小女急请各位大哥救命啊~ bbs.ikaka.com

受伤的孩子 - 2007-5-24 8:30:00

我电脑中了病毒，现在换了好几个杀毒软件都不能启动了，连强大的瑞星也启动了，小女子听人说这是被病毒修改了电脑的什么设置所致，
是不是注册表阿，哪位大哥大姐救救我啊！我不想重装系统。。。5555555555。。。。。

受伤的孩子 - 2007-5-24 8:32:00

是不是我起得太早了，各位还没起床阿呵呵
着急啊！

♂栓柱♂ - 2007-5-24 9:00:00

打个哈欠!!!看看

303266474 - 2007-5-24 9:14:00

下载 System Repair Engineer，
http://www.kztechs.com/sreng/download.html
1 解压缩sreng2.zip
2 运行SREng.exe
3 智能扫描=》扫描=》保存报告
4 把日志中的报告完整拷贝贴上来，不要修改
日志一次发不完，请分次发上来

受伤的孩子 - 2007-5-24 9:32:00

引用:

【303266474的贴子】下载 System Repair Engineer，
http://www.kztechs.com/sreng/download.html
1 解压缩sreng2.zip
2 运行SREng.exe
3 智能扫描=》扫描=》保存报告
4 把日志中的报告完整拷贝贴上来，不要修改
日志一次发不完，请分次发上来
………………

一直到上述照做了，运行软件，系统提示找不到该软件
和刚一安装杀软时候问题一样，之后怎么点击也没反应。。。怎么办？

受伤的孩子 - 2007-5-24 9:33:00

这是昨晚上用avg查毒的报告，目前所有杀软都不能用

+ Scan result:

H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\NK7F034V\yieacore3[1].cab/yieacore.dll/cdnaux.dll -> Adware.Cdn : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\JXRHUTFY\yalliveex3[1].cab/yalliveex.dll -> Adware.Cdnup : Cleaned.
HKU\S-1-5-21-602162358-2049760794-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{38928D50-8A48-44C2-945F-D2F23F771410} -> Adware.CnsMin : Cleaned.
HKU\S-1-5-21-602162358-2049760794-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6671A431-5C3D-463D-A7CF-5587F9B7E191} -> Adware.Generic : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\XNK3SPQA\yaslive[1].cab/yalive.dll/Assist\yasbar.dll/sremove.exe -> Adware.Yassist : Cleaned.
F:\TK4\Taikou4.exe -> Backdoor.Agent.aas : Cleaned.
C:\Program Files\安装程序\XP_SP2_tcpPatch.exe -> Backdoor.Hupigon : Cleaned.
E:\Program Files\PPStream\xpsp2\XPSP2Patch.exe -> Backdoor.Hupigon : Cleaned.
E:\金山毒霸终身升级版\金山毒霸2006完美升级破解补丁[7月3日]\UpCrack.EXE -> Backdoor.Hupigon : Cleaned.
E:\Program Files\Super Rabbit\MagicSet\SRRest.exe -> Backdoor.Lot.ml : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\0U2OOZX3\yaskeepmain3[1].cab/yasrdd.dll -> Downloader.Baido : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\0U2OOZX3\yaskeepmain3[1].cab/yasrde.exe -> Downloader.Baido : Cleaned.
E:\Warcraft III\Tools\TFTkeygen.exe -> Dropper.PT : Cleaned.
H:\Documents and Settings\gtozhouhang\Cookies\gtozhouhang@2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
H:\Documents and Settings\gtozhouhang\Cookies\gtozhouhang@entrepreneur.122.2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
H:\Documents and Settings\gtozhouhang\Cookies\gtozhouhang@3.adbrite[1].txt -> TrackingCookie.Adbrite : Cleaned.
H:\Documents and Settings\gtozhouhang\Cookies\gtozhouhang@adbrite[1].txt -> TrackingCookie.Adbrite : Cleaned.
H:\Documents and Settings\gtozhouhang\Cookies\gtozhouhang@atdmt[1].txt -> TrackingCookie.Atdmt : Cleaned.
H:\Documents and Settings\gtozhouhang\Cookies\gtozhouhang@doubleclick[2].txt -> TrackingCookie.Doubleclick : Cleaned.
H:\Documents and Settings\gtozhouhang\Cookies\gtozhouhang@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Cleaned.
H:\Documents and Settings\gtozhouhang\Cookies\gtozhouhang@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
H:\KAV2006.rar/KAV2006\Update.EXE -> Trojan.Agent.yy : Cleaned.
H:\KAV2006.rar/KAV2006\ÐÂ½¨ÎÄ¼þ¼Ð\½ðÉ½¶¾°Ô\Update.EXE -> Trojan.Agent.yy : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temp\16.exe -> Trojan.OnLineGames.qh : Cleaned.
H:\WINDOWS\system32\mh100.exe -> Trojan.OnLineGames.ue : Cleaned.
H:\WINDOWS\system32\nwizqjsj.exe -> Trojan.OnLineGames.ug : Cleaned.
H:\System Volume Information\_restore{9B17A8C5-1448-4E1B-863A-5B69F2B08FC7}\RP144\snapshot\MFEX-2.DAT -> Trojan.QQPass.pf : Cleaned.
H:\System Volume Information\_restore{9B17A8C5-1448-4E1B-863A-5B69F2B08FC7}\RP144\snapshot\MFEX-3.DAT -> Trojan.QQPass.pf : Cleaned.
H:\System Volume Information\_restore{9B17A8C5-1448-4E1B-863A-5B69F2B08FC7}\RP145\snapshot\MFEX-2.DAT -> Trojan.QQPass.pf : Cleaned.
H:\System Volume Information\_restore{9B17A8C5-1448-4E1B-863A-5B69F2B08FC7}\RP145\snapshot\MFEX-3.DAT -> Trojan.QQPass.pf : Cleaned.
H:\WINDOWS\system32\nwizAsktao.exe -> Trojan.WOW.qp : Cleaned.
H:\WINDOWS\system32\nwizwmsjs.exe -> Trojan.WOW.qp : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\0U2OOZX3\menu[1].js -> Worm.Fujacks.k : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\0U2OOZX3\wbk9E.tmp -> Worm.Fujacks.k : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\F3R0R5CM\main[1].js -> Worm.Fujacks.k : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\JXRHUTFY\wbk123.tmp -> Worm.Fujacks.k : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\JXRHUTFY\wbk158.tmp -> Worm.Fujacks.k : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\JXRHUTFY\wbk3B0.tmp -> Worm.Fujacks.k : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\JXRHUTFY\wbk419.tmp -> Worm.Fujacks.k : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\JXRHUTFY\wbk422.tmp -> Worm.Fujacks.k : Cleaned.
H:\Documents and Settings\gtozhouhang\Local Settings\Temporary Internet Files\Content.IE5\XNK3SPQA\menu[3].js -> Worm.Fujacks.k : Cleaned.

虽然提示清除可是磁盘已就不能正常打开，杀阮也不能用
对了我电脑中的是u盘传播的

连正规杀软都干不过的病毒
一个查木马的软件没抱太大希望。。。

303266474 - 2007-5-24 9:40:00

开机按F8,进入安全模式下试试.能不能扫描.

