收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 原创工具区 (求助)各位DX帮帮我哈
返回列表 发新帖
查看: 2266|回复: 7
收起左侧

(求助)各位DX帮帮我哈

[复制链接]
microxx
发表于 2007-9-13 10:06:00 | 显示全部楼层 |阅读模式
事情是这样的,前两天开始公司局域网里就有了木马病毒,卡巴能够查出来可就是死活杀不掉.每次都能顺利更新病毒库,也是杀不了.
我是菜鸟,不晓得咋个上传病毒样本,各位大大帮帮忙哈。
病毒是:木马程序Backdoor.Win32.Blackhole.j
位置是:C:\windows\system32\server.exe
            c:\windows\msdtc.exe
谢谢了
回复

举报

風中Dè殘雲
发表于 2007-9-13 10:20:58 | 显示全部楼层
用冰刃干掉他.
回复

举报

magic659117852
发表于 2007-9-13 20:47:18 | 显示全部楼层
下载SREng  扫描一个log贴上来,,扫描时请尽量关闭其他手动打开的程序

解压sreng2.zip-->运行SREngPS.exe-->智能扫描-->扫描-->保存报告

把报告(SREngLOG.log)完整贴上来  注意不要作任何改动!!       [全选(Ctrl+a)-->复制(Ctrl+c)-->粘贴(Ctrl+v)]
回复

举报

microxx
 楼主| 发表于 2007-9-14 19:10:03 | 显示全部楼层
magic659117852大大,最近工作比较忙,所以电脑也是带病坚持工作 ,现在才有时间把问题贴出来,实在是不好意思了。谢谢你的指教了.

[CODE]

2007-09-14,19:06:22

System Repair Engineer 2.5.16.900
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件
    进程特权扫描


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <soundman><C:\WINDOWS\WinStar.dlll>  [(Verified)Microsoft Windows Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <ATICCC><"C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay>  [N/A]
    <AVP><"D:\卡巴斯基互联网安全套装6.0.2.621\avp.exe">  [Kaspersky Lab]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><D:\卡巴斯~1.621\adialhk.dll>  [Kaspersky Lab]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
    <WinlogonNotify: klogon><C:\WINDOWS\system32\klogon.dll>  [Kaspersky Lab]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [Microsoft Corporation]

==================================
启动文件夹
N/A

==================================
服务
[Adobe LM Service / Adobe LM Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><>
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
  <C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[Autodesk Licensing Service / Autodesk Licensing Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe"><Autodesk>
[卡巴斯基互联网安全套装6.0个人版 / AVP][Running/Auto Start]
  <D:\卡巴斯基互联网安全套装6.0.2.621\avp.exe -r><Kaspersky Lab>
[BlueSoleil Hid Service / BlueSoleil Hid Service][Running/Auto Start]
  <d:\IVT Corporation\BlueSoleil\BTNtService.exe><N/A>
[C-DillaCdaC11BA / C-DillaCdaC11BA][Running/Auto Start]
  <C:\WINDOWS\system32\drivers\CDAC11BA.EXE><Macrovision>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[iPod Service / iPod Service][Stopped/Manual Start]
  <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Computer, Inc.>
[LightScribeService Direct Disc Labeling Service / LightScribeService][Running/Auto Start]
  <"C:\Program Files\Common Files\LightScribe\LSSrvc.exe"><Hewlett-Packard Company>
[NBService / NBService][Stopped/Manual Start]
  <C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe><Nero AG>
[NMIndexingService / NMIndexingService][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe"><Nero AG>
[Drcom Server / Drcom Server][Running/Manual Start]
  <2 - 系统找不到指定的文件。
><N/A>

