Syscheck检测报告 1:当前进程模块情况: 第三方进程及模块 Ati2evxx.exe=c:\windows\system32\ati2evxx.exe [NOMS]c:\windows\system32\ati2edxx.dll [NOMS]c:\windows\system32\kmon.dll [NOMS]c:\windows\system32\ati2evxx.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\uxtheme.dll CCenter.exe=c:\program files\rising\rav\ccenter.exe [NOMS]c:\program files\rising\rav\cnt08.dll [NOMS]c:\program files\rising\rav\cnt09.dll [NOMS]c:\program files\rising\rav\combase.dll [NOMS]c:\program files\rising\rav\ccenter.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\uxtheme.dll CCenter.exe=c:\program files\rising\rfw\ccenter.exe [NOMS]c:\program files\rising\rfw\cnt09.dll [NOMS]c:\program files\rising\rfw\combase.dll [NOMS]c:\program files\rising\rfw\ccenter.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\uxtheme.dll RavTask.exe=c:\program files\rising\rav\ravtask.exe [NOMS]c:\program files\rising\rav\rsstub.dll [NOMS]c:\program files\rising\rav\rstask.dll [NOMS]c:\program files\rising\rav\cfgdll.dll [NOMS]c:\program files\rising\rav\rsappmgr.dll [NOMS]c:\program files\rising\rav\rsconf.dll [NOMS]c:\program files\rising\rav\proccomm.dll [NOMS]c:\program files\rising\rav\ravtask.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\psapi.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\netapi32.dll RavTask.exe=c:\program files\rising\rfw\ravtask.exe [NOMS]c:\program files\rising\rfw\rsstub.dll [NOMS]c:\program files\rising\rfw\rstask.dll [NOMS]c:\program files\rising\rfw\cfgdll.dll [NOMS]c:\program files\rising\rfw\rsappmgr.dll [NOMS]c:\program files\rising\rfw\rsconf.dll [NOMS]c:\program files\rising\rfw\proccomm.dll [NOMS]c:\program files\rising\rfw\ravtask.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\program files\rising\rfw\psapi.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\netapi32.dll RfwSrv.exe=c:\program files\rising\rfw\rfwsrv.exe [NOMS]c:\program files\rising\rfw\urllib.dll [NOMS]c:\program files\rising\rfw\proccomm.dll [NOMS]c:\program files\rising\rfw\cfgdll.dll [NOMS]c:\program files\rising\rfw\rsappmgr.dll [NOMS]c:\program files\rising\rfw\rfwproxy.dll [NOMS]c:\program files\rising\rfw\relibldr.dll [NOMS]c:\program files\rising\rfw\viruslib.dll [NOMS]c:\program files\rising\rfw\refs.dll [NOMS]c:\program files\rising\rfw\recomp.dll [NOMS]c:\program files\rising\rfw\urlrule.dll [NOMS]c:\program files\rising\rfw\comx3.dll [NOMS]c:\program files\rising\rfw\rsnetsvr.dll [NOMS]c:\program files\rising\rfw\rfwdrv.dll [NOMS]c:\program files\rising\rfw\rfwdrvc.dll [NOMS]c:\program files\rising\rfw\mports.dll [NOMS]c:\program files\rising\rfw\syslay.dll [NOMS]c:\program files\rising\rfw\rfwsrv.dll [NOMS]c:\program files\rising\rfw\rfwrule.dll [NOMS]c:\program files\rising\rfw\rfwlog.dll [NOMS]c:\program files\rising\rfw\moncomm.dll [NOMS]c:\program files\rising\rfw\monbase.dll [NOMS]c:\windows\system32\kmon.dll [NOMS]c:\program files\rising\rfw\combase.dll [NOMS]c:\program files\rising\rfw\rfwsrv.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\program files\rising\rfw\psapi.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\mprapi.dll [MS]c:\windows\system32\activeds.dll [MS]c:\windows\system32\adsldpc.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\atl.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\msctfime.ime RavMonD.exe=c:\program files\rising\rav\ravmond.exe [NOMS]c:\program files\rising\rav\ur001.dat [NOMS]c:\program files\rising\rav\extmail.dll [NOMS]c:\program files\rising\rav\revm.dll [NOMS]c:\program files\rising\rav\heurex.dll [NOMS]c:\program files\rising\rav\pecompd.dll [NOMS]c:\program files\rising\rav\methodex.dll [NOMS]c:\program files\rising\rav\urutils.dll [NOMS]c:\program files\rising\rav\ur000.dat [NOMS]c:\program files\rising\rav\scanpe.dll [NOMS]c:\program files\rising\rav\pearc.dll [NOMS]c:\program files\rising\rav\scansct.dll [NOMS]c:\program files\rising\rav\scanex.dll [NOMS]c:\program files\rising\rav\unexe.dll [NOMS]c:\program files\rising\rav\scanexec.dll [NOMS]c:\program files\rising\rav\extfile.dll [NOMS]c:\program files\rising\rav\nvfile.dll [NOMS]c:\program files\rising\rav\ffr.dll [NOMS]c:\program files\rising\rav\relibldr.dll [NOMS]c:\program files\rising\rav\viruslib.dll [NOMS]c:\program files\rising\rav\scanner.dll [NOMS]c:\program files\rising\rav\scanadd.dll [NOMS]c:\program files\rising\rav\rsstore.dll [NOMS]c:\program files\rising\rav\refs.dll [NOMS]c:\program files\rising\rav\recomp.dll [NOMS]c:\program files\rising\rav\bacore.dll [NOMS]c:\program files\rising\rav\rsnetsvr.dll [NOMS]c:\program files\rising\rav\hookcont.dll [NOMS]c:\program files\rising\rav\rscommx2.dll [NOMS]c:\program files\rising\rav\proccom.dll [NOMS]c:\program files\rising\rav\hooksys.dll [NOMS]c:\program files\rising\rav\syslay.dll [NOMS]c:\program files\rising\rav\comx3.dll [NOMS]c:\program files\rising\rav\cfgdll.dll [NOMS]c:\program files\rising\rav\rsappmgr.dll [NOMS]c:\program files\rising\rav\proccomm.dll [NOMS]c:\program files\rising\rav\hookweb.dll [NOMS]c:\program files\rising\rav\mailmon.dll [NOMS]c:\program files\rising\rav\filemon.dll [NOMS]c:\program files\rising\rav\monrule.dll [NOMS]c:\program files\rising\rav\moncom08.dll [NOMS]c:\program files\rising\rav\defmon.dll [NOMS]c:\program files\rising\rav\mondrv.dll [NOMS]c:\program files\rising\rav\rslog.dll [NOMS]c:\program files\rising\rav\monbase.dll [NOMS]c:\program files\rising\rav\moncomm.dll [NOMS]c:\program files\rising\rav\combase.dll [NOMS]c:\program files\rising\rav\ravmond.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\sfc.dll [MS]c:\windows\system32\sfc_os.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\xpsp2res.dll Ati2evxx.exe=c:\windows\system32\ati2evxx.exe [NOMS]c:\windows\system32\ati2edxx.dll [NOMS]c:\windows\system32\kmon.dll [NOMS]c:\windows\system32\ati2evxx.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\msctf.dll rsnetsvr.exe=c:\program files\rising\rav\rsnetsvr.exe [NOMS]c:\program files\rising\rav\proccomm.dll [NOMS]c:\program files\rising\rav\comx3.dll [NOMS]c:\program files\rising\rav\syslay.dll [NOMS]c:\program files\rising\rav\ncomm.dll [NOMS]c:\program files\rising\rav\rsnetsvr.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\sensapi.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\msxml3.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\xpsp2res.dll SOUNDMAN.EXE=c:\windows\soundman.exe [NOMS]c:\windows\system32\kmon.dll [NOMS]c:\windows\soundman.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\hid.