有毒查不出，ＩＥ劫持．看日志 - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛有毒查不出，ＩＥ劫持．看日志

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

有毒查不出，ＩＥ劫持．看日志

淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:	发表于： 2007-02-28 23:07 \| 只看楼主短消息资料字号：小中大 1楼有毒查不出，ＩＥ劫持．看日志 HijackThis_zww汉化版扫描日志 V1.99.1 保存于 22:50:05, 日期 2007-2-28 操作系统： Windows XP SP2 (WinNT 5.01.2600) 浏览器： Internet Explorer v6.00 SP2 (6.00.2900.2180) 当前运行的进程： D:\WINDOWS\System32\smss.exe D:\WINDOWS\system32\winlogon.exe D:\WINDOWS\system32\services.exe D:\WINDOWS\system32\lsass.exe D:\WINDOWS\system32\svchost.exe D:\Program Files\Rising\Rav\CCenter.exe D:\WINDOWS\System32\svchost.exe D:\Program Files\Rising\Rav\Ravmond.exe d:\program files\rising\rfw\rfwproxy.exe d:\program files\rising\rfw\rfwsrv.exe D:\Program Files\Rising\Rav\RavStub.exe D:\WINDOWS\system32\spoolsv.exe D:\WINDOWS\Explorer.EXE D:\WINDOWS\system32\ctfmon.exe D:\program files\internet explorer\iexplore.exe d:\program files\rising\rfw\RfwMain.exe D:\WINDOWS\system32\hkcmd.exe D:\WINDOWS\SOUNDMAN.EXE D:\Program Files\Rising\Rav\RavTask.exe D:\WINDOWS\system32\rundll32.exe D:\Program Files\Rising\Rav\Ravmon.exe D:\WINDOWS\system32\wscntfy.exe D:\WINDOWS\system32\conime.exe D:\Program Files\Internet Explorer\iexplore.exe D:\WINDOWS\system32\svchost.exe D:\Documents and Settings\abc\My Documents\HijackThis1991zww.exe R3 - URLSearchHook: (no name) - {BB936323-19FA-4521-BA29-ECA6A121BC78} - (no file) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,c:\WINDOWS\UOAvw.exe,rundll32.exe D:\WINDOWS\system32\winsys16_070221.dll start O2 - BHO: (no name) - RsAutorunsDisabled - (no file) O2 - BHO: vcrx - {79FA31E3-A6F8-4324-B58C-E66E35614BDA} - D:\PROGRA~1\COMMON~1\blxd\fpbh.dll (file missing) O2 - BHO: vcrx - {79FA31E3-A6F8-4324-B58C-E66E35614BDA}? - (no file) O2 - BHO: (no name) - {DE7C3CF0-4B15-11D1-ABED-709549C10000} - (no file) O3 - IE工具栏增项: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\program files\google\googletoolbar1.dll (file missing) O3 - IE工具栏增项: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - D:\WINDOWS\system32\kakatool.dll O4 - 启动项HKLM\\Run: [IMJPMIG8.1] "D:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - 启动项HKLM\\Run: [PHIME2002ASync] D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - 启动项HKLM\\Run: [PHIME2002A] D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - 启动项HKLM\\Run: [IgfxTray] D:\WINDOWS\system32\igfxtray.exe O4 - 启动项HKLM\\Run: [HotKeysCmds] D:\WINDOWS\system32\hkcmd.exe O4 - 启动项HKLM\\Run: [SoundMan] SOUNDMAN.EXE O4 - 启动项HKLM\\Run: [runeip] D:\Program Files\Rising\AntiSpyware\runiep.exe O4 - 启动项HKLM\\Run: [RavTask] "D:\Program Files\Rising\Rav\RavTask.exe" -system O4 - 启动项HKLM\\Run: [RfwMain] "D:\Program Files\Rising\Rfw\rfwmain.exe" -Startup O4 - 启动项HKLM\\Run: [helper.dll] D:\WINDOWS\system32\rundll32.exe O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - IE右键菜单中的新增项目: &使用快车(FlashGet)下载 - D:\Program Files\FlashGet\jc_link.htm O8 - IE右键菜单中的新增项目: &使用快车(FlashGet)下载全部链接 - D:\Program Files\FlashGet\jc_all.htm O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - E:\Program Files\Tencent\QQ\AddToNetDisk.htm O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - E:\Program Files\Tencent\QQ\AddPanel.htm O8 - IE右键菜单中的新增项目: 添加到QQ表情 - E:\Program Files\Tencent\QQ\AddEmotion.htm O8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - E:\Program Files\Tencent\QQ\SendMMS.htm O9 - 浏览器额外的按钮: (no name) - RsAutorunsDisabled - (no file) O17 - HKLM\System\CCS\Services\Tcpip\..\{537E098D-5205-47D3-AE91-F5AEB373B9D7}: NameServer = 202.99.160.68 202.99.166.4 O20 - Winlogon Notify: igfxcui - D:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: sclgntfys - D:\WINDOWS\sclgntfys.dll O23 - NT 服务: Rising Proxy Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - d:\program files\rising\rfw\rfwproxy.exe O23 - NT 服务: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - d:\program files\rising\rfw\rfwsrv.exe O23 - NT 服务: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - D:\Program Files\Rising\Rav\CCenter.exe O23 - NT 服务: Rising RealTime Monitor (RsRavMon) - Beijing Rising Technology Co., Ltd. - D:\Program Files\Rising\Rav\Ravmond.exe 2007-02-28 23:06:52
淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:	分享到：

淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:	发表于： 2007-02-28 23:11 \| 只看楼主短消息资料字号：小中大 2楼 Modules: ------------------------------------ ===================================================== PROCESS NAME: SMSS.EXE ----------------------------------------------------- Process ID = 0x000001ac Thread count= 3 Parent process ID = 4 Priority Class = 32 Modules: ------------------------------------ \SystemRoot\System32\smss.exe (0x48580000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) ===================================================== PROCESS NAME: CSRSS.EXE ----------------------------------------------------- WARNING: OpenProcess failed with error 5 () Process ID = 0x000001ec Thread count= 11 Parent process ID = 428 Modules: ------------------------------------ ===================================================== PROCESS NAME: WINLOGON.EXE ----------------------------------------------------- Process ID = 0x00000204 Thread count= 19 Parent process ID = 428 Priority Class = 128 Modules: ------------------------------------ \??\D:\WINDOWS\system32\winlogon.exe (0x01000000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) D:\WINDOWS\system32\kernel32.dll (0x7C800000) D:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000) D:\WINDOWS\system32\RPCRT4.dll (0x77E50000) D:\WINDOWS\system32\AUTHZ.dll (0x77FE0000) D:\WINDOWS\system32\msvcrt.dll (0x77BE0000) D:\WINDOWS\system32\CRYPT32.dll (0x765E0000) D:\WINDOWS\system32\USER32.dll (0x77D10000) D:\WINDOWS\system32\GDI32.dll (0x77EF0000) D:\WINDOWS\system32\MSASN1.dll (0x76DB0000) D:\WINDOWS\system32\NDdeApi.dll (0x758A0000) D:\WINDOWS\system32\PROFMAP.dll (0x75890000) D:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000) D:\WINDOWS\system32\USERENV.dll (0x759D0000) D:\WINDOWS\system32\PSAPI.DLL (0x76BC0000) D:\WINDOWS\system32\REGAPI.dll (0x76B90000) D:\WINDOWS\system32\Secur32.dll (0x77FC0000) D:\WINDOWS\system32\SETUPAPI.dll (0x76060000) D:\WINDOWS\system32\VERSION.dll (0x77BD0000) D:\WINDOWS\system32\WINSTA.dll (0x762D0000) D:\WINDOWS\system32\WINTRUST.dll (0x76C00000) D:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000) D:\WINDOWS\system32\WS2_32.dll (0x71A20000) D:\WINDOWS\system32\WS2HELP.dll (0x71A10000) D:\WINDOWS\system32\IMM32.DLL (0x76300000) D:\WINDOWS\system32\LPK.DLL (0x62C20000) D:\WINDOWS\system32\USP10.dll (0x73FA0000) D:\WINDOWS\system32\MSGINA.dll (0x758D0000) D:\WINDOWS\system32\SHELL32.dll (0x773A0000) D:\WINDOWS\system32\SHLWAPI.dll (0x77F40000) D:\WINDOWS\system32\COMCTL32.dll (0x5D170000) D:\WINDOWS\system32\ODBC32.dll (0x73540000) D:\WINDOWS\system32\comdlg32.dll (0x76320000) D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000) D:\WINDOWS\system32\odbcint.dll (0x20000000) D:\WINDOWS\system32\SHSVCS.dll (0x76E10000) D:\WINDOWS\system32\sfc.dll (0x76B80000) D:\WINDOWS\system32\sfc_os.dll (0x76C30000) D:\WINDOWS\system32\ole32.dll (0x76990000) D:\WINDOWS\system32\Apphelp.dll (0x76D70000) D:\WINDOWS\system32\msctfime.ime (0x73640000) D:\WINDOWS\system32\WINSCARD.DLL (0x72360000) D:\WINDOWS\system32\WTSAPI32.dll (0x76F20000) D:\WINDOWS\system32\uxtheme.dll (0x5ADC0000) D:\WINDOWS\system32\WINMM.dll (0x76B10000) D:\WINDOWS\system32\cscdll.dll (0x76570000) D:\WINDOWS\sclgntfys.dll (0x10000000) D:\WINDOWS\system32\MFC42.DLL (0x73D30000) D:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000) D:\WINDOWS\system32\WlNotify.dll (0x758B0000) D:\WINDOWS\system32\WINSPOOL.DRV (0x72F70000) D:\WINDOWS\system32\MPR.dll (0x71A90000) D:\WINDOWS\system32\rsaenh.dll (0x0FFD0000) D:\WINDOWS\system32\SAMLIB.dll (0x71B70000) D:\WINDOWS\system32\sxs.dll (0x75E00000) D:\WINDOWS\system32\msv1_0.dll (0x77C40000) D:\WINDOWS\system32\iphlpapi.dll (0x76D30000) D:\WINDOWS\system32\cscui.dll (0x76590000) D:\WINDOWS\system32\wdmaud.drv (0x72C90000) D:\WINDOWS\system32\msacm32.drv (0x72C80000) D:\WINDOWS\system32\MSACM32.dll (0x77BB0000) D:\WINDOWS\system32\xpsp2res.dll (0x027C0000) D:\WINDOWS\system32\midimap.dll (0x77BA0000) D:\WINDOWS\system32\NTMARTA.DLL (0x76CB0000) D:\WINDOWS\system32\WLDAP32.dll (0x76F30000) D:\WINDOWS\system32\COMRes.dll (0x77020000) D:\WINDOWS\system32\OLEAUT32.dll (0x770F0000) D:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000) ===================================================== PROCESS NAME: SERVICES.EXE ----------------------------------------------------- Process ID = 0x00000230 Thread count= 16 Parent process ID = 516 Priority Class = 32 Modules: ------------------------------------ D:\WINDOWS\system32\services.exe (0x01000000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) D:\WINDOWS\system32\kernel32.dll (0x7C800000) D:\WINDOWS\system32\msvcrt.dll (0x77BE0000) D:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000) D:\WINDOWS\system32\RPCRT4.dll (0x77E50000) D:\WINDOWS\system32\USER32.dll (0x77D10000) D:\WINDOWS\system32\GDI32.dll (0x77EF0000) D:\WINDOWS\system32\USERENV.dll (0x759D0000) D:\WINDOWS\system32\SCESRV.dll (0x75840000) D:\WINDOWS\system32\AUTHZ.dll (0x77FE0000) D:\WINDOWS\system32\umpnpmgr.dll (0x75820000) D:\WINDOWS\system32\WINSTA.dll (0x762D0000) D:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000) D:\WINDOWS\system32\NCObjAPI.DLL (0x5F9A0000) D:\WINDOWS\system32\MSVCP60.dll (0x75FF0000) D:\WINDOWS\system32\ShimEng.dll (0x5CC30000) D:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000) D:\WINDOWS\system32\WINMM.dll (0x76B10000) D:\WINDOWS\system32\ole32.dll (0x76990000) D:\WINDOWS\system32\OLEAUT32.dll (0x770F0000) D:\WINDOWS\system32\MSACM32.dll (0x77BB0000) D:\WINDOWS\system32\VERSION.dll (0x77BD0000) D:\WINDOWS\system32\SHELL32.dll (0x773A0000) D:\WINDOWS\system32\SHLWAPI.dll (0x77F40000) D:\WINDOWS\system32\UxTheme.dll (0x5ADC0000) D:\WINDOWS\system32\IMM32.DLL (0x76300000) D:\WINDOWS\system32\LPK.DLL (0x62C20000) D:\WINDOWS\system32\USP10.dll (0x73FA0000) D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000) D:\WINDOWS\system32\comctl32.dll (0x5D170000) D:\WINDOWS\system32\secur32.dll (0x77FC0000) D:\WINDOWS\system32\Apphelp.dll (0x76D70000) D:\WINDOWS\system32\eventlog.dll (0x76CE0000) D:\WINDOWS\system32\WS2_32.dll (0x71A20000) D:\WINDOWS\system32\WS2HELP.dll (0x71A10000) D:\WINDOWS\system32\PSAPI.DLL (0x76BC0000) D:\WINDOWS\system32\wtsapi32.dll (0x76F20000)
淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:

淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:	发表于： 2007-02-28 23:13 \| 只看楼主短消息资料字号：小中大 3楼 ==================================================== PROCESS NAME: LSASS.EXE ----------------------------------------------------- Process ID = 0x0000023c Thread count= 20 Parent process ID = 516 Priority Class = 32 Modules: ------------------------------------ D:\WINDOWS\system32\lsass.exe (0x01000000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) D:\WINDOWS\system32\kernel32.dll (0x7C800000) D:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000) D:\WINDOWS\system32\RPCRT4.dll (0x77E50000) D:\WINDOWS\system32\LSASRV.dll (0x74480000) D:\WINDOWS\system32\msvcrt.dll (0x77BE0000) D:\WINDOWS\system32\Secur32.dll (0x77FC0000) D:\WINDOWS\system32\USER32.dll (0x77D10000) D:\WINDOWS\system32\GDI32.dll (0x77EF0000) D:\WINDOWS\system32\SAMSRV.dll (0x743A0000) D:\WINDOWS\system32\cryptdll.dll (0x76760000) D:\WINDOWS\system32\DNSAPI.dll (0x76EF0000) D:\WINDOWS\system32\WS2_32.dll (0x71A20000) D:\WINDOWS\system32\WS2HELP.dll (0x71A10000) D:\WINDOWS\system32\MSASN1.dll (0x76DB0000) D:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000) D:\WINDOWS\system32\SAMLIB.dll (0x71B70000) D:\WINDOWS\system32\MPR.dll (0x71A90000) D:\WINDOWS\system32\NTDSAPI.dll (0x76770000) D:\WINDOWS\system32\WLDAP32.dll (0x76F30000) D:\WINDOWS\system32\ShimEng.dll (0x5CC30000) D:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000) D:\WINDOWS\system32\WINMM.dll (0x76B10000) D:\WINDOWS\system32\ole32.dll (0x76990000) D:\WINDOWS\system32\OLEAUT32.dll (0x770F0000) D:\WINDOWS\system32\MSACM32.dll (0x77BB0000) D:\WINDOWS\system32\VERSION.dll (0x77BD0000) D:\WINDOWS\system32\SHELL32.dll (0x773A0000) D:\WINDOWS\system32\SHLWAPI.dll (0x77F40000) D:\WINDOWS\system32\USERENV.dll (0x759D0000) D:\WINDOWS\system32\UxTheme.dll (0x5ADC0000) D:\WINDOWS\system32\IMM32.DLL (0x76300000) D:\WINDOWS\system32\LPK.DLL (0x62C20000) D:\WINDOWS\system32\USP10.dll (0x73FA0000) D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000) D:\WINDOWS\system32\comctl32.dll (0x5D170000) D:\WINDOWS\system32\msprivs.dll (0x20000000) D:\WINDOWS\system32\kerberos.dll (0x71C70000) D:\WINDOWS\system32\msv1_0.dll (0x77C40000) D:\WINDOWS\system32\iphlpapi.dll (0x76D30000) D:\WINDOWS\system32\netlogon.dll (0x74410000) D:\WINDOWS\system32\w32time.dll (0x76790000) D:\WINDOWS\system32\MSVCP60.dll (0x75FF0000) D:\WINDOWS\system32\schannel.dll (0x767C0000) D:\WINDOWS\system32\CRYPT32.dll (0x765E0000) D:\WINDOWS\system32\wdigest.dll (0x742E0000) D:\WINDOWS\system32\rsaenh.dll (0x0FFD0000) D:\WINDOWS\system32\scecli.dll (0x74370000) D:\WINDOWS\system32\SETUPAPI.dll (0x76060000) D:\WINDOWS\system32\ipsecsvc.dll (0x74340000) D:\WINDOWS\system32\AUTHZ.dll (0x77FE0000) D:\WINDOWS\system32\oakley.DLL (0x73ED0000) D:\WINDOWS\system32\WINIPSEC.DLL (0x742D0000) D:\WINDOWS\system32\pstorsvc.dll (0x74300000) D:\WINDOWS\system32\mswsock.dll (0x719C0000) D:\WINDOWS\system32\hnetcfg.dll (0x60FD0000) D:\WINDOWS\System32\wshtcpip.dll (0x71A00000) D:\WINDOWS\system32\psbase.dll (0x74320000) D:\WINDOWS\system32\dssenh.dll (0x68100000) ===================================================== PROCESS NAME: SVCHOST.EXE ----------------------------------------------------- Process ID = 0x000002d0 Thread count= 15 Parent process ID = 560 Priority Class = 32 Modules: ------------------------------------ D:\WINDOWS\system32\svchost.exe (0x01000000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) D:\WINDOWS\system32\kernel32.dll (0x7C800000) D:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000) D:\WINDOWS\system32\RPCRT4.dll (0x77E50000) D:\WINDOWS\system32\ShimEng.dll (0x5CC30000) D:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000) D:\WINDOWS\system32\USER32.dll (0x77D10000) D:\WINDOWS\system32\GDI32.dll (0x77EF0000) D:\WINDOWS\system32\WINMM.dll (0x76B10000) D:\WINDOWS\system32\ole32.dll (0x76990000) D:\WINDOWS\system32\msvcrt.dll (0x77BE0000) D:\WINDOWS\system32\OLEAUT32.dll (0x770F0000) D:\WINDOWS\system32\MSACM32.dll (0x77BB0000) D:\WINDOWS\system32\VERSION.dll (0x77BD0000) D:\WINDOWS\system32\SHELL32.dll (0x773A0000) D:\WINDOWS\system32\SHLWAPI.dll (0x77F40000) D:\WINDOWS\system32\USERENV.dll (0x759D0000) D:\WINDOWS\system32\UxTheme.dll (0x5ADC0000) D:\WINDOWS\system32\IMM32.DLL (0x76300000) D:\WINDOWS\system32\LPK.DLL (0x62C20000) D:\WINDOWS\system32\USP10.dll (0x73FA0000) D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000) D:\WINDOWS\system32\comctl32.dll (0x5D170000) D:\WINDOWS\system32\NTMARTA.DLL (0x76CB0000) D:\WINDOWS\system32\WLDAP32.dll (0x76F30000) D:\WINDOWS\system32\SAMLIB.dll (0x71B70000) d:\windows\system32\rpcss.dll (0x76230000) d:\windows\system32\WS2_32.dll (0x71A20000) d:\windows\system32\WS2HELP.dll (0x71A10000) d:\windows\system32\Secur32.dll (0x77FC0000) D:\WINDOWS\system32\xpsp2res.dll (0x20000000) D:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000) D:\WINDOWS\system32\COMRes.dll (0x77020000) d:\windows\system32\termsrv.dll (0x761C0000) d:\windows\system32\ICAAPI.dll (0x74ED0000) d:\windows\system32\SETUPAPI.dll (0x76060000) D:\WINDOWS\system32\WINTRUST.dll (0x76C00000) D:\WINDOWS\system32\CRYPT32.dll (0x765E0000) D:\WINDOWS\system32\MSASN1.dll (0x76DB0000) D:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000) d:\windows\system32\AUTHZ.dll (0x77FE0000) d:\windows\system32\mstlsapi.dll (0x75070000) d:\windows\system32\ACTIVEDS.dll (0x77C90000) d:\windows\system32\adsldpc.dll (0x76DE0000) D:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000) d:\windows\system32\ATL.DLL (0x76AF0000) D:\WINDOWS\system32\REGAPI.dll (0x76B90000) D:\WINDOWS\system32\rsaenh.dll (0x0FFD0000) ===================================================== PROCESS NAME: SVCHOST.EXE ----------------------------------------------------- WARNING: OpenProcess failed with error 5 () Process ID = 0x000002fc Thread count= 10 Parent process ID = 560 Modules: ------------------------------------
淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:

淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:	发表于： 2007-02-28 23:15 \| 只看楼主短消息资料字号：小中大 4楼 ===================================================== PROCESS NAME: CCenter.exe ----------------------------------------------------- Process ID = 0x0000033c Thread count= 3 Parent process ID = 560 Priority Class = 32 Modules: ------------------------------------ D:\Program Files\Rising\Rav\CCenter.exe (0x00400000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) D:\WINDOWS\system32\kernel32.dll (0x7C800000) D:\WINDOWS\system32\USER32.dll (0x77D10000) D:\WINDOWS\system32\GDI32.dll (0x77EF0000) D:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000) D:\WINDOWS\system32\RPCRT4.dll (0x77E50000) D:\WINDOWS\system32\IMM32.DLL (0x76300000) D:\WINDOWS\system32\LPK.DLL (0x62C20000) D:\WINDOWS\system32\USP10.dll (0x73FA0000) D:\WINDOWS\system32\msvcrt.dll (0x77BE0000) D:\WINDOWS\system32\uxtheme.dll (0x5ADC0000) ===================================================== PROCESS NAME: SVCHOST.EXE ----------------------------------------------------- Process ID = 0x00000350 Thread count= 66 Parent process ID = 560 Priority Class = 32 Modules: ------------------------------------ D:\WINDOWS\System32\svchost.exe (0x01000000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) D:\WINDOWS\system32\kernel32.dll (0x7C800000) D:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000) D:\WINDOWS\system32\RPCRT4.dll (0x77E50000) D:\WINDOWS\System32\ShimEng.dll (0x5CC30000) D:\WINDOWS\AppPatch\AcGenral.DLL (0x58FB0000) D:\WINDOWS\system32\USER32.dll (0x77D10000) D:\WINDOWS\system32\GDI32.dll (0x77EF0000) D:\WINDOWS\System32\WINMM.dll (0x76B10000) D:\WINDOWS\system32\ole32.dll (0x76990000) D:\WINDOWS\system32\msvcrt.dll (0x77BE0000) D:\WINDOWS\system32\OLEAUT32.dll (0x770F0000) D:\WINDOWS\System32\MSACM32.dll (0x77BB0000) D:\WINDOWS\system32\VERSION.dll (0x77BD0000) D:\WINDOWS\system32\SHELL32.dll (0x773A0000) D:\WINDOWS\system32\SHLWAPI.dll (0x77F40000) D:\WINDOWS\system32\USERENV.dll (0x759D0000) D:\WINDOWS\System32\UxTheme.dll (0x5ADC0000) D:\WINDOWS\system32\IMM32.DLL (0x76300000) D:\WINDOWS\System32\LPK.DLL (0x62C20000) D:\WINDOWS\System32\USP10.dll (0x73FA0000) D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000) D:\WINDOWS\system32\comctl32.dll (0x5D170000) D:\WINDOWS\System32\NTMARTA.DLL (0x76CB0000) D:\WINDOWS\system32\WLDAP32.dll (0x76F30000) D:\WINDOWS\System32\SAMLIB.dll (0x71B70000) D:\WINDOWS\System32\xpsp2res.dll (0x20000000) d:\windows\system32\shsvcs.dll (0x76E10000) D:\WINDOWS\System32\WINSTA.dll (0x762D0000) D:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000) d:\windows\system32\dhcpcsvc.dll (0x76D50000) d:\windows\system32\DNSAPI.dll (0x76EF0000) d:\windows\system32\WS2_32.dll (0x71A20000) d:\windows\system32\WS2HELP.dll (0x71A10000) d:\windows\system32\iphlpapi.dll (0x76D30000) d:\windows\system32\Secur32.dll (0x77FC0000) D:\WINDOWS\System32\rsaenh.dll (0x0FFD0000) D:\WINDOWS\system32\mswsock.dll (0x719C0000) D:\WINDOWS\System32\hnetcfg.dll (0x60FD0000) D:\WINDOWS\System32\wshtcpip.dll (0x71A00000) d:\windows\system32\wzcsvc.dll (0x77290000) d:\windows\system32\rtutils.dll (0x76E50000) d:\windows\system32\WMI.dll (0x76D00000) D:\WINDOWS\system32\CRYPT32.dll (0x765E0000) D:\WINDOWS\system32\MSASN1.dll (0x76DB0000) d:\windows\system32\WTSAPI32.dll (0x76F20000) d:\windows\system32\ESENT.dll (0x5DF20000) d:\windows\system32\ATL.DLL (0x76AF0000) D:\WINDOWS\System32\rastls.dll (0x75DB0000) D:\WINDOWS\system32\CRYPTUI.dll (0x75430000) D:\WINDOWS\system32\WINTRUST.dll (0x76C00000) D:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000) D:\WINDOWS\system32\WININET.dll (0x76680000) D:\WINDOWS\System32\MPRAPI.dll (0x76D10000) D:\WINDOWS\System32\ACTIVEDS.dll (0x77C90000) D:\WINDOWS\System32\adsldpc.dll (0x76DE0000) D:\WINDOWS\System32\SETUPAPI.dll (0x76060000) D:\WINDOWS\System32\RASAPI32.dll (0x76EB0000) D:\WINDOWS\System32\rasman.dll (0x76E60000) D:\WINDOWS\System32\TAPI32.dll (0x76E80000) D:\WINDOWS\System32\SCHANNEL.dll (0x767C0000) D:\WINDOWS\System32\WinSCard.dll (0x72360000) D:\WINDOWS\System32\raschap.dll (0x75D90000) D:\WINDOWS\system32\msv1_0.dll (0x77C40000) D:\WINDOWS\System32\CLBCATQ.DLL (0x76FA0000) D:\WINDOWS\System32\COMRes.dll (0x77020000) d:\windows\system32\schedsvc.dll (0x76B40000) d:\windows\system32\NTDSAPI.dll (0x76770000) D:\WINDOWS\System32\MSIDLE.DLL (0x74EB0000) d:\windows\system32\audiosrv.dll (0x70DE0000) d:\windows\system32\wkssvc.dll (0x76850000) d:\windows\system32\cryptsvc.dll (0x75EB0000) d:\windows\system32\certcli.dll (0x752B0000) d:\windows\system32\netman.dll (0x77CD0000) d:\windows\system32\netshell.dll (0x74770000) d:\windows\system32\credui.dll (0x76BD0000) d:\windows\system32\WZCSAPI.DLL (0x72FA0000) d:\windows\system32\srvsvc.dll (0x74FF0000) d:\windows\pchealth\helpctr\binaries\pchsvc.dll (0x74EA0000) d:\windows\system32\es.dll (0x768A0000) d:\windows\system32\ersvc.dll (0x74EE0000) d:\windows\system32\dmserver.dll (0x74EF0000) d:\windows\system32\wuauserv.dll (0x50000000) d:\windows\system32\wbem\wmisvc.dll (0x67180000) D:\WINDOWS\system32\VSSAPI.DLL (0x75340000) D:\WINDOWS\system32\wuaueng.dll (0x50040000) D:\WINDOWS\System32\ADVPACK.dll (0x751C0000) D:\WINDOWS\System32\SHFOLDER.dll (0x76750000) D:\WINDOWS\System32\WINSPOOL.DRV (0x72F70000) D:\WINDOWS\System32\WINHTTP.dll (0x4A410000) D:\WINDOWS\System32\Cabinet.dll (0x750B0000) D:\WINDOWS\System32\mspatcha.dll (0x602D0000) D:\WINDOWS\System32\sfc.dll (0x76B80000) D:\WINDOWS\System32\sfc_os.dll (0x76C30000) d:\windows\system32\w32time.dll (0x76790000) d:\windows\system32\MSVCP60.dll (0x75FF0000) d:\windows\system32\trkwks.dll (0x74FD0000) d:\windows\system32\srsvc.dll (0x75100000) d:\windows\system32\POWRPROF.dll (0x74A30000) d:\windows\system32\seclogon.dll (0x73C90000) d:\windows\system32\sens.dll (0x72260000) d:\windows\system32\browser.dll (0x76BA0000) d:\windows\system32\wscsvc.dll (0x4C1A0000) d:\windows\system32\msi.dll (0x7C9C0000) d:\windows\system32\ipnathlp.dll (0x66700000) d:\windows\system32\AUTHZ.dll (0x77FE0000) D:\WINDOWS\System32\SXS.DLL (0x75E00000) D:\WINDOWS\system32\comsvcs.dll (0x75690000) D:\WINDOWS\system32\MTXCLU.DLL (0x75050000) D:\WINDOWS\system32\WSOCK32.dll (0x71A40000) D:\WINDOWS\system32\colbact.DLL (0x75090000) D:\WINDOWS\System32\CLUSAPI.DLL (0x762A0000) D:\WINDOWS\System32\RESUTILS.DLL (0x75010000) D:\WINDOWS\system32\wbem\wbemcomn.dll (0x751F0000) D:\WINDOWS\System32\Wbem\wbemcore.dll (0x75D00000) D:\WINDOWS\System32\Wbem\esscli.dll (0x75270000) D:\WINDOWS\System32\Wbem\FastProx.dll (0x755F0000) D:\WINDOWS\system32\wbem\wmiutils.dll (0x74F80000) D:\WINDOWS\system32\wbem\repdrvfs.dll (0x75160000) d:\windows\system32\tapisrv.dll (0x73350000) d:\windows\system32\PSAPI.DLL (0x76BC0000) d:\windows\system32\rasmans.dll (0x723F0000) d:\windows\system32\WINIPSEC.DLL (0x742D0000) d:\windows\system32\netcfgx.dll (0x75550000) D:\WINDOWS\System32\rastapi.dll (0x75130000) D:\WINDOWS\system32\upnp.dll (0x76540000) D:\WINDOWS\system32\SSDPAPI.dll (0x74E60000) D:\WINDOWS\System32\unimdm.tsp (0x57980000) D:\WINDOWS\System32\uniplat.dll (0x71F90000) D:\WINDOWS\system32\wbem\wmiprvsd.dll (0x594C0000) D:\WINDOWS\system32\NCObjAPI.DLL (0x5F9A0000) D:\WINDOWS\System32\rasadhlp.dll (0x76F90000) D:\WINDOWS\system32\wbem\wbemess.dll (0x752F0000) D:\WINDOWS\system32\wbem\ncprov.dll (0x5F970000) D:\WINDOWS\System32\kmddsp.tsp (0x57A00000) D:\WINDOWS\System32\ndptsp.tsp (0x579E0000) D:\WINDOWS\System32\ipconf.tsp (0x57A10000) D:\WINDOWS\System32\h323.tsp (0x57A30000) D:\WINDOWS\System32\hidphone.tsp (0x57A20000) D:\WINDOWS\System32\HID.DLL (0x68BE0000) D:\WINDOWS\System32\rasppp.dll (0x721D0000) D:\WINDOWS\System32\ntlsapi.dll (0x72420000) D:\WINDOWS\system32\kerberos.dll (0x71C70000) D:\WINDOWS\System32\cryptdll.dll (0x76760000) D:\WINDOWS\System32\RASDLG.dll (0x754B0000) D:\WINDOWS\system32\Apphelp.dll (0x76D70000) D:\WINDOWS\system32\wbem\wbemsvc.dll (0x74E30000) D:\WINDOWS\system32\actxprxy.dll (0x71CC0000) ===================================================== PROCESS NAME: SVCHOST.EXE ----------------------------------------------------- WARNING: OpenProcess failed with error 5 () Process ID = 0x0000037c Thread count= 7 Parent process ID = 560
淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:

淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:	发表于： 2007-02-28 23:16 \| 只看楼主短消息资料字号：小中大 5楼 Modules: ------------------------------------ ===================================================== PROCESS NAME: SVCHOST.EXE ----------------------------------------------------- WARNING: OpenProcess failed with error 5 () Process ID = 0x000003bc Thread count= 15 Parent process ID = 560 Modules: ------------------------------------ ===================================================== PROCESS NAME: RavMonD.exe ----------------------------------------------------- Process ID = 0x00000400 Thread count= 25 Parent process ID = 560 Priority Class = 32 Modules: ------------------------------------ D:\Program Files\Rising\Rav\Ravmond.exe (0x00400000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) D:\WINDOWS\system32\kernel32.dll (0x7C800000) D:\Program Files\Rising\Rav\BWList.dll (0x10000000) D:\WINDOWS\system32\MFC42.DLL (0x73D30000) D:\WINDOWS\system32\msvcrt.dll (0x77BE0000) D:\WINDOWS\system32\GDI32.dll (0x77EF0000) D:\WINDOWS\system32\USER32.dll (0x77D10000) D:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000) D:\WINDOWS\system32\RPCRT4.dll (0x77E50000) D:\WINDOWS\system32\SHELL32.dll (0x773A0000) D:\WINDOWS\system32\SHLWAPI.dll (0x77F40000) D:\WINDOWS\system32\MSVCP60.dll (0x75FF0000) D:\WINDOWS\system32\WSOCK32.dll (0x71A40000) D:\WINDOWS\system32\WS2_32.dll (0x71A20000) D:\WINDOWS\system32\WS2HELP.dll (0x71A10000) D:\WINDOWS\system32\OLEAUT32.dll (0x770F0000) D:\WINDOWS\system32\ole32.dll (0x76990000) D:\WINDOWS\system32\VERSION.dll (0x77BD0000) D:\WINDOWS\system32\IMM32.DLL (0x76300000) D:\WINDOWS\system32\LPK.DLL (0x62C20000) D:\WINDOWS\system32\USP10.dll (0x73FA0000) D:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000) D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000) D:\WINDOWS\system32\comctl32.dll (0x5D170000) D:\Program Files\Rising\Rav\RsCommX.dll (0x00730000) D:\Program Files\Rising\Rav\rfwctrl.dll (0x00A60000) D:\WINDOWS\system32\USERENV.dll (0x759D0000) D:\Program Files\Rising\Rav\RsPPsys.dll (0x00A70000) D:\Program Files\Rising\Rav\RSAPPMGR.DLL (0x00A90000) D:\Program Files\Rising\Rav\CfgDll.dll (0x00AB0000) D:\Program Files\Rising\Rav\RSCOMMON.DLL (0x23700000) D:\Program Files\Rising\Rav\RsLog.dll (0x00C00000) D:\Program Files\Rising\Rav\HOOKSYS.dll (0x08F60000) D:\Program Files\Rising\Rav\Scanner.dll (0x09090000) D:\Program Files\Rising\Rav\libload.dll (0x13100000) D:\Program Files\Rising\Rav\VirusLib.dll (0x091F0000) D:\Program Files\Rising\Rav\regmon.dll (0x09330000) D:\Program Files\Rising\Rav\psapi.dll (0x731B0000) D:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000) D:\Program Files\Rising\Rav\HookWeb.dll (0x09580000) D:\Program Files\Rising\Rav\MemMon.dll (0x096A0000) D:\Program Files\Rising\Rav\expscan.dll (0x096D0000) D:\Program Files\Rising\Rav\mPorts.dll (0x096F0000) D:\WINDOWS\system32\iphlpapi.dll (0x76D30000) D:\Program Files\Rising\Rav\HookCont.dll (0x09900000) D:\Program Files\Rising\Rav\SpamEng.dll (0x09920000) D:\Program Files\Rising\Rav\engine.dll (0x099C0000) D:\WINDOWS\system32\mswsock.dll (0x719C0000) D:\WINDOWS\system32\hnetcfg.dll (0x60FD0000) D:\WINDOWS\System32\wshtcpip.dll (0x71A00000) D:\WINDOWS\system32\uxtheme.dll (0x5ADC0000) D:\Program Files\Rising\Rav\PostTrt.dll (0x0A460000) D:\Program Files\Rising\Rav\UnExe.dll (0x0A6A0000) D:\Program Files\Rising\Rav\ScanExec.dll (0x13AB0000) D:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000) D:\WINDOWS\system32\COMRes.dll (0x77020000) D:\WINDOWS\system32\xpsp2res.dll (0x20000000) D:\Program Files\Rising\Rav\ScanEx.dll (0x0B230000) D:\Program Files\Rising\Rav\ExtFile.dll (0x0AFC0000) D:\Program Files\Rising\Rav\NvFile.dll (0x0B080000) D:\Program Files\Rising\Rav\ScanMac.dll (0x13AF0000) D:\Program Files\Rising\Rav\ScanSct.dll (0x0B100000) D:\Program Files\Rising\Rav\Unpacker.dll (0x0B1D0000) D:\Program Files\Rising\Rav\ScanPack.dll (0x0C000000) D:\Program Files\Rising\Rav\RsVM.dll (0x0C040000) D:\Program Files\Rising\Rav\Uroutine.dll (0x0C360000) D:\Program Files\Rising\Rav\Uscript.dll (0x0C910000) D:\Program Files\Rising\Rav\RsStore.dll (0x0C990000) D:\WINDOWS\system32\ODBC32.dll (0x73540000) D:\WINDOWS\system32\comdlg32.dll (0x76320000) D:\WINDOWS\system32\odbcint.dll (0x0F000000) D:\WINDOWS\system32\odbcjt32.dll (0x4AAC0000) D:\WINDOWS\system32\msjet40.dll (0x1B000000) D:\WINDOWS\system32\mswstr10.dll (0x1B5D0000) D:\WINDOWS\system32\odbcji32.dll (0x4B4E0000) D:\WINDOWS\system32\msjter40.dll (0x1B2C0000) D:\WINDOWS\system32\MSJINT40.DLL (0x1B2D0000) D:\WINDOWS\system32\odbccp32.dll (0x4D3D0000) D:\WINDOWS\system32\Secur32.dll (0x77FC0000) D:\WINDOWS\system32\VBAJET32.DLL (0x0E480000) D:\WINDOWS\system32\perfproc.dll (0x5E8E0000) D:\Program Files\Rising\Rav\ExtOLE.dll (0x0F420000) ===================================================== PROCESS NAME: rfwProxy.exe ----------------------------------------------------- Process ID = 0x0000042c Thread count= 8 Parent process ID = 560 Priority Class = 32
淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:

淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:	发表于： 2007-02-28 23:17 \| 只看楼主短消息资料字号：小中大 6楼 Modules: ------------------------------------ d:\program files\rising\rfw\rfwproxy.exe (0x00400000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) D:\WINDOWS\system32\kernel32.dll (0x7C800000) D:\WINDOWS\system32\RPCRT4.dll (0x77E50000) D:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000) D:\WINDOWS\system32\MFC42.DLL (0x73D30000) D:\WINDOWS\system32\msvcrt.dll (0x77BE0000) D:\WINDOWS\system32\GDI32.dll (0x77EF0000) D:\WINDOWS\system32\USER32.dll (0x77D10000) D:\WINDOWS\system32\WSOCK32.dll (0x71A40000) D:\WINDOWS\system32\WS2_32.dll (0x71A20000) D:\WINDOWS\system32\WS2HELP.dll (0x71A10000) D:\WINDOWS\system32\IMM32.DLL (0x76300000) D:\WINDOWS\system32\LPK.DLL (0x62C20000) D:\WINDOWS\system32\USP10.dll (0x73FA0000) D:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000) D:\WINDOWS\system32\SHLWAPI.dll (0x77F40000) D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000) D:\WINDOWS\system32\comctl32.dll (0x5D170000) D:\WINDOWS\system32\USERENV.dll (0x759D0000) d:\program files\rising\rfw\RfwRule.dll (0x10000000) D:\WINDOWS\system32\ole32.dll (0x76990000) D:\WINDOWS\system32\mswsock.dll (0x719C0000) D:\WINDOWS\system32\hnetcfg.dll (0x60FD0000) D:\WINDOWS\System32\wshtcpip.dll (0x71A00000) d:\program files\rising\rfw\MonMid.dll (0x003F0000) D:\WINDOWS\system32\uxtheme.dll (0x5ADC0000) D:\WINDOWS\system32\perfproc.dll (0x5E8E0000) ===================================================== PROCESS NAME: RFWSRV.EXE ----------------------------------------------------- Process ID = 0x00000478 Thread count= 16 Parent process ID = 560 Priority Class = 32 Modules: ------------------------------------ d:\program files\rising\rfw\rfwsrv.exe (0x00400000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) D:\WINDOWS\system32\kernel32.dll (0x7C800000) D:\WINDOWS\system32\RPCRT4.dll (0x77E50000) D:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000) D:\WINDOWS\system32\VERSION.dll (0x77BD0000) D:\WINDOWS\system32\MFC42.DLL (0x73D30000) D:\WINDOWS\system32\msvcrt.dll (0x77BE0000) D:\WINDOWS\system32\GDI32.dll (0x77EF0000) D:\WINDOWS\system32\USER32.dll (0x77D10000) D:\WINDOWS\system32\COMCTL32.dll (0x5D170000) D:\WINDOWS\system32\ole32.dll (0x76990000) D:\WINDOWS\system32\OLEAUT32.dll (0x770F0000) D:\WINDOWS\system32\MSVCP60.dll (0x75FF0000) D:\WINDOWS\system32\IMM32.DLL (0x76300000) D:\WINDOWS\system32\LPK.DLL (0x62C20000) D:\WINDOWS\system32\USP10.dll (0x73FA0000) D:\WINDOWS\system32\MFC42LOC.DLL (0x61BE0000) D:\WINDOWS\system32\SHLWAPI.dll (0x77F40000) D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000) D:\WINDOWS\system32\USERENV.dll (0x759D0000) d:\program files\rising\rfw\RfwRule.dll (0x10000000) d:\program files\rising\rfw\rfwlog.dll (0x003E0000) d:\program files\rising\rfw\Rfwdrv.dll (0x00810000) d:\program files\rising\rfw\psapi.dll (0x731B0000) D:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000) d:\program files\rising\rfw\MonDrv.dll (0x00930000) d:\program files\rising\rfw\ProcLib.dll (0x00B60000) D:\WINDOWS\system32\uxtheme.dll (0x5ADC0000) d:\program files\rising\rfw\mPorts.dll (0x01550000) D:\WINDOWS\system32\WS2_32.dll (0x71A20000) D:\WINDOWS\system32\WS2HELP.dll (0x71A10000) D:\WINDOWS\system32\iphlpapi.dll (0x76D30000) D:\WINDOWS\system32\perfproc.dll (0x5E8E0000) D:\WINDOWS\system32\secur32.dll (0x77FC0000) D:\WINDOWS\system32\netapi32.dll (0x5FDD0000) D:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000) D:\WINDOWS\system32\COMRes.dll (0x77020000) D:\WINDOWS\system32\xpsp2res.dll (0x20000000) ===================================================== PROCESS NAME: RavStub.exe ----------------------------------------------------- Process ID = 0x00000510 Thread count= 2 Parent process ID = 1024 Priority Class = 32 Modules: ------------------------------------ D:\Program Files\Rising\Rav\RavStub.exe (0x00400000) D:\WINDOWS\system32\ntdll.dll (0x7C920000) D:\WINDOWS\system32\kernel32.dll (0x7C800000) D:\WINDOWS\system32\USER32.dll (0x77D10000) D:\WINDOWS\system32\GDI32.dll (0x77EF0000) D:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000) D:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000) D:\WINDOWS\system32\RPCRT4.dll (0x77E50000) D:\WINDOWS\system32\msvcrt.dll (0x77BE0000) D:\WINDOWS\system32\USERENV.dll (0x759D0000) D:\WINDOWS\system32\COMCTL32.dll (0x5D170000) D:\WINDOWS\system32\IMM32.DLL (0x76300000) D:\WINDOWS\system32\LPK.DLL (0x62C20000) D:\WINDOWS\system32\USP10.dll (0x73FA0000) D:\Program Files\Rising\Rav\RsCommX.dll (0x10000000) D:\Program Files\Rising\Rav\RSCOMMON.DLL (0x23700000) D:\WINDOWS\system32\uxtheme.dll (0x5ADC0000) ===================================================== PROCESS NAME: SPOOLSV.EXE ----------------------------------------------------- Process ID = 0x00000594 Thread count= 10 Parent process ID = 560 Priority Class = 32
淀粉初生襁褓狮帖子:24 注册: 2005-08-21 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT