小牢 - 2008-5-22 23:24:00
注释: [A]表示该文件存在自启动关联;
[M]表示该文件在内存中;
+ 注册表自运行项目
+ 系统服务
+ HKLM\System\CurrentControlSet\Services
BoBoTurbo
[AM] 1. c:\windows\system32\boboturbo\boboturbo.exe
广州易播信息科技有限公司
BoBo P2P多媒体网络点播/广播/直播系统 加速器
.text,.rdata,.data,.rsrc,
NVSvc
[AM] 2. c:\windows\system32\nvsvc32.exe
NVIDIA Corporation
NVIDIA Driver Helper Service, Version 91.36
.text,.rdata,.data,.rsrc,
ose
[A ] 3. c:\program files\common files\microsoft shared\source engine\ose.exe
Microsoft Corporation
Office Source Engine
.text,.data,.rsrc,
Qvod Terminal
[AM] 4. c:\program files\qvodplayer\qvodterminal.exe
Shenzhen QVOD Technology Co.,Ltd
QvodTerminal
.text,.rdata,.data,.rsrc,
WMPNetworkSvc
[A ] 5. c:\program files\windows media player\wmpnetwk.exe
Microsoft Corporation
Windows Media Player 网络共享服务
.text,.data,.rsrc,.reloc,
WudfSvc
[A ] 6. c:\windows\system32\wudfsvc.dll
Microsoft Corporation
Windows Driver Foundation - User-mode Driver Framework Service
.text,.data,.rsrc,.reloc,
+ 内核驱动
+ HKLM\System\CurrentControlSet\Services
ALCXWDM
[A ] 7. c:\windows\system32\drivers\alcxwdm.sys
Realtek Semiconductor Corp.
Realtek AC'97 Audio Driver (WDM)
.text,CODE,.rdata,.data,.data1,PAGE,INIT,.rsrc,.reloc,
AmdK8
[A ] 8. c:\windows\system32\drivers\amdk8.sys
Advanced Micro Devices
AMD Processor Driver
.text,.rdata,.data,PAGE,PAGELK,INIT,.rsrc,.reloc,
FETNDISB
[A ] 9. c:\windows\system32\drivers\fetnd5b.sys
VIA Technologies, Inc.
NDIS 5.0 miniport driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
npkcrypt
[A ] 10. c:\program files\qq2006\npkcrypt.sys
QKeyService
[A ] 11. c:\windows\system32\keycrypt.sys
Tencent Technology (Shenzhen) Company Limited
KeyCrypt
.text,.rdata,.data,INIT,.rsrc,.reloc,
RsAntiSpyware
[A ] 12. c:\windows\system32\drivers\rsboot.sys
Beijing Rising Technology Co., Ltd.
Anti-RootKit Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
SafeBoxKrnl
[A ] 13. c:\program files\360safebox\safeboxkrnl.sys
360安全中心
360安全卫士 - 保险箱
.text,.rdata,.data,INIT,.rsrc,.reloc,
Secdrv
[A ] 14. c:\windows\system32\drivers\secdrv.sys
Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.
Macrovision SECURITY Driver
.text,.rdata,.data,PAGE,INIT,.rsrc,.reloc,
TesSafe
[A ] 15. c:\windows\system32\tessafe.sys
TENCENT
TesSafe NT Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
viaagp1
[A ] 16. c:\windows\system32\drivers\viaagp1.sys
VIA Technologies, Inc.
