瑞星卡卡电脑诊断日志 v1.30 (2009-3-5 8:38:17) 北京瑞星信息技术有限公司 注释: [A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + 系统服务 + HKLM\System\CurrentControlSet\Services Adobe LM Service [A ] 1. c:\program files\common files\adobe systems shared\service\adobelmsvc.exe Adobe Systems System Level Service Utility .text,.rdata,.data,.rsrc, aspnet_state [A ] 2. c:\windows\microsoft.net\framework\v2.0.50727\aspnet_state.exe Microsoft Corporation Microsoft ASP.NET State Server .text,.data,.rsrc, Autodesk Licensing Service [AM] 3. c:\program files\common files\autodesk shared\service\adskscsrv.exe Autodesk System Level Service Utility .text,.rdata,.data,.rsrc, clr_optimization_v2.0.50727_32 [A ] 4. c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe Microsoft Corporation .NET Runtime Optimization Service .text,.data,.rsrc, gusvc [A ] 5. c:\program files\google\common\google updater\googleupdaterservice.exe Google gusvc .text,.rdata,.data,.rsrc, HZ_CommSrv [AM] 6. c:\windows\system32\hz_commsrv.exe 华大智宝电子系统有限公司 华大智宝USB KEY通讯服务 .data,.rsrc, IDriverT [A ] 7. c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe Macrovision Corporation IDriverT Module .text,.rdata,.data,.rsrc, MDM [AM] 8. c:\program files\common files\microsoft shared\vs7debug\mdm.exe Microsoft Corporation Machine Debug Manager .text,.data,.rsrc, mi-raysat_3dsMax2008_32 [AM] 9. c:\program files\autodesk\3ds max 2008\mentalray\satellite\raysat_3dsmax2008_32server.exe .text,.rdata,.data,.rsrc, NVSvc [AM] 10. c:\windows\system32\nvsvc32.exe NVIDIA Corporation NVIDIA Driver Helper Service, Version 177.98 .text,.rdata,.data,.rsrc, odserv [A ] 11. c:\program files\common files\microsoft shared\office12\odserv.exe Microsoft Corporation Microsoft Office Diagnostics .text,.data,.rsrc,.reloc, ose [A ] 12. c:\program files\common files\microsoft shared\source engine\ose.exe Microsoft Corporation Office Source Engine .text,.data,.rsrc,.reloc, RavCCenter [AM] 13. c:\program files\rising\rav\ccenter.exe Beijing Rising Information Technology Co., Ltd. CCenter Application .text,.rdata,.data,.rsrc, RavTask [AM] 14. c:\program files\rising\rav\ravtask.exe Beijing Rising Information Technology Co., Ltd. ravtask .text,.rdata,.data,.rsrc, RfwCCenter [AM] 15. c:\program files\rising\rfw\ccenter.exe Beijing Rising Information Technology Co., Ltd. CCenter Application .text,.rdata,.data,.rsrc, RfwService [AM] 16. c:\program files\rising\rfw\rfwsrv.exe Beijing Rising Information Technology Co., Ltd. rfwsrvex Application .text,.rdata,.data,.rsrc, RfwTask [AM] 17. c:\program files\rising\rfw\ravtask.exe Beijing Rising Information Technology Co., Ltd. ravtask .text,.rdata,.data,.rsrc, RsRavMon [AM] 18. c:\program files\rising\rav\ravmond.exe Beijing Rising Information Technology Co., Ltd. ravmond .text,.rdata,.data,.rsrc, RsScanSrv [AM] 19. c:\program files\rising\rav\scanfrm.exe Beijing Rising Information Technology Co., Ltd. Rising Scan Service Framework .text,.rdata,.data,.rsrc, UleadBurningHelper [AM] 20. c:\program files\common files\ulead systems\dvd\ulcdrsvr.exe Ulead Systems, Inc. ULCDRSvr .text,.rdata,.data,.rsrc, UMWdf [AM] 21. c:\windows\system32\wdfmgr.exe Microsoft Corporation Windows User Mode Driver Manager .text,.data,.rsrc, + 内核驱动 + HKLM\System\CurrentControlSet\Services 360procmon [A ] 22. c:\program files\360safe\safemon\360procmon.sys 360procmon .text,.data,INIT,.rsrc,.reloc, Alidevice [A ] 23. c:\windows\system32\drivers\alidevice.sys alipay.com Windows NT alipay kernel module .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, cda1000 [A ] 24. c:\windows\system32\drivers\cda1000.sys Adaptec, Inc. Adaptec Array1000Ultra160 Family Manager Set .text,.rdata,.data,INIT,.rsrc,.reloc, FTCkillfile [A ] 25. c:\windows\system32\drivers\ftckillfile.sys 风云谷科技 木马清道夫驱动程序 .text,.rdata,.data,INIT,.reloc,.rsrc, FTCProtect [A ] 26. c:\windows\system32\drivers\ftcprotect.sys 风云谷科技 木马清道夫驱动程序 .text,.rdata,.data,PAGE,INIT,.reloc,.rsrc, gdrv [A ] 27. c:\windows\gdrv.sys Windows (R) 2000 DDK provider GIGABYTE Tools .text,.rdata,INIT,.rsrc,.reloc, HDAudBus [A ] 28. c:\windows\system32\drivers\hdaudbus.sys Windows (R) Server 2003 DDK provider High Definition Audio Bus Driver v1.0a .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, hookcont [A ] 29. c:\windows\system32\drivers\hookcont.sys Beijing Rising Information Technology Co., Ltd. HookCont Driver .text,.rdata,.data,INIT,.rsrc,.reloc, hooksys [A ] 30. c:\windows\system32\drivers\hooksys.sys Beijing Rising Information Technology Co., Ltd. Hooksys.sys .text,.rdata,.data,INIT,.rsrc,.reloc, IntcAzAudAddService [A ] 31. c:\windows\system32\drivers\rtkhdaud.sys Realtek Semiconductor Corp. Realtek(r) High Definition Audio Function Driver .text,CODE,.rdata,.data,.data1,PAGE,INIT,.rsrc,.reloc, RfwBase9 [A ] 32. c:\windows\system32\drivers\rfwbase.sys Beijing Rising Information Technology Co., Ltd. rfwbase.sys .text,.rdata,.data,INIT,.rsrc,.reloc, rfwtdi [A ] 33. c:\program files\rising\rfw\rfwtdi.sys Beijing Rising Information Technology Co., Ltd. rfwtdi5.sys .text,.rdata,.data,INIT,.rsrc,.reloc, rsfwdrv [A ] 34. c:\program files\rising\rfw\rsfwdrv.sys Beijing Rising Information Technology Co., Ltd. rsfwdrv.sys .text,.rdata,.data,INIT,.rsrc,.reloc, RsNTGDI [A ] 35. c:\windows\system32\drivers\rsntgdi.sys Beijing Rising Information Technology Co., Ltd. RsNTGDI .text,.rdata,INIT,.rsrc,.reloc, RTLE8023xp [A ] 36. c:\windows\system32\drivers\rtenicxp.sys Realtek Semiconductor Corporation Realtek 10/100/1000 NDIS 5.1 Driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, SafeBoxKrnl [A ] 37. c:\windows\system32\drivers\safeboxkrnl.sys 360安全中心 360安全卫士 - 保险箱 .text,.rdata,.data,INIT,.rsrc,.reloc, Secdrv [A ] 38. c:\windows\system32\drivers\secdrv.sys .text,.data,INIT,.reloc, TesDrvPt [A ] 39. c:\windows\system32\tesdrvpt.sys TENCENT Kernel helper of the Tencent's game trojan killer .text,.rdata,.data,INIT,.rsrc,.reloc, TesSafe [A ] 40. c:\windows\system32\tessafe.sys TENCENT TesSafe NT Driver .text,.rdata,.data,INIT,.rsrc,.tvm, + IE浏览器加载模块 + HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar {29CF293A-1E7D-4069-9E11-E39698D0AF95} [A ] 41. c:\program files\tencent\qqtoolbar\iebar.dll TENCENT QQ工具栏 .text,.rdata,.data,.toolbar,.webslic,.rsrc,.reloc, {2318C2B1-4965-11d4-9B18-009027A5CD4F} [A ] 42. c:\program files\google\googletoolbar1.dll Google Inc. Google IE Client Toolbar .text,.rdata,.data,shared,.rsrc,.reloc, + HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} [A ] 43. c:\windows\system32\dvmurl.dll DeviceVM Inc. DeviceVM Url Search Hook CODE,DATA,BSS,.idata,.edata,.reloc,.rsrc, + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {00000AAA-A363-466E-BEF5-9BB68697AA7F} [AM] 44. d:\软件\web讯雷\webthunderbho_now.dll Thunder Networking Technologies,LTD XunLeiBHO .text,.rdata,.data,.rsrc,.reloc, {29CF293A-1E7D-4069-9E11-E39698D0AF95} [A ] 41. c:\program files\tencent\qqtoolbar\iebar.dll TENCENT QQ工具栏 .text,.rdata,.data,.toolbar,.webslic,.rsrc,.reloc, {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [A ] 45. c:\windows\system32\urlfilter.