|
|
|||||||
| 論壇說明 |
|
歡迎您來到『史萊姆論壇』 ^___^ 您目前正以訪客的身份瀏覽本論壇,訪客所擁有的權限將受到限制,您可以瀏覽本論壇大部份的版區與文章,但您將無法參與任何討論或是使用私人訊息與其他會員交流。若您希望擁有完整的使用權限,請註冊成為我們的一份子,註冊的程序十分簡單、快速,而且最重要的是--註冊是完全免費的! 請點擊這裡:『註冊成為我們的一份子!』 |
 |
|
|
主題工具 | 顯示模式 |
|
|
2009-07-07, 06:35 AM
|
#1 (permalink) |
|
註冊會員
|
[Do&wnload selected by Orbit]
<res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203, N/A> [Down&load all by Orbit] <res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202, N/A> [使用 FlashGet 下載] <E:\暫存資料夾\FlashGet\FlashGet2005v1.81\FlashGet2005v1.81多國語言免安裝版\jc_link.htm, N/A> [使用快?3下?] <, > [使用快?3下?全部?接] <, > [全部使用 FlashGet 下載] <E:\暫存資料夾\FlashGet\FlashGet2005v1.81\FlashGet2005v1.81多國語言免安裝版\jc_all.htm, N/A> [匯出至 Microsoft Office Excel(&X)] <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A> ================================== 正在運行的進程 [PID: 1176 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 1248 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 1272 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\WINDOWS\system32\klogon.dll] [Kaspersky Lab, 8.0.0.152] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [PID: 1320 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [PID: 1332 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\system32\nl_msgc.dll] [N/A, ] [PID: 1508 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [PID: 1628 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\system32\nl_msgc.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [PID: 1764 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\System32\nl_msgc.dll] [N/A, ] [C:\WINDOWS\System32\COMRes.dll] [N/A, ] [c:\windows\system32\wins\itqlwurey.dll] [Microsoft Corporation., 4.2.2.73] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] [PID: 1884 / NETWORK SERVICE][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\System32\nl_msgc.dll] [N/A, ] [PID: 304 / LOCAL SERVICE][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [PID: 532 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] [C:\WINDOWS\system32\hpzsnt07.dll] [HP, 2,140,0,0] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [PID: 632 / Administrator][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\scrchpg.dll] [Kaspersky Lab, 7.0.1.325] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\MqppW9KYn.fon] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\system32\EN7hzSreCat8.dll] [N/A, ] [C:\WINDOWS\system32\ybM7kf9heVHDx.dll] [N/A, ] [C:\WINDOWS\system32\qB5BKZy7vR5m.dll] [N/A, ] [C:\WINDOWS\system32\A0C86020.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\dhDhwS7fFW.dll] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\122B901E.dll] [N/A, ] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\system32\nl_msgc.