只是怀疑,打开文件时不要双击,用右键打开.

SREng.exe改个名试试.改成3.com或6.bat.

受伤的孩子 - 2007-5-24 10:01:00

你好强啊!
开始扫瞄了！
是不是杀软也能这么运行？

受伤的孩子 - 2007-5-24 10:07:00

[CODE]

2007-05-24,09:45:43

System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><H:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<usbmon><; F:\USBCleaner6.0\usbmon.exe> [zju]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
<run><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<ATICCC><"H:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"> []
<BaiduXUpdate><; "c:\Program Files\Baidu\BaiduX\MovieUpdate.exe" --Update> [Baidu.com, Inc.]
<cmdbcs><H:\WINDOWS\cmdbcs.exe> []
<mppds><H:\WINDOWS\mppds.exe> []
<upxdnd><H:\DOCUME~1\GTOZHO~1\LOCALS~1\Temp\upxdnd.exe> [N/A]
<!AVG Anti-Spyware><"H:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized> [Anti-Malware Development a.s.]
<rxmoefa><H:\WINDOWS\system32\shulbhs.exe> [N/A]
<ShStatEXE><"H:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE> [Network Associates, Inc.]
<McAfeeUpdaterUI><"H:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey> [Network Associates, Inc.]
<Network Associates Error Reporting Service><"H:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe"> [Network Associates, Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Publisher]
<Userinit><H:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<WPDShServiceObj><H:\WINDOWS\system32\WPDShServiceObj.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<IE7 Uninstall Stub><H:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows Component Publisher]

受伤的孩子 - 2007-5-24 10:07:00

启动文件夹
[百度下吧]
<H:\Documents and Settings\All Users\「开始」菜单\程序\启动\百度下吧.lnk --> C:\PROGRA~1\Baidu\BaiduX\BaiduX.exe [Baidu Corporation]><H>

==================================
服务
[Application Management / AppMgmt][Stopped/Manual Start]
<H:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>
[ASP.NET State Service / aspnet_state][Stopped/Manual Start]
<H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
<H:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[AVG Anti-Spyware Guard / AVG Anti-Spyware Guard][Running/Auto Start]
<H:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe><Anti-Malware Development a.s.>
[Kingsoft Personal Firewall Service / KPfwSvc][Stopped/Auto Start]
<"H:\KAV2006\KPfwSvc.EXE"><N/A>
[Kingsoft Antivirus KWatch Service / KWatchSvc][Stopped/Auto Start]
<H:\KAV2006\KWatch.EXE><N/A>
[Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start]
<"H:\Program Files\WinPcap\rpcapd.exe" -d -f "H:\Program Files\WinPcap\rpcapd.ini"><N/A>
[Rising Process Communication Center / RsCCenter][Stopped/Auto Start]
<"H:\Program Files\Rising\Rav\CCenter.exe"><N/A>
[Dell Wireless WLAN Tray Service / wltrysvc][Running/Auto Start]
<H:\WINDOWS\System32\WLTRYSVC.EXE H:\WINDOWS\System32\bcmwltry.exe><N/A>
[Network Associates Task Manager / McTaskManager][Running/Auto Start]
<"H:\Program Files\Network Associates\VirusScan\VsTskMgr.exe"><Network Associates, Inc.>
[Network Associates McShield / McShield][Running/Auto Start]
<"H:\Program Files\Network Associates\VirusScan\Mcshield.exe"><Network Associates, Inc.>
[McAfee Framework 服务 / McAfeeFramework][Running/Auto Start]
<H:\Program Files\Network Associates\Common Framework\FrameworkService.exe /ServiceStart><Network Associates, Inc.>

受伤的孩子 - 2007-5-24 10:08:00

驱动程序
[AMD Processor Driver / AmdK8][Running/System Start]
<system32\DRIVERS\AmdK8.sys><Advanced Micro Devices>
[ati2mtag / ati2mtag][Running/Manual Start]
<system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[atiide / atiide][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\atiide.sys><ATI Technologies Inc.>
[AVG Anti-Spyware Driver / AVG Anti-Spyware Driver][Running/System Start]
<\??\H:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys><N/A>
[AVG Anti-Spyware Clean Driver / AvgAsCln][Running/System Start]
<System32\DRIVERS\AvgAsCln.sys><GRISOFT, s.r.o.>
[DELL 无线网卡驱动程序 / BCM43XX][Stopped/Manual Start]
<system32\DRIVERS\bcmwl5.sys><Broadcom Corporation>
[Broadcom 440x 10/100 Integrated Controller XP Driver / bcm4sbxp][Running/Manual Start]
<system32\DRIVERS\bcm4sbxp.sys><Broadcom Corporation>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
<system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[HSF_DPV / HSF_DPV][Running/Manual Start]
<system32\DRIVERS\HSX_DPV.sys><Conexant Systems, Inc.>
[HSXHWAZL / HSXHWAZL][Running/Manual Start]
<system32\DRIVERS\HSXHWAZL.sys><Conexant Systems, Inc.>
[KWatch3 / KWatch3][Running/System Start]
<\??\H:\WINDOWS\system32\drivers\KWatch3.SYS><Kingsoft Corporation>
[mdmxsdk / mdmxsdk][Running/Auto Start]
<system32\DRIVERS\mdmxsdk.sys><Conexant>
[NetGroup Packet Filter Driver / NPF][Stopped/Manual Start]
<system32\drivers\npf.sys><Politecnico di Torino>
[npkcrypt / npkcrypt][Running/Auto Start]
<\??\H:\WINDOWS\system32\qqedit\npkcrypt.sys><INCA Internet Co., Ltd.>
[npkcusb / npkcusb][Running/Auto Start]
<\??\H:\WINDOWS\system32\qqedit\npkcusb.sys><INCA Internet Co., Ltd.>
[p2pfilter / p2pfilter][Stopped/Manual Start]
<\??\C:\Program Files\NetSoft\P2POver\p2pfilter.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[rimmptsk / rimmptsk][Running/Manual Start]
<system32\DRIVERS\rimmptsk.sys><REDC>
[Secdrv / Secdrv][Running/Auto Start]
<system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[SigmaTel High Definition Audio CODEC / STHDA][Running/Manual Start]
<system32\drivers\sthda.sys><SigmaTel, Inc.>
[Synaptics TouchPad Driver / SynTP][Running/Manual Start]
<system32\DRIVERS\SynTP.sys><Synaptics, Inc.>
[Conexant Setup API / UIUSys][Stopped/Manual Start]
<system32\DRIVERS\UIUSYS.SYS><N/A>
[winachsf / winachsf][Running/Manual Start]
<system32\DRIVERS\HSX_CNXT.sys><Conexant Systems, Inc.>
[NaiAvFilter1 / NaiAvFilter1][Running/Manual Start]
<system32\drivers\naiavf5x.sys><Network Associates, Inc.>
[NaiAvTdi1 / NaiAvTdi1][Stopped/System Start]
<system32\drivers\mvstdi5x.sys><Network Associates, Inc.>
[EntDrv51 / EntDrv51][Running/Manual Start]
<\??\H:\WINDOWS\system32\drivers\EntDrv51.sys><Network Associates, Inc>

