-08-04 00:52:20

MSVCP60.dll
0x75ff0000
C:\WINDOWS\system32\msvcp60.dll
6.02.3104.0
Microsoft Corporation
Microsoft (R) C++ Runtime Library
2004-08-04 00:52:20

ShimEng.dll
0x5cc30000
C:\WINDOWS\system32\shimeng.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Shim Engine DLL
2004-08-04 00:52:24

AcGenral.DLL
0x58fb0000
C:\WINDOWS\AppPatch\AcGenral.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Compatibility DLL
2004-08-04 00:52:06

WINMM.dll
0x76b10000
C:\WINDOWS\system32\winmm.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
MCI API DLL
2004-08-04 00:52:28

ole32.dll
0x76990000
C:\WINDOWS\system32\ole32.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Microsoft OLE for Windows
2005-07-26 12:39:50

OLEAUT32.dll
0x770f0000
C:\WINDOWS\system32\oleaut32.dll
5.1.2600.2180
Microsoft Corporation

2004-08-04 00:52:22

MSACM32.dll
0x77bb0000
C:\WINDOWS\system32\msacm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft ACM Audio Filter
2004-08-04 00:52:16

VERSION.dll
0x77bd0000
C:\WINDOWS\system32\version.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Version Checking and File Installation Libraries
2004-08-04 00:52:26

SHELL32.dll
0x7d590000
C:\WINDOWS\system32\shell32.dll
6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)
Microsoft Corporation
Windows Shell Common Dll
2006-12-20 05:49:36

SHLWAPI.dll
0x77f40000
C:\WINDOWS\system32\shlwapi.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Shell Light-weight Utility Library
2007-02-19 23:22:06

UxTheme.dll
0x5adc0000
C:\WINDOWS\system32\uxtheme.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft UxTheme Library
2007-01-30 12:49:58

IMM32.DLL
0x76300000
C:\WINDOWS\system32\imm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows XP IMM32 API Client DLL
2004-08-04 00:52:12

LPK.DLL
0x62c20000
C:\WINDOWS\system32\lpk.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Language Pack
2004-08-04 00:52:14

USP10.dll
0x73fa0000
C:\WINDOWS\system32\usp10.dll
1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Uniscribe Unicode script processor
2004-08-04 00:52:26

comctl32.dll
0x77180000
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
6.0 (xpsp.060825-0040)
Microsoft Corporation
User Experience Controls Library
2006-08-25 23:49:42

comctl32.dll
0x5d170000
C:\WINDOWS\system32\comctl32.dll
5.82 (xpsp.060825-0040)
Microsoft Corporation
Common Controls Library
2006-08-25 23:49:44

secur32.dll
0x77fc0000
C:\WINDOWS\system32\secur32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Security Support Provider Interface
2004-08-04 00:52:24

Apphelp.dll
0x76d70000
C:\WINDOWS\system32\apphelp.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Application Compatibility Client Library
2004-08-04 00:52:06

eventlog.dll
0x76ce0000
C:\WINDOWS\system32\eventlog.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Event Logging Service
2004-08-04 00:52:10

WS2_32.dll
0x71a20000
C:\WINDOWS\system32\ws2_32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 32-Bit DLL
2004-08-04 00:52:28

gtkx - 2007-5-15 20:08:00

WS2HELP.dll
0x71a10000
C:\WINDOWS\system32\ws2help.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 Helper for Windows NT
2004-08-04 00:52:28

PSAPI.DLL
0x76bc0000
C:\WINDOWS\system32\psapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Process Status Helper
2004-08-04 00:52:22

wtsapi32.dll
0x76f20000
C:\WINDOWS\system32\wtsapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Terminal Server SDK APIs
2004-08-04 00:52:28

[LSASS.EXE]
PID = 0x1b4
CommandLine = C:\WINDOWS\system32\lsass.exe
lsass.exe
0x1000000
C:\WINDOWS\system32\lsass.exe
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
LSA Shell (Export Version)
2004-08-04 00:52:32

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

kernel32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

LSASRV.dll
0x74480000
C:\WINDOWS\system32\lsasrv.dll
5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)
Microsoft Corporation
LSA Server DLL
2006-08-17 20:29:48

MPR.dll
0x71a90000
C:\WINDOWS\system32\mpr.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Multiple Provider Router DLL
2004-08-04 00:52:16

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

MSASN1.dll
0x76db0000
C:\WINDOWS\system32\msasn1.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ASN.1 Runtime APIs
2004-08-04 00:52:16

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

NETAPI32.dll
0x5fdd0000
C:\WINDOWS\system32\netapi32.dll
5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)
Microsoft Corporation
Net Win32 API DLL
2006-08-17 20:29:48

NTDSAPI.dll
0x76770000
C:\WINDOWS\system32\ntdsapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT5DS
2004-08-04 00:52:20

gtkx - 2007-5-15 20:09:00

DNSAPI.dll
0x76ef0000
C:\WINDOWS\system32\dnsapi.dll
5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)
Microsoft Corporation
DNS Client API DLL
2006-06-27 01:41:40

WS2_32.dll
0x71a20000
C:\WINDOWS\system32\ws2_32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 32-Bit DLL
2004-08-04 00:52:28

WS2HELP.dll
0x71a10000
C:\WINDOWS\system32\ws2help.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 Helper for Windows NT
2004-08-04 00:52:28

WLDAP32.dll
0x76f30000
C:\WINDOWS\system32\wldap32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Win32 LDAP API DLL
2004-08-04 00:52:28

Secur32.dll
0x77fc0000
C:\WINDOWS\system32\secur32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Security Support Provider Interface
2004-08-04 00:52:24

SAMLIB.dll
0x71b70000
C:\WINDOWS\system32\samlib.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
SAM Library DLL
2004-08-04 00:52:24

SAMSRV.dll
0x743a0000
C:\WINDOWS\system32\samsrv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
SAM Server DLL
2004-08-04 00:52:24

cryptdll.dll
0x76760000
C:\WINDOWS\system32\cryptdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Cryptography Manager
2004-08-04 00:52:08

ShimEng.dll
0x5cc30000
C:\WINDOWS\system32\shimeng.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Shim Engine DLL
2004-08-04 00:52:24

AcGenral.DLL
0x58fb0000
C:\WINDOWS\AppPatch\AcGenral.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Compatibility DLL
2004-08-04 00:52:06

WINMM.dll
0x76b10000
C:\WINDOWS\system32\winmm.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
MCI API DLL
2004-08-04 00:52:28

ole32.dll
0x76990000
C:\WINDOWS\system32\ole32.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Microsoft OLE for Windows
2005-07-26 12:39:50

OLEAUT32.dll
0x770f0000
C:\WINDOWS\system32\oleaut32.dll
5.1.2600.2180
Microsoft Corporation

2004-08-04 00:52:22

MSACM32.dll
0x77bb0000
C:\WINDOWS\system32\msacm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft ACM Audio Filter
2004-08-04 00:52:16

VERSION.dll
0x77bd0000
C:\WINDOWS\system32\version.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Version Checking and File Installation Libraries
2004-08-04 00:52:26

SHELL32.dll
0x7d590000
C:\WINDOWS\system32\shell32.dll
6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)
Microsoft Corporation
Windows Shell Common Dll
2006-12-20 05:49:36

SHLWAPI.dll
0x77f40000
C:\WINDOWS\system32\shlwapi.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Shell Light-weight Utility Library
2007-02-19 23:22:06

USERENV.dll
0x759d0000
C:\WINDOWS\system32\userenv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Userenv
2004-08-04 00:52:26

UxTheme.dll
0x5adc0000
C:\WINDOWS\system32\uxtheme.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft UxTheme Library
2007-01-30 12:49:58

IMM32.DLL
0x76300000
C:\WINDOWS\system32\imm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows XP IMM32 API Client DLL
2004-08-04 00:52:12

LPK.DLL
0x62c20000
C:\WINDOWS\system32\lpk.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Language Pack
2004-08-04 00:52:14

