[CODE]

2009-03-18,18:29:06

System Repair Engineer 2.7.0.1210
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件
    进程特权扫描
    计划任务
    API HOOK
    隐藏进程


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\CTFMON.EXE>  [(Verified)Microsoft Windows Publisher]
    <Foxmail><"D:\Program Files\Tencent\Foxmail\Foxmail.exe" -min>  [(Verified)Tencent Technology(Shenzhen) Company Limited]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IgfxTray><C:\WINDOWS\system32\igfxtray.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <IntelWireless><"C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless>  [Intel Corporation]
    <IntelZeroConfig><"C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe">  [Intel Corporation]
    <ep2k_certd_bc><C:\WINDOWS\system32\ep2k_certd_bc.exe -r -s -e>  []
    <epsmon2k_8AFE14174D4B473F91405AB5D95D27B3><C:\WINDOWS\system32\ep2k_mon_bc.exe>  []
    <ssMgr_ccb><C:\Program Files\StarSec\ssMgr_ccb.exe -r>  []
    <Logitech Hardware Abstraction Layer><KHALMNPR.EXE>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <DayHint><E:\个人文档\软件\桌面事情提示\DayHint.exe>  []
    <LManager><C:\PROGRA~1\LAUNCH~1\LManager.exe>  [Dritek System Inc.]
    <BigDogPath><C:\WINDOWS\VM_STI.EXE ZSMC USB PC Camera>  [File is missing]
    <IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>  [(Verified)Microsoft Corporation]
    <runeip><"C:\Program Files\Rising\AntiSpyware\rstray.exe" /startup>  [(Verified)Beijing Rising Information Technology Corporation Limited]
    <Adobe Reader Speed Launcher><"C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe">  [(Verified)"Adobe Systems, Incorporated"]
    <TkBellExe><"realsched.exe"  -osboot>  [N/A]
    <SoundMan><SOUNDMAN.EXE>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <RavTray><"C:\Program Files\Rising\Rav\RsTray.exe" -system>  [(Verified)Beijing Rising Information Technology Corporation Limited]
    <KernelFaultCheck><%systemroot%\system32\dumprep 0 -k>  [File is missing]
    <RFWTray><"C:\Program Files\Rising\Rfw\RsTray.exe" -system>  [(Verified)Beijing Rising Information Technology Corporation Limited]
    <KTPWare><C:\Program Files\Elantech\ktp.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <ePower_DMC><C:\Acer\Empowering Technology\ePower\ePower_DMC.exe>  []
    <Boot><C:\Acer\Empowering Technology\ePower\Boot.exe>  []
    <iTunesHelper><"D:\Program Files\iTunes\iTunesHelper.exe">  [(Verified)Apple Inc.]
    <TQ><D:\Program Files\TQ\TQ.exe -FrmReg>  [北京商之讯软件有限公司]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    <KKDelay><C:\Program Files\Rising\AntiSpyware\RunOnce.exe>  [(Verified)Beijing Rising Information Technology Corporation Limited]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><c:\windows\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><kmon.dll>  [(Verified)Beijing Rising Information Technology Corporation Limited]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINDOWS\system32\RavExt.dll>  [(Verified)Beijing Rising Information Technology Corporation Limited]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WebCheck><C:\WINDOWS\system32\webcheck.dll>  [(Verified)Microsoft Windows Component Publisher]
    <SysTray><C:\WINDOWS\system32\stobject.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
    <IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
    <Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
    <浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\aetsprov]
    <N/A><C:\WINDOWS\system32\regsvr32.exe /s C:\WINDOWS\system32\aetsprov.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
    <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8b15971b-5355-4c82-8c07-7e181ea07608}]
    <Fax><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser>  [(Verified)Microsoft Windows Publisher]

==================================
启动文件夹
[BlueSoleil]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\BlueSoleil.lnk --> C:\PROGRA~1\IVTCOR~1\BLUESO~1\BLUESO~1.EXE [IVT Corporation]><N>

==================================
服务
[Apple Mobile Device / Apple Mobile Device][Running/Auto Start]
  <"C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"><Apple Inc.>
[BlueSoleil Hid Service / BlueSoleil Hid Service][Running/Auto Start]
  <C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe><N/A>
[Cmb WebProtect Support / CMBWPS][Running/Auto Start]
  <C:\Program Files\CMBCHINA\WebProtect\WPService.exe /start><China Merchants Bank>
[Intel(R) PROSet/Wireless Event Log / EvtEng][Running/Auto Start]
  <C:\Program Files\Intel\Wireless\Bin\EvtEng.exe><Intel Corporation>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InCD Helper / InCDsrv][Running/Auto Start]
  <D:\Program Files\Nero 7\InCD\InCDsrv.exe><Nero AG>
[iPod 服务 / iPod Service][Running/Manual Start]
  <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.>
[Kingsoft Basic Service / kaccore][Stopped/Manual Start]
  <"C:\Program Files\Kingsoft\KAC\Service\kaccore.exe"><Kingsoft Corporation>
[Macromedia Licensing Service / Macromedia Licensing Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><>
[MSSQL$TANGSOFT / MSSQL$TANGSOFT][Running/Auto Start]
  <"C:\Program Files\Microsoft SQL Server\MSSQL$TANGSOFT\Binn\sqlservr.exe" -sTANGSOFT><Microsoft Corporation>
[MSSQLServerADHelper / MSSQLServerADHelper][Stopped/Manual Start]
  <"C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe"><Microsoft Corporation>
[NBService / NBService][Stopped/Manual Start]
  <D:\Program Files\Nero 7\Nero BackItUp\NBService.exe><Nero AG>
[NetLimiter / nlsvc][Running/Auto Start]
  <"d:\Program Files\NetLimiter 2 Pro\nlsvc.exe"><Locktime Software>
[PlugServerD / PlugServer][Running/Auto Start]
  <C:\Program Files\StarSec\PlugServer.exe><GDChina>
[Rav Process Communication Center / RavCCenter][Stopped/Auto Start]
  <C:\Program Files\Rising\Rav\CCENTER.EXE><Beijing Rising Information Technology Co., Ltd.>
[Rising RavTask Manager / RavTask][Running/Auto Start]
  <"C:\Program Files\Rising\Rav\RavTask.exe" RavTask><Beijing Rising Information Technology Co., Ltd.>
[Intel(R) PROSet/Wireless Registry Service / RegSrvc][Running/Auto Start]
  <C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe><Intel Corporation>
[Rfw Process Communication Center / RfwCCenter][Stopped/Auto Start]
  <C:\Program Files\Rising\Rfw\CCENTER.EXE><Beijing Rising Information Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService][Stopped/Auto Start]
  <C:\Program Files\Rising\Rfw\rfwsrv.exe><Beijing Rising Information Technology Co., Ltd.>
[Rising RfwTask Manager / RfwTask][Running/Auto Start]
  <"C:\Program Files\Rising\Rfw\RavTask.exe" RfwTask><Beijing Rising Information Technology Co., Ltd.>
[Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start]
  <"C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini"><N/A>
[Rising RealTime Monitor / RsRavMon][Stopped/Auto Start]
  <C:\Program Files\Rising\Rav\RavMonD.exe><Beijing Rising Information Technology Co., Ltd.>
[Rising Scan Service / RsScanSrv][Stopped/Auto Start]
  <C:\Program Files\Rising\Rav\ScanFrm.exe><Beijing Rising Information Technology Co., Ltd.>
[Intel(R) PROSet/Wireless Service / S24EventMonitor][Running/Auto Start]
  <C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe><Intel Corporation>
[ServiceLayer / ServiceLayer][Running/Manual Start]
  <"C:\Program Files\PC Connectivity Solution\ServiceLayer.exe"><Nokia.>
[SQLAgent$TANGSOFT / SQLAgent$TANGSOFT][Stopped/Manual Start]
  <"C:\Program Files\Microsoft SQL Server\MSSQL$TANGSOFT\Binn\sqlagent.EXE" -i TANGSOFT><Microsoft Corporation>
[XP变脸王可视风格引擎 / UxTuneUp][Running/Auto Start]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\uxtuneup.dll><Holersoft>
[Broadcom Wireless LAN Tray Service / wltrysvc][Running/Auto Start]
  <C:\WINDOWS\System32\wltrysvc.exe C:\WINDOWS\System32\bcmwltry.exe><N/A>

