进入快盘 | 申领稿费  |  新人报到  |  意见建议 | 购买卡币    

卡巴斯基技术论坛's Archiver

astrnova 发表于 2008-7-16 10:06

达人帮我看一下,卡巴主动防御注册表的问题

<P>2008-7-16 9:59:23&nbsp;C:\WINDOWS\system32\msiexec.exe&nbsp;HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SnapshotFile\shell\Open\command&nbsp;(Default)&nbsp;"C:\Program Files\Common Files\Microsoft Shared\Snapshot Viewer\SNAPVIEW.EXE" /dde&nbsp;空结束的Unicode字符串&nbsp;创建&nbsp;被阻止  <BR></P>
w2d(a ~7Q,_[[~ <P>这个是什么意思啊?我禁止了.</P>

数码先行 发表于 2008-7-16 10:41

这个好像是要通过更改注册表来添加一个插件 SNAPVIEW.EXE。你阻止了,没有问题的(f%z4uk;[H/Y)NSg

v)Krg6T X [[i] 本帖最后由 数码先行 于 2008-7-16 13:43 编辑 [/i]]

ngc0717 发表于 2008-7-16 12:53

<P>这个是MS 里面的Access 里的报表快照。。楼主使用的应该是ofice2003吧。。</P>
,`VJ^.?8g#[S7_ <P><BR>&nbsp;空结束的Unicode字符串 创建 被阻止。。楼主用的肯定是卡巴7.0版本。。</P>6]7Z/j'?a4i x
<P><BR>这个在主动防御里面我以前遇到过,若是楼主的Office2003更新到最新补丁的话,这个不该阻止的,</P>@.jt*GBI
<P>&nbsp;</P>
Y#v_8]#T-@!w&P <P>要不然会导致数据库无法查看报表,或者Access出现问题。。。</P>!W,t-r/Z;j's }t:hU2l)P
<P>&nbsp;</P>
l E&uG^A_8l;O <P><BR><STRONG>引。。。。。。。。。。。。。。。。</STRONG></P><STRONG>'wl7\5b/f8A?
<P><BR></STRONG>关于报表快照和 Snapshot Viewer 报表快照报表快照是一个包含了高精度的各 Microsoft Access 报表页的文件(.snp 扩</P>
'vf3W|Yz HX^ <P>&nbsp;</P>k'qM6FC _(n%g
<P>展名),并且其中保存了报表中的二维格式、图形和其他嵌入的对象。 Snapshot Viewer Snapshot Viewer 是一个用于</P>
7J)H a0e l Ei <P>&nbsp;</P>*eE:J)iA
<P>观看、打印、和发送快照的程序,例如报表快照程序。</P>

astrnova 发表于 2008-7-16 14:31

楼上说的都对,但是我们局域网里现在木马泛滥,ARP攻击很多,我怀疑是不是木马导致让我安装这个阿,以前都不用安装的。)_+Yz.R5O]&e
trjMFm;R8b
我现在又用回NOD32了,卡巴太占内存了。SC5u}!_)]2u
时间        模块        对象        名称        病毒        操作        用户        信息
-b,| E/_{j&e 2008-7-16 14:24:12        网络监控        文件        [url]http://ww.xnibi.com/71.swf[/url]        SWF/Exploit.CVE-2007-0071 木马

