打印

[求助] 我的电脑中木马了

pxweil

玄木会员

Rank: 1

帖子: 102
ZOO币: 69
鲜花: 0
臭鸡蛋: 0
阅读权限: 10

1^# 大中小发表于 2010-2-6 16:50 只看该作者

我的电脑中木马了

但是找不出来  请高手帮忙一下谢谢

2010-02-06,16:40:02
System Repair Engineer 2.8.2.1321
Smallfrogs (http://www.KZTechs.com)
Windows XP Professional Service Pack 3 (Build 2600) - 管理权限用户 - 完整功能
以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
进程特权扫描
计划任务
Windows 安全更新检查
API HOOK
隐藏进程

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
<urlspace><F:\Xunlei\urlcore.exe -h>  [精灵软件]
<PPS Accelerator><E:\Program Files\PPStream\ppsap.exe>  [(Verified)SHANGHAI ZHONGYUAN NETWORKS LIMITED]
<AlcoholAutomount><"C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount>  [(Verified)Alcohol Soft]
<QvodPlayer><C:\Program Files\QvodPlayer\QvodTerminal.exe>  [(Verified)Shenzhen QVOD Technology Co.,Ltd]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<RTHDCPL><RTHDCPL.EXE>  [Realtek Semiconductor Corp.]
<amd_dc_opt><C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe>  [AMD]
<99AutoLogin><explorer /e, "::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{4B5E7CAE-0DD8-44AC-9FC8-6901F28720E7}">  [File is missing]
<NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup>  [NVIDIA Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
<CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
<WebCheck><%SystemRoot%\system32\webcheck.dll>  [(Verified)Microsoft Windows Component Publisher]
<SysTray><C:\WINDOWS\system32\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
<WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
<WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
<WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
<WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
<WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
<WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
<WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
<WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
<WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
<WinlogonNotify: WgaLogon><WgaLogon.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
<WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
<Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
<Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
<浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Remove.PerUser.NT>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player 11><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
<Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
<Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Windows Component Publisher]
==================================
启动文件夹
[酷我音乐盒 2009]
  <C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\酷我音乐盒 2009.lnk --> C:\PROGRA~1\KWMUSIC\KwMusic.exe [酷我科技]><N>
==================================
服务
[Contrl Center of Storm Media / ccosm][Stopped/Disabled]
  <C:\Program Files\StormII\stormliv.exe /asservice><北京暴风网际科技有限公司>
[Help and Support / helpsvc][Stopped/Disabled]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll><N/A>
[HID Input Service / HidServ][Stopped/Auto Start]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[NetMeeting Remote Desktop Sharing / mnmsrvc][Stopped/Manual Start]
  <><(File is missing)>
[MPSVC Service / MPSVCService][Running/Auto Start]
  <C:\Program Files\Micropoint\MPSVC.exe><Micropoint Corporation>
[NVIDIA Display Driver Service / NVSvc][Stopped/Disabled]
  <C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[StarWind AE Service / StarWindServiceAE][Running/Auto Start]
  <C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe><Rocket Division Software>
==================================
驱动程序
[AMD Low Level Device Driver / AmdLLD][Running/Manual Start]
  <system32\DRIVERS\AmdLLD.sys><AMD, Inc.>
[AMD HwPState Processor Driver / AmdPPM][Running/System Start]
  <system32\DRIVERS\AmdPPM.sys><Advanced Micro Devices>
[cpuz131 / cpuz131][Stopped/Manual Start]
  <\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\cpuz131\cpuz_x32.sys><N/A>
[Creative AudioPCI (ES1371,ES1373) (WDM) / es1371][Stopped/Manual Start]
  <system32\drivers\es1371mp.sys><Creative Technology Ltd.>
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[hptpro / hptpro][Stopped/Boot Start]
  <\SystemRoot\system32\DRIVERS\hptpro.sys><HighPoint Technologies, Inc.>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
  <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
[Mouse HID Driver / mouhid][Stopped/Manual Start]
  <system32\DRIVERS\mouhid.sys><N/A>
[mp110001 / mp110001][Running/Auto Start]
  <system32\drivers\mp110001.sys><Micropoint Corporation>
[mp110002 / mp110002][Running/Auto Start]
  <system32\drivers\mp110002.sys><Micropoint Corporation>
[mp110003 / mp110003][Running/Boot Start]
  <\SystemRoot\system32\drivers\mp110003.sys><Micropoint Corporation>
[mp110004 / mp110004][Running/Auto Start]
  <system32\drivers\mp110004.sys><Micropoint Corporation>
[mp110005 / mp110005][Running/Manual Start]
  <system32\drivers\mp110005.sys><Micropoint Corporation>
[mp110006 / mp110006][Running/System Start]
  <system32\drivers\mp110006.sys><Micropoint Corporation>