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware UrlFilter Module .text,.rdata,.data,.rsrc,.reloc, {A986E409-30CC-4185-89BB-AB212C104524} [A ] 46. c:\program files\ppliveva\downloadermanager.dll Synacast PP加速器感知下载特性支持模块 .text,.orpc,.rdata,.data,Shared1,.rsrc,.reloc, {AA58ED58-01DD-4d91-8333-CF10577473F7} [A ] 42. c:\program files\google\googletoolbar1.dll Google Inc. Google IE Client Toolbar .text,.rdata,.data,shared,.rsrc,.reloc, {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [AM] 47. c:\program files\google\googletoolbarnotifier\3.1.807.1746\swg.dll Google Inc. GoogleToolbarNotifier .text,.rdata,.data,.rsrc,.reloc, {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} [A ] 48. c:\documents and settings\administrator\application data\flashgetbho\flashgetbho3.dll FlashGet FlashGet 浏览器帮助对象 .text,.orpc,.rdata,.data,.rsrc,.reloc, {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [AM] 49. c:\program files\360safe\safemon\safemon.dll 360.CN 360安全卫士实时保护模块 .text,.rdata,.data,.share,.rsrc,.reloc, + HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions Exec [A ] 50. d:\软件\pplive\pplive.exe .text,.rdata,.data,.rsrc, Exec [A ] 51. c:\program files\messenger\msmsgs.exe Microsoft Corporation Windows Messenger .text,.data,.rsrc, + 资源管理器加载模块 + HKLM\SOFTWARE\Classes\PROTOCOLS\Filter application/octet-stream [AM] 52. c:\windows\system32\mscoree.dll Microsoft Corporation Microsoft .NET Runtime Execution Engine .text,.data,.rsrc,.reloc, application/x-complus [AM] 52. c:\windows\system32\mscoree.dll Microsoft Corporation Microsoft .NET Runtime Execution Engine .text,.data,.rsrc,.reloc, application/x-msdownload [AM] 52. c:\windows\system32\mscoree.dll Microsoft Corporation Microsoft .NET Runtime Execution Engine .text,.data,.rsrc,.reloc, text/xml [AM] 53. c:\program files\common files\microsoft shared\office12\msoxmlmf.dll Microsoft Corporation Microsoft Office XML MIME Filter .text,.data,.rsrc,.reloc, + HKLM\SOFTWARE\Classes\PROTOCOLS\Handler ms-help [A ] 54. c:\program files\common files\microsoft shared\help\hxds.dll Microsoft Corporation Microsoft? Help Data Services Module .text,.data,.rsrc,.reloc, + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved HyperTerminal Icon Ext [A ] 55. c:\windows\system32\hticons.dll Hilgraeve, Inc. HyperTerminal Applet Library .text,.data,.rsrc,.reloc, Portable Media Devices [A ] 56. c:\windows\system32\audiodev.dll Microsoft Corporation 便携媒体设备命令行解释器扩展 .text,.data,.rsrc,.reloc, Portable Media Devices Menu [A ] 56. c:\windows\system32\audiodev.dll Microsoft Corporation 便携媒体设备命令行解释器扩展 .text,.data,.rsrc,.reloc, Fusion Cache [AM] 52. c:\windows\system32\mscoree.dll Microsoft Corporation Microsoft .NET Runtime Execution Engine .text,.data,.rsrc,.reloc, Autodesk Drawing Preview [A ] 57. c:\program files\common files\autodesk shared\thumbnail\acthumbnail16.dll Autodesk AcThumbnail Module .text,.rdata,.data,.rsrc,.reloc, AutoCAD 数字签名图标覆盖处理程序 [AM] 58. c:\windows\system32\acsignicon.dll Autodesk AcSignIcon Module .text,.rdata,.data,.rsrc,.reloc, Autodesk DWF Preview [A ] 59. c:\program files\common files\autodesk shared\thumbnail\acdwfthmbprxy16.dll Autodesk AcThumbnail Module .text,.rdata,.data,.rsrc,.reloc, WinRAR shell extension [AM] 60. c:\program files\winrar\rarext.dll .text,.data,.tls,.idata,.edata,.rsrc,.reloc, ShellLink for Application References [AM] 61. c:\windows\system32\dfshim.dll Microsoft Corporation Application Deployment Support Library .text,.data,.rsrc,.reloc, Shell Icon Handler for Application References [AM] 61. c:\windows\system32\dfshim.dll Microsoft Corporation Application Deployment Support Library .text,.data,.rsrc,.reloc, RISING [AM] 62. c:\windows\system32\ravext.dll Beijing Rising Information Technology Co., Ltd. Rising Shell Ext Module .text,.rdata,.data,.rsrc,.reloc, NvCpl DesktopContext Class [AM] 63. c:\windows\system32\nvcpl.dll NVIDIA Corporation NVIDIA Display Properties Extension .text,.orpc,.rdata,.data,CONST,.rsrc,.reloc, Desktop Explorer [AM] 64. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, Desktop Explorer Menu [AM] 64. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, nView Desktop Context Menu [AM] 64. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, Play on my TV helper [AM] 63. c:\windows\system32\nvcpl.dll NVIDIA Corporation NVIDIA Display Properties Extension .text,.orpc,.rdata,.data,CONST,.rsrc,.reloc, Web Folders [A ] 65. c:\program files\common files\microsoft shared\web folders\msonsext.dll Microsoft Corporation Windows executable .text,.data,.rsrc,.reloc, Microsoft Office HTML Icon Handler [AM] 66. c:\program files\microsoft office\office12\msohevi.dll Microsoft Corporation 2007 Microsoft Office component .text,.data,.rsrc,.reloc, Microsoft Office Metadata Handler [A ] 67. c:\program files\common files\microsoft shared\office12\msoshext.dll Microsoft Corporation Microsoft Office Shell Extension Handlers .text,.data,.rsrc,.reloc, Microsoft Office Thumbnail Handler [A ] 67. c:\program files\common files\microsoft shared\office12\msoshext.dll Microsoft Corporation Microsoft Office Shell Extension Handlers .text,.data,.rsrc,.reloc, Ulead UDF Driver [A ] 68. c:\program files\common files\ulead systems\dvd\usishex.dll Ulead Systems, Inc. USIShex Module .text,.rdata,.data,.rsrc,.reloc, YouKuDesktop Shell Extension [AM] 69. c:\windows\system32\youkudesktopshell.dll www.youku.com YouKuDesktop Shell Extension Library .text,.rdata,.data,.rsrc,.reloc, Windows木马清道夫 [AM] 70. d:\软件\木马克星\ftccommenu.dll Fygsoft and Microsoft Com组件菜单 CODE,DATA,BSS,.idata,.edata,.reloc,.rsrc, + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks {32CD708B-60A7-4C00-9377-D73EAA495F0F} [AM] 62. c:\windows\system32\ravext.dll Beijing Rising Information Technology Co., Ltd. Rising Shell Ext Module .text,.rdata,.data,.rsrc,.reloc, + 用户登陆自运行项目 + HKCU\Software\Microsoft\Windows\CurrentVersion\Run PPS Accelerator [AM] 71. d:\软件\ppstream\ppsap.exe PPStream Inc PPS 网络加速器 .text,.rdata,.data,.rsrc, swg [AM] 72. c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe Google Inc. GoogleToolbarNotifier .text,.rdata,.data,.rsrc, iKu [A ] 73. c:\program files\youku\iku\iku.exe 优酷网 i 酷 客户端 UPX0,UPX1,.rsrc, bgswitch [A ] 74. c:\windows\system32\bgswitch.exe .text,.data,.rsrc, + HKLM\Software\Microsoft\Windows\CurrentVersion\Run 360Safebox [A ] 75. c:\program files\360safebox\safeboxtray.exe 360安全中心 360保险箱 .text,.rdata,.data,.rsrc, WebThunder [A ] 76. d:\软件\web讯雷\webthunder.exe 深圳市迅雷网络技术有限公司 WEB迅雷 .text,.rdata,.data,.rsrc, RavTray [AM] 77. c:\program files\rising\rav\rstray.exe Beijing Rising Information Technology Co., Ltd. Rising tray framework .text,.rdata,.data,.rsrc, nwiz [A ] 78. c:\windows\system32\nwiz.exe .text,.rdata,.data,.rsrc, RFWTray [AM] 79. c:\program files\rising\rfw\rstray.exe Beijing Rising Information Technology Co., Ltd. Rising tray framework .text,.rdata,.data,.rsrc, Microsoft Pinyin IME Migration [A ] 80. c:\program files\common files\microsoft shared\ime12\imesc\imscmig.exe Microsoft Corporation Microsoft Pinyin IME 2007 .text,.data,.rsrc,.reloc, QuickTime Task [AM] 81. c:\program files\quicktime\qttask.exe Apple Computer, Inc. QuickTime Task .text,.rdata,.data,.rsrc, Windows木马防火墙 [A ] 82. d:\软件\木马克星\trojanwall.exe 风云谷科技 Windows木马防火墙 CODE,.rsrc, Alcmtr [A ] 83. c:\windows\alcmtr.exe Realtek Semiconductor Corp. Realtek Azalia Audio - Event Monitor .text,.rdata,.data,.rsrc, AlcWzrd [A ] 84. c:\windows\alcwzrd.exe RealTek Semicoductor Corp. RealTek AlcWzrd Application .text,.data,.tls,.rdata,.idata,.edata,.rsrc,.reloc, RTHDCPL [A ] 85. c:\windows\rthdcpl.exe Realtek Semiconductor Corp. Realtek HD Audio Control Panel .text,.data,.tls,.rdata,.idata,.edata,.rsrc,.reloc, SoundMan [A ] 86. c:\windows\soundman.exe Realtek Semiconductor Corp. Realtek Sound Manager .text,.rdata,.data,.rsrc, runeip [AM] 87. c:\program files\rising\antispyware\rstray.exe Beijing Rising Information Technology Co., Ltd. RSTray .text,.rdata,.data,.rsrc, + 开机执行 + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 88. c:\windows\system32\bsmain.exe Beijing Rising Information Technology Co., Ltd. Rising Antivirus 2008 .text,.rdata,.data,.rsrc,.reloc, + 映像劫持 + HKCR\.exe exefile\启用/禁用数字签名图标\Command [A ] 89. c:\windows\system32\acsignopt.exe Autodesk AcSignOpt Module .text,.rdata,.data,.rsrc, + HKCR\.html htmlfile\360SE\Command [AM] 90. c:\program files\360safe\360se\360se.exe 360安全中心 & 凤凰工作室 360安全浏览器 .rdata,.data,.rsrc, htmlfile\Edit\Command [A ] 91. c:\program files\microsoft office\office12\msohtmed.exe Microsoft Corporation 2007 Microsoft Office component .text,.data,.rsrc,.reloc, htmlfile\open\Command [AM] 90. c:\program files\360safe\360se\360se.exe 360安全中心 & 凤凰工作室 360安全浏览器 .rdata,.data,.rsrc, htmlfile\Print\Command [A ] 91. c:\program files\microsoft office\office12\msohtmed.exe Microsoft Corporation 2007 Microsoft Office component .text,.data,.rsrc,.reloc, + HKCR\.htm htmlfile\360SE\Command [AM] 90. c:\program files\360safe\360se\360se.exe 360安全中心 & 凤凰工作室 360安全浏览器 .rdata,.data,.rsrc, htmlfile\Edit\Command [A ] 91. c:\program files\microsoft office\office12\msohtmed.exe Microsoft Corporation 2007 Microsoft Office component .text,.data,.rsrc,.reloc, htmlfile\open\Command [AM] 90. c:\program files\360safe\360se\360se.exe 360安全中心 & 凤凰工作室 360安全浏览器 .rdata,.data,.rsrc, htmlfile\Print\Command [A ] 91. c:\program files\microsoft office\office12\msohtmed.exe Microsoft Corporation 2007 Microsoft Office component .text,.data,.rsrc,.reloc, + 程序初始化和已知动态连接库 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows AppInit_DLLs [AM] 92. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, + 打印机监控 + HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors Microsoft Document Imaging Writer Monitor [AM] 93. c:\windows\system32\mdimon.dll Microsoft Corporation Microsoft? Document Imaging .text,.data,.rsrc,.reloc, + 其他自启动项目 + C:\Documents and Settings\Administrator\「开始」菜单\程序\启动 QQ游戏启动加速程序.lnk [A ] 94. c:\program files\腾讯游戏\qqgame\accel.exe 深圳市腾讯计算机系统有限公司 QQ游戏 .text,.rdata,.data,.rsrc, 腾讯QQ.lnk [A ] 95. d:\软件\qq\qq.exe TENCENT QQ .text,.rdata,.data,.rsrc, + C:\Documents and Settings\All Users\「开始」菜单\程序\启动 AutoCAD 启动加速器.lnk [A ] 96. c:\program files\common files\autodesk shared\acstart16.exe Autodesk, Inc AutoCAD Startup Accelerator .text,.rsrc,.reloc, + C:\WINDOWS\Tasks SogouImeMgr.job [A ] 97. c:\program files\sogouinput\4.0.0.2093\pinyinrepair.exe Sogou.com Inc. 搜狗拼音输入法 输入法修复程序 .text,.rdata,.data,.rsrc, + 正在运行的进程 + 00000114(276) spoolsv.exe 00AC0000[00009000] [AM] 93. c:\windows\system32\mdimon.dll Microsoft Corporation Microsoft? Document Imaging .text,.data,.rsrc,.reloc, 00EC0000[00009000] [ M] 98. c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll Microsoft Corporation Microsoft? Document Imaging .text,.data,.rsrc,.reloc, + 00000130(304) rstray.exe 00400000[00023000] [AM] 87. c:\program files\rising\antispyware\rstray.exe Beijing Rising Information Technology Co., Ltd. RSTray .text,.rdata,.data,.rsrc, 10000000[00044000] [ M] 99. c:\program files\rising\antispyware\rsmginfo.dll Beijing Rising Information Technology Co., Ltd. rsmginfo .text,.rdata,.data,.rsrc,.reloc, 23800000[00022000] [ M] 100. c:\program files\rising\antispyware\rsxml.dll Beijing Rising Information Technology Co., Ltd. RsXML .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 101. c:\program files\rising\antispyware\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 102. c:\program files\rising\antispyware\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 00C00000[00024000] [ M] 103. c:\program files\rising\antispyware\comserv.dll Beijing Rising Information Technology Co., Ltd. .text,.rdata,.data,.rsrc,.reloc, 00C30000[00019000] [ M] 104. c:\program files\rising\antispyware\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 23700000[00026000] [ M] 105. c:\program files\rising\antispyware\rscommon.dll Beijing Rising Information Technology Co., Ltd. Rising Common Function Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00C60000[0002D000] [ M] 106. c:\program files\rising\antispyware\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 23900000[00040000] [ M] 107. c:\program files\rising\antispyware\pngdll.dll Beijing Rising Information Technology Co., Ltd. Rising .Png File Loader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00F70000[00068000] [ M] 108. c:\program files\rising\antispyware\runiep.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware tray .text,.rdata,.data,.rsrc,.reloc, 00FE0000[00034000] [ M] 109. c:\program files\rising\antispyware\ncomm.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 01040000[0001F000] [ M] 110. c:\program files\rising\rav\proccom.dll Beijing Rising Information Technology Co., Ltd. ProcessC Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01060000[00024000] [ M] 111. c:\program files\rising\antispyware\rscommx2.dll Beijing Rising Information Technology Co., Ltd. RsCommX2 .text,.rdata,.data,.rsrc,.reloc, 02630000[00016000] [ M] 112. c:\program files\rising\rav\ravscrch.dll Beijing Rising Information Technology Co., Ltd. webmon module .text,.rdata,.data,.rsrc,.reloc, + 0000020c(524) qttask.exe 00400000[00028000] [AM] 81. c:\program files\quicktime\qttask.exe Apple Computer, Inc. QuickTime Task .text,.rdata,.data,.rsrc, 00C80000[0008C000] [ M] 113. d:\软件\木马克星\ftcmon.dll 木马清道夫监控模块 木马清道夫监控模块 UPX0,UPX1,.rsrc, + 00000238(568) RsTray.exe 00400000[00023000] [AM] 79. c:\program files\rising\rfw\rstray.exe Beijing Rising Information Technology Co., Ltd. Rising tray framework .text,.rdata,.data,.rsrc, 10000000[00023000] [ M] 114. c:\program files\rising\rfw\comserv.dll Beijing Rising Information Technology Co., Ltd. Rising tray common service .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 23700000[00023000] [ M] 117. c:\program files\rising\rfw\rslang.dll Beijing Rising Information Technology Co., Ltd. Rising Common Function Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00A80000[0002D000] [ M] 118. c:\program files\rising\rfw\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00AB0000[00019000] [ M] 119. c:\program files\rising\rfw\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 23800000[00025000] [ M] 120. c:\program files\rising\rfw\rsxml.dll Beijing Rising Information Technology Co., Ltd. RsXML .text,.rdata,.data,.rsrc,.reloc, 00DB0000[00010000] [ M] 121. c:\program files\rising\rfw\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 010C0000[00013000] [ M] 122. c:\program files\rising\rfw\monstate.dll Beijing Rising Information Technology Co., Ltd. MonState .text,.rdata,.data,.rsrc,.reloc, 010F0000[0000C000] [ M] 123. c:\program files\rising\rfw\rfwrule.dll Beijing Rising Information Technology Co., Ltd. TODO: .text,.rdata,.data,.rsrc,.reloc, 01100000[00017000] [ M] 124. c:\program files\rising\rfw\rsconf.dll Beijing Rising Information Technology Co., Ltd. rsconf Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01130000[0000E000] [ M] 125. c:\program files\rising\rfw\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 01150000[00031000] [ M] 126. c:\program files\rising\rfw\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 011A0000[0002F000] [ M] 127. c:\program files\rising\rfw\rspalvd.dll Beijing Rising Information Technology Co., Ltd. rspalvd .text,.rdata,.data,.rsrc,.reloc, 26600000[000C3000] [ M] 128. c:\program files\rising\rfw\rsguilib.dll Beijing Rising Information Technology Co., Ltd. Rising GUI Library Loader .text,.rdata,.data,.rsrc,.reloc, 7C140000[00103000] [ M] 129. c:\windows\system32\mfc71.dll Microsoft Corporation MFCDLL Shared Library - Retail Version .text,.data,.rsrc,.reloc, 33000000[00025000] [ M] 130. c:\program files\rising\rfw\ravbintl.dll Beijing Rising Information Technology Co., Ltd. ravbintl Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01330000[00067000] [ M] 131. c:\program files\rising\rfw\rsnetsvr.dll Beijing Rising Information Technology Co., Ltd. rsnetsvr .text,.rdata,.data,.rsrc,.reloc, 013A0000[00044000] [ M] 132. c:\program files\rising\rfw\rsmginfo.dll Beijing Rising Information Technology Co., Ltd. rsmginfo .text,.rdata,.data,.rsrc,.reloc, 01400000[0004B000] [ M] 133. c:\program files\rising\rfw\rfwtray.dll Beijing Rising Information Technology Co., Ltd. rfwtray Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 23900000[00040000] [ M] 134. c:\program files\rising\rfw\pngdll.dll Beijing Rising Information Technology Co., Ltd. Rising .Png File Loader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01B00000[00064000] [ M] 135. c:\program files\rising\rfw\rfwlog.dll Beijing Rising Information Technology Co., Ltd. rfwlog Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 02AC0000[00016000] [ M] 112. c:\program files\rising\rav\ravscrch.dll Beijing Rising Information Technology Co., Ltd. webmon module .text,.rdata,.data,.rsrc,.reloc, + 00000308(776) AdskScSrv.exe 00400000[00018000] [AM] 3. c:\program files\common files\autodesk shared\service\adskscsrv.exe Autodesk System Level Service Utility .text,.rdata,.data,.rsrc, + 00000340(832) HZ_CommSrv.exe 00400000[00005000] [AM] 6. c:\windows\system32\hz_commsrv.exe 华大智宝电子系统有限公司 华大智宝USB KEY通讯服务 .data,.rsrc, + 00000370(880) mdm.exe 00400000[00052000] [AM] 8. c:\program files\common files\microsoft shared\vs7debug\mdm.exe Microsoft Corporation Machine Debug Manager .text,.data,.rsrc, 51A60000[00006000] [ M] 136. c:\program files\common files\microsoft shared\vs7debug\2052\mdmui.dll Microsoft Corporation MDM 资源 .rsrc,.reloc, + 000003c4(964) smss.exe + 000003f8(1016) raysat_3dsMax2008_32server.exe 00400000[00012000] [AM] 9. c:\program files\autodesk\3ds max 2008\mentalray\satellite\raysat_3dsmax2008_32server.exe .text,.rdata,.data,.rsrc, + 00000404(1028) csrss.exe + 0000041c(1052) winlogon.exe 72C80000[00008000] [ M] 137. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, + 00000450(1104) nvsvc32.exe 00400000[0002E000] [AM] 10. c:\windows\system32\nvsvc32.exe NVIDIA Corporation NVIDIA Driver Helper Service, Version 177.98 .text,.rdata,.data,.rsrc, 00AC0000[00076000] [ M] 138. c:\windows\system32\nvapi.dll NVIDIA Corporation NVIDIA NVAPI Library, Version 177.98 .text,.rdata,.data,.idata,.rsrc,.reloc, + 00000484(1156) services.exe + 00000490(1168) lsass.exe + 00000494(1172) RsTray.exe 00400000[00023000] [AM] 77. c:\program files\rising\rav\rstray.exe Beijing Rising Information Technology Co., Ltd. Rising tray framework .text,.rdata,.data,.rsrc, 10000000[00023000] [ M] 139. c:\program files\rising\rav\comserv.dll Beijing Rising Information Technology Co., Ltd. Rising tray common service .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 23700000[00023000] [ M] 140. c:\program files\rising\rav\rslang.dll Beijing Rising Information Technology Co., Ltd. Rising Common Function Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00A80000[0002D000] [ M] 141. c:\program files\rising\rav\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00AB0000[00019000] [ M] 142. c:\program files\rising\rav\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 23800000[00025000] [ M] 143. c:\program files\rising\rav\rsxml.dll Beijing Rising Information Technology Co., Ltd. RsXML .text,.rdata,.data,.rsrc,.reloc, 00DB0000[00010000] [ M] 144. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00FC0000[00013000] [ M] 145. c:\program files\rising\rav\monstate.dll Beijing Rising Information Technology Co., Ltd. MonState .text,.rdata,.data,.rsrc,.reloc, 00FF0000[0000B000] [ M] 146. c:\program files\rising\rav\scanevnt.dll Beijing Rising Information Technology Co., Ltd. Rising Scan Service Event Handler .text,.rdata,.data,.rsrc,.reloc, 26600000[000C3000] [ M] 147. c:\program files\rising\rav\rsguilib.dll Beijing Rising Information Technology Co., Ltd. Rising GUI Library Loader .text,.rdata,.data,.rsrc,.reloc, 7C140000[00103000] [ M] 129. c:\windows\system32\mfc71.dll Microsoft Corporation MFCDLL Shared Library - Retail Version .text,.data,.rsrc,.reloc, 01140000[00017000] [ M] 148. c:\program files\rising\rav\rsconf.dll Beijing Rising Information Technology Co., Ltd. rsconf Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01170000[0000E000] [ M] 149. c:\program files\rising\rav\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 01190000[00031000] [ M] 150. c:\program files\rising\rav\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 011E0000[0002F000] [ M] 151. c:\program files\rising\rav\rspalvd.dll Beijing Rising Information Technology Co., Ltd. rspalvd .text,.rdata,.data,.rsrc,.reloc, 33000000[00025000] [ M] 152. c:\program files\rising\rav\ravbintl.dll Beijing Rising Information Technology Co., Ltd. ravbintl Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01350000[0006C000] [ M] 153. c:\program files\rising\rav\mruleui.dll Beijing Rising Information Technology Co., Ltd. mruleui .text,.rdata,.data,.rsrc,.reloc, 013C0000[0006B000] [ M] 154. c:\program files\rising\rav\montray.dll Beijing Rising Information Technology Co., Ltd. Rising AntiVirus 2009 .text,.rdata,.data,.rsrc,.reloc, 23900000[00040000] [ M] 155. c:\program files\rising\rav\pngdll.dll Beijing Rising Information Technology Co., Ltd. Rising .Png File Loader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 34500000[00020000] [ M] 156. c:\program files\rising\rav\ravitray.dll Beijing Rising Information Technology Co., Ltd. ravitray Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01990000[00059000] [ M] 157. c:\program files\rising\rav\scanprxy.dll Beijing Rising Information Technology Co., Ltd. ScanPrxy Module .text,.rdata,.data,.rsrc,.reloc, 019F0000[00044000] [ M] 158. c:\program files\rising\rav\rsmginfo.dll Beijing Rising Information Technology Co., Ltd. rsmginfo .text,.rdata,.data,.rsrc,.reloc, 02560000[00016000] [ M] 112. c:\program files\rising\rav\ravscrch.dll Beijing Rising Information Technology Co., Ltd. webmon module .text,.rdata,.data,.rsrc,.reloc, + 00000538(1336) svchost.exe + 00000550(1360) RavTask.exe 00400000[00020000] [AM] 14. c:\program files\rising\rav\ravtask.exe Beijing Rising Information Technology Co., Ltd. ravtask .text,.rdata,.data,.rsrc, 10000000[00017000] [ M] 148. c:\program files\rising\rav\rsconf.dll Beijing Rising Information Technology Co., Ltd. rsconf Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00760000[0000E000] [ M] 149. c:\program files\rising\rav\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 00780000[00031000] [ M] 150. c:\program files\rising\rav\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 009C0000[00010000] [ M] 144. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 009E0000[00018000] [ M] 159. c:\program files\rising\rav\rsstub.dll Beijing Rising Information Technology Co., Ltd. rsstub Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00CD0000[00029000] [ M] 160. c:\program files\rising\rav\rstask.dll Beijing Rising Information Technology Co., Ltd. RsTask Control .text,.rdata,.data,.rsrc,.reloc, + 0000057c(1404) svchost.exe + 000005f8(1528) CCENTER.EXE 00400000[0001B000] [AM] 13. c:\program files\rising\rav\ccenter.exe Beijing Rising Information Technology Co., Ltd. CCenter Application .text,.rdata,.data,.rsrc, 10000000[00029000] [ M] 161. c:\program files\rising\rav\combase.dll Beijing Rising Information Technology Co., Ltd. combase .text,.rdata,.data,.rsrc,.reloc, 00680000[00027000] [ M] 162. c:\program files\rising\rav\cnt09.dll Beijing Rising Information Technology Co., Ltd. cnt09 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 009B0000[0001D000] [ M] 163. c:\program files\rising\rav\cnt08.dll Beijing Rising Information Technology Co., Ltd. cnt08 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 0000060c(1548) CCENTER.EXE 00400000[0001B000] [AM] 15. c:\program files\rising\rfw\ccenter.exe Beijing Rising Information Technology Co., Ltd. CCenter Application .text,.rdata,.data,.rsrc, 10000000[00029000] [ M] 164. c:\program files\rising\rfw\combase.dll Beijing Rising Information Technology Co., Ltd. combase .text,.rdata,.data,.rsrc,.reloc, 00680000[00027000] [ M] 165. c:\program files\rising\rfw\cnt09.dll Beijing Rising Information Technology Co., Ltd. cnt09 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 00000614(1556) svchost.exe + 0000066c(1644) RavTask.exe 00400000[00020000] [AM] 17. c:\program files\rising\rfw\ravtask.exe Beijing Rising Information Technology Co., Ltd. ravtask .text,.rdata,.data,.rsrc, 10000000[00017000] [ M] 124. c:\program files\rising\rfw\rsconf.dll Beijing Rising Information Technology Co., Ltd. rsconf Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00760000[0000E000] [ M] 125. c:\program files\rising\rfw\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 00780000[00031000] [ M] 126. c:\program files\rising\rfw\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 009A0000[00010000] [ M] 121. c:\program files\rising\rfw\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 009C0000[00018000] [ M] 166. c:\program files\rising\rfw\rsstub.dll Beijing Rising Information Technology Co., Ltd. rsstub Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00CB0000[00029000] [ M] 167. c:\program files\rising\rfw\rstask.dll Beijing Rising Information Technology Co., Ltd. RsTask Control .text,.rdata,.data,.rsrc,.reloc, + 00000690(1680) svchost.exe + 000006a0(1696) svchost.exe + 000006ec(1772) ScanFrm.exe 00400000[0000B000] [AM] 19. c:\program files\rising\rav\scanfrm.exe Beijing Rising Information Technology Co., Ltd. Rising Scan Service Framework .text,.rdata,.data,.rsrc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 10000000[00029000] [ M] 161. c:\program files\rising\rav\combase.dll Beijing Rising Information Technology Co., Ltd. combase .text,.rdata,.data,.rsrc,.reloc, 003E0000[00019000] [ M] 168. c:\program files\rising\rav\moncomm.dll Beijing Rising Information Technology Co., Ltd. MonComm .text,.rdata,.data,.rsrc,.reloc, 00900000[0000A000] [ M] 169. c:\program files\rising\rav\scansrvp.dll Beijing Rising Information Technology Co., Ltd. ScanSrvP Module .text,.rdata,.data,.rsrc,.reloc, 00910000[00010000] [ M] 144. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00C20000[0000E000] [ M] 170. c:\program files\rising\rav\scansrv.dll Beijing Rising Information Technology Co., Ltd. ScanSrv Module .text,.rdata,.data,.rsrc,.reloc, 01130000[0002D000] [ M] 141. c:\program files\rising\rav\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01160000[00019000] [ M] 142. c:\program files\rising\rav\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 01630000[0000F000] [ M] 171. c:\program files\rising\rav\scanravt.dll Beijing Rising Information Technology Co., Ltd. ScanRavT Module .text,.rdata,.data,.rsrc,.reloc, 01640000[00070000] [ M] 172. c:\program files\rising\rav\scanbt.dll Beijing Rising Information Technology Co., Ltd. ScanBT Module .text,.rdata,.data,.rsrc,.reloc, 016B0000[0000D000] [ M] 173. c:\program files\rising\rav\scanstub.dll Beijing Rising Information Technology Co., Ltd. ScanStub Module .text,.rdata,.data,.rsrc,.reloc, 016C0000[00067000] [ M] 174. c:\program files\rising\rav\rslog.dll Beijing Rising Information Technology Co., Ltd. rslog Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01750000[0000D000] [ M] 175. c:\program files\rising\rav\scanadd.dll Beijing Rising Information Technology Co., Ltd. Rising Scan Service Addon .text,.rdata,.data,.rsrc,.reloc, 01760000[0000E000] [ M] 149. c:\program files\rising\rav\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 01780000[00031000] [ M] 150. c:\program files\rising\rav\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 018C0000[00026000] [ M] 176. c:\program files\rising\rav\scanner.dll Beijing Rising Information Technology Co., Ltd. RsScanner Module .text,.rdata,.data,.rsrc,.reloc, 018F0000[0003C000] [ M] 177. c:\program files\rising\rav\recomp.dll Beijing Rising Information Technology Co., Ltd. component manager Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01940000[00036000] [ M] 178. c:\program files\rising\rav\refs.dll Beijing Rising Information Technology Co., Ltd. filesystem Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01BA0000[00030000] [ M] 179. c:\program files\rising\rav\viruslib.dll Beijing Rising Information Technology Co., Ltd. VirusLib Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01CE0000[00028000] [ M] 180. c:\program files\rising\rav\relibldr.dll Beijing Rising Information Technology Co., Ltd. libloader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 021A0000[0000D000] [ M] 181. c:\program files\rising\rav\sysmail.dll Beijing Rising Information Technology Co., Ltd. SysMail Module .text,.rdata,.data,.rsrc,.reloc, 02F00000[00022000] [ M] 182. c:\program files\rising\rav\ffr.dll Beijing Rising Information Technology Co., Ltd. ffr Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 02F30000[00021000] [ M] 183. c:\program files\rising\rav\nvfile.dll Beijing Rising Information Technology Co., Ltd. NVFile .text,.rdata,.data,.rsrc,.reloc, 13AB0000[00045000] [ M] 184. c:\program files\rising\rav\scanexec.dll Beijing Rising Information Technology Co., Ltd. ScanExec .text,.rdata,.data,.rsrc,.reloc, 02F80000[002DD000] [ M] 185. c:\program files\rising\rav\unexe.dll Beijing Rising Information Technology Co., Ltd. UnExe .text,.rdata,.data,.rsrc,.reloc, 03270000[000DB000] [ M] 186. c:\program files\rising\rav\scanex.dll Beijing Rising Information Technology Co., Ltd. ScanEx .text,.rdata,.data,.rsrc,.reloc, 035F0000[00029000] [ M] 187. c:\program files\rising\rav\pearc.dll Beijing Rising Information Technology Co., Ltd. pearchive Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 03630000[00028000] [ M] 188. c:\program files\rising\rav\scanpe.dll Beijing Rising Information Technology Co., Ltd. scanpe Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 05C90000[0001B000] [ M] 189. c:\program files\rising\rav\ur000.dat Beijing Rising Information Technology Co., Ltd. Unpack Routine .text,.rdata,.data,.rsrc,.reloc, 05CC0000[00035000] [ M] 190. c:\program files\rising\rav\urutils.dll Beijing Rising Information Technology Co., Ltd. urutils Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 06010000[000F7000] [ M] 191. c:\program files\rising\rav\extfile.dll Beijing Rising Information Technology Co., Ltd. extfile Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 06470000[000B7000] [ M] 192. c:\program files\rising\rav\revm.dll Beijing Rising Information Technology Co., Ltd. REVM Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 08EE0000[00015000] [ M] 193. c:\program files\rising\rav\ur023.dat Beijing Rising Information Technology Co., Ltd. Unpack Routine .text,.rdata,.data,.rsrc,.reloc, 08520000[00012000] [ M] 194. c:\program files\rising\rav\ur001.dat Beijing Rising Information Technology Co., Ltd. Unpack Routine .text,.rdata,.data,.rsrc,.reloc, 0A990000[00013000] [ M] 195. c:\program files\rising\rav\ur025.dat Beijing Rising Information Technology Co., Ltd. Unpack Routine .text,.rdata,.data,.rsrc,.reloc, 02010000[00030000] [ M] 196. c:\program files\rising\rav\mvengine.dll Beijing Rising Information Technology Co., Ltd. mvengine Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 02050000[00045000] [ M] 197. c:\program files\rising\rav\posttrt.dll Beijing Rising Information Technology Co., Ltd. PostTrt .text,.rdata,.data,.rsrc,.reloc, 02170000[00023000] [ M] 198. c:\program files\rising\rav\scansct.dll Beijing Rising Information Technology Co., Ltd. ScanSct Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 14210000[00038000] [ M] 199. c:\program files\rising\rav\extmail.dll Beijing Rising Information Technology Co., Ltd. ExtMail .text,.rdata,.data,.rsrc,.reloc, 06400000[00045000] [ M] 200. c:\program files\rising\rav\extole.dll Beijing Rising Information Technology Co., Ltd. ExtOLE .text,.rdata,.data,.rsrc,.reloc, 067B0000[0003A000] [ M] 201. c:\program files\rising\rav\scriptci.dll Beijing Rising Information Technology Co., Ltd. scriptci Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 00000718(1816) ULCDRSvr.exe 00400000[0000E000] [AM] 20. c:\program files\common files\ulead systems\dvd\ulcdrsvr.exe Ulead Systems, Inc. ULCDRSvr .text,.rdata,.data,.rsrc, + 0000076c(1900) rfwsrv.exe 00400000[00016000] [AM] 16. c:\program files\rising\rfw\rfwsrv.exe Beijing Rising Information Technology Co., Ltd. rfwsrvex Application .text,.rdata,.data,.rsrc, 10000000[00029000] [ M] 164. c:\program files\rising\rfw\combase.dll Beijing Rising Information Technology Co., Ltd. combase .