==================================
驱动程序
[ati2mtag / ati2mtag][Running/Manual Start]
  <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[Bluetooth Audio Service / BlueletAudio][Running/Manual Start]
  <system32\DRIVERS\blueletaudio.sys><IVT Corporation>
[Bluetooth PAN Network Adapter / BT][Stopped/Manual Start]
  <system32\DRIVERS\btnetdrv.sys><IVT Corporation>
[Bluetooth USB For Bluetooth Service / Btcsrusb][Stopped/Manual Start]
  <System32\Drivers\btcusb.sys><IVT Corporation>
[Bluetooth HID Enumerator / BTHidEnum][Running/Manual Start]
  <system32\DRIVERS\vbtenum.sys><N/A>
[Bluetooth HID Manager Service / BTHidMgr][Running/Boot Start]
  <\SystemRoot\System32\Drivers\BTHidMgr.sys><IVT Corporation>
[Bluetooth Network Filter / BTNetFilter][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\BTNetFilter.sys><N/A>
[CdaC15BA / CdaC15BA][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\CDAC15BA.SYS><Macrovision Europe Ltd>
[GEARAspiWDM / GEARAspiWDM][Running/Manual Start]
  <System32\Drivers\GEARAspiWDM.sys><GEAR Software Inc.>
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[HOSTNT / HOSTNT][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\hostnt.sys><N/A>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
  <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
[kl1 / kl1][Running/Boot Start]
  <\SystemRoot\system32\drivers\kl1.sys><Kaspersky Lab>
[klif / klif][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\klif.sys><Kaspersky Lab>
[ATK0100 ACPI UTILITY / MTsensor][Running/Manual Start]
  <system32\DRIVERS\ATKACPI.sys><>
[npkcrypt / npkcrypt][Stopped/Auto Start]
  <\??\D:\QQ2006\npkcrypt.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RCMHDOG / RCMHDOG][Stopped/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\rcmhdog.sys><Rainbow  China Co.,Ltd>
[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]
  <system32\DRIVERS\Rtenicxp.sys><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><N/A>
[ASUS WebCam, 1.3M, USB2.0, FF / SynMini][Running/Manual Start]
  <System32\Drivers\SynMini.sys><Syntek America Inc.>
[ASUS WebCam Still Image / SynScan][Running/Manual Start]
  <System32\Drivers\SynScan.sys><Syntek America Inc.>
[World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
  <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
[XPROTECTOR / XPROTECTOR][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\Xprotector.sys><N/A>

==================================
浏览器加载项
[ThunderIEHelper Class]
  {0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v13.dll, Thunder Networking Technologies,LTD>
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <D:\Adobe Acrobat Reader V7.05 简体中文版\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Tencent Browser Helper]
  {0C7C23EF-A848-485B-873C-0ED954731014} <C:\Program Files\TENCENT\SSPlus\SAddr.dll, Tencent>
[Web反病毒统计]
  {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} <D:\卡巴斯基互联网安全套装6.0.2.621\scieplugin.dll, Kaspersky Lab>
[番茄花园]
  {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://tomatolei.com, N/A>
[信息检索(&R)]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <D:\OFFICE~1\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[ThunderIEHelper Class]
  {0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v13.dll, Thunder Networking Technologies,LTD>
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <D:\Adobe Acrobat Reader V7.05 简体中文版\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Tencent Browser Helper]
  {0C7C23EF-A848-485B-873C-0ED954731014} <C:\Program Files\TENCENT\SSPlus\SAddr.dll, Tencent>
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[QuickTime Object]
  {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Computer, Inc.>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Microsoft Web 浏览器]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[&使用BitComet下载]
  <res://D:\装机软件\优盘工具集\USB_Pack\BitComet_0.91免安装版\BitComet.exe/AddLink.htm, N/A>
[&使用BitComet下载全部链接]
  <res://D:\装机软件\优盘工具集\USB_Pack\BitComet_0.91免安装版\BitComet.exe/AddAllLink.htm, N/A>
[&使用BitComet下载本页视频]
  <res://D:\装机软件\优盘工具集\USB_Pack\BitComet_0.91免安装版\BitComet.exe/AddVideo.htm, N/A>
[&使用迅雷下载]
  <D:\Thunder\geturl.htm, N/A>
[&使用迅雷下载全部链接]
  <D:\Thunder\getallurl.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://D:\OFFICE~1\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ表情]
  <D:\QQ\AddEmotion.htm, N/A>
[添加到反广告黑名单]
  <D:\卡巴斯基互联网安全套装6.0.2.621\ie_banner_deny.htm, N/A>