USP10.dll
0x73fa0000
C:\WINDOWS\system32\usp10.dll
1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Uniscribe Unicode script processor
2004-08-04 00:52:26

comctl32.dll
0x77180000
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
6.0 (xpsp.060825-0040)
Microsoft Corporation
User Experience Controls Library
2006-08-25 23:49:42

comctl32.dll
0x5d170000
C:\WINDOWS\system32\comctl32.dll
5.82 (xpsp.060825-0040)
Microsoft Corporation
Common Controls Library
2006-08-25 23:49:44

msprivs.dll
0x20000000
C:\WINDOWS\system32\msprivs.dll

gtkx - 2007-5-15 20:09:00

5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Privilege Translations
2004-08-04 00:51:28

kerberos.dll
0x71c70000
C:\WINDOWS\system32\kerberos.dll
5.1.2600.2698 (xpsp_sp2_gdr.050614-1522)
Microsoft Corporation
Kerberos Security Package
2005-06-16 01:50:14

msv1_0.dll
0x77c40000
C:\WINDOWS\system32\msv1_0.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Authentication Package v1.0
2004-08-04 00:52:20

iphlpapi.dll
0x76d30000
C:\WINDOWS\system32\iphlpapi.dll
5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)
Microsoft Corporation
IP Helper API
2006-05-19 21:14:08

netlogon.dll
0x74410000
C:\WINDOWS\system32\netlogon.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Net Logon Services DLL
2004-08-04 00:52:20

w32time.dll
0x76790000
C:\WINDOWS\system32\w32time.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Time Service
2004-08-04 00:52:26

MSVCP60.dll
0x75ff0000
C:\WINDOWS\system32\msvcp60.dll
6.02.3104.0
Microsoft Corporation
Microsoft (R) C++ Runtime Library
2004-08-04 00:52:20

schannel.dll
0x767c0000
C:\WINDOWS\system32\schannel.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
TLS / SSL Security Provider
2004-08-04 00:52:24

CRYPT32.dll
0x765e0000
C:\WINDOWS\system32\crypt32.dll
5.131.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Crypto API32
2004-08-04 00:52:08

wdigest.dll
0x742e0000
C:\WINDOWS\system32\wdigest.dll
5.1.2600.2874 (xpsp_sp2_gdr.060323-1516)
Microsoft Corporation
Microsoft Digest Access
2006-03-24 12:39:46

rsaenh.dll
0xffd0000
C:\WINDOWS\system32\rsaenh.dll
5.1.2600.2161 (xpsp.040706-1629)
Microsoft Corporation
Microsoft Enhanced Cryptographic Provider
2004-08-03 22:31:44

setupapi.dll
0x76060000
C:\WINDOWS\system32\setupapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Setup API
2004-08-04 00:52:24

scecli.dll
0x74370000
C:\WINDOWS\system32\scecli.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Security Configuration Editor Client Engine
2004-08-04 00:52:24

ipsecsvc.dll
0x74340000
C:\WINDOWS\system32\ipsecsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows IPSec SPD Server DLL
2004-08-04 00:52:14

gtkx - 2007-5-15 20:10:00

AUTHZ.dll
0x77fe0000
C:\WINDOWS\system32\authz.dll
5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)
Microsoft Corporation
Authorization Framework
2005-03-03 02:10:06

oakley.DLL
0x73ed0000
C:\WINDOWS\system32\oakley.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Oakley Key Manager
2004-08-04 00:52:20

WINIPSEC.DLL
0x742d0000
C:\WINDOWS\system32\winipsec.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows IPSec SPD Client DLL
2004-08-04 00:52:28

pstorsvc.dll
0x74300000
C:\WINDOWS\system32\pstorsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Protected storage server
2004-08-04 00:52:22

mswsock.dll
0x719c0000
C:\WINDOWS\system32\mswsock.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Windows Sockets 2.0 Service Provider
2004-08-04 00:52:20

psbase.dll
0x74320000
C:\WINDOWS\system32\psbase.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Protected Storage default provider
2004-08-04 00:52:22

hnetcfg.dll
0x60fd0000
C:\WINDOWS\system32\hnetcfg.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Home Networking Configuration Manager
2004-08-04 00:52:12

wshtcpip.dll
0x71a00000
C:\WINDOWS\system32\wshtcpip.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Sockets Helper DLL
2004-08-04 00:52:28

dssenh.dll
0x68100000
C:\WINDOWS\system32\dssenh.dll
5.1.2600.2133 (xpsp.040514-1639)
Microsoft Corporation
Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider
2004-08-03 22:31:44

[SVCHOST.EXE]
PID = 0x248
CommandLine = C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
0x1000000
C:\WINDOWS\system32\svchost.exe
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Generic Host Process for Win32 Services
2004-08-04 00:52:38

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

kernel32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

ShimEng.dll
0x5cc30000
C:\WINDOWS\system32\shimeng.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Shim Engine DLL
2004-08-04 00:52:24

AcGenral.DLL
0x58fb0000
C:\WINDOWS\AppPatch\AcGenral.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Compatibility DLL
2004-08-04 00:52:06

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

WINMM.dll
0x76b10000
C:\WINDOWS\system32\winmm.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
MCI API DLL
2004-08-04 00:52:28

ole32.dll
0x76990000
C:\WINDOWS\system32\ole32.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Microsoft OLE for Windows
2005-07-26 12:39:50

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

OLEAUT32.dll
0x770f0000
C:\WINDOWS\system32\oleaut32.dll
5.1.2600.2180
Microsoft Corporation

2004-08-04 00:52:22

MSACM32.dll
0x77bb0000
C:\WINDOWS\system32\msacm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft ACM Audio Filter
2004-08-04 00:52:16

VERSION.dll
0x77bd0000
C:\WINDOWS\system32\version.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation

gtkx - 2007-5-15 20:10:00

Version Checking and File Installation Libraries
2004-08-04 00:52:26

SHELL32.dll
0x7d590000
C:\WINDOWS\system32\shell32.dll
6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)
Microsoft Corporation
Windows Shell Common Dll
2006-12-20 05:49:36

SHLWAPI.dll
0x77f40000
C:\WINDOWS\system32\shlwapi.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Shell Light-weight Utility Library
2007-02-19 23:22:06

USERENV.dll
0x759d0000
C:\WINDOWS\system32\userenv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Userenv
2004-08-04 00:52:26

UxTheme.dll
0x5adc0000
C:\WINDOWS\system32\uxtheme.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft UxTheme Library
2007-01-30 12:49:58

IMM32.DLL
0x76300000
C:\WINDOWS\system32\imm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows XP IMM32 API Client DLL
2004-08-04 00:52:12

LPK.DLL
0x62c20000
C:\WINDOWS\system32\lpk.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Language Pack
2004-08-04 00:52:14

USP10.dll
0x73fa0000
C:\WINDOWS\system32\usp10.dll
1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Uniscribe Unicode script processor
2004-08-04 00:52:26

comctl32.dll
0x77180000
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
6.0 (xpsp.060825-0040)
Microsoft Corporation
User Experience Controls Library
2006-08-25 23:49:42

comctl32.dll
0x5d170000
C:\WINDOWS\system32\comctl32.dll
5.82 (xpsp.060825-0040)
Microsoft Corporation
Common Controls Library
2006-08-25 23:49:44

NTMARTA.DLL
0x76cb0000
C:\WINDOWS\system32\ntmarta.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT MARTA provider
2004-08-04 00:52:20

WLDAP32.dll
0x76f30000
C:\WINDOWS\system32\wldap32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Win32 LDAP API DLL
2004-08-04 00:52:28

SAMLIB.dll
0x71b70000
C:\WINDOWS\system32\samlib.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
SAM Library DLL
2004-08-04 00:52:24

rpcss.dll
0x76230000
c:\WINDOWS\system32\rpcss.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Distributed COM Services
2005-07-26 12:39:50

Secur32.dll
0x77fc0000
c:\WINDOWS\system32\secur32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Security Support Provider Interface
2004-08-04 00:52:24

WS2_32.dll
0x71a20000
c:\WINDOWS\system32\ws2_32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 32-Bit DLL
2004-08-04 00:52:28

WS2HELP.dll
0x71a10000
c:\WINDOWS\system32\ws2help.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 Helper for Windows NT
2004-08-04 00:52:28

xpsp2res.dll
0x20000000
C:\WINDOWS\system32\xpsp2res.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Service Pack 2 Messages
2004-08-04 00:51:48