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 00900000[0001D000] [ M] 202. c:\program files\rising\rfw\monbase.dll Beijing Rising Information Technology Co., Ltd. MonBase .text,.rdata,.data,.rsrc,.reloc, 00920000[00019000] [ M] 203. c:\program files\rising\rfw\moncomm.dll Beijing Rising Information Technology Co., Ltd. MonComm .text,.rdata,.data,.rsrc,.reloc, 00950000[00064000] [ M] 135. c:\program files\rising\rfw\rfwlog.dll Beijing Rising Information Technology Co., Ltd. rfwlog Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 009E0000[0000C000] [ M] 123. c:\program files\rising\rfw\rfwrule.dll Beijing Rising Information Technology Co., Ltd. TODO: .text,.rdata,.data,.rsrc,.reloc, 009F0000[00040000] [ M] 204. c:\program files\rising\rfw\rfwsrv.dll Beijing Rising Information Technology Co., Ltd. Rising Personal FireWall Service .text,.rdata,.data,.rsrc,.reloc, 00A30000[00019000] [ M] 119. c:\program files\rising\rfw\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 00AB0000[0001B000] [ M] 205. c:\program files\rising\rfw\mports.dll Beijing Rising Information Technology Co., Ltd. get ports list .text,.rdata,.data,.rsrc,.reloc, 00AE0000[00010000] [ M] 206. c:\program files\rising\rfw\rfwdrvc.dll Beijing Rising Information Technology Co., Ltd. rfwdrvc Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00B00000[00014000] [ M] 207. c:\program files\rising\rfw\rfwdrv.dll Beijing Rising Information Technology Co., Ltd. rfwdrv.dll .text,.rdata,.data,.rsrc,.reloc, 00D30000[00067000] [ M] 131. c:\program files\rising\rfw\rsnetsvr.dll Beijing Rising Information Technology Co., Ltd. rsnetsvr .text,.rdata,.data,.rsrc,.reloc, 00DB0000[0002D000] [ M] 118. c:\program files\rising\rfw\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01430000[00014000] [ M] 208. c:\program files\rising\rfw\urlrule.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware UrlRule Library .text,.rdata,.data,.rsrc,.reloc, 01460000[0003C000] [ M] 209. c:\program files\rising\rfw\recomp.dll Beijing Rising Information Technology Co., Ltd. component manager Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 014B0000[00036000] [ M] 210. c:\program files\rising\rfw\refs.dll Beijing Rising Information Technology Co., Ltd. filesystem Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01710000[00030000] [ M] 211. c:\program files\rising\rfw\viruslib.dll Beijing Rising Information Technology Co., Ltd. VirusLib Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01750000[00028000] [ M] 212. c:\program files\rising\rfw\relibldr.dll Beijing Rising Information Technology Co., Ltd. libloader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 017D0000[0022A000] [ M] 213. c:\program files\rising\rfw\rfwproxy.dll Beijing Rising Information Technology Co., Ltd. rfwproxy Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01C50000[0000E000] [ M] 125. c:\program files\rising\rfw\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 01C70000[00031000] [ M] 126. c:\program files\rising\rfw\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 01D90000[00010000] [ M] 121. c:\program files\rising\rfw\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 02E70000[0000E000] [ M] 214. c:\program files\rising\rfw\urllib.dll Beijing Rising Information Technology Co., Ltd. Urllib Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 00000790(1936) RavMonD.exe 00400000[00020000] [AM] 18. c:\program files\rising\rav\ravmond.exe Beijing Rising Information Technology Co., Ltd. ravmond .text,.rdata,.data,.rsrc, 10000000[00029000] [ M] 161. c:\program files\rising\rav\combase.dll Beijing Rising Information Technology Co., Ltd. combase .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 00A00000[00019000] [ M] 168. c:\program files\rising\rav\moncomm.dll Beijing Rising Information Technology Co., Ltd. MonComm .text,.rdata,.data,.rsrc,.reloc, 00A20000[0001D000] [ M] 215. c:\program files\rising\rav\monbase.dll Beijing Rising Information Technology Co., Ltd. MonBase .text,.rdata,.data,.rsrc,.reloc, 00A50000[00067000] [ M] 174. c:\program files\rising\rav\rslog.dll Beijing Rising Information Technology Co., Ltd. rslog Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00AE0000[00018000] [ M] 216. c:\program files\rising\rav\mondrv.dll Beijing Rising Information Technology Co., Ltd. mondrv .text,.rdata,.data,.rsrc,.reloc, 00B10000[00023000] [ M] 217. c:\program files\rising\rav\defmon.dll Beijing Rising Information Technology Co., Ltd. DefMon .text,.rdata,.data,.rsrc,.reloc, 00B50000[00010000] [ M] 218. c:\program files\rising\rav\moncom08.dll Beijing Rising Information Technology Co., Ltd. MonCom08 .text,.rdata,.data,.rsrc,.reloc, 00B70000[0006C000] [ M] 219. c:\program files\rising\rav\monrule.dll Beijing Rising Information Technology Co., Ltd. MonRule .text,.rdata,.data,.rsrc,.reloc, 00C10000[00028000] [ M] 220. c:\program files\rising\rav\filemon.dll Beijing Rising Information Technology Co., Ltd. Filemon .text,.rdata,.data,.rsrc,.reloc, 00C50000[0002B000] [ M] 221. c:\program files\rising\rav\mailmon.dll Beijing Rising Information Technology Co., Ltd. MailMon .text,.rdata,.data,.rsrc,.reloc, 00CD0000[00012000] [ M] 222. c:\program files\rising\rav\hookweb.dll Beijing Rising Information Technology Co., Ltd. hookweb .text,.rdata,.data,.rsrc,.reloc, 00D00000[00010000] [ M] 144. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01010000[0000E000] [ M] 149. c:\program files\rising\rav\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 01030000[00031000] [ M] 150. c:\program files\rising\rav\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 01170000[0002D000] [ M] 141. c:\program files\rising\rav\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 011A0000[00019000] [ M] 142. c:\program files\rising\rav\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 01310000[00020000] [ M] 223. c:\program files\rising\rav\hooksys.dll Beijing Rising Information Technology Co., Ltd. Hooksys.dll .text,.rdata,.data,.idata,.rsrc,.reloc, 013C0000[0001F000] [ M] 110. c:\program files\rising\rav\proccom.dll Beijing Rising Information Technology Co., Ltd. ProcessC Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 013F0000[00024000] [ M] 224. c:\program files\rising\rav\rscommx2.dll Beijing Rising Information Technology Co., Ltd. RsCommX2 .text,.rdata,.data,.rsrc,.reloc, 01540000[00013000] [ M] 225. c:\program files\rising\rav\hookcont.dll Beijing Rising Information Technology Co., Ltd. HookCont Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01580000[00067000] [ M] 226. c:\program files\rising\rav\rsnetsvr.dll Beijing Rising Information Technology Co., Ltd. rsnetsvr .text,.rdata,.data,.rsrc,.reloc, 01940000[00070000] [ M] 227. c:\program files\rising\rav\bacore.dll Beijing Rising Information Technology Co., Ltd. Rising MBA DLL .text,.rdata,.data,.rsrc,.reloc, 01AC0000[0003C000] [ M] 177. c:\program files\rising\rav\recomp.dll Beijing Rising Information Technology Co., Ltd. component manager Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01B10000[00036000] [ M] 178. c:\program files\rising\rav\refs.dll Beijing Rising Information Technology Co., Ltd. filesystem Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01B60000[0002A000] [ M] 228. c:\program files\rising\rav\rsstore.dll Beijing Rising Information Technology Co., Ltd. RSStore .text,.rdata,.data,.rsrc,.reloc, 01BA0000[0000D000] [ M] 175. c:\program files\rising\rav\scanadd.dll Beijing Rising Information Technology Co., Ltd. Rising Scan Service Addon .text,.rdata,.data,.rsrc,.reloc, 01BB0000[00026000] [ M] 176. c:\program files\rising\rav\scanner.dll Beijing Rising Information Technology Co., Ltd. RsScanner Module .text,.rdata,.data,.rsrc,.reloc, 01DF0000[00030000] [ M] 179. c:\program files\rising\rav\viruslib.dll Beijing Rising Information Technology Co., Ltd. VirusLib Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01F30000[00028000] [ M] 180. c:\program files\rising\rav\relibldr.dll Beijing Rising Information Technology Co., Ltd. libloader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 03B60000[000F7000] [ M] 191. c:\program files\rising\rav\extfile.dll Beijing Rising Information Technology Co., Ltd. extfile Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 03C70000[00022000] [ M] 182. c:\program files\rising\rav\ffr.dll Beijing Rising Information Technology Co., Ltd. ffr Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 03CB0000[00021000] [ M] 183. c:\program files\rising\rav\nvfile.dll Beijing Rising Information Technology Co., Ltd. NVFile .text,.rdata,.data,.rsrc,.reloc, 13AB0000[00045000] [ M] 184. c:\program files\rising\rav\scanexec.dll Beijing Rising Information Technology Co., Ltd. ScanExec .text,.rdata,.data,.rsrc,.reloc, 