==================================
驱动程序
[AEGIS Protocol (IEEE 802.1x) v3.4.9.0 / AegisP][Running/Auto Start]
  <system32\DRIVERS\AegisP.sys><Meetinghouse Data Communications>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
  <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[Rising TDI Base Driver / BaseTDI][Running/Auto Start]
  <System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[Broadcom 440x 10/100 Integrated Controller XP Driver / bcm4sbxp][Running/Manual Start]
  <system32\DRIVERS\bcm4sbxp.sys><Broadcom Corporation>
[Bluetooth Audio Service / BlueletAudio][Running/Manual Start]
  <system32\DRIVERS\blueletaudio.sys><IVT Corporation>
[Bluetooth SCO Audio Service / BlueletSCOAudio][Running/Manual Start]
  <system32\DRIVERS\BlueletSCOAudio.sys><IVT Corporation>
[Bluetooth PAN Network Adapter / BT][Running/Manual Start]
  <system32\DRIVERS\btnetdrv.sys><IVT Corporation>
[Bluetooth USB For Bluetooth Service / Btcsrusb][Running/Manual Start]
  <System32\Drivers\btcusb.sys><IVT Corporation>
[Bluetooth HID Enumerator / BTHidEnum][Running/Manual Start]
  <system32\DRIVERS\vbtenum.sys><N/A>
[Bluetooth HID Manager Service / BTHidMgr][Running/Boot Start]
  <\SystemRoot\System32\Drivers\BTHidMgr.sys><IVT Corporation>
[Bluetooth Network Filter / BTNetFilter][Stopped/Manual Start]
  <\??\C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys><N/A>
[Dritek Keyboard Filter Driver / DKbFltr][Running/Manual Start]
  <system32\DRIVERS\DKbFltr.sys><Dritek System Inc.>
[DriverLINX Port I/O Driver / DLPortIO][Stopped/Auto Start]
  <System32\drivers\DLPORTIO.SYS><N/A>
[Dritek General Port I/O / DritekPortIO][Running/Auto Start]
  <\??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys><Dritek System Inc.>
[usb Card Device / ft2kEnum][Running/Manual Start]
  <system32\DRIVERS\ic2kenum.sys><OEM Corporation>
[USB Chip Holder Service / GDBaseSmc][Running/Manual Start]
  <system32\DRIVERS\Chip_smc.sys><OEM>
[USB Chip Service / GD_USB][Stopped/Manual Start]
  <system32\DRIVERS\Chip_usb.sys><>
[GEAR ASPI Filter Driver / GEARAspiWDM][Running/Manual Start]
  <system32\DRIVERS\GEARAspiWDM.sys><GEAR Software Inc.>
[Gmer / Gmer][Stopped/Manual Start]
  <System32\DRIVERS\gmer.sys><GMER>
[hookcont / hookcont][Running/System Start]
  <system32\drivers\HookCont.sys><Beijing Rising Information Technology Co., Ltd.>
[hooksys / hooksys][Running/System Start]
  <system32\drivers\HookSys.sys><Beijing Rising Information Technology Co., Ltd.>
[HSFHWICH / HSFHWICH][Running/Manual Start]
  <system32\DRIVERS\HSFHWICH.sys><Conexant Systems, Inc.>
[HSF_DP / HSF_DP][Running/Manual Start]
  <system32\DRIVERS\HSF_DP.sys><Conexant Systems, Inc.>
[ialm / ialm][Running/Manual Start]
  <system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[InCD File System / InCDfs][Running/Disabled]
  <system32\drivers\InCDFs.sys><Nero AG>
[InCDPass / InCDPass][Running/System Start]
  <system32\drivers\InCDPass.sys><Nero AG>
[InCD Reader / incdrm][Running/System Start]
  <system32\drivers\InCDRm.sys><Nero AG>
[int15 / int15][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\int15.sys><Acer, Inc.>
[Antiy Labs IRP FILE / IRPFile][Stopped/Manual Start]
  <\??\C:\Documents and Settings\张金库\桌面\atool2\atool\IrpFile.sys><N/A>
[KAVBootC / KAVBootC][Running/Boot Start]
  <\SystemRoot\system32\Drivers\KAVBootC.sys><Kingsoft Corporation>
[KAVSafe / KAVSafe][Running/Auto Start]
  <\??\C:\WINDOWS\system32\Drivers\KAVSafe.sys><Kingsoft Corporation>
[Elantech Touchpad / Ktp][Running/Manual Start]
  <system32\DRIVERS\Ktp.sys><ELANTECH Devices Corp.>
[Logitech SetPoint PS/2 Mouse Filter Driver / L8042mou][Stopped/Manual Start]
  <system32\DRIVERS\L8042mou.Sys><Logitech, Inc.>
[Logitech SetPoint HID Mouse Filter Driver / LHidKe][Running/Manual Start]
  <system32\DRIVERS\LHidKE.Sys><Logitech, Inc.>
[Logitech SetPoint USB Receiver device driver / LHidUsbK][Running/Manual Start]
  <System32\Drivers\LHidUsbK.Sys><Logitech, Inc.>
[Logitech SetPoint Mouse Filter Driver / LMouKE][Running/Manual Start]
  <system32\DRIVERS\LMouKE.Sys><Logitech, Inc.>
[mdmxsdk / mdmxsdk][Running/Auto Start]
  <system32\DRIVERS\mdmxsdk.sys><Conexant>
[nltdi / nltdi][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\nltdi.sys><Locktime Software>
[Nokia USB Phone Parent / nmwcd][Stopped/Manual Start]
  <system32\drivers\ccdcmb.sys><Nokia>
[Nokia USB Generic / nmwcdc][Stopped/Manual Start]
  <system32\drivers\ccdcmbo.sys><Nokia>
[NetGroup Packet Filter Driver / NPF][Stopped/Manual Start]
  <system32\drivers\npf.sys><Politecnico di Torino>
[npkcrypt / npkcrypt][Running/Auto Start]
  <\??\d:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[PCCS Mode Change Filter Driver / pccsmcfd][Stopped/Manual Start]
  <system32\DRIVERS\pccsmcfd.sys><Nokia>
[Low level access layer for CD devices / pcouffin][Stopped/Manual Start]
  <System32\Drivers\pcouffin.sys><N/A>
[Protector / Protector][Running/System Start]
  <system32\drivers\Protector.sys><N/A>
[ProtectorA / ProtectorA][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\ProtectorA.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
  <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[SmartCard Reader Device  / Reader_Device][Running/Manual Start]
  <system32\DRIVERS\usbic2k.sys><OEM>
[Rising RfwBase Driver / RfwBase9][Running/Manual Start]
  <system32\DRIVERS\rfwbase.sys><Beijing Rising Information Technology Co., Ltd.>
[rfwtdi / rfwtdi][Running/Auto Start]
  <\??\C:\Program Files\Rising\Rfw\rfwtdi.sys><Beijing Rising Information Technology Co., Ltd.>
[RsAntiSpyware / RsAntiSpyware][Running/Boot Start]
  <\SystemRoot\system32\drivers\RsBoot.sys><Beijing Rising Technology Co., Ltd.>
[rsfwdrv / rsfwdrv][Running/System Start]
  <\??\C:\Program Files\Rising\Rfw\rsfwdrv.sys><Beijing Rising Information Technology Co., Ltd.>
[RsNTGDI / RsNTGDI][Running/Boot Start]
  <\SystemRoot\system32\Drivers\RsNTGdi.sys><Beijing Rising Information Technology Co., Ltd.>
[RsProtect / RsProtect][Running/System Start]
  <system32\drivers\RsPtect.sys><Beijing Rising Information Technology Co., Ltd.>
[WLAN 传输 / s24trans][Running/Auto Start]
  <system32\DRIVERS\s24trans.sys><Intel Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[Virtual bus device (SuperSpeed Software, Inc.) / SscRdBus][Running/Manual Start]
  <system32\DRIVERS\SscRdBus.sys><SuperSpeed Software, Inc.>
[RAM Disk (SuperSpeed Software, Inc.) / SscRdFdo][Stopped/Manual Start]
  <system32\DRIVERS\SscRdFdo.sys><SuperSpeed Software, Inc.>
[播放机恢复设备控制驱动程序 / StMp3Rec][Stopped/Manual Start]
  <System32\Drivers\StMp3Rec.sys><Microsoft Corporation>
[SVKP / SVKP][Running/Auto Start]
  <\??\C:\WINDOWS\system32\SVKP.sys><AntiCracking>
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
  <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
[TrojanFindDriverNT / TrojanFindDriverNT][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\NtDriver.sys><N/A>
[tvicport / tvicport][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\tvicport.sys><EnTech Taiwan>
[UnlockerDriver4 Driver / UnlockerDriver4][Stopped/Manual Start]
  <\??\C:\Program Files\Unlocker\UnlockerDriver4.sys><N/A>
[upperdev / upperdev][Stopped/Manual Start]
  <system32\DRIVERS\usbser_lowerflt.sys><Windows (R) Codename Longhorn DDK provider>
[WirelessMgr_USB_VCOM / usb_a2000p][Stopped/Manual Start]
  <system32\DRIVERS\usb_a2000p.sys><N/A>
[Virtual Serial port driver / VComm][Running/Manual Start]
  <system32\DRIVERS\VComm.sys><IVT Corporation>
[Bluetooth VComm Manager Service / VcommMgr][Running/Manual Start]
  <System32\Drivers\VcommMgr.sys><IVT Corporation>
[WirelessMgr / VCOM_WirelessMgr][Running/Manual Start]
  <system32\DRIVERS\VCOM_A2000P.sys><N/A>
[用于 Windows XP 的英特尔(R) PRO/无线 2200BG 网络连接驱动程序 / w29n51][Running/Manual Start]
  <system32\DRIVERS\w29n51.sys><Intel? Corporation>
[winachsf / winachsf][Running/Manual Start]
  <system32\DRIVERS\HSF_CNXT.sys><Conexant Systems, Inc.>
[zntport / zntport][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\zntport.sys><Zeal SoftStudio>
[ZSMC USB PC Camera / ZSMC301b][Stopped/Manual Start]
  <System32\Drivers\usbVM31b.sys><VM>