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0] [C:\WINDOWS\system32\igfxpph.dll] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\msdmo.dll] [, ] [C:\Program Files\K-Lite Codec Pack\ffdshow\ffdshow.ax] [, 1.0.5.2945] [PID: 712 / LOCAL SERVICE][C:\WINDOWS\System32\SCardSvr.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [PID: 812 / Administrator][C:\WINDOWS\system32\ctfmon.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [PID: 1120 / Administrator][C:\WINDOWS\system32\igfxtray.exe] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\WINDOWS\system32\igfxdev.dll] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\igfxres.dll] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\igfxress.dll] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [PID: 1132 / Administrator][C:\WINDOWS\system32\hkcmd.exe] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\WINDOWS\system32\igfxdev.dll] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [C:\WINDOWS\system32\igfxhk.dll] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system32\igfxres.dll] [Intel Corporation, 3.0.0.4342] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [PID: 1172 / LOCAL SERVICE][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [PID: 1204 / Administrator][C:\Program Files\PPStream\ppsap.exe] [PPStream Inc, 1, 0, 11, 171] [C:\Program Files\PPStream\WS2HELP.dll] [N/A, ] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [c:\Program Files\PPStream\1.1.0.2680\vodnet.dll] [PPStream Inc., 1, 0, 11, 226] [c:\Program Files\PPStream\1.1.0.2680\vodres.dll] [PPStream Inc., 1, 0, 11, 226] [c:\Program Files\PPStream\1.1.0.2680\ppssg.dll] [PPStream Inc., 1, 0, 11, 192] [c:\Program Files\PPStream\1.1.0.2680\fds.dll] [PPStream Inc., 1, 0, 0, 101] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\system32\nl_msgc.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] [PID: 1472 / SYSTEM][C:\WINDOWS\sYSTEM32\SVCHOST.EXE] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [c:\windows\system32\360svcsystem.dll] [360安全中心, 0, 0, 0, 0] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\sYSTEM32\nl_msgc.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] [PID: 1524 / SYSTEM][C:\WINDOWS\system32\drivers\CDAC11BA.EXE] [Macrovision, 4.20.0] [PID: 1796 / SYSTEM][C:\Program Files\Java\jre6\bin\jqs.exe] [Sun Microsystems, Inc., 6.0.130.3] [C:\Program Files\Java\jre6\bin\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\system32\nl_msgc.dll] [N/A, ] [PID: 1860 / Administrator][C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe] [Hewlett-Packard, 1, 0, 0, 1] [C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpodvd08.dll] [Hewlett-Packard, 1, 0, 0, 1] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxm08.dll] [Hewlett-Packard Co., 4.2.0.127] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [PID: 1924 / Administrator][C:\Program