[mp110007 / mp110007][Running/System Start]
  <system32\drivers\mp110007.sys><Micropoint Corporation>
[mp110008 / mp110008][Running/Auto Start]
  <system32\drivers\mp110008.sys><Micropoint Corporation>
[mp110009 / mp110009][Running/System Start]
  <system32\drivers\mp110009.sys><Micropoint Corporation>
[mp110010 / mp110010][Running/Boot Start]
  <\SystemRoot\system32\drivers\mp110010.sys><Micropoint Corporation>
[mp110011 / mp110011][Running/System Start]
  <system32\drivers\mp110011.sys><Micropoint Corporation>
[mp110012 / mp110012][Running/Boot Start]
  <\SystemRoot\system32\drivers\mp110012.sys><Micropoint Corporation>
[mp110013 / mp110013][Running/Boot Start]
  <\SystemRoot\system32\drivers\mp110013.sys><Micropoint Corporation>
[nv / nv][Running/Manual Start]
  <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[nvgts / nvgts][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\nvgts.sys><NVIDIA Corporation>
[nvsmu / nvsmu][Running/Manual Start]
  <system32\DRIVERS\nvsmu.sys><NVIDIA Corporation>
[AMD PCNET Compatable Adapter Driver / PCnet][Stopped/Manual Start]
  <system32\DRIVERS\pcntpci5.sys><AMD Inc.>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver / RTLE8023xp][Running/Manual Start]
  <system32\DRIVERS\Rtenicxp.sys><Realtek Semiconductor Corporation>
[SafeBoxKrnl / SafeBoxKrnl][Stopped/System Start]
  <\??\C:\WINDOWS\system32\Drivers\safeboxkrnl.sys><N/A>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[sptd / sptd][Running/Boot Start]
  <\SystemRoot\System32\Drivers\sptd.sys><N/A>
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
  <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
==================================
浏览器加载项
[QvodExtend]
  {53AC8551-0DE0-4606-8A1E-A51AF20ADD60} <C:\Program Files\QvodPlayer\QvodExtend.dll, (Signed) Shenzhen QVOD Technology Co.,Ltd>
[99盘]
  {8ECB20F0-3FFE-48fb-B566-2F3D3550C5E1} <e:\Program Files\cloudinfo\99pan\config\99盘.lnk, N/A>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, (Signed) >
[CertEnroll Class]
  {7978461C-CC22-48F2-BC69-02220D3E101D} <C:\WINDOWS\Downloaded Program Files\itrusenroll.dll, (Signed) iTruschina Co., Ltd.>
[AxSubmitControl Class]
  {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\DOWNLO~1\SUBMIT~1.DLL, >
[CCTVUpdateInstall]
  {AC414988-E5BB-4C2C-873B-EA53D2F3D23A} <C:\WINDOWS\Downloaded Program Files\CCTVUpdateInstall.dll, (Signed) CCTV International Networks Co.,Ltd>
[ThunderAtOnce Class]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233} <e:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) 深圳市迅雷网络技术有限公司>
[WWPicUploadCtrl Class]
  {1D63232D-4F15-4A42-890D-EE617AA1537D} <E:\Program Files\AliWangWang\modules\1685\WWPictureUpload.dll, Alibaba software (Shanghai) Corporation>
[InstallHelper Class]
  {1DABF8D5-8430-4985-9B7F-A30E53D709B3} <e:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQMusic\bin\QQMusic\MMInstaller.dll, (Signed) Tencent>
[iTrusPTA Class]
  {1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\pta.dll, (Signed) >
[HallToolkit Class]
  {1E36C446-29F0-4773-A3FB-59C5501446EB} <e:\Program Files\Thunder Network\Thunder\Program\HallTool.dll, (Signed) 深圳市迅雷网络技术有限公司>
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[]
  {3AA9CF07-DF20-48FF-98BE-DED276E40146} <, >
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <, >
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[Thunder Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <E:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent5.9.12.1196.dll, (Signed) 深圳市迅雷网络技术有限公司>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, (Signed) >
[QvodExtend]
  {53AC8551-0DE0-4606-8A1E-A51AF20ADD60} <C:\Program Files\QvodPlayer\QvodExtend.dll, (Signed) Shenzhen QVOD Technology Co.,Ltd>
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
[WangWangX Class]
  {5D09DD40-CDC4-4C56-B615-0D1E3B357C2B} <E:\Program Files\AliWangWang\AliIMX.dll, (Signed) Alibaba software (Shanghai) Corporation.>
[]
  {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <, >
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[HaoKanBar BrowserHelper]
  {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <, >
[AxInputControl Class]
  {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\DOWNLO~1\INPUTC~1.DLL, >
[MediaComm Class]
  {7670648D-461B-42AF-BDFE-46D26AF5EFF2} <E:\Program Files\Thunder Network\Thunder\userdata\Components\InMedia\MediaAddin.dll, (Signed) 深圳市迅雷网络技术有限公司>
[CertEnroll Class]
  {7978461C-CC22-48F2-BC69-02220D3E101D} <C:\WINDOWS\Downloaded Program Files\itrusenroll.dll, (Signed) iTruschina Co., Ltd.>
[]
  {87515F61-A66C-4319-A0E0-D416CB8059E3} <, >
[Microsoft Web 浏览器]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, (Signed) Microsoft Corporation>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <e:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) 深圳市迅雷网络技术有限公司>
[AxSubmitControl Class]
  {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\DOWNLO~1\SUBMIT~1.DLL, >
[]
  {8ECB20F0-3FFE-48FB-B566-2F3D3550C5E1} <, >
[OFrameObject Class]
  {9701758C-4373-482E-B13C-776C048EC890} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.5912.248.(118).dll, (Signed) ShenZhen PiaoYi Network Technology Co.,Ltd.>
