瑞星卡卡电脑诊断日志 v1.30 (2009-8-22 15:35:19) 北京瑞星信息技术有限公司 注释: [A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + 系统服务 + HKLM\System\CurrentControlSet\Services Alerter [AM] 1. c:\windows\system32\svchost.exe [A ] 2. c:\windows\system32\alrsvc.dll ALG [AM] 3. c:\windows\system32\alg.exe AppMgmt [AM] 1. c:\windows\system32\svchost.exe [A ] 4. c:\windows\system32\appmgmts.dll AudioSrv [AM] 1. c:\windows\system32\svchost.exe [AM] 5. c:\windows\system32\audiosrv.dll BITS [AM] 1. c:\windows\system32\svchost.exe [A ] 6. c:\windows\system32\qmgr.dll Browser [AM] 1. c:\windows\system32\svchost.exe [AM] 7. c:\windows\system32\browser.dll CiSvc [A ] 8. c:\windows\system32\cisvc.exe ClipSrv [A ] 9. c:\windows\system32\clipsrv.exe COMSysApp [A ] 10. c:\windows\system32\dllhost.exe CryptSvc [AM] 1. c:\windows\system32\svchost.exe [AM] 11. c:\windows\system32\cryptsvc.dll DcomLaunch [AM] 1. c:\windows\system32\svchost.exe [AM] 12. c:\windows\system32\rpcss.dll Dhcp [AM] 1. c:\windows\system32\svchost.exe [AM] 13. c:\windows\system32\dhcpcsvc.dll dmadmin [A ] 14. c:\windows\system32\dmadmin.exe dmserver [AM] 1. c:\windows\system32\svchost.exe [A ] 15. c:\windows\system32\dmserver.dll Dnscache [AM] 1. c:\windows\system32\svchost.exe [AM] 16. c:\windows\system32\dnsrslvr.dll Dot3svc [AM] 1. c:\windows\system32\svchost.exe [A ] 17. c:\windows\system32\dot3svc.dll [A ] 17. c:\windows\system32\dot3svc.dll EapHost [AM] 1. c:\windows\system32\svchost.exe [A ] 18. c:\windows\system32\eapsvc.dll ERSvc [AM] 1. c:\windows\system32\svchost.exe [A ] 19. c:\windows\system32\ersvc.dll Eventlog [AM] 20. c:\windows\system32\services.exe EventSystem [AM] 1. c:\windows\system32\svchost.exe [AM] 21. c:\windows\system32\es.dll FastUserSwitchingCompatibility [AM] 1. c:\windows\system32\svchost.exe [AM] 22. c:\windows\system32\shsvcs.dll helpsvc [AM] 1. c:\windows\system32\svchost.exe HidServ [AM] 1. c:\windows\system32\svchost.exe hkmsvc [AM] 1. c:\windows\system32\svchost.exe [A ] 23. c:\windows\system32\kmsvc.dll HTTPFilter [AM] 1. c:\windows\system32\svchost.exe [A ] 24. c:\windows\system32\w3ssl.dll ImapiService [A ] 25. c:\windows\system32\imapi.exe LanmanServer [AM] 1. c:\windows\system32\svchost.exe [AM] 26. c:\windows\system32\srvsvc.dll lanmanworkstation [AM] 1. c:\windows\system32\svchost.exe [AM] 27. c:\windows\system32\wkssvc.dll [AM] 28. c:\windows\system32\ntlanman.dll LmHosts [AM] 1. c:\windows\system32\svchost.exe [AM] 29. c:\windows\system32\lmhsvc.dll Messenger [AM] 1. c:\windows\system32\svchost.exe [A ] 30. c:\windows\system32\msgsvc.dll mnmsrvc [A ] 31. c:\windows\system32\mnmsrvc.exe MSDTC [A ] 32. c:\windows\system32\msdtc.exe MSIServer [A ] 33. c:\windows\system32\msiexec.exe napagent [AM] 1. c:\windows\system32\svchost.exe [A ] 34. c:\windows\system32\qagentrt.dll NetDDE [A ] 35. c:\windows\system32\netdde.exe NetDDEdsdm [A ] 35. c:\windows\system32\netdde.exe Netlogon [AM] 36. c:\windows\system32\lsass.exe Netman [AM] 1. c:\windows\system32\svchost.exe [AM] 37. c:\windows\system32\netman.dll Nla [AM] 1. c:\windows\system32\svchost.exe [AM] 38. c:\windows\system32\mswsock.dll NtLmSsp [AM] 36. c:\windows\system32\lsass.exe NtmsSvc [AM] 1. c:\windows\system32\svchost.exe [A ] 39. c:\windows\system32\ntmssvc.dll ose [A ] 40. c:\program files\common files\microsoft shared\source engine\ose.exe PlugPlay [AM] 20. c:\windows\system32\services.exe PolicyAgent [AM] 36. c:\windows\system32\lsass.exe ProtectedStorage [AM] 36. c:\windows\system32\lsass.exe RasAuto [AM] 1. c:\windows\system32\svchost.exe [A ] 41. c:\windows\system32\rasauto.dll RasMan [AM] 1. c:\windows\system32\svchost.exe [AM] 42. c:\windows\system32\rasmans.dll RDSessMgr [A ] 43. c:\windows\system32\sessmgr.exe RemoteAccess [AM] 1. c:\windows\system32\svchost.exe [A ] 44. c:\windows\system32\mprdim.dll RemoteRegistry [AM] 1. c:\windows\system32\svchost.exe [A ] 45. c:\windows\system32\regsvc.dll RisCCenter [A ] 46. c:\program files\rising\ris\ccenter.exe RisTask [AM] 47. c:\program files\rising\ris\ravtask.exe RpcLocator [A ] 48. c:\windows\system32\locator.exe RpcSs [AM] 1. c:\windows\system32\svchost.exe [AM] 12. c:\windows\system32\rpcss.dll [AM] 12. c:\windows\system32\rpcss.dll RsRavMon [AM] 49. c:\program files\rising\ris\ravmond.exe RsScanSrv [AM] 50. c:\program files\rising\ris\scanfrm.exe RSVP [A ] 51. c:\windows\system32\rsvp.exe SamSs [AM] 36. c:\windows\system32\lsass.exe SCardSvr [A ] 52. c:\windows\system32\scardsvr.exe Schedule [AM] 1. c:\windows\system32\svchost.exe [A ] 53. c:\windows\system32\schedsvc.dll seclogon [AM] 1. c:\windows\system32\svchost.exe [AM] 54. c:\windows\system32\seclogon.dll SENS [AM] 1. c:\windows\system32\svchost.exe [AM] 55. c:\windows\system32\sens.dll SharedAccess [AM] 1. c:\windows\system32\svchost.exe [AM] 56. c:\windows\system32\ipnathlp.dll ShellHWDetection [AM] 1. c:\windows\system32\svchost.exe [AM] 22. c:\windows\system32\shsvcs.dll Spooler [AM] 57. c:\windows\system32\spoolsv.exe srservice [AM] 1. c:\windows\system32\svchost.exe [AM] 58. c:\windows\system32\srsvc.dll SSDPSRV [AM] 1. c:\windows\system32\svchost.exe [A ] 59. c:\windows\system32\ssdpsrv.dll stisvc [AM] 1. c:\windows\system32\svchost.exe [AM] 60. c:\windows\system32\wiaservc.dll SwPrv [A ] 10. c:\windows\system32\dllhost.exe SysmonLog [A ] 61. c:\windows\system32\smlogsvc.exe TapiSrv [AM] 1. c:\windows\system32\svchost.exe [AM] 62. c:\windows\system32\tapisrv.dll TermService [AM] 1. c:\windows\system32\svchost.exe [AM] 63. c:\windows\system32\termsrv.dll Themes [AM] 1. c:\windows\system32\svchost.exe [AM] 22. c:\windows\system32\shsvcs.dll TlntSvr [A ] 64. c:\windows\system32\tlntsvr.exe TrkWks [AM] 1. c:\windows\system32\svchost.exe [AM] 65. c:\windows\system32\trkwks.dll upnphost [AM] 1. c:\windows\system32\svchost.exe [A ] 66. c:\windows\system32\upnphost.dll UPS [A ] 67. c:\windows\system32\ups.exe VSS [A ] 68. c:\windows\system32\vssvc.exe W32Time [AM] 1. c:\windows\system32\svchost.exe [AM] 69. c:\windows\system32\w32time.dll WebClient [AM] 1. c:\windows\system32\svchost.exe [AM] 70. c:\windows\system32\webclnt.dll [AM] 71. c:\windows\system32\davclnt.dll winmgmt [AM] 1. c:\windows\system32\svchost.exe [AM] 72. c:\windows\system32\wbem\wmisvc.dll WmdmPmSN [AM] 1. c:\windows\system32\svchost.exe [A ] 73. c:\windows\system32\mspmsnsv.dll Wmi [AM] 1. c:\windows\system32\svchost.exe [AM] 74. c:\windows\system32\advapi32.dll WmiApSrv [A ] 75. c:\windows\system32\wbem\wmiapsrv.exe WMPNetworkSvc [A ] 76. c:\program files\windows media player\wmpnetwk.exe wscsvc [AM] 1. c:\windows\system32\svchost.exe [A ] 77. c:\windows\system32\wscsvc.dll wuauserv [AM] 1. c:\windows\system32\svchost.exe [AM] 78. c:\windows\system32\wuauserv.dll WudfSvc [AM] 1. c:\windows\system32\svchost.exe [A ] 79. c:\windows\system32\wudfsvc.dll WZCSVC [AM] 1. c:\windows\system32\svchost.exe [AM] 80. c:\windows\system32\wzcsvc.dll xmlprov [AM] 1. c:\windows\system32\svchost.exe [A ] 81. c:\windows\system32\xmlprov.dll + 内核驱动 + HKLM\System\CurrentControlSet\Services 360SelfProtection [A ] 82. c:\windows\system32\drivers\360selfprotection.sys ACPI [A ] 83. c:\windows\system32\drivers\acpi.sys ACPIEC [A ] 84. c:\windows\system32\drivers\acpiec.sys aec [A ] 85. c:\windows\system32\drivers\aec.sys AFD [A ] 86. c:\windows\system32\drivers\afd.sys agpCPQ [A ] 87. c:\windows\system32\drivers\agpcpq.sys alim1541 [A ] 88. c:\windows\system32\drivers\alim1541.sys amdagp [A ] 89. c:\windows\system32\drivers\amdagp.sys AmdK8 [A ] 90. c:\windows\system32\drivers\amdk8.sys AmdLLD [A ] 91. c:\windows\system32\drivers\amdlld.sys AsyncMac [A ] 92. c:\windows\system32\drivers\asyncmac.sys atapi [A ] 93. c:\windows\system32\drivers\atapi.sys Atmarpc [A ] 94. c:\windows\system32\drivers\atmarpc.sys audstub [A ] 95. c:\windows\system32\drivers\audstub.sys Beep [A ] 96. c:\windows\system32\drivers\beep.sys BFSDRV [A ] 97. c:\windows\system32\drivers\bfsdrv.sys BREGDRV [A ] 98. c:\windows\system32\drivers\bregdrv.sys CCDECODE [A ] 99. c:\windows\system32\drivers\ccdecode.sys Cdaudio [A ] 100. c:\windows\system32\drivers\cdaudio.sys Cdrom [A ] 101. c:\windows\system32\drivers\cdrom.sys Disk [A ] 102. c:\windows\system32\drivers\disk.sys dmboot [A ] 103. c:\windows\system32\drivers\dmboot.sys dmio [A ] 104. c:\windows\system32\drivers\dmio.sys dmload [A ] 105. c:\windows\system32\drivers\dmload.sys DMusic [A ] 106. c:\windows\system32\drivers\dmusic.sys drmkaud [A ] 107. c:\windows\system32\drivers\drmkaud.sys EagleNT [A ] 108. c:\windows\system32\drivers\eaglent.sys EfiMon [A ] 109. c:\windows\system32\drivers\efimon.sys Fdc [A ] 110. c:\windows\system32\drivers\fdc.sys Fips [A ] 111. c:\windows\system32\drivers\fips.sys Flpydisk [A ] 112. c:\windows\system32\drivers\flpydisk.sys FsVga [A ] 113. c:\windows\system32\drivers\fsvga.sys Ftdisk [A ] 114. c:\windows\system32\drivers\ftdisk.sys Gpc [A ] 115. c:\windows\system32\drivers\msgpc.sys HDAudBus [A ] 116. c:\windows\system32\drivers\hdaudbus.sys HidUsb [A ] 117. c:\windows\system32\drivers\hidusb.sys hookcont [A ] 118. c:\windows\system32\drivers\hookcont.sys HookPort [A ] 119. c:\windows\system32\drivers\hookport.sys hooksys [A ] 120. c:\windows\system32\drivers\hooksys.sys hptpro [A ] 121. c:\windows\system32\drivers\hptpro.sys HTTP [A ] 122. c:\windows\system32\drivers\http.sys i2omgmt [A ] 123. c:\windows\system32\drivers\i2omgmt.sys i8042prt [A ] 124. c:\windows\system32\drivers\i8042prt.sys Imapi [A ] 125. c:\windows\system32\drivers\imapi.sys IntcAzAudAddService [A ] 126. c:\windows\system32\drivers\rtkhdaud.sys intelppm [A ] 127. c:\windows\system32\drivers\intelppm.sys Ip6Fw [A ] 128. c:\windows\system32\drivers\ip6fw.sys IpFilterDriver [A ] 129. c:\windows\system32\drivers\ipfltdrv.sys IpInIp [A ] 130. c:\windows\system32\drivers\ipinip.sys IpNat [A ] 131. c:\windows\system32\drivers\ipnat.sys IPSec [A ] 132. c:\windows\system32\drivers\ipsec.sys IRENUM [A ] 133. c:\windows\system32\drivers\irenum.sys isapnp [A ] 134. c:\windows\system32\drivers\isapnp.sys Kbdclass [A ] 135. c:\windows\system32\drivers\kbdclass.sys kbdhid [A ] 136. c:\windows\system32\drivers\kbdhid.sys kmixer [A ] 137. c:\windows\system32\drivers\kmixer.sys KSecDD [A ] 138. c:\windows\system32\drivers\ksecdd.sys mnmdd [A ] 139. c:\windows\system32\drivers\mnmdd.sys Modem [A ] 140. c:\windows\system32\drivers\modem.sys Mouclass [A ] 141. c:\windows\system32\drivers\mouclass.sys mouhid [A ] 142. c:\windows\system32\drivers\mouhid.sys MountMgr [A ] 143. c:\windows\system32\drivers\mountmgr.sys MSKSSRV [A ] 144. c:\windows\system32\drivers\mskssrv.sys MSPCLOCK [A ] 145. c:\windows\system32\drivers\mspclock.sys MSPQM [A ] 146. c:\windows\system32\drivers\mspqm.sys mssmbios [A ] 147. c:\windows\system32\drivers\mssmbios.sys MSTEE [A ] 148. c:\windows\system32\drivers\mstee.sys NABTSFEC [A ] 149. c:\windows\system32\drivers\nabtsfec.sys NDIS [A ] 150. c:\windows\system32\drivers\ndis.sys NdisIP [A ] 151. c:\windows\system32\drivers\ndisip.sys NdisTapi [A ] 152. c:\windows\system32\drivers\ndistapi.sys Ndisuio [A ] 153. c:\windows\system32\drivers\ndisuio.sys NdisWan [A ] 154. c:\windows\system32\drivers\ndiswan.sys NDProxy [A ] 155. c:\windows\system32\drivers\ndproxy.sys NetBT [A ] 156. c:\windows\system32\drivers\netbt.sys Null [A ] 157. c:\windows\system32\drivers\null.sys nv [A ] 158. c:\windows\system32\drivers\nv4_mini.sys nvsmu [A ] 159. c:\windows\system32\drivers\nvsmu.sys NwlnkFlt [A ] 160. c:\windows\system32\drivers\nwlnkflt.sys NwlnkFwd [A ] 161. c:\windows\system32\drivers\nwlnkfwd.sys Parport [A ] 162. c:\windows\system32\drivers\parport.sys PartMgr [A ] 163. c:\windows\system32\drivers\partmgr.sys ParVdm [A ] 164. c:\windows\system32\drivers\parvdm.sys PCI [A ] 165. c:\windows\system32\drivers\pci.sys PCIIde [A ] 166. c:\windows\system32\drivers\pciide.sys Pcmcia [A ] 167. c:\windows\system32\drivers\pcmcia.sys PptpMiniport [A ] 168. c:\windows\system32\drivers\raspptp.sys Processor [A ] 169. c:\windows\system32\drivers\processr.sys PSched [A ] 170. c:\windows\system32\drivers\psched.sys Ptilink [A ] 171. c:\windows\system32\drivers\ptilink.sys PtLuck [A ] 172. c:\windows\system32\drivers\ptluck.sys QKeyService [A ] 173. c:\windows\system32\keycrypt.sys RasAcd [A ] 174. c:\windows\system32\drivers\rasacd.sys Rasl2tp [A ] 175. c:\windows\system32\drivers\rasl2tp.sys RasPppoe [A ] 176. c:\windows\system32\drivers\raspppoe.sys Raspti [A ] 177. c:\windows\system32\drivers\raspti.sys RDPCDD [A ] 178. c:\windows\system32\drivers\rdpcdd.sys rdpdr [A ] 179. c:\windows\system32\drivers\rdpdr.sys RDPWD [A ] 180. c:\windows\system32\drivers\rdpwd.sys redbook [A ] 181. c:\windows\system32\drivers\redbook.sys