CLBCATQ.DLL
0x76fa0000
C:\WINDOWS\system32\clbcatq.dll
2001.12.4414.308
Microsoft Corporation

2005-07-26 12:39:46

COMRes.dll
0x77020000
C:\WINDOWS\system32\comres.dll
2001.12.4414.258
Microsoft Corporation

2004-08-04 00:52:08

termsrv.dll
0x761c0000
c:\WINDOWS\system32\termsrv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Terminal Server Service
2004-08-04 08:52:26

ICAAPI.dll
0x74ed0000
c:\WINDOWS\system32\icaapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
DLL Interface to TermDD Device Driver
2004-08-04 08:52:12

SETUPAPI.dll
0x76060000
c:\WINDOWS\system32\setupapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Setup API
2004-08-04 00:52:24

WINTRUST.dll
0x76c00000
C:\WINDOWS\system32\wintrust.dll
5.131.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Trust Verification APIs
2004-08-04 00:52:28

CRYPT32.dll
0x765e0000
C:\WINDOWS\system32\crypt32.dll
5.131.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Crypto API32
2004-08-04 00:52:08

gtkx - 2007-5-15 20:10:00

MSASN1.dll
0x76db0000
C:\WINDOWS\system32\msasn1.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ASN.1 Runtime APIs
2004-08-04 00:52:16

IMAGEHLP.dll
0x76c60000
C:\WINDOWS\system32\imagehlp.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT Image Helper
2004-08-04 00:52:12

AUTHZ.dll
0x77fe0000
c:\WINDOWS\system32\authz.dll
5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)
Microsoft Corporation
Authorization Framework
2005-03-03 02:10:06

mstlsapi.dll
0x75070000
c:\WINDOWS\system32\mstlsapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft? Terminal Server Licensing
2004-08-04 00:52:20

ACTIVEDS.dll
0x77c90000
c:\WINDOWS\system32\activeds.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ADs Router Layer DLL
2004-08-04 00:52:06

adsldpc.dll
0x76de0000
c:\WINDOWS\system32\adsldpc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ADs LDAP Provider C DLL
2004-08-04 00:52:06

NETAPI32.dll
0x5fdd0000
C:\WINDOWS\system32\netapi32.dll
5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)
Microsoft Corporation
Net Win32 API DLL
2006-08-17 20:29:48

ATL.DLL
0x76af0000
c:\WINDOWS\system32\atl.dll
3.05.2284
Microsoft Corporation
ATL Module for Windows XP (Unicode)
2004-08-04 00:52:08

REGAPI.dll
0x76b90000
C:\WINDOWS\system32\regapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Registry Configuration APIs
2004-08-04 00:52:24

rsaenh.dll
0xffd0000
C:\WINDOWS\system32\rsaenh.dll
5.1.2600.2161 (xpsp.040706-1629)
Microsoft Corporation
Microsoft Enhanced Cryptographic Provider
2004-08-03 22:31:44

Apphelp.dll
0x76d70000
C:\WINDOWS\system32\apphelp.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Application Compatibility Client Library
2004-08-04 00:52:06

[SVCHOST.EXE]
PID = 0x278
CommandLine = C:\WINDOWS\system32\svchost -k rpcss
svchost.exe
0x1000000
C:\WINDOWS\system32\svchost.exe
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Generic Host Process for Win32 Services
2004-08-04 00:52:38

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

kernel32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

ShimEng.dll
0x5cc30000
C:\WINDOWS\system32\shimeng.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Shim Engine DLL
2004-08-04 00:52:24

AcGenral.DLL
0x58fb0000
C:\WINDOWS\AppPatch\AcGenral.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Compatibility DLL
2004-08-04 00:52:06

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

WINMM.dll
0x76b10000
C:\WINDOWS\system32\winmm.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
MCI API DLL
2004-08-04 00:52:28

gtkx - 2007-5-15 20:11:00

ole32.dll
0x76990000
C:\WINDOWS\system32\ole32.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Microsoft OLE for Windows
2005-07-26 12:39:50

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

OLEAUT32.dll
0x770f0000
C:\WINDOWS\system32\oleaut32.dll
5.1.2600.2180
Microsoft Corporation

2004-08-04 00:52:22

MSACM32.dll
0x77bb0000
C:\WINDOWS\system32\msacm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft ACM Audio Filter
2004-08-04 00:52:16

VERSION.dll
0x77bd0000
C:\WINDOWS\system32\version.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Version Checking and File Installation Libraries
2004-08-04 00:52:26

SHELL32.dll
0x7d590000
C:\WINDOWS\system32\shell32.dll
6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)
Microsoft Corporation
Windows Shell Common Dll
2006-12-20 05:49:36

SHLWAPI.dll
0x77f40000
C:\WINDOWS\system32\shlwapi.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Shell Light-weight Utility Library
2007-02-19 23:22:06

USERENV.dll
0x759d0000
C:\WINDOWS\system32\userenv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Userenv
2004-08-04 00:52:26

UxTheme.dll
0x5adc0000
C:\WINDOWS\system32\uxtheme.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft UxTheme Library
2007-01-30 12:49:58

IMM32.DLL
0x76300000
C:\WINDOWS\system32\imm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows XP IMM32 API Client DLL
2004-08-04 00:52:12

LPK.DLL
0x62c20000
C:\WINDOWS\system32\lpk.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Language Pack
2004-08-04 00:52:14

USP10.dll
0x73fa0000
C:\WINDOWS\system32\usp10.dll
1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Uniscribe Unicode script processor
2004-08-04 00:52:26

comctl32.dll
0x77180000
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
6.0 (xpsp.060825-0040)
Microsoft Corporation
User Experience Controls Library
2006-08-25 23:49:42

comctl32.dll
0x5d170000
C:\WINDOWS\system32\comctl32.dll
5.82 (xpsp.060825-0040)
Microsoft Corporation
Common Controls Library
2006-08-25 23:49:44

rpcss.dll
0x76230000
c:\WINDOWS\system32\rpcss.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Distributed COM Services
2005-07-26 12:39:50

Secur32.dll
0x77fc0000
c:\WINDOWS\system32\secur32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Security Support Provider Interface
2004-08-04 00:52:24

WS2_32.dll
0x71a20000
c:\WINDOWS\system32\ws2_32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 32-Bit DLL
2004-08-04 00:52:28

WS2HELP.dll
0x71a10000
c:\WINDOWS\system32\ws2help.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 Helper for Windows NT
2004-08-04 00:52:28

xpsp2res.dll
0x20000000
C:\WINDOWS\system32\xpsp2res.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Service Pack 2 Messages
2004-08-04 00:51:48

rsaenh.dll
0xffd0000
C:\WINDOWS\system32\rsaenh.dll
5.1.2600.2161 (xpsp.040706-1629)
Microsoft Corporation
Microsoft Enhanced Cryptographic Provider
2004-08-03 22:31:44

mswsock.dll
0x719c0000
C:\WINDOWS\system32\mswsock.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Windows Sockets 2.0 Service Provider
2004-08-04 00:52:20

hnetcfg.dll
0x60fd0000
C:\WINDOWS\system32\hnetcfg.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Home Networking Configuration Manager
2004-08-04 00:52:12

wshtcpip.dll
0x71a00000
C:\WINDOWS\system32\wshtcpip.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Sockets Helper DLL
2004-08-04 00:52:28

DNSAPI.dll
0x76ef0000
C:\WINDOWS\system32\dnsapi.dll
5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)
Microsoft Corporation
DNS Client API DLL
2006-06-27 01:41:40

iphlpapi.dll
0x76d30000
C:\WINDOWS\system32\iphlpapi.dll
5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)
Microsoft Corporation
IP Helper API
2006-05-19 21:14:08

gtkx - 2007-5-15 20:11:00

winrnr.dll
0x76f80000
C:\WINDOWS\system32\winrnr.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
LDAP RnR Provider DLL
2004-08-04 00:52:28