04640000[002DD000] [ M] 185. c:\program files\rising\rav\unexe.dll Beijing Rising Information Technology Co., Ltd. UnExe .text,.rdata,.data,.rsrc,.reloc, 04930000[000DB000] [ M] 186. c:\program files\rising\rav\scanex.dll Beijing Rising Information Technology Co., Ltd. ScanEx .text,.rdata,.data,.rsrc,.reloc, 04B30000[00029000] [ M] 187. c:\program files\rising\rav\pearc.dll Beijing Rising Information Technology Co., Ltd. pearchive Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 04B70000[00028000] [ M] 188. c:\program files\rising\rav\scanpe.dll Beijing Rising Information Technology Co., Ltd. scanpe Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 06820000[0001B000] [ M] 189. c:\program files\rising\rav\ur000.dat Beijing Rising Information Technology Co., Ltd. Unpack Routine .text,.rdata,.data,.rsrc,.reloc, 06840000[00035000] [ M] 190. c:\program files\rising\rav\urutils.dll Beijing Rising Information Technology Co., Ltd. urutils Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 06B90000[000B7000] [ M] 192. c:\program files\rising\rav\revm.dll Beijing Rising Information Technology Co., Ltd. REVM Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 045A0000[00015000] [ M] 193. c:\program files\rising\rav\ur023.dat Beijing Rising Information Technology Co., Ltd. Unpack Routine .text,.rdata,.data,.rsrc,.reloc, 045F0000[00012000] [ M] 194. c:\program files\rising\rav\ur001.dat Beijing Rising Information Technology Co., Ltd. Unpack Routine .text,.rdata,.data,.rsrc,.reloc, 027F0000[00023000] [ M] 198. c:\program files\rising\rav\scansct.dll Beijing Rising Information Technology Co., Ltd. ScanSct Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 14210000[00038000] [ M] 199. c:\program files\rising\rav\extmail.dll Beijing Rising Information Technology Co., Ltd. ExtMail .text,.rdata,.data,.rsrc,.reloc, + 000007d4(2004) wdfmgr.exe 01000000[0000C000] [AM] 21. c:\windows\system32\wdfmgr.exe Microsoft Corporation Windows User Mode Driver Manager .text,.data,.rsrc, + 000007d8(2008) rsnetsvr.exe 00400000[00079000] [ M] 229. c:\program files\rising\rav\rsnetsvr.exe Beijing Rising Information Technology Co., Ltd. rsnetsvr .text,.rdata,.data,.rsrc, 10000000[00030000] [ M] 230. c:\program files\rising\rav\ncomm.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 00380000[00019000] [ M] 142. c:\program files\rising\rav\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 00BA0000[0002D000] [ M] 141. c:\program files\rising\rav\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00D10000[00010000] [ M] 144. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 020C0000[00016000] [ M] 112. c:\program files\rising\rav\ravscrch.dll Beijing Rising Information Technology Co., Ltd. webmon module .text,.rdata,.data,.rsrc,.reloc, + 00000948(2376) RsAgent.exe 00400000[00036000] [ M] 231. c:\program files\rising\rav\rsagent.exe Beijing Rising Information Technology Co., Ltd. RsAgent Application .text,.rdata,.data,.rsrc, 10000000[00010000] [ M] 144. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 00DD0000[0002D000] [ M] 141. c:\program files\rising\rav\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00E00000[00019000] [ M] 142. c:\program files\rising\rav\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 00F70000[00059000] [ M] 157. c:\program files\rising\rav\scanprxy.dll Beijing Rising Information Technology Co., Ltd. ScanPrxy Module .text,.rdata,.data,.rsrc,.reloc, + 0000097c(2428) 360SE.exe 00400000[002B6000] [AM] 90. c:\program files\360safe\360se\360se.exe 360安全中心 & 凤凰工作室 360安全浏览器 .rdata,.data,.rsrc, 60000000[00074000] [AM] 92. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 10000000[0002D000] [ M] 106. c:\program files\rising\antispyware\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00D90000[00019000] [ M] 104. c:\program files\rising\antispyware\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 00F60000[00029000] [AM] 49. c:\program files\360safe\safemon\safemon.dll 360.CN 360安全卫士实时保护模块 .text,.rdata,.data,.share,.rsrc,.reloc, 01230000[0008B000] [ M] 232. c:\program files\360safe\360se\360\onlinefav\favup.dll 360core Module .text,.rdata,.data,.rsrc,.reloc, 626B0000[00026000] [AM] 58. c:\windows\system32\acsignicon.dll Autodesk AcSignIcon Module .text,.rdata,.data,.rsrc,.reloc, 38A70000[0000C000] [AM] 53. c:\program files\common files\microsoft shared\office12\msoxmlmf.dll Microsoft Corporation Microsoft Office XML MIME Filter .text,.data,.rsrc,.reloc, 02F80000[00056000] [ M] 233. c:\program files\ppliveva\floatwin.dll Synacast PP加速器独立视频窗体特性支持模块 .text,.rdata,.data,.rsrc,.reloc, 031B0000[00048000] [ M] 234. c:\program files\ppliveva\vaproxyd.dll Synacast PP加速器浏览器高级特性支持模块 .text,.rdata,.data,.rsrc,.reloc, 03A80000[0001A000] [ M] 235. c:\program files\360safe\360se\360\searchcore\searchcore.dll SearchCore Module .text,.rdata,.data,.rsrc,.reloc, 72C80000[00008000] [ M] 137. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, 04AE0000[00016000] [ M] 112. c:\program files\rising\rav\ravscrch.dll Beijing Rising Information Technology Co., Ltd. webmon module .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 06680000[00475000] [ M] 236. c:\windows\system32\macromed\flash\flash10a.ocx Adobe Systems, Inc. Adobe Flash Player 10.0 r12 .text,.rdata,.data,.rodata,.rsrc,.reloc, + 000009c8(2504) ctfmon.exe 00B50000[0008C000] [ M] 113. d:\软件\木马克星\ftcmon.dll 木马清道夫监控模块 木马清道夫监控模块 UPX0,UPX1,.rsrc, + 000009d4(2516) PPLiveVA.exe 00400000[00030000] [ M] 237. c:\program files\ppliveva\ppliveva.exe Synacast PP加速器主程序 .text,.rdata,.data,.rsrc, 10000000[00119000] [ M] 238. c:\program files\ppliveva\ppva.dll Synacast PP加速器界面特性支持模块 .text,.rdata,.data,.rsrc,.reloc, 00B30000[0004F000] [ M] 239. c:\program files\ppliveva\nettools.dll CODE,DATA,BSS,.idata,.edata,.reloc,.rsrc, 00F40000[00029000] [AM] 49. c:\program files\360safe\safemon\safemon.dll 360.CN 360安全卫士实时保护模块 .text,.rdata,.data,.share,.rsrc,.reloc, 00F90000[00048000] [ M] 234. c:\program files\ppliveva\vaproxyd.dll Synacast PP加速器浏览器高级特性支持模块 .text,.rdata,.data,.rsrc,.reloc, 010E0000[00056000] [ M] 233. c:\program files\ppliveva\floatwin.dll Synacast PP加速器独立视频窗体特性支持模块 .text,.rdata,.data,.rsrc,.reloc, 01360000[0003C000] [ M] 240. c:\program files\ppliveva\flashwincenter.dll Synacast PP加速器独立视频窗体控制特性支持模块 .text,.rdata,.data,.rsrc,.reloc, 014C0000[001A2000] [ M] 241. c:\program files\ppliveva\peer.dll Synacast PP加速器核心特性支持模块 .text,.rdata,.data,.rsrc,.reloc, 01CD0000[0008C000] [ M] 113. d:\软件\木马克星\ftcmon.dll 木马清道夫监控模块 木马清道夫监控模块 UPX0,UPX1,.rsrc, + 00000a04(2564) ppsap.exe 00400000[00036000] [AM] 71. d:\软件\ppstream\ppsap.exe PPStream Inc PPS 网络加速器 .text,.rdata,.data,.rsrc, 010A0000[0008C000] [ M] 113. d:\软件\木马克星\ftcmon.dll 木马清道夫监控模块 木马清道夫监控模块 UPX0,UPX1,.rsrc, 10000000[000F5000] [ M] 242. d:\软件\ppstream\1.1.0.2640\vodnet.dll PPStream Inc. PPS 动态链接库 .text,.rdata,.data,.rsrc,.reloc, 00FF0000[00057000] [ M] 243. d:\软件\ppstream\1.1.0.2640\vodres.dll PPStream Inc. PPS 动态链接库 .text,.rdata,.data,.rsrc,.reloc, 01060000[00025000] [ M] 244. d:\软件\ppstream\1.1.0.2640\ppssg.dll PPStream Inc. PPS 动态链接库 .text,.rdata,.data,.rsrc,.reloc, 01380000[00046000] [ M] 245. d:\软件\ppstream\1.1.0.2640\fds.dll PPStream Inc. PPS 动态链接库 .text,.rdata,.data,.rsrc,.reloc, + 00000a10(2576) GoogleToolbarNotifier.exe 00400000[00013000] [AM] 72. c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe Google Inc. GoogleToolbarNotifier .text,.rdata,.data,.rsrc, 10000000[00024000] [ M] 246. c:\program files\google\googletoolbarnotifier\3.1.807.1746\gtn.dll Google Inc. GoogleToolbarNotifier .text,.rdata,.data,.rsrc,.reloc, 00B90000[000B8000] [AM] 47. c:\program files\google\googletoolbarnotifier\3.1.807.1746\swg.dll Google Inc. GoogleToolbarNotifier .text,.rdata,.data,.rsrc,.reloc, 00D60000[00029000] [AM] 49. c:\program files\360safe\safemon\safemon.dll 360.CN 360安全卫士实时保护模块 .text,.rdata,.data,.share,.rsrc,.reloc, 01860000[0008C000] [ M] 113. d:\软件\木马克星\ftcmon.dll 木马清道夫监控模块 木马清道夫监控模块 UPX0,UPX1,.rsrc, + 00000b98(2968) Ras.exe 00400000[0000B000] [ M] 247. c:\program files\rising\antispyware\ras.exe Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc, 7C140000[00103000] [ M] 248. c:\program files\rising\antispyware\mfc71.dll Microsoft Corporation MFCDLL Shared Library - Retail Version .text,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 102. c:\program files\rising\antispyware\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 60000000[00074000] [AM] 92. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 10000000[00029000] [AM] 49. c:\program files\360safe\safemon\safemon.dll 360.CN 360安全卫士实时保护模块 .text,.rdata,.data,.share,.rsrc,.reloc, 00BB0000[00047000] [ M] 249. c:\program files\rising\antispyware\kakamgr.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 101. c:\program files\rising\antispyware\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 00B40000[00019000] [ M] 104. c:\program files\rising\antispyware\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 00C10000[0001F000] [ M] 110. c:\program files\rising\rav\proccom.dll Beijing Rising Information Technology Co., Ltd. ProcessC Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00C30000[00024000] [ M] 111. c:\program files\rising\antispyware\rscommx2.dll Beijing Rising Information Technology Co., Ltd. RsCommX2 .text,.rdata,.data,.rsrc,.reloc, 00D80000[0002D000] [ M] 106. c:\program files\rising\antispyware\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00EF0000[00058000] [ M] 250. c:\program files\rising\antispyware\dbmgr.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 23800000[00022000] [ M] 100. c:\program files\rising\antispyware\rsxml.dll Beijing Rising Information Technology Co., Ltd. RsXML .text,.rdata,.data,.rsrc,.reloc, 01050000[0002D000] [ M] 251. c:\program files\rising\antispyware\pweb.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 010C0000[000C1000] [ M] 252. c:\program files\rising\antispyware\pscan.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 01190000[00034000] [ M] 109. c:\program files\rising\antispyware\ncomm.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 011F0000[00070000] [ M] 253. c:\program files\rising\antispyware\pset.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 01280000[0002A000] [ M] 254. c:\program files\rising\antispyware\pdefend.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 012B0000[000B6000] [ M] 255. c:\program files\rising\antispyware\ptools.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 01470000[0008D000] [ M] 256. c:\program files\rising\antispyware\psysinfo.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 01520000[00024000] [AM] 62. c:\windows\system32\ravext.dll Beijing Rising Information Technology Co., Ltd. Rising Shell Ext Module .text,.rdata,.data,.rsrc,.reloc, 23900000[00040000] [ M] 107. c:\program files\rising\antispyware\pngdll.dll Beijing Rising Information Technology Co., Ltd. Rising .Png File Loader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 03380000[00016000] [ M] 112. c:\program files\rising\rav\ravscrch.dll Beijing Rising Information Technology Co., Ltd. webmon module .text,.rdata,.data,.rsrc,.reloc, 03CF0000[00475000] [ M] 236. c:\windows\system32\macromed\flash\flash10a.ocx Adobe Systems, Inc. Adobe Flash Player 10.0 r12 .text,.rdata,.data,.rodata,.rsrc,.reloc, 72C80000[00008000] [ M] 137. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, + 00000c00(3072) PPLiveVAMonitor.exe 00400000[0003C000] [ M] 257. c:\program files\ppliveva\pplivevamonitor.exe PPLiveVA 应用程序 .text,.rdata,.data,.rsrc, 00C70000[0008C000] [ M] 113. d:\软件\木马克星\ftcmon.dll 木马清道夫监控模块 木马清道夫监控模块 UPX0,UPX1,.rsrc, + 00000c14(3092) alg.exe + 00000c7c(3196) conime.exe 10000000[00029000] [AM] 49. c:\program files\360safe\safemon\safemon.dll 360.CN 360安全卫士实时保护模块 .text,.rdata,.data,.share,.rsrc,.reloc, 00C10000[0008C000] [ M] 113. d:\软件\木马克星\ftcmon.dll 木马清道夫监控模块 木马清道夫监控模块 UPX0,UPX1,.rsrc, + 00000c90(3216) explorer.exe 10000000[00029000] [AM] 49. c:\program files\360safe\safemon\safemon.dll 360.CN 360安全卫士实时保护模块 .text,.rdata,.data,.share,.rsrc,.reloc, 626B0000[00026000] [AM] 58. c:\windows\system32\acsignicon.dll Autodesk AcSignIcon Module .text,.rdata,.data,.rsrc,.reloc, 55FE0000[00052000] [ M] 258. c:\program files\autodesk\3ds max 2008\acsigncore16.dll Autodesk, Inc. AutoCAD component .text,.orpc,.rdata,.data,.rsrc,.reloc, 72C80000[00008000] [ M] 137. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, 03A50000[00016000] [ M] 112. c:\program files\rising\rav\ravscrch.dll Beijing Rising Information Technology Co., Ltd. webmon module .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 115. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 116. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 60510000[00018000] [AM] 61. c:\windows\system32\dfshim.dll Microsoft Corporation Application Deployment Support Library .text,.data,.rsrc,.reloc, 79000000[00045000] [AM] 52. c:\windows\system32\mscoree.dll Microsoft Corporation Microsoft .NET Runtime Execution Engine .text,.data,.rsrc,.reloc, 641F0000[0001D000] [ M] 259. c:\windows\microsoft.net\framework\v2.0.50727\shfusion.dll Microsoft Corporation Microsoft COM Runtime Fusion Assembly Viewer .text,.data,.rsrc,.reloc, 60610000[00006000] [ M] 260. c:\windows\microsoft.net\framework\v2.0.50727\fusion.dll Microsoft Corporation Assembly manager .text,.data,.rsrc,.reloc, 60340000[00008000] [ M] 261. c:\windows\microsoft.net\framework\v2.0.50727\culture.dll Microsoft Corporation Microsoft Globalization Support .text,.data,.rsrc,.reloc, 64220000[00018000] [ M] 262. c:\windows\microsoft.net\framework\v2.0.50727\shfusres.dll Microsoft Corporation Microsoft COM Runtime Fusion Assembly Viewer Resources .text,.data,.rsrc,.reloc, 01910000[00035000] [AM] 44. d:\软件\web讯雷\webthunderbho_now.dll Thunder Networking Technologies,LTD XunLeiBHO .text,.rdata,.data,.rsrc,.reloc, 6BD10000[00010000] [AM] 66. c:\program files\microsoft office\office12\msohevi.dll Microsoft Corporation 2007 Microsoft Office component .text,.data,.rsrc,.reloc, 021E0000[00024000] [AM] 62. c:\windows\system32\ravext.dll Beijing Rising Information Technology Co., Ltd. Rising Shell Ext Module .text,.rdata,.data,.rsrc,.reloc, 60EB0000[0001B000] [ M] 263. d:\软件\qq\qdshm.dll QQDiskShellMenu Module .text,.rdata,.data,.rsrc,.reloc, 02320000[0002E000] [AM] 60. c:\program files\winrar\rarext.dll .text,.data,.tls,.idata,.edata,.rsrc,.reloc, 00F20000[0000D000] [AM] 69. c:\windows\system32\youkudesktopshell.dll www.youku.com YouKuDesktop Shell Extension Library .text,.rdata,.data,.rsrc,.reloc, 024D0000[00033000] [AM] 70. d:\软件\木马克星\ftccommenu.dll Fygsoft and Microsoft Com组件菜单 CODE,DATA,BSS,.idata,.edata,.reloc,.rsrc, 05130000[00D19000] [AM] 63. c:\windows\system32\nvcpl.dll NVIDIA Corporation NVIDIA Display Properties Extension .text,.orpc,.rdata,.data,CONST,.rsrc,.reloc, 02670000[00037000] [ M] 264. c:\windows\system32\nvrszhc.dll NVIDIA Corporation NVIDIA Simplified Chinese language resource library .rsrc,.reloc, 03AE0000[00076000] [ M] 138. c:\windows\system32\nvapi.dll NVIDIA Corporation NVIDIA NVAPI Library, Version 177.98 .text,.rdata,.data,.idata,.rsrc,.reloc, 03B60000[00073000] [AM] 64. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, + 00000ee4(3812) AgentSvr.exe 10000000[00029000] [AM] 49. c:\program files\360safe\safemon\safemon.dll 360.CN 360安全卫士实时保护模块 .text,.rdata,.data,.share,.rsrc,.reloc, 01670000[0008C000] [ M] 113. d:\软件\木马克星\ftcmon.dll 木马清道夫监控模块 木马清道夫监控模块 UPX0,UPX1,.rsrc, + 00000f6c(3948) knownsvr.exe 00400000[00072000] [ M] 265. c:\program files\rising\antispyware\knownsvr.exe Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc, 10000000[00034000] [ M] 109. c:\program files\rising\antispyware\ncomm.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 60000000[00074000] [AM] 92. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 00A90000[0002D000] [ M] 106. c:\program files\rising\antispyware\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00AC0000[00019000] [ M] 104. c:\program files\rising\antispyware\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc,