瑞星卡卡电脑诊断日志 v1.30 (2009-5-3 7:42:17) 北京瑞星信息技术有限公司 注释: [A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + 系统服务 + HKLM\System\CurrentControlSet\Services aspnet_state [A ] 1. c:\windows\microsoft.net\framework\v1.1.4322\aspnet_state.exe Ati HotKey Poller [AM] 2. c:\windows\system32\ati2evxx.exe Autodesk Licensing Service [A ] 3. c:\program files\common files\autodesk shared\service\adskscsrv.exe ose [A ] 4. c:\program files\common files\microsoft shared\source engine\ose.exe RavCCenter [A ] 5. d:\瑞星2008\rising\rav\ccenter.exe RavTask [A ] 6. d:\瑞星2008\rising\rav\ravtask.exe RsRavMon [A ] 7. d:\瑞星2008\rising\rav\ravmond.exe RsScanSrv [A ] 8. d:\瑞星2008\rising\rav\scanfrm.exe UMWdf [AM] 9. c:\windows\system32\wdfmgr.exe + 内核驱动 + HKLM\System\CurrentControlSet\Services 2310_00 [A ] 10. c:\windows\system32\bird\2310_00.sys 3WAREDRV [A ] 11. c:\windows\system32\bird\3waredrv.sys 3WAREGSM [A ] 12. c:\windows\system32\bird\3waregsm.sys 3WDRV100 [A ] 13. c:\windows\system32\bird\3wdrv100.sys A320RAID [A ] 14. c:\windows\system32\bird\a320raid.sys AAC [A ] 15. c:\windows\system32\bird\aac.sys AACSAS [A ] 16. c:\windows\system32\bird\aacsas.sys AAR81XX [A ] 17. c:\windows\system32\bird\aar81xx.sys AARSI3X [A ] 18. c:\windows\system32\bird\aarsi3x.sys ADP94XX [A ] 19. c:\windows\system32\bird\adp94xx.sys adpu160m [A ] 20. c:\windows\system32\bird\adpu160m.sys ADPU320 [A ] 21. c:\windows\system32\bird\adpu320.sys AEC6260 [A ] 22. c:\windows\system32\bird\aec6260.sys AEC6280 [A ] 23. c:\windows\system32\bird\aec6280.sys AEC67160 [A ] 24. c:\windows\system32\bird\aec67160.sys AEC67162 [A ] 25. c:\windows\system32\bird\aec67162.sys AEC671X [A ] 26. c:\windows\system32\bird\aec671x.sys AEC6880 [A ] 27. c:\windows\system32\bird\aec6880.sys AEC6897 [A ] 28. c:\windows\system32\bird\aec6897.sys AEC68X5 [A ] 29. c:\windows\system32\bird\aec68x5.sys aic78u2 [A ] 30. c:\windows\system32\bird\aic78u2.sys aic78xx [A ] 31. c:\windows\system32\bird\aic78xx.sys ALCXWDM [A ] 32. c:\windows\system32\drivers\alcxwdm.sys AmdK8 [A ] 33. c:\windows\system32\bird\amdk8.sys ARCM_X86 [A ] 34. c:\windows\system32\bird\arcm_x86.sys b [A ] 35. c:\windows\system32\b BCHTSW32 [A ] 36. c:\windows\system32\bird\bchtsw32.sys BCRAID [A ] 37. c:\windows\system32\bird\bcraid.sys CDA1000 [A ] 38. c:\windows\system32\bird\cda1000.sys CnsStd [A ] 39. c:\windows\system32\drivers\cnsstd.sys Cpqarray [A ] 40. c:\windows\system32\bird\cpqarray.sys CPQARRY2 [A ] 41. c:\windows\system32\bird\cpqarry2.sys CPQCISSM [A ] 42. c:\windows\system32\bird\cpqcissm.sys CSB6IDE [A ] 43. c:\windows\system32\bird\csb6ide.sys dac2w2k [A ] 44. c:\windows\system32\bird\dac2w2k.sys dpti2o [A ] 45. c:\windows\system32\bird\dpti2o.sys