RfwBase9 [A ] 182. c:\windows\system32\drivers\rfwbase.sys rfwtdi [A ] 183. c:\program files\rising\ris\rfwtdi.sys rsfwdrv [A ] 184. c:\program files\rising\ris\rsfwdrv.sys RsNTGDI [A ] 185. c:\windows\system32\drivers\rsntgdi.sys Secdrv [A ] 186. c:\windows\system32\drivers\secdrv.sys Serial [A ] 187. c:\windows\system32\drivers\serial.sys Sfloppy [A ] 188. c:\windows\system32\drivers\sfloppy.sys SiFilter [A ] 189. c:\windows\system32\drivers\siwinacc.sys SiRemFil [A ] 190. c:\windows\system32\drivers\siremfil.sys sisagp [A ] 191. c:\windows\system32\drivers\sisagp.sys SLIP [A ] 192. c:\windows\system32\drivers\slip.sys splitter [A ] 193. c:\windows\system32\drivers\splitter.sys streamip [A ] 194. c:\windows\system32\drivers\streamip.sys swenum [A ] 195. c:\windows\system32\drivers\swenum.sys swmidi [A ] 196. c:\windows\system32\drivers\swmidi.sys sysaudio [A ] 197. c:\windows\system32\drivers\sysaudio.sys Tcpip [A ] 198. c:\windows\system32\drivers\tcpip.sys TDPIPE [A ] 199. c:\windows\system32\drivers\tdpipe.sys TDTCP [A ] 200. c:\windows\system32\drivers\tdtcp.sys TermDD [A ] 201. c:\windows\system32\drivers\termdd.sys TesDrvPt [A ] 202. c:\windows\system32\tesdrvpt.sys TesSafe [A ] 203. c:\windows\system32\tessafe.sys Update [A ] 204. c:\windows\system32\drivers\update.sys usbccgp [A ] 205. c:\windows\system32\drivers\usbccgp.sys usbehci [A ] 206. c:\windows\system32\drivers\usbehci.sys usbhub [A ] 207. c:\windows\system32\drivers\usbhub.sys usbohci [A ] 208. c:\windows\system32\drivers\usbohci.sys USBSTOR [A ] 209. c:\windows\system32\drivers\usbstor.sys usbvideo [A ] 210. c:\windows\system32\drivers\usbvideo.sys VgaSave [A ] 211. c:\windows\system32\drivers\vga.sys viaagp [A ] 212. c:\windows\system32\drivers\viaagp.sys VolSnap [A ] 213. c:\windows\system32\drivers\volsnap.sys Wanarp [A ] 214. c:\windows\system32\drivers\wanarp.sys wdmaud [A ] 215. c:\windows\system32\drivers\wdmaud.sys WmiAcpi [A ] 216. c:\windows\system32\drivers\wmiacpi.sys WSTCODEC [A ] 217. c:\windows\system32\drivers\wstcodec.sys WudfPf [A ] 218. c:\windows\system32\drivers\wudfpf.sys WudfRd [A ] 219. c:\windows\system32\drivers\wudfrd.sys yukonwxp [A ] 220. c:\windows\system32\drivers\yk51x86.sys + 文件系统驱动 + HKLM\System\CurrentControlSet\Services Cdfs [A ] 221. c:\windows\system32\drivers\cdfs.sys exFat [A ] 222. c:\windows\system32\drivers\exfat.sys Fastfat [A ] 223. c:\windows\system32\drivers\fastfat.sys FltMgr [A ] 224. c:\windows\system32\drivers\fltmgr.sys MRxDAV [A ] 225. c:\windows\system32\drivers\mrxdav.sys MRxSmb [A ] 226. c:\windows\system32\drivers\mrxsmb.sys Msfs [A ] 227. c:\windows\system32\drivers\msfs.sys Mup [A ] 228. c:\windows\system32\drivers\mup.sys NetBIOS [A ] 229. c:\windows\system32\drivers\netbios.sys Npfs [A ] 230. c:\windows\system32\drivers\npfs.sys Ntfs [A ] 231. c:\windows\system32\drivers\ntfs.sys Rdbss [A ] 232. c:\windows\system32\drivers\rdbss.sys sr [A ] 233. c:\windows\system32\drivers\sr.sys Srv [A ] 234. c:\windows\system32\drivers\srv.sys Udfs [A ] 235. c:\windows\system32\drivers\udfs.sys + 系统登陆自运行 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon UIHost [A ] 236. c:\windows\system32\logonui.exe + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify crypt32chain [AM] 237. c:\windows\system32\crypt32.dll cryptnet [AM] 238. c:\windows\system32\cryptnet.dll cscdll [AM] 239. c:\windows\system32\cscdll.dll dimsntfy [AM] 240. c:\windows\system32\dimsntfy.dll ScCertProp [AM] 241. c:\windows\system32\wlnotify.dll Schedule [AM] 241. c:\windows\system32\wlnotify.dll sclgntfy [A ] 242. c:\windows\system32\sclgntfy.dll SensLogn [AM] 241. c:\windows\system32\wlnotify.dll termsrv [AM] 241. c:\windows\system32\wlnotify.dll WgaLogon [A ] 243. c:\windows\system32\wgalogon.dll wlballoon [AM] 241. c:\windows\system32\wlnotify.dll + HKCU\Control Panel\Desktop Scrnsave.exe [A ] 244. c:\windows\system32\人民币屏保.scr + IE浏览器加载模块 + HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks {CFBFAE00-17A6-11D0-99CB-00C04FD64497} [AM] 245. c:\windows\system32\ieframe.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {01443AEC-0FD1-40fd-9C87-E93D1494C233} [AM] 246. c:\program files\thunder network\thunder\comdlls\tdatonce_now.dll {889D2FEB-5411-4565-8998-1DD2C5261283} [AM] 247. c:\program files\thunder network\thunder\comdlls\xunleibho_now.dll {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [A ] 248. c:\windows\system32\urlfilter.dll + HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions Exec [A ] 249. c:\program files\uusee\uuseeplayer.exe Exec [A ] 250. c:\windows\network diagnostic\xpnetdiag.exe + HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars {4D5C8C25-D075-11d0-B416-00C04FB90376} [AM] 251. c:\windows\system32\shdocvw.dll + 资源管理器加载模块 + HKLM\SOFTWARE\Classes\PROTOCOLS\Filter Class Install Handler [AM] 252. c:\windows\system32\urlmon.dll deflate [AM] 252. c:\windows\system32\urlmon.dll gzip [AM] 252. c:\windows\system32\urlmon.dll lzdhtml [AM] 252. c:\windows\system32\urlmon.dll text/webviewhtml [AM] 253. c:\windows\system32\shell32.dll text/xml [A ] 254. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll + HKLM\SOFTWARE\Classes\PROTOCOLS\Handler about [AM] 255. c:\windows\system32\mshtml.dll cdl [AM] 252. c:\windows\system32\urlmon.dll dvd [A ] 256. c:\windows\system32\msvidctl.dll file [AM] 252. c:\windows\system32\urlmon.dll ftp [AM] 252. c:\windows\system32\urlmon.dll gopher [AM] 252. c:\windows\system32\urlmon.dll http [AM] 252. c:\windows\system32\urlmon.dll https [AM] 252. c:\windows\system32\urlmon.dll its [A ] 257. c:\windows\system32\itss.dll javascript [AM] 255. c:\windows\system32\mshtml.dll local [AM] 252. c:\windows\system32\urlmon.dll mailto [AM] 255. c:\windows\system32\mshtml.dll mbox [AM] 255. c:\windows\system32\mshtml.dll mboxflash [AM] 255. c:\windows\system32\mshtml.dll mhtml [AM] 258. c:\windows\system32\inetcomm.dll mk [AM] 252. c:\windows\system32\urlmon.dll ms-its [A ] 257. c:\windows\system32\itss.dll res [AM] 255. c:\windows\system32\mshtml.dll sysimage [AM] 255. c:\windows\system32\mshtml.dll tv [A ] 256. c:\windows\system32\msvidctl.dll vbscript [AM] 255. c:\windows\system32\mshtml.dll wia [A ] 259. c:\windows\system32\wiascr.dll + HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} [A ] 260. c:\windows\system32\ieudinit.exe >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} [A ] 261. c:\windows\inf\unregmp2.exe >{26923b43-4d38-484f-9b9e-de460746276c} [A ] 262. c:\windows\system32\ie4uinit.exe >{60B49E34-C7CC-11D0-8953-00A0C90347FF} [A ] 263. c:\windows\system32\rundll32.exe >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS [A ] 263. c:\windows\system32\rundll32.exe >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} [A ] 264. c:\windows\system32\shmgrate.exe {2C7339CF-2B09-4501-B3F3-F3508C9228ED} [A ] 265. c:\windows\system32\regsvr32.exe [AM] 266. c:\windows\system32\themeui.dll {44BBA840-CC51-11CF-AAFA-00AA00B6015C} [A ] 267. c:\program files\outlook express\setup50.exe {44BBA842-CC51-11CF-AAFA-00AA00B6015B} [A ] 263. c:\windows\system32\rundll32.exe {5945c046-1e7d-11d1-bc44-00c04fd912be} [A ] 263. c:\windows\system32\rundll32.exe {6BF52A52-394A-11d3-B153-00C04F79FAA6} [A ] 263. c:\windows\system32\rundll32.exe {7790769C-0471-11d2-AF11-00C04FA35D02} [A ] 267. c:\program files\outlook express\setup50.exe {89820200-ECBD-11cf-8B85-00AA005B4340} [A ] 265. c:\windows\system32\regsvr32.exe [AM] 253. c:\windows\system32\shell32.dll {89820200-ECBD-11cf-8B85-00AA005B4383} [A ] 262. c:\windows\system32\ie4uinit.exe + HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers {0D2E74C4-3C34-11d2-A27E-00C04FC30871} [AM] 253. c:\windows\system32\shell32.dll {24F14F01-7B1C-11d1-838f-0000F80461CF} [AM] 253. c:\windows\system32\shell32.dll {24F14F02-7B1C-11d1-838f-0000F80461CF} [AM] 253. c:\windows\system32\shell32.dll {66742402-F9B9-11D1-A202-0000F81FEDEE} [AM] 253. c:\windows\system32\shell32.dll {F9DB5320-233E-11D1-9F84-707F02C10627} [AM] 268. c:\program files\common files\adobe\acrobat\activex\pdfshell.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved Multimedia File Property Sheet [A ] 269. c:\windows\system32\mmsys.cpl ICM 扫描仪管理 [A ] 270. c:\windows\system32\icmui.dll NTFS Security Page [A ] 271. c:\windows\system32\rshx32.dll OLE Docfile Property Page [A ] 272. c:\windows\system32\docprop.dll Shell extensions for sharing [AM] 273. c:\windows\system32\ntshrui.dll PlusPack CPL Extension [AM] 266. c:\windows\system32\themeui.dll Display Adapter CPL Extension [A ] 274. c:\windows\system32\deskadp.dll Display Monitor CPL Extension [A ] 275. c:\windows\system32\deskmon.dll DS Security Page [A ] 276. c:\windows\system32\dssec.dll ShimLayer Property Page [A ] 277. c:\windows\system32\slayerxp.dll Shell Scrap DataHandler [A ] 278. c:\windows\system32\shscrap.dll Disk Copy Extension [A ] 279. c:\windows\system32\diskcopy.dll Shell extensions for Microsoft Windows Network objects [A ] 280. c:\windows\system32\ntlanui2.dll ICM 监视器管理 [A ] 270. c:\windows\system32\icmui.dll ICM 打印机管理 [A ] 270. c:\windows\system32\icmui.dll Web Printer Shell Extension [A ] 281. c:\windows\system32\printui.dll Disk Quota UI [A ] 282. c:\windows\system32\dskquoui.dll 公文包 [A ] 283. c:\windows\system32\syncui.dll HyperTerminal Icon Ext [A ] 284. c:\windows\system32\hticons.dll 字体 [A ] 285. c:\windows\system32\fontext.dll ICC 配置文件 [A ] 270. c:\windows\system32\icmui.dll Printers Security Page [A ] 271. c:\windows\system32\rshx32.dll Shell extensions for sharing [AM] 273. c:\windows\system32\ntshrui.dll Display TroubleShoot CPL Extension [A ] 286. c:\windows\system32\deskperf.dll MMC Icon Handler [A ] 287. c:\windows\system32\mmcshext.dll Shell Search Band [AM] 288. c:\windows\system32\browseui.dll Crypto PKO Extension [A ] 289. c:\windows\system32\cryptext.dll Crypto Sign Extension [A ] 289. c:\windows\system32\cryptext.dll 网络连接 [AM] 290. c:\windows\system32\netshell.dll 网络连接 [AM] 290. c:\windows\system32\netshell.dll 扫描仪和照相机 [AM] 291. c:\windows\system32\wiashext.dll 扫描仪和照相机 [AM] 291. c:\windows\system32\wiashext.dll 扫描仪和照相机 [AM] 291. c:\windows\system32\wiashext.dll 扫描仪和照相机 [AM] 291. c:\windows\system32\wiashext.dll 扫描仪和照相机 [AM] 291. c:\windows\system32\wiashext.dll Remote Sessions CPL Extension [A ] 292. c:\windows\system32\remotepg.dll Windows Script Host 的 Shell extensions [A ] 293. c:\windows\system32\wshext.dll Microsoft 数据链接 [A ] 294. c:\program files\common files\system\ole db\oledb32.dll Tasks Folder Icon Handler [A ] 295. c:\windows\system32\mstask.dll Tasks Folder Shell Extension [A ] 295. c:\windows\system32\mstask.dll 任务计划 [A ] 295. c:\windows\system32\mstask.dll Set Program Access and Defaults [AM] 251. c:\windows\system32\shdocvw.dll Auto Update Property Sheet Extension [A ] 296. c:\windows\system32\wuaucpl.cpl 搜索 [AM] 251. c:\windows\system32\shdocvw.dll 帮助和支持 [AM] 251. c:\windows\system32\shdocvw.dll 帮助和支持 [AM] 251. c:\windows\system32\shdocvw.dll 运行... [AM] 251. c:\windows\system32\shdocvw.dll Internet [AM] 251. c:\windows\system32\shdocvw.dll 电子邮件 [AM] 251. c:\windows\system32\shdocvw.dll 字体 [AM] 251. c:\windows\system32\shdocvw.dll 管理工具 [AM] 251. c:\windows\system32\shdocvw.dll 以前的版本属性页 [A ] 297. c:\windows\system32\twext.dll 以前的版本 [A ] 297. c:\windows\system32\twext.dll Audio Media Properties Handler [A ] 298. c:\windows\system32\shmedia.dll Video Media Properties Handler [A ] 298. c:\windows\system32\shmedia.dll Wav Properties Handler [A ] 298. c:\windows\system32\shmedia.dll Avi Properties Handler [A ] 298. c:\windows\system32\shmedia.dll Midi Properties Handler [A ] 298. c:\windows\system32\shmedia.dll Video Thumbnail Extractor [A ] 298. c:\windows\system32\shmedia.dll Microsoft Internet 工具栏 [AM] 288. c:\windows\system32\browseui.dll 下载状态 [AM] 288. c:\windows\system32\browseui.dll 补充的外壳文件夹 [AM] 288. c:\windows\system32\browseui.dll 补充的外壳文件夹 2 [AM] 288. c:\windows\system32\browseui.dll BandProxy [AM] 288. c:\windows\system32\browseui.dll Microsoft BrowserBand [AM] 288. c:\windows\system32\browseui.dll 窗格中的搜索 [AM] 288. c:\windows\system32\browseui.dll 注册数目路选项实用程序 [AM] 288. c:\windows\system32\browseui.dll 地址(&A) [AM] 288. c:\windows\system32\browseui.dll 地址 EditBox [AM] 288. c:\windows\system32\browseui.dll Shell Microsoft AutoComplete [AM] 288. c:\windows\system32\browseui.dll MRU 自动完成列表 [AM] 288. c:\windows\system32\browseui.dll 自定义 MRU 自动完成列表 [AM] 288. c:\windows\system32\browseui.dll 可访问的 [AM] 288. c:\windows\system32\browseui.dll 跟踪弹出栏 [AM] 288. c:\windows\system32\browseui.dll Microsoft 历史自动完成列表 [AM] 288. c:\windows\system32\browseui.dll Microsoft 外壳文件夹自动完成列表 [AM] 288. c:\windows\system32\browseui.dll Microsoft 多个自动完成列表容器 [AM] 288. c:\windows\system32\browseui.dll