==================================
浏览器加载项
[IE7Pro BHO]
  {00011268-E188-40DF-A514-835FCD78B1BF} <C:\Program Files\IEPro\iepro.dll, IE7Pro.com>
[ThunderAtOnce Class]
  {01443AEC-0FD1-40fd-9C87-E93D1494C233} <d:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[Adobe PDF Link Helper]
  {18DF081C-E8AD-4283-A596-FA578C2EBDC3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated>
[WebProtect]
  {53763D1D-9CA8-4C7C-9756-A8E6B8FC063B} <C:\Program Files\CMBCHINA\WebProtect\WebProtect.dll, (Signed) China Merchants Bank>
[Search Helper]
  {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} <C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll, (Signed) Microsoft Corp.>
[SSVHelper Class]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[BOC ProcessProtect Class]
  {776B71E2-B4CC-4C94-BC7C-09103AA690B6} <ProcessProtection.dll, ISRA>
[Windows Live 登录帮助程序]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>
[卡卡上网安全助手]
  {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} <C:\WINDOWS\system32\UrlFilter.dll, (Signed) Beijing Rising Information Technology Co., Ltd.>
[kingsoft browser shield]
  {D963BE1A-6B35-47DB-B002-49FAE71D85CC} <C:\PROGRA~1\KINGSO~1\KASBrowserShield.DLL, (Signed) Kingsoft Corporation>
[Windows Live Toolbar Helper]
  {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} <C:\Program Files\Windows Live\Toolbar\wltcore.dll, N/A>
[IE7Pro ToolsExt]
  {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} <C:\Program Files\IEPro\iepro.dll, IE7Pro.com>
[Java Plug-in 1.6.0_03]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[启动迅雷5]
  {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <d:\Program Files\Thunder Network\Thunder\Thunder.exe, Thunder Networking Technologies,LTD>
[TQ.CN]
  {1522439E-756F-4A1C-B61D-D281AC1814C8} <http://www.tq.cn/, N/A>
[BlogThisToolbarButton Class]
  {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} <C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll, (Signed) Microsoft Corporation>
[IEBuddyExtControl Class]
  {3AECD3C1-7085-4731-96DC-47B6CF7EF749} <C:\PROGRA~1\KINGSO~1\IEBuddyExt.DLL, (Signed) Kingsoft Corporation>
[信息检索(&R)]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL, (Signed) Microsoft Corporation>
[金山快译(&K)]
  {6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} <D:\Program Files\Kingsoft\FastAIT 2005\IEBand.dll, 金山软件股份有限公司>
[&Windows Live Toolbar]
  {21FA44EF-376D-4D53-9B0F-8A89D3229068} <C:\Program Files\Windows Live\Toolbar\wltcore.dll, N/A>
[]
  {00000055-9980-0010-8000-00AA00389B71} <, >
[MMCPlayer Class]
  {05C1004E-2596-48E5-8E26-39362985EEB9} <C:\WINDOWS\Downloaded Program Files\CONFLICT.1\MMCShell.dll, (Signed) Sohu.com Inc.>
[PeerDllAx Control]
  {07EF053D-3CA8-4010-BB59-63EB3AB2229D} <C:\WINDOWS\system32\PEERDL~1.OCX, 北京新浪网络技术服务有限公司>
[ZSv1 Control]
  {0C0E4CD2-59DF-48EF-8904-1A168D9A09B0} <C:\WINDOWS\DOWNLO~1\ftp-gb.ocx, N/A>
[Edit Class]
  {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} <C:\WINDOWS\system32\CMBEdit.dll, >
[BlockHouse Class]
  {0D99625B-0619-4420-BB61-82DEE1B91D3A} <C:\WINDOWS\system32\CertKitAx.dll, CFCA>
[iTrusPTA Class]
  {1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\pta.dll, (Signed) >
[PGEdit Class]
  {2BFAA61B-5C83-4865-8281-D8BDBF863061} <C:\Program Files\GnetSecCtrl\PG_ATL_Edit.dll, 银联网络支付集团有限公司>
[nEdit Control]
  {32D72994-45B9-42B5-8980-FB561D1BE2D0} <C:\WINDOWS\system32\nEdit\nEdit.ocx, (Signed) NetEase Information Technology (Beijing) Co. Ltd>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, (Signed) >
[ICBC Security Ctrl]
  {5AB9367B-DD7F-411D-A030-DF7DE5E17AAE} <C:\WINDOWS\DOWNLO~1\NETBAN~1.OCX, Industrial and Commercial Bank of China>
[InfoSecNetSign Class]
  {62B938C4-4190-4F37-8CF0-A92B0A91CC77} <C:\WINDOWS\system32\NetSign.dll, Infosec Technologies Co., Ltd.>
[print Control]
  {68F8FC95-E80B-416D-9431-6A12516B484E} <C:\WINDOWS\DOWNLO~1\CONFLICT.2\PRINTP~1.OCX, >
[InPutCtrl Control]
  {7208FB6D-EE30-4734-82C7-59BB71C5C0CE} <C:\WINDOWS\system32\INPUTC~1.OCX, 北京数字证书认证中心>
[DLoader Class]
  {78ABDC59-D8E7-44D3-9A76-9A0918C52B4A} <C:\WINDOWS\Downloaded Program Files\downloader.dll, (Signed) Sina Com>
[DownFile Control]
  {7C79D86B-F38D-459F-9774-28763A968146} <C:\WINDOWS\DOWNLO~1\DOWNFI~1.OCX, >
[163Uploader Control]
  {8686F2A6-DC01-4E8F-BDE3-DCC7DBBAD6AE} <C:\WINDOWS\system32\163UPL~1.OCX, 广州网易互动娱乐有限公司>
[Java Plug-in 1.6.0_03]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[pEdit Control]
  {9CE079AF-AA90-44F4-BBB3-7C6DB300F5C9} <C:\WINDOWS\system32\pEdit.ocx, TODO: <网易>>
[Submit Class]
  {A3CD7F74-93C9-4BC4-B892-CCDF1514F714} <C:\WINDOWS\system32\safeInput4jh.dll, Beijing eChannels Century Technology Co.,Ltd>
[CCTVUpdateInstall]
  {AC414988-E5BB-4C2C-873B-EA53D2F3D23A} <C:\WINDOWS\Downloaded Program Files\CCTVUpdateInstall.dll, >
[TrustPad Control]
  {C2A9975C-AECB-4261-A724-44EE4CCBEDB3} <C:\WINDOWS\system32\TrustPad.ocx, >
[NTKO OFFICE文档控件]
  {C9BC4DFF-4248-4A3C-8A49-63A7D317F404} <C:\WINDOWS\Downloaded Program Files\CONFLICT.2\OfficeControl.ocx, 千航网络[NTKO SOFTWARE] WEB:http://www.ntko.com Email: tanger@ntko.com>
[Java Plug-in 1.6.0_03]
  {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_03]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll, (Signed) Sun Microsystems, Inc.>
[EditCtrl Class]
  {E0E9F6EF-871B-42AE-89C9-CD6AF7A2E5D3} <C:\WINDOWS\system32\SecEdit\SecEdit.dll, (Signed) >
[PasswordEditCtrl Class]
  {E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\WINDOWS\system32\qqedit\qqedit.dll, (Signed) 腾讯科技（深圳）有限公司>
[]
  {00000000-12C9-4305-82F9-43058F20E8D2} <, >
[IE7Pro BHO]
  {00011268-E188-40DF-A514-835FCD78B1BF} <C:\Program Files\IEPro\iepro.dll, IE7Pro.com>
[]
  {0026439F-A980-4F18-8C95-4F1CBBF9C1D8} <, >
[ThunderAtOnce Class]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233} <d:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[MMCPlayer Class]
  {05C1004E-2596-48E5-8E26-39362985EEB9} <C:\WINDOWS\Downloaded Program Files\CONFLICT.1\MMCShell.dll, (Signed) Sohu.com Inc.>
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[]
  {0713E8D1-850A-101B-AFC0-5210102A8DAA} <, >
[Microsoft ProgressBar Control, version 5.0 (SP2)]
  {0713E8D2-850A-101B-AFC0-4210102A8DA7} <C:\WINDOWS\system32\Comctl32.ocx, (Signed) Microsoft Corporation>
[Web Browser Applet Control]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINDOWS\system32\msjava.dll, Microsoft Corporation>
[]
  {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <, >
[GerneralPeerID Class]
  {0A47E819-F82E-4D5D-B806-6A9EA94D68CD} <d:\Program Files\Thunder Network\Thunder\Components\InMedia\peerid.dll, >
[CLDown Object]
  {0BECAB3A-E1F8-45E6-8332-38DD750EBA01} <D:\Program Files\Tuotu\TuoTuHelper.dll, >
[Edit Class]
  {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} <C:\WINDOWS\system32\CMBEdit.dll, >
[InfosecCertInstall Class]
  {0EB487C8-E9AC-43A6-8C4C-083999B0622F} <C:\WINDOWS\system32\certInStall.dll, >
[CEnroll Class]
  {127698E4-E730-4E5C-A2B1-21490A70C8A1} <C:\WINDOWS\system32\xenroll.dll, (Signed) Microsoft Corporation>
[]
  {1522439E-756F-4A1C-B61D-D281AC1814C8} <, >
[Adobe PDF Link Helper]
  {18DF081C-E8AD-4283-A596-FA578C2EBDC3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated>
[InformationCardSigninHelper Class]
  {19916E01-B44E-4E31-94A4-4696DF46157B} <C:\WINDOWS\system32\icardie.dll, (Signed) Microsoft Corporation>
[]
  {1D3E6D2D-ED58-43D2-9D17-98F584B14D3B} <, >
[iTrusPTA Class]
  {1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\pta.dll, (Signed) >
[]
  {219C3416-8CB2-491A-A3C7-D9FCDDC9D600} <, >
[&Windows Live Toolbar]
  {21FA44EF-376D-4D53-9B0F-8A89D3229068} <C:\Program Files\Windows Live\Toolbar\wltcore.dll, N/A>
[]
  {2253922F-1B26-4C74-8B57-E3AEE748DBB8} <, >
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
[]
  {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <, >
[]
  {3049C3E9-B461-4BC5-8870-4C09146192CA} <, >
[]
  {31EBA2E2-58B2-4980-9C41-F12F5F1422C5} <, >
[]
  {33AA831D-8752-4FAE-9A09-103B789A0361} <, >
[GDGetTokenInfo Class]
  {3AA9CF07-DF20-48FF-98BE-DED276E40146} <C:\WINDOWS\system32\GDREAD~1.DLL, >
[IEBuddyExtControl Class]
  {3AECD3C1-7085-4731-96DC-47B6CF7EF749} <C:\PROGRA~1\KINGSO~1\IEBuddyExt.DLL, (Signed) Kingsoft Corporation>
[QuickTime Object]
  {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[GDCCBCtrl Class]
  {478AB5EE-5C92-41C3-8339-CFC5BA639733} <C:\WINDOWS\system32\GDCCBUtil.dll, G&D>
[Thunder Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <D:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, (Signed) >
[HHCtrl Object]
  {52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\WINDOWS\system32\hhctrl.ocx, (Signed) Microsoft Corporation>
[WebProtect]
  {53763D1D-9CA8-4C7C-9756-A8E6B8FC063B} <C:\Program Files\CMBCHINA\WebProtect\WebProtect.dll, (Signed) China Merchants Bank>
[InfoSecNetSign Class]
  {5CB840B5-A94E-4AD9-B785-4866E3B04476} <C:\WINDOWS\system32\ICBCNE~1.DLL, Infosec Technologies Co., Ltd.>
[InfoSecNetSign Class]
  {62B938C4-4190-4F37-8CF0-A92B0A91CC77} <C:\WINDOWS\system32\NetSign.dll, Infosec Technologies Co., Ltd.>
[XMP Class]
  {6483F145-A768-4C41-AACC-52D4D7845851} <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work, Xunlei Networking Technologies,LTD>
[print Control]
  {68F8FC95-E80B-416D-9431-6A12516B484E} <C:\WINDOWS\DOWNLO~1\CONFLICT.2\PRINTP~1.OCX, >
[XDRM]
  {693571CB-54A3-4E90-9D52-EEAE1334E2D3} <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work, >
[金山快译(&K)]
  {6C3797D2-3FEF-4CD4-B654-D3AE55B4128C} <D:\Program Files\Kingsoft\FastAIT 2005\IEBand.dll, 金山软件股份有限公司>
[WangWangObj Class]
  {6E213FC7-DD5A-4115-B7E6-D4C7838C361E} <D:\Program Files\淘宝网\淘宝旺旺\WangWangX6.dll, (Signed) 阿里巴巴软件(上海)有限公司>
[Search Helper]
  {6EBF7485-159F-4BFF-A14F-B9E3AAC4465B} <C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll, (Signed) Microsoft Corp.>
[Windows Script Host Shell Object]
  {72C24DD5-D70A-438B-8A42-98424B88AFB8} <C:\WINDOWS\system32\wshom.ocx, (Signed) Microsoft Corporation>
[AxInputControl Class]
  {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\system32\INPUTC~1.DLL, >
[SSVHelper Class]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[MediaComm Class]
  {7670648D-461B-42AF-BDFE-46D26AF5EFF2} <D:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin18.dll, (Signed) Thunder Networking Technologies,LTD>
[BOC ProcessProtect Class]
  {776B71E2-B4CC-4C94-BC7C-09103AA690B6} <ProcessProtection.dll, ISRA>
[]
  {7E853D72-626A-48EC-A868-BA8D5E23E045} <, >
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[AxSubmitControl Class]
  {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\system32\SUBMIT~1.DLL, >
[Windows Live 登录帮助程序]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>
[]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[卡卡上网安全助手]
  {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} <C:\WINDOWS\system32\UrlFilter.dll, (Signed) Beijing Rising Information Technology Co., Ltd.>
[Submit Class]
  {A3CD7F74-93C9-4BC4-B892-CCDF1514F714} <C:\WINDOWS\system32\safeInput4jh.dll, Beijing eChannels Century Technology Co.,Ltd>
[RMGetLicense Class]
  {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, (Signed) Microsoft Corporation>
[DapCtrl Class]
  {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.1.5805.77.(390).dll, ShenZhen Thunder Networking Technologies Ltd.>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[]
  {AFF6E516-CBE5-4F8A-9C2F-38A68013E766} <, >
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, (Signed) Microsoft Corporation>
[]
  {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} <, >
[]
  {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} <, >
[CSetLET Class]
  {C35D7AE1-0865-4A30-BF07-29FA29324155} <C:\WINDOWS\system32\GDSetLET.dll, >
[]
  {C92AE615-4D46-4489-96FA-C5D6A38B3AB1} <, >
[]
  {C95FE080-8F5D-11D2-A20B-00AA003C157B} <, >
[NTKO OFFICE文档控件]
  {C9BC4DFF-4248-4A3C-8A49-63A7D317F404} <C:\WINDOWS\Downloaded Program Files\CONFLICT.2\OfficeControl.ocx, 千航网络[NTKO SOFTWARE] WEB:http://www.ntko.com Email: tanger@ntko.com>
[Java Plug-in 1.6.0_01]
  {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_03]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll, (Signed) Sun Microsystems, Inc.>
[VIDEO__X_MS_ASF Moniker Class]
  {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[]
  {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} <, >
[]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <, >
[Windows Live 登录控制]
  {D2517915-48CE-4286-970F-921E881B8C5C} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx, (Signed) Adobe Systems, Inc.>
[]
  {D6E814A0-E0C5-11D4-8D29-0050BA6940E3} <, >
[kingsoft browser shield]
  {D963BE1A-6B35-47DB-B002-49FAE71D85CC} <C:\PROGRA~1\KINGSO~1\KASBrowserShield.DLL, (Signed) Kingsoft Corporation>
[]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <, >
[PlayerCtrl Class]
  {E05BC2A3-9A46-4A32-80C9-023A473F5B23} <D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.QQMusic\bin\QQMusic\QzoneMusic.dll, (Signed) 深圳腾讯科技>
[]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <, >
[Windows Live Toolbar Helper]
  {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} <C:\Program Files\Windows Live\Toolbar\wltcore.dll, N/A>
[]
  {E19ADC6E-3909-43E4-9A89-B7B676377EE3} <, >
[]
  {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[AxUSBKey Class]
  {E4BFF825-2E50-4BCC-8497-6EFDFB6C9B3D} <C:\WINDOWS\system32\ICBCUS~1.DLL, 北京信安世纪公司>
[safeInput Class]
  {ECCBA956-80E5-11D3-9285-0080ADB811C9} <C:\WINDOWS\system32\safeInput4jh.dll, Beijing eChannels Century Technology Co.,Ltd>
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[Thunder DapPlayer]
  {EEDD6FF9-13DE-496B-9A1C-D78B3215E266} <d:\Program Files\Thunder Network\Thunder\Components\DownAndPlay\DapPlayer3.0.5712.71.38.dll, ShenZhen Thunder Networking Technologies Ltd.>
[]
  {F156768E-81EF-470C-9057-481BA8380DBA} <, >
[XPPlayer Class]
  {F3E70CEA-956E-49CC-B444-73AFE593AD7F} <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.1.5853.212.(390).dll, Xunlei Networking Technologies,LTD>
[]
  {F8CF2D37-D56B-4B9F-9B7A-9465ED3D18D8} <, >
[]
  {FB5DA724-162B-11D3-8B9B-AA70B4B0B524} <, >
[使用迅雷下载]
  <D:\Program Files\Thunder Network\Thunder\Program\geturl.htm, N/A>
[使用迅雷下载全部链接]
  <D:\Program Files\Thunder Network\Thunder\Program\getallurl.htm, N/A>
[在Foxmail中添加该RSS频道/频道组]
  <res://C:\WINDOWS\system32\fmrsslink.dll/201, N/A>