ExpScaner [A ] 46. d:\rising\rav\expscan.sys FASTSX [A ] 47. c:\windows\system32\bird\fastsx.sys FASTTRAK [A ] 48. c:\windows\system32\bird\fasttrak.sys FASTTX2K [A ] 49. c:\windows\system32\bird\fasttx2k.sys FET5X86V [A ] 50. c:\windows\system32\drivers\fetnd5bv.sys FETND5BV [A ] 50. c:\windows\system32\drivers\fetnd5bv.sys FT8300 [A ] 51. c:\windows\system32\bird\ft8300.sys FTSATA2 [A ] 52. c:\windows\system32\bird\ftsata2.sys GD31244 [A ] 53. c:\windows\system32\bird\gd31244.sys hookcont [A ] 54. c:\windows\system32\drivers\hookcont.sys hooksys [A ] 55. c:\windows\system32\drivers\hooksys.sys HPCISSS2 [A ] 56. c:\windows\system32\bird\hpcisss2.sys HPT371 [A ] 57. c:\windows\system32\bird\hpt371.sys HPT374 [A ] 58. c:\windows\system32\bird\hpt374.sys HPT3XX [A ] 59. c:\windows\system32\bird\hpt3xx.sys i2omp [A ] 60. c:\windows\system32\bird\i2omp.sys IASTOR [A ] 61. c:\windows\system32\bird\iastor.sys IFT2000 [A ] 62. c:\windows\system32\bird\ift2000.sys INIA100 [A ] 63. c:\windows\system32\bird\inia100.sys IPSRAIDN [A ] 64. c:\windows\system32\bird\ipsraidn.sys ITERAID [A ] 65. c:\windows\system32\bird\iteraid.sys JRAID [A ] 66. c:\windows\system32\bird\jraid.sys M5228 [A ] 67. c:\windows\system32\bird\m5228.sys M5281 [A ] 68. c:\windows\system32\bird\m5281.sys M5287 [A ] 69. c:\windows\system32\bird\m5287.sys M5288 [A ] 70. c:\windows\system32\bird\m5288.sys M5289 [A ] 71. c:\windows\system32\bird\m5289.sys MACPIET [A ] 72. c:\windows\system32\drivers\phbfcetm.sys MEGAIDE [A ] 73. c:\windows\system32\bird\megaide.sys MEMSCAN [A ] 74. d:\rising\rav\memscan.sys mraid35x [A ] 75. c:\windows\system32\bird\mraid35x.sys MSAHCI [A ] 76. c:\windows\system32\bird\msahci.sys NFRD960 [A ] 77. c:\windows\system32\bird\nfrd960.sys npkcrypt [A ] 78. e:\冒险岛私服\51冒险岛055免安装客户端\npkcrypt.sys NVATABUS [A ] 79. c:\windows\system32\bird\nvatabus.sys NVRAID [A ] 80. c:\windows\system32\bird\nvraid.sys PCIIde [A ] 81. c:\windows\system32\bird\pciide.sys perc2 [A ] 82. c:\windows\system32\bird\perc2.sys PNP649R [A ] 83. c:\windows\system32\bird\pnp649r.sys PNP680 [A ] 84. c:\windows\system32\bird\pnp680.sys PNP680R [A ] 85. c:\windows\system32\bird\pnp680r.sys ql1080 [A ] 86. c:\windows\system32\bird\ql1080.sys ql12160 [A ] 87. c:\windows\system32\bird\ql12160.sys ql1280 [A ] 88. c:\windows\system32\bird\ql1280.sys RAIDSRC [A ] 89. c:\windows\system32\bird\raidsrc.sys RR232X [A ] 90. c:\windows\system32\bird\rr232x.sys RsNTGDI [A ] 91. c:\windows\system32\drivers\rsntgdi.sys RSPPSYS [A ] 92. d:\rising\rav\rsppsys.sys RsProtect [A ] 93. c:\windows\system32\drivers\rsptect.sys S150SX8 [A ] 94. c:\windows\system32\bird\s150sx8.sys Secdrv [A ] 95. c:\windows\system32\drivers\secdrv.sys SI3112 [A ] 96. c:\windows\system32\bird\si3112.sys SI3112R [A ] 97. c:\windows\system32\bird\si3112r.sys SI3114 [A ] 98. c:\windows\system32\bird\si3114.sys SI3114R [A ] 99. c:\windows\system32\bird\si3114r.sys SI3114R5 [A ] 100. c:\windows\system32\bird\si3114r5.sys SI3124 [A ] 101. c:\windows\system32\bird\si3124.sys SI3124R [A ] 102. c:\windows\system32\bird\si3124r.sys SI3124R5 [A ] 103. c:\windows\system32\bird\si3124r5.sys SI3132 [A ] 104. c:\windows\system32\bird\si3132.sys SI3132R5 [A ] 105. c:\windows\system32\bird\si3132r5.sys SISRAID [A ] 106. c:\windows\system32\bird\sisraid.sys SISRAID2 [A ] 107. c:\windows\system32\bird\sisraid2.sys SISRAID4 [A ] 108. c:\windows\system32\bird\sisraid4.sys SPTRAK [A ] 109. c:\windows\system32\bird\sptrak.sys ST8350 [A ] 110. c:\windows\system32\bird\st8350.sys sx [A ] 111. c:\windows\system32\drivers\sx.ahc SYMMPI [A ] 112. c:\windows\system32\bird\symmpi.sys sym_hi [A ] 113. c:\windows\system32\bird\sym_hi.sys sym_u3 [A ] 114. c:\windows\system32\bird\sym_u3.sys ULSATA [A ] 115. c:\windows\system32\bird\ulsata.sys ULSATA2 [A ] 116. c:\windows\system32\bird\ulsata2.sys ULTIMA [A ] 117. c:\windows\system32\bird\ultima.sys ULTIMARX [A ] 118. c:\windows\system32\bird\ultimarx.sys ultra [A ] 119. c:\windows\system32\bird\ultra.sys viaagp1 [A ] 120. c:\windows\system32\drivers\viaagp1.sys ViaIde [A ] 121. c:\windows\system32\drivers\viaidexp.sys VIAMRAID [A ] 122. c:\windows\system32\drivers\viamraid.sys videX32 [A ] 123. c:\windows\system32\drivers\videx32.sys vmscsi [A ] 124. c:\windows\system32\bird\vmscsi.sys W2KADV [A ] 125. c:\windows\system32\bird\w2kadv.sys xpt [A ] 126. c:\windows\system32\drivers\xpt.ahc ZSMC303 [A ] 127. c:\windows\system32\drivers\usbvm303.sys + 文件系统驱动 + HKLM\System\CurrentControlSet\Services exFat [A ] 128. c:\windows\system32\drivers\exfat.sys + 系统登陆自运行 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify AtiExtEvent [AM] 129. c:\windows\system32\ati2evxx.dll WgaLogon [AM] 130. c:\windows\system32\wgalogon.dll + IE浏览器加载模块 + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [A ] 131. c:\windows\system32\urlfilter.dll + HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions Exec [A ] 132. d:\迅雷\thunder.exe + 资源管理器加载模块 + HKLM\SOFTWARE\Classes\PROTOCOLS\Filter application/octet-stream [A ] 133. c:\windows\system32\mscoree.dll application/x-complus [A ] 133. c:\windows\system32\mscoree.dll application/x-msdownload [A ] 133. c:\windows\system32\mscoree.dll text/xml [A ] 134. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved HyperTerminal Icon Ext [A ] 135. c:\windows\system32\hticons.dll WinRAR shell extension [A ] 136. c:\program files\winrar\rarext.dll Portable Media Devices [A ] 137. c:\windows\system32\audiodev.dll Portable Media Devices Menu [A ] 137. c:\windows\system32\audiodev.dll Microsoft Office HTML Icon Handler [AM] 138. c:\program files\microsoft office\office11\msohev.dll Web Folders [A ] 139. c:\program files\common files\microsoft shared\web folders\msonsext.dll PicaView [A ] 140. c:\program files\acdsee\picaview.dll Fusion Cache [A ] 133. c:\windows\system32\mscoree.dll Autodesk Drawing Preview [A ] 141. c:\program files\common files\autodesk shared\thumbnail\acthumbnail16.dll AutoCAD 数字签名图标覆盖处理程序 [AM] 142. c:\windows\system32\acsignicon.dll Autodesk DWF Preview [A ] 143. c:\program files\common files\autodesk shared\thumbnail\acdwfthmbprxy16.dll RISING [AM] 144. c:\windows\system32\ravext.dll Shell Extensions for RealOne Player [A ] 145. c:\program files\real\realplayer\rpshell.dll Context Menu Shell Extension [A ] 146. e:\小游戏\flash小游戏\contextmenu.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks {32CD708B-60A7-4C00-9377-D73EAA495F0F} [AM] 144. c:\windows\system32\ravext.dll {1ECE2FCB-C1BB-4706-920C-F4C1076FD155} [AM] 147. c:\windows\system32\kt2nuqzegma.dll {EF6EF2D9-CDC7-481D-B17C-DA8DBA33BB01} [AM] 148. c:\windows\system32\kw5xuyzjcsnws.dll {7A93621D-BFFE-4EB1-AAE1-CD487F429840} [AM] 149. c:\windows\system32\pkvycx5khnftc7bxjt.dll {3BF06F2A-7AA8-4474-90A2-CFAFC22D43AB} [AM] 150. c:\windows\fonts\cc8kqznexnc.fon {028A997C-4262-4107-BD46-2ABBC6143E8C} [AM] 151. c:\windows\system32\efc0c52cc1.dll {76CBCF38-0583-44C7-A1AE-D463DFE625EC} [AM] 152. c:\windows\system32\skcfujq5edn.dll {36AC68E6-0C26-4D39-B98E-54B49DAB6BAA} [AM] 153. c:\windows\system32\dhdhws7ffw.dll {6B74576A-BB20-47B3-AE0A-046B062897D0} [AM] 154. c:\windows\system32\acg9ycsarj8y.dll {A1A6BC2E-C6A1-43C1-8884-A31D772F42B8} [AM] 155. c:\windows\system32\a1a6bc2e.dll {C722AD57-35DA-4460-8353-328372F32AB2} [AM] 156. c:\windows\system32\ufqcu5.dll {E4814792-EFA3-4C20-93D0-8B130A59F9A8} [AM] 157. c:\windows\system32\e4814792.dll {704C3595-DB85-40F6-A601-8D6F346907BD} [AM] 158. c:\windows\system32\704c3595.dll {171565E3-F0BB-4FF0-9A42-C9406C79DB78} [AM] 159. c:\windows\system32\wf87w8xjgdw5es6tua.dll {A0C86020-5935-4B87-B20E-0B656D450264} [AM] 160. c:\windows\system32\a0c86020.dll {E88AE11C-26DF-4F4D-8726-C043F513990E} [AM] 161. c:\windows\system32\yp77tt3ucg74j.dll {2EF0D734-21FD-4225-A1A2-BCD296182AAF} [AM] 162. c:\windows\system32\2ef0d734.dll {56BC86C7-0692-4F94-A2C1-6CF1DBF8096C} [AM] 163. c:\windows\system32\56bc86c7.dll {16886058-6A31-4D53-B4AC-4CC7D2248D69} [AM] 164. c:\windows\fonts\vwuxtybhj.fon {0D267113-499A-4EEF-998D-C45731C1B313} [AM] 165. c:\windows\system32\vntu2waqucza6.dll {08223B03-1B38-4A33-A83A-A4D3CC1D6E4E} [AM] 166. c:\windows\system32\08223b03.dll {122B901E-493F-4AD9-BC69-7DE8C3E52FCC} [AM] 167. c:\windows\system32\122b901e.dll {19250D1E-B733-4F49-BC56-44EFCF3BF650} [AM] 168. c:\windows\system32\m37tettx7ye5c.dll {CD95107F-52A5-42A4-9914-18949993E798} [AM] 169. c:\windows\fonts\ty5ufs434yyd.fon {CCCA2FB9-2D5D-4481-8BFE-1CDDC458A3F4} [AM] 170. c:\windows\system32\ccca2fb9.dll {4E5CFE74-700B-4A8B-B0BF-A6B47D896C18} [AM] 171. c:\windows\system32\grtzqh5snrhat.dll {71C4F360-FF1E-413E-B17A-0CA267A78E97} [AM] 172. c:\windows\system32\qb5bkzy7vr5m.dll {E11FB24A-F766-4D0F-ADF5-237958FFA262} [AM] 173. c:\windows\fonts\f13erxr2urh.fon + 用户登陆自运行项目 + HKLM\Software\Microsoft\Windows\CurrentVersion\Run RavTray [AM] 174. d:\瑞星2008\rising\rav\rstray.exe + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce KKDelay [A ] 175. c:\program files\rising\antispyware\runonce.exe + 开机执行 + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 176. c:\windows\system32\bsmain.exe [A ] 177. c:\windows\system32\kknative.exe + 映像劫持 + HKCR\.exe exefile\启用/禁用数字签名图标\Command [A ] 178. c:\windows\system32\acsignopt.exe + HKCR\.html htmlfile\Edit\Command [A ] 179. c:\program files\microsoft office\office11\msohtmed.exe htmlfile\Print\Command [A ] 179. c:\program files\microsoft office\office11\msohtmed.exe + HKCR\.htm htmlfile\Edit\Command [A ] 179. c:\program files\microsoft office\office11\msohtmed.exe htmlfile\Print\Command [A ] 179. c:\program files\microsoft office\office11\msohtmed.exe + 程序初始化和已知动态连接库 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows AppInit_DLLs [AM] 180. c:\windows\system32\kmon.dll + 正在运行的进程 + 0000009c(156) wmiprvse.exe 60000000[00074000] [AM] 180. c:\windows\system32\kmon.dll + 000000ac(172) RsTray.exe 00400000[00023000] [AM] 174. d:\瑞星2008\rising\rav\rstray.exe 10000000[00023000] [ M] 181. d:\瑞星2008\rising\rav\comserv.dll 7C3A0000[0007B000] [ M] 182. c:\windows\system32\msvcp71.dll 7C340000[00056000] [ M] 183. c:\windows\system32\msvcr71.dll 23700000[00023000] [ M] 184. d:\瑞星2008\rising\rav\rslang.dll 009A0000[0002E000] [ M] 185. d:\瑞星2008\rising\rav\comx3.dll 009D0000[00019000] [ M] 186. d:\瑞星2008\rising\rav\syslay.dll 23800000[00025000] [ M] 187. d:\瑞星2008\rising\rav\rsxml.dll 00DD0000[00010000] [ M] 188. d:\瑞星2008\rising\rav\proccomm.dll 010E0000[00013000] [ M] 189. d:\瑞星2008\rising\rav\monstate.dll 01110000[0000B000] [ M] 190. d:\瑞星2008\rising\rav\scanevnt.dll 26600000[000C3000] [ M] 191. d:\瑞星2008\rising\rav\rsguilib.dll 7C140000[00103000] [ M] 192. c:\windows\system32\mfc71.dll 01280000[00017000] [ M] 193. d:\瑞星2008\rising\rav\rsconf.dll 012A0000[0000E000] [ M] 194. d:\瑞星2008\rising\rav\rsappmgr.dll 012C0000[00031000] [ M] 195. d:\瑞星2008\rising\rav\cfgdll.dll 01400000[0002F000] [ M] 196. d:\瑞星2008\rising\rav\rspalvd.dll 