瑞星卡卡电脑诊断日志 v1.30 (2010-2-8 11:46:16) 北京瑞星信息技术有限公司 注释: [A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + 系统服务 + HKLM\System\CurrentControlSet\Services Ati HotKey Poller [AM] 1. c:\windows\system32\ati2evxx.exe FTSafeNetRockeyService4.0 [AM] 2. e:\teenysoft\tsmed\nrsvr.exe MSSQLSERVER [AM] 3. c:\program files\microsoft sql server\mssql\binn\sqlservr.exe MSSQLServerADHelper [A ] 4. c:\program files\microsoft sql server\80\tools\binn\sqladhlp.exe ose [A ] 5. c:\program files\common files\microsoft shared\source engine\ose.exe RsRavMon [AM] 6. f:\rising\rav\ravmond.exe RsRFWMon [AM] 7. f:\rising\rfw\ravmond.exe SQLSERVERAGENT [A ] 8. c:\program files\microsoft sql server\mssql\binn\sqlagent.exe TSUSVC [A ] 9. f:\~1杂东西\qqsoftmgr\1.0.358.203\tencentupdatesvc.exe UMWdf [A ] 10. c:\windows\system32\wdfmgr.exe ZhuDongFangYu [A ] 11. f:\~1杂东西\360safe\deepscan\zhudongfangyu.exe + 内核驱动 + HKLM\System\CurrentControlSet\Services 360SelfProtection [A ] 12. c:\windows\system32\drivers\360selfprotection.sys aec6293 [A ] 13. c:\windows\system32\drivers\aec6293.sys ahci8086 [A ] 14. c:\windows\system32\drivers\ahci8086.sys ahcix86 [A ] 15. c:\windows\system32\drivers\ahcix86.sys AmdK8 [A ] 16. c:\windows\system32\drivers\amdk8.sys AmdLLD [A ] 17. c:\windows\system32\drivers\amdlld.sys ASH1205 [A ] 18. c:\windows\system32\drivers\ash1205.sys ata1200a [A ] 19. c:\windows\system32\drivers\ata1200a.sys BAPIDRV [A ] 20. c:\windows\system32\drivers\bapidrv.sys cercsr6 [A ] 21. c:\windows\system32\drivers\cercsr6.sys cFosSpeed [A ] 22. c:\windows\system32\drivers\cfosspeed.sys Cpq32fs2 [A ] 23. c:\windows\system32\drivers\cpq32fs2.sys EfiMon [A ] 24. c:\windows\system32\drivers\efimon.sys HDAudBus [A ] 25. c:\windows\system32\drivers\hdaudbus.sys hookcont [A ] 26. c:\windows\system32\drivers\hookcont.sys HookPort [A ] 27. c:\windows\system32\drivers\hookport.sys hooksys [A ] 28. c:\windows\system32\drivers\hooksys.sys HPT302 [A ] 29. c:\windows\system32\drivers\hpt302.sys hptmv6 [A ] 30. c:\windows\system32\drivers\hptmv6.sys iaStor5 [A ] 31. c:\windows\system32\drivers\iastor5.sys iaStor6 [A ] 32. c:\windows\system32\drivers\iastor6.sys iaStor7 [A ] 33. c:\windows\system32\drivers\iastor7.sys IntcAzAudAddService [A ] 34. c:\windows\system32\drivers\rtkhdaud.sys KAVBootC [A ] 35. c:\windows\system32\drivers\kavbootc.sys MTsensor [A ] 36. c:\windows\system32\drivers\asacpi.sys mvSata [A ] 37. c:\windows\system32\drivers\mvsata.sys nvgts [A ] 38. c:\windows\system32\drivers\nvgts.sys nvrd32 [A ] 39. c:\windows\system32\drivers\nvrd32.sys QKeyService [A ] 40. c:\windows\system32\keycrypt.sys qutmdserv [A ] 41. c:\windows\system32\drivers\qutmdrv.sys qutmipc [A ] 42. c:\windows\system32\drivers\qutmipc.sys RFWARP [A ] 43. c:\windows\system32\drivers\rfwarp.sys RfwBase9 [A ] 44. c:\windows\system32\drivers\rfwbase.sys rfwtdi [A ] 45. f:\rising\rfw\rfwtdi.sys ROCKEYNT [A ] 46. c:\windows\system32\drivers\rockey4.sys rr172x [A ] 47. c:\windows\system32\drivers\rr172x.sys rr174x [A ] 48. c:\windows\system32\drivers\rr174x.sys rr2340 [A ] 49. c:\windows\system32\drivers\rr2340.sys rsassist [A ] 50. c:\windows\system32\drivers\rsassist.sys rsfwdrv [A ] 51. f:\rising\rfw\rsfwdrv.sys RsNTGDI [A ] 52. c:\windows\system32\drivers\rsntgdi.sys RTL8023xp [A ] 53. c:\windows\system32\drivers\rtnicxp.sys Secdrv [A ] 54. c:\windows\system32\drivers\secdrv.sys TesDrvPt [A ] 55. c:\windows\system32\tesdrvpt.sys TesSafe [A ] 56. c:\windows\system32\tessafe.sys WpdUsb [A ] 57. c:\windows\system32\drivers\wpdusb.sys + 文件系统驱动 + HKLM\System\CurrentControlSet\Services exFat [A ] 58. c:\windows\system32\drivers\exfat.sys + 系统登陆自运行 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify AtiExtEvent [AM] 59. c:\windows\system32\ati2evxx.dll + IE浏览器加载模块 + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [A ] 60. c:\windows\system32\urlfilter.dll + 资源管理器加载模块 + HKLM\SOFTWARE\Classes\PROTOCOLS\Filter text/xml [AM] 61. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved HyperTerminal Icon Ext [A ] 62. c:\windows\system32\hticons.dll Portable Media Devices [A ] 63. c:\windows\system32\audiodev.dll Portable Media Devices Menu [A ] 63. c:\windows\system32\audiodev.dll WinRAR shell extension [AM] 64. c:\program files\winrar\rarext.dll Microsoft Office HTML Icon Handler [A ] 65. c:\program files\microsoft office\office11\msohev.dll Web Folders [A ] 66. c:\program files\common files\microsoft shared\web folders\msonsext.dll QQ Software Manager Extention [AM] 67. f:\~1杂东西\qqsoftmgr\1.0.358.203\qqsoftext.dll RISING [AM] 68. c:\windows\system32\ravext.dll + 用户登陆自运行项目 + HKLM\Software\Microsoft\Windows\CurrentVersion\Run 360Safetray [A ] 69. f:\~1杂东西\360safe\safemon\360tray.exe RavTray [AM] 70. f:\rising\rav\rstray.exe runeip [AM] 71. f:\kaka\rstray.exe RFWTray [AM] 72. f:\rising\rfw\rstray.exe FTSafeNetRockeyService4.0 [AM] 2. e:\teenysoft\tsmed\nrsvr.exe + 开机执行 + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 73. c:\windows\system32\bsmain.exe + 映像劫持 + HKCR\.html TheWorldURL\open\Command [AM] 74. f:\theworld 3\theworld.exe + HKCR\.htm TheWorldURL\open\Command [AM] 74. f:\theworld 3\theworld.exe + 打印机监控 + HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors Microsoft Document Imaging Writer Monitor [AM] 75. c:\windows\system32\mdimon.dll + 其他自启动项目 + C:\Documents and Settings\All Users\「开始」菜单\程序\启动 服务管理器.lnk [AM] 76. c:\program files\microsoft sql server\80\tools\binn\sqlmangr.exe + 正在运行的进程 + 000000d0(208) svchost.exe + 00000128(296) Ati2evxx.exe 00400000[00092000] [AM] 1. c:\windows\system32\ati2evxx.exe 00C90000[00010000] [ M] 77. c:\windows\system32\ati2edxx.dll 10000000[0002F000] [ M] 78. c:\windows\system32\atipdlxx.dll 00CC0000[00025000] [AM] 59. c:\windows\system32\ati2evxx.dll + 0000019c(412) svchost.exe + 00000250(592) RsTray.exe 00400000[0002C000] [AM] 70. f:\rising\rav\rstray.exe 10000000[00031000] [ M] 79. f:\rising\rav\comserv.dll 23700000[00023000] [ M] 80. f:\rising\rav\rslang.dll 00990000[0002D000] [ M] 81. f:\rising\rav\comx3.dll 009C0000[00019000] [ M] 82. f:\rising\rav\syslay.dll 00CC0000[00019000] [ M] 83. f:\rising\rav\proccomm.dll 23800000[00039000] [ M] 84. f:\rising\rav\rsxml.dll 00F00000[00013000] [ M] 85. f:\rising\rav\monstate.dll 00F30000[00016000] [ M] 86. f:\rising\rav\scanevnt.dll 26600000[00078000] [ M] 87. f:\rising\rav\rsguilib.dll 00F70000[00017000] [ M] 88. f:\rising\rav\rsconf.dll 00FA0000[00022000] [ M] 89. f:\rising\rav\rspalvd.dll 33000000[00026000] [ M] 90. f:\rising\rav\ravbintl.dll 00FF0000[0007D000] [ M] 91. f:\rising\rav\mruleui.dll 01090000[0007D000] [ M] 92. f:\rising\rav\montray.dll 34500000[00020000] [ M] 93. f:\rising\rav\ravitray.dll 01170000[0004C000] [ M] 94. f:\rising\rav\rsmginfo.dll 01140000[00013000] [ M] 95. f:\rising\rav\scanleak.dll 32000000[00088000] [ M] 96. f:\rising\rav\ravppops.dll 014E0000[0000E000] [ M] 97. f:\rising\rav\rsappmgr.dll 01500000[00044000] [ M] 98. f:\rising\rav\cfgdll.dll 23900000[00040000] [ M] 99. f:\rising\rav\pngdll.dll 01D40000[00080000] [ M] 100. f:\rising\rav\scanprxy.dll + 0000028c(652) rstray.exe 00400000[00034000] [AM] 71. f:\kaka\rstray.exe 10000000[0004C000] [ M] 101. f:\kaka\rsmginfo.dll 23800000[00022000] [ M] 102. f:\kaka\rsxml.dll 7C3A0000[0007B000] [ M] 103. f:\kaka\msvcp71.dll 7C340000[00056000] [ M] 104. f:\kaka\msvcr71.dll 00BC0000[00014000] [ M] 105. f:\kaka\regcall.dll 00BF0000[00024000] [ M] 106. f:\kaka\comserv.dll 00C20000[00019000] [ M] 107. f:\kaka\syslay.dll 23700000[00026000] [ M] 108. f:\kaka\rscommon.dll 00C60000[0002D000] [ M] 109. f:\kaka\comx3.dll 23900000[00040000] [ M] 110. f:\kaka\pngdll.dll 00F70000[00074000] [ M] 111. f:\kaka\runiep.dll 00FF0000[00034000] [ M] 112. f:\kaka\ncomm.dll 01050000[0001F000] [ M] 113. f:\rising\rav\proccom.dll 01070000[00024000] [ M] 114. f:\kaka\rscommx2.dll + 00000344(836) nrSvr.exe 00400000[00026000] [AM] 2. e:\teenysoft\tsmed\nrsvr.exe + 00000448(1096) Explorer.EXE 72C80000[00008000] [ M] 115. c:\windows\system32\msacm32.drv 