2007-08-04,17:50:21
System Repair Engineer 2.5.16.900
Smallfrogs ([url=http://www.KZTechs.com]http://www.KZTechs.com[/url])
Windows XP Professional Service Pack 2 (Build 2600) - 管理许可权用户 - 完整功能
以下内容被选中:
所有的启动项目(包括注册表、开机档案夹、服务等)
流览器载入项
正在运行的进程(包括进程模组资讯)
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
进程特权扫描
启动专案
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<SpeedswitchXP><C:\Program Files\SpeedswitchXP\SpeedswitchXP.exe> [Christian Diefer]
<MsnMsgr><"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background> [(Verified)Microsoft Corporation]
<H/PC Connection Agent><"C:\Program Files\Microsoft ActiveSync\Wcescomm.exe"> [(Verified)Microsoft Corporation]
<bgswitch><bgswitch.exe> []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Windows Publisher]
<IgfxTray><; C:\WINDOWS\system32\igfxtray.exe> [(Verified)Microsoft Windows Publisher]
<HotKeysCmds><C:\WINDOWS\system32\hkcmd.exe> [(Verified)Microsoft Windows Publisher]
<Persistence><C:\WINDOWS\system32\igfxpers.exe> [(Verified)Microsoft Windows Publisher]
<IntelZeroConfig><"C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"> [Intel Corporation]
<IntelWireless><"C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless> [Intel Corporation]
<LoadFUJ02E3><C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe> [FUJITSU LIMITED]
<IndicatorUtility><C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe> [FUJITSU LIMITED]
<Apoint><C:\Program Files\Apoint2K\Apoint.exe> [(Verified)Microsoft Windows Publisher]
<OmniPass><; C:\Program Files\Softex\OmniPass\scureapp.exe> []
<LoadFujitsuQuickTouch><C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe> [FUJITSU LIMITED]
<LoadBtnHnd><C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe> [FUJITSU LIMITED]
<High Definition Audio Property Page Shortcut><HDAShCut.exe> [(Verified)Microsoft Windows XP Publisher]
<RTHDCPL><; RTHDCPL.EXE> [(Verified)Microsoft Windows Publisher]
<Alcmtr><; ALCMTR.EXE> [(Verified)Microsoft Windows Publisher]
<AGRSMMSG><AGRSMMSG.exe> [(Verified)Microsoft Windows Publisher]
<{0228e555-4f9c-4e35-a3ec-b109a192b4c2}><C:\Program Files\Google\Gmail Notifier\gnotify.exe> [Google Inc.]
<V-Gear PocketTV Video><; C:\Program Files\V-Gear PocketTV Video\rmc.exe> []
<SpeedService><; C:\Program Files\SpeedVCR\spService.exe> []
<NeroCheck><; C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]
<SmartMon><"C:\Program Files\IT\I-ATM\SmartMON.exe"> []
<BePCSC><"C:\Program Files\IT\I-ATM\BePCSC.exe"> []
<I-ATM><; "C:\Program Files\IT\I-ATM\i-atm.exe"> [InfoThink Technology]
<CJIMETIPSYNC><C:\Program Files\Common Files\Microsoft Shared\IME\IMTC65\CHANGJIE\CINTLCFG.EXE /CJIMETIPSync> [(Verified)Microsoft Corporation]
<PHIMETIPSYNC><C:\Program Files\Common Files\Microsoft Shared\IME\IMTC65\PHONETIC\TINTLCFG.EXE /PHIMETIPSync> [(Verified)Microsoft Corporation]
<StormCodec_Helper><"C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti> []
<FinePrint 分派器 v5><"C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" /source=HKLM> [FinePrint Software, LLC]
<Kernel and Hardware Abstraction Layer><KHALMNPR.EXE> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<bgswitch><bgswitch.exe> []
<nod32kui><"C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE> [Eset ]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
<WinlogonNotify: igfxcui><igfxdev.dll> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OPXPGina]
<WinlogonNotify: OPXPGina><C:\Program Files\Softex\OmniPass\opxpgina.dll> []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
<Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<Address Book 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [N/A]
==================================
开机档案夹
[Adobe Reader Speed Launch]
<C:\Documents and Settings\All Users\「开始」功能表\程式集\启动\Adobe Reader Speed Launch.lnk --> C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE [Adobe Systems Incorporated]><N>
[MemTurbo]
<C:\Documents and Settings\Administrator\「开始」功能表\程式集\启动\MemTurbo.lnk --> C:\PROGRA~1\MEMTUR~1\MemTurbo.exe [SoftwareOnline.com, Inc.]><N>
[SetPoint]
<C:\Documents and Settings\Administrator\「开始」功能表\程式集\启动\SetPoint.lnk --> C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe [Logitech Inc.]><N>
==================================
服务
[Agere Modem Call Progress Audio / AgereModemAudio][Running/Auto Start]
<C:\WINDOWS\system32\agrsmsvc.exe><Agere Systems>
[Intel(R) PROSet/Wireless Event Log / EvtEng][Running/Auto Start]
<C:\Program Files\Intel\Wireless\Bin\EvtEng.exe><Intel Corporation>
[Windows Presentation Foundation Font Cache 3.0.0.0 / FontCache3.0.0.0][Stopped/Manual Start]
<C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe><Microsoft Corporation>
[Windows CardSpace / idsvc][Stopped/Manual Start]
<"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"><Microsoft Corporation>
[Net.Tcp Port Sharing Service / NetTcpPortSharing][Stopped/Disabled]
<"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"><Microsoft Corporation>
[NOD32 Kernel Service / NOD32krn][Running/Auto Start]