33000000[00025000] [ M] 197. d:\瑞星2008\rising\rav\ravbintl.dll 01450000[0006C000] [ M] 198. d:\瑞星2008\rising\rav\mruleui.dll 014F0000[0006B000] [ M] 199. d:\瑞星2008\rising\rav\montray.dll 23900000[00040000] [ M] 200. d:\瑞星2008\rising\rav\pngdll.dll 34500000[00020000] [ M] 201. d:\瑞星2008\rising\rav\ravitray.dll 01AB0000[00059000] [ M] 202. d:\瑞星2008\rising\rav\scanprxy.dll 01B10000[00044000] [ M] 203. d:\瑞星2008\rising\rav\rsmginfo.dll + 00000260(608) smss.exe + 000002ac(684) csrss.exe + 000002cc(716) winlogon.exe 10000000[00024000] [AM] 129. c:\windows\system32\ati2evxx.dll 02180000[0003B000] [AM] 130. c:\windows\system32\wgalogon.dll 72C80000[00008000] [ M] 204. c:\windows\system32\msacm32.drv + 000002f8(760) services.exe 46040000[0000F000] [ M] 205. c:\windows\apppatch\acadproc.dll + 00000304(772) lsass.exe + 000003a4(932) Ati2evxx.exe 00400000[0008A000] [AM] 2. c:\windows\system32\ati2evxx.exe 60000000[00074000] [AM] 180. c:\windows\system32\kmon.dll 00CD0000[00010000] [ M] 206. c:\windows\system32\ati2edxx.dll 10000000[0002E000] [ M] 207. c:\windows\system32\atipdlxx.dll + 000003c4(964) svchost.exe + 000003cc(972) Ras.exe 00400000[0000B000] [ M] 208. c:\program files\rising\antispyware\ras.exe 7C140000[00103000] [ M] 209. c:\program files\rising\antispyware\mfc71.dll 7C340000[00056000] [ M] 210. c:\program files\rising\antispyware\msvcr71.dll 60000000[00074000] [AM] 180. c:\windows\system32\kmon.dll 10000000[00047000] [ M] 211. c:\program files\rising\antispyware\kakamgr.dll 7C3A0000[0007B000] [ M] 212. c:\program files\rising\antispyware\msvcp71.dll 00A30000[00019000] [ M] 213. c:\program files\rising\antispyware\syslay.dll 00A80000[0001F000] [ M] 214. d:\瑞星2008\rising\rav\proccom.dll 00AA0000[00024000] [ M] 215. c:\program files\rising\antispyware\rscommx2.dll 00BF0000[0002D000] [ M] 216. c:\program files\rising\antispyware\comx3.dll 00D60000[00058000] [ M] 217. c:\program files\rising\antispyware\dbmgr.dll 23800000[00022000] [ M] 218. c:\program files\rising\antispyware\rsxml.dll 00EC0000[0002D000] [ M] 219. c:\program files\rising\antispyware\pweb.dll 00EF0000[000C1000] [ M] 220. c:\program files\rising\antispyware\pscan.dll 00FC0000[00034000] [ M] 221. c:\program files\rising\antispyware\ncomm.dll 01020000[00070000] [ M] 222. c:\program files\rising\antispyware\pset.dll 010B0000[0002A000] [ M] 223. c:\program files\rising\antispyware\pdefend.dll 010E0000[000B6000] [ M] 224. c:\program files\rising\antispyware\ptools.dll 012A0000[0008D000] [ M] 225. c:\program files\rising\antispyware\psysinfo.dll 01350000[00024000] [AM] 144. c:\windows\system32\ravext.dll 01390000[00011000] [AM] 147. c:\windows\system32\kt2nuqzegma.dll 013B0000[00011000] [AM] 