VIA NT AGP Filter
.text,.rdata,.data,PAGE,INIT,.rsrc,.reloc,
VIAMRAID
[A ] 17. c:\windows\system32\drivers\viamraid.sys
VIA Technologies inc,.ltd
VIA RAID DRIVER FOR WIN 2000/XP/2003IA32
.text,.rdata,.data,INIT,.rsrc,.reloc,
WudfPf
[A ] 18. c:\windows\system32\drivers\wudfpf.sys
Microsoft Corporation
Windows Driver Foundation - User-mode Driver Framework Platform Driver
.text,.rdata,.data,PAGE,.edata,INIT,.rsrc,.reloc,
WudfRd
[A ] 19. c:\windows\system32\drivers\wudfrd.sys
Microsoft Corporation
Windows Driver Foundation - User-mode Driver Framework Reflector
.text,.rdata,.data,PAGE,INIT,.rsrc,.reloc,
+ 系统登陆自运行
+ HKCU\Control Panel\Desktop
Scrnsave.exe
[A ] 20. c:\windows\system32\肥皂泡泡.scr
Microsoft Corporation
Bubbles Screen Saver
.text,.data,.rsrc,
+ IE浏览器加载模块
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
{01443AE4-0FD1-40FD-9C87-E93D1494C233}
[AM] 21. c:\program files\thunder\comdlls\xunleibho_now.dll
Thunder Networking Technologies,LTD
XunLeiBHO
.text,.rdata,.data,.rsrc,.reloc,
{01443AE5-0FD1-40FD-9C87-E93D1494C233}
[AM] 22. f:\旋窝\qqiehelper02.dll
腾讯公司
超级旋风下载组件
.text,.rdata,.data,.rsrc,.reloc,
{01443AEC-0FD1-40fd-9C87-E93D1494C233}
[AM] 23. c:\program files\thunder\comdlls\tdatonce_now.dll
Thunder Networking Technologies,LTD
迅雷浏览器高级特性支持模块
.text,.rdata,.data,.rsrc,.reloc,
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
[AM] 24. d:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll
Adobe Systems Incorporated
Adobe Acrobat IE Helper Version 7.0 for ActiveX
.text,.rdata,.data,.rsrc,.reloc,
{B69F34DD-F0F9-42DC-9EDD-957187DA688D}
[AM] 25. d:\program files\360safe\safemon\safemon.dll
360.CN
360安全卫士实时保护模块
.text,.rdata,.data,.share,.rsrc,.reloc,
+ HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions
Exec
[A ] 26. d:\9899\thunder.exe
Thunder Networking Technologies,LTD
.text,.rdata,.data,.rsrc,
+ 资源管理器加载模块
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Filter
text/xml
[AM] 27. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll
Microsoft Corporation
Microsoft Office XML MIME Filter
.text,.data,.rsrc,.reloc,
+ HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers
{F9DB5320-233E-11D1-9F84-707F02C10627}
[AM] 28. d:\program files\adobe\acrobat 7.0\activex\pdfshell.dll
Adobe Systems, Inc.
PDF Shell Extension
.text,.rdata,.data,.rsrc,.reloc,
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
HyperTerminal Icon Ext
[A ] 29. c:\windows\system32\hticons.dll
Hilgraeve, Inc.
HyperTerminal Applet Library
.text,.data,.rsrc,.reloc,
WinRAR shell extension
[A ] 30. c:\program files\winrar\rarext.dll
.text,.data,.tls,.idata,.edata,.rsrc,.reloc,
Shell Extensions for RealOne Player
[A ] 31. c:\program files\real\realplayer\rpshell.dll
RealNetworks, Inc.
RealPlayer Shell Extensions
.text,.rdata,.data,.rsrc,.reloc,
Microsoft Office HTML Icon Handler
[AM] 32. c:\program files\microsoft office\office11\msohev.dll
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,.reloc,
Web Folders
[A ] 33. c:\program files\common files\microsoft shared\web folders\msonxxxt.dll
Microsoft Corporation
Microsoft Web Folders
.text,.data,.rsrc,.reloc,
Portable Media Devices
[A ] 34. c:\windows\system32\audiodev.dll
Microsoft Corporation
Portable Media Devices Shell Extension
.text,.data,.rsrc,.reloc,
Portable Devices
[A ] 35. c:\windows\system32\wpdshext.dll
Microsoft Corporation
Portable Devices Shell Extension
.text,.data,.rsrc,.reloc,
Portable Devices Menu
[A ] 35. c:\windows\system32\wpdshext.dll
Microsoft Corporation
Portable Devices Shell Extension
.text,.data,.rsrc,.reloc,
NvCpl DesktopContext Class
[A ] 36. c:\windows\system32\nvcpl.dll
NVIDIA Corporation
NVIDIA Display Properties Extension
.text,.rdata,.data,CONST,.rsrc,.reloc,
Play on my TV helper
[A ] 36. c:\windows\system32\nvcpl.dll
NVIDIA Corporation
NVIDIA Display Properties Extension
.text,.rdata,.data,CONST,.rsrc,.reloc,
Desktop Explorer
[A ] 37. c:\windows\system32\nvshell.dll
.text,.rdata,.data,.idata,.shared,.rsrc,.reloc,
Desktop Explorer Menu
[A ] 37. c:\windows\system32\nvshell.dll
.text,.rdata,.data,.idata,.shared,.rsrc,.reloc,
nView Desktop Context Menu
[A ] 37. c:\windows\system32\nvshell.dll
.text,.rdata,.data,.idata,.shared,.rsrc,.reloc,
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
{AC2DC2EF-5165-40A3-8CDF-41DCA1B0901A}
[AM] 38. c:\windows\system32\shlhook.dll
Beijing Rising Technology Co., Ltd.