<"C:\Program Files\Eset\nod32krn.exe"><Eset>
[O2Micro Flash Memory / O2Flash][Running/Auto Start]
<C:\WINDOWS\system32\o2flash.exe><N/A>
[Softex OmniPass Service / omniserv][Running/Auto Start]
<C:\Program Files\Softex\OmniPass\Omniserv.exe><Softex Inc.>
[PDEngine / PDEngine][Stopped/Manual Start]
<"C:\Program Files\Raxco\PerfectDisk\PDEngine.exe"><Raxco Software, Inc.>
[PDScheduler / PDSched][Running/Auto Start]
<"C:\Program Files\Raxco\PerfectDisk\PDSched.exe"><Raxco Software, Inc.>
[Pml Driver HPZ12 / Pml Driver HPZ12][Running/Auto Start]
<C:\WINDOWS\system32\HPZipm12.exe><HP>
[Intel(R) PROSet/Wireless Registry Service / RegSrvc][Running/Auto Start]
<C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe><Intel Corporation>
[Intel(R) PROSet/Wireless Service / S24EventMonitor][Running/Auto Start]
<C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe><Intel Corporation>
[StarWind iSCSI Service / StarWindService][Running/Auto Start]
<C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe><Rocket Division Software>
==================================
驱动程式
[AEGIS Protocol (IEEE 802.1x) v3.5.3.0 / AegisP][Running/Auto Start]
<system32\DRIVERS\AegisP.sys><Meetinghouse Data Communications>
[Agere Systems Soft Modem / AgereSoftModem][Running/Manual Start]
<system32\DRIVERS\AGRSM.sys><Agere Systems>
[AMON / AMON][Running/Auto Start]
<\SystemRoot\system32\drivers\amon.sys><Eset>
[Alps Pointing-device Filter Driver / ApfiltrService][Running/Manual Start]
<system32\DRIVERS\Apfiltr.sys><Alps Electric Co., Ltd.>
[AuthenTec TruePrint USB Driver (AES2500) / ATSWPDRV][Running/Manual Start]
<System32\Drivers\ATSwpDrv.sys><AuthenTec, Inc.>
[Broadcom NetXtreme Gigabit Ethernet / b57w2k][Running/Manual Start]
<system32\DRIVERS\b57xp32.sys><Broadcom Corporation>
[BtnHnd / BtnHnd][Running/Auto Start]
<\??\C:\Program Files\Fujitsu\BtnHnd\BtnHnd.sys><FUJITSU LIMITED>
[V-Gear PocketTV Video / DCamUSBEMPIA][Running/Manual Start]
<system32\DRIVERS\emDevice.sys><eMPIA Technology, Inc.>
[EMVSCARD / EMVSCARD][Stopped/Manual Start]
<System32\Drivers\EMVSCARD.sys><USB Smart Card Reader>
[Fujitsu FUJ02B1 Device Driver / FUJ02B1][Running/Manual Start]
<system32\DRIVERS\FUJ02B1.sys><FUJITSU LIMITED>
[Fujitsu FUJ02E3 Device Driver / FUJ02E3][Running/Manual Start]
<system32\DRIVERS\FUJ02E3.sys><FUJITSU LIMITED>
[Microsoft UAA Function Driver for High Definition Audio Service / HdAudAddService][Stopped/Manual Start]
<system32\drivers\HdAudio.sys><Windows (R) Server 2003 DDK provider>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
<system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[IEEE-1284.4 Driver HPZid412 / HPZid412][Stopped/Manual Start]
<system32\DRIVERS\HPZid412.sys><HP>
[Print Class Driver for IEEE-1284.4 HPZipr12 / HPZipr12][Stopped/Manual Start]
<system32\DRIVERS\HPZipr12.sys><HP>
[USB to IEEE-1284.4 Translation Driver HPZius12 / HPZius12][Stopped/Manual Start]
<system32\DRIVERS\HPZius12.sys><HP>
[ialm / ialm][Running/Manual Start]
<system32\DRIVERS\igxpmp32.sys><Intel Corporation>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
<system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
[Logitech SetPoint KMDF HID Filter Driver / LHidFilt][Running/Manual Start]
<system32\DRIVERS\LHidFilt.Sys><Logitech, Inc.>
[Logitech SetPoint KMDF Mouse Filter Driver / LMouFilt][Running/Manual Start]
<system32\DRIVERS\LMouFilt.Sys><Logitech, Inc.>
[Logitech SetPoint KMDF USB Filter / LUsbFilt][Running/Manual Start]
<System32\Drivers\LUsbFilt.Sys><Logitech, Inc.>
[nod32drv / nod32drv][Running/System Start]
<\SystemRoot\system32\drivers\nod32drv.sys><N/A>
[NSNDIS5 NDIS Protocol Driver / NSNDIS5][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\NSNDIS5.SYS><Printing Communications Assoc., Inc. (PCAUSA)>
[O2MDRDR / O2MDRDR][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\o2media.sys><O2Micro>
[O2SDRDR / O2SDRDR][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\o2sd.sys><O2 Micro>
[VSO Software pcouffin / pcouffin][Running/Manual Start]
<System32\Drivers\pcouffin.sys><VSO Software>
[直接平行连接埠连结驱动程式 / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[WLAN Transport / s24trans][Running/Auto Start]
<system32\DRIVERS\s24trans.sys><Intel Corporation>
[USB Still Image Capture Device / ScanUSBEMPIA][Running/Manual Start]
<system32\DRIVERS\emScan.sys><eMPIA Technology, Inc.>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><N/A>
[SMC IrCC Miniport Device Driver / SMCIRDA][Running/Manual Start]
<system32\DRIVERS\smcirda.sys><SMC>
[Vax347b / Vax347b][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\Vax347b.sys><>
[Vax347s / Vax347s][Running/Boot Start]
<\SystemRoot\System32\Drivers\Vax347s.sys><>
[Windows XP 的 Intel(R) PRO/Wireless 2915ABG 网路连线驱动程式 / w29n51][Running/Manual Start]
<system32\DRIVERS\w29n51.sys><IntelR Corporation>
[世界标准电传转码器 / WSTCODEC][Stopped/Manual Start]
<system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
[XPVCOM Port / xpvcom][Running/Manual Start]