10000000[0005C000] [ M] 116. f:\~1杂东西\360safe\safemon\safemon.dll 00C60000[0001C000] [AM] 67. f:\~1杂东西\qqsoftmgr\1.0.358.203\qqsoftext.dll 01700000[0002D000] [AM] 64. c:\program files\winrar\rarext.dll 034A0000[00024000] [AM] 68. c:\windows\system32\ravext.dll 034D0000[00024000] [ M] 117. c:\windows\system32\kakaext.dll + 00000470(1136) spoolsv.exe 009F0000[00008000] [AM] 75. c:\windows\system32\mdimon.dll 00A00000[00008000] [ M] 118. c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll + 000004f8(1272) rsmain.exe 00400000[00021000] [ M] 119. f:\rising\rfw\rsmain.exe 10000000[00040000] [ M] 120. f:\rising\rfw\rspalmgr.dll 23800000[00039000] [ M] 121. f:\rising\rfw\rsxml.dll 26600000[00078000] [ M] 122. f:\rising\rfw\rsguilib.dll 00AE0000[0000C000] [ M] 123. f:\rising\rfw\rfwrule.dll 7C3C0000[0007C000] [ M] 124. c:\windows\system32\msvcp71.dll 7C360000[00056000] [ M] 125. c:\windows\system32\msvcr71.dll 23700000[00023000] [ M] 126. f:\rising\rfw\rslang.dll 33000000[00026000] [ M] 127. f:\rising\rfw\ravbintl.dll 00B10000[00019000] [ M] 128. f:\rising\rfw\syslay.dll 00B50000[00013000] [ M] 129. f:\rising\rfw\monstate.dll 00B80000[00017000] [ M] 130. f:\rising\rfw\rsconf.dll 00BB0000[00022000] [ M] 131. f:\rising\rfw\rspalvd.dll 00C00000[00082000] [ M] 132. f:\rising\rfw\rfwlog.dll 00CB0000[00060000] [ M] 133. f:\rising\rfw\pubcfg.dll 32000000[00088000] [ M] 134. f:\rising\rfw\ravppops.dll 23900000[00040000] [ M] 135. f:\rising\rfw\pngdll.dll 00E30000[00019000] [ M] 136. f:\rising\rfw\proccomm.dll 01090000[000B3000] [ M] 137. f:\rising\rfw\rfw.dll 01190000[0000E000] [ M] 138. f:\rising\rfw\rsappmgr.dll 011C0000[00044000] [ M] 139. f:\rising\rfw\cfgdll.dll 017D0000[0002D000] [ M] 140. f:\rising\rfw\comx3.dll 023E0000[0001B000] [ M] 141. f:\rising\rfw\mports.dll + 00000518(1304) smss.exe + 00000540(1344) RsTray.exe 00400000[0002C000] [AM] 72. f:\rising\rfw\rstray.exe 10000000[00031000] [ M] 142. f:\rising\rfw\comserv.dll 23700000[00023000] [ M] 126. f:\rising\rfw\rslang.dll 00990000[0002D000] [ M] 140. f:\rising\rfw\comx3.dll 009C0000[00019000] [ M] 128. f:\rising\rfw\syslay.dll 00CC0000[00019000] [ M] 136. f:\rising\rfw\proccomm.dll 23800000[00039000] [ M] 121. f:\rising\rfw\rsxml.dll 00F00000[00013000] [ M] 129. f:\rising\rfw\monstate.dll 00F30000[0000C000] [ M] 123. f:\rising\rfw\rfwrule.dll 7C3C0000[0007C000] [ M] 124. c:\windows\system32\msvcp71.dll 7C360000[00056000] [ M] 125. c:\windows\system32\msvcr71.dll 00F50000[00017000] [ M] 130. f:\rising\rfw\rsconf.dll 00F80000[00022000] [ M] 131. f:\rising\rfw\rspalvd.dll 26600000[00078000] [ M] 122. f:\rising\rfw\rsguilib.dll 33000000[00026000] [ M] 127. f:\rising\rfw\ravbintl.dll 00FE0000[0007E000] [ M] 143. f:\rising\rfw\rsnetsvr.dll 01080000[0004C000] [ M] 144. f:\rising\rfw\rsmginfo.dll 010E0000[00052000] [ M] 145. f:\rising\rfw\rfwtray.dll 32000000[00088000] [ M] 134. f:\rising\rfw\ravppops.dll 012C0000[0000E000] [ M] 138. f:\rising\rfw\rsappmgr.dll 012E0000[00044000] [ M] 139. f:\rising\rfw\cfgdll.dll 23900000[00040000] [ M] 135. f:\rising\rfw\pngdll.dll 019E0000[00082000] [ M] 132. f:\rising\rfw\rfwlog.dll + 00000558(1368) csrss.exe + 00000578(1400) winlogon.exe 10000000[00025000] [AM] 59. c:\windows\system32\ati2evxx.dll 72C80000[00008000] [ M] 115. c:\windows\system32\msacm32.drv + 000005a4(1444) services.exe 46040000[0000F000] [ M] 146. c:\windows\apppatch\acadproc.dll + 000005a8(1448) QQ.exe 00400000[00023000] [ M] 147. f:\~1qq\bin\qq.exe 30000000[0021D000] [ M] 148. f:\~1qq\bin\common.dll 31800000[00091000] [ M] 149. f:\~1qq\bin\kernelutil.dll 30800000[0029F000] [ M] 150. f:\~1qq\bin\gf.dll 10000000[00011000] [ M] 151. f:\~1qq\bin\xgraphic32.dll 61210000[000EE000] [ M] 152. f:\~1qq\bin\apputil.dll 00430000[0004E000] [ M] 153. f:\~1qq\bin\afutil.dll 00E20000[0005C000] [ M] 116. f:\~1杂东西\360safe\safemon\safemon.dll 01860000[001C0000] [ M] 154. f:\~1qq\bin\appframework.dll 61C00000[001CF000] [ M] 155. f:\~1qq\bin\mainframe.dll 02950000[001CB000] [ M] 156. f:\~1qq\bin\afctrl.dll 