shlhook Module
.text,.rdata,.data,.rsrc,.reloc,
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
WPDShServiceObj
[AM] 39. c:\windows\system32\wpdshserviceobj.dll
Microsoft Corporation
Windows Portable Device Shell Service Object
.text,.data,.rsrc,.reloc,
+ 用户登陆自运行项目
+ HKLM\Software\Microsoft\Windows\CurrentVersion\Run
360Safebox
[A ] 40. c:\program files\360safebox\safeboxtray.exe
360安全中心
360保险箱
.text,.rdata,.data,.rsrc,
runeip
[AM] 41. f:\系统文件\runiep.exe
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware Monitor
.text,.rdata,.data,.rsrc,
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
KKDelay
[A ] 42. f:\系统文件\runonce.exe
Beijing Rising Technology Co., Ltd.
RunOnce Application
.text,.rdata,.data,.rsrc,
+ 开机执行
+ HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order
BootExecute
[A ] 43. c:\windows\system32\kknative.exe
Beijing Rising Technology Co., Ltd.
NativeAp
.text,.data,.rsrc,.reloc,
+ 映像劫持
+ HKCR\.html
htmlfile\Edit\Command
[A ] 44. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
htmlfile\open\Command
[A ] 45. f:\系统文件\tt浏览器3.8\bin\ttraveler.exe
Tencent
.text,.rdata,.data,Shared,.rsrc,
htmlfile\Print\Command
[A ] 44. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
htmlfile\TencentTraveler\Command
[A ] 45. f:\系统文件\tt浏览器3.8\bin\ttraveler.exe
Tencent
.text,.rdata,.data,Shared,.rsrc,
+ HKCR\.htm
htmlfile\Edit\Command
[A ] 44. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
htmlfile\open\Command
[A ] 45. f:\系统文件\tt浏览器3.8\bin\ttraveler.exe
Tencent
.text,.rdata,.data,Shared,.rsrc,
htmlfile\Print\Command
[A ] 44. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
htmlfile\TencentTraveler\Command
[A ] 45. f:\系统文件\tt浏览器3.8\bin\ttraveler.exe
Tencent
.text,.rdata,.data,Shared,.rsrc,
+ HKCR\.mp3
qvodplayer.mp3\open\Command
[A ] 46. c:\program files\qvodplayer\qvodplayer.exe
Shenzhen QVODTechnology Co.,Ltd
Qvod Player
.text,.rdata,.data,.rsrc,
+ 正在运行的进程
+ 00000098(152) nvsvc32.exe
00400000[0002C000]
[AM] 2. c:\windows\system32\nvsvc32.exe
NVIDIA Corporation
NVIDIA Driver Helper Service, Version 91.36
.text,.rdata,.data,.rsrc,
+ 000000e8(232) QvodTerminal.exe
00400000[0006C000]
[AM] 4. c:\program files\qvodplayer\qvodterminal.exe
Shenzhen QVOD Technology Co.,Ltd
QvodTerminal
.text,.rdata,.data,.rsrc,
+ 000001dc(476) svchost.exe
+ 000001e4(484) TTPlayer.exe
00400000[000E0000]
[ M] 47. c:\program files\ttplayer\ttplayer.exe
Alen Soft
千千静听
.text,.rdata,.data,.rsrc,
60000000[00055000]
[ M] 48. c:\program files\ttplayer\ttpcomm.dll
.text,text,.rdata,.data,.tls,.reloc,
10000000[00028000]
[AM] 25. d:\program files\360safe\safemon\safemon.dll
360.CN
360安全卫士实时保护模块
.text,.rdata,.data,.share,.rsrc,.reloc,
6FF50000[0003F000]
