瑞星卡卡电脑诊断日志 v1.30 (2008-11-23 14:21:3) 北京瑞星信息技术有限公司 注释: [A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + 系统服务 + HKLM\System\CurrentControlSet\Services aint [AM] 1. c:\windows\system32\maxtho.exe asni143 [AM] 2. c:\windows\system32\asni1.exe Ati HotKey Poller [A ] 3. c:\windows\system32\ati2evxx.exe ATI Smart [A ] 4. c:\windows\system32\ati2sgag.exe BITS [AM] 5. c:\windows\system32\rjmgtdc.dll DefWatch [AM] 6. c:\program files\symantec_client_security\symantec antivirus\defwatch.exe dsfg45fj [A ] 7. c:\windows\hf34h.exe kaccore [A ] 8. c:\program files\kingsoft\kac\service\kaccore.exe kwg2harh [A ] 9. c:\windows\sxfdwe4h.exe loae [AM] 10. c:\windows\system32\loae.exe Norton AntiVirus Server [AM] 11. c:\program files\symantec_client_security\symantec antivirus\rtvscan.exe PlugServer [AM] 12. c:\program files\starsec\plugserver.exe PoliceAgent [AM] 13. c:\windows\system32\winsxs\smss.exe scvst [A ] 14. c:\windows\system32\scvst.exe svost [A ] 15. c:\windows\system32\svost.exe tstm [AM] 16. c:\windows\system32\tstm.exe UMWdf [AM] 17. c:\windows\system32\wdfmgr.exe W32Time [AM] 18. c:\windows\system32\wins\ttyqdorey.dll wabn [AM] 19. c:\windows\system32\wabn.exe + 内核驱动 + HKLM\System\CurrentControlSet\Services 11651187 [A ] 20. c:\windows\system32\drivers\11651078.sys aeaudio [A ] 21. c:\windows\system32\drivers\aeaudio.sys dump_wmimmc [A ] 22. f:\tiancity\popkart\m01\gameguard\dump_wmimmc.sys efuyq [A ] 23. c:\windows\system32\drivers\efuyq.sys FETNDIS [A ] 24. c:\windows\system32\drivers\dlkfet5b.sys KAVBootC [A ] 25. c:\windows\system32\drivers\kavbootc.sys KAVSafe [A ] 26. c:\windows\system32\drivers\kavsafe.sys MegaIDE [A ] 27. c:\windows\system32\drivers\megaide.sys NAVAP [A ] 28. c:\progra~1\symant~1\symant~1\navap.sys NAVAPEL [A ] 29. c:\program files\symantec_client_security\symantec antivirus\navapel.sys NAVENG [A ] 30. c:\progra~1\common~1\symant~1\virusd~1\20081122.003\naveng.sys NAVEX15 [A ] 31. c:\progra~1\common~1\symant~1\virusd~1\20081122.003\navex15.sys NPF [A ] 32. c:\windows\system32\drivers\npf.sys PxHelp20 [A ] 33. c:\windows\system32\drivers\pxhelp20.sys Secdrv [A ] 34. c:\windows\system32\drivers\secdrv.sys sf [A ] 35. c:\windows\system32\drivers\sf.sys smwdm [A ] 36. c:\windows\system32\drivers\smwdm.sys SymEvent [A ] 37. c:\program files\symantec\symevent.sys tjldn [A ] 38. c:\windows\system32\drivers\tjldn.sys VIAudio [A ] 39. c:\windows\system32\drivers\viaudios.sys + 系统登陆自运行 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify NavLogon [AM] 40. c:\windows\system32\navlogon.dll + IE浏览器加载模块 + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {01443AEC-0FD1-40fd-9C87-E93D1494C233} [AM] 41. d:\program files\thunder network\thunder\comdlls\tdatonce_now.dll {889D2FEB-5411-4565-8998-1DD2C5261283} [AM] 42. d:\program files\thunder network\thunder\comdlls\xunleibho_now.dll {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [AM] 43. c:\windows\system32\urlfilter.dll + HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions Exec [A ] 44. d:\program files\thunder network\thunder\thunder.exe + 资源管理器加载模块 + HKLM\SOFTWARE\Classes\PROTOCOLS\Handler cdo [A ] 45. c:\program files\common files\microsoft shared\web folders\pkmcdo.dll mso-offdap [A ] 46. c:\program files\common files\microsoft shared\web components\10\owc10.