WLDAP32.dll
0x76f30000
C:\WINDOWS\system32\wldap32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Win32 LDAP API DLL
2004-08-04 00:52:28

rasadhlp.dll
0x76f90000
C:\WINDOWS\system32\rasadhlp.dll
5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)
Microsoft Corporation
Remote Access AutoDial Helper
2006-06-27 01:41:40

CLBCATQ.DLL
0x76fa0000
C:\WINDOWS\system32\clbcatq.dll
2001.12.4414.308
Microsoft Corporation

2005-07-26 12:39:46

COMRes.dll
0x77020000
C:\WINDOWS\system32\comres.dll
2001.12.4414.258
Microsoft Corporation

2004-08-04 00:52:08

[SVCHOST.EXE]
PID = 0x2b8
CommandLine = C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
0x1000000
C:\WINDOWS\system32\svchost.exe
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Generic Host Process for Win32 Services
2004-08-04 00:52:38

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

kernel32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

ShimEng.dll
0x5cc30000
C:\WINDOWS\system32\shimeng.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Shim Engine DLL
2004-08-04 00:52:24

AcGenral.DLL
0x58fb0000
C:\WINDOWS\AppPatch\AcGenral.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Compatibility DLL
2004-08-04 00:52:06

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

WINMM.dll
0x76b10000
C:\WINDOWS\system32\winmm.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
MCI API DLL
2004-08-04 00:52:28

ole32.dll
0x76990000
C:\WINDOWS\system32\ole32.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Microsoft OLE for Windows
2005-07-26 12:39:50

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

OLEAUT32.dll
0x770f0000
C:\WINDOWS\system32\oleaut32.dll
5.1.2600.2180
Microsoft Corporation

2004-08-04 00:52:22

MSACM32.dll
0x77bb0000
C:\WINDOWS\system32\msacm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft ACM Audio Filter
2004-08-04 00:52:16

VERSION.dll
0x77bd0000
C:\WINDOWS\system32\version.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Version Checking and File Installation Libraries
2004-08-04 00:52:26

SHELL32.dll
0x7d590000
C:\WINDOWS\system32\shell32.dll
6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)
Microsoft Corporation
Windows Shell Common Dll
2006-12-20 05:49:36

SHLWAPI.dll
0x77f40000

gtkx - 2007-5-15 20:12:00

C:\WINDOWS\system32\shlwapi.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Shell Light-weight Utility Library
2007-02-19 23:22:06

USERENV.dll
0x759d0000
C:\WINDOWS\system32\userenv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Userenv
2004-08-04 00:52:26

UxTheme.dll
0x5adc0000
C:\WINDOWS\system32\uxtheme.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft UxTheme Library
2007-01-30 12:49:58

IMM32.DLL
0x76300000
C:\WINDOWS\system32\imm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows XP IMM32 API Client DLL
2004-08-04 00:52:12

LPK.DLL
0x62c20000
C:\WINDOWS\system32\lpk.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Language Pack
2004-08-04 00:52:14

USP10.dll
0x73fa0000
C:\WINDOWS\system32\usp10.dll
1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Uniscribe Unicode script processor
2004-08-04 00:52:26

comctl32.dll
0x77180000
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
6.0 (xpsp.060825-0040)
Microsoft Corporation
User Experience Controls Library
2006-08-25 23:49:42

comctl32.dll
0x5d170000
C:\WINDOWS\system32\comctl32.dll
5.82 (xpsp.060825-0040)
Microsoft Corporation
Common Controls Library
2006-08-25 23:49:44

NTMARTA.DLL
0x76cb0000
C:\WINDOWS\system32\ntmarta.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT MARTA provider
2004-08-04 00:52:20

WLDAP32.dll
0x76f30000
C:\WINDOWS\system32\wldap32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Win32 LDAP API DLL
2004-08-04 00:52:28

SAMLIB.dll
0x71b70000
C:\WINDOWS\system32\samlib.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
SAM Library DLL
2004-08-04 00:52:24

xpsp2res.dll
0x20000000
C:\WINDOWS\system32\xpsp2res.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Service Pack 2 Messages
2004-08-04 00:51:48

shsvcs.dll
0x76e10000
c:\WINDOWS\system32\shsvcs.dll
6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)
Microsoft Corporation
Windows Shell Services Dll
2006-12-20 05:49:36

WINSTA.dll
0x762d0000
C:\WINDOWS\system32\winsta.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Winstation Library
2004-08-04 00:52:28

NETAPI32.dll
0x5fdd0000
C:\WINDOWS\system32\netapi32.dll
5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)
Microsoft Corporation
Net Win32 API DLL
2006-08-17 20:29:48

rsaenh.dll
0xffd0000
C:\WINDOWS\system32\rsaenh.dll
5.1.2600.2161 (xpsp.040706-1629)
Microsoft Corporation
Microsoft Enhanced Cryptographic Provider
2004-08-03 22:31:44

dhcpcsvc.dll
0x76d50000
c:\WINDOWS\system32\dhcpcsvc.dll
5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)
Microsoft Corporation
DHCP Client Service
2006-05-19 21:14:08

DNSAPI.dll
0x76ef0000
c:\WINDOWS\system32\dnsapi.dll
5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)
Microsoft Corporation
DNS Client API DLL
2006-06-27 01:41:40

WS2_32.dll
0x71a20000
c:\WINDOWS\system32\ws2_32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 32-Bit DLL
2004-08-04 00:52:28

WS2HELP.dll
0x71a10000
c:\WINDOWS\system32\ws2help.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 Helper for Windows NT
2004-08-04 00:52:28

iphlpapi.dll
0x76d30000
c:\WINDOWS\system32\iphlpapi.dll
5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)
Microsoft Corporation
IP Helper API
2006-05-19 21:14:08

Secur32.dll
0x77fc0000
c:\WINDOWS\system32\secur32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Security Support Provider Interface
2004-08-04 00:52:24

wzcsvc.dll
0x77290000
c:\WINDOWS\system32\wzcsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Wireless Zero Configuration Service
2004-08-04 01:02:28

rtutils.dll
0x76e50000
c:\WINDOWS\system32\rtutils.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Routing Utilities
2004-08-04 00:52:24

WMI.dll
0x76d00000
c:\WINDOWS\system32\wmi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI DC and DP functionality
2004-08-04 00:52:00

CRYPT32.dll
0x765e0000
C:\WINDOWS\system32\crypt32.dll
5.131.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Crypto API32
2004-08-04 00:52:08

MSASN1.dll
0x76db0000
C:\WINDOWS\system32\msasn1.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ASN.1 Runtime APIs
2004-08-04 00:52:16

WTSAPI32.dll
0x76f20000
c:\WINDOWS\system32\wtsapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Terminal Server SDK APIs
2004-08-04 00:52:28

ESENT.dll
0x5df20000
c:\WINDOWS\system32\esent.dll
5.1.2468.0 (Lab03_N(jliem).010306-1456)
Microsoft Corporation
服务器数据库存储引擎
2005-10-21 06:26:40

ATL.DLL
0x76af0000
c:\WINDOWS\system32\atl.dll
3.05.2284
Microsoft Corporation
ATL Module for Windows XP (Unicode)
2004-08-04 00:52:08

SETUPAPI.DLL
0x76060000
C:\WINDOWS\system32\setupapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Setup API
2004-08-04 00:52:24

rastls.dll
0x75db0000
C:\WINDOWS\system32\rastls.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Access PPP EAP-TLS
2004-08-04 00:52:24

CRYPTUI.dll
0x75430000
C:\WINDOWS\system32\cryptui.dll
5.131.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Trust UI Provider
2004-08-04 00:52:08

WINTRUST.dll
0x76c00000
C:\WINDOWS\system32\wintrust.dll
5.131.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Trust Verification APIs
2004-08-04 00:52:28

IMAGEHLP.dll
0x76c60000
C:\WINDOWS\system32\imagehlp.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT Image Helper
2004-08-04 00:52:12

WININET.dll

gtkx - 2007-5-15 20:12:00

0x76680000
C:\WINDOWS\system32\wininet.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Internet Extensions for Win32
2007-02-19 23:22:08

MPRAPI.dll
0x76d10000
C:\WINDOWS\system32\mprapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT MP Router Administration DLL
2004-08-04 00:52:16