<system32\DRIVERS\XPVCOM.sys><N/A>
==================================
流览器载入项
[Adobe PDF Reader Link Helper]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Web Browser Applet Control]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINDOWS\system32\msjava.dll, Microsoft Corporation>
[Create Mobile Favorite]
{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} <C:\PROGRA~1\MICROS~4\INetRepl.dll, Microsoft Corporation>
[Create Mobile Favorite]
{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} <C:\PROGRA~1\MICROS~4\INetRepl.dll, Microsoft Corporation>
[参考资料(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[FlashGet]
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\PROGRA~1\FlashGet\flashget.exe, FlashGet.com>
[FlashGet Bar]
{E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FlashGet\fgiebar.dll, Amaze Soft>
[Dr.eye WebPage Translation]
{92B255FE-94E2-4BCA-958D-3926CE38913F} <C:\PROGRA~1\Inventec\Dreye\DreyeMT\DREYEI~1.DLL, >
[Symantec RuFSI Utility Class]
{644E432F-49D3-41A1-8DD5-E099162EEEC5} <C:\WINDOWS\Downloaded Program Files\rufsi.dll, Symantec Corporation>
[Windows Live Photo Upload Control]
{7FC1B346-83E6-4774-8D20-1A6B09B0E737} <C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll, MicrosoftR Corporation>
[TRUSTATMPOST Control]
{C0F4471E-DF4F-4D02-9D2D-CF33B0724A1C} <C:\WINDOWS\ATM_700\TRUSTA~1.OCX, Taiwan Post>
[Adobe PDF Reader Link Helper]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Web Browser Applet Control]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINDOWS\system32\msjava.dll, Microsoft Corporation>
[IETag Factory]
{38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, Microsoft Corporation>
[Symantec RuFSI Utility Class]
{644E432F-49D3-41A1-8DD5-E099162EEEC5} <C:\WINDOWS\Downloaded Program Files\rufsi.dll, Symantec Corporation>
[Dr.eye WebPage Translation]
{92B255FE-94E2-4BCA-958D-3926CE38913F} <C:\PROGRA~1\Inventec\Dreye\DreyeMT\DREYEI~1.DLL, >
[Symantec RuFSI File information Class]
{C2FCEF4E-ACE9-11D3-BEBD-00105AA9B6AE} <C:\WINDOWS\Downloaded Program Files\rufsi.dll, Symantec Corporation>
[Symantec RuFSI Registry Information Class]
{C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} <C:\WINDOWS\Downloaded Program Files\rufsi.dll, Symantec Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[FlashGet Bar]
{E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FlashGet\fgiebar.dll, Amaze Soft>
[使用 FlashGet 下载]
<C:\Program Files\FlashGet\jc_link.htm, N/A>
[全部使用 FlashGet 下载]
<C:\Program Files\FlashGet\jc_all.htm, N/A>
[汇出至 Microsoft Excel(&X)]
<, N/A>
[汇出至 Microsoft Office Excel(&X)]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
==================================
正在运行的进程
[PID: 476 / SYSTEM][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 928 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 960 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Softex\OmniPass\opxpgina.dll] [N/A, ]
[PID: 1004 / SYSTEM][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1016 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[PID: 1176 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1244 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[PID: 1288 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[PID: 1324 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\EvtEng.exe] [Intel Corporation, 10.5.0.20 ]
[C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll] [Intel Corporation, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 10.5.0.4 ]
[C:\Program Files\Intel\Wireless\Bin\DbEngine.dll] [Intel Corporation, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll] [The OpenSSL Project, [url=http://www.openssl.org/]http://www.openssl.org/[/url], 0.9.8]
[C:\Program Files\Intel\Wireless\Bin\IntStngs.dll] [, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\Bin\MurocApi.dll] [Intel Corporation, 10.5.0.6]
[C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll] [Intel Corporation, 10.5.0.1 ]
[PID: 1444 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe] [Intel Corporation , 10.5.0.34 ]
[C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 10.5.0.4 ]
[C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll] [The OpenSSL Project, [url=http://www.openssl.org/]http://www.openssl.org/[/url], 0.9.8]
[C:\Program Files\Intel\Wireless\Bin\IntStngs.dll] [, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\Bin\IWMSPROV.DLL] [N/A, ]
[PID: 1492 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[PID: 1584 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1944 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[C:\WINDOWS\system32\fpmon5.dll] [FinePrint Software, LLC, 5.71]
[C:\WINDOWS\system32\fpres532.dll] [FinePrint Software, LLC, 5.71]
[C:\WINDOWS\system32\hpzsnt10.dll] [HP, 2.323.0.0]
[C:\WINDOWS\system32\hpzsnt12.dll] [HP, 2.335.5.0]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll] [Microsoft Corporation, 6.0.5824.16384 (winmain(wmbla).060911-0725)]
[PID: 164 / SYSTEM][C:\WINDOWS\system32\agrsmsvc.exe] [Agere Systems, 1.0.0.4]
