RаY
我的SREngLOG
银子 发表于 2008-07-06 20:11:39
[CODE]
2008-07-06,19:53:56
System Repair Engineer 2.6.11.992
Smallfrogs (http://www.KZTechs.com)
Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能
以下内容被选中:
所有的启动项目(包括注册表、启动文件夹、服务等)
浏览器加载项
正在运行的进程(包括进程模块信息)
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
进程特权扫描
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<f:_corel_corel12_programs_24><F:\corel\corel12\Programs\CorUpd.exe /Watch /r="Software\Corel\CorelDRAW.0"> [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup> [NVIDIA Corporation]
<nwiz><nwiz.exe /install> []
<NvMediaCenter><RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit> [NVIDIA Corporation]
<SoundMAXPnP><C:\Program Files\Analog Devices\Core\smax4pnp.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<Vistadrv><C:\WINDOWS\Vistadrive\vsdrv.exe> []
<SKYNET Personal FireWall><F:\天网\FireWall\pfw.exe> [广州众达天网技术有限公司]
<!AVG Anti-Spyware><"F:\avg\AVG Anti-Spyware 7.5\avgas.exe" /minimized> [(Verified)GRISOFT LTD]
<StormCodec_Helper><"F:\暴风影音\Storm Codec\StormSet.exe" /S /opti> []
<CorelDRAW Graphics Suite 11b><F:\corel\corel12\Languages\CS\Programs\Registration.exe /title="CorelDRAW Graphics Suite 12" /date=071008 serial=DR12WUX-9237080-PGH lang=CS> [Corel Corporation]
<360Safetray><F:\卡巴0safe\safemon0Tray.exe /start> [(Verified)Qizhi Software (beijing) Co. Ltd]
<AVP><"F:0\avp.exe"> [(Verified)Kaspersky Lab]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{57B86673-276A-48B2-BAE7-C6DBB3020EB8}><F:\avg\AVG Anti-Spyware 7.5\shellexecutehook.dll> [(Verified)GRISOFT LTD]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
<WinlogonNotify: klogon><C:\WINDOWS\system32\klogon.dll> [(Verified)Kaspersky Lab]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
<WinlogonNotify: WgaLogon><WgaLogon.dll> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
<Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]
==================================
启动文件夹
[星空极速3.0]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\星空极速3.0.lnk --> F:\星空\ChinaNet\VNETCL~1.EXE []><N>
[Stardock ObjectDock]
<C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\Stardock ObjectDock.lnk --> C:\WINDOWS\OBJECT~1\OBJECT~1.EXE [Stardock]><N>
==================================
服务
[AVG Anti-Spyware Guard / AVG Anti-Spyware Guard][Running/Auto Start]
<F:\avg\AVG Anti-Spyware 7.5\guard.exe><GRISOFT s.r.o.>
[卡巴斯基反病毒软件 7.0 / AVP][Stopped/Auto Start]
<F:\kaba\avp.exe -r><(File is missing)>
[FLEXnet Licensing Service / FLEXnet Licensing Service][Stopped/Manual Start]
<"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"><Macrovision Europe Ltd.>
[H3C iNode service / H3C_SVR_MNG_SERVICE][Stopped/Manual Start]
<"D:\新建文件夹 (2)\AuthenMngService.exe" -startService><N/A>
[Human Interface Device Access / HidServ][Stopped/Disabled]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
<C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[ProtexisLicensing / ProtexisLicensing][Running/Auto Start]
<C:\WINDOWS\system32\PSIService.exe><>
[TabletService / TabletService][Running/Auto Start]
<C:\WINDOWS\system32\Tablet.exe><Wacom Technology, Corp.>
[Windows Media Player Network Sharing Service / WMPNetworkSvc][Stopped/Manual Start]
<"C:\Program Files\Windows Media Player\WMPNetwk.exe"><(File is missing)>
==================================
驱动程序
[360AntiArp / 360AntiArp][Running/System Start]
<\??\C:\WINDOWS\system32\drivers0AntiArp.sys><360安全中心>
[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc][Stopped/Manual Start]
<system32\drivers\ac97intc.sys><Intel Corporation>
