扫描结果: 无可疑文件 系统活动进程 C:\WINDOWS\SYSTEM32\SMSS.EXE C:\WINDOWS\SYSTEM32\CSRSS.EXE C:\WINDOWS\SYSTEM32\WINLOGON.EXE C:\WINDOWS\SYSTEM32\MSACM32.DRV C:\WINDOWS\SYSTEM32\SERVICES.EXE C:\WINDOWS\APPPATCH\ACADPROC.DLL C:\WINDOWS\SYSTEM32\LSASS.EXE C:\WINDOWS\SYSTEM32\SVCHOST.EXE C:\WINDOWS\SYSTEM32\SVCHOST.EXE C:\WINDOWS\SYSTEM32\SVCHOST.EXE C:\WINDOWS\SYSTEM32\NORMALIZ.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SYSTEM32\SVCHOST.EXE C:\WINDOWS\SYSTEM32\SVCHOST.EXE C:\WINDOWS\SYSTEM32\NORMALIZ.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SYSTEM32\SPOOLSV.EXE C:\WINDOWS\SYSTEM32\MDIMON.DLL C:\WINDOWS\SYSTEM32\SPOOL\PRTPROCS\W32X86\MDIPPR.DLL C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\VS7DEBUG\MDM.EXE C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\VS7DEBUG\2052\MDMUI.DLL F:\新建文件夹\RSDETECT.EXE C:\WINDOWS\SYSTEM32\KMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\SYSLAY.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL C:\WINDOWS\SYSTEM32\UPS.EXE C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\PROGRAM FILES\NEWREMOTECONTROL\NEWRMTSERVICE.EXE C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL C:\WINDOWS\EXPLORER.EXE C:\WINDOWS\SYSTEM32\NORMALIZ.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\RAVEXT.DLL C:\WINDOWS\SYSTEM32\IEFRAME.DLL C:\WINDOWS\SYSTEM32\WPDSHSERVICEOBJ.DLL C:\WINDOWS\SYSTEM32\PORTABLEDEVICETYPES.DLL C:\WINDOWS\SYSTEM32\PORTABLEDEVICEAPI.DLL C:\WINDOWS\SYSTEM32\MSACM32.DRV D:\360SAFE\SAFEMON\SAFEMON.DLL D:\迅雷软件\THUNDER\COMDLLS\XUNLEIBHO_NOW.DLL D:\迅雷软件\THUNDER\COMPONENTS\RESWORKER\DSBHO_01.DLL D:\迅雷软件\THUNDER\COMPONENTS\RESWORKER\DATAPROCESSOR_01.DLL D:\WINRAR\RAREXT.DLL D:\QQ\QDSHM.DLL D:\QQ\MFC42.DLL F:\RISING\RAV\RSCOMMON.DLL C:\WINDOWS\SYSTEM32\WPDSHEXT.DLL C:\WINDOWS\SYSTEM32\AUDIODEV.DLL C:\WINDOWS\SYSTEM32\GOOGLEPINYIN2.IME C:\WINDOWS\SYSTEM32\IGFXPPH.DLL C:\WINDOWS\SYSTEM32\HCCUTILS.DLL C:\WINDOWS\SYSTEM32\IGFXRES.DLL C:\WINDOWS\SYSTEM32\IGFXSRVC.DLL C:\WINDOWS\SYSTEM32\IGFXDEV.DLL D:\迅雷软件\THUNDER\COMDLLS\TDATONCE_NOW.DLL C:\WINDOWS\SYSTEM32\MSVCP71.DLL C:\WINDOWS\SYSTEM32\MSVCR71.DLL C:\WINDOWS\SYSTEM32\HKCMD.EXE C:\WINDOWS\SYSTEM32\HCCUTILS.DLL C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SYSTEM32\IGFXDEV.DLL C:\WINDOWS\SYSTEM32\IGFXSRVC.DLL C:\WINDOWS\SYSTEM32\IGFXHK.DLL C:\WINDOWS\SYSTEM32\IGFXRES.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL C:\WINDOWS\SYSTEM32\ALG.EXE C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL F:\RISING\KAKA6\RSTRAY.EXE C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL F:\RISING\KAKA6\RSMGINFO.DLL C:\WINDOWS\SYSTEM32\NORMALIZ.DLL F:\RISING\KAKA6\RSXML.DLL F:\RISING\KAKA6\MSVCP71.DLL F:\RISING\KAKA6\MSVCR71.DLL F:\RISING\KAKA6\COMSERV.DLL F:\RISING\KAKA6\SYSLAY.DLL F:\RISING\KAKA6\RSCOMMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\PNGDLL.DLL F:\RISING\KAKA6\RUNIEP.DLL F:\RISING\KAKA6\NCOMM.DLL F:\RISING\RAV\PROCCOM.DLL F:\RISING\KAKA6\RSCOMMX2.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL F:\RISING\KAKA6\MSVCP60.DLL C:\WINDOWS\SYSTEM32\RAVEXT.DLL C:\PROGRAM FILES\GOOGLE\GOOGLE PINYIN 2\GOOGLEPINYINDAEMON.EXE C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SYSTEM32\NORMALIZ.DLL C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\CTFMON.EXE C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL D:\金山软件\KINGSOFT ANTISPY\MONITOR\KASTRAY.EXE C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL D:\金山软件\KINGSOFT ANTISPY\MONITOR\KASPOP.DLL C:\PROGRAM FILES\KINGSOFT\KAC\SERVICE\KACCORE.EXE C:\WINDOWS\SYSTEM32\KMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\SYSLAY.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\PROGRAM FILES\KINGSOFT\KAC\SERVICE\COREHELPER.DLL C:\WINDOWS\SYSTEM32\NORMALIZ.DLL C:\PROGRAM FILES\LEGEND\联想标准功能键盘驱动程序安装\SKDAEMON.EXE C:\PROGRAM FILES\LEGEND\联想标准功能键盘驱动程序安装\MACFUN.DLL C:\PROGRAM FILES\LEGEND\联想标准功能键盘驱动程序安装\OPENDRIVER.DLL C:\PROGRAM FILES\LEGEND\联想标准功能键盘驱动程序安装\OSD.DLL C:\WINDOWS\SYSTEM32\LXKEYLED.DLL C:\WINDOWS\SYSTEM32\KMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\SYSLAY.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL C:\WINDOWS\SYSTEM32\MSACM32.DRV F:\新建文件夹\RSDETECT.EXE C:\WINDOWS\SYSTEM32\KMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\SYSLAY.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL D:\金山软件\KINGSOFT ANTISPY\MONITOR\KUDISKMON.EXE C:\WINDOWS\SYSTEM32\KMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\SYSLAY.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SYSTEM32\KMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\SYSLAY.DLL C:\WINDOWS\SYSTEM32\IEFRAME.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL C:\PROGRAM FILES\INTERNET EXPLORER\IEPROXY.DLL C:\WINDOWS\SYSTEM32\NORMALIZ.DLL D:\迅雷软件\THUNDER\COMDLLS\TDATONCE_NOW.DLL C:\WINDOWS\SYSTEM32\MSVCP71.DLL C:\WINDOWS\SYSTEM32\MSVCR71.DLL D:\迅雷软件\THUNDER\COMDLLS\XUNLEIBHO_NOW.DLL D:\迅雷软件\THUNDER\COMPONENTS\RESWORKER\DSBHO_01.DLL D:\迅雷软件\THUNDER\COMPONENTS\RESWORKER\DATAPROCESSOR_01.DLL C:\WINDOWS\SYSTEM32\URLFILTER.DLL F:\RISING\KAKA6\URLRULE.DLL C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\FLASHGETBHO\FLASHGETBHO.DLL D:\金山软件\KINGSO~1\KASBROWSERSHIELD.DLL D:\金山软件\KINGSO~1\IEBUDDY.DLL D:\金山软件\KINGSO~1\IEBUDDYEXT.DLL D:\金山软件\KINGSO~1\KIS.DLL D:\金山软件\KINGSO~1\KANTRAY.DLL D:\金山软件\KINGSO~1\KAVAFISH.DLL C:\WINDOWS\SYSTEM32\IEAPFLTR.DLL C:\WINDOWS\SYSTEM32\PRIVACIE.DLL C:\WINDOWS\SYSTEM32\XMLLITE.DLL F:\RISING\RAV\RAVSCRCH.DLL C:\WINDOWS\SYSTEM32\MACROMED\FLASH\FLASH10A.OCX C:\WINDOWS\SYSTEM32\MSACM32.DRV C:\WINDOWS\SYSTEM32\GOOGLEPINYIN2.IME C:\WINDOWS\SYSTEM32\PORTABLEDEVICEAPI.DLL D:\迅雷软件\THUNDER\PROGRAM\THUNDER5.EXE D:\迅雷软件\THUNDER\PROGRAM\BUGREPORT.DLL C:\WINDOWS\SYSTEM32\NORMALIZ.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SYSTEM32\KMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\SYSLAY.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL D:\迅雷软件\THUNDER\PROGRAM\TASKMANAGER.DLL D:\迅雷软件\THUNDER\PROGRAM\DOWNLOAD_INTERFACE.DLL D:\迅雷软件\THUNDER\PROGRAM\MP.DLL C:\WINDOWS\SYSTEM32\MSVCP71.DLL C:\WINDOWS\SYSTEM32\MSVCR71.DLL D:\迅雷软件\THUNDER\PROGRAM\ASYN_FRAME.DLL D:\迅雷软件\THUNDER\PROGRAM\ATL71.DLL D:\迅雷软件\THUNDER\PROGRAM\XLNET.DLL D:\迅雷软件\THUNDER\PROGRAM\BHOSTUB.DLL D:\迅雷软件\THUNDER\PROGRAM\BACKEND_AGENT.DLL D:\迅雷软件\THUNDER\PROGRAM\ZLIB1.DLL D:\迅雷软件\THUNDER\PROGRAM\FLOATBAR.DLL D:\迅雷软件\THUNDER\COMPONENTS\DOWNANDPLAY\DOWNANDPLAY.DLL D:\迅雷软件\THUNDER\PROGRAM\PTL.DLL D:\迅雷软件\THUNDER\PROGRAM\DL_PEER_ID.DLL D:\迅雷软件\THUNDER\PROGRAM\XL_STAT.DLL D:\迅雷软件\THUNDER\PROGRAM\P2P_UPLOAD.DLL D:\迅雷软件\THUNDER\PROGRAM\P2P.DLL D:\迅雷软件\THUNDER\PROGRAM\FS.DLL D:\迅雷软件\THUNDER\PROGRAM\XLDC.DLL D:\迅雷软件\THUNDER\PROGRAM\STREAM.DLL D:\迅雷软件\THUNDER\PROGRAM\P2SP.DLL D:\迅雷软件\THUNDER\PROGRAM\DOWN_DISPATCHER.DLL D:\迅雷软件\THUNDER\PROGRAM\P2P_LOCAL_RES.DLL D:\迅雷软件\THUNDER\PROGRAM\AL.DLL D:\迅雷软件\THUNDER\PROGRAM\P2P_NETWORK_COM.DLL C:\WINDOWS\SYSTEM32\IEFRAME.DLL F:\RISING\RAV\RAVSCRCH.DLL D:\迅雷软件\THUNDER\PROGRAM\ITARGETAD.DLL C:\WINDOWS\SYSTEM32\MACROMED\FLASH\FLASH10A.OCX C:\WINDOWS\SYSTEM32\MSACM32.DRV