Shell Band Site Menu [AM] 288. c:\windows\system32\browseui.dll 外壳 DeskBarApp [AM] 288. c:\windows\system32\browseui.dll 外壳 DeskBar [AM] 288. c:\windows\system32\browseui.dll 外壳 Rebar BandSite [AM] 288. c:\windows\system32\browseui.dll 用户帮助 [AM] 288. c:\windows\system32\browseui.dll 全局文件夹设置 [AM] 288. c:\windows\system32\browseui.dll IE Search Band [AM] 245. c:\windows\system32\ieframe.dll IE AutoComplete [AM] 245. c:\windows\system32\ieframe.dll Web 搜索 [AM] 288. c:\windows\system32\browseui.dll TridentImageExtractor [AM] 288. c:\windows\system32\browseui.dll Favorites Band [AM] 251. c:\windows\system32\shdocvw.dll History Band [AM] 251. c:\windows\system32\shdocvw.dll Shell Automation Inproc Service [AM] 251. c:\windows\system32\shdocvw.dll Microsoft Browser Architecture [AM] 251. c:\windows\system32\shdocvw.dll ISFBand OC [AM] 251. c:\windows\system32\shdocvw.dll Search Assistant OC [AM] 251. c:\windows\system32\shdocvw.dll Shell DocObject Viewer [AM] 245. c:\windows\system32\ieframe.dll InternetShortcut [AM] 245. c:\windows\system32\ieframe.dll Microsoft Url History Service [AM] 245. c:\windows\system32\ieframe.dll History [AM] 245. c:\windows\system32\ieframe.dll Temporary Internet Files [AM] 245. c:\windows\system32\ieframe.dll Temporary Internet Files [AM] 245. c:\windows\system32\ieframe.dll Microsoft Url Search Hook [AM] 245. c:\windows\system32\ieframe.dll IE4 套件初始屏幕 [AM] 251. c:\windows\system32\shdocvw.dll CDF Extension Copy Hook [AM] 251. c:\windows\system32\shdocvw.dll The Internet [AM] 245. c:\windows\system32\ieframe.dll 浏览器栏 [AM] 251. c:\windows\system32\shdocvw.dll Internet Name Space [AM] 245. c:\windows\system32\ieframe.dll Sendmail service [AM] 299. c:\windows\system32\sendmail.dll Sendmail service [AM] 299. c:\windows\system32\sendmail.dll ActiveX Cache Folder [A ] 300. c:\windows\system32\occache.dll WebCheck [AM] 301. c:\windows\system32\webcheck.dll Subscription Mgr [AM] 301. c:\windows\system32\webcheck.dll Subscription Folder [AM] 301. c:\windows\system32\webcheck.dll WebCheckWebCrawler [AM] 301. c:\windows\system32\webcheck.dll WebCheckChannelAgent [AM] 301. c:\windows\system32\webcheck.dll TrayAgent [AM] 301. c:\windows\system32\webcheck.dll Code Download Agent [AM] 301. c:\windows\system32\webcheck.dll ConnectionAgent [AM] 301. c:\windows\system32\webcheck.dll PostAgent [AM] 301. c:\windows\system32\webcheck.dll WebCheck SyncMgr Handler [AM] 301. c:\windows\system32\webcheck.dll Shell Application Manager [A ] 302. c:\windows\system32\appwiz.cpl Installed Apps Enumerator [A ] 302. c:\windows\system32\appwiz.cpl Darwin App Publisher [A ] 302. c:\windows\system32\appwiz.cpl Shell Image Verbs [A ] 303. c:\windows\system32\shimgvw.dll Shell Image Data Factory [A ] 303. c:\windows\system32\shimgvw.dll GDI+ 文件缩略图解压缩程序 [A ] 303. c:\windows\system32\shimgvw.dll 摘要信息缩略图处理程序(DOCFILES) [A ] 303. c:\windows\system32\shimgvw.dll HTML 缩略图的解压缩程序 [A ] 303. c:\windows\system32\shimgvw.dll Shell Image Property Handler [A ] 303. c:\windows\system32\shimgvw.dll 网络出版向导 [A ] 304. c:\windows\system32\netplwiz.dll 通过 Web 订购照片 [A ] 304. c:\windows\system32\netplwiz.dll 外壳出版向导对象 [A ] 304. c:\windows\system32\netplwiz.dll 获取 Passport 向导 [A ] 304. c:\windows\system32\netplwiz.dll 压缩(zipped)文件夹 [AM] 305. c:\windows\system32\zipfldr.dll Compressed (zipped) Folder Right Drag Handler [AM] 305. c:\windows\system32\zipfldr.dll Compressed (zipped) Folder SendTo Target [AM] 305. c:\windows\system32\zipfldr.dll Extensions Manager Folder [A ] 306. c:\windows\system32\extmgr.dll FTP Folders Webview [A ] 307. c:\windows\system32\msieftp.dll Microsoft DocProp Shell Ext [A ] 308. c:\windows\system32\docprop2.dll Microsoft DocProp Inplace Edit Box Control [A ] 308. c:\windows\system32\docprop2.dll Microsoft DocProp Inplace ML Edit Box Control [A ] 308. c:\windows\system32\docprop2.dll Microsoft DocProp Inplace Droplist Combo Control [A ] 308. c:\windows\system32\docprop2.dll Microsoft DocProp Inplace Calendar Control [A ] 308. c:\windows\system32\docprop2.dll Microsoft DocProp Inplace Time Control [A ] 308. c:\windows\system32\docprop2.dll Directory Query UI [A ] 309. c:\windows\system32\dsquery.dll Shell properties for a DS object [A ] 309. c:\windows\system32\dsquery.dll Directory Object Find [A ] 309. c:\windows\system32\dsquery.dll Directory Start/Search Find [A ] 309. c:\windows\system32\dsquery.dll Directory Property UI [A ] 310. c:\windows\system32\dsuiext.dll Directory Context Menu Verbs [A ] 310. c:\windows\system32\dsuiext.dll MyDocs Copy Hook [AM] 311. c:\windows\system32\mydocs.dll MyDocs Drop Target [AM] 311. c:\windows\system32\mydocs.dll MyDocs Properties [AM] 311. c:\windows\system32\mydocs.dll Offline Files Menu [AM] 312. c:\windows\system32\cscui.dll Offline Files Folder Options [AM] 312. c:\windows\system32\cscui.dll 脱机文件夹 [AM] 312. c:\windows\system32\cscui.dll Microsoft Agent Character Property Sheet Handler [A ] 313. c:\windows\msagent\agentpsh.dll DfsShell [A ] 314. c:\windows\system32\dfsshlex.dll %DESC_PublishDropTarget% [A ] 315. c:\windows\system32\photowiz.dll .CAB file viewer [A ] 316. c:\windows\system32\cabview.dll 用户(&P)... [A ] 317. c:\program files\outlook express\wabfind.dll Windows Media Player Burn Audio CD Context Menu Handler [A ] 318. c:\windows\system32\wmpshell.dll Windows Media Player Play as Playlist Context Menu Handler [A ] 318. c:\windows\system32\wmpshell.dll Windows Media Player Add to Playlist Context Menu Handler [A ] 318. c:\windows\system32\wmpshell.dll WinRAR shell extension [AM] 319. c:\program files\winrar\rarext.dll Portable Media Devices [AM] 320. c:\windows\system32\audiodev.dll Portable Devices [AM] 321. c:\windows\system32\wpdshext.dll Portable Devices Menu [AM] 321. c:\windows\system32\wpdshext.dll IE Microsoft BrowserBand [AM] 245. c:\windows\system32\ieframe.dll IE History and Feeds Shell Data Source for Windows Search [AM] 245. c:\windows\system32\ieframe.dll IE Fade Task [AM] 245. c:\windows\system32\ieframe.dll IE Menu Desk Bar [AM] 245. c:\windows\system32\ieframe.dll HTML Document [AM] 255. c:\windows\system32\mshtml.dll MSHTML Document [AM] 255. c:\windows\system32\mshtml.dll IE Navigation Bar [AM] 245. c:\windows\system32\ieframe.dll IE Menu Site [AM] 245. c:\windows\system32\ieframe.dll IE Menu Band [AM] 245. c:\windows\system32\ieframe.dll IE Microsoft History AutoComplete List [AM] 245. c:\windows\system32\ieframe.dll IE Tracking Shell Menu [AM] 245. c:\windows\system32\ieframe.dll IE IShellFolderBand [AM] 245. c:\windows\system32\ieframe.dll IE BandProxy [AM] 245. c:\windows\system32\ieframe.dll Microsoft Web Browser [AM] 245. c:\windows\system32\ieframe.dll IE MRU AutoComplete List [AM] 245. c:\windows\system32\ieframe.dll IE RSS Feeder Folder [AM] 245. c:\windows\system32\ieframe.dll IE Microsoft Shell Folder AutoComplete List [AM] 245. c:\windows\system32\ieframe.dll IE Microsoft Multiple AutoComplete List Container [AM] 245. c:\windows\system32\ieframe.dll IE Shell Rebar BandSite [AM] 245. c:\windows\system32\ieframe.dll IE Shell Band Site Menu [AM] 245. c:\windows\system32\ieframe.dll &Links [AM] 245. c:\windows\system32\ieframe.dll IE Registry Tree Options Utility [AM] 245. c:\windows\system32\ieframe.dll IE Custom MRU AutoCompleted List [AM] 245. c:\windows\system32\ieframe.dll Microsoft Office HTML Icon Handler [AM] 322. c:\program files\microsoft office\office11\msohev.dll Web Folders [A ] 323. c:\program files\common files\microsoft shared\web folders\msonsext.dll Microsoft Office Metadata Handler [A ] 324. c:\program files\common files\microsoft shared\office12\msoshext.dll Microsoft Office Thumbnail Handler [A ] 324. c:\program files\common files\microsoft shared\office12\msoshext.dll 频道文件 [A ] 325. c:\windows\system32\cdfview.dll 频道快捷方式 [A ] 325. c:\windows\system32\cdfview.dll 频道句柄对象 [A ] 325. c:\windows\system32\cdfview.dll Channel Menu [A ] 325. c:\windows\system32\cdfview.dll Channel Properties [A ] 325. c:\windows\system32\cdfview.dll 通用即插即用设备 [AM] 326. c:\windows\system32\upnpui.dll RISING [AM] 327. c:\windows\system32\ravext.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks {AEB6717E-7E19-11d0-97EE-00C04FD91972} [AM] 253. c:\windows\system32\shell32.dll {62BED6A8-B183-40CC-B9BE-CCA593DF5D99} [AM] 328. c:\windows\fonts\uxfwmfy2xwhbunn.fon + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler Browseui 预加载程序 [AM] 288. c:\windows\system32\browseui.dll 组件类别缓存程序 [AM] 288. c:\windows\system32\browseui.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad PostBootReminder [AM] 253. c:\windows\system32\shell32.dll CDBurn [AM] 253. c:\windows\system32\shell32.dll WebCheck [AM] 301. c:\windows\system32\webcheck.dll SysTray [AM] 329. c:\windows\system32\stobject.dll WPDShServiceObj [AM] 330. c:\windows\system32\wpdshserviceobj.dll UPnPMonitor [AM] 326. c:\windows\system32\upnpui.dll + 用户登陆自运行项目 + HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds StartupPrograms [A ] 331. c:\windows\system32\rdpclip.exe + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon Userinit [AM] 332. c:\windows\system32\userinit.exe + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon Shell [AM] 333. c:\windows\explorer.exe + HKCU\Software\Microsoft\Windows\CurrentVersion\Run ctfmon.exe [AM] 334. c:\windows\system32\ctfmon.exe + HKLM\Software\Microsoft\Windows\CurrentVersion\Run RisTray [AM] 335. c:\program files\rising\ris\rstray.exe Adobe Reader Speed Launcher [A ] 336. c:\program files\adobe\reader 9.0\reader\reader_sl.exe 凤凰还原单机版 [A ] 337. c:\windows\system32\fhtray.exe runeip [AM] 338. c:\program files\rising\antispyware\rstray.exe + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce KKDelay [A ] 339. c:\program files\rising\antispyware\runonce.exe + 开机执行 + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 340. c:\windows\system32\autochk.exe [A ] 341. c:\windows\system32\bsmain.exe [A ] 342. c:\windows\system32\kknative.exe + 映像劫持 + HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options Your Image File Name Here without a path [AM] 343. c:\windows\system32\ntsd.exe + HKCR\Folder\shell explore [AM] 333. c:\windows\explorer.exe open [AM] 333. c:\windows\explorer.exe + HKCR\.bat batfile\edit\Command [A ] 344. c:\windows\system32\notepad.exe batfile\print\Command [A ] 344. c:\windows\system32\notepad.exe + HKCR\.html htmlfile\Edit\Command [A ] 345. c:\program files\microsoft office\office11\msohtmed.exe htmlfile\open\Command [A ] 346. c:\program files\internet explorer\iexplore.exe htmlfile\opennew\Command [A ] 346. c:\program files\internet explorer\iexplore.exe htmlfile\Print\Command [A ] 345. c:\program files\microsoft office\office11\msohtmed.exe htmlfile\printto\Command [A ] 263. c:\windows\system32\rundll32.exe + HKCR\.htm htmlfile\Edit\Command [A ] 345. c:\program files\microsoft office\office11\msohtmed.exe htmlfile\open\Command [A ] 346. c:\program files\internet explorer\iexplore.exe htmlfile\opennew\Command [A ] 346. c:\program files\internet explorer\iexplore.exe htmlfile\Print\Command [A ] 345. c:\program files\microsoft office\office11\msohtmed.exe htmlfile\printto\Command [A ] 263. c:\windows\system32\rundll32.exe + HKCR\.log txtfile\open\Command [A ] 347. c:\windows\notepad.exe txtfile\print\Command [A ] 344. c:\windows\system32\notepad.exe txtfile\printto\Command [A ] 344. c:\windows\system32\notepad.exe + HKCR\.txt txtfile\open\Command [A ] 347. c:\windows\notepad.exe txtfile\print\Command [A ] 344. c:\windows\system32\notepad.exe txtfile\printto\Command [A ] 344. c:\windows\system32\notepad.exe + HKCR\.cmd cmdfile\edit\Command [A ] 344. c:\windows\system32\notepad.exe cmdfile\print\Command [A ] 344. c:\windows\system32\notepad.exe + HKCR\.scr scrfile\install\Command [A ] 263. c:\windows\system32\rundll32.exe + HKCR\.reg regfile\edit\Command [A ] 344. c:\windows\system32\notepad.exe regfile\open\Command [A ] 348. c:\windows\regedit.exe regfile\print\Command [A ] 344. c:\windows\system32\notepad.exe + HKCR\.vbs VBSFile\Edit\Command [A ] 344. c:\windows\system32\notepad.exe VBSFile\Open\Command [A ] 349. c:\windows\system32\wscript.exe VBSFile\Open2\Command [A ] 350. c:\windows\system32\cscript.exe VBSFile\Print\Command [A ] 344. c:\windows\system32\notepad.exe + HKCR\.js JSFile\Edit\Command [A ] 344. c:\windows\system32\notepad.exe JSFile\Open\Command [A ] 349. c:\windows\system32\wscript.exe JSFile\Open2\Command [A ] 350. c:\windows\system32\cscript.exe JSFile\Print\Command [A ] 344. c:\windows\system32\notepad.exe + HKCR\.mp3 kwfile_mp3\open\Command [A ] 351. c:\program files\kwmusic\kwmusic.exe kwfile_mp3\openkw\Command [A ] 351. c:\program files\kwmusic\kwmusic.exe kwfile_mp3\playlist\Command [A ] 351. c:\program