System Repair Engineer Smart Scan Log2009-08-05,02:05:28 System Repair Engineer 2.7.1.1261 Smallfrogs (http://www.KZTechs.com) Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能 以下内容被选中: 所有的启动项目(包括注册表、启动文件夹、服务等) 浏览器加载项 正在运行的进程(包括进程模块信息) 文件关联 Winsock 提供者 Autorun.inf HOSTS 文件 进程特权扫描 计划任务 API HOOK 隐藏进程 启动项目 注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] (ctfmon.exe)(C:\WINDOWS\system32\ctfmon.exe) [(Verified)Microsoft Windows Publisher] (PPS Accelerator)(D:\Program Files\PPStream\ppsap.exe) [(Verified)SHANGHAI ZHONGYUAN NETWORKS LIMITED] (IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA})("C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020) [File is missing] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] (load)() [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] (ATICCC)("C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay) [File is missing] (Dell QuickSet)(C:\Program Files\Dell\QuickSet\quickset.exe) [Dell Inc] (VStart5.0)("D:\Program Files\VStart50\VStart.exe") [3L软件工作室(3LSoft)] (runeip)("C:\Program Files\Rising\AntiSpyware\rstray.exe" /startup) [(Verified)Beijing Rising Information Technology Corporation Limited] (RavTray)("C:\Program Files\Rising\Rav\RsTray.exe" -system) [(Verified)Beijing Rising Information Technology Corporation Limited] (SigmatelSysTrayApp)(stsystra.exe) [SigmaTel, Inc.] (Adobe Reader Speed Launcher)("C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe") [(Verified)"Adobe Systems, Incorporated"] (NSLauncher)(C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup) [] (NeroFilterCheck)(C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe) [(Verified)Nero AG] (NBKeyScan)("D:\TIANYUAN\Nero 8\Nero BackItUp\NBKeyScan.exe") [(Verified)Nero AG] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] (shell)(Explorer.exe) [(Verified)Microsoft Windows Component Publisher] (Userinit)(C:\WINDOWS\system32\userinit.exe,) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] (AppInit_DLLs)(kmon.dll) [(Verified)Beijing Rising Information Technology Corporation Limited] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] (UIHost)(C:\WINDOWS\system32\XPSTYLE_ThemePackage\Logonui.exe) [Microsoft Corporation] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] ({AEB6717E-7E19-11d0-97EE-00C04FD91972})(shell32.dll) [(Verified)Microsoft Windows Component Publisher] ({32CD708B-60A7-4C00-9377-D73EAA495F0F})(C:\WINDOWS\system32\RavExt.dll) [(Verified)Beijing Rising Information Technology Corporation Limited] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] (PostBootReminder)(%SystemRoot%\system32\SHELL32.dll) [(Verified)Microsoft Windows Component Publisher] (CDBurn)(%SystemRoot%\system32\SHELL32.dll) [(Verified)Microsoft Windows Component Publisher] (WebCheck)(C:\WINDOWS\system32\webcheck.dll) [(Verified)Microsoft Windows Component Publisher] (SysTray)(C:\WINDOWS\system32\stobject.dll) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] (WinlogonNotify: crypt32chain)(crypt32.dll) [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] (WinlogonNotify: cryptnet)(cryptnet.dll) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] (WinlogonNotify: cscdll)(cscdll.dll) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] (WinlogonNotify: ScCertProp)(wlnotify.dll) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] (WinlogonNotify: Schedule)(wlnotify.dll) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] (WinlogonNotify: sclgntfy)(sclgntfy.dll) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] (WinlogonNotify: SensLogn)(WlNotify.dll) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv] (WinlogonNotify: termsrv)(wlnotify.dll) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] (WinlogonNotify: wlballoon)(wlnotify.dll) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] ({438755C2-A8BA-11D1-B96B-00A0C90312E1})(%SystemRoot%\system32\browseui.dll) [(Verified)Microsoft Windows Component Publisher] ({8C7461EF-2B13-11d2-BE35-3078302C2030})(%SystemRoot%\system32\browseui.dll) [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\({12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] (IE7 Uninstall Stub)(C:\WINDOWS\system32\ieudinit.exe) [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\){22d6f312-b0f6-11d0-94ab-0080c74c7e95}] (Microsoft Windows Media Player)(C:\WINDOWS\inf\unregmp2.exe /ShowWMP) [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\){26923b43-4d38-484f-9b9e-de460746276c}] (Internet Explorer)(C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig) [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\){60B49E34-C7CC-11D0-8953-00A0C90347FF}] (Browser Customizations)(RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP) [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\){60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] (浏览器自定义组件)(RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP) [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\){881dd1c5-3dcf-431b-b061-f3f88e8be88a}] (Outlook Express)(%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE) [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\aetsprov] (N/A)(C:\WINDOWS\system32\regsvr32.exe /s C:\WINDOWS\system32\aetsprov.dll) [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] (Themes Setup)(%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll) [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] (Microsoft Outlook Express 6)("%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install) [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] (NetMeeting 3.01)(rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Remove.PerUser.NT) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] (Windows Messenger 4.7)(rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] (Microsoft Windows Media Player)(rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub) [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] (通讯簿 6)("%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install) [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] (Windows 桌面更新)(regsvr32.exe /s /n /i:U shell32.dll) [(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] (Internet Explorer)(C:\WINDOWS\system32\ie4uinit.exe -BaseSettings) [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] (N/A)(C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install) [Microsoft Corporation] 启动文件夹 [Adobe Gamma Loader] (C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Gamma Loader.lnk --) C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [Adobe Systems, Inc.])(N) [蓝牙控制盘] (C:\Documents and Settings\All Users\「开始」菜单\程序\启动\蓝牙控制盘.lnk --) C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [Broadcom Corporation.])(N) 服务 [3ware Controller Service / 3wareSrv][Stopped/Boot Start] (\SystemRoot\C:\WINDOWS\System32\3wareSrv.exe)((File is missing)) [Adobe LM Service / Adobe LM Service][Stopped/Manual Start] ("C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe")(Adobe Systems) [ASP.NET State Service / aspnet_state][Stopped/Manual Start] (C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe)(Microsoft Corporation) [Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start] (C:\WINDOWS\system32\Ati2evxx.exe)(ATI Technologies Inc.) [Bluetooth Service / btwdins][Running/Auto Start] (C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe)(Broadcom Corporation.) [Contrl Center of Storm Media / ccosm][Running/Auto Start] (D:\Program Files\StormII\stormliv.exe /asservice)(北京暴风网际科技有限公司) [Cmb WebProtect Support / CMBWPS][Running/Auto Start] (C:\Program Files\CMBCHINA\WebProtect\WPService.exe /start)(China Merchants Bank) [Help and Support / helpsvc][Stopped/Disabled] (C:\WINDOWS\System32\svchost.exe -k netsvcs--)%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll)(N/A) [Human Interface Device Access / HidServ][Stopped/Boot Start] (\SystemRoot\C:\WINDOWS\System32\svchost.exe -k netsvcs--)%SystemRoot%\System32\hidserv.dll)(N/A) [NetMeeting Remote Desktop Sharing / mnmsrvc][Stopped/Manual Start] ()((File is missing)) [Nero BackItUp Scheduler 3 / Nero BackItUp Scheduler 3][Running/Auto Start] (D:\TIANYUAN\Nero 8\Nero BackItUp\NBService.exe)(Nero AG) [NICCONFIGSVC / NICCONFIGSVC][Running/Auto Start] (C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe)(Dell Inc.) [NMIndexingService / NMIndexingService][Running/Manual Start] ("C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe")(Nero AG) [nProtect GameGuard Service / npggsvc][Stopped/Manual Start] (C:\WINDOWS\system32\GameMon.des -service)(INCA Internet Co., Ltd.) [PLFlash DeviceIoControl Service / PLFlash DeviceIoControl Service][Running/Auto Start] (C:\WINDOWS\system32\IoctlSvc.exe)(Prolific Technology Inc.) [Rav Process Communication Center / RavCCenter][Stopped/Auto Start] (C:\Program Files\Rising\Rav\CCENTER.EXE)(Beijing Rising Information Technology Co., Ltd.) [Rising RavTask Manager / RavTask][Running/Auto Start] ("C:\Program Files\Rising\Rav\RavTask.exe" RavTask)(Beijing Rising Information Technology Co., Ltd.) [Rising RealTime Monitor / RsRavMon][Stopped/Auto Start] (C:\Program Files\Rising\Rav\RavMonD.exe)(Beijing Rising Information Technology Co., Ltd.) [Rising Scan Service / RsScanSrv][Stopped/Auto Start] (C:\Program Files\Rising\Rav\ScanFrm.exe)(Beijing Rising Information Technology Co., Ltd.) [ServiceLayer / ServiceLayer][Stopped/Manual Start] ("C:\Program Files\PC Connectivity Solution\ServiceLayer.exe")(Nokia.) 驱动程序 [APPDRV / APPDRV][Running/System Start] (\SystemRoot\SYSTEM32\DRIVERS\APPDRV.SYS)(Dell Inc) [ati2mtag / ati2mtag][Running/Manual Start] (system32\DRIVERS\ati2mtag.sys)(ATI Technologies Inc.) [Promise driver accelerator / bb-run][Stopped/Disabled] (\SystemRoot\system32\DRIVERS\bb-run.sys)(Promise Technology, Inc.) [Broadcom 440x 10/100 Integrated Controller XP Driver / bcm4sbxp][Running/Manual Start] (system32\DRIVERS\bcm4sbxp.sys)(Broadcom Corporation) [bortkdh / bortkdh][Running/Boot Start] (\SystemRoot\system32\drivers\qjjdw.sys)(N/A) [蓝牙音频设备 / btaudio][Running/Manual Start] (system32\drivers\btaudio.sys)(Broadcom Corporation.) [蓝牙虚拟通信驱动程序 / BTDriver][Running/Manual Start] (system32\DRIVERS\btport.sys)(Broadcom Corporation.) [蓝牙总线枚举器 / BTKRNL][Running/Manual Start] (system32\DRIVERS\btkrnl.sys)(Broadcom Corporation.) [Bluetooth Serial Driver / BTSERIAL][Running/Auto Start] (\??