[ADI UAA Function Driver for High Definition Audio Service / ADIHdAudAddService][Running/Manual Start]
<system32\drivers\ADIHdAud.sys><Analog Devices, Inc.>
[AE Audio Service / AEAudio][Running/Manual Start]
<system32\drivers\AEAudio.sys><Andrea Electronics Corporation>
[AMD K8 Processor Driver / AmdK8][Stopped/Manual Start]
<System32\DRIVERS\amdk8.sys><Advanced Micro Devices>
[AVG Anti-Spyware Driver / AVG Anti-Spyware Driver][Running/System Start]
<\??\F:\avg\AVG Anti-Spyware 7.5\guard.sys><N/A>
[AVG Anti-Spyware Clean Driver / AvgAsCln][Running/System Start]
<System32\DRIVERS\AvgAsCln.sys><GRISOFT, s.r.o.>
[EagleNT / EagleNT][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\drivers\EagleNT.sys><AhnLab, Inc.>
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS][Stopped/Manual Start]
<system32\DRIVERS\fetnd5.sys><VIA Technologies, Inc.>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
<system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[KL1 / KL1][Running/Boot Start]
<\SystemRoot\system32\drivers\kl1.sys><Kaspersky Lab>
[KLIF / KLIF][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\klif.sys><Kaspersky Lab>
[Kaspersky Anti-Virus NDIS Filter / klim5][Running/Manual Start]
<system32\DRIVERS\klim5.sys><Kaspersky Lab>
[ATK0110 ACPI UTILITY / MTsensor][Running/Manual Start]
<system32\DRIVERS\ASACPI.sys><>
[H3C VPN Virtual NIC / NetVMini][Running/Manual Start]
<system32\DRIVERS\h3cvnic.sys><HUAWEI-3COM>
[npkcrypt / npkcrypt][Stopped/Auto Start]
<\??\C:\Program Files\qq2007\npkcrypt.sys><N/A>
[nv / nv][Running/Manual Start]
<system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[DDK PACKET Protocol / Packet][Running/Manual Start]
<system32\DRIVERS\ProtoDrv.sys><360安全中心>
[PCANDIS5 NDIS Protocol Driver / PCANDIS5][Running/Auto Start]
<\??\C:\WINDOWS\system32\PCANDIS5.SYS><Printing Communications Assoc., Inc. (PCAUSA)>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]
<system32\DRIVERS\Rtenicxp.sys><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[SenFilt Service / SenFiltService][Running/Manual Start]
<system32\drivers\Senfilt.sys><Sensaura>
[SKNFW / SKNFW][Running/System Start]
<\??\C:\WINDOWS\system32\Drivers\SKNFW.sys><N/A>
[Sony USB Filter Driver (SONYPVU1) / SONYPVU1][Stopped/Manual Start]
<system32\DRIVERS\SONYPVU1.SYS><Sony Corporation>
[Wacom Mouse Filter Driver / wacommousefilter][Running/Manual Start]
<system32\DRIVERS\wacommousefilter.sys><Wacom Technology>
[Wacom Virtual Hid Driver / wacomvhid][Running/Manual Start]
<system32\DRIVERS\wacomvhid.sys><Wacom Technology>
==================================
浏览器加载项
[ThunderAtOnce Class]
{01443AEC-0FD1-40fd-9C87-E93D1494C233} <F:\xunlei\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
[VnetCookie Class]
{4E83D567-4697-4F7B-B1F0-A513B01DB89A} <F:\星强空誠\ChinaNet\VNETTR~1.DLL, N/A>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <F:\xunlei\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
[SafeMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D} <F:\卡巴0safe\safemon\safemon.dll, 360.CN>
[启动迅雷5]
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <F:\xunlei\Thunder.exe, Thunder Networking Technologies,LTD>
[Web 反病毒统计]
{1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} <F:0\SCIEPlgn.dll, Kaspersky Lab>
[EditCtrl Class]
{488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, >
[AxSubmitControl Class]
{8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\DOWNLO~1\SUBMIT~1.DLL, >
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx, Adobe Systems, Inc.>
[ThunderAtOnce Class]
