DNWX首页 |   维修网点 |   专家在线 | 电脑故障 |   学习维修 |   优化养护 |   数据恢复 |   病毒木马 |   硬件维修 |   维修工具 |   软件下载 |   维修论坛   

电脑维修论坛

‹‹ 上一主题 | 下一主题 ››
发新话题
打印

求助 !!!!!

本主题由 shoo 于 2008-7-19 11:17 关闭
clarklee1

维修工人

Rank: 2

UID
41730 
帖子
26 
精华
0 
经验
28 点 
威望
24 点 
维修币
31 ¥ 
魅力
50  
阅读权限
10 
1# 发表于 2008-7-18 11:26  只看该作者

求助 !!!!!

開機後,svchost.exe錯誤,沒有聲音,安裝kis8.0  , QQ一直無法上線,一直發送錯誤訊息,QQ一直重開  ,請SHOO幫忙看一下日誌ㄟ
复制内容到剪贴板
代码:
2008-07-18,10:10:16

System Repair Engineer 2.6.11.992
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been selected:
    All Boot Items (Including Registry, Startup Folders, Services and so on)
    Browser Add-ons
    Running Processes (Including process model information)
    File Associations
    Winsock Provider
    Autorun.Inf
    HOSTS File
    Process Privileges Scan


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
      [N/A]
      [(Verified)Microsoft Corporation]
      [(Verified)Microsoft Windows Publisher]
    <>  [N/A]
      [(Verified)Microsoft Windows Publisher]
      [(Verified)Google Inc]
    <; "C:\Program Files\MSN Messenger\msnmsgr.exe" /background>  [(Verified)Microsoft Corporation]
    <; "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun>  [(Verified)DAEMON Tools Code Signing Services]
    <; C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe>  [Sun Microsystems, Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
      [(Verified)Microsoft Windows Hardware Compatibility Publisher]
      [(Verified)Microsoft Windows Hardware Compatibility Publisher]
      [TOSHIBA Corporation]
    <"C:\Program Files\Toshiba\Windows Utilities\Hotkey.exe" /lang TW>  [File is missing]
      [Agere Systems]
      [TOSHIBA Corporation]
    <; C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE>  [(Verified)Microsoft Windows Publisher]
      [(Verified)Microsoft Corporation]
      [Hewlett-Packard]
    <"C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe">  [(Verified)"Sun Microsystems, Inc."]
    <"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [(Verified)"RealNetworks, Inc."]
      [TOSHIBA]
    <"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\avp.exe">  [Kaspersky Lab]
    <; "C:\Program Files\Inventec\Dreye\DreyeMT\DreyeIMplugin.exe" /h>  []
    <鼎&#63392;籵><; "C:\PROGRA~1\MyIM\Client\MyIM.exe" -OSBOOT>  []
      [Realtek Semiconductor Corp.]
      [(Verified)Microsoft Windows Hardware Compatibility Publisher]
      [TENCENT]
    <; >  [N/A]
    <; >  [N/A]
    <; C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe>  [TOSHIBA Corporation]
    <; >  [N/A]
    <; >  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    <"C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\Tencent\QQ\TIMProxy.dll",DllRegisterServer>  [tencent]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
      [(Verified)Microsoft Windows Component Publisher]
      [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
      [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
      [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
      [Kaspersky Lab]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
      [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
      [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
      [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
      [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
      [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8b15971b-5355-4c82-8c07-7e181ea07608}]
      [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DrvAnti.exe]
      [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GFRing3.exe]
      [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GFUpd.exe]
      [N/A]

==================================
Startup Folders
[RAMASST]
   C:\WINDOWS\system32\RAMASST.exe [Matsushita Electric Industrial Co., Ltd.]>
[騰訊QQ]
   C:\PROGRA~1\Tencent\QQ\QQ.exe [TENCENT]>

==================================
Services
[Atheros 設定服務 / ACS][Running/Auto Start]
  
[Application Management / AppMgmt][Stopped/Manual Start]
  %SystemRoot%\System32\appmgmts.dll>
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
  
[Kaspersky Internet Security / AVP][Running/Auto Start]
  <"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\avp.exe" -r>
[DVD-RAM_Service / DVD-RAM_Service][Running/Auto Start]
  