==================================
正在运行的进程
[PID: 924 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1680 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1704 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\System32\BCMLogon.dll]  [Broadcom Corporation, 3.100.46.0]
[PID: 1748 / SYSTEM][C:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1760 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\aetsprov.dll]  [A.E.T. Europe B.V., 2.3.0.9]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[PID: 1924 / SYSTEM][D:\Program Files\Nero 7\InCD\InCDsrv.exe]  [Nero AG, 5, 1, 0, 9]
    [D:\Program Files\Nero 7\InCD\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [D:\Program Files\Nero 7\InCD\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Common Files\Ahead\Lib\AdvrCntr2.dll]  [Nero AG, 3,15,2, 6900]
    [C:\Program Files\Common Files\Ahead\Lib\DriveLocker.dll]  [Nero AG, 1, 0, 0, 18]
    [D:\Program Files\Nero 7\InCD\incdshx.dll]  [Nero AG, 5, 1, 0, 9]
    [D:\Program Files\Nero 7\InCD\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
[PID: 2036 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 260 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 424 / SYSTEM][C:\Program Files\Rising\Rav\CCENTER.EXE]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\Program Files\Rising\Rav\combase.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11]
    [C:\Program Files\Rising\Rav\cnt09.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 37]
    [C:\Program Files\Rising\Rav\cnt08.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 444 / SYSTEM][C:\Program Files\Rising\Rfw\CCENTER.EXE]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\Program Files\Rising\Rfw\combase.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11]
    [C:\Program Files\Rising\Rfw\cnt09.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 37]
[PID: 452 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [c:\windows\system32\uxtuneup.dll]  [Holersoft, 1.0.0.2]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.62]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[PID: 512 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 964 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\EvtEng.exe]  [Intel Corporation, 10, 1, 0, 1]
    [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll]  [Intel Corporation, 10, 1, 0, 2]
    [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL]  [Intel Corporation, 10, 1, 0, 5]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1052 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe]  [Intel Corporation , 10, 1, 0, 33]
    [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL]  [Intel Corporation, 10, 1, 0, 5]
    [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll]  [Intel Corporation, 10, 1, 0, 2]
    [C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll]  [N/A, ]
    [C:\Program Files\Intel\Wireless\Bin\IntStngs.dll]  [, 10, 1, 0, 2]
    [C:\Program Files\Intel\Wireless\Bin\IWMSPROV.DLL]  [N/A, ]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
[PID: 1112 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1360 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1496 / SYSTEM][C:\Program Files\Rising\Rfw\rfwsrv.exe]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.1]
    [C:\Program Files\Rising\Rfw\combase.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Rising\Rfw\MonBase.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6]
    [C:\Program Files\Rising\Rfw\MonComm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12]
    [C:\Program Files\Rising\Rfw\rfwlog.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9]
    [C:\Program Files\Rising\Rfw\rfwrule.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.25]
    [C:\Program Files\Rising\Rfw\rfwsrv.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.80]
    [C:\Program Files\Rising\Rfw\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\Rising\Rfw\mPorts.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.0]
    [C:\Program Files\Rising\Rfw\rfwdrvc.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.3]
    [C:\Program Files\Rising\Rfw\Rfwdrv.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.5]
    [C:\Program Files\Rising\Rfw\rsnetsvr.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14]
    [C:\Program Files\Rising\Rfw\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\Rfw\urlrule.dll]  [Beijing Rising Information Technology Co., Ltd., 1.0.0.18]
    [C:\Program Files\Rising\Rfw\recomp.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rfw\refs.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rfw\viruslib.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rfw\relibldr.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\Program Files\Rising\Rfw\rfwproxy.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.25]
    [C:\Program Files\Rising\Rfw\RSAPPMGR.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.1]
    [C:\Program Files\Rising\Rfw\CfgDll.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.18]
    [C:\Program Files\Rising\Rfw\proccomm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46]
    [C:\Program Files\Rising\Rfw\urllib.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1]
[PID: 1828 / 张金库][C:\WINDOWS\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 9.0.0.2008061100]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS]  [Adobe Systems, Inc., 9.0.0.0]
    [C:\Program Files\Elantech\KtpDll.Dll]  [ELANTECH Devices Corp., 5.0.1.6]
    [C:\WINDOWS\system32\aetsprov.dll]  [A.E.T. Europe B.V., 2.3.0.9]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [D:\Program Files\Nero 7\Nero BackItUp\NBShell.dll]  [Nero AG, 2, 2, 7, 0]
    [D:\Program Files\Nero 7\Nero BackItUp\MFC71U.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [C:\Program Files\IDM Computer Solutions\UltraEdit-32\ue32ctmn.dll]  [, 1, 0, 0, 2]
    [D:\Program Files\Nero 7\InCD\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [D:\Program Files\Nero 7\InCD\InCDAPI2.dll]  [Nero AG, 5, 1, 0, 9]
    [C:\Program Files\Common Files\Ahead\Lib\AdvrCntr2.dll]  [Nero AG, 3,15,2, 6900]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)]
    [C:\WINDOWS\system32\icm32.dll]  [Microsoft Corporation, 5.1.2600.2709 (xpsp_sp2_gdr.050628-1518)]
    [C:\Program Files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll]  [Nokia, 7, 1, 105, 0]
    [C:\Program Files\Nokia\Nokia PC Suite 7\NGSCM.DLL]  [Nokia, 7, 1, 151, 0]
    [C:\Program Files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_chi-sc.nlr]  [Nokia, 7, 1, 66, 0]
    [C:\Program Files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr]  [Nokia, 7, 1, 21, 0]
    [C:\WINDOWS\system32\igfxpph.dll]  [Intel Corporation, 3.0.0.4291]
    [C:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 3.0.0.4291]
    [C:\WINDOWS\system32\igfxres.dll]  [Intel Corporation, 3.0.0.4291]
    [C:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 3.0.0.4291]
    [C:\WINDOWS\system32\igfxdev.dll]  [Intel Corporation, 3.0.0.4291]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\UIPlugin.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\CustomPhraseDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PySysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\SymbolDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbSysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbTraDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\StatisticsModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\ManualNewWord.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\WINDOWS\system32\TrasinWpd.dll]  [上海洲信, 1, 0, 0, 1]
    [C:\WINDOWS\system32\TrasinWpComd.dll]  [Trasin, 1.1.0]
    [C:\WINDOWS\system32\MFC71D.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71D.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\ATL71.DLL]  [Microsoft Corporation, 7.10.3077.0]
[PID: 328 / SYSTEM][C:\WINDOWS\System32\wltrysvc.exe]  [N/A, ]
    [C:\WINDOWS\System32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
[PID: 348 / SYSTEM][C:\WINDOWS\System32\bcmwltry.exe]  [Broadcom Corporation, 3.100.46.0]
    [C:\WINDOWS\System32\AegisE5.dll]  [Meetinghouse Data Communications, 3, 0, 2, 29]
    [C:\WINDOWS\System32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\System32\wltrynt.dll]  [Broadcom Corporation, 3.100.46.0]
[PID: 996 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\CNMLM6e.DLL]  [CANON INC., 1.80.2.50]
    [C:\WINDOWS\system32\EBPMON24.DLL]  [SEIKO EPSON CORPORATION, 5, 4, 0, 0]
    [C:\WINDOWS\system32\ZLhp1020.DLL]  [Zenographics, Inc., 5, 53, 2714, 0]
    [C:\WINDOWS\system32\ZLM.dll]  [Zenographics, Inc., 5, 50, 1416, 0]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\CNMPD6e.DLL]  [CANON INC., 1.80.2.50]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\IMFPrint.DLL]  [Zenographics, Inc., 5, 54, 330, 0]
    [C:\WINDOWS\system32\Imf32.dll]  [Zenographics, Inc., 5, 60, 1204, 0]
    [C:\WINDOWS\system32\ZTAG32.dll]  [Zenographics, Inc., 5, 60, 1210, 0]
    [C:\WINDOWS\system32\ZSPOOL.dll]  [Zenographics, Inc., 5, 51, 709, 0]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\vprproc.dll]  [Windows (R) 2000 DDK provider, 5.00.2195.1620]
[PID: 1148 / LOCAL SERVICE][C:\WINDOWS\System32\SCardSvr.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\System32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
[PID: 1324 / SYSTEM][C:\Program Files\Rising\Rav\rsnetsvr.exe]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 15]
    [C:\Program Files\Rising\Rav\NComm.dll]  [Beijing Rising Information Technology Co., Ltd., 6.0.0.12]
    [C:\Program Files\Rising\Rav\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\Rising\Rav\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\Rav\ProcComm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\aetsprov.dll]  [A.E.T. Europe B.V., 2.3.0.9]
[PID: 1404 / 张金库][C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe]  [Intel Corporation, 10, 1, 0, 17]
    [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll]  [Intel Corporation, 10, 1, 0, 2]
    [C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll]  [N/A, ]
    [C:\Program Files\Intel\Wireless\Bin\IntStngs.dll]  [, 10, 1, 0, 2]
    [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL]  [Intel Corporation, 10, 1, 0, 5]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Intel\Wireless\Bin\FrWrkCHS.dll]  [Intel Corporation, 10, 1, 0, 17]
    [C:\Program Files\Intel\Wireless\Bin\FrameworkPlugins\ConnMgr.dll]  [Intel Corporation, 10, 1, 1, 161]
    [C:\Program Files\Intel\Wireless\Bin\MurocApi.dll]  [Intel Corporation, 10, 1, 0, 37]
    [C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll]  [Intel Corporation, 10, 1, 0, 1]
    [C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll]  [Intel Corporation, 10, 1, 0, 46]
    [C:\Program Files\Intel\Wireless\Bin\DbEngine.dll]  [Intel Corporation, 10, 1, 0, 13]
    [C:\Program Files\Intel\Wireless\Bin\IntWACHS.dll]  [Intel Corporation, 10, 1, 1, 161]
[PID: 1428 / 张金库][C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe]  [Intel Corporation, 10, 1, 0, 41]
    [C:\Program Files\Intel\Wireless\bin\PfMgrApi.dll]  [Intel Corporation, 10, 1, 0, 46]
    [C:\Program Files\Intel\Wireless\bin\TraceAPI.DLL]  [Intel Corporation, 10, 1, 0, 5]
    [C:\Program Files\Intel\Wireless\bin\PsRegApi.dll]  [Intel Corporation, 10, 1, 0, 2]
    [C:\Program Files\Intel\Wireless\bin\DbEngine.dll]  [Intel Corporation, 10, 1, 0, 13]
    [C:\Program Files\Intel\Wireless\bin\LIBEAY32.dll]  [N/A, ]
    [C:\Program Files\Intel\Wireless\bin\IntStngs.dll]  [, 10, 1, 0, 2]
    [C:\Program Files\Intel\Wireless\bin\MurocApi.dll]  [Intel Corporation, 10, 1, 0, 37]
    [C:\Program Files\Intel\Wireless\bin\S24MUDLL.dll]  [Intel Corporation, 10, 1, 0, 1]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Intel\Wireless\Bin\ZcSvcCHS.dll]  [Intel Corporation, 10, 1, 0, 41]
[PID: 1460 / 张金库][C:\WINDOWS\system32\ep2k_certd_bc.exe]  [, 1, 0, 6, 814]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\system32\ep2pk11_bc.dll]  [, 2, 4, 4, 1103]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1584 / 张金库][C:\WINDOWS\system32\ep2k_mon_bc.exe]  [, 1, 1, 4, 1202]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1556 / 张金库][C:\Program Files\StarSec\ssMgr_ccb.exe]  [, 1, 0, 5, 1026]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\system32\SSP11_CCB.dll]  [GDChina, 1, 0, 0, 2]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1632 / 张金库][E:\个人文档\软件\桌面事情提示\DayHint.exe]  [N/A, ]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\msjetoledb40.dll]  [, ]
    [C:\WINDOWS\system32\VBAJET32.DLL]  [Microsoft Corporation, 6.1.9431]
    [C:\Program Files\Elantech\KtpDll.Dll]  [ELANTECH Devices Corp., 5.0.1.6]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
[PID: 188 / 张金库][C:\PROGRA~1\LAUNCH~1\LManager.exe]  [Dritek System Inc., 1, 0, 0, 1013]
    [C:\PROGRA~1\LAUNCH~1\ComFnUtl.dll]  [Dritek System Inc., 1.00]
    [C:\PROGRA~1\LAUNCH~1\MMDUtl.dll]  [Dritek System Inc., 1, 2, 2, 3422]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)]
    [C:\PROGRA~1\LAUNCH~1\PtIOUTL.dll]  [Dritek System Inc., 12, 1, 0, 2004]
    [C:\PROGRA~1\LAUNCH~1\SzUPFUtl.dll]  [Dritek System Inc., 1.00]
    [C:\PROGRA~1\LAUNCH~1\OSDUtl.dll]  [Dritek System Inc., 1, 0, 1, 605]
    [C:\PROGRA~1\LAUNCH~1\RgnMaker.dll]  [Dritek System Inc., 12.07.1999 ( VC60 )]
    [C:\PROGRA~1\LAUNCH~1\CDRomUtl.dll]  [Dritek System Inc., 1.00]
    [C:\PROGRA~1\LAUNCH~1\MixerUtl.dll]  [Dritek System Inc., 1.00]
    [C:\PROGRA~1\LAUNCH~1\Wnd2File.dll]  [Dritek System Inc., 3.00]
    [C:\PROGRA~1\LAUNCH~1\SzPtcUtl.dll]  [Dritek System Inc., 1.00]
    [C:\PROGRA~1\LAUNCH~1\PowerUtl.dll]  [N/A, ]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\PROGRA~1\LAUNCH~1\LgKCUtl.Dll]  [Dritek System Inc., 2, 0, 2, 1007]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\PROGRA~1\LAUNCH~1\DialCnt.Dll]  [Dritek System Inc., 1.10]
    [C:\WINDOWS\system32\IGFXEXPS.DLL]  [Intel Corporation, 3.0.0.4291]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12]
[PID: 1660 / 张金库][C:\WINDOWS\VM_STI.EXE]  [VM., 4.2.610.4]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
[PID: 272 / 张金库][C:\Program Files\Rising\AntiSpyware\rstray.exe]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.16]
    [C:\Program Files\Rising\AntiSpyware\rsmginfo.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11]
    [C:\Program Files\Rising\AntiSpyware\RsXML.dll]  [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2]
    [C:\Program Files\Rising\AntiSpyware\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Rising\AntiSpyware\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Rising\AntiSpyware\ComServ.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.31]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\Rising\AntiSpyware\rscommon.dll]  [Beijing Rising Information Technology Co., Ltd., 20.0.1.1]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\pngdll.dll]  [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\AntiSpyware\runiep.dll]  [Beijing Rising Information Technology Co., Ltd., 6.0.0.42]
    [C:\Program Files\Rising\AntiSpyware\NComm.dll]  [Beijing Rising Information Technology Co., Ltd., 6.0.0.11]
    [C:\Program Files\Rising\Rav\ProcCom.dll]  [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
    [C:\Program Files\Rising\AntiSpyware\RsCommX2.dll]  [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
    [C:\Program Files\Rising\AntiSpyware\pscan.dll]  [Beijing Rising Information Technology Co., Ltd., 6.0.0.60]
    [C:\Program Files\Rising\AntiSpyware\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
[PID: 656 / 张金库][C:\WINDOWS\SOUNDMAN.EXE]  [Realtek Semiconductor Corp., 5.1.0.36]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
[PID: 652 / SYSTEM][C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe]  [Apple Inc., 2.12.33.0]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
[PID: 672 / 张金库][C:\Program Files\Rising\Rav\RsTray.exe]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.22]
    [C:\Program Files\Rising\Rav\ComServ.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.49]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Rising\Rav\rslang.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28]
    [C:\Program Files\Rising\Rav\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\Rav\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\Rising\Rav\rsxml.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\Program Files\Rising\Rav\ProcComm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46]
    [C:\Program Files\Rising\Rav\MonState.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7]
    [C:\Program Files\Rising\Rav\ScanEvnt.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.12]
    [C:\Program Files\Rising\Rav\rsguilib.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 71]
    [C:\WINDOWS\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Rising\Rav\rsconf.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\RSAPPMGR.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.1]
    [C:\Program Files\Rising\Rav\CfgDll.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.18]
    [C:\Program Files\Rising\Rav\rspalvd.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.24]
    [C:\Program Files\Rising\Rav\ravbintl.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28]
    [C:\Program Files\Rising\Rav\mruleui.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 10]
    [C:\Program Files\Rising\Rav\MonTray.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.93]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\Rav\PngDll.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\RavITray.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 21]
    [C:\Program Files\Rising\Rav\ScanPrxy.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.15]
    [C:\Program Files\Rising\Rav\rsmginfo.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11]
[PID: 708 / 张金库][C:\Program Files\Rising\Rfw\RsTray.exe]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.22]
    [C:\Program Files\Rising\Rfw\ComServ.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.49]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Rising\Rfw\rslang.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28]
    [C:\Program Files\Rising\Rfw\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\Rfw\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\Rising\Rfw\rsxml.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\Program Files\Rising\Rfw\ProcComm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46]
    [C:\Program Files\Rising\Rfw\MonState.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7]
    [C:\Program Files\Rising\Rfw\rfwrule.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.25]
    [C:\Program Files\Rising\Rfw\rsconf.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rfw\RSAPPMGR.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.1]
    [C:\Program Files\Rising\Rfw\CfgDll.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.18]
    [C:\Program Files\Rising\Rfw\rspalvd.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.24]
    [C:\Program Files\Rising\Rfw\rsguilib.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 71]
    [C:\WINDOWS\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Rising\Rfw\ravbintl.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28]