\C:\WINDOWS\system32\drivers\btserial.sys)(Broadcom Corporation.) [蓝牙局域网接入服务器 / BTWDNDIS][Running/Manual Start] (system32\DRIVERS\btwdndis.sys)(Broadcom Corporation.) [btwhid / btwhid][Stopped/Manual Start] (system32\DRIVERS\btwhid.sys)(Broadcom Corporation.) [蓝牙调制解调器 / btwmodem][Running/Manual Start] (system32\DRIVERS\btwmodem.sys)(Broadcom Corporation.) [WIDCOMM USB Bluetooth Driver / BTWUSB][Running/Manual Start] (System32\Drivers\btwusb.sys)(Broadcom Corporation.) [Dritek Keyboard Filter Driver / DKbFltr][Running/Manual Start] (system32\DRIVERS\DKbFltr.sys)(Dritek System Inc.) [Promise Removable Disk Control Driver / dontgo][Stopped/Disabled] (\SystemRoot\system32\DRIVERS\DontGo.sys)(Promise Technology, Inc.) [usb Card Device / ft2kEnum][Running/Manual Start] (system32\DRIVERS\ic2kenum.sys)(OEM Corporation) [USB Serial Converter Driver / FTDIBUS][Stopped/Manual Start] (system32\drivers\ftdibus.sys)(FTDI Ltd.) [USB Serial Port Driver / FTSER2K][Stopped/Manual Start] (system32\drivers\ftser2k.sys)(FTDI Ltd.) [USB Chip Holder Service / GDBaseSmc][Running/Manual Start] (system32\DRIVERS\Chip_smc.sys)(OEM) [USB Chip Service / GD_USB][Stopped/Manual Start] (system32\DRIVERS\Chip_usb.sys)() [Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start] (system32\DRIVERS\HDAudBus.sys)(Windows (R) Server 2003 DDK provider) [hookcont / hookcont][Running/System Start] (system32\drivers\HookCont.sys)(Beijing Rising Information Technology Co., Ltd.) [hooksys / hooksys][Running/System Start] (system32\drivers\HookSys.sys)(Beijing Rising Information Technology Co., Ltd.) [hptpro / hptpro][Stopped/Boot Start] (\SystemRoot\system32\DRIVERS\hptpro.sys)(HighPoint Technologies, Inc.) [HPTPROr / HPTPROr][Stopped/Boot Start] (\SystemRoot\system32\DRIVERS\HPTPROr.sys)(HighPoint Technologies, Inc.) [HSFHWAZL / HSFHWAZL][Stopped/Manual Start] (system32\DRIVERS\VSTAZL3.SYS)(Conexant Systems, Inc.) [HSF_DPV / HSF_DPV][Running/Manual Start] (system32\DRIVERS\HSX_DPV.sys)(Conexant Systems, Inc.) [HSXHWAZL / HSXHWAZL][Running/Manual Start] (system32\DRIVERS\HSXHWAZL.sys)(Conexant Systems, Inc.) [IOSLINK / IOSLINK][Running/Auto Start] (\??\C:\WINDOWS\system32\drivers\IosLink.sys)(TTR Technologies Ltd.) [mdmxsdk / mdmxsdk][Running/Auto Start] (system32\DRIVERS\mdmxsdk.sys)(Conexant) [Intel(R) Wireless WiFi Link 适配器驱动程序(适用于 Windows XP 32 位) / NETw4x32][Running/Manual Start] (system32\DRIVERS\NETw4x32.sys)(Intel Corporation) [Nokia USB Phone Parent / nmwcd][Stopped/Manual Start] (system32\drivers\nmwcd.sys)(Nokia) [Nokia USB Generic / nmwcdc][Stopped/Manual Start] (system32\drivers\nmwcdc.sys)(Nokia) [Nokia USB Port / nmwcdcj][Stopped/Manual Start] (system32\drivers\nmwcdcj.sys)(Nokia) [Nokia USB Modem / nmwcdcm][Stopped/Manual Start] (system32\drivers\nmwcdcm.sys)(Nokia) [NVIDIA nForce RAID Driver / nvrd32][Stopped/Disabled] (\SystemRoot\system32\DRIVERS\nvrd32.sys)(NVIDIA Corporation) [Direct Parallel Link Driver / Ptilink][Running/Manual Start] (system32\DRIVERS\ptilink.sys)(Parallel Technologies, Inc.) [SmartCard Reader Device / Reader_Device][Running/Manual Start] (system32\DRIVERS\usbic2k.sys)(OEM) [rimmptsk / rimmptsk][Running/Manual Start] (system32\DRIVERS\rimmptsk.sys)(REDC) [rimsptsk / rimsptsk][Running/Manual Start] (system32\DRIVERS\rimsptsk.sys)(REDC) [Ricoh xD-Picture Card Driver / rismxdp][Running/Manual Start] (system32\DRIVERS\rixdptsk.sys)(REDC) [ROCKEYNT / ROCKEYNT][Running/Auto Start] (\??\C:\WINDOWS\system32\drivers\Rockeynt.sys)(FeiTian Tech Co.,Ltd) [Feitian ROCKEY4 USB Service / Rockey_USB][Stopped/Manual Start] (system32\DRIVERS\Rockey4USB.sys)(Feitian Technologies Co., Ltd.) [RsNTGDI / RsNTGDI][Running/Boot Start] (\SystemRoot\system32\Drivers\RsNTGdi.sys)(Beijing Rising Information Technology Co., Ltd.) [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Stopped/Manual Start] (system32\DRIVERS\RTL8139.SYS)(Realtek Semiconductor Corporation) [Secdrv / Secdrv][Stopped/Manual Start] (system32\DRIVERS\secdrv.sys)(Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Prolific Serial port driver / Ser2pl][Stopped/Manual Start] (system32\DRIVERS\ser2pl.sys)(Prolific Technology Inc.) [Sonic Focus Plugin for Sigmatel HDA / sfng32][Stopped/Manual Start] (system32\drivers\sfng32.sys)(Sonic Focus, Inc) [SATALink driver accelerator / SiFilter][Stopped/Disabled] (\SystemRoot\system32\DRIVERS\SiWinAcc.sys)(Silicon Image, Inc.) [SATALink External Device Filter / SiRemFil][Running/Boot Start] (\SystemRoot\system32\DRIVERS\SiRemFil.sys)(Silicon Image, Inc.) [System Restore Filter Driver / sr][Stopped/Disabled] (\SystemRoot\system32\DRIVERS\sr.sys)(N/A) [SigmaTel High Definition Audio CODEC / STHDA][Running/Manual Start] (system32\drivers\sthda.sys)(SigmaTel, Inc.) [TCP/IP Protocol Driver / Tcpip][Running/System Start] (system32\DRIVERS\tcpip.sys)(Microsoft Corporation) [Conexant Setup API / UIUSys][Stopped/Manual Start] (system32\DRIVERS\UIUSYS.SYS)(N/A) [winachsf / winachsf][Running/Manual Start] (system32\DRIVERS\HSX_CNXT.sys)(Conexant Systems, Inc.) [VIA SATA IDE Hot-plug Driver / xfilt][Stopped/Disabled] (\SystemRoot\system32\DRIVERS\xfilt.sys)(VIA Technologies,Inc) 浏览器加载项 [ThunderAtOnce Class] {01443AEC-0FD1-40fd-9C87-E93D1494C233} (C:\Program Files\Thunder Network\Thunder6\ComDlls\TDAtOnce_Now.dll, Xunlei Networking Technologies,LTD) [Adobe PDF Link Helper] {18DF081C-E8AD-4283-A596-FA578C2EBDC3} (C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated) [PIPI Link Helper] {1A3440C6-F123-4CAB-84EE-C814E1AE0D8F} (C:\WINDOWS\system32\JfCheck.dll, (Signed) PIPI Tech.) [Skype add-on (mastermind)] {22BF413B-C6D2-4d91-82A9-A0F997BA588C} (C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.) [WebProtect] {53763D1D-9CA8-4C7C-9756-A8E6B8FC063B} (C:\Program Files\CMBCHINA\WebProtect\WebProtect.dll, (Signed) China Merchants Bank) [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} (C:\Program Files\Thunder Network\Thunder6\ComDlls\xunleiBHO_Now.dll, Xunlei Networking Technologies,LTD) [Windows Live 登录帮助程序] {9030D464-4C02-4ABF-8ECC-5164760863C6} (C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation) [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} (C:\WINDOWS\system32\urlFilter.dll, (Signed) Beijing Rising Information Technology Co., Ltd.) [Skype add-on (button)] {77BF5300-1474-4EC7-9980-D32B190E9B07} (C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.) [SysProWmi Class] {01A88BB1-1174-41EC-ACCB-963509EAE56B} (C:\WINDOWS\system32\Dell\SystemProfiler\SysPro.ocx, Dell Computer Corp.) [Edit Class] {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} (C:\WINDOWS\system32\CMBEdit.dll, ) [iTrusPTA Class] {1E0DFFCF-27FF-4574-849B-55007349FEDA} (C:\WINDOWS\system32\aliedit\pta.dll, (Signed) ) [SFLauncherTDE Class] {8E82893F-7ED1-4811-A247-580DCC0E2629} (C:\WINDOWS\system32\STARTE~1.DLL, ) [ThunderAtOnce Class] {01443AEC-0FD1-40FD-9C87-E93D1494C233} (C:\Program Files\Thunder Network\Thunder6\ComDlls\TDAtOnce_Now.dll, Xunlei Networking Technologies,LTD) [SysProWmi Class] {01A88BB1-1174-41EC-ACCB-963509EAE56B} (C:\WINDOWS\system32\Dell\SystemProfiler\SysPro.ocx, Dell Computer Corp.) [Web Browser Applet Control] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} (C:\WINDOWS\system32\msjava.dll, Microsoft Corporation) [Edit Class] {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} (C:\WINDOWS\system32\CMBEdit.dll, ) [InfosecCertInstall Class] {0EB487C8-E9AC-43A6-8C4C-083999B0622F} (C:\WINDOWS\system32\certInStall.dll, ) [Adobe PDF Link Helper] {18DF081C-E8AD-4283-A596-FA578C2EBDC3} (C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated) [InformationCardSigninHelper Class] {19916E01-B44E-4E31-94A4-4696DF46157B} (C:\WINDOWS\system32\icardie.dll, (Signed) Microsoft Corporation) [] {19EFFC12-25FB-479A-A0F2-1569AE1B3365} (, ) [PIPI Link Helper] {1A3440C6-F123-4CAB-84EE-C814E1AE0D8F} (C:\WINDOWS\system32\JfCheck.dll, (Signed) PIPI Tech.) [iTrusPTA Class] {1E0DFFCF-27FF-4574-849B-55007349FEDA} (C:\WINDOWS\system32\aliedit\pta.dll, (Signed) ) [Skype add-on (mastermind)] {22BF413B-C6D2-4D91-82A9-A0F997BA588C} (C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.) [Windows Media Player] {22D6F312-B0F6-11D0-94AB-0080C74C7E95} (C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation) [HTML Document] {25336920-03F9-11CF-8FD0-00AA00686F13} (C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation) [XML DOM Document] {2933BF90-7B36-11D2-B20E-00C04F983E60} (%SystemRoot%\system32\msxml3.dll, (Signed) N/A) [DHTML Edit Control Safe for Scripting for IE5] {2D360201-FFF5-11D1-8D03-00A0C959BC0A} (C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation) [Tabular Data Control] {333C7BC4-460F-11D0-BC04-0080C7055A83} (C:\WINDOWS\system32\tdc.ocx, (Signed) Microsoft Corporation) [GDGetTokenInfo Class] {3AA9CF07-DF20-48FF-98BE-DED276E40146} (C:\WINDOWS\system32\GDREAD~1.DLL, ) [XML Document] {48123BC4-99D9-11D1-A6B3-00C04FD91555} (%SystemRoot%\system32\msxml3.dll, (Signed) N/A) [Thunder Agent Class] {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} (C:\Program Files\Thunder Network\Thunder6\ComDlls\ThunderAgent_Now.dll, Xunlei Networking Technologies,LTD) [EditCtrl Class] {488A4255-3236-44B3-8F27-FA1AECAA8844} (C:\WINDOWS\system32\aliedit\aliedit.dll, (Signed) ) [WebProtect] {53763D1D-9CA8-4C7C-9756-A8E6B8FC063B} (C:\Program Files\CMBCHINA\WebProtect\WebProtect.dll, (Signed) China Merchants Bank) [InfoSecNetSign Class] {5CB840B5-A94E-4AD9-B785-4866E3B04476} (C:\WINDOWS\system32\ICBCNE~1.DLL, Infosec Technologies Co., Ltd.) [PowerPlayer Control] {5EC7C511-CD0F-42E6-830C-1BD9882F3458} (d:\PROGRA~1\PPStream\110~1.269\POWERP~1.DLL, (Signed) PPStream Inc.) [Jfchk