[VersionDetector Class]
  {9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9B} <C:\Program Files\Common Files\Thunder Network\KanKan\vd.1.1.0.29.(696).dll, (Signed) 深圳市迅雷网络技术有限公司>
[APlayer Control]
  {A9322148-C691-4B9D-91FC-B9C461DBE9DD} <C:\Program Files\Common Files\Thunder Network\APlayer\APlayer_001.dll, (Signed) ShenZhen Thunder Networking Technologies, LTD>
[DapCtrl Class]
  {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.5912.248.(118).dll, (Signed) ShenZhen PiaoYi Network Technology Co.,Ltd.>
[]
  {B1FBC1AD-5644-4084-882A-0F8BA85E7506} <, >
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10d.ocx, (Signed) Adobe Systems, Inc.>
[]
  {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[QvodCtrl Class]
  {F3D0D36F-23F8-4682-A195-74C92B03D4AF} <C:\Program Files\QvodPlayer\QvodInsert.dll, (Signed) Shenzhen QVOD Technology Co.,Ltd>
[XPPlayer Class]
  {F3E70CEA-956E-49CC-B444-73AFE593AD7F} <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.1.59050.255.(696).dll, (Signed) 深圳市迅雷网络技术有限公司>
[99盘打开]
  <e:\Program Files\cloudinfo\99pan\config\99open.htm, N/A>
[使用迅雷下载]
  <E:\Program Files\Thunder Network\Thunder\Program\geturl.htm, N/A>
[使用迅雷下载全部链接]
  <E:\Program Files\Thunder Network\Thunder\Program\getallurl.htm, N/A>
[添加到QQ表情]
  <E:\Program Files\Tencent\QQ\Bin\AddEmotion.htm, N/A>
==================================
正在运行的进程
[PID: 664 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 712 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 736 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\sfc_os.dll]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 780 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[PID: 792 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 972 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[PID: 1032 / SYSTEM][C:\Program Files\Micropoint\MPSVC.exe]  [Micropoint Corporation, 1,2,10581,46]
[C:\Program Files\Micropoint\dbghelp.dll]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Micropoint\MSVCP60.dll]  [Microsoft Corporation, 6.00.8168.0]
[C:\Program Files\Micropoint\mp110049.dll]  [Micropoint Corporation, 1,2,10581,1]
[C:\Program Files\Micropoint\mp110081.dll]  [Micropoint Corporation, 1,2,10581,4]
[C:\Program Files\Micropoint\mp110078.dll]  [Micropoint Corporation, 1.2.10581.2]
[C:\Program Files\Micropoint\mp110036.dll]  [Micropoint Corporation, 1.2.10076]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110048.dll]  [Micropoint Corporation, 1, 2, 10581, 4]
[C:\Program Files\Micropoint\mp110045.dll]  [Micropoint Corporation, 1, 2, 10573, 0]
[C:\Program Files\Micropoint\mp110039.dll]  [Micropoint Corporation, 1.2.10573.1]
[C:\Program Files\Micropoint\mp110046.dll]  [Micropoint Corporation, 1, 2, 10581, 6]
[C:\Program Files\Micropoint\mp110035.dll]  [Micropoint Corporation, 1.2.10051]
[C:\Program Files\Micropoint\mp110043.dll]  [Micropoint Corporation, 1,2,10581,4]
[C:\Program Files\Micropoint\mp110123.dll]  [Micropoint Corporation, 1.2.10002]
[C:\Program Files\Micropoint\mp110124.dll]  [Micropoint Corporation, 1,2,10581,5]
[C:\Program Files\Micropoint\mp110068.dll]  [Micropoint Corporation, 1, 2, 10581, 8]
[C:\Program Files\Micropoint\mp110082.dll]  [Micropoint Corporation, 1,2,10581,4]
[PID: 1048 / SYSTEM][C:\Program Files\Micropoint\MPSVC2.exe]  [Micropoint Corporation, 1.2.10581.105]
[C:\Program Files\Micropoint\dbghelp.dll]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Micropoint\mp110039.dll]  [Micropoint Corporation, 1.2.10573.1]
[C:\WINDOWS\system32\msi.dll]  [Microsoft Corporation, 4.5.6001.22159]
[C:\Program Files\Micropoint\mp110028.dll]  [Micropoint Corporation, 1, 2, 10581, 1]
[C:\Program Files\Micropoint\mp110036.dll]  [Micropoint Corporation, 1.2.10076]
[C:\Program Files\Micropoint\mp110078.dll]  [Micropoint Corporation, 1.2.10581.2]
[C:\Program Files\Micropoint\mp110030.dll]  [Micropoint Corporation, 1.2.10024]
[C:\Program Files\Micropoint\mp110033.dll]  [Micropoint Corporation, 1,2,10581,11]
[C:\Program Files\Micropoint\mp110049.dll]  [Micropoint Corporation, 1,2,10581,1]
[C:\Program Files\Micropoint\mp110034.dll]  [Micropoint Corporation, 1.2.10120]
[C:\Program Files\Micropoint\mp110037.dll]  [Micropoint Corporation, 1.2.10572.18]
[C:\Program Files\Micropoint\mp110042.dll]  [Micropoint Corporation, 1, 2, 10035, 0]
[C:\Program Files\Micropoint\mp110071.dll]  [Micropoint Corporation, 1.2.10018]
[C:\Program Files\Micropoint\mp110118.dll]  [Micropoint Corporation, 1, 2, 10580, 5]
[C:\Program Files\Micropoint\MSVCP60.dll]  [Microsoft Corporation, 6.00.8168.0]
[C:\Program Files\Micropoint\mp110073.dll]  [Micropoint Corporation, 1,2,10571,2]
[C:\Program Files\Micropoint\mp110075.dll]  [Micropoint Corporation, 1.2.10012]
[C:\Program Files\Micropoint\mp110081.dll]  [Micropoint Corporation, 1,2,10581,4]
[C:\Program Files\Micropoint\mp110124.dll]  [Micropoint Corporation, 1,2,10581,5]
[C:\Program Files\Micropoint\mp110125.dll]  [Micropoint Corporation, 1.2.10572.3]
[C:\Program Files\Micropoint\mp110029.dll]  [Micropoint Corporation, 1.2.10009]