[Google Updater Service / gusvc][Stopped/Manual Start]
  <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe">
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"c:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe">
[TOSHIBA Optical Disc Drive Service / TODDSrv][Running/Auto Start]
  

==================================
Drivers
[AEGIS Protocol (IEEE 802.1x) v3.4.7.0 / AegisP][Running/Auto Start]
  
[TOSHIBA V92 Software Modem / AgereSoftModem][Running/Manual Start]
  
[Atheros Wireless Network Adapter Service / AR5211][Stopped/Manual Start]
  
[ati2mtag / ati2mtag][Running/Manual Start]
  
[BENQ AWL Wireless LAN Driver / AWL][Stopped/Manual Start]
  
[Access 32bits INT15 routine / BoiHwsetup][Running/Manual Start]
  
[drop / drop][Stopped/Auto Start]
  <\??\C:\WINDOWS\TEMP\tmp3D.tmp>
[Symantec Eraser Control driver / eeCtrl][Running/System Start]
  <\??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
  
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
  
[IVI ASPI Shell / Iviaspi][Running/Manual Start]
  
[kl1 / kl1][Running/Boot Start]
  <\SystemRoot\system32\drivers\kl1.sys>
[Kaspersky Lab Boot Guard Driver / KLBG][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\klbg.sys>
[Kaspersky Lab KLFltDev / KLFLTDEV][Running/Manual Start]
  
[Kaspersky Lab Driver / KLIF][Running/System Start]
  
[Kaspersky Anti-Virus NDIS Filter / klim5][Running/Manual Start]
  
[klnetinf / klnetinf][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\klnetinf.sys>
[meiudf / meiudf][Running/System Start]
  
[mhap / mhap][Stopped/Auto Start]
  <\??\C:\WINDOWS\TEMP\tmp1.tmp>
[Motorola Inc. USB Device / MotDev][Stopped/Manual Start]
  
[Motorola USB CDC ACM Driver / motmodem][Stopped/Manual Start]
  
[msp2p32 / msp2p32][Stopped/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\msosmsp2p32.sys>
[NEW_THINKSOFT / NEW_THINKSOFT][Stopped/Manual Start]
  <\??\C:\DNT_Temp\hook.dat>
[npkcrypt / npkcrypt][Running/Auto Start]
  <\??\C:\Program Files\Tencent\QQ\npkcrypt.sys>
[Padus ASPI Shell / Pfc][Running/Manual Start]
  
[ping / ping][Stopped/Auto Start]
  <\??\C:\WINDOWS\TEMP\tmp37.tmp>
[ptfs / ptfs][Stopped/Auto Start]
  <\??\C:\WINDOWS\TEMP\tmp35.tmp>
[直接平行連接埠連結驅動程式 / Ptilink][Running/Manual Start]
  
[PxHelp20 / PxHelp20][Running/Boot Start]
  <\SystemRoot\System32\Drivers\PxHelp20.sys>
[Quanta HotKey Keyboard Filter Driver / qkbfiltr][Running/Manual Start]
  
[Quanta HotKey Mouse Filter Driver / qmofiltr][Running/Manual Start]
  
[RsAntiSpyware / RsAntiSpyware][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\RsBoot.sys>
[rspp / rspp][Running/System Start]
  <\??\C:\WINDOWS\system32\Drivers\Rspp.sys>
[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]
  
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Stopped/Manual Start]
  
[Secdrv / Secdrv][Stopped/Manual Start]
  
[sptd / sptd][Running/Boot Start]
  <\SystemRoot\System32\Drivers\sptd.sys>
[SYMIDSCO / SYMIDSCO][Stopped/Manual Start]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\idsdefs\20070426.001\symidsco.sys>
[Synaptics TouchPad Driver / SynTP][Running/Manual Start]
  
[TOSHIBA Writing Engine Filter Driver / tdcmdpst][Running/Manual Start]
  
[TOSHIBA UDF File System Driver / tdudf][Running/Auto Start]
  
[Logitech Virtual Bus Enumerator Driver / WmBEnum][Running/Manual Start]
  
[Logitech Gaming HID Filter Driver / WmFilter][Stopped/Manual Start]
  
[Logitech Virtual Hid Device Driver / WmVirHid][Stopped/Manual Start]
  
[Logitech Translation Layer Driver / WmXlCore][Running/Manual Start]
  