31000000[003A7000] [ M] 157. f:\~1qq\bin\im.dll 61FE0000[00033000] [ M] 158. f:\~1qq\bin\tasktray.dll 32000000[0000A000] [ M] 159. f:\~1qq\bin\txpfproxy.dll 03740000[0001D000] [ M] 160. f:\~1qq\plugin\com.tencent.qqshow\bin\flashavatardll.dll 72C80000[00008000] [ M] 115. c:\windows\system32\msacm32.drv 31400000[00050000] [ M] 161. f:\~1qq\bin\kernelmisc.dll 04FE0000[0017F000] [ M] 162. f:\~1qq\bin\appmisc.dll 61500000[0012D000] [ M] 163. f:\~1qq\bin\chatframe.dll 61700000[000AE000] [ M] 164. f:\~1qq\bin\configcenter.dll 61A00000[000DE000] [ M] 165. f:\~1qq\bin\customface.dll 31C00000[000EA000] [ M] 166. f:\~1qq\bin\longcnn.dll 61900000[000D2000] [ M] 167. f:\~1qq\bin\contactinfoframe.dll 65000000[00103000] [ M] 168. f:\~1qq\bin\msgmgr.dll 61F20000[0006A000] [ M] 169. f:\~1qq\bin\skinmgr.dll 61F00000[0001A000] [ M] 170. f:\~1qq\bin\qinterlive.dll 04DB0000[00079000] [ M] 171. f:\~1qq\bin\systemmsg.dll 62E00000[0011F000] [ M] 172. f:\~1qq\plugin\com.tencent.paipai\bin\paipai.dll 62100000[00154000] [ M] 173. f:\~1qq\plugin\com.tencent.audiovideo\bin\audiovideo.dll 62A00000[00054000] [ M] 174. f:\~1qq\plugin\com.tencent.mmog\bin\mmog.dll 64100000[0005B000] [ M] 175. f:\~1qq\plugin\com.tencent.soso\bin\soso.dll 63D00000[000E1000] [ M] 176. f:\~1qq\plugin\com.tencent.qzone\bin\qzone.dll 64700000[00033000] [ M] 177. f:\~1qq\plugin\com.tencent.weather\bin\weather.dll 64000000[00019000] [ M] 178. f:\~1qq\plugin\com.tencent.sobar\bin\sobar.dll 05190000[00049000] [ M] 179. f:\~1qq\plugin\com.tencent.paipaigift\bin\paipaigift.dll 63500000[00019000] [ M] 180. f:\~1qq\plugin\com.tencent.qqlive\bin\qqlive.dll 63600000[00056000] [ M] 181. f:\~1qq\plugin\com.tencent.qqmusic\bin\qqmusic.dll 64300000[0001C000] [ M] 182. f:\~1qq\plugin\com.tencent.taotao\bin\taotao.dll 05340000[00070000] [ M] 183. f:\~1qq\bin\basicctrldll.dll 053B0000[0008C000] [ M] 184. c:\program files\common files\tencent\txsso\bin\ssoplatform.dll 05440000[0016E000] [ M] 185. c:\program files\common files\tencent\txsso\bin\ssocommon.dll 39700000[000EB000] [ M] 186. f:\~1qq\bin\riched20.dll 04970000[0011B000] [ M] 187. f:\~1qq\bin\groupapp.dll 63F00000[00061000] [ M] 188. f:\~1qq\plugin\com.tencent.snsapp\bin\snsapp.dll 63000000[0003D000] [ M] 189. f:\~1qq\plugin\com.tencent.paycenter\bin\paycenter.dll 63100000[00022000] [ M] 190. f:\~1qq\plugin\com.tencent.qbar\bin\qbar.dll 63B00000[00029000] [ M] 191. f:\~1qq\plugin\com.tencent.qqvipmisc\bin\qqvipmisc.dll 64800000[00040000] [ M] 192. f:\~1qq\plugin\com.tencent.wenwen\bin\wenwen.dll 065F0000[0005A000] [ M] 193. f:\~1qq\bin\contacts.dll 62B00000[00017000] [ M] 194. f:\~1qq\plugin\com.tencent.netbar\bin\netbar.dll 64A00000[00084000] [ M] 195. f:\~1qq\plugin\com.tencent.wireless\bin\wireless.dll 63900000[000C1000] [ M] 196. f:\~1qq\plugin\com.tencent.qqshow\bin\qqshow.dll 62300000[0003F000] [ M] 197. f:\~1qq\plugin\com.tencent.crm\bin\crm.dll 64600000[00028000] [ M] 198. f:\~1qq\plugin\com.tencent.vas\bin\vas.dll 068E0000[000A7000] [ M] 199. f:\~1qq\bin\informationbox.dll 63A00000[00044000] [ M] 200. f:\~1qq\plugin\com.tencent.qqvip\bin\qqvip.dll 06CE0000[004A4000] [ M] 201. c:\windows\system32\macromed\flash\flash10d.ocx 62400000[000CB000] [ M] 202. f:\~1qq\plugin\com.tencent.filetransfer\bin\filetransfer.dll 62900000[0005C000] [ M] 203. f:\~1qq\plugin\com.tencent.memo\bin\memo.dll 63700000[0003D000] [ M] 204. f:\~1qq\plugin\com.tencent.qqpet\bin\qqpet.dll 65180000[0006C000] [ M] 205. f:\~1qq\plugin\com.tencent.advertisement\bin\advertisement.dll 64400000[00020000] [ M] 206. f:\~1qq\plugin\com.tencent.today\bin\today.dll 63300000[0006F000] [ M] 207. f:\~1qq\plugin\com.tencent.qqgame\bin\qqgame.dll 63800000[0003D000] [ M] 208. f:\~1qq\plugin\com.tencent.qqring\bin\qqring.dll 62700000[00039000] [ M] 209. f:\~1qq\plugin\com.tencent.mail\bin\mail.dll 63C00000[0002B000] [ M] 210. f:\~1qq\plugin\com.tencent.qqwebsite\bin\qqwebsite.dll 097F0000[00018000] [ M] 211. f:\rising\rav\ravscrch.dll 09810000[0007C000] [ M] 