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\msctf.dll RsTray.exe=c:\program files\rising\rav\rstray.exe [NOMS]c:\program files\rising\rav\rsmginfo.dll [NOMS]c:\program files\rising\rav\scanprxy.dll [NOMS]c:\program files\rising\rav\ravitray.dll [NOMS]c:\program files\rising\rav\pngdll.dll [NOMS]c:\program files\rising\rav\montray.dll [NOMS]c:\program files\rising\rav\mruleui.dll [NOMS]c:\program files\rising\rav\ravbintl.dll [NOMS]c:\program files\rising\rav\rspalvd.dll [NOMS]c:\program files\rising\rav\cfgdll.dll [NOMS]c:\program files\rising\rav\rsappmgr.dll [NOMS]c:\program files\rising\rav\rsconf.dll [NOMS]c:\program files\rising\rav\rsguilib.dll [NOMS]c:\program files\rising\rav\scanevnt.dll [NOMS]c:\program files\rising\rav\monstate.dll [NOMS]c:\program files\rising\rav\proccomm.dll [NOMS]c:\program files\rising\rav\rsxml.dll [NOMS]c:\program files\rising\rav\syslay.dll [NOMS]c:\program files\rising\rav\comx3.dll [NOMS]c:\program files\rising\rav\rslang.dll [NOMS]c:\program files\rising\rav\comserv.dll [NOMS]c:\program files\rising\rav\rstray.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\mfc71.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\sensapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll RSTray.exe=c:\program files\rising\antispyware\rstray.exe [NOMS]c:\program files\rising\antispyware\secex.dll [NOMS]c:\program files\rising\antispyware\ntlib.dll [NOMS]c:\program files\rising\antispyware\pscan.dll [NOMS]c:\program files\rising\antispyware\rscommx2.dll [NOMS]c:\program files\rising\rav\proccom.dll [NOMS]c:\program files\rising\antispyware\ncomm.dll [NOMS]c:\program files\rising\antispyware\runiep.dll [NOMS]c:\program files\rising\antispyware\pngdll.dll [NOMS]c:\program files\rising\antispyware\comx3.dll [NOMS]c:\program files\rising\antispyware\rscommon.dll [NOMS]c:\program files\rising\antispyware\syslay.dll [NOMS]c:\program files\rising\antispyware\comserv.dll [NOMS]c:\program files\rising\antispyware\rsxml.dll [NOMS]c:\program files\rising\antispyware\rsmginfo.dll [NOMS]c:\program files\rising\antispyware\rstray.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\program files\rising\antispyware\msvcp71.dll [MS]c:\program files\rising\antispyware\msvcr71.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\sensapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\program files\rising\antispyware\mfc71.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\sfc_os.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\msxml3.dll realsched.exe=c:\program files\common files\real\update_ob\realsched.exe [NOMS]c:\windows\system32\kmon.dll [NOMS]c:\program files\common files\real\update_ob\realsched.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\ntmarta.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\msctf.dll RsTray.exe=c:\program files\rising\rfw\rstray.exe [NOMS]c:\program files\rising\rfw\rfwlog.dll [NOMS]c:\program files\rising\rfw\pngdll.dll [NOMS]c:\program files\rising\rfw\rfwtray.dll [NOMS]c:\program files\rising\rfw\rsmginfo.dll [NOMS]c:\program files\rising\rfw\rsnetsvr.dll [NOMS]c:\program files\rising\rfw\ravbintl.dll [NOMS]c:\program files\rising\rfw\rsguilib.dll [NOMS]c:\program files\rising\rfw\rspalvd.dll [NOMS]c:\program files\rising\rfw\cfgdll.dll [NOMS]c:\program files\rising\rfw\rsappmgr.dll [NOMS]c:\program files\rising\rfw\rsconf.dll [NOMS]c:\program files\rising\rfw\rfwrule.dll [NOMS]c:\program files\rising\rfw\monstate.dll [NOMS]c:\program files\rising\rfw\proccomm.dll [NOMS]c:\program files\rising\rfw\rsxml.dll [NOMS]c:\program files\rising\rfw\syslay.dll [NOMS]c:\program files\rising\rfw\comx3.dll [NOMS]c:\program files\rising\rfw\rslang.dll [NOMS]c:\program files\rising\rfw\comserv.dll [NOMS]c:\program files\rising\rfw\rstray.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\mfc71.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\mprapi.dll [MS]c:\windows\system32\activeds.dll [MS]c:\windows\system32\adsldpc.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\atl.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\sensapi.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll stormliv.exe=c:\program files\stormii\stormliv.exe [NOMS]c:\program files\stormii\box\boxlog.dll [NOMS]c:\program files\stormii\bfoptdll.dll [NOMS]c:\windows\system32\kmon.dll [NOMS]c:\program files\stormii\stormliv.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\program files\stormii\msvcp60.dll [MS]c:\windows\system32\mfc42.dll [MS]c:\windows\system32\comdlg32.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\olepro32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\mfc42loc.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\msxml3.dll [MS]c:\windows\system32\winrnr.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\mlang.dll [MS]c:\windows\system32\quartz.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\devenum.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\cryptdll.dll ScanFrm.exe=c:\program files\rising\rav\scanfrm.exe [NOMS]c:\program files\rising\rav\scanmac.dll [NOMS]c:\program files\rising\rav\extmail.dll [NOMS]c:\program files\rising\rav\scansct.dll [NOMS]c:\program files\rising\rav\revm.dll [NOMS]c:\program files\rising\rav\extfile.dll [NOMS]c:\program files\rising\rav\pecompd.dll [NOMS]c:\program files\rising\rav\heurex.dll [NOMS]c:\program files\rising\rav\methodex.dll [NOMS]c:\program files\rising\rav\urutils.dll [NOMS]c:\program files\rising\rav\ur000.dat [NOMS]c:\program files\rising\rav\scanpe.dll [NOMS]c:\program files\rising\rav\pearc.dll [NOMS]c:\program files\rising\rav\nvfile.dll [NOMS]c:\program files\rising\rav\posttrt.dll [NOMS]c:\program files\rising\rav\mvengine.dll [NOMS]c:\program files\rising\rav\sysmail.dll [NOMS]c:\program files\rising\rav\scanravt.dll [NOMS]c:\program files\rising\rav\extole.dll [NOMS]c:\program files\rising\rav\scanex.dll [NOMS]c:\program files\rising\rav\unexe.dll [NOMS]c:\program files\rising\rav\scanexec.dll [NOMS]c:\program files\rising\rav\ffr.dll [NOMS]c:\program files\rising\rav\relibldr.dll [NOMS]c:\program files\rising\rav\viruslib.dll [NOMS]c:\program files\rising\rav\refs.dll [NOMS]c:\program files\rising\rav\recomp.dll [NOMS]c:\program files\rising\rav\scanner.dll [NOMS]c:\program files\rising\rav\cfgdll.dll [NOMS]c:\program files\rising\rav\rsappmgr.dll [NOMS]c:\program files\rising\rav\scanadd.dll [NOMS]c:\program files\rising\rav\rslog.dll [NOMS]c:\program files\rising\rav\scanstub.dll [NOMS]c:\program files\rising\rav\scanbt.dll [NOMS]c:\program files\rising\rav\scansimt.dll [NOMS]c:\program files\rising\rav\syslay.dll [NOMS]c:\program files\rising\rav\comx3.dll [NOMS]c:\program files\rising\rav\scansrv.dll [NOMS]c:\program files\rising\rav\proccomm.dll [NOMS]c:\program files\rising\rav\scansrvp.dll [NOMS]c:\program files\rising\rav\moncomm.dll [NOMS]c:\program files\rising\rav\combase.dll [NOMS]c:\program files\rising\rav\scanfrm.