148. c:\windows\system32\kw5xuyzjcsnws.dll 013D0000[00010000] [AM] 149. c:\windows\system32\pkvycx5khnftc7bxjt.dll 013E0000[00012000] [AM] 150. c:\windows\fonts\cc8kqznexnc.fon 01400000[00010000] [AM] 151. c:\windows\system32\efc0c52cc1.dll 01410000[00010000] [AM] 152. c:\windows\system32\skcfujq5edn.dll 01420000[0000F000] [AM] 153. c:\windows\system32\dhdhws7ffw.dll 01430000[00010000] [AM] 154. c:\windows\system32\acg9ycsarj8y.dll 01440000[00010000] [AM] 155. c:\windows\system32\a1a6bc2e.dll 01450000[0000F000] [AM] 156. c:\windows\system32\ufqcu5.dll 01460000[0000F000] [AM] 157. c:\windows\system32\e4814792.dll 01470000[00011000] [AM] 158. c:\windows\system32\704c3595.dll 01490000[0000F000] [AM] 159. c:\windows\system32\wf87w8xjgdw5es6tua.dll 014A0000[0000F000] [AM] 160. c:\windows\system32\a0c86020.dll 015D0000[00011000] [AM] 161. c:\windows\system32\yp77tt3ucg74j.dll 014B0000[0000F000] [AM] 162. c:\windows\system32\2ef0d734.dll 015F0000[00010000] [AM] 163. c:\windows\system32\56bc86c7.dll 01600000[0000F000] [AM] 164. c:\windows\fonts\vwuxtybhj.fon 01610000[0000F000] [AM] 165. c:\windows\system32\vntu2waqucza6.dll 01620000[00010000] [AM] 166. c:\windows\system32\08223b03.dll 01630000[0000F000] [AM] 167. c:\windows\system32\122b901e.dll 01640000[0000F000] [AM] 168. c:\windows\system32\m37tettx7ye5c.dll 01650000[00011000] [AM] 169. c:\windows\fonts\ty5ufs434yyd.fon 01670000[0000F000] [AM] 170. c:\windows\system32\ccca2fb9.dll 01680000[0000F000] [AM] 171. c:\windows\system32\grtzqh5snrhat.dll 01690000[0000F000] [AM] 172. c:\windows\system32\qb5bkzy7vr5m.dll 016A0000[00010000] [AM] 173. c:\windows\fonts\f13erxr2urh.fon 23900000[00040000] [ M] 226. c:\program files\rising\antispyware\pngdll.dll 03A10000[0001E000] [ M] 227. c:\program files\rising\antispyware\secscan.dll 03A30000[00075000] [ M] 228. c:\program files\rising\antispyware\ntlib.dll 03AC0000[0001A000] [ M] 229. c:\program files\rising\antispyware\secex.dll 03E00000[0002F000] [ M] 230. c:\program files\rising\antispyware\engine.dll 03E30000[0000F000] [ M] 231. c:\program files\rising\antispyware\zip.dll + 00000428(1064) svchost.exe + 00000464(1124) knownsvr.exe 00400000[00072000] [ M] 232. c:\program files\rising\antispyware\knownsvr.exe 10000000[00034000] [ M] 221. c:\program files\rising\antispyware\ncomm.dll 60000000[00074000] [AM] 180. c:\windows\system32\kmon.dll 009A0000[0002D000] [ M] 216. c:\program files\rising\antispyware\comx3.dll 009D0000[00019000] [ M] 213. c:\program files\rising\antispyware\syslay.dll + 0000048c(1164) svchost.exe + 000004f4(1268) svchost.exe + 0000050c(1292) Ati2evxx.exe 00400000[0008A000] [AM] 2. c:\windows\system32\ati2evxx.exe 60000000[00074000] [AM] 180. c:\windows\system32\kmon.dll 