[ M] 49. c:\program files\ttplayer\ttpres.dll
Alen Soft
千千静听
.rsrc,.reloc,
00C90000[00006000]
[ M] 50. c:\program files\ttplayer\msdmo.dll
Microsoft Corporation
DMO Runtime
.text,.data,.rsrc,.reloc,
60150000[0000D000]
[ M] 51. c:\program files\ttplayer\addin\ttp_asf.dll
.text,.rdata,.data,.rsrc,.reloc,
01420000[0004B000]
[ M] 52. c:\program files\ttplayer\addin\ttp_aac.dll
.text,.rdata,.data,.rsrc,.reloc,
01470000[00021000]
[ M] 53. c:\program files\ttplayer\addin\ttp_ac3dts.dll
.text,.rdata,.data,.rsrc,.reloc,
08120000[00060000]
[ M] 54. c:\program files\ttplayer\wmadmod.dll
Microsoft Corporation
Windows Media Audio Decoder
.text,RT_CODE,.data,RT_DATA,.rsrc,.reloc,
72C80000[00008000]
[ M] 55. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
60350000[0000C000]
[ M] 56. c:\program files\ttplayer\addin\ttp_lrcsh.dll
.text,.rdata,.data,.rsrc,.reloc,
+ 0000024c(588) smss.exe
+ 00000288(648) csrss.exe
+ 000002a0(672) winlogon.exe
72C80000[00008000]
[ M] 55. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
+ 000002cc(716) services.exe
47260000[0000F000]
[ M] 57. c:\windows\apppatch\acadproc.dll
Microsoft Corporation
Windows Compatibility DLL
.text,.data,.rsrc,.reloc,
+ 000002d8(728) lsass.exe
+ 0000031c(796) TXPlatform.exe
00400000[00026000]
[ M] 58. e:\program files\tencent\qq\txplatform.exe
Tencent
TM2008
.text,.rdata,.data,.rsrc,
10000000[00028000]
[AM] 25. d:\program files\360safe\safemon\safemon.dll
360.CN
360安全卫士实时保护模块
.text,.rdata,.data,.share,.rsrc,.reloc,
+ 00000340(832) QQ.exe
00400000[001F0000]
[ M] 59. f:\2008传美\qq\qq.exe
TENCENT
QQ
.text,.rdata,.data,.rsrc,
10000000[00302000]
[ M] 60. f:\2008传美\qq\qqbaseclassindll.dll
TENCENT
QQBaseClassInDll DLL
.text,.rdata,.data,.rsrc,.reloc,
005F0000[000E5000]
[ M] 61. f:\2008传美\qq\qqhelperdll.dll
TENCENT
QQHelperDll DLL
.text,.rdata,.data,.rsrc,.reloc,
600A0000[00070000]
[ M] 62. f:\2008传美\qq\basicctrldll.dll
TENCENT
BasicCtrlDll DLL
.text,.rdata,.data,.rsrc,.reloc,
60AC0000[000F2000]
[ M] 63. f:\2008传美\qq\mfc42.dll
Microsoft Corporation
MFCDLL Shared Library - Retail Version
.text,.rdata,.data,.rsrc,.reloc,
00380000[00009000]
[ M] 64. f:\2008传美\qq\msimg32.dll
UPX0,UPX1,UPX2,
用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; QQDownload 1.7)
小牢 - 2008-5-22 23:25:00
00DA0000[00028000]
[AM] 25. d:\program files\360safe\safemon\safemon.dll
360.CN
360安全卫士实时保护模块
.text,.rdata,.data,.share,.rsrc,.reloc,
01150000[0003D000]
[ M] 65. f:\2008传美\qq\fineplus.dll
UPX0,UPX1,.rsrc,
011A0000[00009000]
[ M] 66. f:\2008传美\qq\fphelper.dll
UPX0,UPX1,UPX2,
62600000[00005000]
[ M] 67. f:\2008传美\qq\riched32.dll
Microsoft Corporation
Wrapper Dll for Richedit 1.0
.text,.data,.rsrc,.reloc,
62590000[00068000]