Files\Jibreel Inc\AntiCrash 5.0\AntiCrash.exe] [Jibreel Incorporated., 5.00] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\WINDOWS\system32\VB6CHT.DLL] [Microsoft Corporation, 6.00.8988] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [C:\WINDOWS\system32\ybM7kf9heVHDx.dll] [N/A, ] [c:\program files\jibreel inc\anticrash 5.0\data\vbsystray.ocx] [Core Systems, 1.00.0012] [c:\program files\jibreel inc\anticrash 5.0\data\anticrashocx.ocx] [Jibreel Inc., 1.00] |
|
送花文章: 63,
|
|
有 2 位會員向 wulom 送花:
|
|
2009-07-07, 06:36 AM
|
#2 (permalink) |
|
註冊會員
|
[PID: 1940 / Administrator][C:\Program Files\Common Files\System\QQWbYS.exe] [N/A, ]
[C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\Program Files\Common Files\System\debug.obj] [N/A, ] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\system32\nl_msgc.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] [PID: 2028 / SYSTEM][C:\Program Files\Kingsoft\KAC\Service\kaccore.exe] [Kingsoft Corporation, 2009,06,05,614] [C:\Program Files\Kingsoft\KAC\Service\WS2HELP.dll] [N/A, ] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kingsoft\KAC\Service\errorreport.dll] [Kingsoft Corporation, 2008,07,23,168] [C:\Program Files\Kingsoft\KAC\Service\dbghelp.dll] [Microsoft Corporation, 6.5.0003.7 (vbl_core_fbrel(jshay).050527-1915)] [C:\Program Files\Kingsoft\KAC\Service\corehelper.dll] [Kingsoft Corporation, 2009,05,12,579] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\system32\nl_msgc.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] [PID: 328 / Administrator][C:\WINDOWS\system32\conime.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [PID: 764 / Administrator][C:\WINDOWS\Integrator.exe] [Dachshund Software, 1.05.0001] [C:\WINDOWS\system32\MAGE.DLL] [Dachshund Software, 1.0] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\WINDOWS\system32\VB6CHT.DLL] [Microsoft Corporation, 6.00.8988] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [PID: 1232 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\WINDOWS\System32\COMRes.dll] [N/A, ] [PID: 2600 / Administrator][C:\WINDOWS\system32\notepad.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [C:\WINDOWS\system32\ybM7kf9heVHDx.dll] [N/A, ] [C:\WINDOWS\system32\LIUNT.IME] [Microsoft Corporation, 4.00.950] [C:\WINDOWS\system32\JAPENESE.IME] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 2812 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\System32\COMRes.dll] [N/A, ] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\System32\nl_msgc.dll] [N/A, ] [PID: 3272 / Administrator][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\scrchpg.dll] [Kaspersky Lab, 7.0.1.325] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\Program Files\Orbitdownloader\orbitcth.dll] [Orbitdownloader.com, 2, 4, 0, 2] [C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll] [Yahoo! Inc., 2007, 5, 30, 1] [C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll] [BitComet, 20071130] [C:\Program Files\Internet Explorer\IETimber\IETimber.dll] [北京世?