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\psapi.dll [MS]c:\windows\system32\sfc.dll [MS]c:\windows\system32\sfc_os.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll TdxW.exe=c:\new_mzzq\tdxw.exe [NOMS]c:\program files\rising\rav\ravscrch.dll [NOMS]c:\new_mzzq\wtcommlib.dll [NOMS]c:\new_mzzq\tc.dll [NOMS]c:\new_mzzq\res_std2.dll [NOMS]c:\new_mzzq\advhq.dll [NOMS]c:\new_mzzq\calcer.dll [NOMS]c:\program files\rising\antispyware\syslay.dll [NOMS]c:\program files\rising\antispyware\comx3.dll [NOMS]c:\windows\system32\kmon.dll [NOMS]c:\new_mzzq\tcomm.dll [NOMS]c:\new_mzzq\tchart.dll [NOMS]c:\new_mzzq\talgo.dll [NOMS]c:\new_mzzq\secure.dll [NOMS]c:\new_mzzq\tusercomm.dll [NOMS]c:\new_mzzq\tinfo.dll [NOMS]c:\new_mzzq\tlist.dll [NOMS]c:\new_mzzq\ttools.dll [NOMS]c:\new_mzzq\dbf.dll [NOMS]c:\new_mzzq\invest.dll [NOMS]c:\new_mzzq\viewthem.dll [NOMS]c:\new_mzzq\tcalc.dll [NOMS]c:\new_mzzq\tdxw.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\new_mzzq\mfc42.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\new_mzzq\msvcp60.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\msimg32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\mfc42loc.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\riched32.dll [MS]c:\windows\system32\riched20.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\shdocvw.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\cryptui.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\sxs.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\shdoclc.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\mlang.dll [MS]c:\windows\system32\mshtml.dll [MS]c:\windows\system32\msls31.dll [MS]c:\windows\system32\psapi.dll [MS]c:\windows\system32\msimtf.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\jscript.dll [MS]c:\windows\system32\vbscript.dll knownsvr.exe=c:\program files\rising\antispyware\knownsvr.exe [NOMS]c:\program files\rising\antispyware\syslay.dll [NOMS]c:\program files\rising\antispyware\comx3.dll [NOMS]c:\windows\system32\kmon.dll [NOMS]c:\program files\rising\antispyware\ncomm.dll [NOMS]c:\program files\rising\antispyware\knownsvr.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\sensapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll RsAgent.exe=c:\program files\rising\rav\rsagent.exe [NOMS]c:\program files\rising\rav\scanprxy.dll [NOMS]c:\program files\rising\rav\syslay.dll [NOMS]c:\program files\rising\rav\comx3.dll [NOMS]c:\program files\rising\rav\proccomm.dll [NOMS]c:\program files\rising\rav\rsagent.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\msagent\agentmpx.dll [MS]c:\windows\system32\sxs.dll sr-engldr.EXE=e:\下载\1\sr-engldr.exe [NOMS]e:\下载\1\sr-engldr.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\apphelp.dll SRE46903132.EXE=e:\下载\1\sre46903132.exe [NOMS]e:\下载\1\upload\3rdupd.dll [NOMS]e:\下载\1\sre46903132.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\comdlg32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\oledlg.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\riched20.dll [MS]c:\windows\system32\ntmarta.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\sfc.dll [MS]c:\windows\system32\sfc_os.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\sensapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll sr-engldr.EXE=e:\下载\1\sr-engldr.exe [NOMS]e:\下载\1\sr-engldr.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\apphelp.dll SRE2C.EXE=c:\docume~1\admini~1\locals~1\temp\sre2c.exe [NOMS]c:\docume~1\admini~1\locals~1\temp\sre2c.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\comdlg32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\oledlg.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\riched20.dll [MS]c:\windows\system32\ntmarta.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\sfc.dll [MS]c:\windows\system32\sfc_os.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\sensapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\cryptnet.dll [MS]c:\windows\system32\winhttp.dll [MS]c:\windows\system32\cabinet.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\setupapi.dll SCH2.exe=e:\下载\1\sch2.exe [NOMS]c:\program files\rising\antispyware\syslay.dll [NOMS]c:\program files\rising\antispyware\comx3.dll [NOMS]c:\windows\system32\kmon.dll [NOMS]e:\下载\1\sch2.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\comdlg32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\mpr.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\cscui.dll [MS]c:\windows\system32\cscdll.dll [MS]c:\windows\system32\psapi.dll 微软进程及模块 smss.exe=c:\windows\system32\smss.exe [MS]c:\windows\system32\smss.exe [MS]c:\windows\system32\ntdll.dll csrss.exe=c:\windows\system32\csrss.exe [MS]c:\windows\system32\csrss.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\csrsrv.dll [MS]c:\windows\system32\basesrv.dll [MS]c:\windows\system32\winsrv.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\sxs.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\version.dll winlogon.exe=c:\windows\system32\winlogon.exe [NOMS]c:\windows\system32\ati2evxx.dll [MS]c:\windows\system32\winlogon.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\authz.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\nddeapi.dll [MS]c:\windows\system32\profmap.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\psapi.dll [MS]c:\windows\system32\regapi.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\msgina.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\odbc32.dll [MS]c:\windows\system32\comdlg32.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\odbcint.dll [MS]c:\windows\system32\shsvcs.dll [MS]c:\windows\system32\sfc.dll [MS]c:\windows\system32\sfc_os.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\winscard.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\sxs.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\cscdll.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\wlnotify.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\mpr.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\cscui.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\wdmaud.drv [MS]c:\windows\system32\ntmarta.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\msacm32.drv [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\midimap.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\wbem\wbemprox.dll [MS]c:\windows\system32\wbem\wbemcomn.dll [MS]c:\windows\system32\wbem\wbemsvc.dll [MS]c:\windows\system32\wbem\fastprox.dll [MS]c:\windows\system32\msvcp60.dll [MS]c:\windows\system32\ntdsapi.dll [MS]c:\windows\system32\dnsapi.dll services.exe=c:\windows\system32\services.exe [MS]c:\windows\system32\services.