astrnova 发表于 2008-7-16 14:35

<P>[CODE]</P>
/d*N[a-r <P>2008-07-16,14:30:28</P>
p'|Z|%h g._2{ M <P>System Repair Engineer 2.6.12.1018<BR>Smallfrogs (<A href="http://www.KZTechs.com">http://www.KZTechs.com</A>)</P>"o#C&v0Ea7B2x
<P>Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能</P>
(vg.]S$AAbj g <P>以下内容被选中:<BR>&nbsp;&nbsp;&nbsp; 所有的启动项目(包括注册表、启动文件夹、服务等)<BR>&nbsp;&nbsp;&nbsp; 浏览器加载项<BR>&nbsp;&nbsp;&nbsp; 正在运行的进程(包括进程模块信息)<BR>&nbsp;&nbsp;&nbsp; 文件关联<BR>&nbsp;&nbsp;&nbsp; Winsock 提供者<BR>&nbsp;&nbsp;&nbsp; Autorun.inf<BR>&nbsp;&nbsp;&nbsp; HOSTS 文件<BR>&nbsp;&nbsp;&nbsp; 进程特权扫描</P>
Wq6TsZ[V <P><BR>启动项目<BR>注册表<BR>[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]<BR>&nbsp;&nbsp;&nbsp; &lt;ctfmon.exe&gt;&lt;C:\WINDOWS\system32\ctfmon.exe&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]<BR>&nbsp;&nbsp;&nbsp; &lt;load&gt;&lt;&gt;&nbsp; [N/A]<BR>[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]<BR>&nbsp;&nbsp;&nbsp; &lt;Cmaudio&gt;&lt;RunDll32 cmicnfg.cpl,CMICtrlWnd&gt;&nbsp; [N/A]<BR>&nbsp;&nbsp;&nbsp; &lt;nod32kui&gt;&lt;"C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE&gt;&nbsp; [Eset ]<BR>&nbsp;&nbsp;&nbsp; &lt;SKYNET Personal FireWall&gt;&lt;C:\PROGRA~1\SkyNet\FireWall\pfw.exe&gt;&nbsp; [广州众达天网技术有限公司]<BR>&nbsp;&nbsp;&nbsp; &lt;IMSCMig&gt;&lt;C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload&gt;&nbsp; [(Verified)Microsoft Corporation]<BR>&nbsp;&nbsp;&nbsp; &lt;Acrobat Assistant 7.0&gt;&lt;"C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"&gt;&nbsp; [Adobe Systems Inc.]<BR>&nbsp;&nbsp;&nbsp; &lt;MSConfig&gt;&lt;C:\WINDOWS\system32\msconfig.exe /auto&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>&nbsp;&nbsp;&nbsp; &lt;AntiARPStandalone&gt;&lt;C:\Program Files\彩影软件\ARP防火墙单机版\AntiARP.exe&gt;&nbsp; []<BR>[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]<BR>&nbsp;&nbsp;&nbsp; &lt;tzc02,0,tzchange.exe /F Pacific SA Standard Time /S 10 6 2 23 59 59 999 /E 3 6 2 23 59 59 999 /G&gt;&lt;&gt;&nbsp; [N/A]<BR>[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]<BR>&nbsp;&nbsp;&nbsp; &lt;shell&gt;&lt;Explorer.exe&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>&nbsp;&nbsp;&nbsp; &lt;Userinit&gt;&lt;C:\WINDOWS\system32\userinit.exe,&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]<BR>&nbsp;&nbsp;&nbsp; &lt;AppInit_DLLs&gt;&lt;&gt;&nbsp; [N/A]<BR>[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]<BR>&nbsp;&nbsp;&nbsp; &lt;UIHost&gt;&lt;logonui.exe&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]<BR>&nbsp;&nbsp;&nbsp; &lt;{AEB6717E-7E19-11d0-97EE-00C04FD91972}&gt;&lt;shell32.dll&gt;&nbsp; [Microsoft Corporation]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]<BR>&nbsp;&nbsp;&nbsp; &lt;PostBootReminder&gt;&lt;%SystemRoot%\system32\SHELL32.dll&gt;&nbsp; [Microsoft Corporation]<BR>&nbsp;&nbsp;&nbsp; &lt;CDBurn&gt;&lt;%SystemRoot%\system32\SHELL32.dll&gt;&nbsp; [Microsoft Corporation]<BR>&nbsp;&nbsp;&nbsp; &lt;WebCheck&gt;&lt;%SystemRoot%\system32\webcheck.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>&nbsp;&nbsp;&nbsp; &lt;SysTray&gt;&lt;C:\WINDOWS\system32\stobject.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]<BR>&nbsp;&nbsp;&nbsp; &lt;WinlogonNotify: crypt32chain&gt;&lt;crypt32.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]<BR>&nbsp;&nbsp;&nbsp; &lt;WinlogonNotify: cryptnet&gt;&lt;cryptnet.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]<BR>&nbsp;&nbsp;&nbsp; &lt;WinlogonNotify: cscdll&gt;&lt;cscdll.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]<BR>&nbsp;&nbsp;&nbsp; &lt;WinlogonNotify: ScCertProp&gt;&lt;wlnotify.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]<BR>&nbsp;&nbsp;&nbsp; &lt;WinlogonNotify: Schedule&gt;&lt;wlnotify.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]<BR>&nbsp;&nbsp;&nbsp; &lt;WinlogonNotify: sclgntfy&gt;&lt;sclgntfy.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]<BR>&nbsp;&nbsp;&nbsp; &lt;WinlogonNotify: SensLogn&gt;&lt;WlNotify.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]<BR>&nbsp;&nbsp;&nbsp; &lt;WinlogonNotify: termsrv&gt;&lt;wlnotify.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]<BR>&nbsp;&nbsp;&nbsp; &lt;WinlogonNotify: wlballoon&gt;&lt;wlnotify.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]<BR>&nbsp;&nbsp;&nbsp; &lt;{438755C2-A8BA-11D1-B96B-00A0C90312E1}&gt;&lt;%SystemRoot%\system32\browseui.dll&gt;&nbsp; [Microsoft Corporation]<BR>&nbsp;&nbsp;&nbsp; &lt;{8C7461EF-2B13-11d2-BE35-3078302C2030}&gt;&lt;%SystemRoot%\system32\browseui.dll&gt;&nbsp; [Microsoft Corporation]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&gt;{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]<BR>&nbsp;&nbsp;&nbsp; &lt;Microsoft Windows Media Player&gt;&lt;C:\WINDOWS\inf\unregmp2.exe /ShowWMP&gt;&nbsp; [(Verified)Microsoft Windows Component Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&gt;{26923b43-4d38-484f-9b9e-de460746276c}]<BR>&nbsp;&nbsp;&nbsp; &lt;Internet Explorer&gt;&lt;%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE&gt;&nbsp; [File is missing]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&gt;{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]<BR>&nbsp;&nbsp;&nbsp; &lt;浏览器自定义组件&gt;&lt;RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&gt;{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]<BR>&nbsp;&nbsp;&nbsp; &lt;Outlook Express&gt;&lt;%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE&gt;&nbsp; [File is