124. c:\windows\system32\msvcp71.dll 7C360000[00056000] [ M] 125. c:\windows\system32\msvcr71.dll 03800000[00039000] [ M] 212. f:\~1qq\bin\addrsearch.dll 03670000[0005F000] [ M] 213. f:\~1qq\bin\vqqsdl.dll + 000005b0(1456) lsass.exe + 000005e0(1504) sqlservr.exe 00400000[0071A000] [AM] 3. c:\program files\microsoft sql server\mssql\binn\sqlservr.exe 41060000[00006000] [ M] 214. c:\program files\microsoft sql server\mssql\binn\opends60.dll 41070000[0000D000] [ M] 215. c:\program files\microsoft sql server\mssql\binn\ums.dll 42AE0000[00090000] [ M] 216. c:\program files\microsoft sql server\mssql\binn\sqlsort.dll 41080000[00007000] [ M] 217. c:\program files\microsoft sql server\mssql\binn\resources\2052\sqlevn70.rll 00ED0000[00016000] [ M] 218. c:\program files\microsoft sql server\mssql\binn\ssnetlib.dll 00F00000[00006000] [ M] 219. c:\program files\microsoft sql server\mssql\binn\ssnmpn70.dll 01E10000[00007000] [ M] 220. c:\program files\microsoft sql server\mssql\binn\ssmslpcn.dll + 00000658(1624) Ati2evxx.exe 00400000[00092000] [AM] 1. c:\windows\system32\ati2evxx.exe 00C90000[00010000] [ M] 77. c:\windows\system32\ati2edxx.dll 10000000[0002F000] [ M] 78. c:\windows\system32\atipdlxx.dll + 00000674(1652) svchost.exe + 00000698(1688) nrSvr.exe 00400000[00026000] [AM] 2. e:\teenysoft\tsmed\nrsvr.exe + 000006a8(1704) ctfmon.exe + 000006d8(1752) svchost.exe + 00000760(1888) RavMonD.exe 00400000[0002F000] [AM] 6. f:\rising\rav\ravmond.exe 10000000[00032000] [ M] 221. f:\rising\rav\combase.dll 01090000[00086000] [ M] 222. f:\rising\rav\cnt09.dll 01040000[00019000] [ M] 223. f:\rising\rav\moncomm.dll 01120000[0001D000] [ M] 224. f:\rising\rav\monbase.dll 01280000[00084000] [ M] 225. f:\rising\rav\rslog.dll 01160000[00018000] [ M] 226. f:\rising\rav\mondrv.dll 01320000[0002E000] [ M] 227. f:\rising\rav\defmon.dll 01360000[00010000] [ M] 228. f:\rising\rav\moncom08.dll 01B10000[0007E000] [ M] 229. f:\rising\rav\monrule.dll 01BC0000[00027000] [ M] 230. f:\rising\rav\filemon.dll 01C00000[0002F000] [ M] 231. f:\rising\rav\mailmon.dll 01C40000[00015000] [ M] 232. f:\rising\rav\hookweb.dll 01C80000[0008C000] [ M] 233. f:\rising\rav\rsindent.dll 01D10000[00019000] [ M] 82. f:\rising\rav\syslay.dll 01D50000[00018000] [ M] 234. f:\rising\rav\taskplug.dll 01D80000[00012000] [ M] 235. f:\rising\rav\scansrvp.dll 021B0000[0001D000] [ M] 236. f:\rising\rav\cnt08.dll 02330000[00019000] [ M] 83. f:\rising\rav\proccomm.dll 02360000[0000E000] [ M] 97. f:\rising\rav\rsappmgr.dll 027A0000[00044000] [ M] 98. f:\rising\rav\cfgdll.dll 028E0000[0002D000] [ M] 81. f:\rising\rav\comx3.dll 02A50000[00020000] [ M] 237. f:\rising\rav\hooksys.dll 02B00000[0001F000] [ M] 113. f:\rising\rav\proccom.dll 02B20000[00024000] [ M] 238. f:\rising\rav\rscommx2.dll 02D70000[00013000] [ M] 239. f:\rising\rav\hookcont.dll 02EB0000[00077000] [ M] 240. f:\rising\rav\bacore.dll 03050000[0003B000] [ M] 241. f:\rising\rav\recomp.dll 030A0000[00038000] [ M] 242. f:\rising\rav\refs.dll 03300000[00030000] [ M] 243. f:\rising\rav\viruslib.dll 03440000[00029000] [ M] 244. f:\rising\rav\relibldr.dll 036C0000[0007E000] [ M] 245. f:\rising\rav\rsnetsvr.dll 03980000[00016000] [ M] 246. f:\rising\rav\bawhite.dll 03BB0000[0002B000] [ M] 247. f:\rising\rav\rsstore.dll 03BF0000[00043000] [ M] 248. f:\rising\rav\scanner.dll 03DB0000[0001B000] [ M] 249. f:\rising\rav\scanadd.dll 041E0000[00028000] [ M] 250. f:\rising\rav\rstask.dll 04220000[00018000] [ M] 251. f:\rising\rav\rsstub.dll 04CB0000[0001A000] [ M] 252. f:\rising\rav\scansrv.dll 05F20000[0002B000] [ M] 253. f:\rising\rav\scanpe.dll 05F60000[00029000] [ M] 254. f:\rising\rav\pearc.dll 06350000[0001B000] [ M] 255. f:\rising\rav\ur000.dat 06380000[00035000] [ M] 256. f:\rising\rav\urutils.dll 067F0000[00032000] [ M] 257. f:\rising\rav\ffr.dll 06840000[00022000] [ M] 258. f:\rising\rav\nvfile.dll 13AB0000[00045000] [ M] 259. f:\rising\rav\scanexec.dll 07710000[002DD000] [ M] 260. f:\rising\rav\unexe.dll 079F0000[000E0000] [ M] 