受伤的孩子 - 2007-5-24 10:08:00

浏览器加载项
[IE7pro BHO]
{00011268-E188-40DF-A514-835FCD78B1BF} <C:\Program Files\安装程序\IE7pro0911beta中文绿色版\IE7pro0911beta\IE7pro\IE7pro.dll, IE7pro.com>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[IE7pro ToolsExt]
{0026439F-A980-4f18-8C95-4F1CBBF9C1D8} <C:\Program Files\安装程序\IE7pro0911beta中文绿色版\IE7pro0911beta\IE7pro\IE7pro.dll, IE7pro.com>
[启动Web迅雷]
{962EFB8E-2683-42d4-AC74-AAA4C759B9C6} <http://my.xunlei.com, N/A>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <C:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[MMCPlayer Class]
{05C1004E-2596-48E5-8E26-39362985EEB9} <H:\WINDOWS\Downloaded Program Files\MMCShell.dll, Sohu.com Inc.>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <H:\WINDOWS\system32\LegitCheckControl.DLL, Microsoft Corporation>
[Symantec RuFSI Utility Class]
{644E432F-49D3-41A1-8DD5-E099162EEEC5} <H:\WINDOWS\Downloaded Program Files\rufsi.dll, Symantec Corporation>
[MUWebControl Class]
{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <H:\WINDOWS\system32\muweb.dll, Microsoft Corporation>
[SysMonOCX Control]
{9BDBC41E-C335-4263-83C0-ECE78EE28A33} <H:\WINDOWS\DOWNLO~1\SYSMON~1.OCX, AhnLab>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <H:\WINDOWS\system32\Flash9b.ocx, Adobe Systems, Inc.>
[Rising Web Scan Object]
{E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <H:\WINDOWS\Downloaded Program Files\OL2005.dll, Beijing Rising Technology Co., Ltd.>
[vc Control]
{E689D735-1487-420D-9049-16ED198FE411} <H:\WINDOWS\DOWNLO~1\vco.ocx, >
[金山毒霸在线产品升级]
{E847C78C-C210-4195-8799-FBF3BF89797D} <H:\PROGRA~1\KOS\KOSInit.OCX, 金山软件股份有限公司>
[WebThunder Browser Helper]
{00000AAA-A363-466E-BEF5-9BB68697AA7F} <E:\Program Files\Thunder Network\WebThunder\WebThunderBHO_016.dll, Thunder Networking Technologies,LTD>
[IE7pro BHO]
{00011268-E188-40DF-A514-835FCD78B1BF} <C:\Program Files\安装程序\IE7pro0911beta中文绿色版\IE7pro0911beta\IE7pro\IE7pro.dll, IE7pro.com>
[WebThunder Class]
{03507A1A-E0C5-4404-AA26-205385C0892D} <, N/A>
[MMCPlayer Class]
{05C1004E-2596-48E5-8E26-39362985EEB9} <H:\WINDOWS\Downloaded Program Files\MMCShell.dll, Sohu.com Inc.>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Fade]
{16B280C5-EE70-11D1-9066-00C04FD9189D} <H:\WINDOWS\system32\Dxtmsft.dll, Microsoft Corporation>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <H:\WINDOWS\system32\LegitCheckControl.DLL, Microsoft Corporation>
[EWA Control]
{18226BF8-DC0B-4D81-80E9-A41AE37BB73A} <E:\PROGRA~1\PPLive\SYNACA~2.OCX, Synacast>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <H:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <H:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[XML DOM Document]
{2933BF90-7B36-11D2-B20E-00C04F983E60} <H:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <H:\WINDOWS\system32\dllcache\dhtmled.ocx, Microsoft Corporation>
[Tabular Data Control]
{333C7BC4-460F-11D0-BC04-0080C7055A83} <H:\WINDOWS\system32\tdc.ocx, Microsoft Corporation>
[HHCtrl Object]
{52A2AAAE-085D-4187-97EA-8C30DB990436} <H:\WINDOWS\system32\hhctrl.ocx, Microsoft Corporation>
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <H:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
[金山毒霸在线杀毒]
{577A1997-6FD0-4972-B234-885DA583F9CE} <H:\PROGRA~1\KOS\KOSClean.OCX, 金山软件股份有限公司>
[PowerPlayer Control]
{5EC7C511-CD0F-42E6-830C-1BD9882F3458} <e:\PROGRA~1\PPStream\POWERP~1.DLL, PPStream Inc.>
[WUWebControl Class]
{6414512B-B978-451D-A0D8-FCFDF33E833C} <H:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
[Symantec RuFSI Utility Class]
{644E432F-49D3-41A1-8DD5-E099162EEEC5} <H:\WINDOWS\Downloaded Program Files\rufsi.dll, Symantec Corporation>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <H:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[MUWebControl Class]
{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <H:\WINDOWS\system32\muweb.dll, Microsoft Corporation>
[Active Desktop Mover]
{72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[MediaComm Class]
{7670648D-461B-42AF-BDFE-46D26AF5EFF2} <e:\Program Files\Thunder Network\WebThunder\MediaAddin12.dll, Thunder Networking Technologies,LTD>
[Microsoft Web Browser]
{8856F961-340A-11D0-A96B-00C04FD705A2} <H:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
[SysMonOCX Control]
{9BDBC41E-C335-4263-83C0-ECE78EE28A33} <H:\WINDOWS\DOWNLO~1\SYSMON~1.OCX, AhnLab>
[RMGetLicense Class]
{A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <H:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
[SPlayerCtrl Class]
{B0CE7123-982E-4A0C-A0D6-E4F32B9BAEDF} <c:\PROGRA~1\sina\STVPLA~1\STVPLA~1.DLL, 北京新浪信息技术有限公司>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[Messenger Object]
{B69003B3-C55E-4B48-836C-BC5946FC3B28} <, N/A>
[RDS.DataSpace]
{BD96C556-65A3-11D0-983A-00C04FC29E36} <H:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[Tencent Safety Online Base Module]
{C09B522F-8AED-4E21-A65C-DC1AB652BAEE} <H:\WINDOWS\system32\TSOBase\TSOBase.ocx, Tencent Corporation>
[QQPlayerSvr Proxy Control]
{CD108273-D434-43E6-AA90-1469F97EB398} <C:\Program Files\Tencent\QQ\QQPlayerProxy.dll, Tencent>
[AUDIO__MP3 Moniker Class]
{CD3AFA76-B84F-48F0-9393-7EDC34128127} <H:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__X_MS_WMA Moniker Class]
{CD3AFA84-B84F-48F0-9393-7EDC34128127} <H:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_WMV Moniker Class]
{CD3AFA94-B84F-48F0-9393-7EDC34128127} <H:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Msxml]
{CFC399AF-D876-11D0-9C10-00C04FC99C8E} <H:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <H:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <H:\WINDOWS\system32\Flash9b.ocx, Adobe Systems, Inc.>
[RevealTrans]
{E31E87C4-86EA-4940-9B8A-5BD5D179A737} <H:\WINDOWS\system32\Dxtmsft.dll, Microsoft Corporation>
[Rising Web Scan Object]
{E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <H:\WINDOWS\Downloaded Program Files\OL2005.dll, Beijing Rising Technology Co., Ltd.>
[vc Control]
{E689D735-1487-420D-9049-16ED198FE411} <H:\WINDOWS\DOWNLO~1\vco.ocx, >
[CPasswordEditCtrl Object]
{E787FD25-8D7C-4693-AE67-9406BC6E22DF} <H:\WINDOWS\system32\qqedit\qqedit.dll, 腾讯科技（深圳）有限公司>
[金山毒霸在线产品升级]
{E847C78C-C210-4195-8799-FBF3BF89797D} <H:\PROGRA~1\KOS\KOSInit.OCX, 金山软件股份有限公司>
[TimwpDll.TimwpCheck]
{ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} <C:\PROGRA~1\Tencent\QQ\Timwp.dll, >
[XML HTTP Request]
{ED8C108E-4349-11D2-91A4-00C04F7969E8} <H:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[Scripting.Dictionary]
{EE09B103-97E0-11CF-978F-00A02463E06F} <H:\WINDOWS\system32\scrrun.dll, Microsoft Corporation>
[XML DOM Document 3.0]
{F5078F32-C551-11D3-89B9-0000F81FE221} <H:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[Free Threaded XML DOM Document 3.0]
{F5078F33-C551-11D3-89B9-0000F81FE221} <H:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML HTTP 3.0]
{F5078F35-C551-11D3-89B9-0000F81FE221} <H:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XSL Template 3.0]
{F5078F36-C551-11D3-89B9-0000F81FE221} <H:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML DOM Document]
{F6D90F11-9C73-11D3-B32E-00C04F990BB4} <H:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML HTTP]
{F6D90F16-9C73-11D3-B32E-00C04F990BB4} <H:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[Install Class]
{FADDB70B-4C98-4AF4-BE8B-A10430B7915A} <H:\Program Files\Common Files\Baidu\BaiduX\Detect.dll, Baidu Corporation>
[上传到QQ网络硬盘]
<C:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[使用Web迅雷下载]
<E:\Program Files\Thunder Network\WebThunder\GetUrl.htm, N/A>
[使用Web迅雷下载全部链接]
<E:\Program Files\Thunder Network\WebThunder\GetAllUrl.htm, N/A>
[添加到QQ自定义面板]
<C:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
<C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<C:\Program Files\Tencent\QQ\SendMMS.htm, N/A>
[用比特精灵下载(&B)]
<C:\Program Files\BitSpirit\bsurl.htm, N/A>