乾坤?件, V02] [C:\Documents and Settings\Administrator\Application Data\FlashGetBHO\FlashGetBHO31.dll] [FlashGet, 2, 5, 0, 1037] [C:\Program Files\Java\jre6\bin\jp2ssv.dll] [Sun Microsystems, Inc., 6.0.130.3] [C:\Program Files\Java\jre6\bin\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll] [Sun Microsystems, Inc., 6.0.130.3] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\system32\nl_msgc.dll] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [C:\WINDOWS\system32\ybM7kf9heVHDx.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] [C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx] [Adobe Systems, Inc., 10,0,22,87] [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0] [PID: 3684 / Administrator][C:\WINDOWS\system32\wuauclt.exe] [(Verified) Microsoft Corporation, 7.2.6001.788 (winmain_oob/wu_wsuswlc(wmbla).081016-1330)] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [C:\WINDOWS\system32\ybM7kf9heVHDx.dll] [N/A, ] [PID: 2328 / Administrator][C:\Program Files\WinRAR\WinRAR.exe] [N/A, ] [C:\WINDOWS\system32\RhdwE8NYdbqQ.dll] [N/A, ] [C:\Program Files\WinRAR\WS2HELP.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [C:\WINDOWS\system32\ybM7kf9heVHDx.dll] [N/A, ] [C:\WINDOWS\fonts\MqppW9KYn.fon] [N/A, ] [C:\WINDOWS\system32\EN7hzSreCat8.dll] [N/A, ] [C:\WINDOWS\system32\qB5BKZy7vR5m.dll] [N/A, ] [C:\WINDOWS\system32\A0C86020.dll] [N/A, ] [C:\WINDOWS\system32\dhDhwS7fFW.dll] [N/A, ] [C:\WINDOWS\system32\122B901E.dll] [N/A, ] [PID: 2576 / Administrator][C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.734\SREngLdr.EXE] [Smallfrogs Studio, 2.7.1.1261] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [PID: 2612 / Administrator][C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.734\SRE7c1bddb.EXE] [Smallfrogs Studio, 2.7.1.1261] [C:\WINDOWS\system32\COMRes.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll] [Kaspersky Lab, 7.0.5.325] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.163] [C:\WINDOWS\system\SHELLEX.DLL] [N/A, ] [C:\WINDOWS\system32\skcfujQ5EDN.dll] [N/A, ] [C:\WINDOWS\system32\76B9BA7A.dll] [N/A, ] [C:\WINDOWS\system32\xg4hAPNygs29.dll] [N/A, ] [C:\WINDOWS\system32\dktXFYbT3G.dll] [N/A, ] [C:\WINDOWS\system32\GsfMwDWD3.dll] [N/A, ] [C:\WINDOWS\fonts\tY5UFS434YYd.fon] [N/A, ] [C:\WINDOWS\fonts\uXUsF2RrQy.fon] [N/A, ] [C:\WINDOWS\fonts\A97CRaCB.fon] [N/A, ] [C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon] [N/A, ] [C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon] [N/A, ] [C:\WINDOWS\system32\ybM7kf9heVHDx.dll] [N/A, ] [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.734\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\adialhk.dll] [Kaspersky Lab, 7.0.1.325] [C:\Program Files\NetLimiter\nl_lsp.dll] [N/A, ] [C:\WINDOWS\system32\nl_msgc.