Class] {632C6705-17AB-4407-9281-F60D0A7726BE} (C:\WINDOWS\system32\JfCheck.dll, (Signed) PIPI Tech.) [XMP Class] {6483F145-A768-4C41-AACC-52D4D7845851} (C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work, Xunlei Networking Technologies,LTD) [StormPlayer Object] {6BE52E1D-E586-474F-A6E2-1A85A9B4D9FB} (D:\Program Files\StormII\mps.dll, (Signed) 北京暴风网际科技有限公司) [Windows Media Player] {6BF52A52-394A-11D3-B153-00C04F79FAA6} (C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation) [AxInputControl Class] {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} (C:\WINDOWS\system32\INPUTC~1.DLL, ) [Skype add-on (button)] {77BF5300-1474-4EC7-9980-D32B190E9B07} (C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.) [] {77FEF28E-EB96-44FF-B511-3185DEA48697} (, ) [Microsoft Web Browser] {8856F961-340A-11D0-A96B-00C04FD705A2} (C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation) [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} (C:\Program Files\Thunder Network\Thunder6\ComDlls\xunleiBHO_Now.dll, Xunlei Networking Technologies,LTD) [XML DOM Document 4.0] {88D969C0-F192-11D4-A65F-0040963251E5} (C:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation) [XML HTTP 4.0] {88D969C5-F192-11D4-A65F-0040963251E5} (C:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation) [XML DOM 文档 5.0] {88D969E5-F192-11D4-A65F-0040963251E5} (C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, (Signed) Microsoft Corporation) [XML HTTP 5.0] {88D969EA-F192-11D4-A65F-0040963251E5} (C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, (Signed) Microsoft Corporation) [AxSubmitControl Class] {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} (C:\WINDOWS\system32\SUBMIT~1.DLL, ) [SFLauncherTDE Class] {8E82893F-7ED1-4811-A247-580DCC0E2629} (C:\WINDOWS\system32\STARTE~1.DLL, ) [Windows Live 登录帮助程序] {9030D464-4C02-4ABF-8ECC-5164760863C6} (C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation) [] {9701758C-4373-482E-B13C-776C048EC890} (, ) [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} (C:\WINDOWS\system32\urlFilter.dll, (Signed) Beijing Rising Information Technology Co., Ltd.) [] {9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9B} (, ) [] {A01EB014-728E-44A0-9D1E-A4FC50ABE890} (, ) [] {A7F05EE4-0426-454F-8013-C41E3596E9E9} (, ) [DapCtrl Class] {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} (C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.1.600.60.(401).dll, ShenZhen Thunder Networking Technologies Ltd.) [] {B580CF65-E151-49C3-B73F-70B13FCA8E86} (, ) [] {B69003B3-C55E-4B48-836C-BC5946FC3B28} (C:\Program Files\Messenger\msgsc.dll, N/A) [FTNUpload Class] {BDEACC50-F56D-4D60-860F-CF6ED1766D65} (D:\Program Files\Tencent\QQ2009\Bin\TXFTNActiveX.dll, (Signed) Tencent) [QQPlayerCtrl Class] {CD108273-D434-43E6-AA90-1469F97EB398} (D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.QQMusic\bin\QQMusic\QzoneMusic.dll, (Signed) 深圳腾讯科技) [AUDIO__WAV Moniker Class] {CD3AFA7B-B84F-48F0-9393-7EDC34128127} (C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation) [VIDEO__X_MS_ASF Moniker Class] {CD3AFA8F-B84F-48F0-9393-7EDC34128127} (C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation) [VIDEO__X_MS_WMV Moniker Class] {CD3AFA94-B84F-48F0-9393-7EDC34128127} (C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation) [RealPlayer G2 Control] {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} (D:\Program Files\StormII\Codec\rmoc3260.dll, (Signed) RealNetworks, Inc.) [Windows Live 登录控制] {D2517915-48CE-4286-970F-921E881B8C5C} (C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation) [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} (C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx, (Signed) Adobe Systems, Inc.) [Microsoft Silverlight] {DFEAF541-F3E1-4C24-ACAC-99C30715084A} (C:\Program Files\Microsoft Silverlight\2.0.31005.0\npctrl.dll, (Signed) Microsoft Corporation) [PlayerCtrl Class] {E05BC2A3-9A46-4A32-80C9-023A473F5B23} (D:\Program Files\Tencent\QQ2009\Plugin\Com.Tencent.QQMusic\bin\QQMusic\QzoneMusic.dll, (Signed) 深圳腾讯科技) [] {E1771B7F-98BE-407F-BA67-AA16ADA5D0C5} (C:\PROGRA~1\WINDOW~3\MESSEN~1\MSGSC1~1.DLL, (Signed) Microsoft Corporation) [TimwpDll.TimwpCheck] {ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} (D:\PROGRA~1\Tencent\QQ2009\Bin\Timwp.dll, (Signed) Tencent) [XML HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} (%SystemRoot%\system32\msxml3.dll, (Signed) N/A) [XPPlayer Class] {F3E70CEA-956E-49CC-B444-73AFE593AD7F} (C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.0.0.178.(401).dll, Xunlei Networking Technologies,LTD) [XML DOM Document 3.0] {F5078F32-C551-11D3-89B9-0000F81FE221} (%SystemRoot%\system32\msxml3.dll, (Signed) N/A) [Free Threaded XML DOM Document 3.0] {F5078F33-C551-11D3-89B9-0000F81FE221} (%SystemRoot%\system32\msxml3.dll, (Signed) N/A) [XML HTTP 3.0] {F5078F35-C551-11D3-89B9-0000F81FE221} (%SystemRoot%\system32\msxml3.dll, (Signed) N/A) [XSL Template 3.0] {F5078F36-C551-11D3-89B9-0000F81FE221} (%SystemRoot%\system32\msxml3.dll, (Signed) N/A) [XML DOM Document] {F6D90F11-9C73-11D3-B32E-00C04F990BB4} (%SystemRoot%\system32\msxml3.dll, (Signed) N/A) [XML HTTP] {F6D90F16-9C73-11D3-B32E-00C04F990BB4} (%SystemRoot%\system32\msxml3.dll, (Signed) N/A) [使用迅雷下载] (C:\Program Files\Thunder Network\Thunder6\Program\GetUrl.htm, N/A) [使用迅雷下载全部链接] (C:\Program Files\Thunder Network\Thunder6\Program\GetAllUrl.htm, N/A) [发送到 Bluetooth 设备(&B)...] (C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm, N/A) [导出到 Microsoft Office Excel(&X)] (res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A) [添加到QQ表情] (d:\Program Files\Tencent\QQ\AddEmotion.htm, N/A) [百度一下所选文字 (&S)] (C:\Program Files\Common Files\baidu\Baidu.html, N/A) 正在运行的进程 [PID: 496 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 980 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1012 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\system32\Ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4133] [PID: 1056 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.1.2600.3520 (xpsp_sp2_qfe.090206-1239)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1068 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1236 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4133] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2500] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1264 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1324 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1396 / SYSTEM][C:\Program Files\Rising\Rav\CCENTER.EXE] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\Program Files\Rising\Rav\combase.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Program Files\Rising\Rav\cnt09.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 37] [C:\Program Files\Rising\Rav\cnt08.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1404 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\System32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\System32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [PID: 1456 / SYSTEM][C:\Program Files\Rising\Rav\RavTask.exe] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24] [C:\Program Files\Rising\Rav\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Rising\Rav\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.1] [C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.20] [C:\Program Files\Rising\Rav\rstask.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 40] [C:\Program Files\Rising\Rav\rsstub.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1572 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1652 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1684 / SYSTEM][C:\Program Files\Rising\Rav\RavMonD.exe] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\Program Files\Rising\Rav\combase.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Rising\Rav\moncomm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13] [C:\Program Files\Rising\Rav\MonBase.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6] [C:\Program Files\Rising\Rav\Rslog.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\mondrv.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9] [C:\Program Files\Rising\Rav\defmon.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 31] [C:\Program Files\Rising\Rav\moncom08.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1] [C:\Program Files\Rising\Rav\MonRule.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9] [C:\Program Files\Rising\Rav\FileMon.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28] [C:\Program Files\Rising\Rav\MailMon.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24] [C:\Program Files\Rising\Rav\HookWeb.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Program Files\Rising\Rav\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.1] [C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.20] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\Rav\Hooksys.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 18] [C:\Program Files\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [C:\Program Files\Rising\Rav\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [C:\Program Files\Rising\Rav\HookCont.dll] [Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 12] [C:\Program Files\Rising\Rav\rsnetsvr.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14] [C:\Program Files\Rising\Rav\BACore.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 22] [C:\Program Files\Rising\Rav\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\refs.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\Program Files\Rising\Rav\RSStore.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13] [C:\Program Files\Rising\Rav\ScanAdd.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.19] [C:\Program Files\Rising\Rav\Scanner.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.39] [C:\Program Files\Rising\Rav\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\Program Files\Rising\Rav\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\Program Files\Rising\Rav\extfile.