==================================
正在运行的进程
[PID: 708 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 912 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 968 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\Ati2evxx.dll]  [ATI Technologies Inc., 6.14.10.4133]
    [C:\WINDOWS\system32\klogon.dll]  [Kaspersky Lab, 6.0.2.621]
[PID: 1040 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1052 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1224 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4133]
    [C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2500]
[PID: 1236 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1320 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1424 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\卡巴斯基互联网安全套装6.0.2.621\adialhk.dll]  [Kaspersky Lab, 6.0.2.621]
[PID: 1480 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1640 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1888 / Administrator][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4133]
    [C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2500]
[PID: 1952 / Administrator][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
    [C:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, 16.2.54.0]
    [D:\卡巴斯基互联网安全套装6.0.2.621\scrchpg.dll]  [Kaspersky Lab, 6.0.2.621]
    [C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, 17.0.54.110]
    [D:\Adobe Acrobat Reader V7.05 简体中文版\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\atiacmxx.dll]  [, 1, 0, 0, 1]
    [D:\Adobe Acrobat Reader V7.05 简体中文版\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 7.0.5.2005092300]
回复

举报

microxx
 楼主| 发表于 2007-9-14 19:10:33 | 显示全部楼层
[C:\Program Files\TENCENT\SSPlus\SAddr.dll]  [Tencent, 5, 0, 1, 18]
[PID: 180 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
    [C:\WINDOWS\system32\mdimon.dll]  [Microsoft Corporation, 11.3.1897.0]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll]  [Microsoft Corporation, 11.3.1897.0]
[PID: 380 / Administrator][C:\Program Files\ATI Technologies\ATI.ACE\cli.exe]  [ATI Technologies Inc., 1.11.0.0]
    [C:\WINDOWS\system32\mscoree.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\a2b83536a67bdbed4c70ddc0b2fe57ff\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\bd006dc46cdb9806e848259dc5f2e005\System.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\43fffd48ef76ac04db69de2684752865\System.Drawing.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\20da81d799bcef20717fa6202e46ceee\System.Windows.Forms.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Implementation.dll]  [ATI Technologies Inc., 1.2.2341.37103]
    [C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.29985]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.29986]
    [C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Service.dll]  [ATI Technologies Inc., 1.2.2341.37266]
    [C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29991]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.XManifestation.dll]  [ATI Technologies Inc., 1.2.2341.37266]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\2d5af62fc8566ddbece531de2f5c9e2c\System.Xml.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\e8c8e283adcd44cb9ffe7e81950d638c\System.Configuration.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37270]
    [C:\Program Files\ATI Technologies\ATI.ACE\ATICCCom.dll]  [ATI Technologies Inc., 1.0.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\AEM.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.29985]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29987]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37260]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29988]
    [C:\Program Files\ATI Technologies\ATI.ACE\DEM.Foundation.dll]  [ATI Technologies Inc., 1.11.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0601.dll]  [ATI Technologies Inc., 1.11.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.DisplaysManager.Shared.dll]  [ATI Technologies Inc., 1.11.0.0]
    [C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_zh-CHS_b77a5c561934e089\mscorlib.resources.dll]  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\263bec87fbf9c5367a2fb3f7f74e05a2\System.Web.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\system32\ATIDEMGR.dll]  [ATI Technologies Inc., 1.2.2341.37087]
    [C:\WINDOWS\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll]  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200)]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37138]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2302.19274]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37100]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29991]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37161]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.30001]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37138]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29993]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37178]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37175]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37144]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.30007]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37209]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29990]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37193]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.30001]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37169]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29989]
    [C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.VideoOverlay.Shared.dll]  [ATI Technologies Inc., 1.11.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37172]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37167]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29988]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37164]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37229]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29147]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37150]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29162]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37220]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29994]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37144]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29993]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37226]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29179]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.CustomFormats.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29132]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37153]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29197]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37216]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37212]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37222]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29212]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37147]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29221]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37185]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2279.31385]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37190]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37182]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29989]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37202]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37197]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37200]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29990]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37156]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.30002]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2232.28756]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2232.28758]
    [C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0600.dll]  [ATI Technologies Inc., 1.11.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29990]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29988]
    [C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0602.dll]  [ATI Technologies Inc., 1.11.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29987]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29986]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty2.Graphics.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37096]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.30001]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29993]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2279.31374]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29993]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29988]
    [C:\Program Files\ATI Technologies\ATI.ACE\APM.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.30002]
    [D:\卡巴斯基互联网安全套装6.0.2.621\scrchpg.dll]  [Kaspersky Lab, 6.0.2.621]
[PID: 424 / Administrator][C:\WINDOWS\system\services.exe]  [N/A, ]
[PID: 492 / Administrator][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 920 / SYSTEM][d:\IVT Corporation\BlueSoleil\BTNtService.exe]  [N/A, ]
[PID: 932 / SYSTEM][C:\WINDOWS\system32\drivers\CDAC11BA.EXE]  [Macrovision, 4.20.020]
[PID: 1164 / SYSTEM][C:\Program Files\Common Files\LightScribe\LSSrvc.exe]  [Hewlett-Packard Company, 1.4.124.1]
    [C:\Program Files\Common Files\LightScribe\LSSProxy.dll]  [Hewlett-Packard Company, 1.4.124.1]
    [C:\Program Files\Common Files\LightScribe\LSLog.dll]  [Hewlett-Packard Company, 1.4.124.1]
[PID: 1180 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  [Microsoft Corporation, 7.00.9466]
    [C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll]  [Microsoft Corporation, 7.00.9466]
[PID: 1708 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 2224 / SYSTEM][C:\WINDOWS\MSDTC.EXE]  [N/A, ]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
[PID: 2496 / SYSTEM][C:\WINDOWS\system32\wbem\wmiprvse.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 2716 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3264 / Administrator][C:\Program Files\ATI Technologies\ATI.ACE\cli.exe]  [ATI Technologies Inc., 1.11.0.0]
[C:\WINDOWS\system32\mscoree.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\a2b83536a67bdbed4c70ddc0b2fe57ff\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\bd006dc46cdb9806e848259dc5f2e005\System.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\43fffd48ef76ac04db69de2684752865\System.Drawing.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\20da81d799bcef20717fa6202e46ceee\System.Windows.Forms.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Implementation.dll]  [ATI Technologies Inc., 1.2.2341.37103]
    [C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.29985]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.29986]
    [C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Service.dll]  [ATI Technologies Inc., 1.2.2341.37266]
    [C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29991]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.XManifestation.dll]  [ATI Technologies Inc., 1.2.2341.37266]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\2d5af62fc8566ddbece531de2f5c9e2c\System.Xml.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\e8c8e283adcd44cb9ffe7e81950d638c\System.Configuration.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Systemtray.dll]  [ATI Technologies Inc., 1.2.2341.37242]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29987]
    [C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_zh-CHS_b77a5c561934e089\mscorlib.resources.dll]  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200)]
回复