[C:\Program Files\Micropoint\mp110077.dll]  [Micropoint Corporation, 1,2,10571,5]
[e:\Program Files\cloudinfo\99pan\bin\dll\99Explorer.dll]  [云信科技（北京）有限公司, 1.0.0.1]
[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\LITEUNZIP.dll]  [, 0, 0, 0, 2]
[C:\WINDOWS\system32\LiteZip.dll]  [, 0, 0, 0, 3]
[e:\Program Files\cloudinfo\99pan\bin\dll\StringConvert.dll]  [TODO: <Company name>, 1.0.0.1]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[PID: 1216 / SYSTEM][C:\Program Files\Micropoint\MPSVC1.exe]  [Micropoint Corporation, 1.2.10097]
[C:\Program Files\Micropoint\mp110049.dll]  [Micropoint Corporation, 1,2,10581,1]
[C:\Program Files\Micropoint\mp110081.dll]  [Micropoint Corporation, 1,2,10581,4]
[C:\Program Files\Micropoint\mp110078.dll]  [Micropoint Corporation, 1.2.10581.2]
[C:\Program Files\Micropoint\mp110072.dll]  [Micropoint Corporation, 1.2.10027]
[PID: 1248 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[PID: 2000 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\System32\sfc_os.dll]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1496 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[PID: 1608 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[PID: 968 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\sfc_os.dll]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[C:\WINDOWS\system32\msi.dll]  [Microsoft Corporation, 4.5.6001.22159]
[PID: 1600 / Administrator][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\msi.dll]  [Microsoft Corporation, 4.5.6001.22159]
[e:\Program Files\cloudinfo\99pan\bin\dll\99Explorer.dll]  [云信科技（北京）有限公司, 1.0.0.1]
[C:\WINDOWS\system32\LITEUNZIP.dll]  [, 0, 0, 0, 2]
[C:\WINDOWS\system32\LiteZip.dll]  [, 0, 0, 0, 3]
[e:\Program Files\cloudinfo\99pan\bin\dll\StringConvert.dll]  [TODO: <Company name>, 1.0.0.1]
[e:\Program Files\cloudinfo\99pan\bin\dll\99FileSystemPS.dll]  [N/A, ]
[e:\Program Files\cloudinfo\99pan\bin\dll\99HostPS.dll]  [N/A, ]
[C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[e:\Program Files\cloudinfo\99pan\bin\dll\99MediaSvrPS.dll]  [N/A, ]
[C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
[C:\Program Files\QvodPlayer\QvodBand.dll]  [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 0]
[E:\Program Files\AliWangWang\AliIMExt.dll]  [Alibaba software (Shanghai) Corporation., 1.0.0.1]
[PID: 1656 / Administrator][C:\Program Files\Micropoint\MPMon.exe]  [Micropoint Corporation, 1,2,10581,17]
[C:\Program Files\Micropoint\mp110036.dll]  [Micropoint Corporation, 1.2.10076]
[C:\Program Files\Micropoint\mp110078.dll]  [Micropoint Corporation, 1.2.10581.2]
[C:\Program Files\Micropoint\mp110049.dll]  [Micropoint Corporation, 1,2,10581,1]
[C:\Program Files\Micropoint\mp110079.dll]  [Micropoint Corporation, 1.2.10004]
[C:\Program Files\Micropoint\mp110081.dll]  [Micropoint Corporation, 1,2,10581,4]
[C:\Program Files\Micropoint\dbghelp.dll]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Micropoint\mp110051.dll]  [Micropoint Corporation, 1,2,10581,3]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1396 / Administrator][C:\WINDOWS\RTHDCPL.EXE]  [Realtek Semiconductor Corp., 2.2.7.5]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[PID: 1852 / SYSTEM][C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe]  [Rocket Division Software, 3.2.3 Build 20070527]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 292 / Administrator][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[PID: 1768 / Administrator][F:\Xunlei\urlcore.exe]  [精灵软件, 2010, 1, 26, 37]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\Macromed\Flash\Flash10d.ocx]  [Adobe Systems, Inc., 10,0,42,34]
[PID: 268 / Administrator][E:\Program Files\PPStream\ppsap.exe]  [PPStream Inc, 1, 0, 11, 226]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[e:\Program Files\PPStream\1.1.0.2740\vodnet.dll]  [PPStream Inc., 1, 0, 11, 289]
[e:\Program Files\PPStream\1.1.0.2740\vodres.dll]  [PPStream Inc., 1, 0, 11, 289]
[e:\Program Files\PPStream\1.1.0.2740\fds.dll]  [PPStream Inc., 1, 0, 0, 101]
[PID: 400 / Administrator][C:\Program Files\QvodPlayer\QvodTerminal.exe]  [Shenzhen QVOD Technology Co.,Ltd, 3, 5, 0, 63]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[PID: 868 / Administrator][e:\Program Files\cloudinfo\99pan\bin\exe\99FileSystem.exe]  [云信科技（北京）有限公司, 1.0.0.1]
[e:\Program Files\cloudinfo\99pan\bin\exe\EmailTool.dll]  [CloudInfo, 1.0.0.1]
[e:\Program Files\cloudinfo\99pan\bin\exe\LIBEAY32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8b]
[e:\Program Files\cloudinfo\99pan\bin\exe\SSLEAY32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8b]
[e:\Program Files\cloudinfo\99pan\bin\exe\StringConvert.dll]  [TODO: <Company name>, 1.0.0.1]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[e:\Program Files\cloudinfo\99pan\bin\dll\99FileSystemPS.dll]  [N/A, ]
[PID: 2212 / Administrator][C:\Program Files\KWMUSIC\kwmv.exe]  [N/A, ]
[C:\Program Files\KWMUSIC\KwLogSvr.dll]  [N/A, ]
[C:\Program Files\KWMUSIC\http.dll]  [N/A, ]
[C:\Program Files\KWMUSIC\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\KWMUSIC\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\KWMUSIC\zlib.dll]  [N/A, ]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\Program Files\KWMUSIC\lidx.dll]  [N/A, ]