[ M] 68. f:\2008传美\qq\riched20.dll
Microsoft Corporation
Rich Text Edit Control, v3.1
.text,.data,.rsrc,.reloc,
613B0000[0003C000]
[ M] 69. f:\2008传美\qq\qqapi.dll
TENCENT
ModuleSample DLL
.text,.rdata,.data,.rsrc,.reloc,
608A0000[00045000]
[ M] 70. f:\2008传美\qq\loginctrl.dll
TENCENT
NewSkin
.text,.rdata,.data,.rsrc,.reloc,
608F0000[0009C000]
[ M] 71. f:\2008传美\qq\loginctrlres.dll
TENCENT
LoginCtrl DLL
.rdata,.rsrc,.reloc,
61D20000[0064E000]
[ M] 72. f:\2008传美\qq\qqres.dll
TENCENT
QQRes
.rsrc,.reloc,
619D0000[000D6000]
[ M] 73. f:\2008传美\qq\qqmainframe.dll
.text,.rdata,.data,.reloc,
60450000[001A3000]
[ M] 74. f:\2008传美\qq\gdiplus.dll
Microsoft Corporation
Microsoft GDI+
.text,.data,Shared,.rsrc,.reloc,
61BF0000[00129000]
[ M] 75. f:\2008传美\qq\qqplugin.dll
.text,.rdata,.data,.reloc,
62780000[00020000]
[ M] 76. f:\2008传美\qq\unreadmsgmgr.dll
.text,.rdata,.data,.reloc,
02890000[00177000]
[ M] 77. f:\2008传美\qq\cqqapplication.dll
.text,.rdata,.data,.reloc,
60410000[00040000]
[ M] 78. f:\2008传美\qq\flashavatardll.dll
FlashAvatarDll DLL
.text,.rdata,.data,.rsrc,.reloc,
60C60000[0005F000]
[ M] 79. f:\2008传美\qq\newskin.dll
TENCENT
NewSkin Module
.text,.rdata,.data,.rsrc,.reloc,
60A80000[00036000]
[ M] 80. f:\2008传美\qq\mailsummary.dll
TENCENT
MailSummary DLL
.text,.rdata,.data,.rsrc,.reloc,
62420000[00027000]
[ M] 81. f:\2008传美\qq\qqspace.dll
TENCENT
QQSpace DLL
.text,.rdata,.data,.rsrc,.reloc,
03160000[00031000]
[ M] 82. f:\2008传美\qq\vbscript.dll
.text,.rdata,.data,.reloc,
73460000[0006B000]
[ M] 83. f:\2008传美\qq\encode.dll
Microsoft Corporation
Microsoft (r) VBScript
.text,.data,.rsrc,.reloc,
61980000[00018000]
[ M] 84. f:\2008传美\qq\qqknowledgesearch.dll
TENCENT
QQKnowledgeSearch DLL
.text,.rdata,.data,.rsrc,.reloc,
60CC0000[00014000]
[ M] 85. f:\2008传美\qq\oemapplication.dll
TENCENT
OEMApplication DLL
.text,.rdata,.data,.rsrc,.reloc,
61810000[00072000]
[ M] 86. f:\2008传美\qq\qqgroupmng.dll
TENCENT
QQGroupMng DLL
.text,.rdata,.data,.rsrc,.reloc,
61150000[0025B000]
[ M] 87. f:\2008传美\qq\qqallinone.dll
TENCENT
NewSkin
.text,.rdata,.data,.rsrc,.reloc,
62620000[0002B000]
[ M] 88. f:\2008传美\qq\sccore.dll
TENCENT
SCCore.dll
.text,.rdata,.data,.shareds,.rsrc,.reloc,
60130000[00034000]
[ M] 89. f:\2008传美\qq\cameradll.dll
TENCENT
CameraDll DLL
.text,.rdata,.data,.MYSHARE,.rsrc,.reloc,
02830000[0002B000]
[ M] 90. f:\2008传美\qq\qqpet.dll
TENCENT
QQPet DLL
.text,.rdata,.data,.rsrc,.reloc,
72C80000[00008000]
[ M] 55. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
58050000[0008A000]
[ M] 91. c:\windows\system32\l3codeca.acm
Fraunhofer Institut Integrierte Schaltungen IIS
MPEG Layer-3 Audio Codec for MSACM
.text,.rdata,.data,.rsrc,.reloc,
62570000[00016000]
[ M] 92. f:\2008传美\qq\qringmng.dll