==================================
Browser Add-ons
[Java Plug-in 1.6.0_05]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501}
[]
  {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E}
[參考資料(&R)]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263}
[PPLive]
  {95B3F550-91C4-4627-BCC4-521288C52977}
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b}
[BitComet]
  {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} <, N/A>
[QQIEFloatBarCfgCmd Class]
  {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}
[]
  {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, N/A>
[&Google]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F}
[Dr.eye WebPage Translation]
  {92B255FE-94E2-4BCA-958D-3926CE38913F}
[Java Plug-in 1.6.0_05]
  {8AD9C840-044E-11D1-B3E9-00805F499D93}
[Java Plug-in 1.5.0_07]
  {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}
[Java Plug-in 1.6.0_05]
  {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
[Java Plug-in 1.6.0_05]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000}
[Google Script Object]
  {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB}
[ThunderAtOnce Class]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233}
[ActiveMovieControl Object]
  {05589FA1-C356-11CE-BF01-00AA0055595A}
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
[Fade]
  {16B280C5-EE70-11D1-9066-00C04FD9189D}
[InformationCardSigninHelper Class]
  {19916E01-B44E-4E31-94A4-4696DF46157B}
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95}
[&Google]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F}
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13}
[XML DOM Document]
  {2933BF90-7B36-11D2-B20E-00C04F983E60}
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A}
[RealPlayer Download and Record Plugin for Internet Explorer]
  {3049C3E9-B461-4BC5-8870-4C09146192CA}
[HtmlDlgSafeHelper Class]
  {3050F819-98B5-11CF-BB82-00AA00BDCE0B}
[IETag Factory]
  {38481807-CA0E-42D2-BF39-B33AF135CC4D}
[BitComet Helper]
  {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}
[Microsoft Office Control]
  {4453D895-F2A1-4A38-A285-1EF9BD3F6D5D}
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555}
[Thunder Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE}
[HHCtrl Object]
  {52A2AAAE-085D-4187-97EA-8C30DB990436}
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547}
[WUWebControl Class]
  {6414512B-B978-451D-A0D8-FCFDF33E833C}
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6}
[MUWebControl Class]
  {6E32070A-766D-4EE6-879C-DC1FA91D2FC3}
[Active Desktop Mover]
  {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[SSVHelper Class]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2}
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283}
[XML DOM Document 5.0]
  {88D969E5-F192-11D4-A65F-0040963251E5}
[XML HTTP 5.0]
  {88D969EA-F192-11D4-A65F-0040963251E5}
[Java Plug-in 1.6.0_05]
  {8AD9C840-044E-11D1-B3E9-00805F499D93}
[Windows Live Sign-in Helper]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <, N/A>
[Dr.eye WebPage Translation]
  {92B255FE-94E2-4BCA-958D-3926CE38913F}
[Google Toolbar Helper]
  {AA58ED58-01DD-4D91-8333-CF10577473F7}
[Google Toolbar Notifier BHO]
  {AF69DE43-7D58-4638-B6FA-CE66B5AD205D}
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36}
[Adobe PDF Reader]
  {CA8A9780-280D-11CF-A24D-444553540000}
[C:\Program Files\Tencent\QQ\QQPlayerSvr.exe]
  {CD108273-D434-43E6-AA90-1469F97EB398} <, N/A>
[AUDIO__MID Moniker Class]
  {CD3AFA74-B84F-48F0-9393-7EDC34128127}
[AUDIO__MP3 Moniker Class]
  {CD3AFA76-B84F-48F0-9393-7EDC34128127}
[VIDEO__X_MS_ASF Moniker Class]
  {CD3AFA8F-B84F-48F0-9393-7EDC34128127}
[VIDEO__X_MS_WMV Moniker Class]
  {CD3AFA94-B84F-48F0-9393-7EDC34128127}
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA}
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000}
[Microsoft Agent Control 2.0]
  {D45FD31B-5C6E-11D1-9EC1-00C04FD7081F}
[]
  {E1771B7F-98BE-407F-BA67-AA16ADA5D0C5}
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8}
[XML DOM Document 3.0]
  {F5078F32-C551-11D3-89B9-0000F81FE221}
[Free Threaded XML DOM Document 3.0]
  {F5078F33-C551-11D3-89B9-0000F81FE221}
[XML HTTP 3.0]
  {F5078F35-C551-11D3-89B9-0000F81FE221}
[XSL Template 3.0]
  {F5078F36-C551-11D3-89B9-0000F81FE221}
[XML DOM Document]
  {F6D90F11-9C73-11D3-B32E-00C04F990BB4}
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4}
[IERPCtl Class]
  {FDC7A535-4070-4B92-A0EA-D9994BCC0DC5}
[&使用BitComet下載本頁視訊]
  
[上傳到QQ網路硬碟]
  
[使用BitComet下載全部連結]
  
[使用BitComet下載連結(&B)]
  
[使用迅雷下載]
  
[使用迅雷下載全部鏈接]
  
[匯出至 Microsoft Office Excel(&X)]
  
[新增到QQ自定義面板]
  
[新增到QQ表情]
  
[添加到QQ自定義面板]
  
[添加到QQ表情]
  
[用QQ MMS傳送該圖片]
  
[用QQ彩信發送該圖片]
  

==================================
Running Processes
[PID: 796 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 844 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 872 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\Ati2evxx.dll]  [ATI Technologies Inc., 6.14.10.4124]
    [C:\WINDOWS\system32\klogon.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 916 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\AppPatch\AcAdProc.dll]  [Microsoft Corporation, 5.1.2600.3008 (xpsp.061004-0027)]
[PID: 928 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1068 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4124]
    [C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2499]
[PID: 1100 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1208 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1372 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [c:\windows\system32\wudfsvc.dll]  [Microsoft Corporation, 6.0.5716.32 (winmain(wmbla).060928-1756)]
    [c:\windows\system32\WUDFPlatform.dll]  [Microsoft Corporation, 6.0.5716.32 (winmain(wmbla).060928-1756)]
[PID: 1500 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1608 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[PID: 1880 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
    [C:\WINDOWS\system32\ZLhp1020.DLL]  [Zenographics, Inc., 5, 53, 3723, 0]
    [C:\WINDOWS\system32\ZLM.dll]  [Zenographics, Inc., 5, 50, 1416, 0]
    [C:\WINDOWS\system32\mdimon.dll]  [Microsoft Corporation, 11.3.1897.0]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\IMFPrint.DLL]  [Zenographics, Inc., 5, 54, 330, 0]
    [C:\WINDOWS\system32\Imf32.dll]  [Zenographics, Inc., 5, 60, 1204, 0]
    [C:\WINDOWS\system32\ZTAG32.dll]  [Zenographics, Inc., 5, 60, 1210, 0]
    [C:\WINDOWS\system32\ZSPOOL.dll]  [Zenographics, Inc., 5, 51, 709, 0]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll]  [Microsoft Corporation, 11.3.1897.0]
[PID: 1916 / SYSTEM][C:\WINDOWS\system32\acs.exe]  [N/A, ]
    [C:\WINDOWS\system32\athcfg11.dll]  [Atheros, 4.1.1.231]
    [C:\WINDOWS\system32\athcfg11Res.dll]  [Atheros Communications, Inc., 4.1.1.231]
    [C:\WINDOWS\system32\athcfg11resloc.dll]  [Atheros Communications, Inc., 4.1.1.231]
[PID: 232 / SYSTEM][C:\WINDOWS\system32\cisvc.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 260 / SYSTEM][C:\WINDOWS\system32\DVDRAMSV.exe]  [Matsushita Electric Industrial Co., Ltd., 3, 0, 0, 0]
[PID: 300 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  [Microsoft Corporation, 7.00.9466]
    [C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\1028\mdmui.dll]  [Microsoft Corporation, 7.00.9466]
[PID: 488 / SYSTEM][C:\WINDOWS\system32\tcpsvcs.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 504 / SYSTEM][C:\WINDOWS\System32\snmp.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 612 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 644 / SYSTEM][C:\WINDOWS\system32\TODDSrv.exe]  [TOSHIBA Corporation, 1, 0, 0, 3]
[PID: 732 / medeline][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4124]
    [C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2499]
[PID: 1276 / medeline][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.3158 (xpsp_sp2_gdr.070615-1247)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\WPDShServiceObj.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
    [C:\WINDOWS\system32\PortableDeviceTypes.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
    [C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\ShellEx.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\WINDOWS\system32\AC3ACM.acm]  [fccHandler, 0, 7, 0, 0]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll]  [Microsoft Corporation, 11.0.5510]
    [C:\WINDOWS\system32\wpdshext.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
    [C:\WINDOWS\system32\Audiodev.dll]  [Microsoft Corporation, 5.2.3790.3646 built by: DNSRV(bld4act)]
    [C:\WINDOWS\system32\DVDMenu.dll]  [Matsushita Electric Industrial Co., Ltd., 4. 1. 4. 0]
    [C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\DDWMenu.dll]  [TOSHIBA Corporation, 1.0.0.9]