[PID: 2812 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[PID: 2516 / Administrator][E:\7fgame\7FGame.exe]  [上海起凡数字技术有限公司, 1, 8, 4, 6]
[E:\7fgame\Sqlite3.dll]  [N/A, ]
[E:\7fgame\7fSkin.dll]  [ , 1, 8, 1, 4]
[E:\7fgame\7FGameApp.dll]  [, 1, 0, 0, 1]
[E:\7fgame\IMGame.dll]  [, 1, 0, 0, 1]
[E:\7fgame\7fSocket.dll]  [, 1, 0, 0, 1]
[E:\7fgame\7fProxy.dll]  [, 1, 0, 0, 1]
[E:\7fgame\7fCtrls.dll]  [, 1, 8, 4, 3]
[E:\7fgame\7fImage.dll]  [N/A, ]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[E:\7fgame\RICHED20.dll]  [Microsoft Corporation, 5.30.23.1228]
[E:\7fgame\game_info.dll]  [N/A, ]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\freeime.ime]  [极点五笔工作室, 6.5.0.0]
[C:\WINDOWS\system32\Macromed\Flash\Flash10d.ocx]  [Adobe Systems, Inc., 10,0,42,34]
[PID: 2748 / Administrator][e:\Program Files\cloudinfo\99pan\bin\exe\99Host.exe]  [云信科技（北京）有限公司, 1.0.0.1]
[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[e:\Program Files\cloudinfo\99pan\bin\dll\99HostPS.dll]  [N/A, ]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[e:\Program Files\cloudinfo\99pan\bin\dll\99FileSystemPS.dll]  [N/A, ]
[C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 2820 / Administrator][e:\Program Files\cloudinfo\99pan\bin\exe\99MediaSvr.exe]  [云信科技（北京）有限公司, 1.0.0.1]
[e:\Program Files\cloudinfo\99pan\bin\exe\StringConvert.dll]  [TODO: <Company name>, 1.0.0.1]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[e:\Program Files\cloudinfo\99pan\bin\dll\99MediaSvrPS.dll]  [N/A, ]
[PID: 2524 / Administrator][E:\7fgame\Service\Media\7fMedia.exe]  [, 1, 0, 0, 1]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[PID: 1368 / Administrator][E:\Program Files\duowan\yy\DuoSpeak.exe]  [广州多玩信息技术有限公司, 1.0.0.1]
[E:\Program Files\duowan\yy\PUBFUNC.dll]  [N/A, ]
[E:\Program Files\duowan\yy\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[E:\Program Files\duowan\yy\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[E:\Program Files\duowan\yy\LCtrl.dll]  [广州多玩信息技术有限公司, 1.0.0.1]
[E:\Program Files\duowan\yy\xgdi.dll]  [N/A, ]
[E:\Program Files\duowan\yy\MFC71U.DLL]  [Microsoft Corporation, 7.10.3077.0]
[E:\Program Files\duowan\yy\XEditor.dll]  [广州多玩信息技术有限公司, 1.0.0.1]
[E:\Program Files\duowan\yy\XUUID.dll]  [广州多玩信息技术有限公司, 1.0.0.1]
[E:\Program Files\duowan\yy\AudioCodec.dll]  [N/A, ]
[E:\Program Files\duowan\yy\audio.dll]  [N/A, ]
[E:\Program Files\duowan\yy\HttpFileUploader.dll]  [TODO: <公司名>, 1.0.0.1]
[E:\Program Files\duowan\yy\LayoutWrapper.dll]  [TODO: <公司名>, 1.0.0.1]
[E:\Program Files\duowan\yy\LayoutUI.dll]  [N/A, ]
[E:\Program Files\duowan\yy\AudioEngine.dll]  [N/A, ]
[E:\Program Files\duowan\yy\statistics.dll]  [N/A, ]
[E:\Program Files\duowan\yy\LVDownloader.dll]  [广州多玩信息技术有限公司, 1.0.0.1]
[E:\Program Files\duowan\yy\XML.dll]  [N/A, ]
[E:\Program Files\duowan\yy\Smile.dll]  [广州多玩信息技术有限公司, 1.0.0.1]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[E:\Program Files\duowan\yy\crashreport.dll]  [N/A, ]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[E:\Program Files\duowan\yy\protocol.dll]  [N/A, ]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[E:\Program Files\duowan\yy\keyhook.dll]  [N/A, ]
[PID: 2904 / Administrator][E:\Program Files\Tencent\QQ\Bin\QQ.exe]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\Common.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.4053]
[E:\Program Files\Tencent\QQ\Bin\KernelUtil.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\GF.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\xGraphic32.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\AppUtil.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[E:\Program Files\Tencent\QQ\Bin\MainFrame.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\Macromed\Flash\Flash10d.ocx]  [Adobe Systems, Inc., 10,0,42,34]
[E:\Program Files\Tencent\QQ\Bin\IM.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\TaskTray.dll]  [Tencent, 1, 41, 1450, 0]
[e:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQShow\Bin\FlashAvatarDll.dll]  [Tencent, 1.26.1.26]
[E:\Program Files\Tencent\QQ\Bin\KernelMisc.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\AppMisc.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\AppCtrl.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\ChatFrame.dll]  [Tencent, 1, 41, 1450, 0]
[C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll]  [Tencent, 1.2.0.23]
[C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOCommon.DLL]  [Tencent, 1.2.0.3]
[E:\Program Files\Tencent\QQ\Bin\BasicCtrlDll.dll]  [TENCENT, 8,0,773,1801]
[E:\Program Files\Tencent\QQ\Bin\SkinMgr.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\system32\msdmo.dll]  [, ]