261. f:\rising\rav\scanex.dll 07E90000[00011000] [ M] 262. f:\rising\rav\scantj.dll 0A6A0000[00085000] [ M] 263. f:\rising\rav\methodex.dll 0B230000[000B9000] [ M] 264. f:\rising\rav\revm.dll 0B2F0000[0003E000] [ M] 265. f:\rising\rav\heurex.dll 0B860000[00022000] [ M] 266. f:\rising\rav\pecompd.dll 14210000[0003A000] [ M] 267. f:\rising\rav\extmail.dll 00DB0000[00023000] [ M] 268. f:\rising\rav\scansct.dll 07F50000[00011000] [ M] 269. f:\rising\rav\ur001.dat + 00000780(1920) RavMonD.exe 00400000[0002F000] [AM] 7. f:\rising\rfw\ravmond.exe 10000000[00032000] [ M] 270. f:\rising\rfw\combase.dll 00F30000[00086000] [ M] 271. f:\rising\rfw\cnt09.dll 00FD0000[0001D000] [ M] 272. f:\rising\rfw\monbase.dll 01000000[00019000] [ M] 273. f:\rising\rfw\moncomm.dll 01900000[00082000] [ M] 132. f:\rising\rfw\rfwlog.dll 01050000[0000C000] [ M] 123. f:\rising\rfw\rfwrule.dll 7C3C0000[0007C000] [ M] 124. c:\windows\system32\msvcp71.dll 7C360000[00056000] [ M] 125. c:\windows\system32\msvcr71.dll 019A0000[0004A000] [ M] 274. f:\rising\rfw\rfwsrv.dll 019F0000[00019000] [ M] 128. f:\rising\rfw\syslay.dll 01A30000[0001B000] [ M] 141. f:\rising\rfw\mports.dll 01A60000[00011000] [ M] 275. f:\rising\rfw\rfwdrvc.dll 01A90000[00011000] [ M] 276. f:\rising\rfw\rfwdrv.dll 01EC0000[00011000] [ M] 277. f:\rising\rfw\rfwarp.dll 01EF0000[0007E000] [ M] 143. f:\rising\rfw\rsnetsvr.dll 02390000[00014000] [ M] 278. f:\rising\rfw\urlrule.dll 023C0000[0003B000] [ M] 279. f:\rising\rfw\recomp.dll 020E0000[0002D000] [ M] 140. f:\rising\rfw\comx3.dll 02090000[00038000] [ M] 280. f:\rising\rfw\refs.dll 02160000[00030000] [ M] 281. f:\rising\rfw\viruslib.dll 02730000[00029000] [ M] 282. f:\rising\rfw\relibldr.dll 027A0000[0003F000] [ M] 283. f:\rising\rfw\rfwproxy.dll 23700000[00023000] [ M] 126. f:\rising\rfw\rslang.dll 02EE0000[0008C000] [ M] 284. f:\rising\rfw\rsindent.dll 02F80000[00018000] [ M] 285. f:\rising\rfw\taskplug.dll 034B0000[0000E000] [ M] 138. f:\rising\rfw\rsappmgr.dll 034D0000[00044000] [ M] 139. f:\rising\rfw\cfgdll.dll 03600000[00019000] [ M] 136. f:\rising\rfw\proccomm.dll 03B90000[0001C000] [ M] 286. f:\rising\rfw\ncomm2.dll 040C0000[00028000] [ M] 287. f:\rising\rfw\rstask.dll 04100000[00018000] [ M] 288. f:\rising\rfw\rsstub.dll 01800000[0000E000] [ M] 289. f:\rising\rfw\urllib.dll + 00000798(1944) alg.exe + 000007b0(1968) svchost.exe + 0000080c(2060) sqlmangr.exe 00400000[00012000] [AM] 76. c:\program files\microsoft sql server\80\tools\binn\sqlmangr.exe 41140000[0000C000] [ M] 290. c:\program files\microsoft sql server\80\tools\binn\w95scm.dll 42C40000[00017000] [ M] 291. c:\program files\microsoft sql server\80\tools\binn\sqlsvc.dll 4B4F0000[00006000] [ M] 292. c:\windows\system32\odbcbcp.dll 42AC0000[00007000] [ M] 293. c:\program files\microsoft sql server\80\tools\binn\sqlresld.dll 43970000[00006000] [ M] 294. c:\program files\microsoft sql server\80\tools\binn\resources\2052\sqlsvc.rll 43790000[00018000] [ M] 295. c:\program files\microsoft sql server\80\tools\binn\resources\2052\sqlmangr.rll + 0000095c(2396) svchost.exe 50F00000[0000D000] [ M] 296. c:\windows\system32\wups2.dll + 00000a04(2564) TheWorld.exe 00400000[00385000] [AM] 74. f:\theworld 3\theworld.exe 10000000[00041000] [ M] 297. f:\theworld 3\extensions\safecentral\safecentral.dll 00E90000[0005C000] [ M] 116. f:\~1杂东西\360safe\safemon\safemon.dll 02150000[0013B000] [ M] 298. f:\theworld 3\extensions\extadfilter\extadfilter.dll 02290000[000EA000] [ M] 299. f:\theworld 3\extensions\kingsafe\kingsafe.dll 02380000[0000B000] [ M] 300. f:\theworld 3\extensions\safecentral\urlproc.dll 02440000[0000E000] [ M] 301. f:\~1杂东西\360safe\safemon\urlproc.dll 02630000[00027000] [ M] 302. f:\~1杂东西\360safe\safemon\loadwdui.dll 02C70000[00049000] [ M] 303. f:\~1杂东西\360safe\safemon\wdui.dll 030B0000[00018000] [ M] 211. f:\rising\rav\ravscrch.dll 7C3C0000[0007C000] [ M] 124. c:\windows\system32\msvcp71.dll 7C360000[00056000] [ M] 125. c:\windows\system32\msvcr71.dll 72C80000[00008000] [ M] 