受伤的孩子 - 2007-5-24 10:11:00

正在运行的进程
[PID: 544][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 592][\??\H:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 620][\??\H:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[H:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 664][H:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[H:\WINDOWS\AppPatch\AcAdProc.dll] [Microsoft Corporation, 5.1.2600.3008 (xpsp.061004-0027)]
[H:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.277]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[PID: 676][H:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[H:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.277]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[PID: 836][H:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4140]
[H:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2503]
[PID: 848][H:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[H:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.277]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[PID: 956][H:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[H:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.277]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[PID: 1080][H:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.277]
[PID: 1228][H:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\ieframe.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\rzrznc.dll] [N/A, ]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\WPDShServiceObj.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[H:\WINDOWS\system32\PortableDeviceTypes.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[H:\WINDOWS\system32\PortableDeviceApi.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[H:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[c:\Program Files\WinRAR\rarext.dll] [N/A, ]
[H:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll] [Anti-Malware Development a.s., 7, 5, 0, 49]
[H:\WINDOWS\system32\msadp32.acm] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[H:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.277]

受伤的孩子 - 2007-5-24 10:12:00

[C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 6.0.0.2003051500]
[H:\Program Files\Network Associates\VirusScan\shext.dll] [Network Associates, Inc., 8.0.0.912]
[H:\Program Files\Network Associates\VirusScan\RES04\ShExtRes.dll] [Network Associates, Inc., 8.0.0.912]
[PID: 1424][H:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE] [ATI Technologies Inc., 1.11.0.0]
[H:\WINDOWS\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_5fb4287c\mscorlib.dll] [N/A, ]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll] [Microsoft Corporation, 1.1.4322.573]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_374321f1\system.windows.forms.dll] [N/A, ]
[h:\program files\ati technologies\ati.ace\cli.implementation.dll] [ATI Technologies Inc., 1.2.2460.36578]
[h:\program files\ati technologies\ati.ace\log.foundation.dll] [ATI Technologies Inc., 1.2.2208.29985]
[h:\program files\ati technologies\ati.ace\cli.foundation.dll] [ATI Technologies Inc., 1.2.2208.29986]
[h:\program files\ati technologies\ati.ace\log.foundation.service.dll] [ATI Technologies Inc., 1.2.2460.36737]
[h:\program files\ati technologies\ati.ace\log.foundation.shared.dll] [ATI Technologies Inc., 1.2.2208.29991]
[h:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_f208cfb0\system.dll] [N/A, ]
[h:\program files\ati technologies\ati.ace\cli.foundation.xmanifestation.dll] [ATI Technologies Inc., 1.2.2460.36738]
[h:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_917c6140\system.xml.dll] [N/A, ]
[h:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\program files\ati technologies\ati.ace\cli.component.runtime.dll] [ATI Technologies Inc., 1.2.2460.36741]
[h:\program files\ati technologies\ati.ace\aticccom.dll] [ATI Technologies Inc., 1.0.0.0]
[h:\program files\ati technologies\ati.ace\aem.foundation.dll] [ATI Technologies Inc., 1.2.2208.29985]
[h:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_0821e928\system.drawing.dll] [N/A, ]
[h:\windows\assembly\gac\system.windows.forms.resources\1.0.5000.0_zh-chs_b77a5c561934e089\system.windows.forms.resources.dll] [Microsoft Corporation, 1.1.4322.573]
[h:\program files\ati technologies\ati.ace\cli.caste.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29987]
[h:\program files\ati technologies\ati.ace\cli.caste.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36732]
[h:\program files\ati technologies\ati.ace\cli.component.runtime.shared.dll] [ATI Technologies Inc., 1.2.2208.29988]
[h:\program files\ati technologies\ati.ace\dem.foundation.dll] [ATI Technologies Inc., 1.11.0.0]
[h:\program files\ati technologies\ati.ace\dem.graphics.i0601.dll] [ATI Technologies Inc., 2.0.2344.17361]
[h:\program files\ati technologies\ati.ace\ace.graphics.displaysmanager.shared.dll] [ATI Technologies Inc., 1.11.0.0]
[h:\windows\assembly\gac\system.resources\1.0.5000.0_zh-chs_b77a5c561934e089\system.resources.dll] [Microsoft Corporation, 1.1.4322.573]
[h:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_zh-chs_b77a5c561934e089\mscorlib.resources.dll] [Microsoft Corporation, 1.1.4322.573]
[h:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll] [Microsoft Corporation, 1.1.4322.2037]
[h:\windows\system32\atidemgr.dll] [ATI Technologies Inc., 1.2.2456.36741]
[h:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[h:\program files\ati technologies\ati.ace\cli.aspect.multivpu3.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36616]
[h:\program files\ati technologies\ati.ace\cli.aspect.multivpu3.graphics.shared.dll] [ATI Technologies Inc., 1.2.2302.19274]
[h:\program files\ati technologies\ati.ace\cli.aspect.multivpu2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36575]