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 15] [C:\Program Files\Rising\Rav\ffr.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\nvfile.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\scanexec.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6] [C:\Program Files\Rising\Rav\unexe.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\Program Files\Rising\Rav\scanex.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 55] [C:\Program Files\Rising\Rav\pearc.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\scanpe.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14] [C:\Program Files\Rising\Rav\ur000.dat] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13] [C:\Program Files\Rising\Rav\urutils.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\methodex.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\pecompd.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1] [C:\Program Files\Rising\Rav\heurex.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Program Files\Rising\Rav\revm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 8] [C:\Program Files\Rising\Rav\scansct.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\scriptci.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1] [C:\Program Files\Rising\Rav\ur023.dat] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6] [C:\Program Files\Rising\Rav\ur001.dat] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7] [C:\Program Files\Rising\Rav\extmail.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [PID: 2000 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.1.2600.2696 (xpsp.050610-1527)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\system32\bthcrp.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\WidcommSdk.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\wbtapi.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [C:\WINDOWS\system32\RIPMONNT.DLL] [N/A, ] [PID: 2044 / SYSTEM][C:\Program Files\Rising\Rav\rsnetsvr.exe] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 15] [C:\Program Files\Rising\Rav\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.12] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\system32\aetsprov.dll] [A.E.T. Europe B.V., 2.3.0.9] [PID: 128 / LOCAL SERVICE][C:\WINDOWS\System32\SCardSvr.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\System32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\System32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 856 / Administrator][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4133] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2500] [PID: 936 / Administrator][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_qfe.070613-1311)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ] [C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll] [Nero AG, 3, 1, 0, 13] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 9.0.0.2008061100] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS] [Adobe Systems, Inc., 9.0.0.0] [C:\Program Files\Thunder Network\Thunder6\ComDlls\xunleiBHO_Now.dll] [Xunlei Networking Technologies,LTD, 5, 0, 8, 106] [D:\TIANYUAN\Nero 8\Nero BackItUp\NBShell.dll] [Nero AG, 3, 5, 4, 0] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\WinRAR\rarext.dll] [N/A, ] [D:\TIANYUAN\Nero 8\Nero CoverDesigner\CoverEdExtension.dll] [Nero AG, 3, 3, 3, 0] [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll] [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)] [C:\Program Files\7-Zip\7-zip.dll] [Igor Pavlov, 4.55 beta] [C:\WINDOWS\system32\btncopy.dll] [Broadcom Corporation., 5.0.1.2609] [PID: 1296 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1544 / SYSTEM][C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1568 / SYSTEM][D:\Program Files\StormII\stormliv.exe] [北京暴风网际科技有限公司, 3, 9, 5, 22] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [D:\Program Files\StormII\bfoptdll.dll] [北京暴风网际科技有限公司, 3, 8, 7, 16] [D:\Program Files\StormII\box\BoxLog.dll] [北京暴风网际科技有限公司, 3, 9, 6, 27] [PID: 1692 / SYSTEM][C:\Program Files\CMBCHINA\WebProtect\WPService.exe] [China Merchants Bank, 1, 0, 0, 1] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\CMBCHINA\WebProtect\WebProtectPlus.dll] [China Merchants Bank, 1, 0, 0, 1] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 1880 / SYSTEM][D:\TIANYUAN\Nero 8\Nero BackItUp\NBService.exe] [Nero AG, 3, 5, 4, 0] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [D:\TIANYUAN\Nero 8\Nero BackItUp\NB.dll] [Nero AG, 3, 5, 4, 0] [D:\TIANYUAN\Nero 8\Nero BackItUp\NeroAPIGlueLayerUnicode.dll] [Nero AG, 8.3.6.0] [D:\TIANYUAN\Nero 8\Nero BackItUp\LBFC.dll] [Nero AG, 3, 5, 4, 0] [D:\TIANYUAN\Nero 8\Nero BackItUp\NBHDMgr.dll] [Nero AG, 3, 5, 4, 0] [PID: 404 / SYSTEM][C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe] [Dell Inc., 7, 0, 7, 0] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 456 / SYSTEM][C:\WINDOWS\system32\IoctlSvc.exe] [Prolific Technology Inc., 1, 6, 0, 0] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 608 / SYSTEM][C:\Program Files\Rising\Rav\ScanFrm.exe] [Beijing Rising Information Technology Co., Ltd., 21.0.0.12] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Rising\Rav\combase.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Program Files\Rising\Rav\moncomm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13] [C:\Program Files\Rising\Rav\scansrvp.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.13] [C:\Program Files\Rising\Rav\proccomm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\Program Files\Rising\Rav\ScanSrv.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.10] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\Program Files\Rising\Rav\ScanRavT.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.27] [C:\Program Files\Rising\Rav\ScanBT.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.50] [C:\Program Files\Rising\Rav\ScanStub.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.9] [C:\Program Files\Rising\Rav\RsLog.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\ScanAdd.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.19] [C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.1] [C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.20] [C:\Program Files\Rising\Rav\Scanner.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.39] [C:\Program Files\Rising\Rav\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\refs.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\Program Files\Rising\Rav\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\Program Files\Rising\Rav\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6] [C:\Program Files\Rising\Rav\mvengine.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\posttrt.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\Program Files\Rising\Rav\ffr.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\nvfile.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\scanexec.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6] [C:\Program Files\Rising\Rav\unexe.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\Program Files\Rising\Rav\scanex.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 55] [C:\Program Files\Rising\Rav\pearc.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\scanpe.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14] [C:\Program Files\Rising\Rav\ur000.dat] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13] [C:\Program Files\Rising\Rav\urutils.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\methodex.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\pecompd.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1] [C:\Program Files\Rising\Rav\heurex.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\Program Files\Rising\Rav\revm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 8] [C:\Program Files\Rising\Rav\ur001.dat] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7] [C:\Program Files\Rising\Rav\extfile.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 15] [C:\Program Files\Rising\Rav\rsstore.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13] [C:\Program Files\Rising\Rav\scriptci.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1] [C:\Program Files\Rising\Rav\uroutine.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\extmail.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\Program Files\Rising\Rav\SysMail.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.5] [C:\Program Files\Rising\Rav\scansct.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3] [C:\Program Files\Rising\Rav\extole.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1] [PID: 1348 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 2088 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2672 / SYSTEM][C:\WINDOWS\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 5.1.2600.3520 (xpsp_sp2_qfe.090206-1239)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 2932 / Administrator][C:\Program Files\ATI Technologies\ATI.ACE\cli.exe] [ATI Technologies Inc., 1.11.0.0] [C:\WINDOWS\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_28e35723\mscorlib.dll] [N/A, ] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_029dc339\system.windows.forms.dll] [N/A, ] [c:\program files\ati technologies\ati.ace\cli.implementation.dll] [ATI Technologies Inc., 1.2.2334.37009] [c:\program files\ati technologies\ati.ace\log.foundation.dll] [ATI Technologies Inc., 1.2.2208.29985] [c:\program files\ati technologies\ati.ace\cli.foundation.dll] [ATI Technologies Inc., 1.2.2208.29986] [c:\program files\ati technologies\ati.ace\log.foundation.service.dll] [ATI Technologies Inc., 1.2.2334.37166] [c:\program files\ati technologies\ati.ace\log.foundation.shared.dll] [ATI Technologies Inc., 1.2.2208.29991] [c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_06f7a635\system.dll] [N/A, ] [c:\program files\ati technologies\ati.ace\cli.foundation.xmanifestation.dll] [ATI Technologies Inc., 1.2.2334.37166] [c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_02116034\system.xml.dll] [N/A, ] [c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll] [Microsoft Corporation, 1.1.4322.573] [c:\program files\ati technologies\ati.ace\cli.component.runtime.dll] [ATI Technologies Inc., 1.2.2334.37170] [c:\program files\ati technologies\ati.ace\aticccom.dll] [ATI Technologies Inc., 1.0.0.0] [c:\program files\ati technologies\ati.ace\aem.foundation.dll] [ATI Technologies Inc., 1.2.2208.29985] [c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_96f152de\system.drawing.dll] [N/A, ] [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll] [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)] [c:\program files\ati technologies\ati.ace\cli.caste.