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll] [Kaspersky Lab, 7.0.1.325] ================================== 文件關聯 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\system32\winhlp32.exe %1] .INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 NL MSAFD Tcpip [TCP/IP] C:\Program Files\NetLimiter\nl_lsp.dll(, N/A) NL MSAFD Tcpip [UDP/IP] C:\Program Files\NetLimiter\nl_lsp.dll(, N/A) NL MSAFD Tcpip [RAW/IP] C:\Program Files\NetLimiter\nl_lsp.dll(, N/A) NL RSVP UDP Service Provider C:\Program Files\NetLimiter\nl_lsp.dll(, N/A) NL RSVP TCP Service Provider C:\Program Files\NetLimiter\nl_lsp.dll(, N/A) NL MSAFD Tcpip [TCP/IPv6] C:\Program Files\NetLimiter\nl_lsp.dll(, N/A) NL MSAFD Tcpip [UDP/IPv6] C:\Program Files\NetLimiter\nl_lsp.dll(, N/A) NL MSAFD Tcpip [RAW/IPv6] C:\Program Files\NetLimiter\nl_lsp.dll(, N/A) NL LSP C:\Program Files\NetLimiter\nl_lsp.dll(, N/A) ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ================================== 進程特權掃描 特殊特權被允許: SeDebugPrivilege [PID = 1860, C:\PROGRAM FILES\HEWLETT-PACKARD\DIGITAL IMAGING\BIN\HPOTDD01.EXE] 特殊特權被允許: SeLoadDriverPrivilege [PID = 1860, C:\PROGRAM FILES\HEWLETT-PACKARD\DIGITAL IMAGING\BIN\HPOTDD01.EXE] 特殊特權被允許: SeDebugPrivilege [PID = 1924, C:\PROGRAM FILES\JIBREEL INC\ANTICRASH 5.0\ANTICRASH.EXE] 特殊特權被允許: SeLoadDriverPrivilege [PID = 1924, C:\PROGRAM FILES\JIBREEL INC\ANTICRASH 5.0\ANTICRASH.EXE] 特殊特權被允許: SeDebugPrivilege [PID = 1940, C:\PROGRAM FILES\COMMON FILES\SYSTEM\QQWBYS.EXE] 特殊特權被允許: SeLoadDriverPrivilege [PID = 1940, C:\PROGRAM FILES\COMMON FILES\SYSTEM\QQWBYS.EXE] 特殊特權被允許: SeDebugPrivilege [PID = 764, C:\WINDOWS\INTEGRATOR.EXE] 特殊特權被允許: SeLoadDriverPrivilege [PID = 764, C:\WINDOWS\INTEGRATOR.EXE] 特殊特權被允許: SeDebugPrivilege [PID = 2328, C:\PROGRAM FILES\WINRAR\WINRAR.EXE] 特殊特權被允許: SeLoadDriverPrivilege [PID = 2328, C:\PROGRAM FILES\WINRAR\WINRAR.EXE] 特殊特權被允許: SeDebugPrivilege [PID = 2576, C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\RAR$EX00.734\SRENGLDR.EXE] 特殊特權被允許: SeLoadDriverPrivilege [PID = 2576, C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\RAR$EX00.734\SRENGLDR.EXE] ================================== 計畫任務 [已啟用] WGASetup.job C:\WINDOWS\system32\KB905474\wgasetup.exe [已啟用] FRU Task #Hewlett-Packard#hp psc 1200 series#1122421761.job C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe ================================== API HOOK RVA 錯誤: LoadLibraryA (危險等級: 高, 被下麵模組所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 錯誤: LoadLibraryExA (危險等級: 高, 被下麵模組所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 錯誤: LoadLibraryExW (危險等級: 高, 被下麵模組所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 錯誤: LoadLibraryW (危險等級: 高, 被下麵模組所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 錯誤: GetProcAddress (危險等級: 高, 被下麵模組所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) ================================== 隱藏進程 N/A ================================== [/code] |