ACTIVEDS.dll
0x77c90000
C:\WINDOWS\system32\activeds.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ADs Router Layer DLL
2004-08-04 00:52:06

adsldpc.dll
0x76de0000
C:\WINDOWS\system32\adsldpc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ADs LDAP Provider C DLL
2004-08-04 00:52:06

RASAPI32.dll
0x76eb0000
C:\WINDOWS\system32\rasapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Access API
2004-08-04 00:52:22

rasman.dll
0x76e60000
C:\WINDOWS\system32\rasman.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Access Connection Manager
2004-08-04 00:52:24

TAPI32.dll
0x76e80000
C:\WINDOWS\system32\tapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft(R) Windows(TM) Telephony API Client DLL
2004-08-04 00:52:26

SCHANNEL.dll
0x767c0000
C:\WINDOWS\system32\schannel.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
TLS / SSL Security Provider
2004-08-04 00:52:24

WinSCard.dll
0x72360000
C:\WINDOWS\system32\winscard.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Smart Card API
2004-08-04 00:52:28

raschap.dll
0x75d90000
C:\WINDOWS\system32\raschap.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Access PPP CHAP
2004-08-04 00:52:22

CLBCATQ.DLL
0x76fa0000
C:\WINDOWS\system32\clbcatq.dll
2001.12.4414.308
Microsoft Corporation

2005-07-26 12:39:46

COMRes.dll
0x77020000
C:\WINDOWS\system32\comres.dll
2001.12.4414.258
Microsoft Corporation

2004-08-04 00:52:08

msv1_0.dll
0x77c40000
C:\WINDOWS\system32\msv1_0.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Authentication Package v1.0
2004-08-04 00:52:20

schedsvc.dll
0x76b40000
c:\WINDOWS\system32\schedsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Task Scheduler Engine
2004-08-04 08:52:24

NTDSAPI.dll
0x76770000
c:\WINDOWS\system32\ntdsapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT5DS
2004-08-04 00:52:20

MSIDLE.DLL
0x74eb0000
C:\WINDOWS\system32\msidle.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
User Idle Monitor
2004-08-04 00:52:18

audiosrv.dll
0x70de0000
c:\WINDOWS\system32\audiosrv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Audio Service
2004-08-04 00:52:08

wkssvc.dll
0x76850000
c:\WINDOWS\system32\wkssvc.dll
5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)
Microsoft Corporation
Workstation Service DLL
2006-08-17 20:29:48

cryptsvc.dll
0x75eb0000
c:\WINDOWS\system32\cryptsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Cryptographic Services
2004-08-04 00:52:08

certcli.dll
0x752b0000
c:\WINDOWS\system32\certcli.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft(R) Certificate Services Client
2004-08-04 00:52:08

netman.dll
0x77cd0000
c:\WINDOWS\system32\netman.dll
5.1.2600.2743 (xpsp_sp2_gdr.050819-1525)
Microsoft Corporation
Network Connections Manager
2005-08-23 02:35:16

netshell.dll
0x74770000
c:\WINDOWS\system32\netshell.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Network Connections Shell
2004-08-04 00:52:20

credui.dll
0x76bd0000
c:\WINDOWS\system32\credui.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Credential Manager User Interface
2004-08-04 00:52:08

WZCSAPI.DLL
0x72fa0000
c:\WINDOWS\system32\wzcsapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Wireless Zero Configuration service API
2004-08-04 01:02:28

pchsvc.dll
0x74ea0000
c:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft PCHealth Service Holder
2004-08-04 08:52:22

es.dll
0x768a0000
c:\WINDOWS\system32\es.dll
2001.12.4414.308
Microsoft Corporation

2005-07-26 12:39:48

ersvc.dll
0x74ee0000
c:\WINDOWS\system32\ersvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Error Reporting Service
2004-08-04 00:52:10

dmserver.dll
0x74ef0000
c:\WINDOWS\system32\dmserver.dll
2600.2180.503.0
Microsoft Corp.
Logical Disk Manager service dll
2004-08-04 00:52:10

wuauserv.dll
0x50000000
c:\WINDOWS\system32\wuauserv.dll
5.4.3790.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Update AutoUpdate Service
2004-08-04 08:52:30

wmisvc.dll
0x67180000
c:\WINDOWS\system32\wbem\wmisvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

VSSAPI.DLL
0x75340000
C:\WINDOWS\system32\vssapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft? Volume Shadow Copy Requestor/Writer Services API DLL
2004-08-04 00:52:26

wuaueng.dll
0x50040000
C:\WINDOWS\system32\wuaueng.dll
5.8.0.2469 built by: lab01_n(wmbla)
Microsoft Corporation
Windows Update AutoUpdate Engine
2005-05-26 04:16:30

ADVPACK.dll
0x751c0000
C:\WINDOWS\system32\advpack.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ADVPACK
2004-08-04 00:52:06

SHFOLDER.dll
0x76750000
C:\WINDOWS\system32\shfolder.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Shell Folder Service
2004-08-04 00:52:24

WINSPOOL.DRV
0x72f70000
C:\WINDOWS\system32\winspool.drv
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Spooler Driver
2004-08-04 00:52:42

WINHTTP.dll
0x4a410000
C:\WINDOWS\system32\winhttp.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows HTTP Services
2004-08-04 00:52:28

Cabinet.dll
0x750b0000
C:\WINDOWS\system32\cabinet.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft? Cabinet File API
2004-08-04 00:52:08

mspatcha.dll
0x602d0000
C:\WINDOWS\system32\mspatcha.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft(R) Patch Engine
2004-08-04 00:52:20

sfc.dll
0x76b80000
C:\WINDOWS\system32\sfc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows File Protection
2004-08-04 00:52:24

sfc_os.dll
0x76c30000
C:\WINDOWS\system32\sfc_os.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows 文件保护
2004-08-04 00:52:24

w32time.dll
0x76790000
c:\WINDOWS\system32\w32time.dll

gtkx - 2007-5-15 20:13:00

5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Time Service
2004-08-04 00:52:26

MSVCP60.dll
0x75ff0000
c:\WINDOWS\system32\msvcp60.dll
6.02.3104.0
Microsoft Corporation
Microsoft (R) C++ Runtime Library
2004-08-04 00:52:20

trkwks.dll
0x74fd0000
c:\WINDOWS\system32\trkwks.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Distributed Link Tracking Client
2004-08-04 00:52:26

srsvc.dll
0x75100000
c:\WINDOWS\system32\srsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
System Restore Service
2004-08-04 08:52:26

POWRPROF.dll
0x74a30000
c:\WINDOWS\system32\powrprof.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Power Profile Helper DLL
2004-08-04 00:52:22

seclogon.dll
0x73c90000
c:\WINDOWS\system32\seclogon.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Secondary Logon Service DLL
2004-08-04 00:52:24

sens.dll
0x72260000
c:\WINDOWS\system32\sens.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
System Event Notification Service (SENS)
2004-08-04 00:52:24

mswsock.dll
0x719c0000
C:\WINDOWS\system32\mswsock.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Windows Sockets 2.0 Service Provider
2004-08-04 00:52:20

ipnathlp.dll
0x66700000
c:\WINDOWS\system32\ipnathlp.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft NAT Helper Components
2004-08-04 00:52:14

AUTHZ.dll
0x77fe0000
c:\WINDOWS\system32\authz.dll
5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)
Microsoft Corporation
Authorization Framework
2005-03-03 02:10:06

hnetcfg.dll
0x60fd0000
C:\WINDOWS\system32\hnetcfg.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Home Networking Configuration Manager
2004-08-04 00:52:12

SXS.DLL
0x75e00000
C:\WINDOWS\system32\sxs.dll
5.1.2600.3019 (xpsp_sp2_gdr.061019-0414)
Microsoft Corporation
Fusion 2.5
2006-10-20 09:37:48

wshtcpip.dll
0x71a00000
C:\WINDOWS\system32\wshtcpip.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Sockets Helper DLL
2004-08-04 00:52:28

comsvcs.dll
0x75690000
C:\WINDOWS\system32\comsvcs.dll
2001.12.4414.308
Microsoft Corporation