missing]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]<BR>&nbsp;&nbsp;&nbsp; &lt;Themes Setup&gt;&lt;%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll&gt;&nbsp; [File is missing]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]<BR>&nbsp;&nbsp;&nbsp; &lt;Microsoft Outlook Express 6&gt;&lt;"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install&gt;&nbsp; [File is missing]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]<BR>&nbsp;&nbsp;&nbsp; &lt;NetMeeting 3.01&gt;&lt;rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT&gt;&nbsp; []<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]<BR>&nbsp;&nbsp;&nbsp; &lt;Microsoft Windows Media Player&gt;&lt;rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]<BR>&nbsp;&nbsp;&nbsp; &lt;通讯簿 6&gt;&lt;"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install&gt;&nbsp; [File is missing]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]<BR>&nbsp;&nbsp;&nbsp; &lt;Windows 桌面更新&gt;&lt;regsvr32.exe /s /n /i:U shell32.dll&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]<BR>&nbsp;&nbsp;&nbsp; &lt;Internet Explorer 6&gt;&lt;%SystemRoot%\system32\ie4uinit.exe&gt;&nbsp; [(Verified)Microsoft Windows Publisher]<BR>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]<BR>&nbsp;&nbsp;&nbsp; &lt;KernelFaultCheck&gt;&lt;; %systemroot%\system32\dumprep 0 -k&gt;&nbsp; [File is missing]</P>
$u d$O:I4^j#`p <P>==================================<BR>启动文件夹<BR>N/A</P>!t9T!w/pP!F
<P>==================================<BR>服务<BR>[DCOM Server Process Launcher / DcomLaunch][Running/Auto Start]<BR>&nbsp; &lt;C:\WINDOWS\system32\svchost -k DcomLaunch--&gt;%SystemRoot%\system32\rpcss.dll&gt;&lt;Microsoft Corporation&gt;<BR>[DHCP Client / Dhcp][Running/Auto Start]<BR>&nbsp; &lt;C:\WINDOWS\system32\svchost.exe -k netsvcs--&gt;%SystemRoot%\System32\dhcpcsvc.dll&gt;&lt;Microsoft Corporation&gt;<BR>[COM+ Event System / EventSystem][Running/Manual Start]<BR>&nbsp; &lt;C:\WINDOWS\system32\svchost.exe -k netsvcs--&gt;C:\WINDOWS\system32\es.dll&gt;&lt;Microsoft Corporation&gt;<BR>[Fast User Switching Compatibility / FastUserSwitchingCompatibility][Stopped/Manual Start]<BR>&nbsp; &lt;C:\WINDOWS\System32\svchost.exe -k netsvcs--&gt;%SystemRoot%\System32\shsvcs.dll&gt;&lt;Microsoft Corporation&gt;<BR>[Human Interface Device Access / HidServ][Stopped/Disabled]<BR>&nbsp; &lt;C:\WINDOWS\System32\svchost.exe -k netsvcs--&gt;%SystemRoot%\System32\hidserv.dll&gt;&lt;N/A&gt;<BR>[HuntmineSvr / HuntmineSvr][Running/Disabled]<BR>&nbsp; &lt;D:\Program Files\Huntmine\HuntmineSvr.exe&gt;&lt;N/A&gt;<BR>[Server / lanmanserver][Running/Auto Start]<BR>&nbsp; &lt;C:\WINDOWS\system32\svchost.exe -k netsvcs--&gt;%SystemRoot%\System32\srvsvc.dll&gt;&lt;Microsoft Corporation&gt;<BR>[Workstation / lanmanworkstation][Running/Auto Start]<BR>&nbsp; &lt;C:\WINDOWS\system32\svchost.exe -k netsvcs--&gt;%SystemRoot%\System32\wkssvc.dll&gt;&lt;Microsoft Corporation&gt;<BR>[Network Connections / Netman][Running/Manual Start]<BR>&nbsp; &lt;C:\WINDOWS\System32\svchost.exe -k netsvcs--&gt;%SystemRoot%\System32\netman.dll&gt;&lt;Microsoft Corporation&gt;<BR>[NOD32 Kernel Service / NOD32krn][Running/Auto Start]<BR>&nbsp; &lt;"C:\Program Files\Eset\nod32krn.exe"&gt;&lt;Eset&gt;<BR>[Remote Access Connection Manager / RasMan][Stopped/Manual Start]<BR>&nbsp; &lt;C:\WINDOWS\system32\svchost.exe -k netsvcs--&gt;%SystemRoot%\System32\rasmans.dll&gt;&lt;Microsoft Corporation&gt;<BR>[Remote Procedure Call (RPC) / RpcSs][Running/Auto Start]<BR>&nbsp; &lt;C:\WINDOWS\system32\svchost -k rpcss--&gt;%SystemRoot%\system32\rpcss.dll&gt;&lt;Microsoft Corporation&gt;<BR>[Shell Hardware Detection / ShellHWDetection][Running/Auto Start]<BR>&nbsp; &lt;C:\WINDOWS\System32\svchost.exe -k netsvcs--&gt;%SystemRoot%\System32\shsvcs.dll&gt;&lt;Microsoft Corporation&gt;<BR>[Print Spooler / Spooler][Running/Auto Start]<BR>&nbsp; &lt;C:\WINDOWS\system32\spoolsv.exe&gt;&lt;Microsoft Corporation&gt;<BR>[Windows Image Acquisition (WIA) / stisvc][Running/Manual Start]<BR>&nbsp; &lt;C:\WINDOWS\system32\svchost.exe -k imgsvc--&gt;%SystemRoot%\system32\wiaservc.dll&gt;&lt;Microsoft Corporation&gt;<BR>[Telephony / TapiSrv][Stopped/Manual Start]<BR>&nbsp; &lt;C:\WINDOWS\System32\svchost.exe -k netsvcs--&gt;%SystemRoot%\System32\tapisrv.dll&gt;&lt;Microsoft Corporation&gt;<BR>[Themes / Themes][Running/Auto Start]<BR>&nbsp; &lt;C:\WINDOWS\System32\svchost.exe -k netsvcs--&gt;%SystemRoot%\System32\shsvcs.dll&gt;&lt;Microsoft Corporation&gt;<BR>[WebClient / WebClient][Running/Auto Start]<BR>&nbsp; &lt;C:\WINDOWS\system32\svchost.exe -k LocalService--&gt;%SystemRoot%\System32\webclnt.dll&gt;&lt;Microsoft Corporation&gt;<BR>[ARP防火墙加载程序 / AntiARPClientLoader][Stopped/Auto Start]<BR>&nbsp; &lt;"C:\Program Files\彩影软件\ARP防火墙单机版\AntiARPClientLoader.exe"&gt;&lt;N/A&gt;</P>