    [C:\Program Files\Rising\Rfw\rsnetsvr.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14]
    [C:\Program Files\Rising\Rfw\rsmginfo.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11]
    [C:\Program Files\Rising\Rfw\rfwtray.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 1, 9]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\Rfw\PngDll.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rfw\rfwlog.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9]
[PID: 728 / SYSTEM][C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe]  [N/A, ]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
[PID: 736 / 张金库][C:\Program Files\Elantech\ktp.exe]  [ELANTECH Devices Corp., 5, 0, 1, 8]
    [C:\Program Files\Elantech\KtpXPdll.dll]  [ELANTECH Devices Corp., 5, 0, 1, 8]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Elantech\KtpDll.Dll]  [ELANTECH Devices Corp., 5.0.1.6]
[PID: 860 / SYSTEM][C:\Program Files\CMBCHINA\WebProtect\WPService.exe]  [China Merchants Bank, 1, 0, 0, 1]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\CMBCHINA\WebProtect\WebProtectPlus.dll]  [China Merchants Bank, 1, 0, 0, 1]
[PID: 876 / 张金库][D:\Program Files\iTunes\iTunesHelper.exe]  [Apple Inc., 8.0.2.20]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [D:\Program Files\iTunes\iTunesHelper.Resources\zh_CN.lproj\iTunesHelperLocalized.DLL]  [Apple Inc., 8.0.2.11]
    [D:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL]  [Apple Inc., 8.0.2.20]
    [C:\Program Files\QuickTime\QTSystem\QuickTime.qts]  [Apple Inc., 7.6 (1292)]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)]
    [C:\Program Files\Common Files\Apple\Mobile Device Support\bin\iTunesMobileDevice.dll]  [Apple Inc., 185.11.0.10]
[PID: 1156 / 张金库][C:\WINDOWS\system32\ctfmon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
[PID: 1268 / 张金库][D:\Program Files\Tencent\Foxmail\Foxmail.exe]  [Tencent Inc., 6, 13, 102, 15]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\Program Files\Tencent\Foxmail\FoxAntiSpam.dll]  [N/A, ]
    [D:\Program Files\Tencent\Foxmail\pcre.dll]  [N/A, ]
    [D:\Program Files\Tencent\Foxmail\3rdParty\EffectiveSearch\MiniSE2D.dll]  [TENCENT, 1, 1, 0, 1]
    [D:\Program Files\Tencent\Foxmail\3rdParty\EffectiveSearch\libdb44.dll]  [Sleepycat Software, 4.4.20]
    [D:\Program Files\Tencent\Foxmail\3rdParty\punylib.dll]  [CNNIC, 1, 0, 0, 3]
    [D:\Program Files\Tencent\Foxmail\libeay32.dll]  [N/A, ]
    [D:\Program Files\Tencent\Foxmail\ssleay32.dll]  [N/A, ]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12]
    [C:\Program Files\Elantech\KtpDll.Dll]  [ELANTECH Devices Corp., 5.0.1.6]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\UIPlugin.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\CustomPhraseDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PySysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\SymbolDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbSysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbTraDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\StatisticsModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\ManualNewWord.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PunctureModule.dll]  [Sogou.com Inc., 1.4.1.0663]
[PID: 1484 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  [Microsoft Corporation, 7.00.9466]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll]  [Microsoft Corporation, 7.00.9466]
[PID: 1480 / 张金库][C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe]  [IVT Corporation, 2, 1, 3, 0]
    [C:\Program Files\IVT Corporation\BlueSoleil\btpcfg.dll]  [IVT Corporation, 2, 1, 0, 0]
    [C:\Program Files\IVT Corporation\BlueSoleil\btwin.dll]  [, 1, 1, 0, 0]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)]
    [C:\Program Files\IVT Corporation\BlueSoleil\hcicmd.dll]  [N/A, ]
    [C:\Program Files\IVT Corporation\BlueSoleil\setup.dll]  [IVT Corporation, 2, 2, 0, 0]
    [C:\Program Files\IVT Corporation\BlueSoleil\versit.dll]  [Versit Consortium (Apple Computer, AT&T, IBM and Siemens), 1, 0, 0, 1]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\IVT Corporation\BlueSoleil\btpres.dll]  [IVT Corporation, 2, 2, 0, 0]
    [C:\Program Files\IVT Corporation\BlueSoleil\Driver\USB\btcusb.dll]  [IVT Corporation, 1, 2, 1, 0]
    [C:\WINDOWS\system32\L3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]
    [C:\WINDOWS\system32\lameACM.acm]  [http://www.mp3dev.org/, 0.9.2]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\msgsm64.acm]  [Microsoft Corporation, 4.03.1998]
    [C:\WINDOWS\system32\tssoft32.acm]  [DSP GROUP, INC., 1.01]
    [C:\WINDOWS\system32\tsd32.dll]  [, ]
    [C:\WINDOWS\system32\sl_anet.acm]  [Sipro Lab Telecom Inc., 3.02]
    [C:\WINDOWS\system32\iac25_32.ax]  [Intel Corporation, 2.05.53]
    [C:\WINDOWS\system32\ac3acm.acm]  [fccHandler, 1, 40, 0, 0]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
[PID: 2304 / SYSTEM][C:\Program Files\Microsoft SQL Server\MSSQL$TANGSOFT\Binn\sqlservr.exe]  [Microsoft Corporation, 2000.080.2055.00 Hotfix 2280]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Microsoft SQL Server\MSSQL$TANGSOFT\Binn\opends60.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\Program Files\Microsoft SQL Server\MSSQL$TANGSOFT\Binn\sqlsort.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\Program Files\Microsoft SQL Server\MSSQL$TANGSOFT\Binn\ums.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\Microsoft SQL Server\MSSQL$TANGSOFT\Binn\Resources\2052\sqlevn70.RLL]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\Program Files\Microsoft SQL Server\MSSQL$TANGSOFT\binn\SSNETLIB.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\WINDOWS\system32\aetsprov.dll]  [A.E.T. Europe B.V., 2.3.0.9]
    [C:\Program Files\Microsoft SQL Server\MSSQL$TANGSOFT\Binn\SSmsLPCn.dll]  [Microsoft Corporation, 2000.080.2039.00]
[PID: 2740 / SYSTEM][d:\Program Files\NetLimiter 2 Pro\nlsvc.exe]  [Locktime Software, 2.0.10.1]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[PID: 2840 / SYSTEM][C:\Program Files\StarSec\PlugServer.exe]  [GDChina, 1, 1, 0, 2]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\StarSec\plugins\plugstarkey220.dll]  [GDChina, 1, 1, 0, 1]
[PID: 2904 / SYSTEM][C:\Program Files\Rising\Rav\RavTask.exe]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 23]
    [C:\Program Files\Rising\Rav\rsconf.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\RSAPPMGR.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.1]
    [C:\Program Files\Rising\Rav\CfgDll.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.18]
    [C:\Program Files\Rising\Rav\proccomm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Rising\Rav\rsstub.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12]
    [C:\Program Files\Rising\Rav\rstask.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 36]
    [C:\Program Files\Rising\Rav\PSAPI.DLL]  [Microsoft Corporation, 4.00]
[PID: 3508 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe]  [Intel Corporation, 10, 1, 0, 1]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[PID: 3740 / SYSTEM][C:\Program Files\Rising\Rfw\RavTask.exe]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 23]
    [C:\Program Files\Rising\Rfw\rsconf.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rfw\RSAPPMGR.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.1]
    [C:\Program Files\Rising\Rfw\CfgDll.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.18]
    [C:\Program Files\Rising\Rfw\proccomm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Rising\Rfw\rsstub.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12]
    [C:\Program Files\Rising\Rfw\rstask.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 36]
[PID: 3848 / SYSTEM][C:\Program Files\Rising\Rav\ScanFrm.exe]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.11]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Rising\Rav\combase.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11]
    [C:\Program Files\Rising\Rav\moncomm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12]
    [C:\Program Files\Rising\Rav\scansrvp.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.11]
    [C:\Program Files\Rising\Rav\proccomm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46]
    [C:\Program Files\Rising\Rav\ScanSrv.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.9]
    [C:\Program Files\Rising\Rav\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\Rav\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\Rising\Rav\ScanRavT.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.23]
    [C:\Program Files\Rising\Rav\ScanBT.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.39]
    [C:\Program Files\Rising\Rav\ScanStub.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.8]
    [C:\Program Files\Rising\Rav\RsLog.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.34]
    [C:\Program Files\Rising\Rav\ScanAdd.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.15]
    [C:\Program Files\Rising\Rav\RSAPPMGR.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.1]
    [C:\Program Files\Rising\Rav\CfgDll.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.18]
    [C:\Program Files\Rising\Rav\Scanner.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.33]
    [C:\Program Files\Rising\Rav\recomp.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\refs.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\viruslib.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\relibldr.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\Program Files\Rising\Rav\mvengine.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\PSAPI.DLL]  [Microsoft Corporation, 4.00]
    [C:\Program Files\Rising\Rav\posttrt.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\Program Files\Rising\Rav\ffr.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\nvfile.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\scanexec.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5]
    [C:\Program Files\Rising\Rav\unexe.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1]
    [C:\Program Files\Rising\Rav\scanex.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 25]
    [C:\Program Files\Rising\Rav\pearc.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\scanpe.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7]
    [C:\Program Files\Rising\Rav\ur000.dat]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 10]
    [C:\Program Files\Rising\Rav\urutils.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\revm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\Program Files\Rising\Rav\ur023.dat]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\ur001.dat]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7]
    [C:\Program Files\Rising\Rav\extfile.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13]
    [C:\Program Files\Rising\Rav\ur025.dat]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1]
    [C:\Program Files\Rising\Rav\ur027.dat]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5]
[PID: 3876 / SYSTEM][C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe]  [Microsoft Corp., 1.2.123.0]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[PID: 4000 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 2276 / SYSTEM][C:\WINDOWS\system32\fxssvc.exe]  [(Verified) Microsoft Corporation, 5.2.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[PID: 2868 / 张金库][d:\Program Files\NetLimiter 2 Pro\NLClient.exe]  [Locktime Software, 1.0.14.1]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [d:\Program Files\NetLimiter 2 Pro\NLHxClient.dll]  [Locktime Software, 1.0.14.1]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)]
    [d:\Program Files\NetLimiter 2 Pro\NLEnv.dll]  [Locktime Software, 2.0.10.1]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.62]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [d:\Program Files\NetLimiter 2 Pro\LSGuiCtrls.dll]  [Locktime Software, 1.0.0.1]
    [d:\Program Files\NetLimiter 2 Pro\Plugins\NodeView.dll]  [Locktime Software, 1.0.14.1]
    [d:\Program Files\NetLimiter 2 Pro\nlvclient.dll]  [Locktime Software, 1.0.14.1]
[PID: 3520 / SYSTEM][C:\Program Files\iPod\bin\iPodService.exe]  [Apple Inc., 8.0.2.20]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\iPod\bin\iPodService.Resources\zh_CN.lproj\iPodServiceLocalized.DLL]  [Apple Inc., 8.0.2.11]
    [C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL]  [Apple Inc., 8.0.2.20]
[PID: 3944 / 张金库][C:\WINDOWS\system32\igfxext.exe]  [Intel Corporation, 3.0.0.4291]
    [C:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 3.0.0.4291]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 3.0.0.4291]
    [C:\WINDOWS\system32\igfxdev.dll]  [Intel Corporation, 3.0.0.4291]
    [C:\WINDOWS\system32\IGFXEXPS.DLL]  [Intel Corporation, 3.0.0.4291]
[PID: 2992 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\System32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[PID: 2256 / 张金库][C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe]  [Intel Corporation, 10, 1, 0, 79]
    [C:\PROGRA~1\Intel\Wireless\Bin\acAuth.dll]  [, 4.0.13.0 2005-10-31 15:39:22]
    [C:\PROGRA~1\Intel\Wireless\Bin\C1XStngs.dll]  [Intel Corporation, 10, 1, 0, 31]
    [C:\PROGRA~1\Intel\Wireless\Bin\PsRegApi.dll]  [Intel Corporation, 10, 1, 0, 2]
    [C:\PROGRA~1\Intel\Wireless\Bin\IntStngs.dll]  [, 10, 1, 0, 2]
    [C:\PROGRA~1\Intel\Wireless\Bin\TraceAPI.DLL]  [Intel Corporation, 10, 1, 0, 5]
    [C:\PROGRA~1\Intel\Wireless\Bin\IWMSPROV.DLL]  [N/A, ]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Intel\Wireless\Bin\C8021CHS.dll]  [Intel Corporation, 10, 1, 0, 31]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\PROGRA~1\Intel\Wireless\Bin\LSAWRAPI.dll]  [Intel Corporation, 10, 1, 0, 1]
    [C:\PROGRA~1\Intel\Wireless\Bin\PfMgrApi.dll]  [Intel Corporation, 10, 1, 0, 46]
    [C:\PROGRA~1\Intel\Wireless\Bin\DbEngine.dll]  [Intel Corporation, 10, 1, 0, 13]
    [C:\PROGRA~1\Intel\Wireless\Bin\LIBEAY32.dll]  [N/A, ]
[PID: 2352 / 张金库][C:\Program Files\Windows Live\Messenger\msnmsgr.exe]  [Microsoft Corporation, 14.0.8064.0206]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Windows Live\Messenger\CRYPTNET.dll]  [N/A, ]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\WINDOWS\system32\aetsprov.dll]  [A.E.T. Europe B.V., 2.3.0.9]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.62]
    [C:\Program Files\Elantech\KtpDll.Dll]  [ELANTECH Devices Corp., 5.0.1.6]
    [C:\WINDOWS\system32\DUCKLING.IME]  [, 2, 5, 0, 1]
    [C:\Program Files\Duckling\DUCKLING.DLL]  [, 2, 5, 0, 1]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\UIPlugin.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\CustomPhraseDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PySysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\SymbolDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbSysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbTraDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\StatisticsModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\ManualNewWord.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PunctureModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\StrDictModule.dll]  [Sogou.com Inc., 1.4.1.0663]
[PID: 3376 / 张金库][C:\Program Files\Windows Live\Contacts\wlcomm.exe]  [Microsoft Corporation, 14.0.8064.0206]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\WINDOWS\system32\aetsprov.dll]  [A.E.T. Europe B.V., 2.3.0.9]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[PID: 840 / 张金库][D:\Program Files\Tencent\QQ\TMDlls\TM.exe]  [腾讯公司, 0, 0, 0, 0]
    [D:\Program Files\Tencent\QQ\TMDlls\BasicCtrlDll.dll]  [Tencent, 6, 0, 200, 320]
    [D:\Program Files\Tencent\QQ\TMDlls\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [D:\Program Files\Tencent\QQ\TMDlls\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\BaseUIClass.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\BaseCtrlClass.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\QQZip.dll]  [tencent, 0, 3, 2, 4]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [D:\Program Files\Tencent\QQ\TMDlls\ImageOle.dll]  [TODO: <Company name>, 1.0.0.1]
    [D:\Program Files\Tencent\QQ\TMDlls\RICHED20.DLL]  [Microsoft Corporation, 5.31.23.1218]
    [D:\Program Files\Tencent\QQ\TMDlls\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
    [D:\Program Files\Tencent\QQ\TMDlls\QQAPI.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ2009\Bin\TXPFProxy.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\TMDlls\CQQApplication.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\TMDlls\QQRes.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\TMDlls\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\HostingMgr.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Elantech\KtpDll.Dll]  [ELANTECH Devices Corp., 5.0.1.6]
    [D:\Program Files\Tencent\QQ\TMDlls\WizardCtrl.dll]  [Tencent, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\QQMainFrame.dll]  [TENCENT, 1, 0, 0, 1]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [D:\Program Files\Tencent\QQ\TMDlls\NewSkin.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\MailSummary.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\FrameBar.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\CameraDll.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\UserRelationWeight.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\vbscript.dll]  [Microsoft Corporation, 5.6.0.7426]
    [D:\Program Files\Tencent\QQ\TMDlls\CommercesMng.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\MiscCtrl.dll]  [, 1, 0, 0, 1]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
    [D:\Program Files\Tencent\QQ\TMDlls\InstantSession.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\QQSpace.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 0, 3, 0, 44]
    [D:\Program Files\Tencent\QQ\TMDlls\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [D:\Program Files\Tencent\QQ\TMDlls\QQPlugin.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\TMDlls\OEMApplication.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.62]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [D:\Program Files\Tencent\QQ\TMDlls\CustomFace.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\DUCKLING.IME]  [, 2, 5, 0, 1]
    [C:\Program Files\Duckling\DUCKLING.DLL]  [, 2, 5, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\QQFileTransfer.dll]  [Tencent, 0, 3, 3, 5]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\UIPlugin.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\CustomPhraseDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PySysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\SymbolDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbSysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbTraDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\ManualNewWord.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\BatchNewWord.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\StatisticsModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PunctureModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [D:\Program Files\Tencent\QQ\TMDlls\QQSysMsgMng.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\TMDlls\GroupConnection.dll]  [Tencent, 0, 3, 3, 5]
    [D:\Program Files\Tencent\QQ\TMDlls\UserFinger.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Tencent\QQ\TMDlls\qqgroupdisk.dll]  [深圳腾讯科技, 2, 1, 101, 40]