受伤的孩子 - 2007-5-24 10:13:00

[C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 6.0.0.2003051500]
[H:\Program Files\Network Associates\VirusScan\shext.dll] [Network Associates, Inc., 8.0.0.912]
[H:\Program Files\Network Associates\VirusScan\RES04\ShExtRes.dll] [Network Associates, Inc., 8.0.0.912]
[PID: 1424][H:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE] [ATI Technologies Inc., 1.11.0.0]
[H:\WINDOWS\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_5fb4287c\mscorlib.dll] [N/A, ]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll] [Microsoft Corporation, 1.1.4322.573]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_374321f1\system.windows.forms.dll] [N/A, ]
[h:\program files\ati technologies\ati.ace\cli.implementation.dll] [ATI Technologies Inc., 1.2.2460.36578]
[h:\program files\ati technologies\ati.ace\log.foundation.dll] [ATI Technologies Inc., 1.2.2208.29985]
[h:\program files\ati technologies\ati.ace\cli.foundation.dll] [ATI Technologies Inc., 1.2.2208.29986]
[h:\program files\ati technologies\ati.ace\log.foundation.service.dll] [ATI Technologies Inc., 1.2.2460.36737]
[h:\program files\ati technologies\ati.ace\log.foundation.shared.dll] [ATI Technologies Inc., 1.2.2208.29991]
[h:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_f208cfb0\system.dll] [N/A, ]
[h:\program files\ati technologies\ati.ace\cli.foundation.xmanifestation.dll] [ATI Technologies Inc., 1.2.2460.36738]
[h:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_917c6140\system.xml.dll] [N/A, ]
[h:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\program files\ati technologies\ati.ace\cli.component.runtime.dll] [ATI Technologies Inc., 1.2.2460.36741]
[h:\program files\ati technologies\ati.ace\aticccom.dll] [ATI Technologies Inc., 1.0.0.0]
[h:\program files\ati technologies\ati.ace\aem.foundation.dll] [ATI Technologies Inc., 1.2.2208.29985]
[h:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_0821e928\system.drawing.dll] [N/A, ]
[h:\windows\assembly\gac\system.windows.forms.resources\1.0.5000.0_zh-chs_b77a5c561934e089\system.windows.forms.resources.dll] [Microsoft Corporation, 1.1.4322.573]
[h:\program files\ati technologies\ati.ace\cli.caste.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29987]
[h:\program files\ati technologies\ati.ace\cli.caste.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36732]
[h:\program files\ati technologies\ati.ace\cli.component.runtime.shared.dll] [ATI Technologies Inc., 1.2.2208.29988]
[h:\program files\ati technologies\ati.ace\dem.foundation.dll] [ATI Technologies Inc., 1.11.0.0]
[h:\program files\ati technologies\ati.ace\dem.graphics.i0601.dll] [ATI Technologies Inc., 2.0.2344.17361]
[h:\program files\ati technologies\ati.ace\ace.graphics.displaysmanager.shared.dll] [ATI Technologies Inc., 1.11.0.0]
[h:\windows\assembly\gac\system.resources\1.0.5000.0_zh-chs_b77a5c561934e089\system.resources.dll] [Microsoft Corporation, 1.1.4322.573]
[h:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_zh-chs_b77a5c561934e089\mscorlib.resources.dll] [Microsoft Corporation, 1.1.4322.573]
[h:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll] [Microsoft Corporation, 1.1.4322.2037]
[h:\windows\system32\atidemgr.dll] [ATI Technologies Inc., 1.2.2456.36741]
[h:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[h:\program files\ati technologies\ati.ace\cli.aspect.multivpu3.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36616]
[h:\program files\ati technologies\ati.ace\cli.aspect.multivpu3.graphics.shared.dll] [ATI Technologies Inc., 1.2.2302.19274]
[h:\program files\ati technologies\ati.ace\cli.aspect.multivpu2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36575]

受伤的孩子 - 2007-5-24 10:14:00

[h:\program files\ati technologies\ati.ace\cli.aspect.multivpu2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29991]
[h:\program files\ati technologies\ati.ace\cli.aspect.multivpu.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36640]
[h:\program files\ati technologies\ati.ace\cli.aspect.multivpu.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30001]
[h:\program files\ati technologies\ati.ace\cli.aspect.verylargedesktop.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36615]
[h:\program files\ati technologies\ati.ace\cli.aspect.verylargedesktop.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29993]
[h:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36658]
[h:\program files\ati technologies\ati.ace\cli.aspect.radeon3dlegacy.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36655]
[h:\program files\ati technologies\ati.ace\cli.aspect.displayscolour2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36622]
[h:\program files\ati technologies\ati.ace\cli.aspect.displayscolour2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30007]
[h:\program files\ati technologies\ati.ace\cli.aspect.displayscolour.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36689]
[h:\program files\ati technologies\ati.ace\cli.aspect.displayscolour.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29990]
[h:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36673]
[h:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30001]
[h:\program files\ati technologies\ati.ace\cli.aspect.videooverlay.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36648]
[h:\program files\ati technologies\ati.ace\cli.aspect.videooverlay.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29989]
[h:\program files\ati technologies\ati.ace\ace.graphics.videooverlay.shared.dll] [ATI Technologies Inc., 1.11.0.0]
[h:\program files\ati technologies\ati.ace\cli.aspect.smartgart.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36652]
[h:\program files\ati technologies\ati.ace\cli.aspect.vpurecover.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36645]
[h:\program files\ati technologies\ati.ace\cli.aspect.vpurecover.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29988]
[h:\program files\ati technologies\ati.ace\cli.aspect.workstationconfig.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36643]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecrt.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36709]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecrt.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29147]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecrt2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36628]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecrt2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29162]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36700]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29994]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36622]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29993]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36706]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.shared.dll] [ATI Technologies Inc., 1.2.2341.28028]
[h:\program files\ati technologies\ati.ace\cli.aspect.customformats.graphics.shared.dll] [ATI Technologies Inc., 1.2.2341.28007]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36631]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2341.28018]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicetv2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36696]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36692]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicedfp.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36702]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicedfp.graphics.shared.dll] [ATI Technologies Inc., 1.2.2341.28013]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicedfp2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36625]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicedfp2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2341.28023]
[h:\program files\ati technologies\ati.ace\cli.aspect.overdrive3.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36665]
[h:\program files\ati technologies\ati.ace\cli.aspect.overdrive3.graphics.shared.dll] [ATI Technologies Inc., 1.2.2279.31385]
[h:\program files\ati technologies\ati.ace\cli.aspect.overdrive2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36670]
[h:\program files\ati technologies\ati.ace\cli.aspect.powerplay3.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36662]
[h:\program files\ati technologies\ati.ace\cli.aspect.powerplay3.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29989]
[h:\program files\ati technologies\ati.ace\cli.aspect.displaysoptions.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36683]
[h:\program files\ati technologies\ati.ace\cli.aspect.integratedumaframebuffer.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36677]
[h:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36680]
[h:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29990]