files\kwmusic\kwmusic.exe + HKCR\.ini inifile\open\Command [A ] 344. c:\windows\system32\notepad.exe inifile\print\Command [A ] 344. c:\windows\system32\notepad.exe + HKCR\.inf inffile\Install\Command [A ] 263. c:\windows\system32\rundll32.exe inffile\open\Command [A ] 344. c:\windows\system32\notepad.exe inffile\print\Command [A ] 344. c:\windows\system32\notepad.exe + 程序初始化和已知动态连接库 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows AppInit_DLLs [AM] 352. c:\windows\system32\kmon.dll + HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDLLs advapi32 [AM] 74. c:\windows\system32\advapi32.dll comdlg32 [AM] 353. c:\windows\system32\comdlg32.dll gdi32 [AM] 354. c:\windows\system32\gdi32.dll imagehlp [AM] 355. c:\windows\system32\imagehlp.dll kernel32 [AM] 356. c:\windows\system32\kernel32.dll lz32 [A ] 357. c:\windows\system32\lz32.dll ole32 [AM] 358. c:\windows\system32\ole32.dll oleaut32 [AM] 359. c:\windows\system32\oleaut32.dll olecli32 [A ] 360. c:\windows\system32\olecli32.dll olecnv32 [A ] 361. c:\windows\system32\olecnv32.dll olesvr32 [A ] 362. c:\windows\system32\olesvr32.dll olethk32 [A ] 363. c:\windows\system32\olethk32.dll rpcrt4 [AM] 364. c:\windows\system32\rpcrt4.dll shell32 [AM] 253. c:\windows\system32\shell32.dll url [A ] 365. c:\windows\system32\url.dll urlmon [AM] 252. c:\windows\system32\urlmon.dll user32 [AM] 366. c:\windows\system32\user32.dll version [AM] 367. c:\windows\system32\version.dll wininet [AM] 368. c:\windows\system32\wininet.dll wldap32 [AM] 369. c:\windows\system32\wldap32.dll + 打印机监控 + HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors BJ Language Monitor [AM] 370. c:\windows\system32\cnbjmon.dll Local Port [AM] 371. c:\windows\system32\localspl.dll PJL Language Monitor [AM] 372. c:\windows\system32\pjlmon.dll Standard TCP/IP Port [AM] 373. c:\windows\system32\tcpmon.dll USB Monitor [AM] 374. c:\windows\system32\usbmon.dll + 安全验证 + HKLM\SYSTEM\CurrentControlSet\Control\SecurityProviders SecurityProviders [A ] 375. c:\windows\system32\msapsspc.dll [AM] 376. c:\windows\system32\schannel.dll [A ] 377. c:\windows\system32\digest.dll [A ] 378. c:\windows\system32\msnsspc.dll + HKLM\SYSTEM\CurrentControlSet\Control\Lsa Authentication Packages [AM] 379. c:\windows\system32\msv1_0.dll Notification Packages [AM] 380. c:\windows\system32\scecli.dll Security Packages [AM] 381. c:\windows\system32\kerberos.dll [AM] 379. c:\windows\system32\msv1_0.dll [AM] 376. c:\windows\system32\schannel.dll [AM] 382. c:\windows\system32\wdigest.dll + 其他自启动项目 + C:\WINDOWS\Tasks SogouImeMgr.job [A ] 383. c:\program files\sogouinput\4.1.1.2379\pinyinrepair.exe + 正在运行的进程 + 0000012c(300) svchost.exe 01000000[00006000] [AM] 1. c:\windows\system32\svchost.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 76CB0000[00020000] [ M] 398. c:\windows\system32\ntmarta.dll 71B70000[00013000] [ M] 399. c:\windows\system32\samlib.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 00730000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 5A720000[00015000] [AM] 70. c:\windows\system32\webclnt.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 006C0000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 76EB0000[0003C000] [ M] 405. c:\windows\system32\rasapi32.dll 76E60000[00012000] [ M] 406. c:\windows\system32\rasman.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 76E80000[0002F000] [ M] 408. c:\windows\system32\tapi32.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 77C40000[00024000] [AM] 379. c:\windows\system32\msv1_0.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 72240000[00005000] [ M] 411. c:\windows\system32\sensapi.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 76F90000[00006000] [ M] 412. c:\windows\system32\rasadhlp.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll + 00000148(328) alg.exe 01000000[0000D000] [AM] 3. c:\windows\system32\alg.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 76AF0000[00011000] [ M] 415. c:\windows\system32\atl.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 71A40000[0000B000] [ M] 416. c:\windows\system32\wsock32.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll 007B0000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll + 0000017c(380) RavTask.exe 00400000[00020000] [AM] 47. c:\program files\rising\ris\ravtask.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 10000000[00017000] [ M] 418. c:\program files\rising\ris\rsconf.dll 003E0000[0000E000] [ M] 419. c:\program files\rising\ris\rsappmgr.dll 00780000[00031000] [ M] 420. c:\program files\rising\ris\cfgdll.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 008D0000[00010000] [ M] 421. c:\program files\rising\ris\proccomm.dll 7C340000[00056000] [ M] 422. c:\windows\system32\msvcr71.dll 7C3A0000[0007B000] [ M] 423. c:\windows\system32\msvcp71.dll 008F0000[00018000] [ M] 424. c:\program files\rising\ris\rsstub.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 00EF0000[00029000] [ M] 425. c:\program files\rising\ris\rstask.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76BC0000[0000B000] [ M] 426. c:\windows\system32\psapi.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll + 0000022c(556) ntsd.exe 01000000[0000B000] [AM] 343. c:\windows\system32\ntsd.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 6D920000[000F6000] [ M] 427. c:\windows\system32\dbgeng.dll 68D60000[000A1000] [ M] 428. c:\windows\system32\dbghelp.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll + 0000023c(572) ScanFrm.exe 00400000[0000B000] [AM] 50. c:\program files\rising\ris\scanfrm.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 7C3A0000[0007B000] [ M] 423. c:\windows\system32\msvcp71.dll 7C340000[00056000] [ M] 422. c:\windows\system32\msvcr71.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 10000000[00029000] [ M] 429. c:\program files\rising\ris\combase.dll 003E0000[00019000] [ M] 430. c:\program files\rising\ris\moncomm.dll 00900000[0000A000] [ M] 431. c:\program files\rising\ris\scansrvp.dll 00910000[00010000] [ M] 421. c:\program files\rising\ris\proccomm.dll 00C20000[0000E000] [ M] 432. c:\program files\rising\ris\scansrv.dll 01130000[0002D000] [ M] 433. c:\program files\rising\ris\comx3.dll 01160000[00019000] [ M] 434. c:\program files\rising\ris\syslay.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 01640000[0000F000] [ M] 438. c:\program files\rising\ris\scanravt.dll 01650000[00070000] [ M] 439. c:\program files\rising\ris\scanbt.dll 016C0000[0000D000] [ M] 440. c:\program files\rising\ris\scanstub.dll 016D0000[00067000] [ M] 441. c:\program files\rising\ris\rslog.dll 01760000[0000D000] [ M] 442. c:\program files\rising\ris\scanadd.dll 01770000[0000E000] [ M] 419. c:\program files\rising\ris\rsappmgr.dll 01790000[00031000] [ M] 420. c:\program files\rising\ris\cfgdll.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 018D0000[00026000] [ M] 443. c:\program files\rising\ris\scanner.dll 01900000[0003C000] [ M] 444. c:\program files\rising\ris\recomp.dll 01950000[00036000] [ M] 445. c:\program files\rising\ris\refs.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 01BB0000[00030000] [ M] 446. c:\program files\rising\ris\viruslib.dll 01CF0000[00028000] [ M] 447. c:\program files\rising\ris\relibldr.dll + 00000240(576) svchost.exe 01000000[00006000] [AM] 1. c:\windows\system32\svchost.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 749C0000[00054000] [AM] 60. c:\windows\system32\wiaservc.dll 74A40000[00007000] [ M] 448. c:\windows\system32\cfgmgr32.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 73AA0000[00015000] [ M] 450. c:\windows\system32\mscms.dll 72F70000[00026000] [ M] 451. c:\windows\system32\winspool.drv 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 00730000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 5A4F0000[00026000] [ M] 454. c:\windows\system32\wiavusd.dll 76750000[00009000] [ M] 455. c:\windows\system32\shfolder.dll 71CC0000[0001B000] [ M] 456. c:\windows\system32\actxprxy.dll 73B10000[00013000] [ M] 457. c:\windows\system32\sti.dll + 000002f8(760) explorer.exe 01000000[000F1000] [AM] 333. c:\windows\explorer.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 75EF0000[000FD000] [AM] 288. c:\windows\system32\browseui.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 7E550000[00171000] [AM] 251. c:\windows\system32\shdocvw.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 75430000[00071000] [ M] 458. c:\windows\system32\cryptui.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 00400000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll 76590000[0004E000] [AM] 312. c:\windows\system32\cscui.dll 76570000[0001C000] [AM] 239. c:\windows\system32\cscdll.dll 5B680000[0006E000] [AM] 266. c:\windows\system32\themeui.dll 762F0000[00005000] [ M] 460. c:\windows\system32\msimg32.dll 01360000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 5FE40000[00031000] [ M] 461. c:\windows\system32\msutb.dll 74680000[0004C000] [ M] 462. c:\windows\system32\msctf.dll 71B70000[00013000] [ M] 399. c:\windows\system32\samlib.dll 76960000[00024000] [AM] 273. c:\windows\system32\ntshrui.dll 76AF0000[00011000] [ M] 415. c:\windows\system32\atl.dll 76950000[00008000] [ M] 463. c:\windows\system32\linkinfo.dll 01AC0000[00A91000] [AM] 245. c:\windows\system32\ieframe.dll 7DE40000[00199000] [AM] 290. c:\windows\system32\netshell.dll 76BD0000[0002D000] [ M] 464. c:\windows\system32\credui.dll 42E00000[0000A000] [ M] 465. c:\windows\system32\dot3api.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 4A5C0000[00006000] [ M] 466. c:\windows\system32\dot3dlg.dll 5A990000[00028000] [ M] 467. c:\windows\system32\onex.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 4A820000[00022000] [ M] 468. c:\windows\system32\eappcfg.dll 75FF0000[00065000] [ M] 469. c:\windows\system32\msvcp60.dll 582E0000[0000E000] [ M] 470. c:\windows\system32\eappprxy.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 3FDE0000[00441000] [ M] 471. c:\windows\system32\msi.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 02DA0000[0003D000] [AM] 301. c:\windows\system32\webcheck.dll 74CF0000[00091000] [ M] 473. c:\windows\system32\mlang.dll 74A60000[00020000] [AM] 329. c:\windows\system32\stobject.dll 74A50000[0000A000] [ M] 474. c:\windows\system32\batmeter.dll 74A30000[00008000] [ M] 475. c:\windows\system32\powrprof.dll 164A0000[00023000] [AM] 330. c:\windows\system32\wpdshserviceobj.dll 4A410000[00059000] [ M] 476. c:\windows\system32\winhttp.dll 5AFD0000[0003D000] [AM] 326. c:\windows\system32\upnpui.dll 76540000[00024000] [ M] 477. c:\windows\system32\upnp.dll 74E60000[0000C000] [ M] 478. c:\windows\system32\ssdpapi.dll 723A0000[00019000] [AM] 311. c:\windows\system32\mydocs.dll 72C90000[00009000] [ M] 479. c:\windows\system32\wdmaud.drv 72C80000[00008000] [ M] 480. c:\windows\system32\msacm32.drv 77BA0000[00007000] [ M] 481. c:\windows\system32\midimap.dll 109C0000[0002C000] [ M] 482. c:\windows\system32\portabledevicetypes.dll 10930000[00049000] [ M] 483. c:\windows\system32\portabledeviceapi.dll 03150000[0005B000] [AM] 268. c:\program files\common files\adobe\acrobat\activex\pdfshell.dll 031B0000[0004C000] [ M] 484. c:\program files\common files\adobe\acrobat\activex\pdfshell.chs 71A90000[00012000] [ M] 485. c:\windows\system32\mpr.dll 75ED0000[00007000] [ M] 486. c:\windows\system32\drprov.dll 71B90000[0000E000] [AM] 28. c:\windows\system32\ntlanman.dll 71C50000[00015000] [ M] 487. c:\windows\system32\netui0.dll 71C10000[00040000] [ M] 488. c:\windows\system32\netui1.dll 71C00000[00007000] [ M] 489. c:\windows\system32\netrap.dll 75EE0000[0000A000] [AM] 71. c:\windows\system32\davclnt.dll 75E00000[000AE000] [ M] 490. c:\windows\system32\sxs.dll 71A40000[0000B000] [ M] 416. c:\windows\system32\wsock32.dll 71600000[0000F000] [ M] 491. c:\windows\system32\browselc.dll 04060000[00020000] [AM] 247. c:\program files\thunder network\thunder\comdlls\xunleibho_now.dll 74BE0000[0002C000] [ M] 492. c:\windows\system32\oleacc.dll 040A0000[0000E000] [ M] 493. c:\program files\thunder network\thunder\components\resworker\dsbho_00.dll 040B0000[0001E000] [ M] 494. c:\program files\thunder network\thunder\components\resworker\dataprocessor_00.dll 6C520000[0004D000] [ M] 495. c:\windows\system32\duser.dll 7CF70000[00168000] [ M] 496. c:\windows\system32\quartz.dll 758D0000[000F1000] [ M] 497. c:\windows\system32\msgina.dll 73540000[0003D000] [ M] 498. c:\windows\system32\odbc32.dll 76320000[00047000] [AM] 353. c:\windows\system32\comdlg32.dll 1F840000[00017000] [ M] 499. c:\windows\system32\odbcint.dll 73B10000[00013000] [ M] 457. c:\windows\system32\sti.dll 74A40000[00007000] [ M] 448. c:\windows\system32\cfgmgr32.dll 05D00000[0002E000] [ M] 500. c:\documents and settings\administrator\application data\rt1.dll 036F0000[00011000] [ M] 501. c:\windows\system32\scevfjrcmab7.dll 00A00000[00013000] [AM] 328. c:\windows\fonts\uxfwmfy2xwhbunn.fon 72FA0000[00010000] [ M] 502. c:\windows\system32\wzcsapi.dll 03C70000[0002E000] [AM] 319. c:\program files\winrar\rarext.dll 03CA0000[00024000] [AM] 327. c:\windows\system32\ravext.dll 71800000[0007C000] [ M] 503. c:\windows\system32\shdoclc.dll 03F90000[0003B000] [AM] 246. c:\program files\thunder network\thunder\comdlls\tdatonce_now.dll 7C120000[00019000] [ M] 504. c:\windows\system32\atl71.dll 7C3A0000[0007B000] [ M] 423. c:\windows\system32\msvcp71.dll 7C340000[00056000] [ M] 422. c:\windows\system32\msvcr71.dll 325C0000[00012000] [AM] 322. c:\program files\microsoft office\office11\msohev.dll 5A540000[00090000] [AM] 291. c:\windows\system32\wiashext.dll 732F0000[00054000] [AM] 305. c:\windows\system32\zipfldr.dll 5CE80000[00010000] [AM] 299. c:\windows\system32\sendmail.dll 16210000[0027E000] [AM] 321. c:\windows\system32\wpdshext.dll 73CE0000[00013000] [ M] 505. c:\windows\system32\shgina.dll 07160000[00046000] [AM] 320. c:\windows\system32\audiodev.dll 15110000[0025C000] [ M] 506. c:\windows\system32\wmvcore.dll 11C70000[0003A000] [ M] 507. c:\windows\system32\wmasf.dll + 00000364(868) smss.exe 48580000[0000F000] [ M] 508. c:\windows\system32\smss.