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29987] [c:\program files\ati technologies\ati.ace\cli.caste.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37161] [c:\program files\ati technologies\ati.ace\cli.component.runtime.shared.dll] [ATI Technologies Inc., 1.2.2208.29988] [c:\program files\ati technologies\ati.ace\dem.foundation.dll] [ATI Technologies Inc., 1.11.0.0] [c:\program files\ati technologies\ati.ace\dem.graphics.i0601.dll] [ATI Technologies Inc., 1.11.0.0] [c:\program files\ati technologies\ati.ace\ace.graphics.displaysmanager.shared.dll] [ATI Technologies Inc., 1.11.0.0] [c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\system32\atidemgr.dll] [ATI Technologies Inc., 1.2.2334.36992] [c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\perfcounter.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll] [Microsoft Corporation, 1.1.4322.573] [c:\program files\ati technologies\ati.ace\cli.aspect.multivpu3.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37044] [c:\program files\ati technologies\ati.ace\cli.aspect.multivpu3.graphics.shared.dll] [ATI Technologies Inc., 1.2.2302.19274] [c:\program files\ati technologies\ati.ace\cli.aspect.multivpu2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37006] [c:\program files\ati technologies\ati.ace\cli.aspect.multivpu2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29991] [c:\program files\ati technologies\ati.ace\cli.aspect.multivpu.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37067] [c:\program files\ati technologies\ati.ace\cli.aspect.multivpu.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30001] [c:\program files\ati technologies\ati.ace\cli.aspect.verylargedesktop.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37044] [c:\program files\ati technologies\ati.ace\cli.aspect.verylargedesktop.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29993] [c:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37083] [c:\program files\ati technologies\ati.ace\cli.aspect.radeon3dlegacy.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37081] [c:\program files\ati technologies\ati.ace\cli.aspect.displayscolour2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37049] [c:\program files\ati technologies\ati.ace\cli.aspect.displayscolour2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30007] [c:\program files\ati technologies\ati.ace\cli.aspect.displayscolour.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37112] [c:\program files\ati technologies\ati.ace\cli.aspect.displayscolour.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29990] [c:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37097] [c:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30001] [c:\program files\ati technologies\ati.ace\cli.aspect.videooverlay.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37075] [c:\program files\ati technologies\ati.ace\cli.aspect.videooverlay.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29989] [c:\program files\ati technologies\ati.ace\ace.graphics.videooverlay.shared.dll] [ATI Technologies Inc., 1.11.0.0] [c:\program files\ati technologies\ati.ace\cli.aspect.smartgart.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37078] [c:\program files\ati technologies\ati.ace\cli.aspect.vpurecover.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37072] [c:\program files\ati technologies\ati.ace\cli.aspect.vpurecover.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29988] [c:\program files\ati technologies\ati.ace\cli.aspect.workstationconfig.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37069] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecrt.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37133] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecrt.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29147] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecrt2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37055] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecrt2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29162] [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37124] [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29994] [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37049] [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29993] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37129] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29179] [c:\program files\ati technologies\ati.ace\cli.aspect.customformats.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29132] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37058] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29197] [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37120] [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37116] [c:\program files\ati technologies\ati.ace\cli.aspect.devicedfp.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37126] [c:\program files\ati technologies\ati.ace\cli.aspect.devicedfp.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29212] [c:\program files\ati technologies\ati.ace\cli.aspect.devicedfp2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37052] [c:\program files\ati technologies\ati.ace\cli.aspect.devicedfp2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29221] [c:\program files\ati technologies\ati.ace\cli.aspect.overdrive3.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37090] [c:\program files\ati technologies\ati.ace\cli.aspect.overdrive3.graphics.shared.dll] [ATI Technologies Inc., 1.2.2279.31385] [c:\program files\ati technologies\ati.ace\cli.aspect.overdrive2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37095] [c:\program files\ati technologies\ati.ace\cli.aspect.powerplay3.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37087] [c:\program files\ati technologies\ati.ace\cli.aspect.powerplay3.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29989] [c:\program files\ati technologies\ati.ace\cli.aspect.displaysoptions.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37106] [c:\program files\ati technologies\ati.ace\cli.aspect.integratedumaframebuffer.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37101] [c:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37104] [c:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29990] [c:\program files\ati technologies\ati.ace\cli.aspect.hotkeyshandling.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37061] [c:\program files\ati technologies\ati.ace\cli.aspect.hotkeyshandling.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30002] [c:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.shared.dll] [ATI Technologies Inc., 1.2.2232.28756] [c:\program files\ati technologies\ati.ace\cli.aspect.radeon3dlegacy.graphics.shared.dll] [ATI Technologies Inc., 1.2.2232.28758] [c:\program files\ati technologies\ati.ace\dem.graphics.i0600.dll] [ATI Technologies Inc., 1.11.0.0] [c:\program files\ati technologies\ati.ace\cli.aspect.smartgart.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29990] [c:\program files\ati technologies\ati.ace\cli.aspect.workstationconfig.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29988] [c:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29987] [c:\program files\ati technologies\ati.ace\dem.graphics.i0602.dll] [ATI Technologies Inc., 1.11.0.0] [c:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29986] [c:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty2.graphics.runtime.dll] [ATI Technologies Inc., 1.2.2334.37002] [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30001] [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29993] [c:\program files\ati technologies\ati.ace\cli.aspect.overdrive2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2279.31374] [c:\program files\ati technologies\ati.ace\cli.aspect.displaysoptions.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29993] [c:\program files\ati technologies\ati.ace\cli.aspect.integratedumaframebuffer.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29988] [c:\program files\ati technologies\ati.ace\apm.foundation.dll] [ATI Technologies Inc., 1.2.2208.30002] [C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12] [PID: 3184 / Administrator][C:\Program Files\Rising\AntiSpyware\rstray.exe] [Beijing Rising Information Technology Co., Ltd., 21.0.0.17] [C:\Program Files\Rising\AntiSpyware\rsmginfo.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\Program Files\Rising\AntiSpyware\RsXML.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2] [C:\Program Files\Rising\AntiSpyware\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Rising\AntiSpyware\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Rising\AntiSpyware\ComServ.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.31] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\AntiSpyware\rscommon.dll] [Beijing Rising Information Technology Co., Ltd., 20.0.1.1] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\pngdll.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5] [C:\Program Files\Rising\AntiSpyware\runiep.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.43] [C:\Program Files\Rising\AntiSpyware\NComm.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.11] [C:\Program Files\Rising\Rav\ProcCom.