{01443AEC-0FD1-40FD-9C87-E93D1494C233} <F:\xunlei\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
[PeerDraw Class]
{10072CEC-8CC1-11D1-986E-00A0C955B42E} <C:\Program Files\Common Files\Microsoft Shared\VGX\vgx.dll, Microsoft Corporation>
[iTrusPTA Class]
{1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\pta.dll, >
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\Mshtml.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[HtmlDlgSafeHelper Class]
{3050F819-98B5-11CF-BB82-00AA00BDCE0B} <C:\WINDOWS\system32\mshtmled.dll, Microsoft Corporation>
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, N/A>
[Thunder Agent Class]
{485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <F:\xunlei\ComDlls\ThunderAgent_Now.dll, Thunder Networking Technologies,LTD>
[EditCtrl Class]
{488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, >
[VnetCookie Class]
{4E83D567-4697-4F7B-B1F0-A513B01DB89A} <F:\星强空誠\ChinaNet\VNETTR~1.DLL, N/A>
[HHCtrl Object]
{52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\windows\system32\hhctrl.ocx, Microsoft Corporation>
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A>
[XMP Class]
{6483F145-A768-4C41-AACC-52D4D7845851} <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work, >
[XDRM]
{693571CB-54A3-4E90-9D52-EEAE1334E2D3} <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work, >
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AxInputControl Class]
{73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\DOWNLO~1\INPUTC~1.DLL, >
[MediaComm Class]
{7670648D-461B-42AF-BDFE-46D26AF5EFF2} <F:\xunlei\Components\InMedia\MediaAddin14.dll, Thunder Networking Technologies,LTD>
[360SafeLive]
{87515F61-A66C-4319-A0E0-D416CB8059E3} <F:\卡巴0safe\live.dll, 360.cn>
[Microsoft Web 浏览器]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <F:\xunlei\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
[AxSubmitControl Class]
{8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\DOWNLO~1\SUBMIT~1.DLL, >
[RMGetLicense Class]
{A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
[Thunder DapCtrl]
{ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <F:\xunlei\Components\DownAndPlay\DapCtrl1.2.11.14.731.dll, ShenZhen Thunder Networking Technologies Ltd.>
[Microsoft Scriptlet Component]
{AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\Mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[SafeMon Class]
{B69F34DD-F0F9-42DC-9EDD-957187DA688D} <F:\卡巴0safe\safemon\safemon.dll, 360.CN>
[RDS.DataSpace]
{BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[AUDIO__MP3 Moniker Class]
{CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__X_MS_WMA Moniker Class]
{CD3AFA84-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class]
{CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_WMV Moniker Class]
{CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx, Adobe Systems, Inc.>
[Thunder DapPlayer]
{EEDD6FF9-13DE-496B-9A1C-D78B3215E266} <F:\xunlei\Components\DownAndPlay\DapPlayer3.0.40.64.731.dll, ShenZhen Thunder Networking Technologies Ltd.>
[XPPlayer Class]
{F3E70CEA-956E-49CC-B444-73AFE593AD7F} <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\pplayer.dll_1_work, Thunder>
[使用迅雷下载]
<F:\xunlei\Program\GetUrl.htm, N/A>
[使用迅雷下载全部链接]
<F:\xunlei\Program\GetAllUrl.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ表情]
<F:\qq\AddEmotion.htm, N/A>
==================================
正在运行的进程