[PID: 3660 / 张金库][D:\Program Files\Tencent\QQ2009\Bin\TXPlatform.exe]  [Tencent, 1, 23, 375, 0]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [D:\Program Files\Tencent\QQ2009\Bin\TXPFProxy.dll]  [N/A, ]
[PID: 4892 / 张金库][C:\Program Files\Windows Live\Messenger\msnmsgr.exe]  [Microsoft Corporation, 14.0.8064.0206]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Windows Live\Messenger\CRYPTNET.dll]  [N/A, ]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\WINDOWS\system32\aetsprov.dll]  [A.E.T. Europe B.V., 2.3.0.9]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.62]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx]  [Adobe Systems, Inc., 10,0,22,87]
    [C:\Program Files\Elantech\KtpDll.Dll]  [ELANTECH Devices Corp., 5.0.1.6]
    [C:\WINDOWS\system32\DUCKLING.IME]  [, 2, 5, 0, 1]
    [C:\Program Files\Duckling\DUCKLING.DLL]  [, 2, 5, 0, 1]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\UIPlugin.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\CustomPhraseDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PySysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\SymbolDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbSysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbTraDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\StatisticsModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\ManualNewWord.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PunctureModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\BatchNewWord.dll]  [Sogou.com Inc., 1.4.1.0663]
[PID: 1384 / 张金库][C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe]  [Nokia, 7, 1, 19, 0]
    [C:\Program Files\Nokia\Nokia PC Suite 7\QtCore4.dll]  [N/A, ]
    [C:\Program Files\Nokia\Nokia PC Suite 7\QtGui4.dll]  [N/A, ]
    [C:\Program Files\Nokia\Nokia PC Suite 7\QtXml4.dll]  [N/A, ]
    [C:\Program Files\Nokia\Nokia PC Suite 7\QtNetwork4.dll]  [N/A, ]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Nokia\Nokia PC Suite 7\PCSL.dll]  [Nokia, 7, 0, 12, 0]
    [C:\Program Files\PC Connectivity Solution\ConnAPI.dll]  [Nokia., 7, 0, 107, 0]
    [C:\Program Files\PC Connectivity Solution\DAAPI.dll]  [Nokia, 7, 0, 129, 0]
    [C:\Program Files\PC Connectivity Solution\PCCS_ABAPI.dll]  [Nokia, 7, 0, 15, 0]
    [C:\Program Files\Nokia\Nokia PC Suite 7\styles\NGLStyle.dll]  [Nokia, 7, 1, 12, 0]
    [C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qjpeg4.dll]  [N/A, ]
    [C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qsvg4.dll]  [N/A, ]
    [C:\Program Files\Nokia\Nokia PC Suite 7\QtSvg4.dll]  [N/A, ]
    [C:\Program Files\PC Connectivity Solution\ConfServer.dll]  [Nokia, 7, 0, 41, 0]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
    [C:\Program Files\PC Connectivity Solution\NclFT.dll]  [Nokia, 7, 0, 50, 0]
    [C:\Program Files\PC Connectivity Solution\PCCS_LCIFAPI.dll]  [Nokia., 7, 0, 25, 0]
    [C:\Program Files\PC Connectivity Solution\VersitConverter.dll]  [Nokia, 7, 0, 69, 0]
[PID: 5908 / SYSTEM][C:\Program Files\PC Connectivity Solution\ServiceLayer.exe]  [Nokia., 7, 0, 110, 0]
    [C:\Program Files\PC Connectivity Solution\PCCS_DBEngine.dll]  [Nokia, 7, 0, 6, 0]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\PC Connectivity Solution\ConfServer.dll]  [Nokia, 7, 0, 41, 0]
    [C:\Program Files\PC Connectivity Solution\NclFT.dll]  [Nokia, 7, 0, 50, 0]
    [C:\Program Files\PC Connectivity Solution\NOX.dll]  [Nokia, 7, 0, 66, 0]
    [C:\Program Files\PC Connectivity Solution\NclTools.dll]  [Nokia, 7, 0, 0, 0]
    [C:\Program Files\PC Connectivity Solution\NclPIMAccess.dll]  [Nokia, 7, 0, 45, 0]
    [C:\Program Files\PC Connectivity Solution\NclSyncHandler.DLL]  [Nokia., 7, 0, 21, 0]
    [C:\Program Files\PC Connectivity Solution\VersitConverter.dll]  [Nokia, 7, 0, 69, 0]
[PID: 4236 / 张金库][C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe]  [, 7, 0, 11, 0]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[PID: 4960 / SYSTEM][C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe]  [, 7, 0, 11, 0]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[PID: 5104 / 张金库][C:\Program Files\PC Connectivity Solution\Transports\NclIVTBTSrv.exe]  [, 7, 0, 15, 0]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\WINDOWS\system32\btfunc.dll]  [IVT Corporation, 2, 2, 0, 0]
[PID: 1420 / 张金库][D:\Program Files\KylinBrowser\KylinBrowser.exe]  [FangFang, Ltd, 5, 2, 524, 1]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)]
    [D:\Program Files\KylinBrowser\libdb45.dll]  [Oracle Corporation, 4.5.20]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\UIPlugin.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\CustomPhraseDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PySysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\SymbolDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbSysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbTraDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
    [C:\WINDOWS\system32\aetsprov.dll]  [A.E.T. Europe B.V., 2.3.0.9]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\ManualNewWord.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\Elantech\KtpDll.Dll]  [ELANTECH Devices Corp., 5.0.1.6]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.62]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx]  [Adobe Systems, Inc., 10,0,22,87]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\StatisticsModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\WINDOWS\system32\sscsp_ccb.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\sscsp_ccb.csp]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\SSP11_CCB.dll]  [GDChina, 1, 0, 0, 2]
[PID: 4200 / 张金库][D:\Program Files\Tencent\QQ2009\Bin\QQ.exe]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\Common.dll]  [Tencent, 1, 23, 375, 0]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.762]
    [D:\Program Files\Tencent\QQ2009\Bin\KernelUtil.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\GF.dll]  [Tencent, 1, 23, 375, 0]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [D:\Program Files\Tencent\QQ2009\Bin\AppUtil.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\MainFrame.dll]  [Tencent, 1, 23, 375, 0]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\UIPlugin.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\CustomPhraseDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PySysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\SymbolDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbSysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbTraDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [D:\Program Files\Tencent\QQ2009\Bin\TaskTray.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\TXPFProxy.dll]  [N/A, ]
    [C:\Program Files\Elantech\KtpDll.Dll]  [ELANTECH Devices Corp., 5.0.1.6]
    [D:\Program Files\Tencent\QQ2009\Bin\AppMisc.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\ChatFrame.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\ConfigCenter.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\CustomFace.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\IM.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\KernelMisc.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\LongCnn.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\ContactInfoFrame.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\MsgMgr.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\SkinMgr.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\QInterLive.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\AppCtrl.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\SystemMsg.dll]  [Tencent, 1, 23, 375, 0]
    [C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll]  [Tencent, 1.0.1.19]
    [D:\Program Files\Tencent\QQ2009\Bin\BasicCtrlDll.dll]  [TENCENT, 8,0,773,1801]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.PaiPai\Bin\PaiPai.dll]  [Tencent, 1, 23, 375, 0]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.AudioVideo\Bin\AudioVideo.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.MMOG\Bin\MMOG.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.Soso\Bin\Soso.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.Qzone\Bin\Qzone.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.Weather\Bin\Weather.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.SoBar\Bin\SoBar.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.PaiPaiGift\Bin\PaiPaiGift.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.QQLive\Bin\QQLive.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.QQMusic\Bin\QQMusic.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.taotao\Bin\Taotao.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.QQShow\Bin\FlashAvatarDll.dll]  [Tencent, 1.0.0.1]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx]  [Adobe Systems, Inc., 10,0,22,87]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.62]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.NetBar\Bin\NetBar.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.qqchat\Bin\QQChat.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.qqgame\Bin\QQGame.dll]  [Tencent, 1, 23, 375, 0]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.qqshow\Bin\QQShow.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.snsapp\Bin\SNSApp.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.wenwen\Bin\WenWen.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.wireless\Bin\Wireless.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.mail\Bin\Mail.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.paycenter\Bin\PayCenter.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.gamelife\Bin\GameLife.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.qqpet\Bin\QQPet.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.qbar\Bin\QBar.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.advertisement\Bin\Advertisement.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.today\Bin\Today.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Plugin\com.tencent.qqring\Bin\QQRing.dll]  [Tencent, 1, 23, 375, 0]
    [D:\Program Files\Tencent\QQ2009\Bin\vqqsdl.dll]  [Tencent Technology (Shenzhen) Company Limited, 5, 0, 3, 21]
    [C:\Program Files\Microsoft Silverlight\2.0.40115.0\npctrl.dll]  [ Microsoft Corporation, 2.0.40115.0]
[PID: 4176 / 张金库][C:\WINDOWS\system32\conime.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\UIPlugin.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\CustomPhraseDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PySysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\SymbolDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbSysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbTraDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
[PID: 3340 / SYSTEM][C:\Program Files\Rising\Rav\RavMonD.exe]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1]
    [C:\Program Files\Rising\Rav\combase.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Rising\Rav\moncomm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12]
    [C:\Program Files\Rising\Rav\MonBase.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6]
    [C:\Program Files\Rising\Rav\Rslog.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.34]
    [C:\Program Files\Rising\Rav\mondrv.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9]
    [C:\Program Files\Rising\Rav\defmon.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 30]
    [C:\Program Files\Rising\Rav\moncom08.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1]
    [C:\Program Files\Rising\Rav\MonRule.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9]
    [C:\Program Files\Rising\Rav\FileMon.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 22]
    [C:\Program Files\Rising\Rav\MailMon.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24]
    [C:\Program Files\Rising\Rav\HookWeb.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11]
    [C:\Program Files\Rising\Rav\proccomm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46]
    [C:\Program Files\Rising\Rav\RSAPPMGR.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.1]
    [C:\Program Files\Rising\Rav\CfgDll.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.18]
    [C:\Program Files\Rising\Rav\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\Rav\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\Program Files\Rising\Rav\Hooksys.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 18]
    [C:\Program Files\Rising\Rav\ProcCom.dll]  [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
    [C:\Program Files\Rising\Rav\RsCommX2.dll]  [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20]
    [C:\Program Files\Rising\Rav\HookCont.dll]  [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 12]
    [C:\Program Files\Rising\Rav\rsnetsvr.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14]
    [C:\Program Files\Rising\Rav\BACore.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 20]
    [C:\Program Files\Rising\Rav\recomp.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\refs.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\RSStore.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9]
    [C:\Program Files\Rising\Rav\ScanAdd.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.15]
    [C:\Program Files\Rising\Rav\Scanner.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.33]
    [C:\Program Files\Rising\Rav\viruslib.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\relibldr.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\Rising\Rav\ffr.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\nvfile.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\scanexec.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5]
    [C:\Program Files\Rising\Rav\unexe.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1]
    [C:\Program Files\Rising\Rav\scanex.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 25]
    [C:\Program Files\Rising\Rav\pearc.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\scanpe.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7]
    [C:\Program Files\Rising\Rav\ur000.dat]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 10]
    [C:\Program Files\Rising\Rav\urutils.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\scansct.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\revm.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2]
    [C:\Program Files\Rising\Rav\ur023.dat]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4]
    [C:\Program Files\Rising\Rav\ur001.dat]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7]
    [C:\Program Files\Rising\Rav\extfile.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13]
    [C:\Program Files\Rising\Rav\extmail.dll]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3]
    [C:\Program Files\Rising\Rav\ur025.dat]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1]
    [C:\Program Files\Rising\Rav\ur027.dat]  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5]
[PID: 3804 / 张金库][C:\Program Files\Rising\AntiSpyware\knownsvr.exe]  [Beijing Rising Information Technology Co., Ltd., 6.0.0.14]
    [C:\Program Files\Rising\AntiSpyware\NComm.dll]  [Beijing Rising Information Technology Co., Ltd., 6.0.0.11]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
[PID: 5440 / 张金库][C:\Program Files\Internet Explorer\IExplore.exe]  [Microsoft Corporation, 7.00.6000.16791 (vista_gdr.081217-1620)]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\UIPlugin.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\CustomPhraseDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PySysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\SymbolDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbSysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbTraDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll]  [Adobe Systems Incorporated, 9.0.0.2008061100]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 9.0.0.2008061100]
    [C:\WINDOWS\system32\ProcessProtection.dll]  [ISRA, 1, 0, 0, 1]
    [C:\WINDOWS\system32\UrlFilter.dll]  [Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15]
    [C:\Program Files\Rising\AntiSpyware\UrlRule.dll]  [Beijing Rising Information Technology Co., Ltd., 1.0.0.15]
    [C:\PROGRA~1\KINGSO~1\KASBrowserShield.DLL]  [Kingsoft Corporation, 2008,12,11,149]
    [C:\PROGRA~1\KINGSO~1\IEBuddy.dll]  [Kingsoft Corporation, 2008,12,11,149]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
    [C:\PROGRA~1\KINGSO~1\IEBuddyExt.DLL]  [Kingsoft Corporation, 2009,01,13,205]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.762]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.762]
    [C:\PROGRA~1\KINGSO~1\kis.dll]  [Kingsoft Corporation, 2008,08,12,55]
    [C:\PROGRA~1\KINGSO~1\KANTray.dll]  [Kingsoft Corporation, 2008,06,24,415]
    [C:\PROGRA~1\KINGSO~1\kaeinfolog.dll]  [Kingsoft Corporation, 2008,12,12,60]
    [C:\PROGRA~1\KINGSO~1\KAVAFish.DLL]  [Kingsoft Corporation, 2008,11,14,94]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.62]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx]  [Adobe Systems, Inc., 10,0,22,87]
    [C:\Program Files\Elantech\KtpDll.Dll]  [ELANTECH Devices Corp., 5.0.1.6]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\StatisticsModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\ManualNewWord.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\WINDOWS\system32\aetsprov.dll]  [A.E.T. Europe B.V., 2.3.0.9]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PunctureModule.dll]  [Sogou.com Inc., 1.4.1.0663]
    [D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 8, 96]
[PID: 5224 / 张金库][C:\WINDOWS\sreng2\SREngLdr.EXE]  [Smallfrogs Studio, 2.7.0.1210]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
[PID: 2324 / 张金库][C:\WINDOWS\sreng2\SRE9d8fc3c1.EXE]  [Smallfrogs Studio, 2.7.0.1210]
    [C:\WINDOWS\system32\kmon.dll]  [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33]
    [C:\Program Files\Rising\AntiSpyware\comx3.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.37]
    [C:\Program Files\Rising\AntiSpyware\Syslay.dll]  [Beijing Rising Information Technology Co., Ltd., 21.0.0.6]
    [C:\WINDOWS\system32\SOGOUWB.IME]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\UIPlugin.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\CustomPhraseDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\MixDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PySysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\PyUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\SymbolDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbAdjDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbDelDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbExtDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbQuickUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbRevertDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbSysDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbTraDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\Program Files\SogouWBInput\1.4.1.0663\Plugins\WbUsrDict.dll]  [Sogou.com Inc., 1.4.1.0663]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\PROGRA~1\KINGSO~1\iebuddy2.dll]  [Kingsoft Corporation, 2009,01,13,204]
    [C:\WINDOWS\sreng2\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
    [C:\WINDOWS\system32\aetsprov.dll]  [A.E.T. Europe B.V., 2.3.0.9]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]