    [C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\usrpacket.dll]  [N/A, ]
    [C:\Program Files\Real\RealPlayer\rpshell.dll]  [RealNetworks, Inc., 1.0.2.44]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Real\RealPlayer\lang\rpext_tw.dll]  [RealNetworks, Inc., 6.0.14.0]
    [C:\PROGRA~1\TENCENT\Adplus\Adplus.dll]  [Tencent, 3, 0, 4, 40]
    [C:\WINDOWS\Downloaded Program Files\Ufjh.dll]  [Tencent, 3, 0, 4, 40]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prremote.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prloader.dll]  [Kaspersky Lab, 8.0.0.152]
[PID: 2260 / medeline][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe]  [Synaptics, Inc., 8.2.24 07Apr06]
    [C:\WINDOWS\system32\SynCOM.dll]  [Synaptics, Inc., 8.2.24 07Apr06]
    [C:\WINDOWS\system32\SynTPAPI.dll]  [Synaptics, Inc., 8.2.24 07Apr06]
[PID: 2404 / medeline][C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe]  [TOSHIBA Corporation, 1.0.0.9]
[PID: 2492 / medeline][C:\WINDOWS\AGRSMMSG.exe]  [Agere Systems, 2.1.68 2.1.68 03/17/2006 15:22:25]
[PID: 2796 / medeline][C:\WINDOWS\system32\TPSMain.exe]  [TOSHIBA Corporation, 1, 0, 15, 0]
    [C:\WINDOWS\system32\TPSMainCtl.dll]  [TOSHIBA Corporation, 1, 0, 4, 0]
    [C:\WINDOWS\system32\CpuPerf.dll]  [TOSHIBA Corporation, 1, 0, 1, 0]
    [C:\WINDOWS\system32\TPSTrace.DLL]  [TOSHIBA Corporation, 1, 0, 3, 0]
    [C:\WINDOWS\system32\TPwrReg.dll]  [TOSHIBA Corporation, 1, 0, 4, 0]
    [C:\WINDOWS\system32\TPeculiarity.dll]  [, 1, 0, 0, 5]
[PID: 2952 / medeline][C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe]  [Hewlett-Packard, 2, 0, 1, 26]
[PID: 3048 / medeline][C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe]  [Sun Microsystems, Inc., 6.0.50.13]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[PID: 3136 / medeline][C:\Program Files\Common Files\Real\Update_OB\realsched.exe]  [RealNetworks, Inc., 0.1.1.45]
[PID: 3240 / medeline][C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe]  [TOSHIBA, 1, 2, 10, 0]
    [C:\Program Files\TOSHIBA\Touch and Launch\PadHook.dll]  [ , 1, 2, 2, 0]
    [C:\WINDOWS\system32\SynCOM.dll]  [Synaptics, Inc., 8.2.24 07Apr06]
    [C:\WINDOWS\system32\wpdshext.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
    [C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
    [C:\WINDOWS\system32\Audiodev.dll]  [Microsoft Corporation, 5.2.3790.3646 built by: DNSRV(bld4act)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[PID: 3660 / medeline][C:\WINDOWS\RTHDCPL.EXE]  [Realtek Semiconductor Corp., 2.0.6.6]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3756 / medeline][C:\WINDOWS\system32\TPSBattM.exe]  [TOSHIBA Corporation, 1, 0, 2, 0]
    [C:\WINDOWS\system32\TPwrCfg.DLL]  [TOSHIBA Corporation, 1, 0, 8, 0]
    [C:\WINDOWS\system32\TPwrReg.dll]  [TOSHIBA Corporation, 1, 0, 4, 0]
    [C:\WINDOWS\system32\TPSTrace.DLL]  [TOSHIBA Corporation, 1, 0, 3, 0]
[PID: 608 / medeline][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1636 / medeline][C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe]  [Google Inc., 2, 0, 301, 1654]
    [C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\gtn.dll]  [Google Inc., 3, 0, 1225, 9868]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll]  [Google Inc., 3, 0, 1225, 9868]
[PID: 2124 / medeline][C:\WINDOWS\system32\RAMASST.exe]  [Matsushita Electric Industrial Co., Ltd., 1, 1, 0, 0]
[PID: 2948 / SYSTEM][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3024 / medeline][C:\WINDOWS\system32\wscntfy.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 328 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[PID: 2800 / SYSTEM][C:\WINDOWS\system32\cidaemon.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[PID: 1172 / medeline][C:\Program Files\MSN Messenger\msnmsgr.exe]  [Microsoft Corporation, 8.1.0178.00]
    [C:\Program Files\MSN Messenger\MSNCore.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\Program Files\MSN Messenger\msidcrl40.dll]  [Microsoft Corporation, 4.100.313.1]