[PID: 1244 / SYSTEM][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1308 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1332 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[C:\WINDOWS\system32\klogon.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 1380 / SYSTEM][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1396 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 1540 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1672 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 1844 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 2040 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 248 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 508 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 724 / SYSTEM][C:\WINDOWS\system32\nvsvc32.exe] [NVIDIA Corporation, 6.14.11.6501]
[C:\WINDOWS\system32\nvapi.dll] [NVIDIA Corporation, 6.14.11.6501]
[PID: 744 / SYSTEM][C:\WINDOWS\system32\PSIService.exe] [, 2.0.0.1]
[C:\WINDOWS\system32\PSIKey.dll] [Protexis Inc., 2.0.0.1]
[PID: 944 / SYSTEM][C:\WINDOWS\system32\Tablet.exe] [Wacom Technology, Corp., 4.96-8]
[PID: 1200 / SYSTEM][C:\WINDOWS\system32\WTablet\TabUserW.exe] [Wacom Technology, Corp., 4.96-8]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 1312 / SYSTEM][C:\WINDOWS\system32\Tablet.exe] [Wacom Technology, Corp., 4.96-8]
[PID: 2028 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1564 / Administrator][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\scrchpg.dll] [Kaspersky Lab, 7.0.0.125]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[F:\avg\AVG Anti-Spyware 7.5\shellexecutehook.dll] [GRISOFT s.r.o., 7, 5, 1, 36]
[F:\xunlei\Components\ResWorker\DsBho_00.dll] [, 1, 0, 0, 12]
[F:\xunlei\Components\ResWorker\DataProcessor_00.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 13]
[F:\corel\corel12\PROGRAMS\CdrIco.DLL] [Corel Corporation, 1.0.0.525]
[F:\corel\corel12\PROGRAMS\CRLUTL.dll] [Corel Corporation, 1.0.0.525]
[F:\corel\corel12\PROGRAMS\CRLI18N.dll] [Corel Corporation, 1.0.0.525]
[C:\WINDOWS\system32\MFC71U.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71CHS.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\WinRAR\rarext.dll] [N/A, ]
[F:\qq\qdshm.dll] [, 1, 0, 101, 20]
[F:0\ShellEx.dll] [Kaspersky Lab, 7.0.0.125]
[F:\avg\AVG Anti-Spyware 7.5\context.dll] [GRISOFT s.r.o., 7, 5, 1, 36]
[F:0\prremote.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\prloader.dll] [Kaspersky Lab, 7.0.0.125]
[F:\xunlei\ComDlls\TDAtOnce_Now.dll] [Thunder Networking Technologies,LTD, 1.0.5.16]
[F:\xunlei\ComDlls\xunleiBHO_Now.dll] [Thunder Networking Technologies,LTD, 5, 0, 8, 55]
[PID: 1920 / Administrator][C:\WINDOWS\system32\RUNDLL32.EXE] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\NvMcTray.dll] [NVIDIA Corporation, 6.14.11.6501]
[C:\WINDOWS\system32\nvapi.dll] [NVIDIA Corporation, 6.14.11.6501]
[PID: 1928 / Administrator][C:\Program Files\Analog Devices\Core\smax4pnp.exe] [Analog Devices, Inc., 6, 0, 0, 66]
[C:\Program Files\Analog Devices\Core\SMWDMIF.dll] [Analog Devices, Inc., 6, 0, 4400, 11]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 1952 / Administrator][F:\天网\FireWall\pfw.exe] [广州众达天网技术有限公司, 2.7.7.1004]
[F:\天网\FireWall\SKYMISC.DLL] [N/A, ]
[F:\天网\FireWall\COMPRESSWRAP.DLL] [N/A, ]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 324 / Administrator][F:\avg\AVG Anti-Spyware 7.5\avgas.exe] [GRISOFT s.r.o., 7, 5, 1, 43]