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved HyperTerminal Icon Ext [A ] 47. c:\windows\system32\hticons.dll WinRAR shell extension [AM] 48. c:\program files\winrar\rarext.dll PicaView [A ] 49. c:\program files\acdsee\picaview.dll Web Folders [A ] 50. c:\program files\common files\microsoft shared\web folders\msonsext.dll Microsoft Office HTML Icon Handler [AM] 51. c:\program files\microsoft office\office10\msohev.dll LDVP Shell Extensions [AM] 52. c:\program files\common files\symantec shared\ssc\vpshell2.dll + 用户登陆自运行项目 + HKLM\Software\Microsoft\Windows\CurrentVersion\Run vptray [AM] 53. c:\program files\symantec_client_security\symantec antivirus\vptray.exe runeip [A ] 54. d:\program files\rising\antispyware\rstray.exe dsfg45fj [AM] 55. c:\windows\dsfg45fj.exe sdfdh234j [A ] 9. c:\windows\sxfdwe4h.exe + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce KKDelay [A ] 56. d:\program files\rising\antispyware\runonce.exe + 开机执行 + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 57. c:\windows\system32\kknative.exe + 映像劫持 + HKCR\.bat batfile\print\Command [A ] 58. c:\p + HKCR\.html htmlfile\Edit\Command [A ] 59. c:\program files\microsoft office\office10\msohtmed.exe htmlfile\Print\Command [A ] 59. c:\program files\microsoft office\office10\msohtmed.exe [A ] 58. c:\p + HKCR\.htm htmlfile\Edit\Command [A ] 59. c:\program files\microsoft office\office10\msohtmed.exe htmlfile\Print\Command [A ] 59. c:\program files\microsoft office\office10\msohtmed.exe [A ] 58. c:\p + HKCR\.log txtfile\print\Command [A ] 58. c:\p + HKCR\.txt txtfile\print\Command [A ] 58. c:\p + HKCR\.cmd cmdfile\print\Command [A ] 58. c:\p + HKCR\.reg regfile\print\Command [A ] 58. c:\p + HKCR\.vbs VBSFile\Print\Command [A ] 58. c:\p + HKCR\.js JSFile\Print\Command [A ] 58. c:\p + HKCR\.ini inifile\print\Command [A ] 58. c:\p + HKCR\.inf inffile\print\Command [A ] 58. c:\p + 程序初始化和已知动态连接库 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows AppInit_DLLs [AM] 60. c:\windows\system32\kmon.dll + 打印机监控 + HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors HPLJ1020LM [AM] 61. c:\windows\system32\zlhp1020.dll + 其他自启动项目 + C:\Documents and Settings\All Users\「开始」菜单\程序\启动 河南网通宽带用户客户端.lnk [AM] 62. c:\program files\racer-henan-cnc\racer.exe + 正在运行的进程 + 000001dc(476) loae.exe 00400000[00007000] [AM] 10. c:\windows\system32\loae.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00760000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 00000218(536) smss.exe + 00000258(600) csrss.exe + 00000270(624) winlogon.exe 51690000[0000C000] [AM] 40. c:\windows\system32\navlogon.dll 72C80000[00008000] [ M] 65. c:\windows\system32\msacm32.drv + 0000029c(668) services.exe + 000002a8(680) lsass.exe + 00000310(784) DefWatch.exe 00400000[00008000] [AM] 6. c:\program files\symantec_client_security\symantec antivirus\defwatch.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 003D0000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 00000344(836) svchost.exe + 00000390(912) svchost.exe + 000003f0(1008) svchost.exe 01A10000[00099000] [AM] 18. c:\windows\system32\wins\ttyqdorey.dll 10000000[00026000] [AM] 5. c:\windows\system32\rjmgtdc.dll + 0000041c(1052) svchost.exe + 00000428(1064) maxtho.exe 00400000[00007000] [AM] 1. c:\windows\system32\maxtho.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00760000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 00000474(1140) asni1.exe 00400000[00007000] [AM] 2. c:\windows\system32\asni1.