2005-07-26 12:39:48

colbact.DLL
0x75090000
C:\WINDOWS\system32\colbact.dll
2001.12.4414.308
Microsoft Corporation

2005-07-26 12:39:46

MTXCLU.DLL
0x75050000
C:\WINDOWS\system32\mtxclu.dll
2001.12.4414.311
Microsoft Corporation
MS DTC amd MTS clustering support DLL
2006-03-02 03:43:00

WSOCK32.dll
0x71a40000
C:\WINDOWS\system32\wsock32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 32-Bit DLL
2004-08-04 00:52:28

CLUSAPI.DLL
0x762a0000
C:\WINDOWS\system32\clusapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Cluster API Library
2004-08-04 00:52:08

RESUTILS.DLL
0x75010000
C:\WINDOWS\system32\resutils.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Cluster Resource Utility DLL
2004-08-04 00:52:24

wbemcore.dll
0x75d00000
C:\WINDOWS\system32\wbem\wbemcore.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

esscli.dll
0x75270000
C:\WINDOWS\system32\wbem\esscli.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:10

wbemcomn.dll
0x751f0000
C:\WINDOWS\system32\wbem\wbemcomn.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

FastProx.dll
0x755f0000
C:\WINDOWS\system32\wbem\fastprox.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:10

wbemsvc.dll
0x74e30000
C:\WINDOWS\system32\wbem\wbemsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

rasadhlp.dll
0x76f90000
C:\WINDOWS\system32\rasadhlp.dll
5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)
Microsoft Corporation
Remote Access AutoDial Helper
2006-06-27 01:41:40

wmiutils.dll
0x74f80000
C:\WINDOWS\system32\wbem\wmiutils.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

repdrvfs.dll
0x75160000
C:\WINDOWS\system32\wbem\repdrvfs.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:24

wmiprvsd.dll
0x594c0000
C:\WINDOWS\system32\wbem\wmiprvsd.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

NCObjAPI.DLL
0x5f9a0000
C:\WINDOWS\system32\ncobjapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation

2004-08-04 00:52:20

wbemess.dll
0x752f0000
C:\WINDOWS\system32\wbem\wbemess.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

rasmans.dll
0x7e510000
C:\WINDOWS\system32\rasmans.dll
5.1.2600.2936 (xpsp_sp2_gdr.060621-2347)
Microsoft Corporation
Remote Access Connection Manager
2006-06-22 18:47:16

WINIPSEC.DLL
0x742d0000
C:\WINDOWS\system32\winipsec.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows IPSec SPD Client DLL
2004-08-04 00:52:28

netcfgx.dll
0x75550000
C:\WINDOWS\system32\netcfgx.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Network Configuration Objects
2004-08-04 00:52:20

tapisrv.dll
0x73350000
c:\WINDOWS\system32\tapisrv.dll
5.1.2600.2716 (xpsp_sp2_gdr.050707-1657)
Microsoft Corporation
Microsoft(R) Windows(TM) Telephony Server
2005-07-09 00:28:44

PSAPI.DLL
0x76bc0000
c:\WINDOWS\system32\psapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Process Status Helper
2004-08-04 00:52:22

rastapi.dll
0x75130000
C:\WINDOWS\system32\rastapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Access TAPI Compliance Layer
2004-08-04 00:52:24

unimdm.tsp
0x57980000
C:\WINDOWS\system32\unimdm.tsp
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Unimodem 5 Service Provider
2004-08-04 00:52:40

uniplat.dll
0x71f90000
C:\WINDOWS\system32\uniplat.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Unimodem AT Mini Driver Platform Driver for Windows NT
2004-08-04 00:52:26

kmddsp.tsp
0x57a00000
C:\WINDOWS\system32\kmddsp.tsp
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
TAPI Kernel-Mode Service Provider
2004-08-04 00:52:40

ndptsp.tsp
0x579e0000
C:\WINDOWS\system32\ndptsp.tsp
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NDIS Proxy TAPI Service Provider
2004-08-04 00:52:40

ipconf.tsp
0x57a10000
C:\WINDOWS\system32\ipconf.tsp
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Multicast Conference TAPI Service Provider
2004-08-04 00:52:40

h323.tsp
0x57a30000
C:\WINDOWS\system32\h323.tsp
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft H.323 Telephony Service Provider
2004-08-04 00:52:40

hidphone.tsp
0x57a20000
C:\WINDOWS\system32\hidphone.tsp
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft HID Phone TSP
2004-08-04 00:52:40

HID.DLL
0x68be0000
C:\WINDOWS\system32\hid.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Hid User Library
2004-08-04 01:02:28

rasppp.dll
0x721d0000
C:\WINDOWS\system32\rasppp.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Access PPP
2004-08-04 00:52:24

ntlsapi.dll
0x72420000
C:\WINDOWS\system32\ntlsapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft? License Server Interface DLL
2004-08-04 00:52:20

kerberos.dll
0x71c70000
C:\WINDOWS\system32\kerberos.dll
5.1.2600.2698 (xpsp_sp2_gdr.050614-1522)
Microsoft Corporation
Kerberos Security Package

gtkx - 2007-5-15 20:13:00

2005-06-16 01:50:14

cryptdll.dll
0x76760000
C:\WINDOWS\system32\cryptdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Cryptography Manager
2004-08-04 00:52:08

RASDLG.dll
0x754b0000
C:\WINDOWS\system32\rasdlg.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Access Common Dialog API
2004-08-04 00:52:24

Apphelp.dll
0x76d70000
C:\WINDOWS\system32\apphelp.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Application Compatibility Client Library
2004-08-04 00:52:06

wups.dll
0x50640000
C:\WINDOWS\system32\wups.dll
5.8.0.2469 built by: lab01_n(wmbla)
Microsoft Corporation
Windows Update client proxy stub
2005-05-26 04:16:30

ncprov.dll
0x5f970000
C:\WINDOWS\system32\wbem\ncprov.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Non-COM WMI Event Provision APIs
2004-08-04 08:52:20

msi.dll
0x5720000
C:\WINDOWS\system32\msi.dll
3.1.4000.2435
Microsoft Corporation
Windows Installer
2005-05-04 14:45:32

msxml3.dll
0x5dd50000
C:\WINDOWS\system32\msxml3.dll
8.70.1113.0
Microsoft Corporation
MSXML 3.0 SP 7
2006-09-13 13:03:24

winrnr.dll
0x76f80000
C:\WINDOWS\system32\winrnr.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
LDAP RnR Provider DLL
2004-08-04 00:52:28

wbemprox.dll
0x74e50000
C:\WINDOWS\system32\wbem\wbemprox.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

dssenh.dll
0x68100000
C:\WINDOWS\system32\dssenh.dll
5.1.2600.2133 (xpsp.040514-1639)
Microsoft Corporation
Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider
2004-08-03 22:31:44

[SVCHOST.EXE]
PID = 0x31c
CommandLine = C:\WINDOWS\system32\svchost.exe -k NetworkService
svchost.exe
0x1000000
C:\WINDOWS\system32\svchost.exe
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Generic Host Process for Win32 Services
2004-08-04 00:52:38

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

kernel32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

ShimEng.dll
0x5cc30000
C:\WINDOWS\system32\shimeng.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Shim Engine DLL
2004-08-04 00:52:24

AcGenral.DLL
0x58fb0000
C:\WINDOWS\AppPatch\AcGenral.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Compatibility DLL
2004-08-04 00:52:06

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

WINMM.dll
0x76b10000
C:\WINDOWS\system32\winmm.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
MCI API DLL
2004-08-04 00:52:28

ole32.dll
0x76990000
C:\WINDOWS\system32\ole32.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Microsoft OLE for Windows
2005-07-26 12:39:50

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

OLEAUT32.dll
0x770f0000
C:\WINDOWS\system32\oleaut32.dll
5.1.2600.2180
Microsoft Corporation

2004-08-04 00:52:22

MSACM32.dll
0x77bb0000
C:\WINDOWS\system32\msacm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft ACM Audio Filter
2004-08-04 00:52:16