[F:\avg\AVG Anti-Spyware 7.5\engine.dll] [GRISOFT s.r.o., 4, 2, 0, 19]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[F:0\scrchpg.dll] [Kaspersky Lab, 7.0.0.125]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 828 / Administrator][F:\卡巴0safe\antiarp\antiarp.exe] [360安全中心, 2, 0, 0, 1008]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[PID: 784 / Administrator][F:\卡巴0safe\safemon0Tray.exe] [奇虎网, 4, 1, 8, 1002]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[F:\卡巴0safe\safemon\SafeKrnl.dll] [奇虎网, 4, 1, 8, 1001]
[F:\卡巴0safe\AntiAdwa.dll] [360Safe.com, 4, 1, 5, 1001]
[F:\卡巴0safe\live.dll] [360.cn, 1, 0, 1, 1027]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 920 / Administrator][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1096 / Administrator][F:\corel\corel12\Programs\CorUpd.exe] [Corel Corporation, 1.0.0.436]
[F:\corel\corel12\Languages\CS\Programs\CorUpdIntl.dll] [Corel Corporation, 1.0.0.422]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[F:\corel\corel12\Programs\psikey.dll] [Protexis Inc., 1.3.4.89]
[PID: 2204 / Administrator][C:\WINDOWS\ObjectDock\objectdock.exe] [Stardock, v1.90.534u]
[C:\WINDOWS\ObjectDock\CrashRpt.dll] [, 3.0.2.2]
[C:\WINDOWS\ObjectDock\dbghelp.dll] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]
[C:\WINDOWS\ObjectDock\zlib.dll] [, 1.1.3]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[C:\WINDOWS\ObjectDock\ODImg.dll] [N/A, ]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[PID: 3644 / Administrator][F:\qq\QQ.exe] [TENCENT, 8,0,777,1805]
[F:\qq\QQBaseClassInDll.dll] [TENCENT, 8,0,777,1805]
[F:\qq\QQHelperDll.dll] [TENCENT, 8,0,777,1805]
[F:\qq\BasicCtrlDll.dll] [TENCENT, 8,0,777,1805]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[F:\qq\QQAPI.dll] [TENCENT, 8,0,777,1805]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[F:\qq\LoginCtrl.dll] [TENCENT, 8,0,777,1805]
[F:\qq\LoginCtrlRes.dll] [TENCENT, 8,0,777,1805]
[F:\qq\QQRes.dll] [TENCENT, 8,0,776,1805]
[F:\qq\QQMainFrame.dll] [N/A, ]
[F:\qq\UnReadMsgMgr.dll] [N/A, ]
[F:\qq\QQPlugin.dll] [N/A, ]
[F:\qq\CQQApplication.dll] [N/A, ]
[F:\qq\FlashAvatarDll.dll] [, 1, 4, 0, 1]
[F:\qq\NewSkin.dll] [TENCENT, 8,0,777,1805]
[F:\qq\MailSummary.dll] [TENCENT, 8,0,777,1805]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[F:\qq\QQSpace.dll] [TENCENT, 8,0,777,1805]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[F:\qq\QQKnowledgeSearch.dll] [TENCENT, 8,0,777,1805]
[F:\qq\OEMApplication.dll] [TENCENT, 8,0,777,1805]
[F:0\scrchpg.dll] [Kaspersky Lab, 7.0.0.125]
[F:\qq\QQGroupMng.dll] [TENCENT, 8,0,777,1805]
[F:\qq\QQAllInOne.dll] [TENCENT, 8,0,777,1805]
[F:\qq\SCCore.dll] [TENCENT, 1, 6, 0, 2]
[F:\qq\CameraDll.dll] [TENCENT, 8,0,777,1805]
[F:\qq\QQPet.dll] [TENCENT, 8,0,777,1805]
[F:\qq\QQCustomFace.dll] [N/A, ]
[F:\qq\UserDefinedHead.dll] [TENCENT, 8,0,777,1805]
[F:\qq\QRingMng.dll] [N/A, ]
[F:\qq\QQSysMsgMng.dll] [N/A, ]
[F:\qq\QQConfigPlugin.dll] [TENCENT, 8,0,777,1805]
[F:\qq\LongConnection.dll] [TENCENT, 8,0,777,1805]
[F:\qq\QQAvatar.dll] [N/A, ]
[F:\qq\PhoneAPI.dll] [TENCENT, 8,0,777,1805]
[F:\qq\DialerAllinOne.dll] [tencent, 1, 4, 0, 0]
[F:\qq\ImageOle.dll] [TENCENT, 8,0,777,1805]
[F:\qq\QQLiveQMng.dll] [TENCENT, 8,0,777,1805]
[F:0\klscav.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\prremote.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\prloader.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\prkernel.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\params.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\pxstub.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\tempfile.ppl] [Kaspersky Lab, 7.0.0.125]
[F:\qq\BQQApplication.dll] [N/A, ]
[F:\qq\QQMagicFace.dll] [TENCENT, 8,0,777,1805]
[F:\qq\QQSceneMng.dll] [N/A, ]
[F:\qq\GroupConnection.dll] [TENCENT, 8,0,777,1805]