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll + 000003ac(940) csrss.exe 4A680000[00005000] [ M] 509. c:\windows\system32\csrss.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 75AA0000[0000B000] [ M] 510. c:\windows\system32\csrsrv.dll 75AB0000[00010000] [ M] 511. c:\windows\system32\basesrv.dll 764E0000[00054000] [ M] 512. c:\windows\system32\winsrv.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 75E00000[000AE000] [ M] 490. c:\windows\system32\sxs.dll + 000003c4(964) winlogon.exe 01000000[0007D000] [ M] 513. c:\windows\system32\winlogon.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 77FE0000[00012000] [ M] 514. c:\windows\system32\authz.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 758A0000[00008000] [ M] 515. c:\windows\system32\nddeapi.dll 75890000[0000A000] [ M] 516. c:\windows\system32\profmap.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 76BC0000[0000B000] [ M] 426. c:\windows\system32\psapi.dll 76B90000[0000F000] [ M] 517. c:\windows\system32\regapi.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 758D0000[000F1000] [ M] 497. c:\windows\system32\msgina.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 73540000[0003D000] [ M] 498. c:\windows\system32\odbc32.dll 76320000[00047000] [AM] 353. c:\windows\system32\comdlg32.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 1F840000[00017000] [ M] 499. c:\windows\system32\odbcint.dll 76E10000[00023000] [AM] 22. c:\windows\system32\shsvcs.dll 76B80000[00005000] [ M] 518. c:\windows\system32\sfc.dll 76C30000[00028000] [ M] 519. c:\windows\system32\sfc_os.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 72360000[0001A000] [ M] 520. c:\windows\system32\winscard.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76570000[0001C000] [AM] 239. c:\windows\system32\cscdll.dll 45D20000[00008000] [AM] 240. c:\windows\system32\dimsntfy.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 758B0000[0001A000] [AM] 241. c:\windows\system32\wlnotify.dll 71A90000[00012000] [ M] 485. c:\windows\system32\mpr.dll 72F70000[00026000] [ M] 451. c:\windows\system32\winspool.drv 77C40000[00024000] [AM] 379. c:\windows\system32\msv1_0.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 71B70000[00013000] [ M] 399. c:\windows\system32\samlib.dll 76590000[0004E000] [AM] 312. c:\windows\system32\cscui.dll 72C90000[00009000] [ M] 479. c:\windows\system32\wdmaud.drv 76CB0000[00020000] [ M] 398. c:\windows\system32\ntmarta.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 72C80000[00008000] [ M] 480. c:\windows\system32\msacm32.drv 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BA0000[00007000] [ M] 481. c:\windows\system32\midimap.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll 017E0000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll + 000003f0(1008) services.exe 01000000[0001D000] [AM] 20. c:\windows\system32\services.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 5F9A0000[0000C000] [ M] 521. c:\windows\system32\ncobjapi.dll 75FF0000[00065000] [ M] 469. c:\windows\system32\msvcp60.dll 75840000[0004B000] [ M] 522. c:\windows\system32\scesrv.dll 77FE0000[00012000] [ M] 514. c:\windows\system32\authz.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 7E1E0000[00020000] [ M] 523. c:\windows\system32\umpnpmgr.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 46040000[0000F000] [ M] 524. c:\windows\apppatch\acadproc.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 76CE0000[00011000] [ M] 525. c:\windows\system32\eventlog.dll 76BC0000[0000B000] [ M] 426. c:\windows\system32\psapi.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 750B0000[00013000] [ M] 526. c:\windows\system32\cabinet.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 01120000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll + 000003fc(1020) lsass.exe 01000000[00006000] [AM] 36. c:\windows\system32\lsass.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 74480000[000AF000] [ M] 527. c:\windows\system32\lsasrv.dll 71A90000[00012000] [ M] 485. c:\windows\system32\mpr.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 76770000[00014000] [ M] 528. c:\windows\system32\ntdsapi.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 71B70000[00013000] [ M] 399. c:\windows\system32\samlib.dll 743A0000[00068000] [ M] 530. c:\windows\system32\samsrv.dll 76760000[0000C000] [ M] 531. c:\windows\system32\cryptdll.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 4D200000[0000E000] [ M] 532. c:\windows\system32\msprivs.dll 71C70000[0004C000] [AM] 381. c:\windows\system32\kerberos.dll 77C40000[00024000] [AM] 379. c:\windows\system32\msv1_0.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 74410000[00065000] [ M] 533. c:\windows\system32\netlogon.dll 76790000[0002E000] [AM] 69. c:\windows\system32\w32time.dll 75FF0000[00065000] [ M] 469. c:\windows\system32\msvcp60.dll 767C0000[00027000] [AM] 376. c:\windows\system32\schannel.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 742E0000[0000F000] [AM] 382. c:\windows\system32\wdigest.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 74370000[0002D000] [AM] 380. c:\windows\system32\scecli.dll 74340000[0002F000] [ M] 534. c:\windows\system32\ipsecsvc.dll 77FE0000[00012000] [ M] 514. c:\windows\system32\authz.dll 73ED0000[000D0000] [ M] 535. c:\windows\system32\oakley.dll 742D0000[0000B000] [ M] 536. c:\windows\system32\winipsec.dll 74300000[0000B000] [ M] 537. c:\windows\system32\pstorsvc.dll 74320000[0001A000] [ M] 538. c:\windows\system32\psbase.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll 68100000[00026000] [ M] 539. c:\windows\system32\dssenh.dll + 000004a0(1184) svchost.exe 01000000[00006000] [AM] 1. c:\windows\system32\svchost.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 76CB0000[00020000] [ M] 398. c:\windows\system32\ntmarta.dll 71B70000[00013000] [ M] 399. c:\windows\system32\samlib.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 76230000[00064000] [AM] 12. c:\windows\system32\rpcss.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 00730000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 761C0000[00051000] [AM] 63. c:\windows\system32\termsrv.dll 74ED0000[00006000] [ M] 540. c:\windows\system32\icaapi.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 77FE0000[00012000] [ M] 514. c:\windows\system32\authz.dll 75070000[0001F000] [ M] 541. c:\windows\system32\mstlsapi.dll 77C90000[00032000] [ M] 542. c:\windows\system32\activeds.dll 76DE0000[00025000] [ M] 543. c:\windows\system32\adsldpc.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 76AF0000[00011000] [ M] 415. c:\windows\system32\atl.dll 76B90000[0000F000] [ M] 517. c:\windows\system32\regapi.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll + 000004d0(1232) sv19.tmp 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 009F0000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 74680000[0004C000] [ M] 462. c:\windows\system32\msctf.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 72C90000[00009000] [ M] 479. c:\windows\system32\wdmaud.drv 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 72C80000[00008000] [ M] 480. c:\windows\system32\msacm32.drv 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BA0000[00007000] [ M] 481. c:\windows\system32\midimap.dll 01720000[0002E000] [ M] 500. c:\documents and settings\administrator\application data\rt1.dll 01750000[00013000] [AM] 328. c:\windows\fonts\uxfwmfy2xwhbunn.fon + 000004f8(1272) svchost.exe 01000000[00006000] [AM] 1. c:\windows\system32\svchost.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 76230000[00064000] [AM] 12. c:\windows\system32\rpcss.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 00730000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 76F80000[00008000] [ M] 544. c:\windows\system32\winrnr.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 76F90000[00006000] [ M] 412. c:\windows\system32\rasadhlp.dll 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll + 00000588(1416) svchost.exe 01000000[00006000] [AM] 1. c:\windows\system32\svchost.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 76CB0000[00020000] [ M] 398. c:\windows\system32\ntmarta.dll 71B70000[00013000] [ M] 399. c:\windows\system32\samlib.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 00730000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 76E10000[00023000] [AM] 22. c:\windows\system32\shsvcs.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 7CC90000[00021000] [AM] 13. c:\windows\system32\dhcpcsvc.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll 7DDB0000[0008C000] [AM] 80. c:\windows\system32\wzcsvc.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 76D00000[00004000] [ M] 545. c:\windows\system32\wmi.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 4A340000[0000B000] [ M] 546. c:\windows\system32\eapolqec.dll 76AF0000[00011000] [ M] 415. c:\windows\system32\atl.dll 4A5A0000[00016000] [ M] 547. c:\windows\system32\qutil.dll 75FF0000[00065000] [ M] 469. c:\windows\system32\msvcp60.dll 42E00000[0000A000] [ M] 465. c:\windows\system32\dot3api.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 5DF20000[00106000] [ M] 548. c:\windows\system32\esent.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll 75DB0000[00027000] [ M] 549. c:\windows\system32\rastls.dll 75430000[00071000] [ M] 458. c:\windows\system32\cryptui.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 019F0000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 76D10000[00018000] [ M] 550. c:\windows\system32\mprapi.dll 77C90000[00032000] [ M] 542. c:\windows\system32\activeds.dll 76DE0000[00025000] [ M] 543. c:\windows\system32\adsldpc.