VERSION.dll
0x77bd0000
C:\WINDOWS\system32\version.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Version Checking and File Installation Libraries
2004-08-04 00:52:26

SHELL32.dll
0x7d590000
C:\WINDOWS\system32\shell32.dll
6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)
Microsoft Corporation
Windows Shell Common Dll
2006-12-20 05:49:36

SHLWAPI.dll
0x77f40000
C:\WINDOWS\system32\shlwapi.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Shell Light-weight Utility Library
2007-02-19 23:22:06

USERENV.dll
0x759d0000
C:\WINDOWS\system32\userenv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Userenv
2004-08-04 00:52:26

UxTheme.dll
0x5adc0000
C:\WINDOWS\system32\uxtheme.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft UxTheme Library
2007-01-30 12:49:58

IMM32.DLL
0x76300000
C:\WINDOWS\system32\imm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows XP IMM32 API Client DLL
2004-08-04 00:52:12

LPK.DLL
0x62c20000
C:\WINDOWS\system32\lpk.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Language Pack
2004-08-04 00:52:14

USP10.dll
0x73fa0000
C:\WINDOWS\system32\usp10.dll
1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Uniscribe Unicode script processor
2004-08-04 00:52:26

comctl32.dll
0x77180000
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
6.0 (xpsp.060825-0040)
Microsoft Corporation
User Experience Controls Library
2006-08-25 23:49:42

comctl32.dll
0x5d170000
C:\WINDOWS\system32\comctl32.dll
5.82 (xpsp.060825-0040)
Microsoft Corporation
Common Controls Library
2006-08-25 23:49:44

dnsrslvr.dll
0x76740000
c:\WINDOWS\system32\dnsrslvr.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
DNS Caching Resolver Service
2004-08-04 00:52:10

DNSAPI.dll
0x76ef0000
c:\WINDOWS\system32\dnsapi.dll
5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)
Microsoft Corporation
DNS Client API DLL
2006-06-27 01:41:40

WS2_32.dll
0x71a20000
c:\WINDOWS\system32\ws2_32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 32-Bit DLL
2004-08-04 00:52:28

WS2HELP.dll
0x71a10000
c:\WINDOWS\system32\ws2help.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 Helper for Windows NT
2004-08-04 00:52:28

iphlpapi.dll
0x76d30000
c:\WINDOWS\system32\iphlpapi.dll
5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)
Microsoft Corporation
IP Helper API
2006-05-19 21:14:08

mswsock.dll
0x719c0000
C:\WINDOWS\system32\mswsock.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Windows Sockets 2.0 Service Provider
2004-08-04 00:52:20

hnetcfg.dll
0x60fd0000
C:\WINDOWS\system32\hnetcfg.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Home Networking Configuration Manager
2004-08-04 00:52:12

wshtcpip.dll
0x71a00000
C:\WINDOWS\system32\wshtcpip.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Sockets Helper DLL
2004-08-04 00:52:28

[SVCHOST.EXE]
PID = 0x338
CommandLine = C:\WINDOWS\system32\svchost.exe -k LocalService
svchost.exe
0x1000000
C:\WINDOWS\system32\svchost.exe
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Generic Host Process for Win32 Services
2004-08-04 00:52:38

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

kernel32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

ShimEng.dll
0x5cc30000

gtkx - 2007-5-15 20:14:00

C:\WINDOWS\system32\shimeng.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Shim Engine DLL
2004-08-04 00:52:24

AcGenral.DLL
0x58fb0000
C:\WINDOWS\AppPatch\AcGenral.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Compatibility DLL
2004-08-04 00:52:06

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

WINMM.dll
0x76b10000
C:\WINDOWS\system32\winmm.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
MCI API DLL
2004-08-04 00:52:28

ole32.dll
0x76990000
C:\WINDOWS\system32\ole32.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Microsoft OLE for Windows
2005-07-26 12:39:50

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

OLEAUT32.dll
0x770f0000
C:\WINDOWS\system32\oleaut32.dll
5.1.2600.2180
Microsoft Corporation

2004-08-04 00:52:22

MSACM32.dll
0x77bb0000
C:\WINDOWS\system32\msacm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft ACM Audio Filter
2004-08-04 00:52:16

VERSION.dll
0x77bd0000
C:\WINDOWS\system32\version.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Version Checking and File Installation Libraries
2004-08-04 00:52:26

SHELL32.dll
0x7d590000
C:\WINDOWS\system32\shell32.dll
6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)
Microsoft Corporation
Windows Shell Common Dll
2006-12-20 05:49:36

SHLWAPI.dll
0x77f40000
C:\WINDOWS\system32\shlwapi.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Shell Light-weight Utility Library
2007-02-19 23:22:06

USERENV.dll
0x759d0000
C:\WINDOWS\system32\userenv.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Userenv
2004-08-04 00:52:26

UxTheme.dll
0x5adc0000
C:\WINDOWS\system32\uxtheme.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft UxTheme Library
2007-01-30 12:49:58

IMM32.DLL
0x76300000
C:\WINDOWS\system32\imm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows XP IMM32 API Client DLL
2004-08-04 00:52:12

LPK.DLL
0x62c20000
C:\WINDOWS\system32\lpk.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Language Pack
2004-08-04 00:52:14

USP10.dll
0x73fa0000
C:\WINDOWS\system32\usp10.dll
1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Uniscribe Unicode script processor
2004-08-04 00:52:26

comctl32.dll
0x77180000
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
6.0 (xpsp.060825-0040)
Microsoft Corporation
User Experience Controls Library
2006-08-25 23:49:42

comctl32.dll
0x5d170000
C:\WINDOWS\system32\comctl32.dll
5.82 (xpsp.060825-0040)
Microsoft Corporation
Common Controls Library
2006-08-25 23:49:44

NTMARTA.DLL
0x76cb0000
C:\WINDOWS\system32\ntmarta.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT MARTA provider
2004-08-04 00:52:20

WLDAP32.dll
0x76f30000
C:\WINDOWS\system32\wldap32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Win32 LDAP API DLL
2004-08-04 00:52:28

SAMLIB.dll
0x71b70000
C:\WINDOWS\system32\samlib.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
SAM Library DLL
2004-08-04 00:52:24

xpsp2res.dll
0x20000000
C:\WINDOWS\system32\xpsp2res.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Service Pack 2 Messages
2004-08-04 00:51:48

lmhsvc.dll
0x74ba0000
c:\WINDOWS\system32\lmhsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)

gtkx - 2007-5-15 20:14:00

Microsoft Corporation
TCPIP NetBios Transport Services DLL
2004-08-04 00:52:14

iphlpapi.dll
0x76d30000
c:\WINDOWS\system32\iphlpapi.dll
5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)
Microsoft Corporation
IP Helper API
2006-05-19 21:14:08

WS2_32.dll
0x71a20000
c:\WINDOWS\system32\ws2_32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 32-Bit DLL
2004-08-04 00:52:28

WS2HELP.dll
0x71a10000
c:\WINDOWS\system32\ws2help.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 Helper for Windows NT
2004-08-04 00:52:28

webclnt.dll
0x5a720000
c:\WINDOWS\system32\webclnt.dll
5.1.2600.2821 (xpsp_sp2_gdr.060103-1536)
Microsoft Corporation
Web DAV Service DLL
2006-01-04 11:35:04

WININET.dll
0x76680000
C:\WINDOWS\system32\wininet.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Internet Extensions for Win32
2007-02-19 23:22:08

CRYPT32.dll
0x765e0000
C:\WINDOWS\system32\crypt32.dll
5.131.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Crypto API32
2004-08-04 00:52:08

MSASN1.dll
0x76db0000
C:\WINDOWS\system32\msasn1.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
ASN.1 Runtime APIs
2004-08-04 00:52:16

Secur32.dll
0x77fc0000
C:\WINDOWS\system32\secur32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Security Support Provider Interface
2004-08-04 00:52:24

wsock32.dll
0x71a40000
C:\WINDOWS\system32\wsock32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 32-Bit DLL
2004-08-04 00:52:28

alrsvc.dll
0x70fe0000
c:\WINDOWS\system32\alrsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Alerter Service DLL
2004-08-04 00:52:06