[E:\Program Files\Tencent\QQ\Bin\SystemMsg.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\ConfigCenter.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\GroupApp.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.snsapp\Bin\SNSApp.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.paycenter\Bin\PayCenter.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qbar\Bin\QBar.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvipmisc\Bin\QQVipMisc.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.wenwen\Bin\WenWen.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.soso\Bin\Soso.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.netbar\Bin\NetBar.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.paipai\Bin\PaiPai.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.wireless\Bin\Wireless.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\QInterLive.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.paipaigift\Bin\PaiPaiGift.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqshow\Bin\QQShow.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qzone\Bin\Qzone.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.crm\Bin\CRM.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.audiovideo\Bin\AudioVideo.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.weather\Bin\Weather.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.vas\Bin\VAS.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\InformationBox.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\ContactInfoFrame.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvip\Bin\QQVip.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.mmog\Bin\MMOG.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqgame\Bin\QQGame.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqmusic\Bin\QQMusic.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqring\Bin\QQRing.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.winks\Bin\Winks.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\MsgMgr.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.memo\Bin\Memo.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqpet\Bin\QQPet.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.advertisement\Bin\Advertisement.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.today\Bin\Today.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\vqqsdl.dll]  [Tencent, 5, 0, 3, 24]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.mail\Bin\Mail.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqwebsite\Bin\QQWebsite.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\LongCnn.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\CustomFace.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\AddrSearch.dll]  [Tencent, 2, 3, 12, 11]
[PID: 2368 / Administrator][e:\Program Files\Tencent\QQ\Bin\TXPlatform.exe]  [Tencent, 1, 41, 1450, 0]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[e:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll]  [Tencent, 1, 41, 1450, 0]
[PID: 140 / Administrator][E:\Program Files\Tencent\QQ\Bin\QQ.exe]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\Common.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.4053]
[E:\Program Files\Tencent\QQ\Bin\KernelUtil.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\GF.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\xGraphic32.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\AppUtil.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[E:\Program Files\Tencent\QQ\Bin\MainFrame.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\Macromed\Flash\Flash10d.ocx]  [Adobe Systems, Inc., 10,0,42,34]
[E:\Program Files\Tencent\QQ\Bin\IM.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\TaskTray.dll]  [Tencent, 1, 41, 1450, 0]
[e:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQShow\Bin\FlashAvatarDll.dll]  [Tencent, 1.26.1.26]
[E:\Program Files\Tencent\QQ\Bin\KernelMisc.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\AppMisc.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\AppCtrl.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\ChatFrame.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\ConfigCenter.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\CustomFace.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\LongCnn.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\ContactInfoFrame.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\MsgMgr.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\SkinMgr.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\QInterLive.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\SystemMsg.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.PaiPai\Bin\PaiPai.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.AudioVideo\Bin\AudioVideo.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.MMOG\Bin\MMOG.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Soso\Bin\Soso.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Qzone\Bin\Qzone.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Weather\Bin\Weather.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.SoBar\Bin\SoBar.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.PaiPaiGift\Bin\PaiPaiGift.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQLive\Bin\QQLive.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQMusic\Bin\QQMusic.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.taotao\Bin\Taotao.dll]  [Tencent, 1, 41, 1450, 0]
