|
|
下面是报告:
不给上传附件我直接粘贴。
ver 1.1
Windows XP
注册表启动信息
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
KernelFaultCheck %systemroot%\system32\dumprep 0 -k
KavStart "C:\KAV2007\KAVStart.exe" -startup
NvCplDaemon RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
===========================================
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
ctfmon.exe C:\WINDOWS\system32\ctfmon.exe
===========================================
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
DebugOptions 2048
Documents
DosPrint no
NetMessage no
NullPort None
Programs com exe bat pif cmd
Load
Device HP Deskjet 3900 Series,winspool,Ne00:
===========================================
系统进程列表
映像名称 PID
E:\MHXY\ProcessInfo.exe 0
System 4
smss.exe 472
csrss.exe 528
winlogon.exe 552
services.exe 596
lsass.exe 608
svchost.exe 756
svchost.exe 824
svchost.exe 904
svchost.exe 964
svchost.exe 1056
KWatch.EXE 1144
spoolsv.exe 1184
KPFWSvc.EXE 1336
nvsvc32.exe 1368
svchost.exe 1392
alg.exe 1812
C:\WINDOWS\Explorer.EXE 2996
C:\WINDOWS\system32\ctfmon.exe 3096
C:\KAV2007\KMailMon.EXE 3148
E:\MHXY\ProcessInfo.exe 2736
E:\MHXY\my.exe 1424
===========================================
梦幻西游进程信息
1424 my.exe
地址 长度 模块路径 模块描述 公司 版本
4194304 1318912 E:\MHXY\my.exe 梦幻西游 Netease 1, 0, 0, 1
2089943040 606208 C:\WINDOWS\system32\ntdll.dll NT Layer DLL Microsoft Corporation 5.1.2600.2180
2088763392 1167360 C:\WINDOWS\system32\kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.1.2600.3119
1561788416 630784 C:\WINDOWS\system32\COMCTL32.dll Common Controls Library Microsoft Corporation 6.00.2900.2982
2010775552 692224 C:\WINDOWS\system32\ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.1.2600.2180
2011496448 593920 C:\WINDOWS\system32\RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.1.2600.2794
2012151808 290816 C:\WINDOWS\system32\GDI32.dll GDI Client DLL Microsoft Corporation 5.1.2600.3159
2010185728 589824 C:\WINDOWS\system32\USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.1.2600.3099
1982857216 118784 C:\WINDOWS\system32\IMM32.DLL Windows XP IMM32 API Client DLL Microsoft Corporation 5.1.2600.2180
1656881152 36864 C:\WINDOWS\system32\LPK.DLL Language Pack Microsoft Corporation 5.1.2600.2180
1945763840 438272 C:\WINDOWS\system32\USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.0420.2600.2180
2008940544 360448 C:\WINDOWS\system32\msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.2600.2180
1991311360 172032 C:\WINDOWS\system32\winmm.dll MCI API DLL Microsoft Corporation 5.1.2600.2180
1906442240 94208 C:\WINDOWS\system32\WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.1.2600.2180
1906376704 32768 C:\WINDOWS\system32\WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.1.2600.2180
2102984704 8331264 C:\WINDOWS\system32\SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.00.2900.3051
2012479488 483328 C:\WINDOWS\system32\SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.2900.3157
1998061568 1060864 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.2982
1524367360 225280 C:\WINDOWS\system32\uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.00.2900.2523
268435456 69632 C:\KAV2007\KMailOEBand.dll KMailOEB Dynamic Link Library Kingsoft Corporation 7, 6, 0, 19
1989738496 1298432 C:\WINDOWS\system32\ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.1.2600.2726
第一部分 |
|
发表于 2007-10-5 16:49:11
收藏
淘帖
支持
反对
赞(
提升卡
变色卡
楼主