115. c:\windows\system32\msacm32.drv 03BD0000[004A4000] [ M] 201. c:\windows\system32\macromed\flash\flash10d.ocx + 00000a38(2616) QQ.exe 00400000[00023000] [ M] 147. f:\~1qq\bin\qq.exe 30000000[0021D000] [ M] 148. f:\~1qq\bin\common.dll 31800000[00091000] [ M] 149. f:\~1qq\bin\kernelutil.dll 30800000[0029F000] [ M] 150. f:\~1qq\bin\gf.dll 10000000[00011000] [ M] 151. f:\~1qq\bin\xgraphic32.dll 61210000[000EE000] [ M] 152. f:\~1qq\bin\apputil.dll 00430000[0004E000] [ M] 153. f:\~1qq\bin\afutil.dll 00E20000[0005C000] [ M] 116. f:\~1杂东西\360safe\safemon\safemon.dll 01860000[001C0000] [ M] 154. f:\~1qq\bin\appframework.dll 61C00000[001CF000] [ M] 155. f:\~1qq\bin\mainframe.dll 02950000[001CB000] [ M] 156. f:\~1qq\bin\afctrl.dll 31000000[003A7000] [ M] 157. f:\~1qq\bin\im.dll 61FE0000[00033000] [ M] 158. f:\~1qq\bin\tasktray.dll 32000000[0000A000] [ M] 159. f:\~1qq\bin\txpfproxy.dll 03720000[0001D000] [ M] 160. f:\~1qq\plugin\com.tencent.qqshow\bin\flashavatardll.dll 72C80000[00008000] [ M] 115. c:\windows\system32\msacm32.drv 31400000[00050000] [ M] 161. f:\~1qq\bin\kernelmisc.dll 04C30000[0017F000] [ M] 162. f:\~1qq\bin\appmisc.dll 61500000[0012D000] [ M] 163. f:\~1qq\bin\chatframe.dll 61700000[000AE000] [ M] 164. f:\~1qq\bin\configcenter.dll 61A00000[000DE000] [ M] 165. f:\~1qq\bin\customface.dll 31C00000[000EA000] [ M] 166. f:\~1qq\bin\longcnn.dll 61900000[000D2000] [ M] 167. f:\~1qq\bin\contactinfoframe.dll 65000000[00103000] [ M] 168. f:\~1qq\bin\msgmgr.dll 61F20000[0006A000] [ M] 169. f:\~1qq\bin\skinmgr.dll 61F00000[0001A000] [ M] 170. f:\~1qq\bin\qinterlive.dll 04F90000[00079000] [ M] 171. f:\~1qq\bin\systemmsg.dll 62E00000[0011F000] [ M] 172. f:\~1qq\plugin\com.tencent.paipai\bin\paipai.dll 62100000[00154000] [ M] 173. f:\~1qq\plugin\com.tencent.audiovideo\bin\audiovideo.dll 62A00000[00054000] [ M] 174. f:\~1qq\plugin\com.tencent.mmog\bin\mmog.dll 64100000[0005B000] [ M] 175. f:\~1qq\plugin\com.tencent.soso\bin\soso.dll 63D00000[000E1000] [ M] 176. f:\~1qq\plugin\com.tencent.qzone\bin\qzone.dll 64700000[00033000] [ M] 177. f:\~1qq\plugin\com.tencent.weather\bin\weather.dll 64000000[00019000] [ M] 178. f:\~1qq\plugin\com.tencent.sobar\bin\sobar.dll 05090000[00049000] [ M] 179. f:\~1qq\plugin\com.tencent.paipaigift\bin\paipaigift.dll 63500000[00019000] [ M] 180. f:\~1qq\plugin\com.tencent.qqlive\bin\qqlive.dll 63600000[00056000] [ M] 181. f:\~1qq\plugin\com.tencent.qqmusic\bin\qqmusic.dll 64300000[0001C000] [ M] 182. f:\~1qq\plugin\com.tencent.taotao\bin\taotao.dll 05350000[00070000] [ M] 183. f:\~1qq\bin\basicctrldll.dll 053C0000[0008C000] [ M] 184. c:\program files\common files\tencent\txsso\bin\ssoplatform.dll 05460000[0016E000] [ M] 185. c:\program files\common files\tencent\txsso\bin\ssocommon.dll 39700000[000EB000] [ M] 186. f:\~1qq\bin\riched20.dll 04930000[0011B000] [ M] 187. f:\~1qq\bin\groupapp.dll 63F00000[00061000] [ M] 188. f:\~1qq\plugin\com.tencent.snsapp\bin\snsapp.dll 63000000[0003D000] [ M] 189. f:\~1qq\plugin\com.tencent.paycenter\bin\paycenter.dll 63100000[00022000] [ M] 190. f:\~1qq\plugin\com.tencent.qbar\bin\qbar.dll 63B00000[00029000] [ M] 191. f:\~1qq\plugin\com.tencent.qqvipmisc\bin\qqvipmisc.dll 64800000[00040000] [ M] 192. f:\~1qq\plugin\com.tencent.wenwen\bin\wenwen.dll 06540000[0005A000] [ M] 193. f:\~1qq\bin\contacts.dll 62B00000[00017000] [ M] 194. f:\~1qq\plugin\com.tencent.netbar\bin\netbar.dll 64A00000[00084000] [ M] 195. f:\~1qq\plugin\com.tencent.wireless\bin\wireless.dll 63900000[000C1000] [ M] 196. f:\~1qq\plugin\com.tencent.qqshow\bin\qqshow.dll 62300000[0003F000] [ M] 197. f:\~1qq\plugin\com.tencent.crm\bin\crm.dll 64600000[00028000] [ M] 198. f:\~1qq\plugin\com.tencent.vas\bin\vas.dll 06950000[000A7000] [ M] 199. f:\~1qq\bin\informationbox.dll 63300000[0006F000] [ M] 207. f:\~1qq\plugin\com.tencent.qqgame\bin\qqgame.dll 63700000[0003D000] [ M] 204. f:\~1qq\plugin\com.tencent.qqpet\bin\qqpet.dll 62700000[00039000] [ M] 209. f:\~1qq\plugin\com.tencent.mail\bin\mail.dll 63A00000[00044000] [ M] 200. f:\~1qq\plugin\com.tencent.qqvip\bin\qqvip.dll 62500000[0003A000] [ M] 304. f:\~1qq\plugin\com.tencent.gamelife\bin\gamelife.dll 06B70000[004A4000] [ M] 201. c:\windows\system32\macromed\flash\flash10d.ocx 63800000[0003D000] [ M] 208. f:\~1qq\plugin\com.tencent.qqring\bin\qqring.dll 086F0000[0000D000] [AM] 61. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll 62400000[000CB000] [ M] 202. f:\~1qq\plugin\com.tencent.filetransfer\bin\filetransfer.dll 62900000[0005C000] [ M] 203. f:\~1qq\plugin\com.tencent.memo\bin\memo.dll 65180000[0006C000] [ M] 205. f:\~1qq\plugin\com.tencent.advertisement\bin\advertisement.dll 08070000[0005F000] [ M] 213. f:\~1qq\bin\vqqsdl.dll 64400000[00020000] [ M] 206. f:\~1qq\plugin\com.tencent.today\bin\today.dll 63C00000[0002B000] [ M] 210. f:\~1qq\plugin\com.tencent.qqwebsite\bin\qqwebsite.dll 0ACA0000[00018000] [ M] 211. f:\rising\rav\ravscrch.dll 0ACC0000[0007C000] [ M] 124. c:\windows\system32\msvcp71.dll 7C360000[00056000] [ M] 125. c:\windows\system32\msvcr71.dll 0AE60000[00249000] [ M] 305. c:\windows\system32\qqpinyin.ime 08450000[00039000] [ M] 212. f:\~1qq\bin\addrsearch.dll 613D0000[00037000] [ M] 306. f:\~1qq\bin\camera.dll 12AF0000[00050000] [ M] 307. f:\~1qq\bin\sccore.dll + 00000a50(2640) knownsvr.exe 00400000[00072000] [ M] 308. f:\kaka\knownsvr.exe 10000000[00034000] [ M] 112. f:\kaka\ncomm.dll 00980000[0002D000] [ M] 109. f:\kaka\comx3.dll 009B0000[00019000] [ M] 107. f:\kaka\syslay.dll + 00000cd8(3288) wuauclt.exe 10000000[0005C000] [ M] 116. f:\~1杂东西\360safe\safemon\safemon.dll 50F00000[0000D000] [ M] 296. c:\windows\system32\wups2.dll + 00000d34(3380) TheWorld.exe 00400000[00385000] [AM] 74. f:\theworld 3\theworld.exe 10000000[00041000] [ M] 297. f:\theworld 3\extensions\safecentral\safecentral.dll 00E90000[0005C000] [ M] 116. f:\~1杂东西\360safe\safemon\safemon.dll 02430000[000D8000] [ M] 309. f:\theworld 3\extensions\extsuggest\extsuggest.dll 02730000[000FD000] [ M] 310. f:\theworld 3\extensions\extaddons\extaddons.dll 02830000[0013B000] [ M] 298. f:\theworld 3\extensions\extadfilter\extadfilter.dll 02510000[00017000] [ M] 311. f:\theworld 3\extensions\extminibar\extminibar.dll 02970000[00058000] [ M] 312. f:\theworld 3\extensions\extdownload\extdownload.dll 029D0000[00076000] [ M] 313. f:\theworld 3\extensions\extpages\extpages.dll 02A50000[0000B000] [ M] 300. f:\theworld 3\extensions\safecentral\urlproc.dll 02C00000[000EA000] [ M] 299. f:\theworld 3\extensions\kingsafe\kingsafe.dll 03090000[00027000] [ M] 302. f:\~1杂东西\360safe\safemon\loadwdui.dll 030C0000[00049000] [ M] 303. f:\~1杂东西\360safe\safemon\wdui.dll + 00000e6c(3692) ras.exe 00400000[0000B000] [ M] 314. f:\kaka\ras.exe 7C140000[00103000] [ M] 315. f:\kaka\mfc71.dll 7C340000[00056000] [ M] 104. f:\kaka\msvcr71.dll 10000000[0005C000] [ M] 116. f:\~1杂东西\360safe\safemon\safemon.dll 00B00000[00047000] [ M] 316. f:\kaka\kakamgr.dll 7C3A0000[0007B000] [ M] 103. f:\kaka\msvcp71.dll 00A80000[00019000] [ M] 107. f:\kaka\syslay.dll 00B50000[0001F000] [ M] 113. f:\rising\rav\proccom.dll 00B70000[00024000] [ M] 114. f:\kaka\rscommx2.dll 00CC0000[0002D000] [ M] 109. f:\kaka\comx3.dll 00E30000[00058000] [ M] 317. f:\kaka\dbmgr.dll 23800000[00022000] [ M] 102. f:\kaka\rsxml.dll 00F90000[0002E000] [ M] 318. f:\kaka\pweb.dll 00FC0000[0017C000] [ M] 319. f:\kaka\pscan.dll 01140000[00034000] [ M] 112. f:\kaka\ncomm.dll 011A0000[00031000] [ M] 320. f:\kaka\pdefend.dll 01210000[000B7000] [ M] 321. f:\kaka\ptools.dll 013D0000[00075000] [ M] 322. f:\kaka\psysinfo.dll 23900000[00040000] [ M] 110. f:\kaka\pngdll.dll 02C20000[00018000] [ M] 211. f:\rising\rav\ravscrch.dll 037D0000[004A4000] [ M] 201. c:\windows\system32\macromed\flash\flash10d.ocx 72C80000[00008000] [ M] 115. c:\windows\system32\msacm32.drv + 00000f34(3892) TXPlatform.exe 00400000[00025000] [ M] 323. f:\~1qq\bin\txplatform.exe 10000000[0005C000] [ M] 116. f:\~1杂东西\360safe\safemon\safemon.dll 32000000[0000A000] [ M] 159. f:\~1qq\bin\txpfproxy.dll