==================================
文件关联
.TXT  Error. [C:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. ["hh.exe" %1]
.HLP  Error. [C:\WINDOWS\winhlp32.exe %1]
.INI  Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF  Error. [C:\WINDOWS\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   Error. ["d:\Program Files\Macromedia\Dreamweaver MX 2004\Dreamweaver.exe" "%1"]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1

==================================
进程特权扫描
特殊特权被允许： SeLoadDriverPrivilege [PID = 1924, D:\PROGRAM FILES\NERO 7\INCD\INCDSRV.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1052, C:\PROGRAM FILES\INTEL\WIRELESS\BIN\S24EVMON.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 348, C:\WINDOWS\SYSTEM32\BCMWLTRY.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 188, C:\PROGRA~1\LAUNCH~1\LMANAGER.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1660, C:\WINDOWS\VM_STI.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 728, C:\PROGRAM FILES\IVT CORPORATION\BLUESOLEIL\BTNTSERVICE.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1480, C:\PROGRAM FILES\IVT CORPORATION\BLUESOLEIL\BLUESOLEIL.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2304, C:\PROGRAM FILES\MICROSOFT SQL SERVER\MSSQL$TANGSOFT\BINN\SQLSERVR.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2840, C:\PROGRAM FILES\STARSEC\PLUGSERVER.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2868, D:\PROGRAM FILES\NETLIMITER 2 PRO\NLCLIENT.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2256, C:\PROGRA~1\INTEL\WIRELESS\BIN\DOT1XCFG.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 840, D:\PROGRAM FILES\TENCENT\QQ\TMDLLS\TM.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1384, C:\PROGRAM FILES\NOKIA\NOKIA PC SUITE 7\PCSUITE.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 4236, C:\PROGRAM FILES\PC CONNECTIVITY SOLUTION\TRANSPORTS\NCLMSBTSRV.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 4960, C:\PROGRAM FILES\PC CONNECTIVITY SOLUTION\TRANSPORTS\NCLUSBSRV.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 5104, C:\PROGRAM FILES\PC CONNECTIVITY SOLUTION\TRANSPORTS\NCLIVTBTSRV.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1420, D:\PROGRAM FILES\KYLINBROWSER\KYLINBROWSER.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 5224, C:\WINDOWS\SRENG2\SRENGLDR.EXE]