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\ncobjapi.dll [MS]c:\windows\system32\msvcp60.dll [MS]c:\windows\system32\scesrv.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\authz.dll [MS]c:\windows\system32\umpnpmgr.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\eventlog.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\psapi.dll [MS]c:\windows\system32\wtsapi32.dll lsass.exe=c:\windows\system32\lsass.exe [MS]c:\windows\system32\lsass.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\lsasrv.dll [MS]c:\windows\system32\mpr.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\ntdsapi.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\samsrv.dll [MS]c:\windows\system32\cryptdll.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\msprivs.dll [MS]c:\windows\system32\kerberos.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\netlogon.dll [MS]c:\windows\system32\w32time.dll [MS]c:\windows\system32\msvcp60.dll [MS]c:\windows\system32\schannel.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\wdigest.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\scecli.dll [MS]c:\windows\system32\ipsecsvc.dll [MS]c:\windows\system32\authz.dll [MS]c:\windows\system32\oakley.dll [MS]c:\windows\system32\winipsec.dll [MS]c:\windows\system32\pstorsvc.dll [MS]c:\windows\system32\psbase.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\dssenh.dll svchost.exe=c:\windows\system32\svchost.exe [MS]c:\windows\system32\svchost.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\ntmarta.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\rpcss.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\termsrv.dll [MS]c:\windows\system32\icaapi.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\authz.dll [MS]c:\windows\system32\mstlsapi.dll [MS]c:\windows\system32\activeds.dll [MS]c:\windows\system32\adsldpc.dll [MS]c:\windows\system32\atl.dll [MS]c:\windows\system32\regapi.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\msi.dll svchost.exe=c:\windows\system32\svchost.exe [MS]c:\windows\system32\svchost.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\rpcss.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\winrnr.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\msi.dll svchost.exe=c:\windows\system32\svchost.exe [MS]c:\windows\system32\svchost.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\ntmarta.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\shsvcs.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\dhcpcsvc.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\wzcsvc.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\wmi.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\esent.dll [MS]c:\windows\system32\atl.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\rastls.dll [MS]c:\windows\system32\cryptui.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\mprapi.dll [MS]c:\windows\system32\activeds.dll [MS]c:\windows\system32\adsldpc.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\schannel.dll [MS]c:\windows\system32\winscard.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\raschap.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\audiosrv.dll [MS]c:\windows\system32\wkssvc.dll [MS]c:\windows\system32\ntdsapi.dll [MS]c:\windows\system32\cryptsvc.dll [MS]c:\windows\system32\certcli.dll [MS]c:\windows\system32\dmserver.dll [MS]c:\windows\system32\es.dll [MS]c:\windows\system32\srvsvc.dll [MS]c:\windows\system32\netman.dll [MS]c:\windows\system32\netshell.dll [MS]c:\windows\system32\credui.dll [MS]c:\windows\system32\wzcsapi.dll [MS]c:\windows\system32\srsvc.dll [MS]c:\windows\system32\powrprof.dll [MS]c:\windows\system32\trkwks.dll [MS]c:\windows\system32\wuauserv.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wuaueng.dll [MS]c:\windows\system32\advpack.dll [MS]c:\windows\system32\shfolder.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\winhttp.dll [MS]c:\windows\system32\cabinet.dll [MS]c:\windows\system32\mspatcha.dll [MS]c:\windows\system32\sfc.dll [MS]c:\windows\system32\sfc_os.dll [MS]c:\windows\system32\seclogon.dll [MS]c:\windows\system32\wbem\wmisvc.dll [MS]c:\windows\system32\vssapi.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\sens.dll [MS]c:\windows\system32\upnp.dll [MS]c:\windows\system32\ssdpapi.dll [MS]c:\windows\system32\wbem\wbemcomn.dll [MS]c:\windows\system32\browser.dll [MS]c:\windows\system32\ipnathlp.dll [MS]c:\windows\system32\authz.dll [MS]c:\windows\system32\wscsvc.dll [MS]c:\windows\system32\msi.dll [MS]c:\windows\system32\sxs.dll [MS]c:\windows\system32\wbem\wbemcore.dll [MS]c:\windows\system32\msvcp60.dll [MS]c:\windows\system32\wbem\esscli.dll [MS]c:\windows\system32\wbem\fastprox.dll [MS]c:\windows\system32\comsvcs.dll [MS]c:\windows\system32\colbact.dll [MS]c:\windows\system32\mtxclu.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\clusapi.dll [MS]c:\windows\system32\resutils.dll [MS]c:\windows\system32\wbem\wbemsvc.dll [MS]c:\windows\system32\wbem\wmiutils.dll [MS]c:\windows\system32\wbem\repdrvfs.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\wbem\wmiprvsd.dll [MS]c:\windows\system32\ncobjapi.dll [MS]c:\windows\system32\wbem\wbemess.dll [MS]c:\windows\system32\netcfgx.dll [MS]c:\windows\system32\rasmans.dll [MS]c:\windows\system32\winipsec.dll [MS]c:\windows\system32\tapisrv.dll [MS]c:\windows\system32\psapi.dll [MS]c:\windows\system32\rastapi.dll [MS]c:\windows\system32\unimdm.tsp [MS]c:\windows\system32\uniplat.dll [MS]c:\windows\system32\wbem\ncprov.dll [MS]c:\windows\system32\unimdmat.dll [MS]c:\windows\system32\modemui.dll [MS]c:\windows\system32\kmddsp.tsp [MS]c:\windows\system32\ndptsp.tsp [MS]c:\windows\system32\ipconf.tsp [MS]c:\windows\system32\h323.tsp [MS]c:\windows\system32\hidphone.tsp [MS]c:\windows\system32\hid.dll [MS]c:\windows\system32\rasppp.dll [MS]c:\windows\system32\ntlsapi.dll [MS]c:\windows\system32\kerberos.dll [MS]c:\windows\system32\cryptdll.dll [MS]c:\windows\system32\rasdlg.dll [MS]c:\windows\system32\apphelp.dll svchost.exe=c:\windows\system32\svchost.exe [MS]c:\windows\system32\svchost.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\dnsrslvr.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll svchost.exe=c:\windows\system32\svchost.exe [MS]c:\windows\system32\svchost.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\ntmarta.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\lmhsvc.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\ssdpsrv.