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00760000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 00000478(1144) svchost.exe + 00000544(1348) Rtvscan.exe 00400000[000EA000] [AM] 11. c:\program files\symantec_client_security\symantec antivirus\rtvscan.exe 501E0000[00007000] [ M] 66. c:\windows\system32\cba.dll 50240000[0000A000] [ M] 67. c:\windows\system32\msgsys.dll 50250000[00014000] [ M] 68. c:\windows\system32\nts.dll 50270000[00012000] [ M] 69. c:\windows\system32\pds.dll 516A0000[00011000] [ M] 70. c:\program files\symantec_client_security\symantec antivirus\navlu.dll 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00C70000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll 00D60000[0000D000] [ M] 71. c:\program files\symantec_client_security\symantec antivirus\navntutl.dll 51480000[0004D000] [ M] 72. c:\program files\symantec_client_security\symantec antivirus\i2ldvp3.dll 51370000[00031000] [ M] 73. c:\program files\symantec_client_security\symantec antivirus\navapi32.dll 69100000[00120000] [ M] 74. c:\program files\common files\symantec shared\virusdefs\20081122.003\navex32a.dll 692C0000[0002A000] [ M] 75. c:\program files\common files\symantec shared\virusdefs\20081122.003\naveng32.dll 51300000[0000E000] [ M] 76. c:\program files\symantec_client_security\symantec antivirus\navap32.dll 51710000[00031000] [ M] 77. c:\program files\common files\symantec shared\ssc\scandlgs.dll 51BE0000[0000E000] [ M] 78. c:\program files\symantec_client_security\symantec antivirus\decsdk.dll 51A20000[00008000] [ M] 79. c:\program files\symantec_client_security\symantec antivirus\dec2.dll 51AF0000[00009000] [ M] 80. c:\program files\symantec_client_security\symantec antivirus\dec2id.dll 51B90000[0000B000] [ M] 81. c:\program files\symantec_client_security\symantec antivirus\dec2uue.dll 51A30000[00016000] [ M] 82. c:\program files\symantec_client_security\symantec antivirus\dec2amg.dll 51A50000[0000A000] [ M] 83. c:\program files\symantec_client_security\symantec antivirus\dec2arj.dll 51A60000[0000F000] [ M] 84. c:\program files\symantec_client_security\symantec antivirus\dec2cab.dll 51A70000[0000F000] [ M] 85. c:\program files\symantec_client_security\symantec antivirus\dec2exe.dll 51AC0000[00013000] [ M] 86. c:\program files\symantec_client_security\symantec antivirus\dec2gzip.dll 51AE0000[0000A000] [ M] 87. c:\program files\symantec_client_security\symantec antivirus\dec2hqx.dll 51B00000[00013000] [ M] 88. c:\program files\symantec_client_security\symantec antivirus\dec2lha.dll 51B20000[00009000] [ M] 89. c:\program files\symantec_client_security\symantec antivirus\dec2lz.dll 51B30000[00019000] [ M] 90. c:\program files\symantec_client_security\symantec antivirus\dec2mime.dll 51B60000[0000D000] [ M] 91. c:\program files\symantec_client_security\symantec antivirus\dec2ss.dll 51B50000[0000F000] [ M] 92. c:\program files\symantec_client_security\symantec antivirus\dec2rtf.dll 51B70000[0000B000] [ M] 93. c:\program files\symantec_client_security\symantec antivirus\dec2tar.dll 02A00000[00011000] [ M] 94. c:\program files\symantec_client_security\symantec antivirus\dec2tnef.dll 51BA0000[00035000] [ M] 95. c:\program files\symantec_client_security\symantec antivirus\dec2zip.dll + 0000054c(1356) Explorer.EXE 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 