z _3eM*GV2f <P>==================================<BR>驱动程序<BR>[Microsoft Kernel Acoustic Echo Canceller / aec][Stopped/Manual Start]<BR>&nbsp; &lt;system32\drivers\aec.sys&gt;&lt;Microsoft Corporation&gt;<BR>[AMON / AMON][Running/Auto Start]<BR>&nbsp; &lt;\SystemRoot\system32\drivers\amon.sys&gt;&lt;Eset&gt;<BR>[C-Media WDM Audio Interface / cmuda][Running/Manual Start]<BR>&nbsp; &lt;system32\drivers\cmuda.sys&gt;&lt;C-Media Inc&gt;<BR>[FltMgr / FltMgr][Running/Boot Start]<BR>&nbsp; &lt;\SystemRoot\system32\DRIVERS\fltMgr.sys&gt;&lt;Microsoft Corporation&gt;<BR>[HTTP / HTTP][Running/Manual Start]<BR>&nbsp; &lt;System32\Drivers\HTTP.sys&gt;&lt;Microsoft Corporation&gt;<BR>[IP Network Address Translator / IpNat][Running/Manual Start]<BR>&nbsp; &lt;system32\DRIVERS\ipnat.sys&gt;&lt;Microsoft Corporation&gt;<BR>[Microsoft Kernel Wave Audio Mixer / kmixer][Running/Manual Start]<BR>&nbsp; &lt;system32\drivers\kmixer.sys&gt;&lt;Microsoft Corporation&gt;<BR>[MRxSmb / MRxSmb][Running/System Start]<BR>&nbsp; &lt;system32\DRIVERS\mrxsmb.sys&gt;&lt;Microsoft Corporation&gt;<BR>[nod32drv / nod32drv][Running/System Start]<BR>&nbsp; &lt;\SystemRoot\system32\drivers\nod32drv.sys&gt;&lt;N/A&gt;<BR>[nv / nv][Running/Manual Start]<BR>&nbsp; &lt;system32\DRIVERS\nv4_mini.sys&gt;&lt;NVIDIA Corporation&gt;<BR>[NVIDIA nForce MCP Networking Controller Driver / NVENET][Running/Manual Start]<BR>&nbsp; &lt;system32\DRIVERS\NVENET.sys&gt;&lt;NVIDIA Corporation&gt;<BR>[nvidesm / nvidesm][Running/Boot Start]<BR>&nbsp; &lt;\SystemRoot\system32\drivers\nvidesm.sys&gt;&lt;NVIDIA Corporation&gt;<BR>[NVIDIA nForce AGP Bus Filter / nv_agp][Running/Boot Start]<BR>&nbsp; &lt;\SystemRoot\system32\DRIVERS\nv_agp.sys&gt;&lt;NVIDIA Corporation&gt;<BR>[Direct Parallel Link Driver / Ptilink][Running/Manual Start]<BR>&nbsp; &lt;system32\DRIVERS\ptilink.sys&gt;&lt;Parallel Technologies, Inc.&gt;<BR>[Rdbss / Rdbss][Running/System Start]<BR>&nbsp; &lt;system32\DRIVERS\rdbss.sys&gt;&lt;Microsoft Corporation&gt;<BR>[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]<BR>&nbsp; &lt;system32\DRIVERS\RTL8139.SYS&gt;&lt;Realtek Semiconductor Corporation&gt;<BR>[Secdrv / Secdrv][Stopped/Manual Start]<BR>&nbsp; &lt;system32\DRIVERS\secdrv.sys&gt;&lt;N/A&gt;<BR>[SKNFW / SKNFW][Running/System Start]<BR>&nbsp; &lt;\??\C:\WINDOWS\system32\Drivers\SKNFW.sys&gt;&lt;N/A&gt;<BR>[SkyProcs / SkyProcs][Running/Manual Start]<BR>&nbsp; &lt;\??\C:\PROGRA~1\SkyNet\FireWall\SkyProcs.sys&gt;&lt;N/A&gt;<BR>[Microsoft Kernel Audio Splitter / splitter][Stopped/Manual Start]<BR>&nbsp; &lt;system32\drivers\splitter.sys&gt;&lt;Microsoft Corporation&gt;<BR>[sptd / sptd][Running/Boot Start]<BR>&nbsp; &lt;\SystemRoot\System32\Drivers\sptd.sys&gt;&lt;N/A&gt;<BR>[Srv / Srv][Running/Manual Start]<BR>&nbsp; &lt;system32\DRIVERS\srv.sys&gt;&lt;Microsoft Corporation&gt;<BR>[TCP/IP Protocol Driver / Tcpip][Running/System Start]<BR>&nbsp; &lt;system32\DRIVERS\tcpip.sys&gt;&lt;Microsoft Corporation&gt;<BR>[Microcode Update Driver / Update][Running/Manual Start]<BR>&nbsp; &lt;system32\DRIVERS\update.sys&gt;&lt;Microsoft Corporation&gt;<BR>[Microsoft WINMM WDM Audio Compatibility Driver / wdmaud][Running/Manual Start]<BR>&nbsp; &lt;system32\drivers\wdmaud.sys&gt;&lt;Microsoft Corporation&gt;<BR>[xAntiArpSpoof Service / xAntiArp][Running/Manual Start]<BR>&nbsp; &lt;system32\DRIVERS\xAntiArp.sys&gt;&lt;Windows (R) 2000 DDK provider&gt;<BR>[AntiARP NDIS Protocol Driver / AntiArpNdisProt][Running/Auto Start]<BR>&nbsp; &lt;system32\DRIVERS\AntiArpNdisProt.sys&gt;&lt;Windows (R) 2000 DDK provider&gt;<BR>[WinPcap Packet Driver (NPF) / NPF][Running/Manual Start]<BR>&nbsp; &lt;system32\drivers\NPF.sys&gt;&lt;CACE Technologies&gt;</P>%Qkf`3z)g^ Zo
<P>==================================<BR>浏览器加载项<BR>[AcroIEHlprObj Class]<BR>&nbsp; {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} &lt;C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated&gt;<BR>[AcroIEToolbarHelper Class]<BR>&nbsp; {AE7CD045-E861-484f-8273-0445EE161910} &lt;C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated&gt;<BR>[信息检索(&amp;R)]<BR>&nbsp; {92780B25-18CC-41C8-B9BE-3C9C571A8263} &lt;C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL, (Signed) Microsoft Corporation&gt;<BR>[Adobe PDF]<BR>&nbsp; {47833539-D0C5-4125-9FA8-0819E2EAAC93} &lt;C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated&gt;<BR>[AcroIEHlprObj Class]<BR>&nbsp; {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} &lt;C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated&gt;<BR>[Adobe PDF]<BR>&nbsp; {47833539-D0C5-4125-9FA8-0819E2EAAC93} &lt;C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated&gt;<BR>[]<BR>&nbsp; {92780B25-18CC-41C8-B9BE-3C9C571A8263} &lt;, &gt;<BR>[AcroIEToolbarHelper Class]<BR>&nbsp; {AE7CD045-E861-484F-8273-0445EE161910} &lt;C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated&gt;<BR>[SearchAssistantOC]<BR>&nbsp; {B45FF030-4447-11D2-85DE-00C04FA35C89} &lt;%SystemRoot%\system32\shdocvw.dll, N/A&gt;<BR>[Shockwave Flash Object]<BR>&nbsp; {D27CDB6E-AE6D-11CF-96B8-444553540000} &lt;C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx, (Signed) Adobe Systems, Inc.&gt;<BR>[导出到 Microsoft Office Excel(&amp;X)]<BR>&nbsp; &lt;res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000, N/A&gt;<BR>[转换为 Adobe PDF]<BR>&nbsp; &lt;res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A&gt;<BR>[转换为现有 PDF]<BR>&nbsp; &lt;res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A&gt;<BR>[转换选定的链接为 Adobe PDF]<BR>&nbsp; &lt;res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html, N/A&gt;<BR>[转换选定的链接为现有 PDF]<BR>&nbsp; &lt;res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html, N/A&gt;<BR>[转换选项为 Adobe PDF]<BR>&nbsp; &lt;res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A&gt;<BR>[转换选项为现有 PDF]<BR>&nbsp; &lt;res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A&gt;<BR>[转换链接目标为 Adobe PDF]<BR>&nbsp; &lt;res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A&gt;<BR>[转换链接目标为现有 PDF]<BR>&nbsp; &lt;res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A&gt;</P>