    [C:\Program Files\MSN Messenger\ContactsUX.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\Program Files\MSN Messenger\msgslang.8.1.0178.00.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\Program Files\MSN Messenger\msgsres.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\Program Files\MSN Messenger\lcapi.dll]  [Microsoft Corporation, 1.7.256.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [C:\Program Files\MSN Messenger\lcres.dll]  [Microsoft Corp., 1.7.109.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
    [C:\Program Files\MSN Messenger\RTMPLTFM.dll]  [Microsoft Corporation, 3.0.5774.0 built by: media_msn80]
    [C:\Program Files\MSN Messenger\MSGSWCAM.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\WINDOWS\system32\sirenacm.dll]  [Microsoft Corp., 8.1.0178.00]
    [C:\Program Files\MSN Messenger\lmcdata.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\Program Files\MSN Messenger\contact.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\Program Files\MSN Messenger\abssm.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\Program Files\MSN Messenger\dfsr.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\Program Files\MSN Messenger\usnsvcps.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\Program Files\MSN Messenger\custsat.dll]  [Microsoft Corporation, 9.0.3790.2428 (srv03_sp1_qfe.050422-1043)]
    [C:\Program Files\MSN Messenger\softphoneps.dll]  [Microsoft Corporation, 1.1.161.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\scrchpg.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\klscav.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prremote.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prloader.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prkernel.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\params.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\pxstub.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\tempfile.ppl]  [Kaspersky Lab, 8.0.0.152]
[PID: 1200 / SYSTEM][C:\Program Files\MSN Messenger\usnsvc.exe]  [Microsoft Corporation, 8.1.0178.00]
    [C:\Program Files\MSN Messenger\usnsvcps.dll]  [Microsoft Corporation, 8.1.0178.00]
[PID: 2752 / medeline][C:\Program Files\MSN Messenger\livecall.exe]  [Microsoft Corporation, 1.1.161.0]
    [C:\Program Files\MSN Messenger\msidcrl40.dll]  [Microsoft Corporation, 4.100.313.1]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\Program Files\MSN Messenger\softphone.dll]  [Microsoft Corporation, 1.1.161.0]
    [C:\Program Files\MSN Messenger\pcsexePS.dll]  [Microsoft Corporation, 1.1.161.0]
    [C:\Program Files\MSN Messenger\softphoneps.dll]  [Microsoft Corporation, 1.1.161.0]
    [C:\Program Files\MSN Messenger\lcapi.dll]  [Microsoft Corporation, 1.7.256.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [C:\Program Files\MSN Messenger\lcres.dll]  [Microsoft Corp., 1.7.109.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
    [C:\Program Files\MSN Messenger\RTMPLTFM.dll]  [Microsoft Corporation, 3.0.5774.0 built by: media_msn80]
    [C:\WINDOWS\system32\mscoree.dll]  [Microsoft Corporation, 2.0.50727.1433 (REDBITS.050727-1400)]
    [c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorie.dll]  [Microsoft Corporation, 2.0.50727.1433 (REDBITS.050727-1400)]
[PID: 3600 / medeline][C:\Program Files\eMule\emule.exe]  [http://www.emule-project.net, 0.48.0 Unicode]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\Program Files\eMule\lang\zh_TW.dll]  [http://www.emule-project.net, 0.48.0]
[PID: 4028 / medeline][C:\Program Files\BitComet\BitComet.exe]  [www.BitComet.com, 1.00]
    [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\scrchpg.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\klscav.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prremote.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prloader.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prkernel.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\params.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\pxstub.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\tempfile.ppl]  [Kaspersky Lab, 8.0.0.152]
[PID: 1220 / medeline][C:\WINDOWS\system32\rundll32.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\PROGRA~1\TENCENT\SSPlus\SPlus.dll]  [TENCENT, 5, 0, 1, 17]
[PID: 2344 / medeline][C:\Program Files\Mozilla Firefox\firefox.exe]  [Mozilla Corporation, 1.8.1.16: 2008070205]
    [C:\Program Files\Mozilla Firefox\js3250.dll]  [Netscape Communications Corporation, 4.0]
    [C:\Program Files\Mozilla Firefox\nspr4.dll]  [Netscape Communications Corporation, 4.6.8]