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 76EB0000[0003C000] [ M] 405. c:\windows\system32\rasapi32.dll 76E60000[00012000] [ M] 406. c:\windows\system32\rasman.dll 76E80000[0002F000] [ M] 408. c:\windows\system32\tapi32.dll 767C0000[00027000] [AM] 376. c:\windows\system32\schannel.dll 72360000[0001A000] [ M] 520. c:\windows\system32\winscard.dll 76BC0000[0000B000] [ M] 426. c:\windows\system32\psapi.dll 70DE0000[0000D000] [AM] 5. c:\windows\system32\audiosrv.dll 75D90000[00016000] [ M] 551. c:\windows\system32\raschap.dll 77C40000[00024000] [AM] 379. c:\windows\system32\msv1_0.dll 76850000[00024000] [AM] 27. c:\windows\system32\wkssvc.dll 76770000[00014000] [ M] 528. c:\windows\system32\ntdsapi.dll 75EB0000[00012000] [AM] 11. c:\windows\system32\cryptsvc.dll 752B0000[00030000] [ M] 552. c:\windows\system32\certcli.dll 77CD0000[00033000] [AM] 37. c:\windows\system32\netman.dll 7DE40000[00199000] [AM] 290. c:\windows\system32\netshell.dll 76BD0000[0002D000] [ M] 464. c:\windows\system32\credui.dll 4A5C0000[00006000] [ M] 466. c:\windows\system32\dot3dlg.dll 5A990000[00028000] [ M] 467. c:\windows\system32\onex.dll 4A820000[00022000] [ M] 468. c:\windows\system32\eappcfg.dll 582E0000[0000E000] [ M] 470. c:\windows\system32\eappprxy.dll 72FA0000[00010000] [ M] 502. c:\windows\system32\wzcsapi.dll 74FF0000[0001A000] [AM] 26. c:\windows\system32\srvsvc.dll 768A0000[00044000] [AM] 21. c:\windows\system32\es.dll 73C90000[00008000] [AM] 54. c:\windows\system32\seclogon.dll 76790000[0002E000] [AM] 69. c:\windows\system32\w32time.dll 50000000[00005000] [AM] 78. c:\windows\system32\wuauserv.dll 50040000[00119000] [ M] 553. c:\windows\system32\wuaueng.dll 65000000[0002E000] [ M] 554. c:\windows\system32\advpack.dll 750B0000[00013000] [ M] 526. c:\windows\system32\cabinet.dll 602D0000[0000B000] [ M] 555. c:\windows\system32\mspatcha.dll 76B80000[00005000] [ M] 518. c:\windows\system32\sfc.dll 76C30000[00028000] [ M] 519. c:\windows\system32\sfc_os.dll 76750000[00009000] [ M] 455. c:\windows\system32\shfolder.dll 4A410000[00059000] [ M] 476. c:\windows\system32\winhttp.dll 72F70000[00026000] [ M] 451. c:\windows\system32\winspool.drv 67180000[00028000] [AM] 72. c:\windows\system32\wbem\wmisvc.dll 75340000[0006D000] [ M] 556. c:\windows\system32\vssapi.dll 74FD0000[00019000] [AM] 65. c:\windows\system32\trkwks.dll 72260000[0000D000] [AM] 55. c:\windows\system32\sens.dll 66700000[00052000] [AM] 56. c:\windows\system32\ipnathlp.dll 77FE0000[00012000] [ M] 514. c:\windows\system32\authz.dll 75E00000[000AE000] [ M] 490. c:\windows\system32\sxs.dll 75690000[0013C000] [ M] 557. c:\windows\system32\comsvcs.dll 75090000[00014000] [ M] 558. c:\windows\system32\colbact.dll 75050000[00013000] [ M] 559. c:\windows\system32\mtxclu.dll 71A40000[0000B000] [ M] 416. c:\windows\system32\wsock32.dll 762A0000[00012000] [ M] 560. c:\windows\system32\clusapi.dll 75010000[00012000] [ M] 561. c:\windows\system32\resutils.dll 76BA0000[00016000] [AM] 7. c:\windows\system32\browser.dll 76F90000[00006000] [ M] 412. c:\windows\system32\rasadhlp.dll 751F0000[00037000] [ M] 562. c:\windows\system32\wbem\wbemcomn.dll 75D00000[00085000] [ M] 563. c:\windows\system32\wbem\wbemcore.dll 75270000[0003F000] [ M] 564. c:\windows\system32\wbem\esscli.dll 755F0000[00076000] [ M] 565. c:\windows\system32\wbem\fastprox.dll 74F80000[00019000] [ M] 566. c:\windows\system32\wbem\wmiutils.dll 75160000[0002F000] [ M] 567. c:\windows\system32\wbem\repdrvfs.dll 3FCC0000[00072000] [ M] 568. c:\windows\system32\wbem\wmiprvsd.dll 5F9A0000[0000C000] [ M] 521. c:\windows\system32\ncobjapi.dll 752F0000[00046000] [ M] 569. c:\windows\system32\wbem\wbemess.dll 75550000[00092000] [ M] 570. c:\windows\system32\netcfgx.dll 7E510000[00032000] [AM] 42. c:\windows\system32\rasmans.dll 742D0000[0000B000] [ M] 536. c:\windows\system32\winipsec.dll 73350000[0003F000] [AM] 62. c:\windows\system32\tapisrv.dll 75130000[00011000] [ M] 571. c:\windows\system32\rastapi.dll 57980000[00035000] [ M] 572. c:\windows\system32\unimdm.tsp 71F90000[00007000] [ M] 573. c:\windows\system32\uniplat.dll 57A00000[0000B000] [ M] 574. c:\windows\system32\kmddsp.tsp 579E0000[00010000] [ M] 575. c:\windows\system32\ndptsp.tsp 57A10000[00008000] [ M] 576. c:\windows\system32\ipconf.tsp 57A30000[00045000] [ M] 577. c:\windows\system32\h323.tsp 57A20000[0000A000] [ M] 578. c:\windows\system32\hidphone.tsp 68BE0000[00009000] [ M] 579. c:\windows\system32\hid.dll 721D0000[00037000] [ M] 580. c:\windows\system32\rasppp.dll 72420000[00006000] [ M] 581. c:\windows\system32\ntlsapi.dll 71C70000[0004C000] [AM] 381. c:\windows\system32\kerberos.dll 76760000[0000C000] [ M] 531. c:\windows\system32\cryptdll.dll 4A930000[00013000] [ M] 582. c:\windows\system32\rasqec.dll 3FDE0000[00441000] [ M] 471. c:\windows\system32\msi.dll 754B0000[00096000] [ M] 583. c:\windows\system32\rasdlg.dll 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll 5F970000[0000E000] [ M] 584. c:\windows\system32\wbem\ncprov.dll 74E30000[0000E000] [ M] 585. c:\windows\system32\wbem\wbemsvc.dll 75100000[0002E000] [AM] 58. c:\windows\system32\srsvc.dll 74A30000[00008000] [ M] 475. c:\windows\system32\powrprof.dll + 000005f8(1528) svchost.exe 01000000[00006000] [AM] 1. c:\windows\system32\svchost.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 76740000[0000D000] [AM] 16. c:\windows\system32\dnsrslvr.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll + 0000062c(1580) rsnetsvr.exe 00400000[00079000] [ M] 586. c:\program files\rising\ris\rsnetsvr.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 10000000[00035000] [ M] 587. c:\program files\rising\ris\ncomm.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 00390000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 003A0000[00019000] [ M] 434. c:\program files\rising\ris\syslay.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 00CF0000[0002D000] [ M] 433. c:\program files\rising\ris\comx3.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 00E60000[00010000] [ M] 421. c:\program files\rising\ris\proccomm.dll 7C340000[00056000] [ M] 422. c:\windows\system32\msvcr71.dll 7C3A0000[0007B000] [ M] 423. c:\windows\system32\msvcp71.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 01BE0000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 02140000[00114000] [ M] 588. c:\windows\system32\msxml3.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 76EB0000[0003C000] [ M] 405. c:\windows\system32\rasapi32.dll 76E60000[00012000] [ M] 406. c:\windows\system32\rasman.dll 76E80000[0002F000] [ M] 408. c:\windows\system32\tapi32.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 77C40000[00024000] [AM] 379. c:\windows\system32\msv1_0.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 72240000[00005000] [ M] 411. c:\windows\system32\sensapi.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 76F90000[00006000] [ M] 412. c:\windows\system32\rasadhlp.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll 757D0000[00013000] [AM] 238. c:\windows\system32\cryptnet.dll 76BC0000[0000B000] [ M] 426. c:\windows\system32\psapi.dll 4A410000[00059000] [ M] 476. c:\windows\system32\winhttp.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 750B0000[00013000] [ M] 526. c:\windows\system32\cabinet.dll + 0000065c(1628) svchost.exe 01000000[00006000] [AM] 1. c:\windows\system32\svchost.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 76CB0000[00020000] [ M] 398. c:\windows\system32\ntmarta.dll 71B70000[00013000] [ M] 399. c:\windows\system32\samlib.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 00730000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 74BA0000[00006000] [AM] 29. c:\windows\system32\lmhsvc.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll + 00000688(1672) RavMonD.exe 00400000[00020000] [AM] 49. c:\program files\rising\ris\ravmond.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 10000000[00029000] [ M] 429. c:\program files\rising\ris\combase.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 7C3A0000[0007B000] [ M] 423. c:\windows\system32\msvcp71.dll 7C340000[00056000] [ M] 422. c:\windows\system32\msvcr71.dll 00A00000[00019000] [ M] 430. c:\program files\rising\ris\moncomm.dll 00A20000[0001D000] [ M] 589. c:\program files\rising\ris\monbase.dll 00A50000[00067000] [ M] 441. c:\program files\rising\ris\rslog.dll 00AE0000[00018000] [ M] 590. c:\program files\rising\ris\mondrv.dll 00B10000[00023000] [ M] 591. c:\program files\rising\ris\defmon.dll 00B50000[00010000] [ M] 592. c:\program files\rising\ris\moncom08.dll 00B70000[0006C000] [ M] 593. c:\program files\rising\ris\monrule.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 00C20000[00028000] [ M] 594. c:\program files\rising\ris\filemon.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 00C60000[0002B000] [ M] 595. c:\program files\rising\ris\mailmon.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 00CA0000[00012000] [ M] 596. c:\program files\rising\ris\hookweb.dll 00D20000[00064000] [ M] 597. c:\program files\rising\ris\rfwlog.dll 00DB0000[0000C000] [ M] 598. c:\program files\rising\ris\rfwrule.dll 00DC0000[00040000] [ M] 599. c:\program files\rising\ris\rfwsrv.dll 00E00000[00019000] [ M] 434. c:\program files\rising\ris\syslay.dll 00E40000[0001B000] [ M] 600. c:\program files\rising\ris\mports.dll 00E70000[00010000] [ M] 601. c:\program files\rising\ris\rfwdrvc.dll 00E90000[00014000] [ M] 602. c:\program files\rising\ris\rfwdrv.dll 76BC0000[0000B000] [ M] 426. c:\windows\system32\psapi.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 01500000[00067000] [ M] 603. c:\program files\rising\ris\rsnetsvr.dll 01670000[00014000] [ M] 604. c:\program files\rising\ris\urlrule.dll 01690000[0002D000] [ M] 433. c:\program files\rising\ris\comx3.dll 016D0000[0003C000] [ M] 444. c:\program files\rising\ris\recomp.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 01720000[00036000] [ M] 445. c:\program files\rising\ris\refs.dll 01AB0000[00030000] [ M] 446. c:\program files\rising\ris\viruslib.dll 01AF0000[00028000] [ M] 447. c:\program files\rising\ris\relibldr.dll 01B70000[0022A000] [ M] 605. c:\program files\rising\ris\rfwproxy.dll 71A40000[0000B000] [ M] 416. c:\windows\system32\wsock32.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll 01FF0000[00010000] [ M] 421. c:\program files\rising\ris\proccomm.dll 02300000[0000E000] [ M] 419. c:\program files\rising\ris\rsappmgr.dll 02320000[00031000] [ M] 420. c:\program files\rising\ris\cfgdll.dll 02590000[00020000] [ M] 606. c:\program files\rising\ris\hooksys.dll 02640000[0001F000] [ M] 607. c:\program files\rising\ris\proccom.dll 02660000[00024000] [ M] 608. c:\program files\rising\ris\rscommx2.dll 027C0000[00013000] [ M] 609. c:\program files\rising\ris\hookcont.dll 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll 02A00000[00071000] [ M] 610. c:\program files\rising\ris\bacore.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 76B80000[00005000] [ M] 518. c:\windows\system32\sfc.dll 76C30000[00028000] [ M] 519. c:\windows\system32\sfc_os.dll 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 02B90000[0002A000] [ M] 611. c:\program files\rising\ris\rsstore.dll 02BD0000[0000D000] [ M] 442. c:\program files\rising\ris\scanadd.dll 02BE0000[00026000] [ M] 443. c:\program files\rising\ris\scanner.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll 04C00000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 05350000[00022000] [ M] 612. c:\program files\rising\ris\ffr.dll 05390000[00021000] [ M] 613. c:\program files\rising\ris\nvfile.dll 76D10000[00018000] [ M] 550. c:\windows\system32\mprapi.dll 77C90000[00032000] [ M] 542. c:\windows\system32\activeds.dll 76DE0000[00025000] [ M] 543. c:\windows\system32\adsldpc.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 76AF0000[00011000] [ M] 415. c:\windows\system32\atl.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 71B70000[00013000] [ M] 399. c:\windows\system32\samlib.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 05D20000[0000E000] [ M] 614. c:\program files\rising\ris\urllib.dll 05D70000[000F7000] [ M] 615. c:\program files\rising\ris\extfile.dll 13AB0000[00045000] [ M] 616. c:\program files\rising\ris\scanexec.dll 05F70000[002DD000] [ M] 617. c:\program files\rising\ris\unexe.dll 06250000[000DB000] [ M] 618. c:\program files\rising\ris\scanex.dll 05EC0000[00023000] [ M] 619. c:\program files\rising\ris\scansct.dll 05F00000[00029000] [ M] 620. c:\program files\rising\ris\pearc.dll 066B0000[00029000] [ M] 621. c:\program files\rising\ris\scanpe.dll 06780000[0001B000] [ M] 622. c:\program files\rising\ris\ur000.dat 06A20000[00035000] [ M] 623. c:\program files\rising\ris\urutils.dll 06D60000[000B7000] [ M] 624. c:\program files\rising\ris\revm.dll 06FB0000[00012000] [ M] 625. c:\program files\rising\ris\ur001.dat 05250000[0003A000] [ M] 626. c:\program files\rising\ris\scriptci.dll 052A0000[0006C000] [ M] 627. c:\program files\rising\ris\uroutine.dll 06FD0000[00013000] [ M] 628. c:\program files\rising\ris\ur025.dat 07F10000[00016000] [ M] 629. c:\program files\rising\ris\ur011.dat 07F40000[00015000] [ M] 630. c:\program files\rising\ris\ur023.dat 08D20000[00045000] [ M] 631. c:\program files\rising\ris\posttrt.dll 14210000[00039000] [ M] 632. c:\program files\rising\ris\extmail.dll 08AF0000[0001D000] [ M] 633. c:\program files\rising\ris\ur004.dat + 000006dc(1756) spoolsv.exe 01000000[00010000] [AM] 57. c:\windows\system32\spoolsv.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 74240000[00015000] [ M] 634. c:\windows\system32\spoolss.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 76F90000[00006000] [ M] 412. c:\windows\system32\rasadhlp.dll 74C10000[00055000] [AM] 371. c:\windows\system32\localspl.dll 76C30000[00028000] [ M] 519. c:\windows\system32\sfc_os.dll 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 72F70000[00026000] [ M] 451. c:\windows\system32\winspool.drv 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 74200000[0000D000] [AM] 370. c:\windows\system32\cnbjmon.dll 741E0000[00007000] [AM] 372. c:\windows\system32\pjlmon.dll 72390000[0000E000] [AM] 373. c:\windows\system32\tcpmon.dll 72380000[00007000] [AM] 374. c:\windows\system32\usbmon.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 76F80000[00008000] [ M] 544. c:\windows\system32\winrnr.