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [C:\Program Files\Rising\AntiSpyware\RsCommX2.dll] [Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [C:\Program Files\Rising\AntiSpyware\pscan.dll] [Beijing Rising Information Technology Co., Ltd., 6.0.0.69] [C:\Program Files\Rising\AntiSpyware\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Rising\AntiSpyware\NtLib.dll] [Beijing Rising Information Technology Co., Ltd., 3, 0, 0, 19] [C:\Program Files\Rising\AntiSpyware\SecEx.dll] [Beijing Rising Information Technology Co., Ltd., 3, 0, 0, 12] [PID: 3204 / Administrator][C:\Program Files\Rising\Rav\RsTray.exe] [Beijing Rising Information Technology Co., Ltd., 21.0.0.22] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\Program Files\Rising\Rav\ComServ.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.49] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Rising\Rav\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\Rav\rsxml.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\Program Files\Rising\Rav\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\Program Files\Rising\Rav\MonState.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7] [C:\Program Files\Rising\Rav\ScanEvnt.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.14] [C:\Program Files\Rising\Rav\rsguilib.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 75] [C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Rising\Rav\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.1] [C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.20] [C:\Program Files\Rising\Rav\rspalvd.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.26] [C:\Program Files\Rising\Rav\ravbintl.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 29] [C:\Program Files\Rising\Rav\mruleui.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 10] [C:\Program Files\Rising\Rav\MonTray.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.1.4] [C:\Program Files\Rising\Rav\PngDll.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\RavITray.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 23] [C:\Program Files\Rising\Rav\ScanPrxy.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.17] [C:\Program Files\Rising\Rav\rsmginfo.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11] [PID: 3260 / Administrator][C:\WINDOWS\stsystra.exe] [SigmaTel, Inc., 1.0.4995.1 nd446 cp1] [C:\WINDOWS\system32\STLang.dll] [SigmaTel, Inc., 1.1.4991.0 nd229 cp1] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\system32\stacapi.dll] [SigmaTel, Inc., 1.0.4995.1 nd446 cp1] [PID: 3900 / Administrator][C:\WINDOWS\system32\ctfmon.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 3968 / Administrator][D:\Program Files\PPStream\ppsap.exe] [PPStream Inc, 1, 0, 11, 171] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [d:\Program Files\PPStream\1.1.0.2690\Vodnet.dll] [PPStream Inc., 1, 0, 11, 234] [d:\Program Files\PPStream\1.1.0.2690\vodres.dll] [PPStream Inc., 1, 0, 11, 236] [D:\Program Files\PPStream\ppssg.dll] [PPStream Inc., 1, 0, 11, 230] [d:\Program Files\PPStream\1.1.0.2690\fds.dll] [PPStream Inc., 1, 0, 0, 101] [PID: 4008 / Administrator][C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\NMSQLDB.dll] [Nero AG, 3.3.9.0] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\Program Files\Common Files\Nero\Lib\NMLogCxx.dll] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\log4cxx.dll] [Nero AG, 1, 0, 1, 0] [C:\Program Files\Common Files\Nero\Lib\NMIndexingServicePS.dll] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\NMCoFoundation.dll] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\NMPluginBase.dll] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\NMFullTextExtraction.dll] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\NMSearchPluginSimilarImages.dll] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\NMDataServices.dll] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvrPS.dll] [Nero AG, 3.3.9.0] [PID: 732 / Administrator][C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\wbtapi.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [C:\WINDOWS\system32\btosif.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\btwhidcs.DLL] [Broadcom Corporation., 5.0.1.2609] [C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\WINDOWS\system32\btrez.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\CSH.dll] [Blue Sky Software Corporation, 2.00.039] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ] [PID: 1132 / SYSTEM][C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe] [Nero AG, 3.3.9.0] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\Program Files\Common Files\Nero\Lib\NMIndexingServicePS.dll] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\NMLogCxx.dll] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\log4cxx.dll] [Nero AG, 1, 0, 1, 0] [C:\Program Files\Common Files\Nero\Lib\NMDataServices.dll] [Nero AG, 3.3.9.0] [C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvrPS.dll] [Nero AG, 3.3.9.0] [PID: 2456 / Administrator][C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\btins.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [C:\WINDOWS\system32\btosif.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\BtAudioHelper.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\WINDOWS\system32\btrez.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\CSH.dll] [Blue Sky Software Corporation, 2.00.039] [C:\WINDOWS\system32\btosif_ol.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\btosif_olx.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\btosif_notes.dll] [Broadcom Corporation., 5.0.1.2609] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [PID: 3764 / Administrator][C:\Program Files\ATI Technologies\ATI.ACE\cli.exe] [ATI Technologies Inc., 1.11.0.0] [C:\WINDOWS\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_28e35723\mscorlib.dll] [N/A, ] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_029dc339\system.windows.forms.dll] [N/A, ] [c:\program files\ati technologies\ati.ace\cli.implementation.dll] [ATI Technologies Inc., 1.2.2334.37009] [c:\program files\ati technologies\ati.ace\log.foundation.dll] [ATI Technologies Inc., 1.2.2208.29985] [c:\program files\ati technologies\ati.ace\cli.foundation.dll] [ATI Technologies Inc., 1.2.2208.29986] [c:\program files\ati technologies\ati.ace\log.foundation.service.dll] [ATI Technologies Inc., 1.2.2334.37166] [c:\program files\ati technologies\ati.ace\log.foundation.shared.dll] [ATI Technologies Inc., 1.2.2208.29991] [c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_06f7a635\system.dll] [N/A, ] [c:\program files\ati technologies\ati.ace\cli.foundation.xmanifestation.dll] [ATI Technologies Inc., 1.2.2334.37166] [c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_02116034\system.xml.dll] [N/A, ] [c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll] [Microsoft Corporation, 1.1.4322.573] [c:\program files\ati technologies\ati.ace\cli.component.wizard.dll] [ATI Technologies Inc., 1.2.2334.37036] [c:\program files\ati technologies\ati.ace\cli.foundation.clients.dll] [ATI Technologies Inc., 1.2.2208.29986] [c:\program files\ati technologies\ati.ace\cli.component.wizard.shared.dll] [ATI Technologies Inc., 1.2.2208.29987] [c:\program files\ati technologies\ati.ace\cli.component.runtime.dll] [ATI Technologies Inc., 1.2.2334.37170] [c:\program files\ati technologies\ati.ace\aticccom.dll] [ATI Technologies Inc., 1.0.0.0] [c:\program files\ati technologies\ati.ace\cli.caste.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29987] [c:\program files\ati technologies\ati.ace\aem.foundation.dll] [ATI Technologies Inc., 1.2.2208.29985] [c:\program files\ati technologies\ati.ace\ace.graphics.displaysmanager.shared.dll] [ATI Technologies Inc., 1.11.0.0] [c:\program files\ati technologies\ati.ace\cli.caste.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2334.37039] [c:\program files\ati technologies\ati.ace\cli.caste.graphics.wizard.shared.dll] [ATI Technologies Inc., 1.2.2208.29990] [c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll] [Microsoft Corporation, 1.1.4322.573] [c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_96f152de\system.drawing.dll] [N/A, ] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2334.37026] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2334.37030] [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2334.37021] [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2334.37044] [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2334.37017] [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv2.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2334.37019] [c:\program files\ati technologies\ati.ace\cli.aspect.displaysmanager.