[F:\qq\CommercesMng.dll] [TENCENT, 8,0,777,1805]
[F:\qq\PersonalDesktop.dll] [TENCENT, 8,0,777,1805]
[F:\qq\QQAddr.dll] [深圳市腾讯计算机系统有限公司, 5, 0, 101, 330]
[F:\qq\AddrSearch.dll] [腾讯科技(深圳)有限公司, 2, 2, 1, 15]
[PID: 3912 / Administrator][F:\qq\TXPlatform.exe] [Tencent, 1, 0, 170, 0]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 3096 / Administrator][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[F:0\scrchpg.dll] [Kaspersky Lab, 7.0.0.125]
[F:\xunlei\ComDlls\TDAtOnce_Now.dll] [Thunder Networking Technologies,LTD, 1.0.5.16]
[F:\xunlei\ComDlls\xunleiBHO_Now.dll] [Thunder Networking Technologies,LTD, 5, 0, 8, 55]
[F:\xunlei\Components\ResWorker\DsBho_00.dll] [, 1, 0, 0, 12]
[F:\xunlei\Components\ResWorker\DataProcessor_00.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 13]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\klscav.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\prremote.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\prloader.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\prkernel.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\params.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\pxstub.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\tempfile.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\nfio.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\fsdrvplg.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\basegui.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\thpimpl.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\FSSync.dll] [Kaspersky Lab, 7.0.5.125]
[f:0\winreg.ppl] [Kaspersky Lab, 7.0.0.125]
[C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx] [Adobe Systems, Inc., 9,0,124,0]
[PID: 3260 / Administrator][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[F:0\scrchpg.dll] [Kaspersky Lab, 7.0.0.125]
[F:\xunlei\ComDlls\TDAtOnce_Now.dll] [Thunder Networking Technologies,LTD, 1.0.5.16]
[F:\xunlei\ComDlls\xunleiBHO_Now.dll] [Thunder Networking Technologies,LTD, 5, 0, 8, 55]
[F:\xunlei\Components\ResWorker\DsBho_00.dll] [, 1, 0, 0, 12]
[F:\xunlei\Components\ResWorker\DataProcessor_00.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 13]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\klscav.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\prremote.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\prloader.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\prkernel.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\params.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\pxstub.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\tempfile.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\nfio.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\fsdrvplg.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\basegui.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\thpimpl.ppl] [Kaspersky Lab, 7.0.0.125]
[f:0\FSSync.dll] [Kaspersky Lab, 7.0.5.125]
[f:0\winreg.ppl] [Kaspersky Lab, 7.0.0.125]
[PID: 2404 / Administrator][C:\Documents and Settings\Administrator\桌面\新建文件夹\SREngLdr.EXE] [Smallfrogs Studio, 2.6.11.992]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[PID: 408 / Administrator][C:\Documents and Settings\Administrator\桌面\新建文件夹\SRE9b4eb966.EXE] [Smallfrogs Studio, 2.6.11.992]
[C:\WINDOWS\ObjectDock\DockShellHook.dll] [N/A, ]
[F:\卡巴0safe\safemon\safemon.dll] [360.CN, 4, 1, 5, 1002]
[C:\Documents and Settings\Administrator\桌面\新建文件夹\UploadrdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15]
[F:0\miscr3.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\dnsq.dll] [Kaspersky Lab, 7.0.0.125]