[PID: 224 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7Debug\1028\mdmui.dll] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL] [Microsoft Corporation, 7.00.9466]
[PID: 284 / SYSTEM][C:\Program Files\Eset\nod32krn.exe] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\nod32krr.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\ps_amon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_amon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\ps_dmon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_dmon.dll] [N/A, ]
[C:\Program Files\Eset\ps_emon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_emon.dll] [N/A, ]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[C:\Program Files\Eset\ps_nod32.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_nod32.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\ps_upd.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_upd.dll] [N/A, ]
[PID: 308 / SYSTEM][C:\WINDOWS\system32\o2flash.exe] [N/A, ]
[PID: 320 / SYSTEM][C:\Program Files\Softex\OmniPass\Omniserv.exe] [Softex Inc., 1.0.0.1]
[C:\Program Files\Softex\OmniPass\storeng.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\ssplogon.dll] [N/A, ]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Softex\OmniPass\userdata.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\autheng.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\cryptodll.dll] [N/A, ]
[C:\WINDOWS\system32\ATL71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71CHT.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Softex\OmniPass\hdddrv.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\ldapdrv.dll] [Softex Inc., 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\cachedrv.dll] [Softex Incorporated, 1.0.0.1]
[C:\Program Files\Softex\OmniPass\sftxtgp.dll] [N/A, ]
[C:\Program Files\Softex\OmniPass\mstrpwd.dll] [Softex, Inc., 3, 0, 0, 0]
[C:\Program Files\Softex\OmniPass\authntec.dll] [Softex, Inc., 3, 0, 0, 0]
[C:\WINDOWS\system32\atsc63.dll] [AuthenTec, Inc., 6, 5, 1, 0]
[C:\Program Files\Softex\OmniPass\biologon.dll] [Microsoft Corporation, 6.00.2600.0000]
[PID: 1692 / SYSTEM][C:\WINDOWS\system32\HPZipm12.exe] [HP, 9, 0, 0, 0]
[PID: 1732 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe] [Intel Corporation, 10.5.0.4 ]
[PID: 1752 / LOCAL SERVICE][C:\WINDOWS\system32\scardsvr.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1832 / SYSTEM][C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe] [Rocket Division Software, 2.6.1 Build 0x20050401]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[PID: 1848 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\emUSD.dll] [eMPIA Technology, Inc., 1.00.0800.0]
[PID: 1868 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: DNSRV(bld4act)]
[PID: 220 / SYSTEM][C:\Program Files\Raxco\PerfectDisk\PDSched.exe] [Raxco Software, Inc., 7, 0, 0, 31]
[C:\Program Files\Raxco\PerfectDisk\PDCommon.dll] [Raxco Software, Inc., 7, 0, 0, 31]
[C:\Program Files\Raxco\PerfectDisk\PDLangEN.dll] [Raxco Software, Inc., 7, 0, 0, 31]
[C:\Program Files\Raxco\PerfectDisk\PDSchedPS.dll] [Raxco Software, Inc., 7, 0, 0, 31]
[C:\Program Files\Raxco\PerfectDisk\PDEnginePS.dll] [Raxco Software, Inc., 7, 0, 0, 31]
[PID: 772 / SYSTEM][C:\Program Files\Softex\OmniPass\OPXPApp.exe] [N/A, ]
[C:\Program Files\Softex\OmniPass\ginastub.dll] [N/A, ]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MFC71CHT.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Softex\OmniPass\ssplogon.dll] [N/A, ]
[C:\Program Files\Softex\OmniPass\cryptodll.dll] [N/A, ]
[C:\Program Files\Softex\OmniPass\storeng.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\autheng.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\userdata.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\hdddrv.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\ldapdrv.dll] [Softex Inc., 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\cachedrv.dll] [Softex Incorporated, 1.0.0.1]
[C:\Program Files\Softex\OmniPass\sftxtgp.dll] [N/A, ]
[C:\Program Files\Softex\OmniPass\mstrpwd.dll] [Softex, Inc., 3, 0, 0, 0]
[C:\Program Files\Softex\OmniPass\authntec.dll] [Softex, Inc., 3, 0, 0, 0]
[C:\WINDOWS\system32\atsc63.dll] [AuthenTec, Inc., 6, 5, 1, 0]
[PID: 980 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[PID: 2132 / Administrator][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\VFuj02b1.dll] [FUJITSU LIMITED, 2, 5, 0, 0]
[C:\Program Files\Softex\OmniPass\cryptodll.dll] [N/A, ]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Softex\OmniPass\autheng.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\storeng.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\ssplogon.dll] [N/A, ]
[C:\WINDOWS\system32\MFC71CHT.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Softex\OmniPass\hdddrv.dll] [, 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\ldapdrv.dll] [Softex Inc., 1, 0, 0, 1]
[C:\Program Files\Softex\OmniPass\mstrpwd.dll] [Softex, Inc., 3, 0, 0, 0]