[C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll]  [Tencent, 1.2.0.23]
[C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOCommon.DLL]  [Tencent, 1.2.0.3]
[E:\Program Files\Tencent\QQ\Bin\BasicCtrlDll.dll]  [TENCENT, 8,0,773,1801]
[C:\WINDOWS\system32\msdmo.dll]  [, ]
[E:\Program Files\Tencent\QQ\Bin\GroupApp.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.snsapp\Bin\SNSApp.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.paycenter\Bin\PayCenter.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qbar\Bin\QBar.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvipmisc\Bin\QQVipMisc.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.wenwen\Bin\WenWen.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.netbar\Bin\NetBar.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.wireless\Bin\Wireless.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqshow\Bin\QQShow.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.vas\Bin\VAS.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\InformationBox.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqgame\Bin\QQGame.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqpet\Bin\QQPet.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.mail\Bin\Mail.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.crm\Bin\CRM.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvip\Bin\QQVip.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.memo\Bin\Memo.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.advertisement\Bin\Advertisement.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\vqqsdl.dll]  [Tencent, 5, 0, 3, 24]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.today\Bin\Today.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqring\Bin\QQRing.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqwebsite\Bin\QQWebsite.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.gamelife\Bin\GameLife.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.winks\Bin\Winks.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\appcom.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\VqqAllInOne.dll]  [Tencent, 2, 3, 0, 12]
[E:\Program Files\Tencent\QQ\Bin\vqqConv.dll]  [Tencent, 2, 3, 0, 12]
[E:\Program Files\Tencent\QQ\Bin\VQQTrace.dll]  [Tencent, 2, 3, 0, 12]
[C:\WINDOWS\system32\freeime.ime]  [极点五笔工作室, 6.5.0.0]
[E:\Program Files\Tencent\QQ\Bin\Camera.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\SCCore.dll]  [Tencent, 1, 7, 1, 6]
[PID: 536 / Administrator][E:\Program Files\Tencent\QQ\Bin\QQ.exe]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\Common.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.4053]
[E:\Program Files\Tencent\QQ\Bin\KernelUtil.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\GF.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\xGraphic32.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\AppUtil.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[E:\Program Files\Tencent\QQ\Bin\MainFrame.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\Macromed\Flash\Flash10d.ocx]  [Adobe Systems, Inc., 10,0,42,34]
[E:\Program Files\Tencent\QQ\Bin\IM.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\TaskTray.dll]  [Tencent, 1, 41, 1450, 0]
[e:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQShow\Bin\FlashAvatarDll.dll]  [Tencent, 1.26.1.26]
[E:\Program Files\Tencent\QQ\Bin\KernelMisc.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\AppMisc.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\AppCtrl.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\ChatFrame.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\ConfigCenter.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\CustomFace.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\LongCnn.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\ContactInfoFrame.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\MsgMgr.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\SkinMgr.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\QInterLive.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\SystemMsg.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.PaiPai\Bin\PaiPai.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.AudioVideo\Bin\AudioVideo.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.MMOG\Bin\MMOG.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Soso\Bin\Soso.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Qzone\Bin\Qzone.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.Weather\Bin\Weather.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.SoBar\Bin\SoBar.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.PaiPaiGift\Bin\PaiPaiGift.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQLive\Bin\QQLive.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQMusic\Bin\QQMusic.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\Com.Tencent.taotao\Bin\Taotao.dll]  [Tencent, 1, 41, 1450, 0]
[C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll]  [Tencent, 1.2.0.23]
[C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOCommon.DLL]  [Tencent, 1.2.0.3]