[F:0\scrchpg.dll] [Kaspersky Lab, 7.0.0.125]
==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]
==================================
Winsock 提供者
N/A
==================================
Autorun.inf
N/A
==================================
HOSTS 文件
127.0.0.1 localhost
127.0.0.1 yu.8s7.net
127.0.0.1 1.jopanqc.com
127.0.0.1 2.joppnqq.com
127.0.0.1 wg.47255.com
127.0.0.1 1.joppnqq.com
127.0.0.1 xxx.m111.biz
127.0.0.1 1.jopenqc.com
127.0.0.1 1.jopenkk.com
127.0.0.1 xxx.vh7.biz
127.0.0.1 xxx.j41m.com
127.0.0.1 3.joppnqq.com
127.0.0.1 d.93se.com
127.0.0.1 www.868wg.com
127.0.0.1 xxx.mmma.biz
127.0.0.1 ilove.com
127.0.0.1 tp.shpzhan.cn
127.0.0.1 www.tomwg.com
127.0.0.1 www.cike007.cn
127.0.0.1 www.22aaa.com
127.0.0.1 xx.exiao01.com
127.0.0.1 www.exiao01.com
127.0.0.1 www.exiao01.com
127.0.0.1 new.749571.com
127.0.0.1 xtx.kv8.info
127.0.0.1 cao.kv8.info
127.0.0.1 1.jopmmqq.com
127.0.0.1 171817.171817.com
127.0.0.1 d2.llsging.com
127.0.0.1 down.malasc.cn
127.0.0.1 llboss.com
127.0.0.1 nx.51ylb.cn
127.0.0.1 my.531jx.cn
127.0.0.1 qqq.dzydhx.com
127.0.0.1 qqq.hao1658.com
127.0.0.1 www.333292.com
127.0.0.1 down.18dd.net
127.0.0.1 up.22x44.com
127.0.0.1 aaa.faba01.com
127.0.0.1 bad.tqdlt.cn
127.0.0.1 1.chsipo.com
127.0.0.1 c3.aishangai.net
127.0.0.1 c2.aishangai.net
127.0.0.1 xxx.188dm.com
127.0.0.1 x2.1a2b3c1.com
127.0.0.1 d1.163500.net
127.0.0.1 down.google-serv.cn
==================================
进程特权扫描
特殊特权被允许: SeLoadDriverPrivilege [PID = 1332, C:\WINDOWS\SYSTEM32\WINLOGON.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 724, C:\WINDOWS\SYSTEM32\NVSVC32.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 1200, C:\WINDOWS\SYSTEM32\WTABLET\TABUSERW.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 1312, C:\WINDOWS\SYSTEM32\TABLET.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 1952, F:\天网\FIREWALL\PFW.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 1952, F:\天网\FIREWALL\PFW.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 1096, F:\COREL\COREL12\PROGRAMS\CORUPD.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2204, C:\WINDOWS\OBJECTDOCK\OBJECTDOCK.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2404, C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\SRENGLDR.EXE]
==================================
API HOOK
RVA 错误: LoadLibraryA (危险等级: 高, 被下面模块所HOOK: 桾)
RVA 错误: LoadLibraryExA (危险等级: 高, 被下面模块所HOOK: 髾T)
RVA 错误: LoadLibraryExW (危险等级: 高, 被下面模块所HOOK: 鳒T)
RVA 错误: LoadLibraryW (危险等级: 高, 被下面模块所HOOK: 蹫T)
RVA 错误: GetProcAddress (危险等级: 高, 被下面模块所HOOK: ?U)
==================================
隐藏进程
N/A
==================================
[/CODE]
.
银子 发表于 2006-08-02 16:54:17
消息竟然错误 唉.....也许是我看人眼光不怎么样 居然还认为这是开始
等几天我去拜访下老师什么的 我突然想回到我们的起点
我们需要的 是那所房子
那所房子就是当我们一无所有的时候可以引路的希望
最糟的时候 不过就是一无所有的时候 所以晶大人不要怕尝试啦!
你可以不尝试 但你不要不相信所谓的爱情
讲来好笑呢 你说你那么努力了 可是你还是没有得到你想要的
我想 我也很努力的吧 可是那样 都被我搞砸了 不是我想要的 不过也没办法 结果是我努力承受
于是我也很郑重的想到 我也是个怕爱的人了呵
无题
银子 发表于 2006-08-02 16:54:17
消息竟然错误 唉.....也许是我看人眼光不怎么样 居然还认为这是开始
等几天我去拜访下老师什么的 我突然想回到我们的起点
我们需要的 是那所房子
那所房子就是当我们一无所有的时候可以引路的希望
最糟的时候 不过就是一无所有的时候 所以晶大人不要怕尝试啦!
你可以不尝试 但你不要不相信所谓的爱情
讲来好笑呢 你说你那么努力了 可是你还是没有得到你想要的
我想 我也很努力的吧 可是那样 都被我搞砸了 不是我想要的 不过也没办法 结果是我努力承受
于是我也很郑重的想到 我也是个怕爱的人了呵
我 可以的`
银子 发表于 2006-05-20 13:07:55
我可以的```
我知道 只要我要 .... 我就可以
问一个问题
什么才是真正的爱?
你
银子 发表于 2006-04-04 17:01:38
绝对唯一的最重要的东西
我生命中的一切都是由它而形成
不是语言什么就能表达清楚的
这种强烈的炽热的意识
我充满自信
我的这种意识比任何人都强
我的这种意识不输个任何人
为了这个而呼吸
为了这个而流血
为了这个而创作
在我画着的时候 因为不能更接近这种意识而常让我咬牙切齿
我想说的还不止这些
“我永远也无法靠近它”
我哭喊我痛苦我受伤我被自己撕碎我狂乱
但不管我如何狂乱 这个唯一的东西不曾改变
因为这样才会有新生出来的思想 才能认识明白更多的道理
只有你
哪怕能感受到我的这种心情的万分之一