.text,.rdata,.data,.reloc,
627A0000[00017000]
[ M] 93. f:\2008传美\qq\userdefinedhead.dll
TENCENT
UserDefinedHead DLL
.text,.rdata,.data,.rsrc,.reloc,
61750000[0000E000]
[ M] 94. f:\2008传美\qq\qqconfigplugin.dll
TENCENT
QQConfigPlugin DLL
.text,.rdata,.data,.rsrc,.reloc,
61760000[00055000]
[ M] 95. f:\2008传美\qq\qqcustomface.dll
.text,.rdata,.data,.reloc,
613F0000[00041000]
[ M] 96. f:\2008传美\qq\qqavatar.dll
.text,.rdata,.data,.reloc,
60990000[000C5000]
[ M] 97. f:\2008传美\qq\longconnection.dll
TENCENT
LongConnection
.text,.rdata,.data,.rsrc,.reloc,
617D0000[0002C000]
[ M] 98. f:\2008传美\qq\qqfiletransfer.dll
TENCENT
QQFileTransfer DLL
.text,.rdata,.data,.rsrc,.reloc,
60CE0000[0000F000]
[ M] 99. f:\2008传美\qq\personaldesktop.dll
TENCENT
QQ个人桌面
.text,.rdata,.data,.rsrc,.reloc,
62450000[0004A000]
[ M] 100. f:\2008传美\qq\qqsysmsgmng.dll
.text,.rdata,.data,.reloc,
60110000[0001F000]
[ M] 101. f:\2008传美\qq\bqqapplication.dll
.text,.rdata,.data,.reloc,
60170000[0004F000]
[ M] 102. f:\2008传美\qq\commercesmng.dll
TENCENT
CommercesMng DLL
.text,.rdata,.data,.rsrc,.reloc,
04350000[00287000]
[ M] 103. f:\2008传美\qq\qqaddr.dll
深圳市腾讯计算机系统有限公司
腾讯通讯录
.text,.rdata,.data,.rsrc,.reloc,
62370000[0002C000]
[ M] 104. f:\2008传美\qq\qqscenemng.dll
.text,.rdata,.data,.reloc,
60050000[0000C000]
[ M] 105. f:\2008传美\qq\addrsearch.dll
腾讯科技(深圳)有限公司
QQPhoneHelper
.text,.rdata,.data,.rsrc,.reloc,
619A0000[00015000]
[ M] 106. f:\2008传美\qq\qqliveqmng.dll
TENCENT
QQLiveQMng DLL
.text,.rdata,.data,.rsrc,.reloc,
73900000[0002D000]
[ M] 107. c:\windows\system32\jpwb.ime
常诚研制
极品五笔输入法 版本6.7
.text,.data,.sgroup,.ShareDa,.rsrc,.reloc,
619C0000[0000E000]
[ M] 108. f:\2008传美\qq\qqmagicface.dll
TENCENT
QQMagicFace DLL
.text,.rdata,.data,.rsrc,.reloc,
62BE0000[0002C000]
[ M] 109. f:\2008传美\qq\vqqmodule.dll
TENCENT
VqqModule DLL
.text,.rdata,.data,.rsrc,.reloc,
62B70000[0006D000]
[ M] 110. f:\2008传美\qq\vqqallinone.dll
Tencent
VqqAllInOne
.text,.rodata,.rdata,.data,.rsrc,.reloc,
62710000[00012000]
[ M] 111. f:\2008传美\qq\tencent-proto1.dll
tencent
tencent-proto1
.text,.rdata,.data,.rsrc,.reloc,
626E0000[00024000]
[ M] 112. f:\2008传美\qq\tencent-comlib.dll
tencent
tencent-comlib
.text,.rdata,.data,.rsrc,.reloc,
62730000[0000D000]
[ M] 113. f:\2008传美\qq\tencent-proto2.dll
tencent
tencent-proto2
.text,.rdata,.data,.rsrc,.reloc,
607B0000[000DD000]
[ M] 114. f:\2008传美\qq\inplus.dll
Tencent
InPlusUnicode
.text,.rdata,.data,.data1,.rsrc,.reloc,
60780000[0001A000]
[ M] 115. f:\2008传美\qq\imageole.dll
TENCENT
TODO: <File description>
.text,.rdata,.data,.rsrc,.reloc,
60750000[00026000]
[ M] 116. f:\2008传美\qq\groupconnection.dll
TENCENT
GroupConnection DLL
.text,.rdata,.data,.rsrc,.reloc,
+ 00000364(868) svchost.exe