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\wshtcpip.dll spoolsv.exe=c:\windows\system32\spoolsv.exe [NOMS]c:\windows\system32\hpdcmon.dll [MS]c:\windows\system32\spoolsv.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\spoolss.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\localspl.dll [MS]c:\windows\system32\sfc_os.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\cnbjmon.dll [MS]c:\windows\system32\pjlmon.dll [MS]c:\windows\system32\tcpmon.dll [MS]c:\windows\system32\usbmon.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\winrnr.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\win32spl.dll [MS]c:\windows\system32\netrap.dll [MS]c:\windows\system32\ntdsapi.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\inetpp.dll Explorer.EXE=c:\windows\explorer.exe [NOMS]c:\program files\thunder network\thunder\comdlls\xunleibho_007.dll [NOMS]c:\windows\system32\ravext.dll [NOMS]c:\windows\system32\kmon.dll [MS]c:\windows\explorer.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\browseui.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\shdocvw.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\cryptui.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\cscui.dll [MS]c:\windows\system32\cscdll.dll [MS]c:\windows\system32\themeui.dll [MS]c:\windows\system32\msimg32.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\actxprxy.dll [MS]c:\windows\system32\msutb.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\linkinfo.dll [MS]c:\windows\system32\ntshrui.dll [MS]c:\windows\system32\atl.dll [MS]c:\windows\system32\msi.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\webcheck.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\stobject.dll [MS]c:\windows\system32\batmeter.dll [MS]c:\windows\system32\powrprof.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\wdmaud.drv [MS]c:\windows\system32\msacm32.drv [MS]c:\windows\system32\midimap.dll [MS]c:\windows\system32\netshell.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\credui.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\mpr.dll [MS]c:\windows\system32\drprov.dll [MS]c:\windows\system32\ntlanman.dll [MS]c:\windows\system32\netui0.dll [MS]c:\windows\system32\netui1.dll [MS]c:\windows\system32\netrap.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\davclnt.dll [MS]c:\windows\system32\sxs.dll [MS]c:\windows\system32\shdoclc.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\printui.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\activeds.dll [MS]c:\windows\system32\adsldpc.dll [MS]c:\windows\system32\cfgmgr32.dll [MS]c:\windows\system32\browselc.dll [MS]c:\windows\system32\msgina.dll [MS]c:\windows\system32\odbc32.dll [MS]c:\windows\system32\comdlg32.dll [MS]c:\windows\system32\odbcint.dll [MS]c:\windows\system32\duser.dll [MS]c:\windows\system32\mlang.dll [MS]c:\program files\microsoft office\office11\msohev.dll [MS]c:\windows\system32\shimgvw.dll [MS]c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\gdiplus.dll [MS]c:\windows\system32\mscms.dll svchost.exe=c:\windows\system32\svchost.exe [MS]c:\windows\system32\svchost.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\ntmarta.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\webclnt.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\wsock32.dll ctfmon.exe=c:\windows\system32\ctfmon.exe [NOMS]c:\windows\system32\kmon.dll [MS]c:\windows\system32\ctfmon.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\msutb.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\msctfime.ime alg.exe=c:\windows\system32\alg.exe [NOMS]c:\program files\rising\antispyware\syslay.dll [NOMS]c:\program files\rising\antispyware\comx3.dll [NOMS]c:\windows\system32\kmon.dll [MS]c:\windows\system32\alg.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\atl.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\shimeng.dll [MS]c:\windows\apppatch\acgenral.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll iexplore.exe=c:\program files\internet explorer\iexplore.exe [NOMS]c:\windows\system32\jpwb.ime [NOMS]c:\windows\system32\macromed\flash\flash9b.ocx [NOMS]c:\program files\rising\rav\ravscrch.dll [NOMS]c:\program files\rising\antispyware\urlrule.dll [NOMS]c:\windows\system32\urlfilter.dll [NOMS]c:\program files\thunder network\thunder\comdlls\xunleibho_007.dll [NOMS]c:\program files\rising\antispyware\syslay.dll [NOMS]c:\program files\rising\antispyware\comx3.dll [NOMS]c:\windows\system32\kmon.dll [MS]c:\program files\internet explorer\iexplore.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\shdocvw.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\cryptui.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\browseui.dll [MS]c:\windows\system32\browselc.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\cscui.dll [MS]c:\windows\system32\cscdll.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\atl.dll [MS]c:\windows\system32\mshtml.dll [MS]c:\windows\system32\msls31.dll [MS]c:\windows\system32\psapi.dll [MS]c:\windows\system32\shdoclc.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\mlang.dll [MS]c:\windows\system32\sxs.dll [MS]c:\windows\system32\msimtf.dll [MS]c:\program files\microsoft office\office11\msohev.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\sensapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\jscript.dll [MS]c:\windows\system32\vbscript.dll [MS]c:\windows\system32\mfc42.dll [MS]c:\windows\system32\mfc42loc.dll [MS]c:\windows\system32\mshtmled.dll [MS]c:\windows\system32\actxprxy.dll [MS]c:\windows\system32\wdmaud.drv [MS]c:\windows\system32\msacm32.drv [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\midimap.dll [MS]c:\windows\system32\imgutil.dll [MS]c:\windows\system32\comdlg32.dll [MS]c:\windows\system32\dxtrans.dll [MS]c:\windows\system32\ddrawex.dll [MS]c:\windows\system32\ddraw.dll [MS]c:\windows\system32\dciman32.dll [MS]c:\windows\system32\dxtmsft.dll [MS]c:\windows\system32\schannel.dll [MS]c:\windows\system32\iepeers.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\msxml3.dll [MS]c:\windows\system32\winpy.ime [MS]c:\windows\system32\winabc.ime [MS]c:\windows\system32\mpr.dll [MS]c:\windows\system32\drprov.dll [MS]c:\windows\system32\ntlanman.dll [MS]c:\windows\system32\netui0.dll [MS]c:\windows\system32\netui1.dll [MS]c:\windows\system32\netrap.