D:\迅雷软件\THUNDER\COMPONENTS\INMEDIA\IEMBEDSHELL.DLL D:\迅雷软件\THUNDER\COMPONENTS\INMEDIA\IEMBED19.DLL D:\迅雷软件\THUNDER\COMPONENTS\INMEDIA\PLAYERHELPER.DLL D:\迅雷软件\THUNDER\COMPONENTS\INMEDIA\XLIPC.DLL D:\迅雷软件\THUNDER\COMPONENTS\P4PCLIENT\P4PCLIENT.DLL D:\迅雷软件\THUNDER\COMPONENTS\COMMUNITY\XLCOMMUNITY.DLL D:\迅雷软件\THUNDER\PROGRAM\REGISTERDLL.DLL D:\迅雷软件\THUNDER\PROGRAM\MSVCIRT.DLL D:\迅雷软件\THUNDER\PROGRAM\IMDT.DLL D:\迅雷软件\THUNDER\COMPONENTS\SECURITY\THUNDERSAFE.DLL D:\迅雷软件\THUNDER\COMPONENTS\SECURITY\CONFIGMANAGER.DLL D:\迅雷软件\THUNDER\COMPONENTS\SECURITY\SAFEMANAGER.DLL D:\迅雷软件\THUNDER\COMPONENTS\SECURITY\SAFESTATISTIC.DLL D:\迅雷软件\THUNDER\PROGRAM\XLNETU.DLL D:\迅雷软件\THUNDER\PLUGINS\XLSAFEHOST\XLSAFEHOST.DLL D:\迅雷软件\THUNDER\PLUGINS\XLSAFEHOST\THUNDERRAV\THUNDERRAV.DLL D:\迅雷软件\THUNDER\PLUGINS\XLSAFEHOST\THUNDERRAV\BIN\RSSCAN.DLL D:\迅雷软件\THUNDER\PROGRAM\EMULE_ID.DLL D:\迅雷软件\THUNDER\PROGRAM\BD.DLL D:\迅雷软件\THUNDER\PLUGINS\XLSAFEHOST\THUNDERRAV\BIN\RECOMP.DLL D:\迅雷软件\THUNDER\PLUGINS\XLSAFEHOST\THUNDERRAV\BIN\REFS.DLL D:\迅雷软件\THUNDER\PLUGINS\XLSAFEHOST\THUNDERRAV\BIN\VIRUSLIB.DLL D:\迅雷软件\THUNDER\PLUGINS\XLSAFEHOST\THUNDERRAV\BIN\RELIBLDR.DLL D:\迅雷软件\THUNDER\COMPONENTS\SEARCH\XLSEARCH.DLL D:\迅雷软件\THUNDER\COMPONENTS\INMEDIA\MEDIAADDIN18.DLL C:\WINDOWS\SYSTEM32\MFPLAT.DLL D:\迅雷软件\THUNDER\PROGRAM\LIVEUPDATE.DLL D:\迅雷软件\THUNDER\COMPONENTS\XLSOFTBASE\DRTHUNDERHOST.DLL D:\迅雷软件\THUNDER\COMPONENTS\XLSOFTBASE\DRKERNEL.DLL D:\迅雷软件\THUNDER\COMPONENTS\XLSOFTBASE\DRSOFTIDENTIFIER.DLL D:\迅雷软件\THUNDER\COMPONENTS\XLSOFTBASE\DRUPDATE.DLL D:\迅雷软件\THUNDER\PLUGINS\GOUGOUTOP\GOUGOUTOP.DLL D:\迅雷软件\THUNDER\PLUGINS\KANKANTOP\KANKANTOP.DLL D:\迅雷软件\THUNDER\COMPONENTS\EXPLORERHELPER\EXPLORERHELPER.DLL D:\迅雷软件\THUNDER\COMPONENTS\TIPS\TIPSCLIENT.DLL D:\迅雷软件\THUNDER\COMPONENTS\TIPS\XLSKIN.DLL C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL D:\迅雷软件\THUNDER\COMPONENTS\VPSHELL\VPSHELL.DLL D:\迅雷软件\THUNDER\COMPONENTS\USEREXPERIENCE\USEREXPERIENCE.DLL D:\迅雷软件\THUNDER\COMPONENTS\RESWORKER\DSXLCOM.DLL D:\迅雷软件\THUNDER\COMPONENTS\RESWORKER\DATAPROCESSOR_01.DLL D:\迅雷软件\THUNDER\COMPONENTS\RESWORKER\MEDIAWORKER.DLL D:\迅雷软件\THUNDER\COMPONENTS\DOWNLOADSTAT\DOWNLOADSTAT.DLL D:\迅雷软件\THUNDER\COMPONENTS\INMEDIA\THUNDERMINISITE.EXE C:\WINDOWS\SYSTEM32\NORMALIZ.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SYSTEM32\MSVCP71.DLL C:\WINDOWS\SYSTEM32\MSVCR71.DLL C:\WINDOWS\SYSTEM32\KMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\SYSLAY.DLL D:\迅雷软件\THUNDER\COMPONENTS\INMEDIA\BUGREPORT.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL D:\迅雷软件\THUNDER\COMPONENTS\INMEDIA\XLIPC.DLL D:\迅雷软件\THUNDER\COMPONENTS\INMEDIA\XLSKIN.DLL C:\WINDOWS\SYSTEM32\IEFRAME.DLL F:\RISING\RAV\RAVSCRCH.DLL C:\WINDOWS\SYSTEM32\MACROMED\FLASH\FLASH10A.OCX C:\WINDOWS\SYSTEM32\MSACM32.DRV D:\迅雷软件\THUNDER\COMPONENTS\INMEDIA\MEDIAADDIN18.DLL C:\WINDOWS\SYSTEM32\MFPLAT.DLL C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SYSTEM32\KMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\SYSLAY.DLL C:\WINDOWS\SYSTEM32\IEFRAME.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL C:\WINDOWS\SYSTEM32\IEUI.DLL C:\WINDOWS\SYSTEM32\XMLLITE.DLL C:\WINDOWS\SYSTEM32\NORMALIZ.DLL C:\PROGRAM FILES\INTERNET EXPLORER\IEPROXY.DLL C:\WINDOWS\SYSTEM32\MSFEEDS.DLL F:\RISING\RAV\CCENTER.EXE C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL F:\RISING\KAKA6\KNOWNSVR.EXE F:\RISING\KAKA6\NCOMM.DLL C:\WINDOWS\SYSTEM32\NORMALIZ.