受伤的孩子 - 2007-5-24 10:14:00

[h:\program files\ati technologies\ati.ace\cli.aspect.hotkeyshandling.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2460.36634]
[h:\program files\ati technologies\ati.ace\cli.aspect.hotkeyshandling.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30002]
[h:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.shared.dll] [ATI Technologies Inc., 1.2.2232.28756]
[h:\program files\ati technologies\ati.ace\cli.aspect.radeon3dlegacy.graphics.shared.dll] [ATI Technologies Inc., 1.2.2232.28758]
[h:\program files\ati technologies\ati.ace\dem.graphics.i0600.dll] [ATI Technologies Inc., 1.11.0.0]
[h:\program files\ati technologies\ati.ace\cli.aspect.smartgart.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29990]
[h:\program files\ati technologies\ati.ace\cli.aspect.workstationconfig.graphics.shared.dll] [ATI Technologies Inc., 1.2.2390.25922]
[h:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29987]
[h:\program files\ati technologies\ati.ace\dem.graphics.i0602.dll] [ATI Technologies Inc., 1.11.0.0]
[h:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29986]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicetv2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2307.27448]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.shared.dll] [ATI Technologies Inc., 1.2.2307.27453]
[h:\program files\ati technologies\ati.ace\cli.aspect.overdrive2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2412.27525]
[h:\program files\ati technologies\ati.ace\cli.aspect.displaysoptions.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29993]
[h:\program files\ati technologies\ati.ace\cli.aspect.integratedumaframebuffer.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29988]
[H:\WINDOWS\system32\netfxperf.dll] [Microsoft Corporation, 1.1.4322.573]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\perfcounter.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\program files\ati technologies\ati.ace\apm.foundation.dll] [ATI Technologies Inc., 1.2.2208.30002]
[H:\WINDOWS\system32\ieframe.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[PID: 1708][H:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe] [Anti-Malware Development a.s., 7, 5, 0, 50]
[H:\Program Files\Grisoft\AVG Anti-Spyware 7.5\engine.dll] [Anti-Malware Development a.s., 4, 2, 0, 15]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\rzrznc.dll] [N/A, ]
[PID: 1724][H:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[PID: 1384][H:\Program Files\ATI Technologies\ATI.ACE\cli.exe] [ATI Technologies Inc., 1.11.0.0]
[H:\WINDOWS\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_5fb4287c\mscorlib.dll] [N/A, ]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll] [Microsoft Corporation, 1.1.4322.573]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_374321f1\system.windows.forms.dll] [N/A, ]
[h:\program files\ati technologies\ati.ace\cli.implementation.dll] [ATI Technologies Inc., 1.2.2460.36578]
[h:\program files\ati technologies\ati.ace\log.foundation.dll] [ATI Technologies Inc., 1.2.2208.29985]
[h:\program files\ati technologies\ati.ace\cli.foundation.dll] [ATI Technologies Inc., 1.2.2208.29986]
[h:\program files\ati technologies\ati.ace\log.foundation.service.dll] [ATI Technologies Inc., 1.2.2460.36737]
[h:\program files\ati technologies\ati.ace\log.foundation.shared.dll] [ATI Technologies Inc., 1.2.2208.29991]
[h:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_f208cfb0\system.dll] [N/A, ]
[h:\program files\ati technologies\ati.ace\cli.foundation.xmanifestation.dll] [ATI Technologies Inc., 1.2.2460.36738]

newcenturymoon - 2007-5-24 10:15:00

<cmdbcs><H:\WINDOWS\cmdbcs.exe> []
<mppds><H:\WINDOWS\mppds.exe> []
<upxdnd><H:\DOCUME~1\GTOZHO~1\LOCALS~1\Temp\upxdnd.exe> [N/A]

受伤的孩子 - 2007-5-24 10:15:00

[h:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_917c6140\system.xml.dll] [N/A, ]
[h:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\program files\ati technologies\ati.ace\cli.component.wizard.dll] [ATI Technologies Inc., 1.2.2460.36607]
[h:\program files\ati technologies\ati.ace\cli.foundation.clients.dll] [ATI Technologies Inc., 1.2.2208.29986]
[h:\program files\ati technologies\ati.ace\cli.component.wizard.shared.dll] [ATI Technologies Inc., 1.2.2208.29987]
[h:\windows\assembly\gac\system.resources\1.0.5000.0_zh-chs_b77a5c561934e089\system.resources.dll] [Microsoft Corporation, 1.1.4322.573]
[h:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_zh-chs_b77a5c561934e089\mscorlib.resources.dll] [Microsoft Corporation, 1.1.4322.573]
[h:\program files\ati technologies\ati.ace\cli.component.runtime.dll] [ATI Technologies Inc., 1.2.2460.36741]
[h:\program files\ati technologies\ati.ace\aticccom.dll] [ATI Technologies Inc., 1.0.0.0]
[h:\program files\ati technologies\ati.ace\cli.caste.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29987]
[h:\program files\ati technologies\ati.ace\aem.foundation.dll] [ATI Technologies Inc., 1.2.2208.29985]
[h:\program files\ati technologies\ati.ace\ace.graphics.displaysmanager.shared.dll] [ATI Technologies Inc., 1.11.0.0]
[h:\program files\ati technologies\ati.ace\cli.caste.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2460.36610]
[h:\program files\ati technologies\ati.ace\cli.caste.graphics.wizard.shared.dll] [ATI Technologies Inc., 1.2.2208.29990]
[h:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll] [Microsoft Corporation, 1.1.4322.2032]
[h:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_0821e928\system.drawing.dll] [N/A, ]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2460.36597]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2460.36600]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2460.36592]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2460.36616]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2460.36587]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicetv2.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2460.36589]
[h:\program files\ati technologies\ati.ace\cli.aspect.displaysmanager.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2460.36604]
[h:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.wizard.dll] [ , 1.2.2460.36579]
[h:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2460.36581]
[h:\program files\ati technologies\ati.ace\cli.aspect.transcode.local.wizard.dll] [ATI Technologies Inc., 1.2.2460.36574]
[h:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2460.36584]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.shared.dll] [ATI Technologies Inc., 1.2.2341.28028]
[h:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29987]
[h:\program files\ati technologies\ati.ace\cli.aspect.customformats.graphics.shared.dll] [ATI Technologies Inc., 1.2.2341.28007]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2341.28018]
[h:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29986]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29994]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29993]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.shared.dll] [ATI Technologies Inc., 1.2.2307.27453]
[h:\program files\ati technologies\ati.ace\cli.aspect.devicetv2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2307.27448]
[h:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.shared.dll] [ATI Technologies Inc., 1.2.2232.28756]
[h:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30001]
[h:\program files\ati technologies\ati.ace\cli.aspect.transcode.local.shared.dll] [ATI Technologies Inc., 1.2.0.0]
[h:\program files\ati technologies\ati.ace\atixclib.dll] [ , 1.0.0.0]
[h:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29990]
[h:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll] [Microsoft Corporation, 1.1.4322.2037]
[H:\WINDOWS\system32\netfxperf.dll] [Microsoft Corporation, 1.1.4322.573]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\perfcounter.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]