astrnova 发表于 2008-7-16 14:36

<P>==================================<BR>正在运行的进程<BR>[PID: 448 / SYSTEM][\SystemRoot\System32\smss.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>[PID: 752 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\winsrv.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2751 (xpsp_sp2_gdr.050831-1520)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\KERNEL32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\sxs.dll]&nbsp; [Microsoft Corporation, 5.1.2600.3019 (xpsp_sp2_gdr.061019-0414)]<BR>[PID: 776 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\AUTHZ.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\COMCTL32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHSVCS.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\sfc_os.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>[PID: 824 / SYSTEM][C:\WINDOWS\system32\services.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\AUTHZ.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\umpnpmgr.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2744 (xpsp_sp2_gdr.050822-1647)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>[PID: 844 / SYSTEM][C:\WINDOWS\system32\lsass.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\LSASRV.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kerberos.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2698 (xpsp_sp2_gdr.050614-1522)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\wdigest.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2874 (xpsp_sp2_gdr.060323-1516)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\AUTHZ.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>[PID: 988 / SYSTEM][C:\WINDOWS\system32\svchost.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\rpcss.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\AUTHZ.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>[PID: 1036 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\rpcss.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\rasadhlp.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>[PID: 1108 / SYSTEM][C:\WINDOWS\System32\svchost.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\shsvcs.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\dhcpcsvc.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\ESENT.dll]&nbsp; [Microsoft Corporation, 5.1.2468.0 (Lab03_N(jliem).010306-1456)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\WININET.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\wkssvc.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\es.dll]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\srvsvc.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2577 (xpsp_sp2_gdr.041130-1729)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\netman.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2743 (xpsp_sp2_gdr.050819-1525)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\sfc_os.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\AUTHZ.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\SXS.DLL]&nbsp; [Microsoft Corporation, 5.1.2600.3019 (xpsp_sp2_gdr.061019-0414)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comsvcs.dll]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\colbact.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\MTXCLU.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.311]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\rasadhlp.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\catsrvut.dll]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\catsrv.dll]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\urlmon.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3072 (xpsp_sp2_gdr.070124-2319)]<BR>[PID: 1164 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>[PID: 1288 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\webclnt.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2821 (xpsp_sp2_gdr.060103-1536)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\WININET.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>[PID: 1440 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\rasadhlp.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\sfc_os.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\netapi32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\AdobePDF.dll]&nbsp; [Adobe Systems Incorporated., 7.0.0.00]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\MSVCR71.dll]&nbsp; [Microsoft Corporation, 7.10.3052.4]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Adobe\Acrobat 7.0\Distillr\AdistRes.CHS]&nbsp; [, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>[PID: 1568 / SYSTEM][D:\Program Files\Huntmine\HuntmineSvr.exe]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\SSNBase.dll]&nbsp; [TODO: &lt;Company name&gt;, 1.0.0.1]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\MFC71.DLL]&nbsp; [Microsoft Corporation, 7.10.3077.0]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\MSVCR71.dll]&nbsp; [Microsoft Corporation, 7.10.3052.4]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\LIBEAY32.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\MSVCP71.dll]&nbsp; [Microsoft Corporation, 7.10.3077.0]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\LocalInfo.dll]&nbsp; [TODO: &lt;Company name&gt;, 1.0.0.1]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\med.dll]&nbsp; [, 1, 0, 0, 1]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\COMCTL32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\VirtualSock.dll]&nbsp; [TODO: &lt;Company name&gt;, 1.0.0.1]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\FileTransfer.dll]&nbsp; [TODO: &lt;Company name&gt;, 1.0.0.1]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\SSNCommand.dll]&nbsp; [TODO: &lt;Company name&gt;, 1.0.0.1]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\SSNAccept.dll]&nbsp; [TODO: &lt;Company name&gt;, 1.0.0.1]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Huntmine\SSNCmdExecute.dll]&nbsp; [TODO: &lt;Company name&gt;, 1.0.0.1]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\WININET.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\MFC71CHS.DLL]&nbsp; [Microsoft Corporation, 7.10.3077.0]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\netapi32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\urlmon.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3072 (xpsp_sp2_gdr.070124-2319)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Common Files\System\ado\msado15.dll]&nbsp; [Microsoft Corporation, 2.81.1128.0 (xpsp_sp2_gdr.061226-0034)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comsvcs.dll]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\colbact.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\MTXCLU.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.311]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\rasadhlp.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>[PID: 1600 / SYSTEM][C:\Program Files\Eset\nod32krn.exe]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\nod32krr.dll]&nbsp; [Eset , 2, 70, 16 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\ps_amon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_amon.dll]&nbsp; [Eset , 2, 70, 16 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\ps_dmon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_dmon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\ps_emon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_emon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\ps_nod32.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_nod32.dll]&nbsp; [Eset , 2, 70, 16 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\ps_upd.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_upd.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\rasadhlp.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>[PID: 404 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\System32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>[PID: 1648 / Astrnova][C:\WINDOWS\system32\wscntfy.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>[PID: 280 / Astrnova][C:\WINDOWS\Explorer.EXE]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\BROWSEUI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHDOCVW.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\WININET.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\LINKINFO.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2751 (xpsp_sp2_gdr.050831-1520)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\urlmon.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3072 (xpsp_sp2_gdr.070124-2319)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]&nbsp; [Adobe Systems Incorporated, 7.0.0.2004121400]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\MSVCR71.dll]&nbsp; [Microsoft Corporation, 7.10.3052.4]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SXS.DLL]&nbsp; [Microsoft Corporation, 5.1.2600.3019 (xpsp_sp2_gdr.061019-0414)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\MLANG.