[C:\Program Files\Softex\OmniPass\authntec.dll] [Softex, Inc., 3, 0, 0, 0]
[C:\Program Files\WinRAR\rarext.dll] [N/A, ]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0]
[C:\Program Files\Eset\nodshex.dll] [N/A, ]
[C:\Program Files\Softex\OmniPass\opfolderext.dll] [Softex Inc., 1.0.0.1]
[C:\Program Files\Softex\OmniPass\opfsdll.dll] [, 1, 0, 0, 1]
[C:\WINDOWS\system32\ATL71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Softex\OmniPass\userdata.dll] [, 1, 0, 0, 1]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[PID: 2296 / Administrator][C:\WINDOWS\system32\hkcmd.exe] [Intel Corporation, 3.0.0.4670]
[C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.4670]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4670]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2304 / Administrator][C:\WINDOWS\system32\igfxpers.exe] [Intel Corporation, 3.0.0.4670]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4670]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2320 / Administrator][C:\WINDOWS\system32\igfxsrvc.exe] [Intel Corporation, 3.0.0.4670]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4670]
[C:\WINDOWS\system32\igfxdev.dll] [Intel Corporation, 3.0.0.4670]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2328 / Administrator][C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe] [Intel Corporation, 10.5.0.5 ]
[C:\Program Files\Intel\Wireless\bin\PfMgrApi.dll] [Intel Corporation, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\bin\TraceAPI.DLL] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\bin\PsRegApi.dll] [Intel Corporation, 10.5.0.4 ]
[C:\Program Files\Intel\Wireless\bin\DbEngine.dll] [Intel Corporation, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\bin\LIBEAY32.dll] [The OpenSSL Project, [url=http://www.openssl.org/]http://www.openssl.org/[/url], 0.9.8]
[C:\Program Files\Intel\Wireless\bin\IntStngs.dll] [, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\bin\MurocApi.dll] [Intel Corporation, 10.5.0.6]
[C:\Program Files\Intel\Wireless\bin\S24MUDLL.dll] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\ZcSvcCHT.dll] [Intel Corporation, 10.5.0.5 ]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2360 / Administrator][C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 10.5.0.4 ]
[C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll] [The OpenSSL Project, [url=http://www.openssl.org/]http://www.openssl.org/[/url], 0.9.8]
[C:\Program Files\Intel\Wireless\Bin\IntStngs.dll] [, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\MurocApi.dll] [Intel Corporation, 10.5.0.6]
[C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\FrWrkCHT.dll] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\FrameworkPlugins\ConnMgr.dll] [Intel Corporation, 10.5.0.173 ]
[C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll] [Intel Corporation, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\Bin\DbEngine.dll] [Intel Corporation, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\Bin\IntWACHT.dll] [Intel Corporation, 10.5.0.173 ]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2376 / Administrator][C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe] [FUJITSU LIMITED, 1, 1, 0, 0]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2384 / Administrator][C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe] [FUJITSU LIMITED, 2, 5, 0, 0]
[C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\VFuj02b1.dll] [FUJITSU LIMITED, 2, 5, 0, 0]
[C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\BrightMgr.dll] [FUJITSU LIMITED, 2, 5, 0, 0]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2392 / Administrator][C:\Program Files\Apoint2K\Apoint.exe] [Alps Electric Co., Ltd., 5.3.10.174]
[C:\WINDOWS\system32\VXDIF.DLL] [Alps Electric Co., Ltd., 6.0.2.66]
[C:\Program Files\Apoint2K\Apoint.DLL] [Alps Electric Co., Ltd., 5.3.8.233]
[C:\Program Files\Apoint2K\EzAuto.dll] [Alps Electric Co., Ltd., 4.5.1.83]
[C:\Program Files\Apoint2K\ApRotion.dll] [ALPS, 5, 4, 1, 2]
[C:\WINDOWS\system32\IGFXEXPS.DLL] [Intel Corporation, 3.0.0.4670]
[C:\Program Files\Apoint2K\EzLaunch.DLL] [Alps Electric Co., Ltd., 5.1.0.50]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2416 / Administrator][C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe] [FUJITSU LIMITED, 4, 4, 0, 0]
[C:\Program Files\Fujitsu\Application Panel\QuickMail.dll] [FUJITSU LIMITED, 4, 4, 0, 0]
[C:\Program Files\Fujitsu\Application Panel\CDPlayer.dll] [FUJITSU LIMITED, 4, 4, 0, 0]
[C:\Program Files\Fujitsu\Application Panel\ScrollButton.dll] [FUJITSU LIMITED, 4, 4, 0, 0]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2424 / Administrator][C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe] [FUJITSU LIMITED, 2, 5, 0, 1]