72C80000[00008000] [ M] 65. c:\windows\system32\msacm32.drv 00F50000[0002B000] [AM] 48. c:\program files\winrar\rarext.dll 10000000[0000A000] [AM] 52. c:\program files\common files\symantec shared\ssc\vpshell2.dll 026E0000[00020000] [AM] 42. d:\program files\thunder network\thunder\comdlls\xunleibho_now.dll 23C30000[0000E000] [ M] 96. d:\program files\thunder network\thunder\components\resworker\dsbho_00.dll 23BE0000[0001E000] [ M] 97. d:\program files\thunder network\thunder\components\resworker\dataprocessor_00.dll 57F90000[00004000] [ M] 98. c:\windows\system32\tssoft32.acm + 000005bc(1468) spoolsv.exe 10000000[0001B000] [AM] 61. c:\windows\system32\zlhp1020.dll 00A70000[00007000] [ M] 99. c:\windows\system32\zlm.dll 715E0000[0000D000] [ M] 100. c:\windows\system32\spool\prtprocs\w32x86\imfprint.dll 71600000[00007000] [ M] 101. c:\windows\system32\imf32.dll 715D0000[00006000] [ M] 102. c:\windows\system32\ztag32.dll 71130000[00015000] [ M] 103. c:\windows\system32\zspool.dll + 00000670(1648) vptray.exe 00400000[00018000] [AM] 53. c:\program files\symantec_client_security\symantec antivirus\vptray.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 51420000[00051000] [ M] 104. c:\program files\symantec_client_security\symantec antivirus\cliscan.dll 10000000[0000D000] [ M] 71. c:\program files\symantec_client_security\symantec antivirus\navntutl.dll 513D0000[00030000] [ M] 105. c:\program files\symantec_client_security\symantec antivirus\cliproxy.dll + 00000688(1672) dsfg45fj.exe 00400000[00037000] [AM] 55. c:\windows\dsfg45fj.exe 73390000[00154000] [ M] 106. c:\windows\system32\msvbvm60.dll 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 22170000[0001C000] [ M] 107. c:\windows\system32\mswinsck.ocx + 00000698(1688) ctfmon.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll + 000006ac(1708) racer.exe 00400000[00025000] [AM] 62. c:\program files\racer-henan-cnc\racer.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[002F4000] [ M] 108. c:\program files\racer-henan-cnc\rwxre.dll 30000000[00027000] [ M] 109. c:\program files\racer-henan-cnc\nspr4.dll 008F0000[00065000] [ M] 110. c:\program files\racer-henan-cnc\xpcom_core.dll 008B0000[00007000] [ M] 111. c:\program files\racer-henan-cnc\plc4.dll 008C0000[00006000] [ M] 112. c:\program files\racer-henan-cnc\plds4.dll 00960000[00059000] [ M] 113. c:\program files\racer-henan-cnc\nss3.dll 009C0000[0005A000] [ M] 114. c:\program files\racer-henan-cnc\softokn3.dll 00A20000[00069000] [ M] 115. c:\program files\racer-henan-cnc\js3250.dll 00A90000[00016000] [ M] 116. c:\program files\racer-henan-cnc\gkgfx.dll 00AB0000[00014000] [ M] 117. c:\program files\racer-henan-cnc\xpcom_compat.dll 00AD0000[0001A000] [ M] 118. c:\program files\racer-henan-cnc\smime3.dll 00AF0000[0001B000] [ M] 119. c:\program files\racer-henan-cnc\ssl3.dll 00F40000[00012000] [ M] 120. c:\program files\racer-henan-cnc\components\jar50.dll 00F60000[00021000] [ M] 121. c:\program files\racer-henan-cnc\components\racer_base_comp.dll 00F90000[00009000] [ M] 122. c:\program files\racer-henan-cnc\racer_base.dll 00FA0000[00006000] [ M] 123. c:\program files\racer-henan-cnc\kbdhook.dll 012D0000[00235000] [ M] 124. c:\program files\racer-henan-cnc\components\gklayout.dll 01610000[0003A000] [ M] 125. c:\program files\racer-henan-cnc\nssckbi.dll 026B0000[00008000] [ M] 126. c:\program