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2334.37033] [c:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.wizard.dll] [ , 1.2.2334.37009] [c:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2334.37012] [c:\program files\ati technologies\ati.ace\cli.aspect.transcode.local.wizard.dll] [ATI Technologies Inc., 1.2.2334.37006] [c:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.wizard.dll] [ATI Technologies Inc., 1.2.2334.37014] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29179] [c:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29987] [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29197] [c:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29986] [c:\program files\ati technologies\ati.ace\cli.aspect.customformats.graphics.shared.dll] [ATI Technologies Inc., 1.2.2236.29132] [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29994] [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29993] [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29993] [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30001] [c:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.shared.dll] [ATI Technologies Inc., 1.2.2232.28756] [c:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.30001] [c:\program files\ati technologies\ati.ace\cli.aspect.transcode.local.shared.dll] [ATI Technologies Inc., 1.2.0.0] [c:\program files\ati technologies\ati.ace\atixclib.dll] [ , 1.0.0.0] [c:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.shared.dll] [ATI Technologies Inc., 1.2.2208.29990] [c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\perfcounter.dll] [Microsoft Corporation, 1.1.4322.573] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll] [Microsoft Corporation, 1.1.4322.573] [PID: 4708 / Administrator][C:\Program Files\Internet Explorer\IEXPLORE.EXE] [Microsoft Corporation, 7.00.6000.16850 (vista_gdr.090423-0018)] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll] [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [C:\Program Files\Thunder Network\Thunder6\ComDlls\TDAtOnce_Now.dll] [Xunlei Networking Technologies,LTD, 1, 2, 6, 86] [C:\WINDOWS\system32\ATL71.DLL] [Microsoft Corporation, 7.10.6041.0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll] [Adobe Systems Incorporated, 9.0.0.2008061100] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 9.0.0.2008061100] [C:\WINDOWS\system32\JfCheck.dll] [PIPI Tech., 1, 4, 0, 3] [C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll] [Skype Technologies S.A., 2, 2, 0, 205] [C:\Program Files\Skype\Toolbars\Shared\SPhoneParser.dll] [Skype Technologies, 1, 0, 1, 184] [C:\Program Files\CMBCHINA\WebProtect\WebProtect.dll] [China Merchants Bank, 1, 0, 0, 1] [C:\Program Files\Thunder Network\Thunder6\ComDlls\xunleiBHO_Now.dll] [Xunlei Networking Technologies,LTD, 5, 0, 8, 106] [C:\WINDOWS\system32\urlFilter.dll] [Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15] [C:\Program Files\Rising\AntiSpyware\UrlRule.dll] [Beijing Rising Information Technology Co., Ltd., 1.0.0.15] [C:\WINDOWS\system32\aetsprov.dll] [A.E.T. Europe B.V., 2.3.0.9] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.76] [C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll] [Nero AG, 3, 1, 0, 13] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 9.0.0.2008061100] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS] [Adobe Systems, Inc., 9.0.0.0] [C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx] [Adobe Systems, Inc., 10,0,12,36] [C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ] [C:\WINDOWS\system32\msjava.dll] [Microsoft Corporation, 5.00.3810] [C:\WINDOWS\system32\VMHELPER.DLL] [Microsoft Corporation, 5.00.3810] [C:\WINDOWS\system32\JIT.DLL] [Microsoft Corporation, 5.00.3810] [C:\WINDOWS\system32\javart.dll] [Microsoft Corporation, 5.00.3810] [C:\WINDOWS\system32\msawt.dll] [Microsoft Corporation, 5.00.3810] [C:\WINDOWS\system32\javacypt.dll] [Microsoft Corporation, 5.00.3810] [C:\Program Files\Thunder Network\Thunder6\ComDlls\ThunderAgent_Now.dll] [Xunlei Networking Technologies,LTD, 6, 0, 4, 42] [C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12] [PID: 5764 / Administrator][C:\Program Files\Rising\Rav\RsAgent.exe] [Beijing Rising Information Technology Co., Ltd., 21.0.0.17] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\Program Files\Rising\Rav\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\Rav\ScanPrxy.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.17] [C:\WINDOWS\msagent\AgentMPx.dll] [Microsoft Corporation, 2.00.0.2115] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [PID: 5728 / SYSTEM][C:\WINDOWS\msagent\AgentSvr.exe] [Microsoft Corporation, 2.00.0.2202] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\msagent\AgentDP2.dll] [Microsoft Corporation, 2.00.0.2115] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [PID: 4028 / Administrator][C:\Program Files\Rising\Rav\rsmain.exe] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\Program Files\Rising\Rav\rspalmgr.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.29] [C:\Program Files\Rising\Rav\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\Program Files\Rising\Rav\RSXML.DLL] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Rising\Rav\RsGuiLib.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 75] [C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Rising\Rav\rslang.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28] [C:\Program Files\Rising\Rav\ravbmenu.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 17] [C:\Program Files\Rising\Rav\rsconf.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\rspalvd.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.26] [C:\Program Files\Rising\Rav\ravppops.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 16] [C:\Program Files\Rising\Rav\ravbintl.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 29] [C:\Program Files\Rising\Rav\ravpsafe.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.28] [C:\Program Files\Rising\Rav\MonState.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7] [C:\Program Files\Rising\Rav\ScanPrxy.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.17] [C:\Program Files\Rising\Rav\psafecfg.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.19] [C:\Program Files\Rising\Rav\RSAPPMGR.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.1] [C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.20] [C:\Program Files\Rising\Rav\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\Rav\ProcComm.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46] [C:\Program Files\Rising\Rav\ravxpage.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 90] [C:\Program Files\Rising\Rav\ravxmons.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24] [C:\Program Files\Rising\Rav\ravptool.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.20] [C:\Program Files\Rising\Rav\log2file.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.10] [C:\Program Files\Rising\Rav\PngDll.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\htmllib.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1] [C:\Program Files\Rising\Rav\rsvrinfo.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\Program Files\Rising\Rav\recomp.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] [C:\Program Files\Rising\Rav\refs.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\Program Files\Rising\Rav\viruslib.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5] [C:\Program Files\Rising\Rav\relibldr.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6] [C:\Program Files\Rising\AntiSpyware\NtLib.dll] [Beijing Rising Information Technology Co., Ltd., 3, 0, 0, 19] [C:\Program Files\Rising\AntiSpyware\SecEx.dll] [Beijing Rising Information Technology Co., Ltd., 3, 0, 0, 12] [PID: 5316 / Administrator][C:\WINDOWS\explorer.exe] [(Verified) Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_qfe.070613-1311)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [C:\Program Files\Thunder Network\Thunder6\ComDlls\TDAtOnce_Now.dll] [Xunlei Networking Technologies,LTD, 1, 2, 6, 86] [C:\WINDOWS\system32\ATL71.DLL] [Microsoft Corporation, 7.10.6041.0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Thunder Network\Thunder6\ComDlls\xunleiBHO_Now.dll] [Xunlei Networking Technologies,LTD, 5, 0, 8, 106] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS] [Adobe Systems, Inc., 9.0.0.0] [D:\TIANYUAN\Nero 8\Nero BackItUp\NBShell.dll] [Nero AG, 3, 5, 4, 0] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\WinRAR\rarext.dll] [N/A, ] [C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12] [D:\TIANYUAN\Nero 8\Nero CoverDesigner\CoverEdExtension.dll] [Nero AG, 3, 3, 3, 0] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll] [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)] [C:\Program Files\7-Zip\7-zip.dll] [Igor Pavlov, 4.55 beta] [PID: 3544 / Administrator][C:\Program Files\Internet Explorer\IEXPLORE.EXE] [Microsoft Corporation, 7.00.6000.16850 (vista_gdr.090423-0018)] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll] [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416)] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [C:\Program Files\Thunder Network\Thunder6\ComDlls\TDAtOnce_Now.dll] [Xunlei Networking Technologies,LTD, 1, 2, 6, 86] [C:\WINDOWS\system32\ATL71.DLL] [Microsoft Corporation, 7.10.6041.0] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll] [Adobe Systems Incorporated, 9.0.0.2008061100] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 9.0.0.2008061100] [C:\WINDOWS\system32\JfCheck.dll] [PIPI Tech., 1, 4, 0, 3] [C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll] [Skype Technologies S.A., 2, 2, 0, 205] [C:\Program Files\Skype\Toolbars\Shared\SPhoneParser.dll] [Skype Technologies, 1, 0, 1, 184] [C:\Program Files\CMBCHINA\WebProtect\WebProtect.dll] [China Merchants Bank, 1, 0, 0, 1] [C:\Program Files\Thunder Network\Thunder6\ComDlls\xunleiBHO_Now.dll] [Xunlei Networking Technologies,LTD, 5, 0, 8, 106] [C:\WINDOWS\system32\urlFilter.dll] [Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15] [C:\Program Files\Rising\AntiSpyware\UrlRule.dll] [Beijing Rising Information Technology Co., Ltd., 1.0.0.15] [C:\WINDOWS\system32\aetsprov.dll] [A.E.T. Europe B.V., 2.3.0.9] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.76] [C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx] [Adobe Systems, Inc., 10,0,12,36] [C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll] [N/A, ] [C:\Program Files\Thunder Network\Thunder6\ComDlls\ThunderAgent_Now.dll] [Xunlei Networking Technologies,LTD, 6, 0, 4, 42] [C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12] [PID: 5796 / Administrator][C:\Program Files\Thunder Network\Thunder6\Program\Thunder.exe] [Xunlei Networking Technologies,LTD, 6, 0, 1, 98 Beta] [C:\Program Files\Thunder Network\Thunder6\Program\MFC71U.DLL] [Microsoft Corporation, 7.10.6041.0] [C:\Program Files\Thunder Network\Thunder6\Program\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Thunder Network\Thunder6\Program\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\Program Files\Thunder Network\Thunder6\Program\BugReportU.dll] [Thunder Networking Technologies,LTD, 1, 5, 2, 23] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\Program Files\Thunder Network\Thunder6\Program\xlShellBase.