受伤的孩子 - 2007-5-24 10:15:00

[PID: 2996][H:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\IEFRAME.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\IEUI.dll] [Microsoft Corporation, 7.00.5730.11 (winmain(wmbla).061017-1135)]
[H:\WINDOWS\system32\xmllite.dll] [Microsoft Corporation, 1.00.1018.0]
[H:\Program Files\Internet Explorer\ieproxy.dll] [Microsoft Corporation, 7.00.5730.11 (winmain(wmbla).061017-1135)]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\rzrznc.dll] [N/A, ]
[C:\Program Files\安装程序\IE7pro0911beta中文绿色版\IE7pro0911beta\IE7pro\IE7pro.dll] [IE7pro.com, 0, 9, 0, 11]
[C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 6.0.0.2003051500]
[H:\WINDOWS\system32\ieapfltr.dll] [Microsoft Corporation, 7.0.6000.16461]
[H:\WINDOWS\system32\msfeeds.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\Flash9b.ocx] [Adobe Systems, Inc., 9,0,28,0]
[H:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[H:\WINDOWS\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorie.dll] [Microsoft Corporation, 1.1.4322.573]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[H:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorld.dll] [Microsoft Corporation, 1.1.4322.2032]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCTIP.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\SHARED\IMETIP.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\SHARED\IMECFM.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCCORE.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCCFG.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\SHARED\IMELM.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\SHARED\MSCAND20.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\WINDOWS\system32\IMSC12.IME] [Microsoft Corporation, 12.0.4518.1014]
[H:\Program Files\Common Files\Microsoft Shared\ime12\Imesc\IMSCUI.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\WINDOWS\system32\msdmo.dll] [, ]
[H:\WINDOWS\system32\idndl.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\PROGRA~1\Tencent\QQ\CPHelper.dll] [, 1, 0, 0, 1]
[C:\PROGRA~1\Tencent\QQ\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0]
[H:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.277]
[H:\WINDOWS\system32\MFPlat.DLL] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[H:\WINDOWS\system32\l3codeca.acm] [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]
[c:\Program Files\StormII\codec\ac3filter.ax] [, 1.01a]
[H:\WINDOWS\system32\ffdshow.ax] [, 1.0.2.2028]
[c:\Program Files\StormII\Codec\VSFilter.dll] [Gabest, 1, 0, 1, 3]
[H:\WINDOWS\system32\wmpeffects.dll] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[PID: 3764][E:\Program Files\Thunder Network\WebThunder\WebThunder.exe] [深圳市迅雷网络技术有限公司, 1, 7, 2, 107]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[E:\Program Files\Thunder Network\WebThunder\taskmanage.dll] [Thunder Networking Technologies,LTD, 1, 7, 2, 107]
[E:\Program Files\Thunder Network\WebThunder\download_interface.dll] [Thunder Networking Technologies,LTD, 2, 14, 2, 79]
[E:\Program Files\Thunder Network\WebThunder\stlport_vc646.dll] [STLport Consulting, Inc., 4.6.2003.1031]
[E:\Program Files\Thunder Network\WebThunder\asyn_dns.dll] [Thunder Networking Technologies,LTD, 2, 14, 2, 79]
[E:\Program Files\Thunder Network\WebThunder\RegisterDll.dll] [Thunder Networking Technologies,LTD, 2, 13, 4, 58]
[E:\Program Files\Thunder Network\WebThunder\historyinfo_manage.dll] [Thunder Networking Technologies,LTD, 5, 3, 0, 228]

受伤的孩子 - 2007-5-24 10:16:00

[H:\WINDOWS\system32\ieframe.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[E:\Program Files\Thunder Network\WebThunder\iEmbedShell.dll] [　, 1, 0, 0, 17]
[e:\Program Files\Thunder Network\WebThunder\iEmbed09.dll] [　, 3, 3, 0, 78]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\rzrznc.dll] [N/A, ]
[H:\WINDOWS\system32\Flash9b.ocx] [Adobe Systems, Inc., 9,0,28,0]
[H:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[H:\Program Files\Internet Explorer\ieproxy.dll] [Microsoft Corporation, 7.00.5730.11 (winmain(wmbla).061017-1135)]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCTIP.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\SHARED\IMETIP.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\SHARED\IMECFM.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCCORE.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCCFG.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\SHARED\IMELM.DLL] [Microsoft Corporation, 12.0.4518.1014]
[PID: 116][C:\Program Files\Tencent\QQ\QQ.exe] [TENCENT, 0, 0, 0, 0]
[C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\QQHelperDll.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\BasicCtrlDll.dll] [Tencent, 5, 0, 200, 370]
[C:\Program Files\Tencent\QQ\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[C:\Program Files\Tencent\QQ\RICHED32.DLL] [Microsoft Corporation, 5.00.2134.1]
[C:\Program Files\Tencent\QQ\RICHED20.dll] [Microsoft Corporation, 5.31.23.1218]
[C:\Program Files\Tencent\QQ\QQAPI.dll] [, 1, 0, 0, 1]
[c:\Program Files\Tencent\QQ\TIMProxy.dll] [tencent, 0, 3, 2, 4]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\rzrznc.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\LoginCtrl.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\npkcntc.dll] [INCA Internet Co., Ltd., 2006, 6, 27, 1]
[C:\Program Files\Tencent\QQ\npkpdb.dll] [INCA Internet Co., Ltd., 2003, 10, 1, 1]
[C:\Program Files\Tencent\QQ\QQRes.dll] [tencent, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\QQMainFrame.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\CQQApplication.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\NewSkin.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\HostingMgr.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\CameraDll.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\MailSummary.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\QQSpace.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\vbscript.dll] [Microsoft Corporation, 5.6.0.7426]
[C:\Program Files\Tencent\QQ\QQAllInOne.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\GroupLive.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\SCCore.dll] [TENCENT, 2, 0, 0, 1]
[H:\WINDOWS\system32\msdmo.dll] [, ]
[C:\Program Files\Tencent\QQ\QQGroupMng.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\QQSysMsgMng.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\UserDefinedHead.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\QQPlugin.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\QQConfigPlugin.dll] [, 1, 0, 0, 1]

受伤的孩子 - 2007-5-24 10:16:00

[C:\Program Files\Tencent\QQ\QRingMng.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\PhoneAPI.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\DialerAllinOne.dll] [tencent, 1, 4, 0, 0]
[H:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\Program Files\Tencent\QQ\VPortal.dll] [, 1, 0, 0, 4]
[C:\Program Files\Tencent\QQ\QQAvatar.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\FlashAvatarDll.dll] [, 1, 4, 0, 1]
[C:\Program Files\Tencent\QQ\LongConnection.dll] [tencent, 5, 0, 200, 160]
[C:\Program Files\Tencent\QQ\QQPet.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\BQQApplication.dll] [N/A, ]
[H:\WINDOWS\system32\ieframe.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[C:\Program Files\Tencent\QQ\CommercesMng.dll] [, 1, 0, 0, 1]
[C:\Program Files\Tencent\QQ\PersonalDesktop.dll] [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
[C:\Program Files\Tencent\QQ\QQAddr.dll] [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
[C:\Program Files\Tencent\QQ\QQCustomFace.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\gdiplus.dll] [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Tencent\QQ\QQSceneMng.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\QQPhoneHelper.dll] [腾讯科技（深圳）有限公司, 2, 1, 9, 92]
[H:\WINDOWS\system32\IMSC12.IME] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCCORE.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCCFG.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\Program Files\Common Files\Microsoft Shared\ime12\Imesc\IMSCUI.DLL] [Microsoft Corporation, 12.0.4518.1014]
[H:\PROGRA~1\COMMON~1\MICROS~1\IME12\SHARED\IMELM.DLL] [Microsoft Corporation, 12.0.4518.1014]
[C:\Program Files\Tencent\QQ\GroupConnection.dll] [Tencent, 0, 3, 3, 5]
[PID: 388][c:\Program Files\Tencent\QQ\TIMPlatform.exe] [tencent, 0, 3, 1, 8]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[c:\Program Files\Tencent\QQ\TIMProxy.dll] [tencent, 0, 3, 2, 4]
[PID: 3252][H:\Documents and Settings\gtozhouhang\桌面\McAfee-v8.0_chs\Setup.exe] [Netopsystems AG, 2, 3, 0, 2]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[PID: 1504][H:\DOCUME~1\GTOZHO~1\LOCALS~1\Temp\McAfee VirusScan Enterprise 80\setupvse.exe] [McAfee, Inc., 8.0.0.912]
[PID: 2116][H:\WINDOWS\system32\msiexec.exe] [Microsoft Corporation, 3.1.4000.1823]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\rzrznc.dll] [N/A, ]
[PID: 2916][H:\WINDOWS\system32\MsiExec.exe] [Microsoft Corporation, 3.1.4000.1823]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\rzrznc.dll] [N/A, ]
[PID: 996][H:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe] [Network Associates, Inc., 2.0.275.0]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]

受伤的孩子 - 2007-5-24 10:17:00

[PID: 2964][H:\Program Files\Network Associates\Common Framework\UpdaterUI.exe] [Network Associates, Inc., 3.5.0.412]
[H:\Program Files\Network Associates\Common Framework\nailog.dll] [Network Associates, Inc., 3.5.0.474]
[H:\Program Files\Network Associates\Common Framework\naCmnLib.dll] [Network Associates, Inc., 3.5.0.474]
[H:\Program Files\Network Associates\Common Framework\naXML.dll] [Network Associates, Inc., 3.5.0.474]
[H:\Program Files\Network Associates\Common Framework\0804\UpdRes.dll] [Network Associates, Inc., 3.5.0.412]
[H:\Program Files\Network Associates\Common Framework\0804\AgentRes.dll] [Network Associates, Inc., 3.5.0.412]
[H:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory.dll] [Network Associates, Inc., 3.5.0.412]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\rzrznc.dll] [N/A, ]
[PID: 2216][H:\Program Files\Network Associates\VirusScan\shstat.exe] [Network Associates, Inc., 8.0.0.912]
[H:\Program Files\Network Associates\VirusScan\SHUTIL.dll] [Network Associates, Inc., 8.0.0.912]
[H:\Program Files\Network Associates\VirusScan\naiwmain.dll] [Network Associates, Inc., 8.0.0.912]
[H:\Program Files\Network Associates\VirusScan\RES04\shstat.dll] [Network Associates, Inc., 8.0.0.912]
[H:\Program Files\Network Associates\VirusScan\RES04\Product.dll] [Network Associates, Inc., 8.0.0.912]
[H:\Program Files\Network Associates\VirusScan\RES04\McShield.dll] [Network Associates, Inc., 8.0.0.251]
[H:\Program Files\Network Associates\VirusScan\RES04\Shutilrc.dll] [Network Associates, Inc., 8.0.0.912]
[H:\Program Files\Network Associates\VirusScan\Graphics.dll] [Network Associates, Inc., 8.0.0.912]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[PID: 432][C:\tt\TTPlayer.exe] [Alen Soft, 5, 0, 0, 0]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[C:\tt\ttpcomm.dll] [N/A, ]
[C:\tt\ttpres.dll] [Alen Soft, 5, 0, 0, 0]
[C:\tt\msdmo.dll] [Microsoft Corporation, 6.03.01.0400]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[H:\WINDOWS\system32\rzrznc.dll] [N/A, ]
[C:\tt\AddIn\ttp_lrcsh.dll] [N/A, ]
[H:\WINDOWS\system32\wpdshext.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[H:\WINDOWS\system32\PortableDeviceApi.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[H:\WINDOWS\system32\Audiodev.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[H:\WINDOWS\system32\ieframe.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\Documents and Settings\gtozhouhang\桌面\sreng2\3.com] [Smallfrogs Studio, 2.4.12.806]
[H:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[H:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16441 (vista_gdr.070219-1500)]
[H:\WINDOWS\system32\gsompq.dll] [N/A, ]
[H:\WINDOWS\system32\rzrznc.dll] [N/A, ]

受伤的孩子 - 2007-5-24 10:18:00

文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM Error. ["hh.exe" %1]
.HLP Error. [winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
[E:\]
[AutoRun]
open=rxmoefa.exe
shell\open=打开(&O)
shell\open\Command=rxmoefa.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=rxmoefa.exe
[F:\]
[AutoRun]
open=rxmoefa.exe
shell\open=打开(&O)
shell\open\Command=rxmoefa.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=rxmoefa.exe
[G:\]
[AutoRun]
open=rxmoefa.exe
shell\open=打开(&O)
shell\open\Command=rxmoefa.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=rxmoefa.exe
[H:\]
[AutoRun]
open=rxmoefa.exe
shell\open=打开(&O)
shell\open\Command=rxmoefa.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=rxmoefa.exe

==================================
HOSTS 文件
127.0.0.1 localhost

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

受伤的孩子 - 2007-5-24 10:20:00

全部发上来了，哎呀没想到还是以体力活，不过发着痛快
各位大哥多多帮帮忙阿！~~小女子这厢有礼了！

newcenturymoon - 2007-5-24 10:22:00

open=rxmoefa.exe
shell\open=打开(&O)
shell\open\Command=rxmoefa.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=rxmoefa.exe
又是这些哎 IFEO的东西

受伤的孩子 - 2007-5-24 10:25:00

哦？那该怎么做呢？

303266474 - 2007-5-24 10:34:00

启动你扫描的软件,启动项目=>注册表

选中
<cmdbcs><H:\WINDOWS\cmdbcs.exe> []
<mppds><H:\WINDOWS\mppds.exe> []
<upxdnd><H:\DOCUME~1\GTOZHO~1\LOCALS~1\Temp\upxdnd.exe> [N/A]
删除

重新启动,进入安全模式,显示隐藏文件,删除上述对应文件.

开始=>运行=>输入"regedit"展开
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
除默认,全部删除.

打开"我的电脑",搜索"rxmoefa.exe",找到后删除.

右键打开E;,D,F盘找到Autorun.inf删除.
可能,大概还需要下威金专杀试试

受伤的孩子 - 2007-5-24 10:54:00

其中只有你说的<upxdnd><H:\DOCUME~1\GTOZHO~1\LOCALS~1\Temp\upxdnd.exe> [N/A]
另两个没有

受伤的孩子 - 2007-5-24 11:01:00

哦刚才被**删除了那两项

瑞星卡卡安全论坛