files\racer-henan-cnc\components\racer_ad_comp.dll 01530000[00006000] [ M] 127. c:\program files\racer-henan-cnc\components\racer_access_pppoe.dll 01540000[00034000] [ M] 128. c:\program files\racer-henan-cnc\pppoe.dll 02DD0000[00006000] [ M] 129. c:\program files\racer-henan-cnc\components\racer_nss4_comp.dll 02DE0000[00049000] [ M] 130. c:\program files\racer-henan-cnc\nss4.dll 02E30000[00041000] [ M] 131. c:\program files\racer-henan-cnc\wpcap.dll 02E80000[00015000] [ M] 132. c:\program files\racer-henan-cnc\packet.dll 02EA0000[00010000] [ M] 133. c:\program files\racer-henan-cnc\wanpacket.dll 03AF0000[002C0000] [ M] 134. c:\program files\racer-henan-cnc\plugins\npswf32.dll 72C80000[00008000] [ M] 65. c:\windows\system32\msacm32.drv + 0000070c(1804) kwg2harh.exe 00400000[00055000] [ M] 135. c:\windows\kwg2harh.exe 73390000[00154000] [ M] 106. c:\windows\system32\msvbvm60.dll 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 22170000[0001C000] [ M] 107. c:\windows\system32\mswinsck.ocx + 0000071c(1820) ie.exe 00400000[00006000] [ M] 136. c:\windows\system32\com\ie.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll + 000007ac(1964) PlugServer.exe 00400000[00064000] [AM] 12. c:\program files\starsec\plugserver.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 007A0000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll 00840000[00036000] [ M] 137. c:\program files\starsec\plugins\plugstarkey220.dll + 000007dc(2012) stormliv.exe 00400000[00075000] [ M] 138. c:\program files\stormii\stormliv.exe 75FF0000[00065000] [ M] 139. c:\program files\stormii\msvcp60.dll 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00860000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 00000894(2196) tstm.exe 00400000[00007000] [AM] 16. c:\windows\system32\tstm.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00760000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 00000904(2308) wdfmgr.exe 01000000[0000C000] [AM] 17. c:\windows\system32\wdfmgr.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00570000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 000009e4(2532) wabn.exe 00400000[00007000] [AM] 19. c:\windows\system32\wabn.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00760000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 00000cf0(3312) rundll32.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00980000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll 00A30000[00034000] [ M] 128. c:\program files\racer-henan-cnc\pppoe.dll + 0000132c(4908) knownsvr.exe 00400000[00072000] [ M] 140. d:\program files\rising\antispyware\knownsvr.exe 10000000[0002F000] [ M] 141. d:\program files\rising\antispyware\ncomm.dll 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 00A90000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00AC0000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 00003fd8(16344) IEXPLORE.EXE 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00A10000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll 012D0000[00023000] [AM] 41. d:\program files\thunder network\thunder\comdlls\tdatonce_now.dll 7C3A0000[0007B000] [ M] 142. c:\windows\system32\msvcp71.dll 7C340000[00056000] [ M] 143. c:\windows\system32\msvcr71.dll 01300000[00020000] [AM] 42. d:\program files\thunder network\thunder\comdlls\xunleibho_now.dll 23C30000[0000E000] [ M] 96. d:\program