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL C:\WINDOWS\SYSTEM32\KMON.DLL F:\RISING\KAKA6\COMX3.DLL F:\RISING\KAKA6\SYSLAY.DLL F:\RISING\RAV\RAVTASK.EXE C:\WINDOWS\SYSTEM32\KMON.DLL C:\WINDOWS\SYSTEM32\IERTUTIL.DLL F:\RISING\RAV\PROCCOM.DLL F:\RISING\RAV\RSCOMMX2.DLL F:\RISING\RAV\RSCOMMON.DLL F:\RISING\RAV\RSAPPMGR.DLL F:\RISING\RAV\CFGDLL.DLL D:\360SAFE\SAFEMON\SAFEMON.DLL F:\RISING\RAV\RAVMOND.EXE F:\RISING\RAV\BWLIST.DLL C:\WINDOWS\SYSTEM32\MFC71.DLL C:\WINDOWS\SYSTEM32\MSVCR71.DLL C:\WINDOWS\SYSTEM32\MSVCP71.DLL F:\RISING\RAV\RSAPPMGR.DLL F:\RISING\RAV\CFGDLL.DLL F:\RISING\RAV\RSLOG.DLL F:\RISING\RAV\PROCCOM.DLL F:\RISING\RAV\RSCOMMX2.DLL F:\RISING\RAV\MONRULE.DLL F:\RISING\RAV\HOOKSYS.DLL F:\RISING\RAV\HOOKREG.DLL F:\RISING\RAV\HOOKNTOS.DLL F:\RISING\RAV\RSWALMON.DLL F:\RISING\RAV\RECOMP.DLL F:\RISING\RAV\REFS.DLL F:\RISING\RAV\FFR.DLL F:\RISING\RAV\RSSTORE.DLL F:\RISING\RAV\HOOKCONT.DLL F:\RISING\RAV\FAKESCAN.DLL F:\RISING\RAV\SCANNER.DLL F:\RISING\RAV\VIRUSLIB.DLL F:\RISING\RAV\RELIBLDR.DLL F:\RISING\RAV\HOOKWEB.DLL F:\RISING\RAV\NVFILE.DLL F:\RISING\RAV\SCANEXEC.DLL F:\RISING\RAV\UNEXE.DLL F:\RISING\RAV\SCANEX.DLL F:\RISING\RAV\PEARC.DLL F:\RISING\RAV\EXTFILE.DLL F:\RISING\RAV\SCANSCT.DLL F:\RISING\RAV\EXTMAIL.DLL F:\RISING\RAV\SCANPACK.DLL F:\RISING\RAV\REVM.DLL F:\RISING\RAV\URUTILS.DLL F:\RISING\RAV\UR000.DAT F:\RISING\RAV\EXTOLE.DLL F:\RISING\RAV\RAVSTUB.EXE F:\RISING\RAV\PROCCOM.DLL F:\RISING\RAV\RSCOMMX2.DLL F:\RISING\RAV\RSCOMMON.DLL F:\RISING\RAV\RAVMON.EXE C:\WINDOWS\SYSTEM32\MFC71.DLL C:\WINDOWS\SYSTEM32\MSVCR71.DLL C:\WINDOWS\SYSTEM32\MSVCP71.DLL F:\RISING\RAV\PROCCOM.DLL F:\RISING\RAV\RSCOMMX2.DLL F:\RISING\RAV\RSCOMMON.DLL F:\RISING\RAV\RECOMP.DLL F:\RISING\RAV\REFS.DLL F:\RISING\RAV\VIRUSLIB.DLL F:\RISING\RAV\RELIBLDR.DLL F:\RISING\RAV\RSAPPMGR.DLL F:\RISING\RAV\CFGDLL.DLL F:\RISING\RAV\MONRULE.DLL F:\RISING\RAV\PNGDLL.DLL F:\RISING\RAV\RSGUILIB.DLL F:\RISING\RAV\RSXML.DLL 普通自启动项 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run IMJPMIG8.1 = "C:\WINDOWS\IME\IMJP8_1\IMJPMIG.EXE" /SPOIL /REMADVDEF /MIGRATION32 PHIME2002ASync = C:\WINDOWS\SYSTEM32\IME\TINTLGNT\TINTSETP.EXE /SYNC PHIME2002A = C:\WINDOWS\SYSTEM32\IME\TINTLGNT\TINTSETP.EXE /IMENAME NewRmtService = C:\PROGRAM FILES\NEWREMOTECONTROL\NEWRMTSERVICE.EXE SoundMan = SOUNDMAN.EXE IgfxTray = C:\WINDOWS\SYSTEM32\IGFXTRAY.EXE HotKeysCmds = C:\WINDOWS\SYSTEM32\HKCMD.EXE Microsoft Pinyin IME Migration = C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMESC\IMSCMIG.EXE /INSTALL runeip = "F:\RISING\KAKA6\RSTRAY.EXE" /STARTUP 360Safebox = "C:\PROGRAM FILES\360SAFEBOX\SAFEBOXTRAY.EXE" /R 360Safetray = D:\360SAFE\SAFEMON\360TRAY.EXE /START Google Pinyin 2 Autoupdater = "C:\PROGRAM FILES\GOOGLE\GOOGLE PINYIN 2\GOOGLEPINYINDAEMON.EXE" RavTask = "F:\RISING\RAV\RAVTASK.EXE" -SYSTEM HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ctfmon.exe = C:\WINDOWS\SYSTEM32\CTFMON.EXE 金山清理专家实时保护 = "D:\金山软件\KINGSOFT ANTISPY\MONITOR\KASTRAY.EXE" AppInit_DLLs HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows AppInit_DLLs = kmon.dll 系统文件关联 .exe ==> exefile = "%1" %* .com ==> comfile = "%1" %* .cmd ==> cmdfile = "%1" %* .bat ==> batfile = "%1" %* .txt ==> txtfile = %SystemRoot%\system32\NOTEPAD.EXE %1 .scr ==> scrfile = "%1" /S .reg ==> regfile = regedit.exe "%1" .doc ==> Word.Document.8 = "F:\Microsoft Office 2007\Office12\WINWORD.EXE" /n /dde 其它启动项 WIN.INI 无信息 SYSTEM.INI SHELL = Explorer.exe SCRNSAVE.EXE = C:\WINDOWS\System32\logon.scr Winlogon 启动项 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify crypt32chain = CRYPT32.DLL cryptnet = CRYPTNET.DLL cscdll = CSCDLL.DLL dimsntfy = C:\WINDOWS\SYSTEM32\DIMSNTFY.DLL igfxcui = IGFXSRVC.DLL ScCertProp = WLNOTIFY.DLL Schedule = WLNOTIFY.DLL sclgntfy = SCLGNTFY.DLL SensLogn = WLNOTIFY.DLL termsrv = WLNOTIFY.DLL wlballoon = WLNOTIFY.DLL HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon Userinit = C:\WINDOWS\SYSTEM32\USERINIT.EXE shell = EXPLORER.EXE IE - BHO HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {01443AEC-0FD1-40fd-9C87-E93D1494C233} = D:\迅雷软件\Thunder\ComDlls\TDAtOnce_Now.dll {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} = NULL {889D2FEB-5411-4565-8998-1DD2C5261283} = D:\迅雷软件\Thunder\ComDlls\xunleiBHO_Now.dll {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} = C:\WINDOWS\system32\UrlFilter.dll {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} = C:\Documents and Settings\All Users\Application Data\FlashGetBHO\FlashGetBHO.dll {B69F34DD-F0F9-42DC-9EDD-957187DA688D} = D:\360safe\safemon\safemon.dll {D963BE1A-6B35-47DB-B002-49FAE71D85CC} = D:\金山软件\KINGSO~1\KASBrowserShield.DLL {ED6A25E8-08F5-4937-948D-3E10C4F47FAA} = D:\迅雷软件\Thunder\ComDlls\TDAtOnce_Now.dll Winsock SPI MSAFD Tcpip [TCP/IP] = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD Tcpip [UDP/IP] = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD Tcpip [RAW/IP] = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL RSVP UDP Service Provider = C:\WINDOWS\SYSTEM32\RSVPSP.DLL RSVP TCP Service Provider = C:\WINDOWS\SYSTEM32\RSVPSP.DLL MSAFD NetBIOS [\Device\NetBT_Tcpip_{AB47B557-9F66-4098-AC65-A2E5A7C6C0C3}] SEQPACKET 0 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD NetBIOS [\Device\NetBT_Tcpip_{AB47B557-9F66-4098-AC65-A2E5A7C6C0C3}] DATAGRAM 0 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD NetBIOS [\Device\NetBT_Tcpip_{D1F524CB-6D37-4A18-B014-AE378660CE21}] SEQPACKET 1 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD NetBIOS [\Device\NetBT_Tcpip_{D1F524CB-6D37-4A18-B014-AE378660CE21}] DATAGRAM 1 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD NetBIOS [\Device\NetBT_Tcpip_{08783B23-9458-4D40-AD38-93CB53261298}] SEQPACKET 2 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD NetBIOS [\Device\NetBT_Tcpip_{08783B23-9458-4D40-AD38-93CB53261298}] DATAGRAM 2 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD NetBIOS [\Device\NetBT_Tcpip_{79886007-3C83-4E84-9B67-2854B350D313}] SEQPACKET 3 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD NetBIOS [\Device\NetBT_Tcpip_{79886007-3C83-4E84-9B67-2854B350D313}] DATAGRAM 3 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD NetBIOS [\Device\NetBT_Tcpip_{BAADFF9E-51FF-4E3C-9A75-C23ED34C0A39}] SEQPACKET 4 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL MSAFD NetBIOS [\Device\NetBT_Tcpip_{BAADFF9E-51FF-4E3C-9A75-C23ED34C0A39}] DATAGRAM 4 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL 系统服务项 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services Alerter = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE ALG = C:\WINDOWS\SYSTEM32\ALG.EXE aspnet_state = C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\ASPNET_STATE.EXE AudioSrv = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS BITS = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS Browser = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS CiSvc = C:\WINDOWS\SYSTEM32\CISVC.EXE ClipSrv = C:\WINDOWS\SYSTEM32\CLIPSRV.EXE clr_optimization_v2.0.50727_32 = C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\MSCORSVW.EXE COMSysApp = C:\WINDOWS\SYSTEM32\DLLHOST.EXE /PROCESSID:{02D4B3F1-FD88-11D1-960D-00805FC79235} CryptSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS DcomLaunch = C:\WINDOWS\SYSTEM32\SVCHOST -K DCOMLAUNCH Dhcp = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS dmadmin = C:\WINDOWS\SYSTEM32\DMADMIN.EXE /COM dmserver = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS Dnscache = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETWORKSERVICE Dot3svc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K DOT3SVC EapHost = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K EAPSVCS ERSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS Eventlog = C:\WINDOWS\SYSTEM32\SERVICES.EXE EventSystem = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS FastUserSwitchingCompatibility = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS helpsvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS hkmsvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS HTTPFilter = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K HTTPFILTER ImapiService = C:\WINDOWS\SYSTEM32\IMAPI.EXE kaccore = "C:\PROGRAM FILES\KINGSOFT\KAC\SERVICE\KACCORE.EXE" lanmanserver = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS lanmanworkstation = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS LmHosts = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE MDM = "C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\VS7DEBUG\MDM.EXE" Messenger = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS mnmsrvc = C:\WINDOWS\SYSTEM32\MNMSRVC.EXE MSDTC = C:\WINDOWS\SYSTEM32\MSDTC.EXE MSIServer = C:\WINDOWS\SYSTEM32\MSIEXEC.EXE /V napagent = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS NetDDE = C:\WINDOWS\SYSTEM32\NETDDE.EXE NetDDEdsdm = C:\WINDOWS\SYSTEM32\NETDDE.EXE Netlogon = C:\WINDOWS\SYSTEM32\LSASS.EXE Netman = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS Nla = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS NtLmSsp = C:\WINDOWS\SYSTEM32\LSASS.EXE NtmsSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS odserv = "C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\OFFICE12\ODSERV.EXE" ose = "C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\SOURCE ENGINE\OSE.EXE" PlugPlay = C:\WINDOWS\SYSTEM32\SERVICES.EXE PolicyAgent = C:\WINDOWS\SYSTEM32\LSASS.EXE ProtectedStorage = C:\WINDOWS\SYSTEM32\LSASS.EXE RasAuto = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS RasMan = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS RDSessMgr = C:\WINDOWS\SYSTEM32\SESSMGR.EXE RemoteAccess = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS RpcLocator = C:\WINDOWS\SYSTEM32\LOCATOR.EXE RpcSs = C:\WINDOWS\SYSTEM32\SVCHOST -K RPCSS RsCCenter = "F:\RISING\RAV\CCENTER.EXE" RsRavMon = "F:\RISING\RAV\RAVMOND.EXE" RSVP = C:\WINDOWS\SYSTEM32\RSVP.EXE SamSs = C:\WINDOWS\SYSTEM32\LSASS.EXE SCardSvr = C:\WINDOWS\SYSTEM32\SCARDSVR.EXE Schedule = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS seclogon = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS SENS = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS SharedAccess = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS ShellHWDetection = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS Spooler = C:\WINDOWS\SYSTEM32\SPOOLSV.EXE srservice = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS SSDPSRV = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE stisvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K IMGSVC SwPrv = C:\WINDOWS\SYSTEM32\DLLHOST.EXE /PROCESSID:{5A0CDA42-E856-4D18-8A8C-04752D1E1F2C} SysmonLog = C:\WINDOWS\SYSTEM32\SMLOGSVC.EXE TapiSrv = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS TermService = C:\WINDOWS\SYSTEM32\SVCHOST -K DCOMLAUNCH Themes = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS TrkWks = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS upnphost = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE UPS = C:\WINDOWS\SYSTEM32\UPS.EXE VSS = C:\WINDOWS\SYSTEM32\VSSVC.EXE W32Time = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS WebClient = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE winmgmt = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS WmdmPmSN = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS WmiApSrv = C:\WINDOWS\SYSTEM32\WBEM\WMIAPSRV.EXE WMPNetworkSvc = "C:\PROGRAM FILES\WINDOWS MEDIA PLAYER\WMPNETWK.EXE" wscsvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS wuauserv = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS WudfSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K WUDFSERVICEGROUP WZCSVC = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS xmlprov = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS 文件驱动 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services FltMgr = C:\WINDOWS\SYSTEM32\DRIVERS\FLTMGR.SYS MRxDAV = C:\WINDOWS\SYSTEM32\DRIVERS\MRXDAV.SYS MRxSmb = C:\WINDOWS\SYSTEM32\DRIVERS\MRXSMB.SYS NetBIOS = C:\WINDOWS\SYSTEM32\DRIVERS\NETBIOS.SYS Rdbss = C:\WINDOWS\SYSTEM32\DRIVERS\RDBSS.SYS sr = C:\WINDOWS\SYSTEM32\DRIVERS\SR.SYS Srv = C:\WINDOWS\SYSTEM32\DRIVERS\SRV.SYS 系统驱动项 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services 360AntiArp = C:\WINDOWS\SYSTEM32\DRIVERS\360ANTIARP.SYS ACPI = C:\WINDOWS\SYSTEM32\DRIVERS\ACPI.SYS aec = C:\WINDOWS\SYSTEM32\DRIVERS\AEC.SYS AFD = C:\WINDOWS\SYSTEM32\DRIVERS\AFD.SYS ALCXWDM = C:\WINDOWS\SYSTEM32\DRIVERS\ALCXWDM.SYS ANKA_USB_Tran = C:\WINDOWS\SYSTEM32\DRIVERS\ANKA_USB_TRAN.SYS AsyncMac = C:\WINDOWS\SYSTEM32\DRIVERS\ASYNCMAC.SYS atapi = C:\WINDOWS\SYSTEM32\DRIVERS\ATAPI.SYS Atmarpc = C:\WINDOWS\SYSTEM32\DRIVERS\ATMARPC.SYS audstub = C:\WINDOWS\SYSTEM32\DRIVERS\AUDSTUB.SYS basic2 = C:\WINDOWS\SYSTEM32\DRIVERS\HSF_BSC2.SYS Cdrom = C:\WINDOWS\SYSTEM32\DRIVERS\CDROM.SYS Disk = C:\WINDOWS\SYSTEM32\DRIVERS\DISK.SYS dmboot = C:\WINDOWS\SYSTEM32\DRIVERS\DMBOOT.SYS dmio = C:\WINDOWS\SYSTEM32\DRIVERS\DMIO.SYS dmload = C:\WINDOWS\SYSTEM32\DRIVERS\DMLOAD.SYS DMusic = C:\WINDOWS\SYSTEM32\DRIVERS\DMUSIC.SYS drmkaud = C:\WINDOWS\SYSTEM32\DRIVERS\DRMKAUD.SYS Fdc = C:\WINDOWS\SYSTEM32\DRIVERS\FDC.SYS Flpydisk = C:\WINDOWS\SYSTEM32\DRIVERS\FLPYDISK.SYS FsVga = C:\WINDOWS\SYSTEM32\DRIVERS\FSVGA.SYS Ftdisk = C:\WINDOWS\SYSTEM32\DRIVERS\FTDISK.SYS gameenum = C:\WINDOWS\SYSTEM32\DRIVERS\GAMEENUM.SYS Gpc = C:\WINDOWS\SYSTEM32\DRIVERS\MSGPC.SYS HidUsb = C:\WINDOWS\SYSTEM32\DRIVERS\HIDUSB.SYS HookCont = C:\WINDOWS\SYSTEM32\DRIVERS\HOOKCONT.SYS HookNtos = C:\WINDOWS\SYSTEM32\DRIVERS\HOOKNTOS.SYS HookReg = C:\WINDOWS\SYSTEM32\DRIVERS\HOOKREG.SYS HookSys = C:\WINDOWS\SYSTEM32\DRIVERS\HOOKSYS.SYS HSFHWBS2 = C:\WINDOWS\SYSTEM32\DRIVERS\HSFHWBS2.SYS HSF_DP = C:\WINDOWS\SYSTEM32\DRIVERS\HSF_DP.SYS HSF_DPV = C:\WINDOWS\SYSTEM32\DRIVERS\HSF_DPV.SYS hsf_msft = C:\WINDOWS\SYSTEM32\DRIVERS\HSF_MSFT.SYS HTTP = C:\WINDOWS\SYSTEM32\DRIVERS\HTTP.SYS i8042prt = C:\WINDOWS\SYSTEM32\DRIVERS\I8042PRT.SYS ialm = C:\WINDOWS\SYSTEM32\DRIVERS\IALMNT5.SYS Imapi = C:\WINDOWS\SYSTEM32\DRIVERS\IMAPI.SYS IntelIde = C:\WINDOWS\SYSTEM32\DRIVERS\INTELIDE.SYS intelppm = C:\WINDOWS\SYSTEM32\DRIVERS\INTELPPM.SYS ip6fw = C:\WINDOWS\SYSTEM32\DRIVERS\IP6FW.SYS IpFilterDriver = C:\WINDOWS\SYSTEM32\DRIVERS\IPFLTDRV.SYS IpInIp = C:\WINDOWS\SYSTEM32\DRIVERS\IPINIP.SYS IpNat = C:\WINDOWS\SYSTEM32\DRIVERS\IPNAT.SYS IPSec = C:\WINDOWS\SYSTEM32\DRIVERS\IPSEC.SYS IRENUM = C:\WINDOWS\SYSTEM32\DRIVERS\IRENUM.SYS isapnp = C:\WINDOWS\SYSTEM32\DRIVERS\ISAPNP.SYS Kbdclass = C:\WINDOWS\SYSTEM32\DRIVERS\KBDCLASS.SYS kmixer = C:\WINDOWS\SYSTEM32\DRIVERS\KMIXER.SYS mdmxsdk = C:\WINDOWS\SYSTEM32\DRIVERS\MDMXSDK.SYS Mouclass = C:\WINDOWS\SYSTEM32\DRIVERS\MOUCLASS.SYS mouhid = C:\WINDOWS\SYSTEM32\DRIVERS\MOUHID.SYS MSKSSRV = C:\WINDOWS\SYSTEM32\DRIVERS\MSKSSRV.SYS MSPCLOCK = C:\WINDOWS\SYSTEM32\DRIVERS\MSPCLOCK.SYS MSPQM = C:\WINDOWS\SYSTEM32\DRIVERS\MSPQM.SYS mssmbios = C:\WINDOWS\SYSTEM32\DRIVERS\MSSMBIOS.SYS ms_mpu401 = C:\WINDOWS\SYSTEM32\DRIVERS\MSMPU401.SYS NdisTapi = C:\WINDOWS\SYSTEM32\DRIVERS\NDISTAPI.SYS Ndisuio = C:\WINDOWS\SYSTEM32\DRIVERS\NDISUIO.SYS NdisWan = C:\WINDOWS\SYSTEM32\DRIVERS\NDISWAN.SYS NetBT = C:\WINDOWS\SYSTEM32\DRIVERS\NETBT.SYS NwlnkFlt = C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKFLT.SYS NwlnkFwd = C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKFWD.SYS OZING_Q3_USB = C:\WINDOWS\SYSTEM32\DRIVERS\OZING_Q3_USB.SYS Parport = C:\WINDOWS\SYSTEM32\DRIVERS\PARPORT.SYS PCI = C:\WINDOWS\SYSTEM32\DRIVERS\PCI.SYS PCIIde = C:\WINDOWS\SYSTEM32\DRIVERS\PCIIDE.SYS PptpMiniport = C:\WINDOWS\SYSTEM32\DRIVERS\RASPPTP.SYS Processor = C:\WINDOWS\SYSTEM32\DRIVERS\PROCESSR.SYS PSched = C:\WINDOWS\SYSTEM32\DRIVERS\PSCHED.SYS Ptilink = C:\WINDOWS\SYSTEM32\DRIVERS\PTILINK.SYS RasAcd = C:\WINDOWS\SYSTEM32\DRIVERS\RASACD.SYS Rasl2tp = C:\WINDOWS\SYSTEM32\DRIVERS\RASL2TP.SYS RasPppoe = C:\WINDOWS\SYSTEM32\DRIVERS\RASPPPOE.SYS Raspti = C:\WINDOWS\SYSTEM32\DRIVERS\RASPTI.SYS RDPCDD = C:\WINDOWS\SYSTEM32\DRIVERS\RDPCDD.SYS redbook = C:\WINDOWS\SYSTEM32\DRIVERS\REDBOOK.SYS Rksample = C:\WINDOWS\SYSTEM32\DRIVERS\HSF_SAMP.SYS RsNTGDI = C:\WINDOWS\SYSTEM32\DRIVERS\RSNTGDI.SYS rtl8139 = C:\WINDOWS\SYSTEM32\DRIVERS\RTL8139.SYS SafeBoxKrnl = C:\WINDOWS\SYSTEM32\DRIVERS\SAFEBOXKRNL.SYS ScsiPort = C:\WINDOWS\SYSTEM32\DRIVERS\SCSIPORT.SYS Secdrv = C:\WINDOWS\SYSTEM32\DRIVERS\SECDRV.SYS serenum = C:\WINDOWS\SYSTEM32\DRIVERS\SERENUM.SYS Serial = C:\WINDOWS\SYSTEM32\DRIVERS\SERIAL.SYS Skkbdf = C:\WINDOWS\SYSTEM32\DRIVERS\SKKBDF.SYS splitter = C:\WINDOWS\SYSTEM32\DRIVERS\SPLITTER.SYS swenum = C:\WINDOWS\SYSTEM32\DRIVERS\SWENUM.SYS swmidi = C:\WINDOWS\SYSTEM32\DRIVERS\SWMIDI.SYS sysaudio = C:\WINDOWS\SYSTEM32\DRIVERS\SYSAUDIO.SYS Tcpip = C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS TermDD = C:\WINDOWS\SYSTEM32\DRIVERS\TERMDD.SYS tunmp = C:\WINDOWS\SYSTEM32\DRIVERS\TUNMP.SYS UIUSys = C:\WINDOWS\SYSTEM32\DRIVERS\UIUSYS.SYS Update = C:\WINDOWS\SYSTEM32\DRIVERS\UPDATE.SYS usbehci = C:\WINDOWS\SYSTEM32\DRIVERS\USBEHCI.SYS usbhub = C:\WINDOWS\SYSTEM32\DRIVERS\USBHUB.SYS USBSTOR = C:\WINDOWS\SYSTEM32\DRIVERS\USBSTOR.SYS usbuhci = C:\WINDOWS\SYSTEM32\DRIVERS\USBUHCI.SYS VgaSave = C:\WINDOWS\SYSTEM32\DRIVERS\VGA.SYS Wanarp = C:\WINDOWS\SYSTEM32\DRIVERS\WANARP.SYS wdmaud = C:\WINDOWS\SYSTEM32\DRIVERS\WDMAUD.SYS winachsf = C:\WINDOWS\SYSTEM32\DRIVERS\HSF_CNXT.SYS WudfPf = C:\WINDOWS\SYSTEM32\DRIVERS\WUDFPF.SYS WudfRd = C:\WINDOWS\SYSTEM32\DRIVERS\WUDFRD.SYS {6080A529-897E-4629-A488-ABA0C29B635E} = C:\WINDOWS\SYSTEM32\DRIVERS\IALMSBW.SYS {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} = C:\WINDOWS\SYSTEM32\DRIVERS\IALMKCHW.SYS