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\davclnt.dll [MS]c:\windows\system32\msgina.dll [MS]c:\windows\system32\odbc32.dll [MS]c:\windows\system32\odbcint.dll [MS]c:\windows\system32\sfc_os.dll [MS]c:\windows\system32\wuapi.dll iexplore.exe=c:\program files\internet explorer\iexplore.exe [NOMS]c:\windows\system32\spool\drivers\w32x86\2\hpbfgf1i.dll [NOMS]c:\windows\system32\spool\drivers\w32x86\2\hpbfgf3i.dll [NOMS]c:\windows\system32\spool\drivers\w32x86\2\hpbfgf7i.dll [NOMS]c:\windows\system32\spool\drivers\w32x86\2\hpbfgf0i.dll [NOMS]c:\program files\rising\rav\ravscrch.dll [NOMS]c:\program files\rising\antispyware\urlrule.dll [NOMS]c:\windows\system32\urlfilter.dll [NOMS]c:\program files\thunder network\thunder\comdlls\xunleibho_007.dll [NOMS]c:\program files\rising\antispyware\syslay.dll [NOMS]c:\program files\rising\antispyware\comx3.dll [NOMS]c:\windows\system32\kmon.dll [MS]c:\program files\internet explorer\iexplore.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\shdocvw.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\cryptui.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\wldap32.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\browseui.dll [MS]c:\windows\system32\browselc.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\atl.dll [MS]c:\windows\system32\mshtml.dll [MS]c:\windows\system32\msls31.dll [MS]c:\windows\system32\psapi.dll [MS]c:\windows\system32\shdoclc.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\mlang.dll [MS]c:\windows\system32\sxs.dll [MS]c:\windows\system32\msimtf.dll [MS]c:\program files\microsoft office\office11\msohev.dll [MS]c:\windows\system32\mpr.dll [MS]c:\windows\system32\drprov.dll [MS]c:\windows\system32\ntlanman.dll [MS]c:\windows\system32\netui0.dll [MS]c:\windows\system32\netui1.dll [MS]c:\windows\system32\netrap.dll [MS]c:\windows\system32\samlib.dll [MS]c:\windows\system32\davclnt.dll [MS]c:\windows\system32\msgina.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\odbc32.dll [MS]c:\windows\system32\comdlg32.dll [MS]c:\windows\system32\odbcint.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\sensapi.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\wdmaud.drv [MS]c:\windows\system32\msacm32.drv [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\midimap.dll [MS]c:\windows\system32\schannel.dll [MS]c:\windows\system32\ddrawex.dll [MS]c:\windows\system32\ddraw.dll [MS]c:\windows\system32\dciman32.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\jscript.dll [MS]c:\windows\system32\vbscript.dll [MS]c:\windows\system32\mfc42.dll [MS]c:\windows\system32\mfc42loc.dll [MS]c:\windows\system32\mshtmled.dll [MS]c:\windows\system32\actxprxy.dll [MS]c:\windows\system32\msi.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\msratelc.dll [MS]c:\windows\system32\msvcirt.dll [MS]c:\windows\system32\compstui.dll [MS]c:\windows\system32\msimg32.dll [MS]c:\windows\system32\dispex.dll [MS]c:\windows\system32\printui.dll [MS]c:\windows\system32\activeds.dll [MS]c:\windows\system32\adsldpc.dll [MS]c:\windows\system32\cfgmgr32.dll WINWORD.EXE=c:\program files\microsoft office\office11\winword.exe [NOMS]c:\windows\system32\spool\drivers\w32x86\2\hpbfgf1i.dll [NOMS]c:\windows\system32\spool\drivers\w32x86\2\hpbfgf3i.dll [NOMS]c:\windows\system32\spool\drivers\w32x86\2\hpbfgf7i.dll [NOMS]c:\windows\system32\spool\drivers\w32x86\2\hpbfgf0i.dll [NOMS]c:\program files\rising\rav\scanprxy.dll [NOMS]c:\program files\rising\rav\combase.dll [NOMS]c:\windows\system32\jpwb.ime [NOMS]c:\program files\rising\rav\rsplugin.dll [NOMS]c:\program files\rising\antispyware\syslay.dll [NOMS]c:\program files\rising\antispyware\comx3.dll [NOMS]c:\windows\system32\kmon.dll [MS]c:\program files\microsoft office\office11\winword.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\program files\common files\microsoft shared\office11\mso.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\program files\common files\microsoft shared\office11\riched20.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\sxs.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\shell32.dll [MS]c:\windows\system32\comctl32.dll [MS]c:\windows\system32\msi.dll [MS]c:\progra~1\micros~2\office11\addins\syminput.dll [MS]c:\windows\system32\msvbvm60.dll [MS]c:\program files\common files\microsoft shared\proof\msspell3.dll [MS]c:\program files\common files\microsoft shared\proof\1033\msgr3en.dll [MS]c:\windows\system32\comdlg32.dll [MS]c:\program files\microsoft office\office11\msostyle.dll [MS]c:\windows\system32\hlink.dll [MS]c:\windows\system32\setupapi.dll [MS]c:\windows\system32\apphelp.dll [MS]c:\progra~1\common~1\micros~1\webfol~1\msonsext.dll [MS]c:\progra~1\common~1\micros~1\webfol~1\pkmws.dll [MS]c:\windows\system32\wininet.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\wsock32.dll [MS]c:\windows\system32\ws2_32.dll [MS]c:\windows\system32\ws2help.dll [MS]c:\windows\system32\rasapi32.dll [MS]c:\windows\system32\rasman.dll [MS]c:\windows\system32\tapi32.dll [MS]c:\windows\system32\rtutils.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\msv1_0.dll [MS]c:\windows\system32\iphlpapi.dll [MS]c:\windows\system32\sensapi.dll [MS]c:\windows\system32\userenv.dll [MS]c:\windows\system32\rsaenh.dll [MS]c:\windows\system32\mswsock.dll [MS]c:\windows\system32\dnsapi.dll [MS]c:\windows\system32\rasadhlp.dll [MS]c:\windows\system32\hnetcfg.dll [MS]c:\windows\system32\wshtcpip.dll [MS]c:\windows\system32\msvcp71.dll [MS]c:\windows\system32\msvcr71.dll [MS]c:\windows\system32\actxprxy.dll [MS]c:\progra~1\common~1\micros~1\vba\vba6\vbe6.dll [MS]c:\progra~1\common~1\micros~1\vba\vba6\2052\vbe6intl.dll [MS]c:\windows\system32\imeshare.dll [MS]c:\windows\system32\msimg32.dll [MS]c:\windows\system32\winspool.drv [MS]c:\windows\system32\msvcirt.dll [MS]c:\windows\system32\compstui.dll AgentSvr.exe=c:\windows\msagent\agentsvr.exe [NOMS]c:\program files\rising\antispyware\syslay.dll [NOMS]c:\program files\rising\antispyware\comx3.dll [NOMS]c:\windows\system32\kmon.dll [MS]c:\windows\msagent\agentsvr.exe [MS]c:\windows\system32\ntdll.dll [MS]c:\windows\system32\kernel32.dll [MS]c:\windows\system32\msvcrt.dll [MS]c:\windows\system32\advapi32.dll [MS]c:\windows\system32\rpcrt4.dll [MS]c:\windows\system32\secur32.dll [MS]c:\windows\system32\gdi32.dll [MS]c:\windows\system32\user32.dll [MS]c:\windows\system32\ole32.dll [MS]c:\windows\system32\oleaut32.dll [MS]c:\windows\system32\imm32.dll [MS]c:\windows\system32\lpk.dll [MS]c:\windows\system32\usp10.dll [MS]c:\windows\system32\wtsapi32.dll [MS]c:\windows\system32\winsta.dll [MS]c:\windows\system32\netapi32.dll [MS]c:\windows\system32\urlmon.dll [MS]c:\windows\system32\shlwapi.dll [MS]c:\windows\system32\version.dll [MS]c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll [MS]c:\windows\system32\uxtheme.dll [MS]c:\windows\system32\msctf.dll [MS]c:\windows\system32\msctfime.ime [MS]c:\windows\system32\clbcatq.dll [MS]c:\windows\system32\comres.dll [MS]c:\windows\system32\xpsp2res.dll [MS]c:\windows\msagent\agentdp2.dll [MS]c:\windows\system32\sxs.dll [MS]c:\windows\system32\winmm.dll [MS]c:\windows\system32\msacm32.dll [MS]c:\windows\system32\wintrust.dll [MS]c:\windows\system32\crypt32.dll [MS]c:\windows\system32\msasn1.dll [MS]c:\windows\system32\imagehlp.dll [MS]c:\windows\system32\wdmaud.drv [MS]c:\windows\system32\msacm32.drv [MS]c:\windows\system32\midimap.dll 2:当前运行中的服务情况: 第三方服务 [NOMS]winachsf c:\windows\system32\drivers\hsfcxts2.sys 2004-08-03 [NOMS]ULSATA2 c:\windows\system32\drivers\ulsata2.sys 2006-10-04 [NOMS]ULSATA c:\windows\system32\drivers\ulsata.sys 2006-10-04 [NOMS]sym_u3 c:\windows\system32\drivers\sym_u3.sys 2001-08-17 [NOMS]sym_hi c:\windows\system32\drivers\sym_hi.sys 2001-08-17 [NOMS]RTL8023xp c:\windows\system32\drivers\rtnicxp.sys 2006-06-16 [NOMS]RsProtect c:\windows\system32\drivers\rsptect.sys 2009-05-19 [NOMS]RsNTGDI c:\windows\system32\drivers\rsntgdi.sys 2009-05-18 [NOMS]rsfwdrv c:\program files\rising\rfw\rsfwdrv.sys 2009-06-06 [NOMS]rfwtdi c:\program files\rising\rfw\rfwtdi.sys 2009-06-06 [NOMS]RfwTask c:\program files\rising\rfw\ravtask.exe 2009-06-06 [NOMS]RfwBase9 c:\windows\system32\drivers\rfwbase.sys 2009-06-06 [NOMS]RavTask c:\program files\rising\rav\ravtask.exe 2009-05-18 [NOMS]Ptilink c:\windows\system32\drivers\ptilink.sys 2004-08-17 [NOMS]NVRAID c:\windows\system32\drivers\nvraid.sys 2005-08-12 [NOMS]NVATABUS c:\windows\system32\drivers\nvatabus.sys 2006-10-20 [NOMS]mdmxsdk c:\windows\system32\drivers\mdmxsdk.sys 2004-08-03 [NOMS]M5289 c:\windows\system32\drivers\m5289.sys 2005-07-04 [NOMS]M5281 c:\windows\system32\drivers\m5281.sys 2005-03-07 [NOMS]JRAID c:\windows\system32\drivers\jraid.sys 2006-02-15 [NOMS]IASTOR c:\windows\system32\drivers\iastor.sys 2006-06-14 [NOMS]HSF_DP c:\windows\system32\drivers\hsfdpsp2.sys 2004-08-03 [NOMS]HSFHWBS2 c:\windows\system32\drivers\hsfbs2s2.sys 2004-08-03 [NOMS]hooksys c:\windows\system32\drivers\hooksys.sys 2009-05-18 [NOMS]hookcont c:\windows\system32\drivers\hookcont.sys 2009-05-18 [NOMS]FTSATA2 c:\windows\system32\drivers\ftsata2.sys 2005-01-21 [NOMS]FASTTRAK c:\windows\system32\drivers\fasttrak.sys 2003-04-25 [NOMS]CSB6IDE c:\windows\system32\drivers\csb6ide.sys 2002-06-27 [NOMS]ccosm c:\program files\stormii\stormliv.exe 2009-05-08 [NOMS]ati2mtag c:\windows\system32\drivers\ati2mtag.sys 2006-05-04 [NOMS]Ati HotKey Poller c:\windows\system32\ati2evxx.exe 2006-05-04 [NOMS]ALCXWDM c:\windows\system32\drivers\alcxwdm.sys 2006-09-20 [NOMS]ahci8086 c:\windows\system32\drivers\ahci8086.sys 2006-05-18 微软服务 [IsMS]ACPI c:\windows\system32\drivers\acpi.sys 2004-08-16 [IsMS]adpu160m c:\windows\system32\drivers\adpu160m.sys 2001-08-17 [IsMS]AFD c:\windows\system32\drivers\afd.sys 2008-10-16 [IsMS]agp440 c:\windows\system32\drivers\agp440.sys 2004-08-03 [IsMS]aic78u2 c:\windows\system32\drivers\aic78u2.sys 2001-08-17 [IsMS]aic78xx c:\windows\system32\drivers\aic78xx.sys 2001-08-17 [IsMS]ALG c:\windows\system32\alg.exe 2004-08-17 [IsMS]Arp1394 c:\windows\system32\drivers\arp1394.sys 2004-08-17 [IsMS]atapi c:\windows\system32\drivers\atapi.sys 2004-08-17 [IsMS]AudioSrv c:\windows\system32\audiosrv.dll 2004-08-17 [IsMS]audstub c:\windows\system32\drivers\audstub.sys 2001-08-17 [IsMS]Browser c:\windows\system32\browser.dll 2004-08-17 [IsMS]Cdrom c:\windows\system32\drivers\cdrom.sys 2008-05-02 [IsMS]CryptSvc c:\windows\system32\cryptsvc.dll 2004-08-17 [IsMS]DcomLaunch c:\windows\system32\rpcss.dll 2009-02-09 [IsMS]Dhcp c:\windows\system32\dhcpcsvc.dll 2006-05-19 [IsMS]Disk c:\windows\system32\drivers\disk.sys 2004-08-17 [IsMS]dmio c:\windows\system32\drivers\dmio.sys 2004-08-17 [IsMS]dmload c:\windows\system32\drivers\dmload.sys 2004-08-17 [IsMS]dmserver c:\windows\system32\dmserver.dll 2004-08-17 [IsMS]Dnscache c:\windows\system32\dnsrslvr.dll 2008-02-20 [IsMS]Eventlog c:\windows\system32\services.exe 2009-02-09 [IsMS]EventSystem c:\windows\system32\es.dll 2008-07-08 [IsMS]FastUserSwitchingCompatibility c:\windows\system32\shsvcs.dll 2006-12-20 [IsMS]Fdc c:\windows\system32\drivers\fdc.sys 2004-08-17 [IsMS]Flpydisk c:\windows\system32\drivers\flpydisk.sys 2004-08-17 [IsMS]FltMgr c:\windows\system32\drivers\fltmgr.sys 2006-08-21 [IsMS]FsVga c:\windows\system32\drivers\fsvga.sys 2004-08-17 [IsMS]Ftdisk c:\windows\system32\drivers\ftdisk.sys 2004-08-17 [IsMS]Gpc c:\windows\system32\drivers\msgpc.sys 2004-08-17 [IsMS]hidusb c:\windows\system32\drivers\hidusb.sys 2005-06-16 [IsMS]HTTP c:\windows\system32\drivers\http.sys 2006-03-17 [IsMS]i8042prt c:\windows\system32\drivers\i8042prt.sys 2004-08-17 [IsMS]Imapi c:\windows\system32\drivers\imapi.sys 2004-08-17 [IsMS]IntelIde c:\windows\system32\drivers\intelide.sys 2004-08-16 [IsMS]intelppm c:\windows\system32\drivers\intelppm.sys 2004-08-17 [IsMS]IpNat c:\windows\system32\drivers\ipnat.sys 2004-09-30 [IsMS]IPSec c:\windows\system32\drivers\ipsec.sys 2004-08-17 [IsMS]isapnp c:\windows\system32\drivers\isapnp.sys 2004-08-17 [IsMS]Kbdclass c:\windows\system32\drivers\kbdclass.sys 2004-08-17 [IsMS]kmixer c:\windows\system32\drivers\kmixer.sys 2006-06-14 [IsMS]lanmanserver c:\windows\system32\srvsvc.dll 2004-12-08 [IsMS]lanmanworkstation c:\windows\system32\wkssvc.dll 2008-05-05 [IsMS]LmHosts c:\windows\system32\lmhsvc.dll 2004-08-17 [IsMS]Mouclass c:\windows\system32\drivers\mouclass.sys 2004-08-17 [IsMS]mouhid c:\windows\system32\drivers\mouhid.sys 2005-06-16 [IsMS]MRxDAV c:\windows\system32\drivers\mrxdav.sys 2007-12-18 [IsMS]MRxSmb c:\windows\system32\drivers\mrxsmb.sys 2008-10-24 [IsMS]mssmbios c:\windows\system32\drivers\mssmbios.sys 2004-08-17 [IsMS]NdisTapi c:\windows\system32\drivers\ndistapi.sys 2004-08-17 [IsMS]Ndisuio c:\windows\system32\drivers\ndisuio.sys 2004-08-17 [IsMS]NdisWan c:\windows\system32\drivers\ndiswan.sys 2004-08-17 [IsMS]NetBIOS c:\windows\system32\drivers\netbios.sys 2004-08-17 [IsMS]NetBT c:\windows\system32\drivers\netbt.sys 2004-08-17 [IsMS]Netman c:\windows\system32\netman.dll 2005-08-23 [IsMS]NIC1394 c:\windows\system32\drivers\nic1394.sys 2004-08-17 [IsMS]Nla c:\windows\system32\mswsock.dll 2008-06-21 [IsMS]ohci1394 c:\windows\system32\drivers\ohci1394.sys 2004-08-03 [IsMS]Parport c:\windows\system32\drivers\parport.sys 2004-08-17 [IsMS]PCI c:\windows\system32\drivers\pci.sys 2004-08-17 [IsMS]PCIIde c:\windows\system32\drivers\pciide.sys 2004-08-17 [IsMS]PlugPlay c:\windows\system32\services.exe 2009-02-09 [IsMS]PolicyAgent c:\windows\system32\lsass.exe 2004-08-17 [IsMS]PptpMiniport c:\windows\system32\drivers\raspptp.sys 2004-08-17 [IsMS]ProtectedStorage c:\windows\system32\lsass.exe 2004-08-17 [IsMS]PSched c:\windows\system32\drivers\psched.sys 2004-08-17 [IsMS]RasAcd c:\windows\system32\drivers\rasacd.sys 2004-08-17 [IsMS]Rasl2tp c:\windows\system32\drivers\rasl2tp.sys 2004-08-17 [IsMS]RasMan c:\windows\system32\rasmans.dll 2006-06-22 [IsMS]RasPppoe c:\windows\system32\drivers\raspppoe.sys 2004-08-17 [IsMS]Raspti c:\windows\system32\drivers\raspti.sys 2004-08-17 [IsMS]Rdbss c:\windows\system32\drivers\rdbss.sys 2006-05-05 [IsMS]RDPCDD c:\windows\system32\drivers\rdpcdd.sys 2004-08-17 [IsMS]rdpdr c:\windows\system32\drivers\rdpdr.sys 2004-08-03 [IsMS]redbook c:\windows\system32\drivers\redbook.sys 2004-08-16 [IsMS]RpcSs c:\windows\system32\rpcss.dll 2009-02-09 [IsMS]SamSs c:\windows\system32\lsass.exe 2004-08-17 [IsMS]seclogon c:\windows\system32\seclogon.dll 2004-08-17 [IsMS]SENS c:\windows\system32\sens.dll 2004-08-17 [IsMS]serenum c:\windows\system32\drivers\serenum.sys 2004-08-17 [IsMS]Serial c:\windows\system32\drivers\serial.sys 2004-08-17 [IsMS]SharedAccess c:\windows\system32\ipnathlp.dll 2008-04-22 [IsMS]ShellHWDetection c:\windows\system32\shsvcs.dll 2006-12-20 [IsMS]Spooler c:\windows\system32\spoolsv.exe 2005-06-11 [IsMS]Srv c:\windows\system32\drivers\srv.sys 2008-12-11 [IsMS]SSDPSRV c:\windows\system32\ssdpsrv.dll 2004-08-17 [IsMS]swenum c:\windows\system32\drivers\swenum.sys 2004-08-17 [IsMS]sysaudio c:\windows\system32\drivers\sysaudio.sys 2004-08-03 [IsMS]TapiSrv c:\windows\system32\tapisrv.dll 2005-07-09 [IsMS]Tcpip c:\windows\system32\drivers\tcpip.sys 2008-06-20 [IsMS]TermDD c:\windows\system32\drivers\termdd.sys 2004-08-16 [IsMS]TermService c:\windows\system32\termsrv.dll 2004-08-17 [IsMS]Themes c:\windows\system32\shsvcs.dll 2006-12-20 [IsMS]TrkWks c:\windows\system32\trkwks.dll 2004-08-17 [IsMS]Update c:\windows\system32\drivers\update.sys 2004-09-02 [IsMS]usbehci c:\windows\system32\drivers\usbehci.sys 2004-08-03 [IsMS]usbhub c:\windows\system32\drivers\usbhub.sys 2004-08-03 [IsMS]usbohci c:\windows\system32\drivers\usbohci.sys 2004-08-03 [IsMS]usbuhci c:\windows\system32\drivers\usbuhci.sys 2004-08-03 [IsMS]VgaSave c:\windows\system32\drivers\vga.sys 2004-08-17 [IsMS]Wanarp c:\windows\system32\drivers\wanarp.sys 2004-08-17 [IsMS]wdmaud c:\windows\system32\drivers\wdmaud.sys 2006-06-14 [IsMS]WebClient c:\windows\system32\webclnt.dll 2006-01-04 [IsMS]winmgmt c:\windows\system32\wbem\wmisvc.dll 2004-08-17 [IsMS]wscsvc c:\windows\system32\wscsvc.dll 2004-08-17 [IsMS]wuauserv c:\windows\system32\wuauserv.dll 2004-08-17 [IsMS]WZCSVC c:\windows\system32\wzcsvc.dll 2004-08-17 3:当前活动文件情况: soundman.exe [启动值] c:\windows\soundman.exe rstray.exe [启动值] c:\program files\rising\rav\rstray.exe rstray.exe [启动值] c:\program files\rising\antispyware\rstray.exe realsched.exe [启动值] ; "c:\program files\common files\real\update_ob\realsched.exe rstray.exe [启动值] c:\program files\rising\rfw\rstray.exe imjpmig.exe [启动值] ; "c:\windows\ime\imjp8_1\imjpmig.exe tintsetp.exe [启动值] ; c:\windows\system32\ime\tintlgnt\tintsetp.exe tintsetp.exe [启动值] ; c:\windows\system32\ime\tintlgnt\tintsetp.exe ravext.dll [启动值] c:\windows\system32\ravext.dll kmon.dll [启动值] c:\windows\system32\kmon.dll ati2evxx.dll [启动项] c:\windows\system32\ati2evxx.dll msnetmtg.inf [启动项] rundll32.exe advpack.dll,launchinfsection c:\windows\inf\msnetmtg.inf msmsgs.inf [启动项] rundll32.exe advpack.dll,launchinfsection c:\windows\inf\msmsgs.inf rarext.dll [Explorer加载] c:\program files\winrar\rarext.dll ravext.dll [Explorer加载] c:\windows\system32\ravext.dll xunleibho_007.dll [BHO钩子] c:\program files\thunder network\thunder\comdlls\xunleibho_007.dll xunleibho_007.dll [BHO钩子] c:\program files\thunder network\thunder\comdlls\xunleibho_007.dll thunder.exe [IE按钮] c:\program files\thunder network\thunder\thunder.exe geturl.htm [IE右键] c:\program files\thunder network\thunder\program\geturl.htm getallurl.htm [IE右键] c:\program files\thunder network\thunder\program\getallurl.htm excel.exe [IE右键] res://c:\progra~1\micros~2\office11\excel.exe bsurl.htm [IE右键] c:\program files\bitspirit\bsurl.htm ravext.dll [文件右键] c:\windows\system32\ravext.dll rarext.dll [文件右键] c:\program files\winrar\rarext.dll ravext.dll [文件右键] c:\windows\system32\ravext.dll rarext.dll [文件右键] c:\program files\winrar\rarext.dll 4:当前敏感键值情况: 当前IE主页 Software\Microsoft\Internet Explorer\Main [Start Page]=about:blank IE起始页 Software\Microsoft\Internet Explorer\Main [Default_Page_URL]= IE搜索 Software\Microsoft\Internet Explorer\Search [SearchAssistant]=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm 6:内核HOOK情况: NtAssignProcessToJobObject \SystemRoot\system32\drivers\HOOKHELP.sys NtClose \SystemRoot\system32\drivers\RsPtect.sys NtConnectPort \??\C:\Program Files\Rising\Rfw\rfwtdi.sys NtCreateKey \SystemRoot\system32\drivers\HOOKHELP.sys NtCreateMutant \SystemRoot\system32\drivers\HOOKHELP.sys NtCreateProcess \SystemRoot\system32\drivers\HOOKHELP.sys NtCreateProcessEx \SystemRoot\system32\drivers\HOOKHELP.sys NtCreateThread \SystemRoot\system32\drivers\HOOKHELP.sys NtDebugActiveProcess \SystemRoot\system32\drivers\HOOKHELP.sys NtDeleteKey \SystemRoot\system32\drivers\HOOKHELP.sys NtDeleteValueKey \SystemRoot\system32\drivers\HOOKHELP.sys NtDeviceIoControlFile \SystemRoot\system32\drivers\HOOKHELP.sys NtLoadDriver \SystemRoot\system32\drivers\HOOKHELP.sys NtLockVirtualMemory \SystemRoot\system32\drivers\HOOKHELP.sys NtOpenKey \SystemRoot\system32\drivers\HOOKHELP.sys NtOpenProcess \SystemRoot\system32\drivers\HOOKHELP.sys NtOpenSection \SystemRoot\system32\drivers\HOOKHELP.sys NtProtectVirtualMemory \SystemRoot\system32\drivers\HOOKHELP.sys NtQueryDirectoryFile \SystemRoot\system32\drivers\HOOKHELP.sys NtQueryValueKey \SystemRoot\system32\drivers\HOOKHELP.sys NtQueueApcThread \SystemRoot\system32\drivers\HOOKHELP.sys NtReadVirtualMemory \SystemRoot\system32\drivers\RsPtect.sys NtRenameKey \SystemRoot\system32\drivers\HOOKHELP.sys NtRequestWaitReplyPort \SystemRoot\system32\drivers\HOOKHELP.sys NtRestoreKey \SystemRoot\system32\drivers\HOOKHELP.sys NtSetContextThread \SystemRoot\system32\drivers\HOOKHELP.sys NtSetSecurityObject \SystemRoot\system32\drivers\HOOKHELP.sys NtSetSystemInformation \SystemRoot\system32\drivers\HOOKHELP.sys NtSetSystemTime \SystemRoot\system32\drivers\HOOKHELP.sys NtSetValueKey \SystemRoot\system32\drivers\HOOKHELP.sys NtSuspendProcess \SystemRoot\system32\drivers\HOOKHELP.sys NtSuspendThread \SystemRoot\system32\drivers\HOOKHELP.sys NtSystemDebugControl \SystemRoot\system32\drivers\HOOKHELP.sys NtTerminateProcess \SystemRoot\system32\drivers\HOOKHELP.sys NtTerminateThread \SystemRoot\system32\drivers\HOOKHELP.sys NtUnmapViewOfSection \SystemRoot\system32\drivers\HOOKHELP.sys NtWriteVirtualMemory \SystemRoot\system32\drivers\HOOKHELP.sys