    [C:\Program Files\Mozilla Firefox\xpcom_core.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
    [C:\Program Files\Mozilla Firefox\plc4.dll]  [Netscape Communications Corporation, 4.6.8]
    [C:\Program Files\Mozilla Firefox\plds4.dll]  [Netscape Communications Corporation, 4.6.8]
    [C:\Program Files\Mozilla Firefox\smime3.dll]  [Mozilla Foundation, 3.11.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\nss3.dll]  [Mozilla Foundation, 3.11.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\softokn3.dll]  [Mozilla Foundation, 3.11.4 Basic ECC]
    [C:\Program Files\Mozilla Firefox\ssl3.dll]  [Mozilla Foundation, 3.11.9.0 Basic ECC]
    [C:\Program Files\Mozilla Firefox\xpcom_compat.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
    [C:\Program Files\Mozilla Firefox\components\myspell.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
    [C:\Program Files\Mozilla Firefox\components\jar50.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
    [C:\Program Files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll]  [RealPlayer, 1.0.1.57]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\Program Files\Mozilla Firefox\xpcom.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Mozilla Firefox\freebl3.dll]  [Mozilla Foundation, 3.11.4 Basic ECC]
    [C:\Program Files\Mozilla Firefox\nssckbi.dll]  [Mozilla Foundation, 1.65]
    [C:\Program Files\Mozilla Firefox\components\spellchk.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
    [C:\Program Files\Real\RealPlayer\lang\rpbrp_tw.dll]  [RealNetworks, Inc., 6.0.14.0]
[PID: 2560 / medeline][C:\WINDOWS\explorer.exe]  [Microsoft Corporation, 6.00.2900.3158 (xpsp_sp2_gdr.070615-1247)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
    [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll]  [Microsoft Corporation, 11.0.5510]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\ShellEx.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prremote.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prloader.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\MSN Messenger\fsshext.8.1.0178.00.dll]  [Microsoft Corporation, 8.1.0178.00]
    [C:\WINDOWS\system32\wpdshext.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
    [C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
    [C:\WINDOWS\system32\Audiodev.dll]  [Microsoft Corporation, 5.2.3790.3646 built by: DNSRV(bld4act)]
[PID: 832 / medeline][C:\Downloads\SRE57ec38eb.EXE]  [Smallfrogs Studio, 2.6.11.992]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[PID: 2792 / medeline][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\IEFRAME.dll]  [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
    [C:\WINDOWS\system32\IEUI.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\xmllite.dll]  [Microsoft Corporation, 1.00.1018.0]
    [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll]  [Microsoft Corporation, 11.0.5510]
    [C:\Program Files\Internet Explorer\ieproxy.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [c:\program files\google\googletoolbar1.dll]  [Google Inc., 4, 0, 1601, 5904]
    [C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
    [C:\WINDOWS\system32\ieapfltr.dll]  [Microsoft Corporation, 7.0.6000.16461]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\scrchpg.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\klscav.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prremote.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prloader.dll]  [Kaspersky Lab, 8.0.0.152]
    [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\prkernel.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\params.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\pxstub.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\tempfile.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\nfio.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\fsdrvplg.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\fssync.dll]  [Kaspersky Lab, 8.0.5.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\basegui.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\thpimpl.ppl]  [Kaspersky Lab, 8.0.0.152]
    [c:\program files\kaspersky lab\kaspersky internet security 8.0\winreg.ppl]  [Kaspersky Lab, 8.0.0.152]