00CD0000[00010000] [ M] 206. c:\windows\system32\ati2edxx.dll 10000000[0002E000] [ M] 207. c:\windows\system32\atipdlxx.dll 00D00000[00024000] [AM] 129. c:\windows\system32\ati2evxx.dll + 00000578(1400) svchost.exe + 00000644(1604) wdfmgr.exe 01000000[0000C000] [AM] 9. c:\windows\system32\wdfmgr.exe 60000000[00074000] [AM] 180. c:\windows\system32\kmon.dll + 00000658(1624) svchost.exe + 000006a0(1696) spoolsv.exe + 000006c0(1728) Explorer.EXE 60000000[00074000] [AM] 180. c:\windows\system32\kmon.dll 60C60000[00026000] [AM] 142. c:\windows\system32\acsignicon.dll 10000000[00024000] [AM] 144. c:\windows\system32\ravext.dll 00CE0000[00011000] [AM] 147. c:\windows\system32\kt2nuqzegma.dll 00D00000[00011000] [AM] 148. c:\windows\system32\kw5xuyzjcsnws.dll 00BE0000[00010000] [AM] 149. c:\windows\system32\pkvycx5khnftc7bxjt.dll 00F20000[00012000] [AM] 150. c:\windows\fonts\cc8kqznexnc.fon 00FC0000[00010000] [AM] 151. c:\windows\system32\efc0c52cc1.dll 00FD0000[00010000] [AM] 152. c:\windows\system32\skcfujq5edn.dll 00FE0000[0000F000] [AM] 153. c:\windows\system32\dhdhws7ffw.dll 00FF0000[00010000] [AM] 154. c:\windows\system32\acg9ycsarj8y.dll 01850000[00010000] [AM] 155. c:\windows\system32\a1a6bc2e.dll 018E0000[0000F000] [AM] 156. c:\windows\system32\ufqcu5.dll 01970000[0000F000] [AM] 157. c:\windows\system32\e4814792.dll 01A00000[00011000] [AM] 158. c:\windows\system32\704c3595.dll 01AA0000[0000F000] [AM] 159. c:\windows\system32\wf87w8xjgdw5es6tua.dll 01B30000[0000F000] [AM] 160. c:\windows\system32\a0c86020.dll 01BC0000[00011000] [AM] 161. c:\windows\system32\yp77tt3ucg74j.dll 01C60000[0000F000] [AM] 162. c:\windows\system32\2ef0d734.dll 01CF0000[00010000] [AM] 163. c:\windows\system32\56bc86c7.dll 01D80000[0000F000] [AM] 164. c:\windows\fonts\vwuxtybhj.fon 01E10000[0000F000] [AM] 165. c:\windows\system32\vntu2waqucza6.dll 01EA0000[00010000] [AM] 166. c:\windows\system32\08223b03.dll 01F30000[0000F000] [AM] 167. c:\windows\system32\122b901e.dll 01FC0000[0000F000] [AM] 168. c:\windows\system32\m37tettx7ye5c.dll 02050000[00011000] [AM] 169. c:\windows\fonts\ty5ufs434yyd.fon 020F0000[0000F000] [AM] 170. c:\windows\system32\ccca2fb9.dll 02180000[0000F000] [AM] 171. c:\windows\system32\grtzqh5snrhat.dll 02210000[0000F000] [AM] 172. c:\windows\system32\qb5bkzy7vr5m.dll 022A0000[00010000] [AM] 173. c:\windows\fonts\f13erxr2urh.fon 60D00000[00039000] [ M] 233. c:\program files\common files\autodesk shared\acsigncore16.dll 72C80000[00008000] [ M] 204. c:\windows\system32\msacm32.drv 325C0000[00012000] [AM] 138. c:\program files\microsoft office\office11\msohev.dll + 000007f0(2032) svchost.exe + 0000081c(2076) alg.exe 60000000[00074000] [AM] 180. c:\windows\system32\kmon.dll