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2530 (xpsp.040919-1030)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]&nbsp; [Adobe Systems, Inc., 7.0.0.0]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.CHS]&nbsp; [Adobe Systems, Inc., 7.0.0.0]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.chs]&nbsp; [Adobe Systems Inc., 7.0.0.2004121400\0]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\shdoclc.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\WinRAR\rarext.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\nodshex.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.dll]&nbsp; [Adobe Systems Inc., 7.0.0.2004121400\0]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\MFC71.DLL]&nbsp; [Microsoft Corporation, 7.10.3077.0]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\MSVCP71.dll]&nbsp; [Microsoft Corporation, 7.10.3077.0]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\MFC71CHS.DLL]&nbsp; [Microsoft Corporation, 7.10.3077.0]<BR>[PID: 520 / Astrnova][C:\WINDOWS\system32\RunDll32.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system\cmicnfg.cpl]&nbsp; [C-Media Corporation, 1, 0, 0, 30]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>[PID: 528 / Astrnova][C:\Program Files\Eset\nod32kui.exe]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\nod32rui.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pu_amon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_amon.dll]&nbsp; [Eset , 2, 70, 16 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pu_dmon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_dmon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pu_emon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_emon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pu_imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pu_nod32.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_nod32.dll]&nbsp; [Eset , 2, 70, 16 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pu_upd.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_upd.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.CHS]&nbsp; [Adobe Systems, Inc., 7.0.0.0]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\LINKINFO.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2751 (xpsp_sp2_gdr.050831-1520)]<BR>[PID: 1420 / Astrnova][C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe]&nbsp; [Adobe Systems Inc., 6.0.1.2004121400]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\COMCTL32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.chs]&nbsp; [Adobe Systems Inc., 6.0.0.0]<BR>[PID: 560 / Astrnova][C:\WINDOWS\system32\ctfmon.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>[PID: 2796 / SYSTEM][C:\WINDOWS\system32\msiexec.exe]&nbsp; [Microsoft Corporation, 3.1.4000.1823]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\netapi32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\sfc_os.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\LINKINFO.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2751 (xpsp_sp2_gdr.050831-1520)]<BR>[PID: 3280 / Astrnova][C:\WINDOWS\system32\conime.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>[PID: 2500 / SYSTEM][C:\WINDOWS\system32\svchost.exe]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\UxTheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\wiaservc.dll]&nbsp; [Microsoft Corporation, 5.1.2600.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [c:\windows\system32\mscms.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2709 (xpsp_sp2_gdr.050628-1518)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>[PID: 1180 / Astrnova][C:\Program Files\DZH5\internet\hypwise.exe]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\netapi32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\shell32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\DZH5\internet\olepro32.dll]&nbsp; [Microsoft Corporation, 5.0.4275]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\shdocvw.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\WININET.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\rasadhlp.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>[PID: 4084 / Astrnova][C:\Program Files\DZH5\internet\hypmain.exe]&nbsp; [GreatWise, 5.4.5.3002]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\user32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\DZH5\internet\borlndmm.dll]&nbsp; [Inprise Corporation, 5.0.6.18]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\comctl32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\shell32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\wininet.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\urlmon.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3072 (xpsp_sp2_gdr.070124-2319)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\DZH5\internet\tcpip.dll]&nbsp; [, 1, 0, 0, 1]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\DZH5\wt\gtja\fy\bin\flyingfish.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\DZH5\internet\investdll.dll]&nbsp; [, 1, 0, 0, 3]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\DZH5\internet\wgdll.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\DZH5\internet\zlib.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\DZH5\internet\olepro32.dll]&nbsp; [Microsoft Corporation, 5.0.4275]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\rasadhlp.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>[PID: 4016 / Astrnova][D:\Program Files\Tencent\QQ\QQ.exe]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQBaseClassInDll.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQHelperDll.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\BasicCtrlDll.dll]&nbsp; [TENCENT, 7, 0, 431, 1723]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\COMCTL32.dll]&nbsp; [Microsoft Corporation, 5.82 (xpsp.060825-0040)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\WININET.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQAPI.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\TIMProxy.dll]&nbsp; [tencent, 0, 3, 2, 4]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SXS.DLL]&nbsp; [Microsoft Corporation, 5.1.2600.3019 (xpsp_sp2_gdr.061019-0414)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\LoginCtrl.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\LoginCtrlRes.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQRes.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQMainFrame.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\urlmon.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3072 (xpsp_sp2_gdr.070124-2319)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\UnReadMsgMgr.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\CQQApplication.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\FlashAvatarDll.dll]&nbsp; [, 1, 4, 0, 1]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\NewSkin.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\MailSummary.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQKnowledgeSearch.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\rasadhlp.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQAllInOne.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\SCCore.dll]&nbsp; [TENCENT, 1, 6, 0, 2]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\CameraDll.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQSpace.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\msdmo.dll]&nbsp; [, ]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQGroupMng.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQSysMsgMng.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\UserDefinedHead.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQPlugin.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQConfigPlugin.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQAvatar.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQCustomFace.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\shdocvw.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QRingMng.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\LongConnection.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\mlang.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2530 (xpsp.040919-1030)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\PhoneAPI.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\DialerAllinOne.dll]&nbsp; [tencent, 1, 4, 0, 0]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQPet.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\BQQApplication.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\GroupConnection.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\CommercesMng.dll]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\PersonalDesktop.dll]&nbsp; [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQAddr.dll]&nbsp; [深圳市腾讯计算机系统有限公司, 5, 0, 101, 310]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\QQSceneMng.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\AddrSearch.dll]&nbsp; [腾讯科技(深圳)有限公司, 2, 2, 1, 15]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\LINKINFO.