[C:\Program Files\Fujitsu\BtnHnd\BtnHnd.dll] [FUJITSU LIMITED, 2, 5, 2, 0]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2440 / Administrator][C:\WINDOWS\AGRSMMSG.exe] [Agere Systems, 2.1.57 2.1.57 07/01/2005 15:58:41]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2468 / Administrator][C:\Program Files\Google\Gmail Notifier\gnotify.exe] [Google Inc., 1.0.25.0]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2512 / Administrator][C:\Program Files\IT\I-ATM\SmartMON.exe] [N/A, ]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2540 / Administrator][C:\Program Files\IT\I-ATM\BePCSC.exe] [N/A, ]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2548 / Administrator][C:\WINDOWS\system32\igfxext.exe] [Intel Corporation, 3.0.0.4670]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4670]
[C:\WINDOWS\system32\IGFXEXPS.DLL] [Intel Corporation, 3.0.0.4670]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2704 / Administrator][C:\Program Files\Apoint2K\HidFind.exe] [Alps Electric Co., Ltd., 1.1.0.20]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2712 / Administrator][C:\Program Files\Apoint2K\Apntex.exe] [Alps Electric Co., Ltd., 5.0.1.15]
[C:\WINDOWS\system32\VXDIF.DLL] [Alps Electric Co., Ltd., 6.0.2.66]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2724 / Administrator][C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe] [FinePrint Software, LLC, 5.71]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpres532.dll] [FinePrint Software, LLC, 5.71]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpinter5.dll] [FinePrint Software, LLC, 5.71]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpgraph5.dll] [FinePrint Software, LLC, 5.71]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\ltdis12n.dll] [LEAD Technologies, Inc., 12.0.0.011]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LTKRN12n.dll] [LEAD Technologies, Inc., 12.0.0.011]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\ltfil12n.dll] [LEAD Technologies, Inc., 12.0.0.011]
[PID: 2896 / Administrator][C:\Program Files\Eset\nod32kui.exe] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\nod32rui.dll] [N/A, ]
[C:\Program Files\Eset\pu_amon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_amon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pu_dmon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_dmon.dll] [N/A, ]
[C:\Program Files\Eset\pu_emon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_emon.dll] [N/A, ]
[C:\Program Files\Eset\pu_imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[C:\Program Files\Eset\pu_nod32.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_nod32.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pu_upd.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_upd.dll] [N/A, ]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 3084 / Administrator][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 3088 / Administrator][C:\WINDOWS\system32\conime.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 3168 / Administrator][C:\Program Files\SpeedswitchXP\SpeedswitchXP.exe] [Christian Diefer, 1.5.1.0]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 3176 / Administrator][C:\Program Files\MSN Messenger\MsnMsgr.Exe] [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\VFuj02b1.dll] [FUJITSU LIMITED, 2, 5, 0, 0]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[C:\WINDOWS\system32\GOING8.IME] [IQChina, 7.60.000]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\PDM.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\1028\mdmui.dll] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL] [Microsoft Corporation, 7.00.9466]
[C:\WINDOWS\system32\emProp.ax] [Microsoft Corporation (Sample), 1.00.1000.1]
[PID: 3196 / Administrator][C:\Program Files\Microsoft ActiveSync\Wcescomm.exe] [Microsoft Corporation, 4.5.5096.0]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 3360 / Administrator][C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe] [Intel Corporation, 10.5.0.3 ]
[C:\Program Files\Intel\Wireless\Bin\acAuth.dll] [, 4.1.0.63 2006-06-23 16:07:06]
[C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 10.5.0.4 ]
[C:\Program Files\Intel\Wireless\Bin\IntStngs.dll] [, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\IWMSPROV.DLL] [N/A, ]
[C:\Program Files\Intel\Wireless\Bin\C8021CHT.dll] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\LSAWRAPI.dll] [Intel Corporation, 10.5.0.1 ]
[C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll] [Intel Corporation, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\Bin\DbEngine.dll] [Intel Corporation, 10.5.0.2 ]
[C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll] [The OpenSSL Project, [url=http://www.openssl.org/]http://www.openssl.org/[/url], 0.9.8]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 3480 / Administrator][C:\PROGRA~1\MICROS~4\rapimgr.exe] [Microsoft Corporation, 4.5.5096.0]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 3576 / Administrator][C:\Program Files\MemTurbo30\MemTurbo.exe] [SoftwareOnline.com, Inc., 3]