==================================
计划任务
[已启用] AppleSoftwareUpdate.job
        C:\Program Files\Apple Software Update\SoftwareUpdate.exe 

==================================
API HOOK
入口点错误：NtCreateFile (危险等级: 高,  被下面模块所HOOK: 0x003D57FD)
入口点错误：NtCreateKey (危险等级: 高,  被下面模块所HOOK: 0x003D599D)
入口点错误：NtLoadDriver (危险等级: 高,  被下面模块所HOOK: 0x003D60ED)
入口点错误：NtSetValueKey (危险等级: 高,  被下面模块所HOOK: 0x003D5A6D)
入口点错误：NtWriteFile (危险等级: 高,  被下面模块所HOOK: 0x003D58CD)
入口点错误：ZwCreateFile (危险等级: 高,  被下面模块所HOOK: 0x003D57FD)
入口点错误：ZwCreateKey (危险等级: 高,  被下面模块所HOOK: 0x003D599D)
入口点错误：ZwSetValueKey (危险等级: 高,  被下面模块所HOOK: 0x003D5A6D)
入口点错误：ZwWriteFile (危险等级: 高,  被下面模块所HOOK: 0x003D58CD)
入口点错误：CreateServiceA (危险等级: 高,  被下面模块所HOOK: 0x003D5DAD)
入口点错误：CreateServiceW (危险等级: 高,  被下面模块所HOOK: 0x003D5E7D)
入口点错误：LoadLibraryA (危险等级: 高,  被下面模块所HOOK: 0x003D6AAD)
入口点错误：LoadLibraryExW (危险等级: 高,  被下面模块所HOOK: 0x003D5695)
入口点错误：CreateFileW (危险等级: 高,  被下面模块所HOOK: 0x003D65CD)
入口点错误：CreateProcessA (危险等级: 高,  被下面模块所HOOK: 0x003D69DD)
入口点错误：CreateProcessW (危险等级: 高,  被下面模块所HOOK: 0x003D683D)

==================================
隐藏进程
N/A

==================================


[/CODE]