files\thunder network\thunder\components\resworker\dsbho_00.dll 23BE0000[0001E000] [ M] 97. d:\program files\thunder network\thunder\components\resworker\dataprocessor_00.dll 01380000[00018000] [AM] 43. c:\windows\system32\urlfilter.dll 013B0000[00011000] [ M] 144. d:\program files\rising\antispyware\urlrule.dll 32520000[00012000] [AM] 51. c:\program files\microsoft office\office10\msohev.dll 72C80000[00008000] [ M] 65. c:\windows\system32\msacm32.drv 06760000[00035000] [ M] 145. c:\windows\system32\xpsp3res.dll 30000000[002EE000] [ M] 146. c:\windows\system32\macromed\flash\flash9b.ocx 7C480000[0002F000] [ M] 147. c:\windows\system32\javacypt.dll 7C000000[000EA000] [ M] 148. c:\windows\system32\msjava.dll 7C520000[00048000] [ M] 149. c:\windows\system32\vmhelper.dll + 000062e0(25312) smss.exe 00400000[0006B000] [AM] 13. c:\windows\system32\winsxs\smss.exe 73390000[00154000] [ M] 106. c:\windows\system32\msvbvm60.dll 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00E90000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll 00FD0000[0000C000] [ M] 150. c:\windows\system32\ntsvc.ocx + 000066d8(26328) csrss.exe 00400000[0000B000] [ M] 151. c:\windows\system32\winsxs\csrss.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 008F0000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 00007b48(31560) 001.exe 00400000[00018000] [ M] 152. c:\windows\system32\zehin\001.exe 73390000[00154000] [ M] 106. c:\windows\system32\msvbvm60.dll 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00E40000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll + 0000ea4c(59980) svchost.exe 00400000[000E6000] [ M] 153. c:\windows\system32\wins\8781\svchost.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 30000000[002EE000] [ M] 146. c:\windows\system32\macromed\flash\flash9b.ocx 72C80000[00008000] [ M] 65. c:\windows\system32\msacm32.drv + 0000eb3c(60220) ras.exe 00400000[0000B000] [ M] 154. d:\program files\rising\antispyware\ras.exe 7C140000[00103000] [ M] 155. d:\program files\rising\antispyware\mfc71.dll 7C340000[00056000] [ M] 156. d:\program files\rising\antispyware\msvcr71.dll 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00047000] [ M] 157. d:\program files\rising\antispyware\kakamgr.dll 7C3A0000[0007B000] [ M] 158. d:\program files\rising\antispyware\msvcp71.dll 00B70000[00019000] [ M] 64. d:\program files\rising\antispyware\syslay.dll 00BA0000[00030000] [ M] 63. d:\program files\rising\antispyware\comx3.dll 00E10000[00058000] [ M] 159. d:\program files\rising\antispyware\dbmgr.dll 23800000[00022000] [ M] 160. d:\program files\rising\antispyware\rsxml.dll 00F70000[0002D000] [ M] 161. d:\program files\rising\antispyware\pweb.dll 00FA0000[000C1000] [ M] 162. d:\program files\rising\antispyware\pscan.dll 01070000[0002F000] [ M] 141. d:\program files\rising\antispyware\ncomm.dll 010C0000[00070000] [ M] 163. d:\program files\rising\antispyware\pset.dll 01150000[0002A000] [ M] 164. d:\program files\rising\antispyware\pdefend.dll 01180000[000B6000] [ M] 165. d:\program files\rising\antispyware\ptools.dll 01390000[0008C000] [ M] 166. d:\program files\rising\antispyware\psysinfo.dll 23900000[00040000] [ M] 167. d:\program files\rising\antispyware\pngdll.dll 02F30000[00022000] [ M] 168. d:\program files\rising\antispyware\secscan.dll 03120000[00018000] [ M] 169. d:\program files\rising\antispyware\secex.dll