+ 00000378(888) alg.exe
+ 000003c0(960) svchost.exe
+ 00000438(1080) svchost.exe
+ 0000046c(1132) svchost.exe
+ 000004d8(1240) svchost.exe
+ 000005c0(1472) spoolsv.exe
+ 00000670(1648) Explorer.EXE
10000000[00028000]
[AM] 25. d:\program files\360safe\safemon\safemon.dll
360.CN
360安全卫士实时保护模块
.text,.rdata,.data,.share,.rsrc,.reloc,
164A0000[00023000]
[AM] 39. c:\windows\system32\wpdshserviceobj.dll
Microsoft Corporation
Windows Portable Device Shell Service Object
.text,.data,.rsrc,.reloc,
109C0000[0002C000]
[ M] 117. c:\windows\system32\portabledevicetypes.dll
Microsoft Corporation
Windows Portable Device (Parameter) Types Component
.text,.orpc,.data,.rsrc,.reloc,
72C80000[00008000]
[ M] 55. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
10930000[00049000]
[ M] 118. c:\windows\system32\portabledeviceapi.dll
Microsoft Corporation
Windows Portable Device API Components
.text,.orpc,.data,.rsrc,.reloc,
01FE0000[0000E000]
[AM] 24. d:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll
Adobe Systems Incorporated
Adobe Acrobat IE Helper Version 7.0 for ActiveX
.text,.rdata,.data,.rsrc,.reloc,
7C340000[00056000]
[ M] 119. c:\windows\system32\msvcr71.dll
Microsoft Corporation
Microsoft? C Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
01F40000[0001C000]
[AM] 28. d:\program files\adobe\acrobat 7.0\activex\pdfshell.dll
Adobe Systems, Inc.
PDF Shell Extension
.text,.rdata,.data,.rsrc,.reloc,
02E80000[00011000]
[AM] 38. c:\windows\system32\shlhook.dll
Beijing Rising Technology Co., Ltd.
shlhook Module
.text,.rdata,.data,.rsrc,.reloc,
+ 00000690(1680) iexplore.exe
10000000[00028000]
[AM] 25. d:\program files\360safe\safemon\safemon.dll
360.CN
360安全卫士实时保护模块
.text,.rdata,.data,.share,.rsrc,.reloc,
010D0000[0003F000]
[AM] 22. f:\旋窝\qqiehelper02.dll
腾讯公司
超级旋风下载组件
.text,.rdata,.data,.rsrc,.reloc,
01140000[0001A000]
[AM] 21. c:\program files\thunder\comdlls\xunleibho_now.dll
Thunder Networking Technologies,LTD
XunLeiBHO
.text,.rdata,.data,.rsrc,.reloc,
01180000[0000E000]
[AM] 24. d:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll
Adobe Systems Incorporated
Adobe Acrobat IE Helper Version 7.0 for ActiveX
.text,.rdata,.data,.rsrc,.reloc,
7C340000[00056000]
[ M] 119. c:\windows\system32\msvcr71.dll
Microsoft Corporation
Microsoft? C Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
325C0000[00012000]
[AM] 32. c:\program files\microsoft office\office11\msohev.dll
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,.reloc,
73900000[0002D000]
[ M] 107. c:\windows\system32\jpwb.ime
常诚研制
极品五笔输入法 版本6.7
.text,.data,.sgroup,.ShareDa,.rsrc,.reloc,
30000000[003AE000]
[ M] 120. c:\windows\system32\macromed\flash\flash9e.ocx
Adobe Systems, Inc.