[C:\Program Files\MemTurbo30\cpurocket.dll] [N/A, ]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\PDM.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\1028\mdmui.dll] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 3844 / Administrator][C:\Program Files\Logitech\SetPoint\SetPoint.exe] [Logitech Inc., 4.00.121]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[C:\WINDOWS\system32\KemXML.dll] [Logitech Inc., 4.00.121]
[C:\WINDOWS\system32\kemutb.dll] [Logitech Inc., 4.00.121]
[C:\WINDOWS\system32\KemUtil.dll] [Logitech Inc., 4.00.121]
[C:\WINDOWS\system32\KemWnd.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Logitech\SetPoint\SetPointCOM.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Logitech\SetPoint\Macros\MacroCore.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Logitech\SetPoint\IMHook.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Logitech\SetPoint\WebBrowserSupport.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Common Files\Logitech\KhalShared\KhalApi.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Logitech\SetPoint\kgame.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Logitech\SetPoint\GameHook.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Logitech\SetPoint\LCabHandler.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Logitech\SetPoint\Macros\MacroMedia.dll] [Logitech Inc., 4.00.121]
[PID: 2740 / Administrator][C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE] [Logitech Inc., 4.00.101]
[C:\Program Files\Common Files\Logitech\KhalShared\KHALAPI.DLL] [Logitech Inc., 4.00.121]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Common Files\Logitech\KhalShared\KHALITCH.DLL] [Logitech Inc., 4.00.121]
[C:\Program Files\Common Files\Logitech\KhalShared\KHALMW.DLL] [Logitech Inc., 4.00.121]
[C:\Program Files\Common Files\Logitech\KhalShared\KHALHPP.DLL] [Logitech Inc., 4.00.121]
[C:\Program Files\Common Files\Logitech\KhalShared\KHALMOU.DLL] [Logitech Inc., 4.00.121]
[C:\Program Files\Common Files\Logitech\KhalShared\KHALHID.DLL] [Logitech Inc., 4.00.121]
[C:\Program Files\Common Files\Logitech\KhalShared\KHALUSB.DLL] [Logitech Inc., 4.00.121]
[PID: 3524 / SYSTEM][C:\Program Files\MSN Messenger\usnsvc.exe] [Microsoft Corporation, 8.1.0178.00]
[PID: 2844 / Administrator][C:\Program Files\SpeedVCR\SpeedVCR.exe] [Asiamajor Inc., 2.1.2.8]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\SpeedVCR\SPresource.dll] [N/A, ]
[C:\Program Files\SpeedVCR\V-GearTV.dll] [N/A, ]
[C:\Program Files\SpeedVCR\AsiaMajorM2V.dll] [CyberLink Corp., 4.0.1511 ]
[C:\Program Files\SpeedVCR\AsiaMajorDump.ax] [CyberLink Corp., 3.0.09.22 ]
[C:\Program Files\SpeedVCR\AsiaMajorM1AEnc.ax] [, 2.5.3819 ]
[C:\Program Files\SpeedVCR\AsiaMajorVEnc.ax] [CyberLink Corp. , 4.0.1511 ]
[C:\Program Files\SpeedVCR\AsiaMajorM1V.dll] [CyberLink Corp., 4.0.1511 ]
[C:\Program Files\SpeedVCR\AsiaMajorM1Splter.ax] [CyberLink, 2.2.1314 ]
[C:\Program Files\SpeedVCR\AsiaMajorM2Splter.ax] [CyberLink, 2.2.1314 ]
[C:\Program Files\SpeedVCR\AsiaMajorMpgMux.ax] [CyberLink, 4.0.1521 ]
[C:\Program Files\SpeedVCR\AsiaMajorReader.ax] [CyberLink Corp., 3.1.0903 ]
[C:\Program Files\SpeedVCR\AsiaMajorVSD.ax] [CyberLink Corp., 5.0.1411 ]
[C:\WINDOWS\system32\IGFXEXPS.DLL] [Intel Corporation, 3.0.0.4670]
[C:\Program Files\SpeedVCR\AsiaMajorMVD.ax] [CyberLink Corp., 5.0.0929 ]
[C:\Program Files\SpeedVCR\VGearDeitr.ax] [Asiamajor Inc., 2.0.0.0]
[C:\Program Files\SpeedVCR\divxenc.ax] [DivXNetworks, Inc., 5.2.0.1261]
[C:\Program Files\SpeedVCR\PSIKey.dll] [Protexis Inc., 1.3.6.184]
[C:\Program Files\SpeedVCR\VGTransform.ax] [N/A, ]
[C:\Program Files\SpeedVCR\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\SpeedVCR\AsiaMajorResample.ax] [CyberLink, 4.0.0126 ]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[C:\WINDOWS\system32\emProp.ax] [Microsoft Corporation (Sample), 1.00.1000.1]
[C:\Program Files\Ringz Studio\Storm Codec\Codecs\VSFilter.dll] [Gabest, 1, 0, 1, 3]
[C:\WINDOWS\system32\ffdshow.ax] [, 1.0.2.2028]
[C:\Program Files\Ringz Studio\Storm Codec\Codecs\TTL2Dec.dll] [N/A, ]
[C:\Program Files\Ringz Studio\Storm Codec\Codecs\Vid1Dec.dll] [N/A, ]
[C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\VFuj02b1.dll] [FUJITSU LIMITED, 2, 5, 0, 0]
[PID: 1160 / Administrator][C:\Program Files\Going32\Utils\going8.exe] [N/A, ]
[C:\Program Files\Going32\Utils\golibw.dll] [N/A, ]
[C:\Program Files\Going32\Utils\gorc32.dll] [N/A, ]
[C:\Program Files\Going32\Utils\cw3220.DLL] [Borland International, 2.0]
[C:\Program Files\Going32\Utils\goph32.dll] [N/A, ]
[C:\Program Files\Going32\Utils\gobf32.dll] [N/A, ]
[C:\Program Files\Going32\Utils\govc32.dll] [N/A, ]
[C:\Program Files\Going32\Utils\HanjiConvt.DLL] [, 1, 0, 0, 1]
[C:\Program Files\Going32\GOTBAR1.DLL] [N/A, ]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[PID: 2192 / Administrator][C:\Program Files\Mozilla Firefox\firefox.exe] [Mozilla Corporation, 1.8.1.6: 2007072518]
[C:\Program Files\Mozilla Firefox\js3250.dll] [Netscape Communications Corporation, 4.0]
[C:\Program Files\Mozilla Firefox\nspr4.dll] [Netscape Communications Corporation, 4.6.7]
[C:\Program Files\Mozilla Firefox\xpcom_core.dll] [Mozilla Foundation, 1.8.1.6: 2007072518]