NETAPI32.dll
0x5fdd0000
C:\WINDOWS\system32\netapi32.dll
5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)
Microsoft Corporation
Net Win32 API DLL
2006-08-17 20:29:48

[KWatch.EXE]
PID = 0x388
CommandLine = C:\KAV2007\KWatch.EXE
KWatch.EXE
0x400000
C:\KAV2007\KWatch.EXE
2007, 2, 12, 84
Kingsoft Corporation
Kingsoft Antivirus KWatch Service
2007-02-27 12:27:14

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

kernel32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

ole32.dll
0x76990000
C:\WINDOWS\system32\ole32.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Microsoft OLE for Windows
2005-07-26 12:39:50

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

OLEAUT32.dll
0x770f0000
C:\WINDOWS\system32\oleaut32.dll
5.1.2600.2180
Microsoft Corporation

2004-08-04 00:52:22

SHLWAPI.dll
0x77f40000
C:\WINDOWS\system32\shlwapi.dll
6.00.2900.3086 (xpsp_sp2_qfe.070218-2342)
Microsoft Corporation
Shell Light-weight Utility Library
2007-02-19 23:22:06

IMM32.DLL
0x76300000
C:\WINDOWS\system32\imm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows XP IMM32 API Client DLL
2004-08-04 00:52:12

LPK.DLL
0x62c20000
C:\WINDOWS\system32\lpk.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Language Pack
2004-08-04 00:52:14

USP10.dll
0x73fa0000
C:\WINDOWS\system32\usp10.dll
1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Uniscribe Unicode script processor
2004-08-04 00:52:26

uxtheme.dll
0x5adc0000
C:\WINDOWS\system32\uxtheme.dll
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft UxTheme Library
2007-01-30 12:49:58

msctfime.ime
0x73640000
C:\WINDOWS\system32\MSCTFIME.IME
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft Text Frame Work Service IME
2004-08-04 00:51:20

KAVIPC2.DLL
0x10000000
C:\KAV2007\KAVIPC2.DLL
2007, 1, 15, 30
Kingsoft Corporation
Kingsoft Antivirus Interprocess Communication
2007-02-27 12:27:22

KAEPlat.DLL
0xda0000
C:\KAV2007\KAEPlat.DLL
2007, 2, 4, 61
Kingsoft Corp.
KAEPlat
2007-03-16 14:29:00

KAEMem.DAT
0xde0000
C:\KAV2007\KAEMem.DAT
2006, 9, 25, 16
Kingsoft
KAEMem
2007-01-18 15:48:14

Psapi.dll
0x76bc0000
C:\WINDOWS\system32\psapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Process Status Helper
2004-08-04 00:52:22

KAEUnpack.DAT
0x1170000
C:\KAV2007\KAEUnpack.DAT
2007, 4, 12, 116
Kingsoft Corp.
KAEUnpack
2007-05-08 21:43:02

KAVQuara.DLL
0xa220000
C:\KAV2007\KAVQuara.DLL
2007, 1, 25, 1
Kingsoft Corporation
KAVQuara
2007-02-27 12:27:20

CLBCATQ.DLL
0x76fa0000
C:\WINDOWS\system32\clbcatq.dll
2001.12.4414.308
Microsoft Corporation

2005-07-26 12:39:46

COMRes.dll
0x77020000
C:\WINDOWS\system32\comres.dll
2001.12.4414.258
Microsoft Corporation

2004-08-04 00:52:08

gtkx - 2007-5-15 20:14:00

VERSION.dll
0x77bd0000
C:\WINDOWS\system32\version.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Version Checking and File Installation Libraries
2004-08-04 00:52:26

wbemprox.dll
0x74e50000
C:\WINDOWS\system32\wbem\wbemprox.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

wbemcomn.dll
0x751f0000
C:\WINDOWS\system32\wbem\wbemcomn.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

WS2_32.dll
0x71a20000
C:\WINDOWS\system32\ws2_32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 32-Bit DLL
2004-08-04 00:52:28

WS2HELP.dll
0x71a10000
C:\WINDOWS\system32\ws2help.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Socket 2.0 Helper for Windows NT
2004-08-04 00:52:28

xpsp2res.dll
0x20000000
C:\WINDOWS\system32\xpsp2res.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Service Pack 2 Messages
2004-08-04 00:51:48

wbemsvc.dll
0x74e30000
C:\WINDOWS\system32\wbem\wbemsvc.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:28

fastprox.dll
0x755f0000
C:\WINDOWS\system32\wbem\fastprox.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
WMI
2004-08-04 08:52:10

MSVCP60.dll
0x75ff0000
C:\WINDOWS\system32\msvcp60.dll
6.02.3104.0
Microsoft Corporation
Microsoft (R) C++ Runtime Library
2004-08-04 00:52:20

NTDSAPI.dll
0x76770000
C:\WINDOWS\system32\ntdsapi.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT5DS
2004-08-04 00:52:20

DNSAPI.dll
0x76ef0000
C:\WINDOWS\system32\dnsapi.dll
5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)
Microsoft Corporation
DNS Client API DLL
2006-06-27 01:41:40

WLDAP32.dll
0x76f30000
C:\WINDOWS\system32\wldap32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Win32 LDAP API DLL
2004-08-04 00:52:28

NETAPI32.dll
0x5fdd0000
C:\WINDOWS\system32\netapi32.dll
5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)
Microsoft Corporation
Net Win32 API DLL
2006-08-17 20:29:48

Secur32.dll
0x77fc0000
C:\WINDOWS\system32\secur32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Security Support Provider Interface
2004-08-04 00:52:24

[spoolsv.exe]
PID = 0x3d4
CommandLine = C:\WINDOWS\system32\spoolsv.exe
spoolsv.exe
0x1000000
C:\WINDOWS\system32\spoolsv.exe
5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
Microsoft Corporation
Spooler SubSystem App
2005-06-11 07:53:32

ntdll.dll
0x7c920000
C:\WINDOWS\system32\ntdll.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
NT Layer DLL
2004-08-04 00:52:02

kernel32.dll
0x7c800000
C:\WINDOWS\system32\kernel32.dll
5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)
Microsoft Corporation
Windows NT BASE API Client DLL
2006-07-05 18:56:00

ADVAPI32.dll
0x77da0000
C:\WINDOWS\system32\advapi32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Advanced Windows 32 Base API
2004-08-04 00:52:06

RPCRT4.dll
0x77e50000
C:\WINDOWS\system32\rpcrt4.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Remote Procedure Call Runtime
2004-08-04 00:52:24

GDI32.dll
0x77ef0000
C:\WINDOWS\system32\gdi32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
GDI Client DLL
2007-03-08 23:37:22

USER32.dll
0x77d10000
C:\WINDOWS\system32\user32.dll
5.1.2600.3099 (xpsp_sp2_gdr.070308-0222)
Microsoft Corporation
Windows XP USER API Client DLL
2007-03-08 23:37:22

msvcrt.dll
0x77be0000
C:\WINDOWS\system32\msvcrt.dll
7.0.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows NT CRT DLL
2004-08-04 00:52:20

ShimEng.dll
0x5cc30000
C:\WINDOWS\system32\shimeng.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Shim Engine DLL
2004-08-04 00:52:24

AcGenral.DLL
0x58fb0000
C:\WINDOWS\AppPatch\AcGenral.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Windows Compatibility DLL
2004-08-04 00:52:06

WINMM.dll
0x76b10000
C:\WINDOWS\system32\winmm.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
MCI API DLL
2004-08-04 00:52:28

ole32.dll
0x76990000
C:\WINDOWS\system32\ole32.dll
5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)
Microsoft Corporation
Microsoft OLE for Windows
2005-07-26 12:39:50

OLEAUT32.dll
0x770f0000
C:\WINDOWS\system32\oleaut32.dll
5.1.2600.2180
Microsoft Corporation

2004-08-04 00:52:22

MSACM32.dll
0x77bb0000
C:\WINDOWS\system32\msacm32.dll
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Microsoft Corporation
Microsoft ACM Audio Filter
2004-08-04 00:52:16

VERSION.dll
0x77bd0000
C:\WINDOWS\system32\version.dll

瑞星卡卡安全论坛