Adobe Flash Player 9.0 r115
.text,.rdata,.data,.rodata,.rsrc,.reloc,
72C80000[00008000]
[ M] 55. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
07D60000[0000B000]
[AM] 27. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll
Microsoft Corporation
Microsoft Office XML MIME Filter
.text,.data,.rsrc,.reloc,
0BEF0000[00037000]
[ M] 121. c:\windows\system32\mfplat.dll
Microsoft Corporation
Media Foundation Platform DLL
.text,.data,.rsrc,.reloc,
07430000[00032000]
[AM] 23. c:\program files\thunder\comdlls\tdatonce_now.dll
Thunder Networking Technologies,LTD
迅雷浏览器高级特性支持模块
.text,.rdata,.data,.rsrc,.reloc,
+ 000006f0(1776) ctfmon.exe
+ 0000073c(1852) BoBoTurbo.exe
00400000[00046000]
[AM] 1. c:\windows\system32\boboturbo\boboturbo.exe
广州易播信息科技有限公司
BoBo P2P多媒体网络点播/广播/直播系统 加速器
.text,.rdata,.data,.rsrc,
+ 0000091c(2332) runiep.exe
00400000[00020000]
[AM] 41. f:\系统文件\runiep.exe
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware Monitor
.text,.rdata,.data,.rsrc,
7C140000[00103000]
[ M] 122. f:\系统文件\mfc71.dll
Microsoft Corporation
MFCDLL Shared Library - Retail Version
.text,.data,.rsrc,.reloc,
7C340000[00056000]
[ M] 123. f:\系统文件\msvcr71.dll
Microsoft Corporation
Microsoft? C Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
10000000[00028000]
[AM] 25. d:\program files\360safe\safemon\safemon.dll
360.CN
360安全卫士实时保护模块
.text,.rdata,.data,.share,.rsrc,.reloc,
00DC0000[00020000]
[ M] 124. c:\windows\system32\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
+ 00000af4(2804) Ras.exe
00400000[001FF000]
[ M] 125. f:\系统文件\ras.exe
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware
.text,.rdata,.data,.rsrc,
7C140000[00103000]
[ M] 122. f:\系统文件\mfc71.dll
Microsoft Corporation
MFCDLL Shared Library - Retail Version
.text,.data,.rsrc,.reloc,
7C340000[00056000]
[ M] 123. f:\系统文件\msvcr71.dll
Microsoft Corporation
Microsoft? C Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
7C3A0000[0007B000]
[ M] 126. f:\系统文件\msvcp71.dll
Microsoft Corporation
Microsoft? C++ Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
10000000[00013000]
[ M] 127. f:\系统文件\topsoft.dll
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware TopSoft
.text,.rdata,.data,.rsrc,.reloc,
00370000[00032000]
[ M] 128. f:\系统文件\ncomm.dll
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware
.text,.rdata,.data,.rsrc,.reloc,
00D50000[00028000]
[AM] 25. d:\program files\360safe\safemon\safemon.dll
360.CN
360安全卫士实时保护模块
.text,.rdata,.data,.share,.rsrc,.reloc,
00EF0000[0014D000]
[ M] 129. f:\系统文件\rasgui.dll
Beijing Rising Technology Co., Ltd.
RasGUI
.text,.rdata,.data,.rsrc,.reloc,
23800000[00022000]
[ M] 130. f:\系统文件\rsxml.dll
Beijing Rising Technology Co., Ltd.
RsXML
.text,.rdata,.data,.rsrc,.reloc,
02DC0000[00011000]
[AM] 38. c:\windows\system32\shlhook.dll
Beijing Rising Technology Co., Ltd.
shlhook Module
.text,.rdata,.data,.rsrc,.reloc,
02EB0000[00018000]
[ M] 131. f:\系统文件\ktrojan.dll
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware
.text,.rdata,.data,.rsrc,.reloc,
02EE0000[0002F000]
[ M] 132. f:\系统文件\engine.dll
Beijing Rising Technology Co., Ltd.
kaka engine
.text,.rdata,.data,.rsrc,.reloc,
02F20000[00040000]
[ M] 133. f:\系统文件\rsdialog.dll
Beijing Rising Technology Co., Ltd.
Rsdiaglo DLL
.text,.rdata,.data,.rsrc,.reloc,
02F70000[00024000]
[ M] 134. f:\系统文件\scanunv.dll
Beijing Rising Technology Co., Ltd.
.text,.rdata,.data,.rsrc,.reloc,
02FB0000[0001F000]
[ M] 135. f:\系统文件\secscan.dll
Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited
SecScan Dynamic Link Library
.text,.rdata,.data,.rsrc,.reloc,
03090000[00015000]
[ M] 136. f:\系统文件\secex.dll
Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited
SecScanE Dynamic Link Library
.text,.rdata,.data,.rsrc,.reloc,
033C0000[00012000]
[ M] 137. f:\系统文件\zip.dll
rising
zip
UPX0,UPX1,.rsrc,
30000000[003AE000]
[ M] 120. c:\windows\system32\macromed\flash\flash9e.ocx
Adobe Systems, Inc.
Adobe Flash Player 9.0 r115
.text,.rdata,.data,.rodata,.rsrc,.reloc,
72C80000[00008000]
[ M] 55. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
+ 00000ee4(3812) msiexec.exe
© 2000 - 2026 Rising Corp. Ltd.