[E:\Program Files\Tencent\QQ\Bin\BasicCtrlDll.dll]  [TENCENT, 8,0,773,1801]
[C:\WINDOWS\system32\msdmo.dll]  [, ]
[E:\Program Files\Tencent\QQ\Bin\GroupApp.dll]  [Tencent, 1, 41, 1450, 0]
[C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.snsapp\Bin\SNSApp.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.paycenter\Bin\PayCenter.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qbar\Bin\QBar.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvipmisc\Bin\QQVipMisc.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.wenwen\Bin\WenWen.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.netbar\Bin\NetBar.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.wireless\Bin\Wireless.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqshow\Bin\QQShow.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.vas\Bin\VAS.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\InformationBox.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.crm\Bin\CRM.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvip\Bin\QQVip.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.memo\Bin\Memo.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqpet\Bin\QQPet.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.advertisement\Bin\Advertisement.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Bin\vqqsdl.dll]  [Tencent, 5, 0, 3, 24]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.today\Bin\Today.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqgame\Bin\QQGame.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqring\Bin\QQRing.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.mail\Bin\Mail.dll]  [Tencent, 1, 41, 1450, 0]
[E:\Program Files\Tencent\QQ\Plugin\com.tencent.qqwebsite\Bin\QQWebsite.dll]  [Tencent, 1, 41, 1450, 0]
[PID: 5908 / Administrator][C:\Program Files\QvodPlayer\QvodPlayer.exe]  [Shenzhen QVOD Technology Co.,Ltd, 3, 5, 0, 63]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\Program Files\QvodPlayer\AddIn\VisLrc.dll]  [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 0]
[C:\WINDOWS\system32\Macromed\Flash\Flash10d.ocx]  [Adobe Systems, Inc., 10,0,42,34]
[PID: 1976 / Administrator][C:\Documents and Settings\Administrator\Application Data\Spiritsoft\urlspirit\taskcore.exe]  [精灵软件, 2010, 1, 26, 37]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\Macromed\Flash\Flash10d.ocx]  [Adobe Systems, Inc., 10,0,42,34]
[PID: 5540 / Administrator][E:\Program Files\sreng2\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.2.1321]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[PID: 2676 / Administrator][E:\Program Files\sreng2\SRE53355144.EXE]  [Smallfrogs Studio, 2.8.2.1321]
[C:\Program Files\Micropoint\mp110031.dll]  [Micropoint Corporation, 2.0.33.1334]
[C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\msctfime.ime]  [Microsoft Corporation, 5.1.2600.5768 (xpsp_sp3_gdr.090226-1442)]
[C:\WINDOWS\system32\sfc_os.dll]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[E:\Program Files\sreng2\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
==================================
文件关联
.TXT  Error. [C:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. ["hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]
==================================
Winsock 提供者
N/A
==================================
Autorun.inf
N/A
==================================
HOSTS 文件
127.0.0.1  localhost
127.0.0.1 serial.alcohol-soft.com
127.0.0.1 www.alcohol-soft.com
127.0.0.1 images.alcohol-soft.com
127.0.0.1 trial.alcohol-soft.com
127.0.0.1 alcohol-soft.com
==================================
进程特权扫描
特殊特权被允许： SeLoadDriverPrivilege [PID = 736, C:\WINDOWS\SYSTEM32\WINLOGON.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1396, C:\WINDOWS\RTHDCPL.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1768, F:\XUNLEI\URLCORE.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2212, C:\PROGRAM FILES\KWMUSIC\KWMV.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2748, E:\PROGRAM FILES\CLOUDINFO\99PAN\BIN\EXE\99HOST.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2524, E:\7FGAME\SERVICE\MEDIA\7FMEDIA.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1368, E:\PROGRAM FILES\DUOWAN\YY\DUOSPEAK.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1976, C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\SPIRITSOFT\URLSPIRIT\TASKCORE.EXE]
==================================
计划任务
N/A
==================================
Windows 安全更新检查
Microsoft .NET Framework 版本 1.1，简体中文版
KB940157,  用于 Windows XP 的 Windows 搜索 4.0 (KB940157)
KB951847,  Microsoft .NET Framework 3.5 Service Pack 1 和 .NET Framework 3.5 Family Update (KB951847) x86
KB931125,  根证书更新 [2009 年 11 月] (KB931125)
KB973685,  Microsoft XML Core Services 4.0 Service Pack 3 更新程序 (KB973685)
KB971513,  Windows XP 更新程序 (KB971513)
KB972270,  Windows XP 安全更新程序 (KB972270) MS10-001
KB890830,  Windows 恶意软件删除工具 - 2010 年 1 月 (KB890830)
KB978207,  用于 Windows XP 的 Internet Explorer 6 累积安全更新程序 (KB978207) MS10-002
==================================
API HOOK
N/A
==================================
隐藏进程
N/A
==================================

[ 本帖最后由 pxweil 于 2010-2-6 16:52 编辑 ]