|
|
送花文章: 63,
|
|
向 wulom 送花的會員:
|
|
2009-07-07, 07:38 AM
|
#3 (permalink) |
|
長老會員
 
|
你的 log 真是令人傻眼
 族繁不及備載, 沒辦法一一列出要刪除或修復的項目 1 執行 System Repair Engineer 在 "啟動專案" => "註冊表" 中刪除下列項目: <{750DBD56-AF03-47CB-BB28-BBF312B059F9}><C:\WINDOWS\fonts\xbpCfXnG6wUVF.fon> [] <{AC933D46-96A7-4670-9292-E7C4126C071E}><C:\WINDOWS\fonts\wQ7KbaNZKMe5G4qZ.fon> [] <{8708994F-1758-4C2C-9A3F-FA22D6CCCB41}><C:\WINDOWS\fonts\A97CRaCB.fon> [] <{11B10F7F-FB23-466D-BDC3-9591CF02EC17}><C:\WINDOWS\fonts\uXUsF2RrQy.fon> [] <{CD95107F-52A5-42A4-9914-18949993E798}><C:\WINDOWS\fonts\tY5UFS434YYd.fon> [] <{51F88A10-09E6-4763-948F-1C8861003255}><C:\WINDOWS\fonts\MqppW9KYn.fon> [] <{F1C149F4-380C-4F8A-B87E-7393732B27C1}><C:\WINDOWS\system32\GsfMwDWD3.dll> [] <{FCA4D3BE-C6C7-4F4D-9CBD-CB2666647ACA}><C:\WINDOWS\system32\EN7hzSreCat8.dll> [] <{E45C0FF6-B170-43B2-B897-6D02C43A2E18}><C:\WINDOWS\system32\ybM7kf9heVHDx.dll> [] <{71C4F360-FF1E-413E-B17A-0CA267A78E97}><C:\WINDOWS\system32\qB5BKZy7vR5m.dll> [] <{A0C86020-5935-4B87-B20E-0B656D450264}><C:\WINDOWS\system32\A0C86020.dll> [] <{39C1640B-E010-48CF-88A1-0D17A33AF9EA}><C:\WINDOWS\system32\dktXFYbT3G.dll> [] <{AB900155-F1F0-4165-9E73-67BC13BBCE89}><C:\WINDOWS\system32\xg4hAPNygs29.dll> [] <{76B9BA7A-81D0-4979-8598-8471F2AB5186}><C:\WINDOWS\system32\76B9BA7A.dll> [] <{36AC68E6-0C26-4D39-B98E-54B49DAB6BAA}><C:\WINDOWS\system32\dhDhwS7fFW.dll> [] <{76CBCF38-0583-44C7-A1AE-D463DFE625EC}><C:\WINDOWS\system32\skcfujQ5EDN.dll> [] <{56441985-D4E7-4D1F-BA3A-000C647FAA00}><C:\WINDOWS\system32\RhdwE8NYdbqQ.dll> [] <{122B901E-493F-4AD9-BC69-7DE8C3E52FCC}><C:\WINDOWS\system32\122B901E.dll> [] 2 重新開機, 以安全模式登入windows, 然後用你的卡巴掃描整個硬碟, 刪除所有感染的檔案 3 再重新開機, 此時可能會出現錯誤訊息(也可能沒有), 但不至於影響使用 hijackthis 應該能用了, 掃描一次, 把 log 發上來 (System Repair Engineer 的 log 實在太囉唆了....) |
|
__________________ 刑天舞干戚
|
|
|
|
送花文章: 6,
+10 金幣
|
|
有 3 位會員向 plunderer 送花:
|
|
2009-07-08, 06:01 AM
|
#4 (permalink) | |
|
註冊會員
|
引用:
首先是我執行 System Repair Engineer勾選那些您說要刪除的檔案時,完全一個也刪不掉,刪了以後,病毒好像就會發作自動把該軟體關掉。我後來上網找了專掃特洛伊木馬的網頁、還有用卡巴斯基、以及一些去木馬軟體,通通都有捕捉到這些病毒群,依其軟體深入掃描性不同都至少有數十到上百個的錯誤檔案被捉出,可是我一旦要按刪除,如果是網頁,按的瞬間所有網頁就會全自動立即被關掉。如果是軟體,就會立即連explorer一起被清掉。 後來我重開機,病毒就發作了。一進入開機畫面,整個螢幕就變成像是霓虹燈一樣,迅速亮光七彩的閃動,然後用滑鼠一點,就會出現如下訊息:  我按確定後,就會自動出現一個「偽」的簡體字的線上購買卡巴斯基序號的網頁。這整個錯誤訊息以至於網頁我想大概都是病毒發作現象的一部份吧… 從此之後,固定每兩分鐘,整個全螢幕就會不斷七彩迅速換色閃爍,我得一直重覆的按確定,然後過兩分鐘又一樣的情形發生… 我c碟的資料是已經都備份完畢了,請問前輩目前除了重灌的方法,還有其它任何可能的挽救解毒辦法嗎? 這是此病毒連結出來的"偽"卡巴斯基購買畫面擷取照:  附帶一提,這病毒好像會限制開啟及安裝新的防毒軟體 我想開卡巴來掃毒,結果卻出現無法開啟的訊息… 這好像是一種新的變種病毒,是最近一兩個月才出來的,我剛才搜尋網路在"百度知道"裡"正在發問"中,看到有人和我一模一樣的典型情形: 待解决 救命!!电脑中毒了 悬赏分:30 - 离问题结束还有 14 天 15 小时 电脑先是彩屏 就是不断的红黄蓝等颜色一直跳 然后弹出个提示框说电脑严重中毒 必须立即使用最新杀毒清除病毒 点了确定后就弹出一个网站~http://...... 上面写的是下载卡巴斯基 用杀毒软件试了 删不掉!! 求高手帮忙!! 此帖於 2009-07-08 08:36 AM 被 wulom 編輯. |