==================================
File Associations
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
N/A

==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1916, C:\WINDOWS\SYSTEM32\ACS.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 644, C:\WINDOWS\SYSTEM32\TODDSRV.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2404, C:\PROGRAM FILES\TOSHIBA\TOSHIBA DIRECT DISC WRITER\DDWMON.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2492, C:\WINDOWS\AGRSMMSG.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2796, C:\WINDOWS\SYSTEM32\TPSMAIN.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2952, C:\PROGRAM FILES\HEWLETT-PACKARD\ORDERREMINDER\ORDERREMINDER.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3240, C:\PROGRAM FILES\TOSHIBA\TOUCH AND LAUNCH\PADEXE.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3660, C:\WINDOWS\RTHDCPL.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3756, C:\WINDOWS\SYSTEM32\TPSBATTM.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2124, C:\WINDOWS\SYSTEM32\RAMASST.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3600, C:\PROGRAM FILES\EMULE\EMULE.EXE]

==================================
API HOOK
N/A

==================================
Hidden Process
    [225] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 8.0\avp.exe

==================================

TOP

shoo

超级版主

Rank: 8Rank: 8

UID
33692 
帖子
1474 
精华
4 
经验
11535 点 
威望
903 点 
维修币
19058 ¥ 
魅力
3407  
阅读权限
250 
2# 发表于 2008-7-18 12:36  只看该作者
你扫的日志有问题

下载执行SREng最新版重新扫个日志上来
有中病毒症状的进...(附SREng简要用法)

[原创]流行病*毒专杀以及一些系统优化小工具

如果有电脑维护、病毒清理、论坛管理方面的问题,都可以发消息给我:)

TOP

clarklee1

维修工人

Rank: 2

UID
41730 
帖子
26 
精华
0 
经验
28 点 
威望
24 点 
维修币
31 ¥ 
魅力
50  
阅读权限
10 
3# 发表于 2008-7-18 22:56  只看该作者
tks !  shoo  !
I have use the recovery cd  reload my xp system .

THANK YOU!

TOP

clarklee1

维修工人

Rank: 2

UID
41730 
帖子
26 
精华
0 
经验
28 点 
威望
24 点 
维修币
31 ¥ 
魅力
50  
阅读权限
10 
4# 发表于 2008-7-18 22:58  只看该作者
HI  SHOO
May  I  ask you for qq number.

TOP

shoo

超级版主

Rank: 8Rank: 8

UID
33692 
帖子
1474 
精华
4 
经验
11535 点 
威望
903 点 
维修币
19058 ¥ 
魅力
3407  
阅读权限
250 
5# 发表于 2008-7-18 23:18  只看该作者
还是不行啊,你的是繁体版的XP???

怎么日志中有乱码,而且路径也不对

看不了日志,没办法帮你分析啊,你下载的是我给你的地址下载的简体中文版的SREng么???

日志还是看不了

如果是输入法出了问题,可以尝试下面的操作:

使用正常的ctfmon.exe文件覆盖系统中的ctfmon.exe文件就OK了,路径:c:\windows\system32\ctfmon.exe



[ 本帖最后由 shoo 于 2008-7-18 23:21 编辑 ]
附件: 您所在的用户组无法下载或查看附件
有中病毒症状的进...(附SREng简要用法)

[原创]流行病*毒专杀以及一些系统优化小工具

如果有电脑维护、病毒清理、论坛管理方面的问题,都可以发消息给我:)

TOP

clarklee1

维修工人

Rank: 2

UID
41730 
帖子
26 
精华
0 
经验
28 点 
威望
24 点 
维修币
31 ¥ 
魅力
50  
阅读权限
10 
6# 发表于 2008-7-18 23:25  只看该作者
hi   我已經用還原光碟,還原xp系統了

還是大大的謝謝妳

qq: 547437421

TOP

‹‹ 上一主题 | 下一主题 ››
发新话题
当前时区 GMT+8, 现在时间是 2008-12-2 22:50
清除 Cookies - 联系我们 - 电脑维修网 - Archiver - WAP - TOP - 界面风格

Processed in 0.032060 second(s), 6 queries, Gzip enabled.

Designed by Deepseath.

Discuz!

Powered by Discuz! 6.0.0 © 2001-2007 Comsenz Inc.

渝ICP备06010025号