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2751 (xpsp_sp2_gdr.050831-1520)]<BR>[PID: 3116 / Astrnova][D:\Program Files\Tencent\QQ\TIMPlatform.exe]&nbsp; [TENCENT, 7,0,431,1723]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [D:\Program Files\Tencent\QQ\TIMProxy.dll]&nbsp; [tencent, 0, 3, 2, 4]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SXS.DLL]&nbsp; [Microsoft Corporation, 5.1.2600.3019 (xpsp_sp2_gdr.061019-0414)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\DZH5\WT\GTJA\FY\bin\vcltrade.dll]&nbsp; [N/A, ]<BR>[PID: 1836 / Astrnova][C:\Program Files\Maxthon2\Maxthon.exe]&nbsp; [Maxthon International ltd., 2, 1, 2, 649]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\WININET.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\iphlpapi.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\mxpp.dll]&nbsp; [Maxthon International ltd., 1, 0, 0, 117]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\MxSk.dll]&nbsp; [Maxthon, 1, 0, 0, 358]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\urlmon.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3072 (xpsp_sp2_gdr.070124-2319)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\MxProxy2.dll]&nbsp; [Maxthon International ltd., 1, 0, 0, 4033]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\MxExt.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\MxUI.dll]&nbsp; [Maxthon International, 3, 3, 0, 3]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\mxtool.dll]&nbsp; [, 1, 0, 0, 1]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\maxzlib.dll]&nbsp; [, 1.2.3]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\CLBCATQ.DLL]&nbsp; [Microsoft Corporation, 2001.12.4414.308]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\RICHED20.dll]&nbsp; [Microsoft Corporation, 5.30.23.1228]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\msxml3.dll]&nbsp; [Microsoft Corporation, 8.70.1113.0]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\browseui.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\mlang.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2530 (xpsp.040919-1030)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\Modules\MxPageSearch\MxPageSearch.dll]&nbsp; [Maxthon International ltd., 1,0,0,1330]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\Modules\MxWebBoost\MxWebBoost.dll]&nbsp; [Maxthon, 1,0,2,1259]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\mxdb.dll]&nbsp; [Max, 3, 5, 3, 125]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\shdocvw.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SXS.DLL]&nbsp; [Microsoft Corporation, 5.1.2600.3019 (xpsp_sp2_gdr.061019-0414)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\rasadhlp.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\Modules\MxHistory\MxHistory.dll]&nbsp; [Maxthon International ltd., 1, 0, 0, 7]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\shdoclc.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\mshtml.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\jscript.dll]&nbsp; [Microsoft Corporation, 5.6.0.8831]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Common Files\System\msadc\msadco.dll]&nbsp; [Microsoft Corporation, 2.81.1124.0 (xpsp_sp2_gdr.060322-1613)]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Maxthon2\MxFav.dll]&nbsp; [Maxthon International ltd., 1, 0, 0, 257]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\pngfilt.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx]&nbsp; [Adobe Systems, Inc., 9,0,124,0]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\mshtmled.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\dxtrans.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\dxtmsft.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\quartz.dll]&nbsp; [Microsoft Corporation, 6.05.2600.2749]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\msdmo.dll]&nbsp; [, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\iepeers.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\winabc.ime]&nbsp; [PKUETI, 5.22.216]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\MSRATING.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>[PID: 3464 / Astrnova][E:\软件\扫描日志工具\sreng2\SREngLdr.EXE]&nbsp; [Smallfrogs Studio, 2.6.12.1018]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\user32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>[PID: 3588 / Astrnova][E:\软件\扫描日志工具\sreng2\SRE906fb410.EXE]&nbsp; [Smallfrogs Studio, 2.6.12.1018]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\kernel32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2945 (xpsp_sp2_gdr.060704-2349)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\USER32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\GDI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHLWAPI.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\SHELL32.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3051 (xpsp_sp2_gdr.061219-0316)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\oledlg.dll]&nbsp; [Microsoft Corporation, 1.0 (xpsp_sp2_gdr.061016-0148)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\ole32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\WININET.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3059 (xpsp_sp2_gdr.070104-0050)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\uxtheme.dll]&nbsp; [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\RICHED20.DLL]&nbsp; [Microsoft Corporation, 5.30.23.1228]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\sfc_os.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\NETAPI32.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2976 (xpsp_sp2_gdr.060817-0106)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\urlmon.dll]&nbsp; [Microsoft Corporation, 6.00.2900.3072 (xpsp_sp2_gdr.070124-2319)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\DNSAPI.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\rasadhlp.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2938 (xpsp_sp2_gdr.060626-0020)]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\imon.dll]&nbsp; [Eset , 2, 70, 32 ]<BR>&nbsp;&nbsp;&nbsp; [C:\Program Files\Eset\pr_imon.dll]&nbsp; [N/A, ]<BR>&nbsp;&nbsp;&nbsp; [C:\WINDOWS\system32\xpsp2res.dll]&nbsp; [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]</P>JdW!K)eu#c5J
<P>==================================<BR>文件关联<BR>.TXT&nbsp; OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]<BR>.EXE&nbsp; OK. ["%1" %*]<BR>.COM&nbsp; OK. ["%1" %*]<BR>.PIF&nbsp; OK. ["%1" %*]<BR>.REG&nbsp; OK. [regedit.exe "%1"]<BR>.BAT&nbsp; OK. ["%1" %*]<BR>.SCR&nbsp; OK. ["%1" /S]<BR>.CHM&nbsp; OK. ["C:\WINDOWS\hh.exe" %1]<BR>.HLP&nbsp; OK. [%SystemRoot%\system32\winhlp32.exe %1]<BR>.INI&nbsp; OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]<BR>.INF&nbsp; OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]<BR>.VBS&nbsp; OK. [%SystemRoot%\System32\WScript.exe "%1" %*]<BR>.JS&nbsp;&nbsp; OK. [%SystemRoot%\System32\WScript.exe "%1" %*]<BR>.LNK&nbsp; OK. [{00021401-0000-0000-C000-000000000046}]</P>Q1xE2Z+XYM
<P>==================================<BR>Winsock 提供者<BR>NOD32 protected [MSAFD Tcpip [TCP/IP]]<BR>&nbsp;&nbsp;&nbsp; C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)<BR>NOD32 protected [MSAFD Tcpip [UDP/IP]]<BR>&nbsp;&nbsp;&nbsp; C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)<BR>NOD32 protected [MSAFD Tcpip [RAW/IP]]<BR>&nbsp;&nbsp;&nbsp; C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)<BR>NOD32 protected [RSVP UDP Service Provider]<BR>&nbsp;&nbsp;&nbsp; C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)<BR>NOD32 protected [RSVP TCP Service Provider]<BR>&nbsp;&nbsp;&nbsp; C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)<BR>NOD32<BR>&nbsp;&nbsp;&nbsp; C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)</P>
8{)P0T!fQq@ <P>==================================<BR>Autorun.inf<BR>N/A</P>6C W6Z$i wvt:J l!}
<P>==================================<BR>HOSTS 文件<BR>127.0.0.1&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; localhost</P>)QP`.h4|,{
<P>==================================<BR>进程特权扫描<BR>特殊特权被允许: SeLoadDriverPrivilege [PID = 1440, C:\WINDOWS\SYSTEM32\SPOOLSV.EXE]<BR>特殊特权被允许: SeLoadDriverPrivilege [PID = 1568, D:\PROGRAM FILES\HUNTMINE\HUNTMINESVR.EXE]<BR>特殊特权被允许: SeLoadDriverPrivilege [PID = 528, C:\PROGRAM FILES\ESET\NOD32KUI.EXE]<BR>特殊特权被允许: SeLoadDriverPrivilege [PID = 1420, C:\PROGRAM FILES\ADOBE\ACROBAT 7.0\DISTILLR\ACROTRAY.EXE]<BR>特殊特权被允许: SeLoadDriverPrivilege [PID = 1180, C:\PROGRAM FILES\DZH5\INTERNET\HYPWISE.EXE]<BR>特殊特权被允许: SeLoadDriverPrivilege [PID = 4084, C:\PROGRAM FILES\DZH5\INTERNET\HYPMAIN.EXE]<BR>特殊特权被允许: SeLoadDriverPrivilege [PID = 3464, E:\软件\扫描日志工具\SRENG2\SRENGLDR.EXE]</P>
ifutJ PL <P>==================================<BR>API HOOK<BR>N/A</P>Qfb"nr{6qo
<P>==================================<BR>隐藏进程<BR>N/A</P>U+U2h \s
<P>==================================</P>@ a b tG.r7?
<P><BR>[/CODE]</P>+[&enf0bp.xuy@
<P>&nbsp;</P>A)o3XQ0e Juo+\
<P>&nbsp;</P>
r(i|Pj BVe <P>&nbsp;</P>Q3R Z kHx(]J
<P>&nbsp;</P>
| \ J/}9Q&a <P>这个是我扫的日志</P>