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 16] [C:\Program Files\Thunder Network\Thunder6\Program\ATL71.DLL] [Microsoft Corporation, 7.10.6041.0] [C:\Program Files\Thunder Network\Thunder6\Program\UpdateCtrl.dll] [Thunder Networking Technologies,LTD, 1.0.0.12] [C:\Program Files\Thunder Network\Thunder6\Components\SkinEngine\skinEngine.dll] [Xunlei Networking Technologies,LTD, 6, 0, 1, 49] [C:\Program Files\Thunder Network\Thunder6\Program\TaskManager.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 31] [C:\Program Files\Thunder Network\Thunder6\Program\SQLite3DLL.dll] [N/A, ] [C:\Program Files\Thunder Network\Thunder6\Program\ContentQuester.dll] [Thunder Networking Technologies,LTD, 1.0.0.26] [C:\Program Files\Thunder Network\Thunder6\Components\Category\DLCategory.DLL] [Xunlei Networking Technologies,LTD, 1, 0, 0, 52] [C:\Program Files\Thunder Network\Thunder6\Program\DllNewTask.DLL] [Xunlei Networking Technologies,LTD, 1, 0, 0, 49] [C:\Program Files\Thunder Network\Thunder6\Components\SoftPlg\ThunderSoftPlg.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 13] [C:\Program Files\Thunder Network\Thunder6\Components\musicaddin\ThunderMusic.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 65] [C:\Program Files\Thunder Network\Thunder6\Components\musicaddin\XLMusicCore.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 26] [C:\Program Files\Thunder Network\Thunder6\Components\Video\VideoManager.dll] [Xunlei Networking Technologies,LTD, 1.2.600.61] [C:\Program Files\Thunder Network\Thunder6\Components\Community\XLCommunity2.dll] [Xunlei Networking Technologies,LTD, 1.0.1.13] [C:\Program Files\Thunder Network\Thunder6\Components\Community\Resource.dll] [N/A, ] [C:\Program Files\Thunder Network\Thunder6\Program\registerDLL.dll] [Thunder Networking Technologies,LTD, 2, 17, 0, 67] [C:\Program Files\Thunder Network\Thunder6\Program\MSVCIRT.dll] [Microsoft Corporation, 7.0.2600.5512 (xpsp.080413-2111)] [C:\Program Files\Thunder Network\Thunder6\Program\XLNetU.Dll] [Thunder Networking Technologies,LTD, 1, 5, 2, 25] [C:\Program Files\Thunder Network\Thunder6\Components\Banner\Streamer.dll] [, 1, 0, 0, 7] [C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx] [Adobe Systems, Inc., 10,0,12,36] [C:\Program Files\Thunder Network\Thunder6\Components\FloatPanel\FloatPanel.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 48] [C:\Program Files\Thunder Network\Thunder6\Components\GougouSearch\GougouSearch.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 48] [C:\Program Files\Thunder Network\Thunder6\Components\Scheme\Scheme.dll] [Xunlei Networking Technologies,LTD, 1.0.0.1] [C:\Program Files\Thunder Network\Thunder6\Components\Config\ConfigPane.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 49] [C:\Program Files\Thunder Network\Thunder6\Components\Security\XLSafeUI.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 17] [C:\Program Files\Thunder Network\Thunder6\Components\XLSafeHost\XLSafeHost.dll] [Xunlei Networking Technologies,LTD, 2, 1, 0, 15] [C:\Program Files\Thunder Network\Thunder6\Components\Tips\TipsClient.dll] [Thunder Networking Technologies,LTD, 2, 2, 13, 119] [C:\Program Files\Thunder Network\Thunder6\Components\xldatacenter\xldatacenter.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 7] [C:\Program Files\Thunder Network\Thunder6\Program\UpdateHistory.dll] [Thunder Networking Technologies,LTD, 1.0.0.5] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [C:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.76] [C:\Program Files\Thunder Network\Thunder6\Components\Security\SafeManager.dll] [Xunlei Networking Technologies,LTD, 1, 0, 4, 16] [C:\Program Files\Thunder Network\Thunder6\Components\Security\ConfigManager.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 1] [C:\Program Files\Thunder Network\Thunder6\Components\XLSafeHost\AntiVirusProxy.dll] [Xunlei Networking Technologies,LTD, 1, 0, 0, 2] [C:\Program Files\Thunder Network\Thunder6\Components\Tips\XLIPC.DLL] [N/A, ] [C:\Program Files\Thunder Network\Thunder6\Components\SoftPlg\SoftCore.dll] [Xunlei Networking Technologies,LTD, 1.0.0.4] [C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12] [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS] [Adobe Systems, Inc., 9.0.0.0] [PID: 5624 / Administrator][C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\ThunderS.exe] [Xunlei Networking Technologies,LTD, 1, 0, 0, 46] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\BugReportU.dll] [Thunder Networking Technologies,LTD, 1, 5, 2, 23] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\download_interface.dll] [Thunder Networking Technologies,LTD, 3, 1, 2, 319] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\asyn_frame.dll] [Thunder Networking Technologies,LTD, 1, 1, 2, 20] [C:\WINDOWS\system32\ATL71.DLL] [Microsoft Corporation, 7.10.6041.0] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\backend_agent.dll] [Thunder Networking Technologies,LTD, 1, 1, 2, 19] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\ptl.dll] [Thunder Networking Technologies,LTD, 3, 1, 2, 25] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\xl_stat.dll] [Thunder Networking Technologies,LTD, 1, 1, 2, 3] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\fs.dll] [Thunder Networking Technologies,LTD, 1, 1, 2, 10] [C:\WINDOWS\system32\msi.dll] [Microsoft Corporation, 4.5.6001.22159] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\p2sp.dll] [Thunder Networking Technologies,LTD, 1, 1, 2, 31] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\down_dispatcher.dll] [Thunder Networking Technologies,LTD, 1, 0, 2, 19] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\p2p.dll] [Thunder Networking Technologies,LTD, 1,1,2,26] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\p2p_upload.dll] [Thunder Networking Technologies,LTD, 1, 1, 2, 8] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\xldc.dll] [Thunder Networking Technologies,LTD, 3, 6, 2, 15] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\stream.dll] [Thunder Networking Technologies,LTD, 2, 1, 2, 382] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\p2p_local_res.dll] [Thunder Networking Technologies,LTD, 1,1,2,12] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\al.dll] [Thunder Networking Technologies,LTD, 1,1,2,20] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\emule.dll] [, 1, 1, 2, 21] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\emule_id.dll] [Thunder Networking Technologies,LTD, 1, 0, 2, 7] [C:\PROGRA~1\COMMON~1\THUNDE~1\ThunderS\bd.dll] [Thunder Networking Technologies,LTD, 1, 0, 2, 17] [PID: 5360 / Administrator][E:\sreng2\SREngLdr.EXE] [Smallfrogs Studio, 2.7.1.1261] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [PID: 4600 / Administrator][E:\sreng2\SRE76f2e01c.EXE] [Smallfrogs Studio, 2.7.1.1261] [C:\WINDOWS\system32\kmon.dll] [Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 38] [C:\Program Files\Rising\AntiSpyware\comx3.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.37] [C:\Program Files\Rising\AntiSpyware\Syslay.dll] [Beijing Rising Information Technology Co., Ltd., 21.0.0.6] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2845 (xpsp.060210-1526)] [E:\sreng2\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15] [C:\WINDOWS\system32\aetsprov.dll] [A.E.T. Europe B.V., 2.3.0.9] [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.6030.0] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6030.0] 文件关联 .TXT Error. [C:\WINDOWS\notepad.exe %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM Error. ["hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] Winsock 提供者 N/A Autorun.inf N/A HOSTS 文件 N/A 进程特权扫描 特殊特权被允许: SeLoadDriverPrivilege [PID = 1544, C:\PROGRAM FILES\WIDCOMM\BLUETOOTH SOFTWARE\BIN\BTWDINS.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 404, C:\PROGRAM FILES\DELL\QUICKSET\NICCONFIGSVC.EXE] 特殊特权被允许: SeDebugPrivilege [PID = 2932, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLI.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 2932, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLI.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 3260, C:\WINDOWS\STSYSTRA.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 732, C:\PROGRAM FILES\WIDCOMM\BLUETOOTH SOFTWARE\BTTRAY.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 2456, C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE] 特殊特权被允许: SeDebugPrivilege [PID = 3764, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLI.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 3764, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLI.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 5728, C:\WINDOWS\MSAGENT\AGENTSVR.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 5796, C:\PROGRAM FILES\THUNDER NETWORK\THUNDER6\PROGRAM\THUNDER.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 5624, C:\PROGRA~1\COMMON~1\THUNDE~1\THUNDERS\THUNDERS.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 5360, E:\SRENG2\SRENGLDR.EXE] 计划任务 N/A API HOOK 入口点错误:NtCreateFile (危险等级: 高, 被下面模块所HOOK: 0x003D5795) 入口点错误:NtCreateKey (危险等级: 高, 被下面模块所HOOK: 0x003D5935) 入口点错误:NtLoadDriver (危险等级: 高, 被下面模块所HOOK: 0x003D6085) 入口点错误:NtSetValueKey (危险等级: 高, 被下面模块所HOOK: 0x003D5A05) 入口点错误:NtWriteFile (危险等级: 高, 被下面模块所HOOK: 0x003D5865) 入口点错误:ZwCreateFile (危险等级: 高, 被下面模块所HOOK: 0x003D5795) 入口点错误:ZwCreateKey (危险等级: 高, 被下面模块所HOOK: 0x003D5935) 入口点错误:ZwSetValueKey (危险等级: 高, 被下面模块所HOOK: 0x003D5A05) 入口点错误:ZwWriteFile (危险等级: 高, 被下面模块所HOOK: 0x003D5865) 入口点错误:CreateServiceA (危险等级: 高, 被下面模块所HOOK: 0x003D5D45) 入口点错误:CreateServiceW (危险等级: 高, 被下面模块所HOOK: 0x003D5E15) 入口点错误:LoadLibraryA (危险等级: 高, 被下面模块所HOOK: 0x003D6A45) 入口点错误:LoadLibraryExW (危险等级: 高, 被下面模块所HOOK: 0x003D562D) 入口点错误:CreateFileW (危险等级: 高, 被下面模块所HOOK: 0x003D6565) 入口点错误:CreateProcessA (危险等级: 高, 被下面模块所HOOK: 0x003D6975) 入口点错误:CreateProcessW (危险等级: 高, 被下面模块所HOOK: 0x003D67D5) 隐藏进程 N/A