举报

microxx
 楼主| 发表于 2007-9-14 19:11:09 | 显示全部楼层
[C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37270]
    [C:\Program Files\ATI Technologies\ATI.ACE\ATICCCom.dll]  [ATI Technologies Inc., 1.0.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.DisplaysManager.Shared.dll]  [ATI Technologies Inc., 1.11.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\AEM.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.29985]
    [C:\Program Files\ATI Technologies\ATI.ACE\APM.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.30002]
    [C:\Program Files\ATI Technologies\ATI.ACE\zh-CHS\CLI.Component.Systemtray.resources.dll]  [ATI Technologies Inc., 1.2.2341.37242]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\263bec87fbf9c5367a2fb3f7f74e05a2\System.Web.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
[PID: 3280 / Administrator][C:\Program Files\ATI Technologies\ATI.ACE\cli.exe]  [ATI Technologies Inc., 1.11.0.0]
    [C:\WINDOWS\system32\mscoree.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\a2b83536a67bdbed4c70ddc0b2fe57ff\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\bd006dc46cdb9806e848259dc5f2e005\System.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\43fffd48ef76ac04db69de2684752865\System.Drawing.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\20da81d799bcef20717fa6202e46ceee\System.Windows.Forms.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Implementation.dll]  [ATI Technologies Inc., 1.2.2341.37103]
    [C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.29985]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.29986]
    [C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Service.dll]  [ATI Technologies Inc., 1.2.2341.37266]
    [C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29991]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.XManifestation.dll]  [ATI Technologies Inc., 1.2.2341.37266]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\2d5af62fc8566ddbece531de2f5c9e2c\System.Xml.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\e8c8e283adcd44cb9ffe7e81950d638c\System.Configuration.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37273]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.Clients.dll]  [ATI Technologies Inc., 1.2.2208.29986]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Dashboard.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29987]
    [C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_zh-CHS_b77a5c561934e089\mscorlib.resources.dll]  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200)]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.dll]  [ATI Technologies Inc., 1.2.2341.37270]
    [C:\Program Files\ATI Technologies\ATI.ACE\ATICCCom.dll]  [ATI Technologies Inc., 1.0.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29987]
    [C:\Program Files\ATI Technologies\ATI.ACE\AEM.Foundation.dll]  [ATI Technologies Inc., 1.2.2208.29985]
    [C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.DisplaysManager.Shared.dll]  [ATI Technologies Inc., 1.11.0.0]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Local.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37276]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37263]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Dashboard.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29990]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Welcome.Local.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37162]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37200]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37206]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37136]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37203]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37231]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37150]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37220]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37144]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37227]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37154]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37217]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37213]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37223]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37147]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37179]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37176]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37142]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37209]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37194]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37170]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37182]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37173]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37167]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37164]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37187]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37190]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37197]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37268]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37101]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Dashboard.dll]  [ATI Technologies Inc., 1.2.2341.37157]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29990]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.30002]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29993]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29993]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29147]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29987]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29162]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29986]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29994]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29993]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29179]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29197]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.30001]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29993]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29212]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29221]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.CustomFormats.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2236.29132]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2232.28756]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2232.28758]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.30007]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29990]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.30001]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29989]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29989]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29990]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29988]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29988]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2279.31385]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2279.31374]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29988]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2302.19274]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.29991]
    [C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Shared.dll]  [ATI Technologies Inc., 1.2.2208.30001]
    [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\263bec87fbf9c5367a2fb3f7f74e05a2\System.Web.ni.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
[PID: 2472 / Administrator][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\卡巴斯基互联网安全套装6.0.2.621\scrchpg.dll]  [Kaspersky Lab, 6.0.2.621]
    [C:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, 16.2.54.0]
    [C:\WINDOWS\system32\xunleibho_v13.dll]  [Thunder Networking Technologies,LTD, 4, 6, 0, 48]
    [D:\Adobe Acrobat Reader V7.05 简体中文版\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 7.0.5.2005092300]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\TENCENT\SSPlus\SAddr.dll]  [Tencent, 5, 0, 1, 18]
    [D:\卡巴斯基互联网安全套装6.0.2.621\adialhk.dll]  [Kaspersky Lab, 6.0.2.621]
    [C:\Program Files\Common Files\Microsoft Shared\INK\PENCHS.DLL]  [Microsoft Corporation, 1.0.1038.0]
    [D:\卡巴斯基互联网安全套装6.0.2.621\klscav.dll]  [Kaspersky Lab, 6.0.2.621]
    [D:\卡巴斯基互联网安全套装6.0.2.621\prremote.dll]  [Kaspersky Lab, 6.0.2.621]
    [D:\卡巴斯基互联网安全套装6.0.2.621\prloader.dll]  [Kaspersky Lab, 6.0.2.621]
    [D:\卡巴斯基互联网安全套装6.0.2.621\prkernel.ppl]  [Kaspersky Lab, 6.0.2.621]
    [d:\卡巴斯基互联网安全套装6.0.2.621\params.ppl]  [Kaspersky Lab, 6.0.2.621]
    [d:\卡巴斯基互联网安全套装6.0.2.621\pxstub.ppl]  [Kaspersky Lab, 6.0.2.621]
    [d:\卡巴斯基互联网安全套装6.0.2.621\tempfile.ppl]  [Kaspersky Lab, 6.0.2.621]
    [d:\卡巴斯基互联网安全套装6.0.2.621\nfio.ppl]  [Kaspersky Lab, 6.0.2.621]
    [d:\卡巴斯基互联网安全套装6.0.2.621\fsdrvplgn.ppl]  [Kaspersky Lab, 6.0.2.621]
    [d:\卡巴斯基互联网安全套装6.0.2.621\basegui.ppl]  [Kaspersky Lab, 6.0.2.621]
    [d:\卡巴斯基互联网安全套装6.0.2.621\thpimpl.ppl]  [Kaspersky Lab, 6.0.2.621]
    [d:\卡巴斯基互联网安全套装6.0.2.621\FSSync.dll]  [Kaspersky Lab, 6.0.5.621]
    [d:\卡巴斯基互联网安全套装6.0.2.621\winreg.ppl]  [Kaspersky Lab, 6.0.2.621]
    [C:\WINDOWS\system32\WINABCX.IME]  [PKUETI, 5.22.216]
[PID: 1732 / Administrator][C:\Documents and Settings\Administrator\桌面\sreng2\SREngPS.EXE]  [Smallfrogs Studio, 2.5.16.900]
[PID: 3496 / Administrator][C:\Documents and Settings\Administrator\桌面\sreng2\SREngPS.EXE]  [Smallfrogs Studio, 2.5.16.900]
    [C:\Documents and Settings\Administrator\桌面\sreng2\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
    [C:\Documents and Settings\Administrator\桌面\sreng2\Plugins\NTFSTREAM.SRE]  [Smallfrogs Studio, 1, 0, 0, 5]
    [D:\卡巴斯基互联网安全套装6.0.2.621\adialhk.dll]  [Kaspersky Lab, 6.0.2.621]