[C:\Program Files\Mozilla Firefox\plc4.dll] [Netscape Communications Corporation, 4.6.7]
[C:\Program Files\Mozilla Firefox\plds4.dll] [Netscape Communications Corporation, 4.6.7]
[C:\Program Files\Mozilla Firefox\smime3.dll] [Mozilla Foundation, 3.11.5 Basic ECC]
[C:\Program Files\Mozilla Firefox\nss3.dll] [Mozilla Foundation, 3.11.5 Basic ECC]
[C:\Program Files\Mozilla Firefox\softokn3.dll] [Mozilla Foundation, 3.11.4 Basic ECC]
[C:\Program Files\Mozilla Firefox\ssl3.dll] [Mozilla Foundation, 3.11.5 Basic ECC]
[C:\Program Files\Mozilla Firefox\xpcom_compat.dll] [Mozilla Foundation, 1.8.1.6: 2007072518]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[C:\Program Files\Mozilla Firefox\components\myspell.dll] [Mozilla Foundation, 1.8.1.6: 2007072518]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
[C:\Program Files\Mozilla Firefox\components\jar50.dll] [Mozilla Foundation, 1.8.1.6: 2007072518]
[C:\Program Files\Mozilla Firefox\freebl3.dll] [Mozilla Foundation, 3.11.4 Basic ECC]
[C:\Program Files\Mozilla Firefox\nssckbi.dll] [Mozilla Foundation, 1.64]
[C:\Program Files\Mozilla Firefox\components\spellchk.dll] [Mozilla Foundation, 1.8.1.6: 2007072518]
[C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\VFuj02b1.dll] [FUJITSU LIMITED, 2, 5, 0, 0]
[C:\WINDOWS\system32\GOING8.IME] [IQChina, 7.60.000]
[C:\Program Files\Mozilla Firefox\plugins\NPSWF32.dll] [, ]
[C:\WINDOWS\system32\Macromed\Common\SwSupport.dll] [Macromedia, Inc., 10.1r11]
[PID: 2992 / Administrator][C:\Documents and Settings\Administrator\桌面\sreng2\SREngPS.EXE] [Smallfrogs Studio, 2.5.16.900]
[C:\Documents and Settings\Administrator\桌面\sreng2\Lang\1028.DLL] [System Repair Engineer, 2.5.16.900]
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] [Logitech Inc., 4.00.121]
[C:\Documents and Settings\Administrator\桌面\sreng2\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15]
[C:\WINDOWS\system32\imon.dll] [Eset , 2, 70, 39 ]
[C:\Program Files\Eset\pr_imon.dll] [N/A, ]
==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]
==================================
Winsock 提供者
NOD32 protected [MSAFD Tcpip [TCP/IP]]
C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
NOD32 protected [MSAFD Tcpip [UDP/IP]]
C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
NOD32 protected [MSAFD Tcpip [RAW/IP]]
C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
NOD32 protected [RSVP UDP Service Provider]
C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
NOD32 protected [RSVP TCP Service Provider]
C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
NOD32
C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
==================================
Autorun.inf
N/A
==================================
HOSTS 文件
127.0.0.1 localhost
127.0.0.1 bar.baidu.com #百度IE搜索
127.0.0.1 3721.com #3721
127.0.0.1 3721.net #3721
127.0.0.1 cnsmin.3721.com #3721
127.0.0.1 cnsmin.3721.net #3721
127.0.0.1 download.3721.com #3721
127.0.0.1 download.3721.net #3721
127.0.0.1 [url=http://www.3721.com]www.3721.com[/url] #3721
127.0.0.1 [url=http://www.3721.net]www.3721.net[/url] #3721
127.0.0.1 zwsw.3721.net #3721
127.0.0.1 ad4.sina.com.cn #sina
127.0.0.1 ad.cn.doubleclick.net #sina
==================================
进程特权扫描
特殊特权被允许: SeLoadDriverPrivilege [PID = 1444, C:\PROGRAM FILES\INTEL\WIRELESS\BIN\S24EVMON.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 772, C:\PROGRAM FILES\SOFTEX\OMNIPASS\OPXPAPP.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2376, C:\PROGRAM FILES\FUJITSU\FUJ02E3\FUJ02E3.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2384, C:\PROGRAM FILES\FUJITSU\FUJITSU HOTKEY UTILITY\INDICATORUTY.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2416, C:\PROGRAM FILES\FUJITSU\APPLICATION PANEL\QUICKTOUCH.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2424, C:\PROGRAM FILES\FUJITSU\BTNHND\BTNHND.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2468, C:\PROGRAM FILES\GOOGLE\GMAIL NOTIFIER\GNOTIFY.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2540, C:\PROGRAM FILES\IT\I-ATM\BEPCSC.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2724, C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\FPDISP5A.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2896, C:\PROGRAM FILES\ESET\NOD32KUI.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3168, C:\PROGRAM FILES\SPEEDSWITCHXP\SPEEDSWITCHXP.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3360, C:\PROGRAM FILES\INTEL\WIRELESS\BIN\DOT1XCFG.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3576, C:\PROGRAM FILES\MEMTURBO30\MEMTURBO.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3844, C:\PROGRAM FILES\LOGITECH\SETPOINT\SETPOINT.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2844, C:\PROGRAM FILES\SPEEDVCR\SPEEDVCR.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 1160, C:\PROGRAM FILES\GOING32\UTILS\GOING8.EXE]
==================================
API HOOK
N/A
==================================
隐藏进程
N/A
==================================