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 75AC0000[00024000] [ M] 635. c:\windows\system32\win32spl.dll 71C00000[00007000] [ M] 489. c:\windows\system32\netrap.dll 76770000[00014000] [ M] 528. c:\windows\system32\ntdsapi.dll 76FA0000[0007F000] [ M] 417. c:\windows\system32\clbcatq.dll 74260000[00015000] [ M] 636. c:\windows\system32\inetpp.dll 01010000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll + 000007f0(2032) userinit.exe 00400000[00019000] [AM] 332. c:\windows\system32\userinit.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 76BC0000[0000B000] [ M] 426. c:\windows\system32\psapi.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 10000000[0001F000] [ M] 637. d:\迅雷下载\360safe\antirk.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 011F0000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 76F80000[00008000] [ M] 544. c:\windows\system32\winrnr.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 76F90000[00006000] [ M] 412. c:\windows\system32\rasadhlp.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 757D0000[00013000] [AM] 238. c:\windows\system32\cryptnet.dll 72240000[00005000] [ M] 411. c:\windows\system32\sensapi.dll 4A410000[00059000] [ M] 476. c:\windows\system32\winhttp.dll 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll 1A400000[00132000] [ M] 638. c:\documents and settings\administrator\local settings\temp\urlm0n.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 01CF0000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 01D00000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 76EB0000[0003C000] [ M] 405. c:\windows\system32\rasapi32.dll 76E60000[00012000] [ M] 406. c:\windows\system32\rasman.dll 76E80000[0002F000] [ M] 408. c:\windows\system32\tapi32.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 77C40000[00024000] [AM] 379. c:\windows\system32\msv1_0.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll 74680000[0004C000] [ M] 462. c:\windows\system32\msctf.dll 750B0000[00013000] [ M] 526. c:\windows\system32\cabinet.dll 00C20000[0002E000] [ M] 500. c:\documents and settings\administrator\application data\rt1.dll 00C50000[00013000] [AM] 328. c:\windows\fonts\uxfwmfy2xwhbunn.fon 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll + 00000848(2120) RsTray.exe 00400000[00023000] [AM] 335. c:\program files\rising\ris\rstray.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 10000000[00023000] [ M] 639. c:\program files\rising\ris\comserv.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 7C3A0000[0007B000] [ M] 423. c:\windows\system32\msvcp71.dll 7C340000[00056000] [ M] 422. c:\windows\system32\msvcr71.dll 23700000[00023000] [ M] 640. c:\program files\rising\ris\rslang.dll 00990000[0002D000] [ M] 433. c:\program files\rising\ris\comx3.dll 009C0000[00019000] [ M] 434. c:\program files\rising\ris\syslay.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 23800000[00025000] [ M] 641. c:\program files\rising\ris\rsxml.dll 00CC0000[00010000] [ M] 421. c:\program files\rising\ris\proccomm.dll 00FD0000[00013000] [ M] 642. c:\program files\rising\ris\monstate.dll 01000000[0000B000] [ M] 643. c:\program files\rising\ris\scanevnt.dll 26600000[000C3000] [ M] 644. c:\program files\rising\ris\rsguilib.dll 7C140000[00103000] [ M] 645. c:\windows\system32\mfc71.dll 01170000[00017000] [ M] 418. c:\program files\rising\ris\rsconf.dll 01190000[0000E000] [ M] 419. c:\program files\rising\ris\rsappmgr.dll 011B0000[00031000] [ M] 420. c:\program files\rising\ris\cfgdll.dll 012F0000[0000C000] [ M] 598. c:\program files\rising\ris\rfwrule.dll 01300000[00030000] [ M] 646. c:\program files\rising\ris\rspalvd.dll 01340000[00067000] [ M] 603. c:\program files\rising\ris\rsnetsvr.dll 33000000[00025000] [ M] 647. c:\program files\rising\ris\ravbintl.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 013C0000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 01620000[0006C000] [ M] 648. c:\program files\rising\ris\mruleui.dll 016A0000[0006B000] [ M] 649. c:\program files\rising\ris\montray.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 74680000[0004C000] [ M] 462. c:\windows\system32\msctf.dll 23900000[00040000] [ M] 650. c:\program files\rising\ris\pngdll.dll 34500000[00020000] [ M] 651. c:\program files\rising\ris\ravitray.dll 01C90000[00059000] [ M] 652. c:\program files\rising\ris\scanprxy.dll 01CF0000[0004B000] [ M] 653. c:\program files\rising\ris\rfwtray.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 01DA0000[00044000] [ M] 654. c:\program files\rising\ris\rsmginfo.dll 02140000[00064000] [ M] 597. c:\program files\rising\ris\rfwlog.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 76D10000[00018000] [ M] 550. c:\windows\system32\mprapi.dll 77C90000[00032000] [ M] 542. c:\windows\system32\activeds.dll 76DE0000[00025000] [ M] 543. c:\windows\system32\adsldpc.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 76AF0000[00011000] [ M] 415. c:\windows\system32\atl.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 71B70000[00013000] [ M] 399. c:\windows\system32\samlib.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 76EB0000[0003C000] [ M] 405. c:\windows\system32\rasapi32.dll 76E60000[00012000] [ M] 406. c:\windows\system32\rasman.dll 76E80000[0002F000] [ M] 408. c:\windows\system32\tapi32.dll 77C40000[00024000] [AM] 379. c:\windows\system32\msv1_0.dll 72240000[00005000] [ M] 411. c:\windows\system32\sensapi.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 76F90000[00006000] [ M] 412. c:\windows\system32\rasadhlp.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll + 0000089c(2204) ctfmon.exe 00400000[00006000] [AM] 334. c:\windows\system32\ctfmon.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 74680000[0004C000] [ M] 462. c:\windows\system32\msctf.dll 5FE40000[00031000] [ M] 461. c:\windows\system32\msutb.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 00D20000[0002E000] [ M] 500. c:\documents and settings\administrator\application data\rt1.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 00D50000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 00EE0000[00013000] [AM] 328. c:\windows\fonts\uxfwmfy2xwhbunn.fon + 00000d70(3440) GameNew.exe 00400000[0016B000] [ M] 655. e:\英雄岛\英雄岛公测客户端\gamenew.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 73D30000[000FE000] [ M] 656. c:\windows\system32\mfc42.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 75FF0000[00065000] [ M] 469. c:\windows\system32\msvcp60.dll 10000000[00068000] [ M] 657. e:\英雄岛\英雄岛公测客户端\wndsys.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 60000000[0005D000] [ M] 658. e:\英雄岛\英雄岛公测客户端\ijl15.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 00380000[0001F000] [ M] 659. e:\英雄岛\英雄岛公测客户端\rs.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 72F70000[00026000] [ M] 451. c:\windows\system32\winspool.drv 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 61BE0000[0000D000] [ M] 660. c:\windows\system32\mfc42loc.dll 00C70000[00017000] [ M] 661. e:\英雄岛\英雄岛公测客户端\crashdump.dll 02800000[000D1000] [ M] 662. e:\英雄岛\英雄岛公测客户端\dbghelp.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 00CA0000[00013000] [ M] 663. e:\英雄岛\英雄岛公测客户端\trace.dll 00CD0000[00012000] [ M] 664. e:\英雄岛\英雄岛公测客户端\tenio\release\tenfact.dll 73250000[00005000] [ M] 665. c:\windows\system32\riched32.dll 74D90000[0006D000] [ M] 666. c:\windows\system32\riched20.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 74680000[0004C000] [ M] 462. c:\windows\system32\msctf.dll 012C0000[0002E000] [ M] 500. c:\documents and settings\administrator\application data\rt1.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 012F0000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 01750000[00026000] [ M] 667. e:\英雄岛\英雄岛公测客户端\canvas.dll 6DD30000[00128000] [ M] 668. c:\windows\system32\d3d8.dll 6DD20000[00006000] [ M] 669. c:\windows\system32\d3d8thk.dll 01DA0000[00020000] [ M] 670. e:\英雄岛\英雄岛公测客户端\filesystem.dll 020D0000[0002D000] [ M] 671. e:\英雄岛\英雄岛公测客户端\resourcemanager.dll 02140000[0001B000] [ M] 672. e:\英雄岛\英雄岛公测客户端\axis.dll 02170000[00026000] [ M] 673. e:\英雄岛\英雄岛公测客户端\event.dll 021C0000[00017000] [ M] 674. e:\英雄岛\英雄岛公测客户端\scriptupdate.dll 03FF0000[00079000] [ M] 675. e:\英雄岛\英雄岛公测客户端\skillclient.dll 066C0000[00051000] [ M] 676. e:\英雄岛\英雄岛公测客户端\thingclient.dll 06820000[000A7000] [ M] 677. e:\英雄岛\英雄岛公测客户端\basicsys.dll 07310000[00022000] [ M] 678. e:\英雄岛\英雄岛公测客户端\clientsocket.dll 07660000[0001B000] [ M] 679. e:\英雄岛\英雄岛公测客户端\coldtime.dll 07CA0000[0001F000] [ M] 680. e:\英雄岛\英雄岛公测客户端\mmsystem.dll 07CC0000[001C2000] [ M] 681. e:\英雄岛\英雄岛公测客户端\fmodex.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 71A40000[0000B000] [ M] 416. c:\windows\system32\wsock32.dll 07FA0000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 08800000[00013000] [AM] 328. c:\windows\fonts\uxfwmfy2xwhbunn.fon 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 73E70000[0005C000] [ M] 682. c:\windows\system32\dsound.dll 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 72C90000[00009000] [ M] 479. c:\windows\system32\wdmaud.drv 72C80000[00008000] [ M] 480. c:\windows\system32\msacm32.drv 77BA0000[00007000] [ M] 481. c:\windows\system32\midimap.dll 73E40000[00004000] [ M] 683. c:\windows\system32\ksuser.dll 09080000[0003F000] [ M] 684. e:\英雄岛\英雄岛公测客户端\controller.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 091E0000[000D7000] [ M] 685. e:\英雄岛\英雄岛公测客户端\wndmgr_new.dll 0B780000[00011000] [ M] 686. e:\英雄岛\英雄岛公测客户端\pkclient.dll 0B7A0000[00023000] [ M] 687. e:\英雄岛\英雄岛公测客户端\statusclient.dll 0BCF0000[00014000] [ M] 688. e:\英雄岛\英雄岛公测客户端\effectclient.dll 0E790000[00018000] [ M] 689. e:\英雄岛\英雄岛公测客户端\medicineclient.dll 0EFC0000[00073000] [ M] 690. e:\英雄岛\英雄岛公测客户端\workskillclient_n.dll 10C30000[00016000] [ M] 691. e:\英雄岛\英雄岛公测客户端\containerclient.dll 10D60000[000B7000] [ M] 692. e:\英雄岛\英雄岛公测客户端\tradeclient.dll 11160000[0003B000] [ M] 693. e:\英雄岛\英雄岛公测客户端\chatclient.dll 113D0000[00062000] [ M] 694. e:\英雄岛\英雄岛公测客户端\interactclient.dll 11580000[0002D000] [ M] 695. e:\英雄岛\英雄岛公测客户端\battleclient.dll 115C0000[00045000] [ M] 696. e:\英雄岛\英雄岛公测客户端\relationclient.dll 11840000[00056000] [ M] 697. e:\英雄岛\英雄岛公测客户端\consortiaclient.dll 11B10000[00034000] [ M] 698. e:\英雄岛\英雄岛公测客户端\teamclient.dll 11C60000[0003D000] [ M] 699. e:\英雄岛\英雄岛公测客户端\emailclient.dll 11DC0000[00042000] [ M] 700. e:\英雄岛\英雄岛公测客户端\landclient_v2.dll 12020000[00013000] [ M] 701. e:\英雄岛\英雄岛公测客户端\taskclient.dll 12160000[0004D000] [ M] 702. e:\英雄岛\英雄岛公测客户端\roommodelclient.dll 122C0000[00016000] [ M] 703. e:\英雄岛\英雄岛公测客户端\keywordfilter.dll 125B0000[00032000] [ M] 704. e:\英雄岛\英雄岛公测客户端\housetradeclient.dll 12700000[0003F000] [ M] 705. e:\英雄岛\英雄岛公测客户端\houseclient.dll 12860000[00019000] [ M] 706. e:\英雄岛\英雄岛公测客户端\nicknameclient.dll 12990000[0003B000] [ M] 707. e:\英雄岛\英雄岛公测客户端\petclient.dll 12AE0000[00018000] [ M] 708. e:\英雄岛\英雄岛公测客户端\auctionclient.dll 12C20000[0001E000] [ M] 709. e:\英雄岛\英雄岛公测客户端\activitieclient.dll 12D50000[00041000] [ M] 710. e:\英雄岛\英雄岛公测客户端\cyclopedia.dll 131C0000[00041000] [ M] 711. e:\英雄岛\英雄岛公测客户端\scriptclient.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll 72C60000[00007000] [ M] 712. c:\windows\system32\msadp32.acm 3FDE0000[00441000] [ M] 471. c:\windows\system32\msi.dll 75E00000[000AE000] [ M] 490. c:\windows\system32\sxs.dll 01430000[00053000] [ M] 713. e:\英雄岛\英雄岛公测客户端\testtmp\mapview.dll + 00000dc4(3524) taskmgr.exe 01000000[00021000] [ M] 714. c:\windows\system32\taskmgr.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 5ADA0000[0000A000] [ M] 715. c:\windows\system32\vdmdbg.dll 5CC30000[00026000] [ M] 386. c:\windows\system32\shimeng.dll 58FB0000[001CA000] [ M] 387. c:\windows\apppatch\acgenral.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 74680000[0004C000] [ M] 462. c:\windows\system32\msctf.dll 00A30000[0002E000] [ M] 500. c:\documents and settings\administrator\application data\rt1.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 00A60000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 10000000[00013000] [AM] 328. c:\windows\fonts\uxfwmfy2xwhbunn.fon 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 5AE00000[0000A000] [ M] 716. c:\windows\system32\utildll.dll 76E80000[0002F000] [ M] 408. c:\windows\system32\tapi32.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 76D10000[00018000] [ M] 550. c:\windows\system32\mprapi.dll 77C90000[00032000] [ M] 542. c:\windows\system32\activeds.dll 76DE0000[00025000] [ M] 543. c:\windows\system32\adsldpc.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 76AF0000[00011000] [ M] 415. c:\windows\system32\atl.dll 71B70000[00013000] [ M] 399. c:\windows\system32\samlib.dll + 00001174(4468) rstray.exe 00400000[00023000] [AM] 338. c:\program files\rising\antispyware\rstray.