stanton 发表于 2008-7-16 15:08

楼主装了天网和ARP防火墙?装的安全软件太多了未必能起到很好的保护作用。:@28#

ngc0717 发表于 2008-7-16 16:01

<H3 style="MARGIN: auto 0cm"><SPAN lang=EN-US><FONT face=宋体 color=black size=3><SPAN lang=EN-US>[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]<BR>&nbsp;&nbsp;&nbsp; &lt;load&gt;&lt;&gt;&nbsp; [N/A]<BR>[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]<BR>&nbsp;&nbsp;&nbsp; &lt;Cmaudio&gt;&lt;RunDll32 cmicnfg.cpl,CMICtrlWnd&gt;&nbsp; [N/A]<BR>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]<BR>&nbsp;&nbsp;&nbsp; &lt;AppInit_DLLs&gt;&lt;&gt;&nbsp; [N/A]<BR>楼主要注意以上键值地方,中木马后杀掉还有未修复的地方。你最好打开启动项查看下有无异常,<BR>打开运行——msconfig——查看启动里面有无异常,用楼主的那个软件SRE也可以查看下。<BR>楼主说的那个病毒下载链接我看过了,那个是漏洞利用型的木马链接,楼主电脑里面的补丁没有打<BR>全吧。比如 Adobe Flash Player、IE漏洞 。楼主那个office2003的数据报表漏洞是否被修不了?<BR>被病毒利用了漏洞。建议用360安全卫士检查系统漏洞情况。。。修补系统漏洞比安装杀软更重要啊<BR>EXP/Flash.Gen is a generic detection routine designed to detect the exploitati。。on of a remote code execution vulnerability in Adobe Flash Player. It was developed in order to detect unknown variants of malicious Flash content and will be continuously enhanced if needed。<BR>这段英文就描述了楼主连接木马的利用漏洞传播的。。。</SPAN></FONT></SPAN><SPAN lang=EN-US><FONT face=宋体 color=black size=3><SPAN lang=EN-US><BR>其实楼主的电脑里面现在装的东西并不多,nod32+天网防火墙+彩影ARP防火墙,这两个防火墙有那<BR>么一点冲突,我觉的金山的ARP防火墙很不错的,比360ARP防火墙强多了,相当于企业级了。。<BR>我推荐用。。因为我测试过了。。对于天网防火墙,我是觉得装了作用不是很大。。可以换其他的墙。<BR>楼主可以用ESS套装,或者装小红伞也不错。。。。。。<BR></H3></SPAN></FONT></SPAN>
$h)}E;?WC] p$X$vk.w
[[i] 本帖最后由 ngc0717 于 2008-7-16 16:05 编辑 [/i]]

ngc0717 发表于 2008-7-16 16:06

<P>不好意思。。上面的不知道怎么搞的。。弄成那样了。。。呵呵。。再发一遍。。。</P>!js\ h.c/|L_
<P>&nbsp;</P> nW Q)rl6e \
<P>&nbsp;</P>
#`:g,NY-J#p <P>[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]<BR>&nbsp;&nbsp;&nbsp; &lt;load&gt;&lt;&gt;&nbsp; [N/A]<BR>[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]<BR>&nbsp;&nbsp;&nbsp; &lt;Cmaudio&gt;&lt;RunDll32 cmicnfg.cpl,CMICtrlWnd&gt;&nbsp; [N/A]<BR>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]<BR>&nbsp;&nbsp;&nbsp; &lt;AppInit_DLLs&gt;&lt;&gt;&nbsp; [N/A]</P>
rw RL.xz:@W <P><BR>楼主要注意以上键值地方,中木马后杀掉还有未修复的地方。你最好打开启动项查看下有无异常,</P>
+V(EJeb Wf8` <P><BR>打开运行——msconfig——查看启动里面有无异常,用楼主的那个软件SRE也可以查看下。</P>
.G.`$IQ'J&O E*mC <P><BR>楼主说的那个病毒下载链接我看过了,那个是漏洞利用型的木马链接,楼主电脑里面的补丁没有打</P>(n C1X3X:s C{
<P><BR>全吧。比如 Adobe Flash Player、IE漏洞 。楼主那个office2003的数据报表漏洞是否被修不了?</P>
d'E KKgE6_ <P><BR>被病毒利用了漏洞。建议用360安全卫士检查系统漏洞情况。。。修补系统漏洞比安装杀软更重要啊</P>
9L t#b4`:]| <P><BR>EXP/Flash.Gen is a generic detection routine designed to detect the exploitati。。on of a remote code execution </P>
\$y8|q ai Ff p <P>&nbsp;</P>[cPq+i*pM4W
<P>vulnerability in Adobe Flash Player. It was developed in order to detect unknown variants of malicious Flash content </P>
:x wr#Z?bV <P>&nbsp;</P>
|*NwtWHH"n <P>and will be continuously enhanced if needed。</P>
iLG:e-U&KM <P><BR>这段英文就描述了楼主连接木马的利用漏洞传播的。。。</P>QbD^B d!KL5WJ
<P><BR>其实楼主的电脑里面现在装的东西并不多,nod32+天网防火墙+彩影ARP防火墙,这两个防火墙有那</P>(SW \)}+a
<P><BR>么一点冲突,我觉的金山的ARP防火墙很不错的,比360ARP防火墙强多了,相当于企业级了。。</P>7w:TA}C{aGQ
<P><BR>我推荐用。。因为我测试过了。。对于天网防火墙,我是觉得装了作用不是很大。。可以换其他的墙。</P>n&N(ZRx$oQ
<P><BR>楼主可以用ESS套装,或者装小红伞也不错。。。。。。<BR></P>

数码先行 发表于 2008-7-16 19:13

呵呵 ,我以为那个是楼上特意那么发的呢还在想,是怎么发出来的呢,

ngc0717 发表于 2008-7-17 13:36

<P>当你打开论坛主页时。。会有如下图条出现。。</P>
9N \ X]@ ~ W@ <P>&nbsp;</P>
6eU0Q9qv+Hx <P>[attach]48547[/attach]</P>
8H OQag <P>&nbsp;</P>1B?bVwUu
<P>上面之所以会出现那样情况就是因为我是现在自己WORD里面写分析时,所用的字体恰好和这个图标里面的字体相匹</P>
+KJj Jkf,~hG <P>&nbsp;</P>
i5Z_m3v+O_ <P>配,而出现蓝色版面。。。由于排版就排成那样。。所以改不会来。。。呵呵。。</P>
-?M1j]_ <P>&nbsp;</P>%XzOIE+b1q J
<P>&nbsp;</P>

数码先行 发表于 2008-7-17 14:52

哦,是这回事呀,呵呵 ,学习了,

thomasshi 发表于 2008-7-18 10:30

防ARP的软件其实都不起作用的,无非告你谁在冒充网关,对网速影响依然存在.%a1d6PD[
j.{+M8x K0Zx
像在家上网就不会有这种事,网管能定点关发包的端口

页: [1]

Powered by Discuz! Archiver 6.1.0  © 2001-2007 Comsenz Inc.