==================================
文件关联
.TXT  Error. [C:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. ["hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
[D:\]
[AutoRun]
OPEN=sxs.exe
shell\open=打开(&O)
shell\open\Command=sxs.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=sxs.exe
[E:\]
[AutoRun]
OPEN=sxs.exe
shell\open=打开(&O)
shell\open\Command=sxs.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=sxs.exe
[F:\]
[AutoRun]
OPEN=sxs.exe
shell\open=打开(&O)
shell\open\Command=sxs.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=sxs.exe

==================================
HOSTS 文件
127.0.0.1       localhost

==================================
进程特权扫描
特殊特权被允许: SeDebugPrivilege [PID = 380, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLI.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 380, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLI.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 424, C:\WINDOWS\SYSTEM\SERVICES.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 920, D:\IVT CORPORATION\BLUESOLEIL\BTNTSERVICE.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2224, C:\WINDOWS\MSDTC.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 3264, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLI.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3264, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLI.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 3280, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLI.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3280, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLI.EXE]

==================================
API HOOK
RVA  错误: LoadLibraryA (危险等级: 高,  被下面模块所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys)
RVA  错误: LoadLibraryExA (危险等级: 高,  被下面模块所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys)
RVA  错误: LoadLibraryExW (危险等级: 高,  被下面模块所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys)
RVA  错误: LoadLibraryW (危险等级: 高,  被下面模块所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys)
RVA  错误: GetProcAddress (危险等级: 高,  被下面模块所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys)

==================================
隐藏进程
N/A

==================================


[/CODE]


麻烦高人帮忙看看电脑还有救没有,不想整个网络都全部重装系统.再次感谢了!!!!!
回复

举报

magic659117852
发表于 2007-9-14 22:26:46 | 显示全部楼层
http://magic659117852.atedu.net 下载强制删除工具

勾选抑制再生 删除以下文件(有提示不存在的忽略,继续后面的操作)。

c:\windows\system\services.exe
d:\AutoRun.inf
e:\AutoRun.inf
f:\AutoRun.inf
d:\sxs.exe
e:\sxs.exe
f:\sxs.exe



删除后重启:

   SREng-启动项目--服务--Win32服务应用程序 勾选"隐藏已认证的微软项目" 选中下面列出的项,点"删除服务",点“设置”   弹出的窗口中点 否(不能删除的就禁用:启动类型改为disabled,点中修改启动类型,点设置)

[Drcom Server / Drcom Server]    <>

下载windows清理助手升级到最新清理下系统
http://www.arswp.com/download/arswp2/arswp2.zip

下载临时文件清理工具处理下
http://hzqedison.mm9mm.com/hanhua/ATF-Cleaner-cn.exe
回复

举报

microxx
 楼主| 发表于 2007-9-14 23:52:42 | 显示全部楼层
真的是非常感谢LS的大大.
自家的电脑搞妥帖了,明天把公司的机子也试着弄一下.
谢谢
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-12-24 01:24 , Processed in 0.146686 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表