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 10000000[00044000] [ M] 717. c:\program files\rising\antispyware\rsmginfo.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 00910000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 74680000[0004C000] [ M] 462. c:\windows\system32\msctf.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 23800000[00022000] [ M] 718. c:\program files\rising\antispyware\rsxml.dll 7C3A0000[0007B000] [ M] 719. c:\program files\rising\antispyware\msvcp71.dll 7C340000[00056000] [ M] 720. c:\program files\rising\antispyware\msvcr71.dll 00D30000[00024000] [ M] 721. c:\program files\rising\antispyware\comserv.dll 00D60000[00019000] [ M] 722. c:\program files\rising\antispyware\syslay.dll 23700000[00026000] [ M] 723. c:\program files\rising\antispyware\rscommon.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 00DA0000[0002D000] [ M] 724. c:\program files\rising\antispyware\comx3.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 23900000[00040000] [ M] 725. c:\program files\rising\antispyware\pngdll.dll 01120000[00068000] [ M] 726. c:\program files\rising\antispyware\runiep.dll 010B0000[00034000] [ M] 727. c:\program files\rising\antispyware\ncomm.dll 01190000[0001F000] [ M] 728. c:\program files\rising\antispyware\proccom.dll 011B0000[00024000] [ M] 729. c:\program files\rising\antispyware\rscommx2.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 76EB0000[0003C000] [ M] 405. c:\windows\system32\rasapi32.dll 76E60000[00012000] [ M] 406. c:\windows\system32\rasman.dll 76E80000[0002F000] [ M] 408. c:\windows\system32\tapi32.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 77C40000[00024000] [AM] 379. c:\windows\system32\msv1_0.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 72240000[00005000] [ M] 411. c:\windows\system32\sensapi.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 76F90000[00006000] [ M] 412. c:\windows\system32\rasadhlp.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll + 00001228(4648) knownsvr.exe 00400000[00072000] [ M] 730. c:\program files\rising\antispyware\knownsvr.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 10000000[00034000] [ M] 727. c:\program files\rising\antispyware\ncomm.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 00390000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 60000000[0009B000] [AM] 352. c:\windows\system32\kmon.dll 00BD0000[0002D000] [ M] 724. c:\program files\rising\antispyware\comx3.dll 00C00000[00019000] [ M] 722. c:\program files\rising\antispyware\syslay.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll + 000016b0(5808) CSOLauncher.exe 00400000[001C6000] [ M] 731. f:\网络游戏\反巩精英\counter-strike online\bin\csolauncher.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 76320000[00047000] [AM] 353. c:\windows\system32\comdlg32.dll 5D170000[0009A000] [ M] 397. c:\windows\system32\comctl32.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 72F70000[00026000] [ M] 451. c:\windows\system32\winspool.drv 74C90000[00020000] [ M] 732. c:\windows\system32\oledlg.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 00390000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 60000000[0009B000] [AM] 352. c:\windows\system32\kmon.dll 10000000[0002D000] [ M] 724. c:\program files\rising\antispyware\comx3.dll 00BB0000[00019000] [ M] 722. c:\program files\rising\antispyware\syslay.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 74680000[0004C000] [ M] 462. c:\windows\system32\msctf.dll 00F80000[0002E000] [ M] 500. c:\documents and settings\administrator\application data\rt1.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 010C0000[00A91000] [AM] 245. c:\windows\system32\ieframe.dll 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll 63580000[005AC000] [AM] 255. c:\windows\system32\mshtml.dll 01CE0000[00029000] [ M] 733. c:\windows\system32\msls31.dll 76BC0000[0000B000] [ M] 426. c:\windows\system32\psapi.dll 74CF0000[00091000] [ M] 473. c:\windows\system32\mlang.dll 021B0000[00017000] [ M] 734. c:\program files\rising\ris\ravscrch.dll 7C3A0000[0007B000] [ M] 423. c:\windows\system32\msvcp71.dll 7C340000[00056000] [ M] 422. c:\windows\system32\msvcr71.dll 63380000[000B4000] [ M] 735. c:\windows\system32\jscript.dll 021E0000[0006A000] [ M] 736. c:\windows\system32\vbscript.dll 02250000[00013000] [AM] 328. c:\windows\fonts\uxfwmfy2xwhbunn.fon 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 74650000[0002A000] [ M] 737. c:\windows\system32\msimtf.dll 02480000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 3FDE0000[00441000] [ M] 471. c:\windows\system32\msi.dll 75E00000[000AE000] [ M] 490. c:\windows\system32\sxs.dll 76EB0000[0003C000] [ M] 405. c:\windows\system32\rasapi32.dll 76E60000[00012000] [ M] 406. c:\windows\system32\rasman.dll 76E80000[0002F000] [ M] 408. c:\windows\system32\tapi32.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 77C40000[00024000] [AM] 379. c:\windows\system32\msv1_0.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 72240000[00005000] [ M] 411. c:\windows\system32\sensapi.dll 72C90000[00009000] [ M] 479. c:\windows\system32\wdmaud.drv 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 72C80000[00008000] [ M] 480. c:\windows\system32\msacm32.drv 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BA0000[00007000] [ M] 481. c:\windows\system32\midimap.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll 76F90000[00006000] [ M] 412. c:\windows\system32\rasadhlp.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 03840000[00040000] [ M] 738. c:\program files\internet explorer\ieproxy.dll 6CFD0000[00008000] [ M] 739. c:\windows\system32\dispex.dll 03C30000[0002F000] [ M] 740. c:\windows\system32\iepeers.dll 03D70000[00488000] [ M] 741. c:\windows\system32\macromed\flash\flash10b.ocx 73AA0000[00015000] [ M] 450. c:\windows\system32\mscms.dll 767C0000[00027000] [AM] 376. c:\windows\system32\schannel.dll 6D7C0000[0000A000] [ M] 742. c:\windows\system32\ddrawex.dll 736D0000[0004B000] [ M] 743. c:\windows\system32\ddraw.dll 73B30000[00006000] [ M] 744. c:\windows\system32\dciman32.dll 738B0000[000D0000] [ M] 745. c:\windows\system32\d3dim700.dll + 0000172c(5932) Ras.exe 00400000[0000B000] [ M] 746. c:\program files\rising\antispyware\ras.exe 7C920000[00096000] [ M] 384. c:\windows\system32\ntdll.dll 7C800000[0011E000] [AM] 356. c:\windows\system32\kernel32.dll 7C140000[00103000] [ M] 747. c:\program files\rising\antispyware\mfc71.dll 7C340000[00056000] [ M] 720. c:\program files\rising\antispyware\msvcr71.dll 77EF0000[00049000] [AM] 354. c:\windows\system32\gdi32.dll 77D10000[00090000] [AM] 366. c:\windows\system32\user32.dll 77F40000[00076000] [ M] 391. c:\windows\system32\shlwapi.dll 77DA0000[000A9000] [AM] 74. c:\windows\system32\advapi32.dll 77E50000[00092000] [AM] 364. c:\windows\system32\rpcrt4.dll 77FC0000[00011000] [ M] 385. c:\windows\system32\secur32.dll 77BE0000[00058000] [ M] 389. c:\windows\system32\msvcrt.dll 76300000[0001D000] [ M] 394. c:\windows\system32\imm32.dll 62C20000[00009000] [ M] 395. c:\windows\system32\lpk.dll 73FA0000[0006B000] [ M] 396. c:\windows\system32\usp10.dll 60000000[0009B000] [AM] 352. c:\windows\system32\kmon.dll 1A400000[00132000] [AM] 252. c:\windows\system32\urlmon.dll 76990000[0013D000] [AM] 358. c:\windows\system32\ole32.dll 770F0000[0008B000] [AM] 359. c:\windows\system32\oleaut32.dll 5DCA0000[001E8000] [ M] 402. c:\windows\system32\iertutil.dll 5ADC0000[00037000] [ M] 393. c:\windows\system32\uxtheme.dll 74680000[0004C000] [ M] 462. c:\windows\system32\msctf.dll 00A90000[0002E000] [ M] 500. c:\documents and settings\administrator\application data\rt1.dll 63000000[000E6000] [AM] 368. c:\windows\system32\wininet.dll 00AC0000[00009000] [ M] 401. c:\windows\system32\normaliz.dll 10000000[00047000] [ M] 748. c:\program files\rising\antispyware\kakamgr.dll 7D590000[007F4000] [AM] 253. c:\windows\system32\shell32.dll 7C3A0000[0007B000] [ M] 719. c:\program files\rising\antispyware\msvcp71.dll 00CE0000[00019000] [ M] 722. c:\program files\rising\antispyware\syslay.dll 00D10000[0001F000] [ M] 728. c:\program files\rising\antispyware\proccom.dll 00D30000[00024000] [ M] 729. c:\program files\rising\antispyware\rscommx2.dll 00E80000[0002D000] [ M] 724. c:\program files\rising\antispyware\comx3.dll 76F20000[00008000] [ M] 435. c:\windows\system32\wtsapi32.dll 762D0000[00010000] [ M] 436. c:\windows\system32\winsta.dll 5FDD0000[00056000] [ M] 407. c:\windows\system32\netapi32.dll 00FF0000[00058000] [ M] 749. c:\program files\rising\antispyware\dbmgr.dll 23800000[00022000] [ M] 718. c:\program files\rising\antispyware\rsxml.dll 01150000[0002E000] [ M] 750. c:\program files\rising\antispyware\pweb.dll 71A20000[00017000] [ M] 403. c:\windows\system32\ws2_32.dll 71A10000[00008000] [ M] 404. c:\windows\system32\ws2help.dll 77BD0000[00008000] [AM] 367. c:\windows\system32\version.dll 74D90000[0006D000] [ M] 666. c:\windows\system32\riched20.dll 011C0000[000C2000] [ M] 751. c:\program files\rising\antispyware\pscan.dll 76D30000[00018000] [ M] 410. c:\windows\system32\iphlpapi.dll 01290000[00034000] [ M] 727. c:\program files\rising\antispyware\ncomm.dll 012F0000[00070000] [ M] 752. c:\program files\rising\antispyware\pset.dll 01360000[0002A000] [ M] 753. c:\program files\rising\antispyware\pdefend.dll 01390000[000B6000] [ M] 754. c:\program files\rising\antispyware\ptools.dll 76320000[00047000] [AM] 353. c:\windows\system32\comdlg32.dll 76B80000[00005000] [ M] 518. c:\windows\system32\sfc.dll 76C30000[00028000] [ M] 519. c:\windows\system32\sfc_os.dll 76C00000[0002E000] [ M] 452. c:\windows\system32\wintrust.dll 765E0000[00093000] [AM] 237. c:\windows\system32\crypt32.dll 76DB0000[00012000] [ M] 453. c:\windows\system32\msasn1.dll 76C60000[00028000] [AM] 355. c:\windows\system32\imagehlp.dll 01450000[0008D000] [ M] 755. c:\program files\rising\antispyware\psysinfo.dll 76D70000[00022000] [ M] 459. c:\windows\system32\apphelp.dll 01600000[00A91000] [AM] 245. c:\windows\system32\ieframe.dll 021C0000[00013000] [AM] 328. c:\windows\fonts\uxfwmfy2xwhbunn.fon 68000000[00036000] [ M] 472. c:\windows\system32\rsaenh.dll 76060000[00156000] [ M] 449. c:\windows\system32\setupapi.dll 23900000[00040000] [ M] 725. c:\program files\rising\antispyware\pngdll.dll 73640000[0002E000] [ M] 437. c:\windows\system32\msctfime.ime 75E00000[000AE000] [ M] 490. c:\windows\system32\sxs.dll 63580000[005AC000] [AM] 255. c:\windows\system32\mshtml.dll 029A0000[00029000] [ M] 733. c:\windows\system32\msls31.dll 76BC0000[0000B000] [ M] 426. c:\windows\system32\psapi.dll 74CF0000[00091000] [ M] 473. c:\windows\system32\mlang.dll 74910000[000AE000] [AM] 258. c:\windows\system32\inetcomm.dll 75B20000[00022000] [ M] 756. c:\windows\system32\msoert2.dll 02C00000[0000C000] [ M] 757. c:\windows\system32\inetres.dll 74650000[0002A000] [ M] 737. c:\windows\system32\msimtf.dll 759D0000[000AF000] [ M] 392. c:\windows\system32\userenv.dll 719C0000[0003E000] [AM] 38. c:\windows\system32\mswsock.dll 76EF0000[00027000] [ M] 529. c:\windows\system32\dnsapi.dll 76F80000[00008000] [ M] 544. c:\windows\system32\winrnr.dll 76F30000[0002C000] [AM] 369. c:\windows\system32\wldap32.dll 76F90000[00006000] [ M] 412. c:\windows\system32\rasadhlp.dll 76EB0000[0003C000] [ M] 405. c:\windows\system32\rasapi32.dll 76E60000[00012000] [ M] 406. c:\windows\system32\rasman.dll 76E80000[0002F000] [ M] 408. c:\windows\system32\tapi32.dll 76E50000[0000E000] [ M] 409. c:\windows\system32\rtutils.dll 76B10000[0002A000] [ M] 388. c:\windows\system32\winmm.dll 77C40000[00024000] [AM] 379. c:\windows\system32\msv1_0.dll 72240000[00005000] [ M] 411. c:\windows\system32\sensapi.dll 60FD0000[00055000] [ M] 413. c:\windows\system32\hnetcfg.dll 71A00000[00008000] [ M] 414. c:\windows\system32\wshtcpip.dll 035B0000[0002F000] [ M] 740. c:\windows\system32\iepeers.dll 72F70000[00026000] [ M] 451. c:\windows\system32\winspool.drv 035E0000[00017000] [ M] 734. c:\program files\rising\ris\ravscrch.dll 63380000[000B4000] [ M] 735. c:\windows\system32\jscript.dll 03880000[0006A000] [ M] 736. c:\windows\system32\vbscript.dll 038F0000[00549000] [ M] 400. c:\windows\system32\xpsp2res.dll 04040000[00488000] [ M] 741. c:\windows\system32\macromed\flash\flash10b.ocx 73AA0000[00015000] [ M] 450. c:\windows\system32\mscms.dll 72C90000[00009000] [ M] 479. c:\windows\system32\wdmaud.drv 72C80000[00008000] [ M] 480. c:\windows\system32\msacm32.drv 77BB0000[00015000] [ M] 390. c:\windows\system32\msacm32.dll 77BA0000[00007000] [ M] 481. c:\windows\system32\midimap.dll 1B000000[0000C000] [ M] 758. c:\windows\system32\imgutil.dll 1B060000[0000E000] [ M] 759. c:\windows\system32\pngfilt.dll