|
|
|
送花文章: 63,
|
|
有 2 位會員向 wulom 送花:
|
|
2009-07-08, 12:43 PM
|
#5 (permalink) |
|
長老會員
|
API HOOK
RVA 錯誤: LoadLibraryA (危險等級: 高, 被下麵模組所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 錯誤: LoadLibraryExA (危險等級: 高, 被下麵模組所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 錯誤: LoadLibraryExW (危險等級: 高, 被下麵模組所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 錯誤: LoadLibraryW (危險等級: 高, 被下麵模組所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 錯誤: GetProcAddress (危險等級: 高, 被下麵模組所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) ---------------------------------------------------------------------- 有問題的是上面這個 kilf.sys 這是個假的卡巴斯基檔案,會置換掉卡巴真的檔案 趨勢的ICEEAN清的掉,清掉後重開機時 卡巴自動更新會自動在裝回正確的 上個月才剛清一台電腦中這隻病毒 |
|
__________________ 常被電腦玩 |
|
|
|
送花文章: 1413,
|
|
有 3 位會員向 october_pc 送花:
|
|
2009-07-08, 09:35 PM
|
#6 (permalink) | ||
|
註冊會員
|
引用:
我安裝了您說的趨勢的那個軟體,使用途中,掃到約75%時,就卡死住了,系統是沒有因此當掉,但不管放置多久,甚至數個小時,就變成沒有回應了。再試了幾次也是一樣會卡死…而沒有辦法解開那團難纏的病毒。  引用:
1.那些異常的註冊表如果要做任何的修改或刪除,均會出現「無法刪除」、「死當」、或「強制關閉該防毒程式的」任一種情形,等於是那一團壞檔案至今仍是完整的存在於c槽中,無法動其一根汗毛。 2.我欲以安全模式進入windows,不論是選擇單純的安全模式、或是含指令、含網路功能的安全模式,按確定後,電腦像dos模式那樣自動執行一些程序後的五秒鐘內,就一定會跳入英文藍底白字的死當畫面裡。試了很多次都一樣。現在那台電腦已經變成完全無法開機了,只能暫時用另一台電腦上網… 到這樣田地,厲害的前輩先進們不知還有無其它可嘗試的解決辦法? |
||
|
|
送花文章: 63,
|
|
有 2 位會員向 wulom 送花:
|
|
2009-07-08, 09:58 PM
|
#7 (permalink) |
|
長老會員
|
1
用 Wsyscheck http://mafia.myweb.hinet.net/file/Wsyscheck.zip "Tools" => "Fix Boot Safe Mod" 修復安全模式 重新開機, 看能不能進入安全模式 2, 若還是不能進入安全模式, 就用 XueTr http://mafia.myweb.hinet.net/file/XueTr.7z "文件" 列表中, 找出欲刪除的檔案, 按右鍵, "強制刪除" P.S 這兩個都是強效工具, 若不清楚用途, 切勿使用其他功能 |
|
|
送花文章: 6,
|
|
有 3 位會員向 plunderer 送花:
|
|
2009-07-08, 04:36 PM
|
#8 (permalink) |
|
長老會員
|
病毒不管新舊, 都能解決的, 重點是方法
上述步驟 1 只要能刪除 "註冊表" 值就行了 步驟 2 比較關鍵, 要以 安全模式登入windows 再以卡巴掃描, 才能刪除 其實你有卡巴了, 其他掃木馬軟體就多餘了 klif.sys 暫時別管它, 那不一定有問題 若卡巴在安全模式下無法掃描, 上述列出那些有問題的檔案在安全模式下也應該能直接手動刪除 若安全模式下還是不能做任何事, 那就用 winpe 光碟(必備, 修復系統很有用)開機, 再以光碟內的防毒軟體掃描硬碟 事實上你的問題不大, 只是處理的程序比較複雜, 要用上的工具軟體也比較多, 在論壇上沒辦法一步一步教你 |
|
|
送花文章: 6,
|
|
有 3 位會員向 plunderer 送花:
|
|
2009-07-11, 11:46 AM
|
#9 (permalink) |
|
註冊會員
|
這兩天用了a-squared Free掃含有風險的程式,cookies,及註冊表。一共掃到了近200個的木馬病毒檔案存在在各種路徑裡,原本單純使用軟體的刪除功能是刪不掉的,但plunderer前輩介紹的強效軟體XueTr真的很好用,我將它們全部依序手動刪除,並都使用了「強制結束進程並刪掉文件」的選項,真的不拖泥帶水,一刪就掉;刪完後發現這病毒發作的症狀也就消失得一乾二淨了。全刪完後,又用了數套軟體進行了全機掃描,這次連october大大推荐的趨勢的ICEEAN也可以成功跑完了。
所以困擾我數天的這頑強的病毒總算徹底清掉了,這個主題的核心部份,這次終於「已解決」了。再這裡要深深的感謝熱心提供、指點我各種實用救急軟體和處方的前輩、大大們。這中間有一點是plunderer前輩敏銳的發現我原本以為解決了的問題其實尚未解決,持續耐心的敘述很多解毒知識,並讓我能很快燒一塊winpe光碟進入系統解除安全模式,然後再用XueTr清除掃到的毒。因此最佳解答的部份,就選給那篇winpe提供點的文章,做為代表。 希望未來仍能有機會再向各位高手、達人請益電腦知識! |
|
|
送花文章: 63,
|
|
向 wulom 送花的會員:
|
混合模式
