杀不了的毒啊！win32.Agent.ri/hxv - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛杀不了的毒啊！win32.Agent.ri/hxv

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

12

2 / 2 页

跳转页

杀不了的毒啊！win32.Agent.ri/hxv

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:43 \| 短消息资料字号：小中大 11楼 [A ] 86. c:\program files\ocins\srchsp.dll 中国互联网络信息中心(CNNIC) 国际化域名支持模块 .text,.rdata,.data,.rsrc,.reloc, FF 74 24 0C FF 74 24 0C FF 74 24 0C E8 B0 D7 FF + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {00000000-12C9-4305-82F9-43058F20E8D2} [A ] 87. c:\program files\tencent\qqdownload\qqiehelper01.dll 腾讯公司超级旋风下载组件 .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {0C7C23EF-A848-485B-873C-0ED954731014} [A ] 88. c:\program files\tencent\ssplus\saddr.dll Tencent .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} [A ] 89. d:\game\plugins\paopaokdc\jccatch.dll www.flashget.com Flashget CatchUrl Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {33BBE430-0E42-4f12-B075-8D21ACB10DCB} [A ] 90. c:\program files\yahoo!\assistant\assist\yphtb.dll Yahoo! China yPhtb .text,.rdata,.data,.yPhtbSe,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {385AB8C6-FB22-4D17-8834-064E2BA0A6F0} [A ] 91. c:\documents and settings\all users\application data\microsoft\pctools\pctools.dll 金泰丰(广州)科技有限公司 Pctools Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {38928D50-8A48-44C2-945F-D2F23F771410} [A ] 92. c:\program files\yahoo!\assistant\assist\yangling.dll Yahoo. yangling.dll .text,.rdata,.data,.SHARED,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {3E422F49-1566-40D3-B43D-077EF739AC32} [A ] 93. c:\windows\system32\navihelper.dll TODO: <公司名> TODO: <文件说明> .text,.rsrc,.reloc, B8 78 F5 06 10 50 64 FF 35 00 00 00 00 64 89 25 {406F94F0-504F-4a40-8DFD-58B0666ABEBD} [A ] 83. c:\program files\yahoo!\assistant\assist\yasbar.dll Yahoo! ToolBar .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {4E83D567-4697-4F7B-B1F0-A513B01DB89A} [A ] 94. c:\program files\chinanet\vnettransfer.dll VnetTransfer Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {62EED7C6-9F02-42f9-B634-98E2899E147B} [A ] 95. c:\program files\yahoo!\assistant\assist\ydragsearch.dll DragSearch .text,.rdata,.data,.BhoObjS,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {669751ED-D558-49AE-B01A-3B374CC7910E} [A ] 96. c:\windows\system32\ssup.dll TENCENT SSup .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {6E28339B-7A2A-47B6-AEB2-197004272379} [A ] 97. c:\windows\vchelper.dll VCHelper Module .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 C8 41 04 10 E8 33 E3 FF FF 33 C0 40 89 {7605CC7C-00FD-4A5F-BAFD-828342DE6279} [A ] 98. c:\program files\ocins\ieaux.dll 中国互联网络信息中心(CNNIC) 国际化域名解析模块 .text,.rdata,.data,Shared,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {77FEF28E-EB96-44FF-B511-3185DEA48697} [A ] 85. c:\program files\baidu\bar\baidubar.dll Baidu.com, Inc. BaiduBar Module .text,.rdata,.data,.idata,.SOBARSH,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {889D2FEB-5411-4565-8998-1DD2C5261283} [A ] 99. c:\program files\thunder network\thunder\comdlls\xunleibho_002.dll Thunder Networking Technologies,LTD XunLeiBHO .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {D157330A-9EF3-49F8-9A67-4141AC41ADD4} [A ] 100. c:\windows\downloaded program files\cnshook.dll 国风因特软件（北京）有限公司 CnsHook .text,.rdata,.data,.cnshook,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {F156768E-81EF-470C-9057-481BA8380DBA} [A ] 101. d:\game\plugins\paopaokdc\getflash.dll www.flashget.com Flashget GetFlash Module .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 98 C0 01 10 E8 4D EC FF FF 33 C0 40 89 {FAAAC0F6-94BE-4466-934B-7C53666A2F41} [A ] 102. c:\windows\system32\0811.dll TODO: <公司名> TODO: <文件说明> .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 B8 5B 01 10 E8 F3 0C 00 00 33 C0 40 89 + HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions Exec [A ] 103. c:\program files\thunder network\thunder\thunder.exe Thunder Networking Technologies,LTD CODE,DATA,BSS,.idata,.tls,.rdata,.reloc,.rsrc, 55 8B EC B9 06 00 00 00 6A 00 6A 00 49 75 F9 51 Exec [A ] 104. d:\downloads\浩方\浩方对战平台\gameclient.exe 上海浩方在线信息技术有限公司浩方对战平台 .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 08 82 51 00 68 1E CC 4D 00 64 Exec [A ] 105. c:\program files\ocins\config.exe 中国互联网络信息中心(CNNIC) config .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 88 C3 40 00 68 3C 95 40 00 64 Exec [A ] 106. d:\game\plugins\paopaokdc\flashget.exe FlashGet.com FlashGet .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 38 C4 55 00 68 44 11 4F 00 64 + HKCU\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars {19CE93DE-8334-42C6-B2CA-BFE3DF5196A3} [A ] 107. c:\program files\yahoo!\assistant\assist\yrss.dll Yahoo! China yRss Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 + Explorer + HKLM\SOFTWARE\Classes\PROTOCOLS\Filter text/xml [A ] 108. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll Microsoft Corporation Microsoft Office XML MIME Filter .text,.data,.rsrc,.reloc, 6A 0C 68 70 22 40 00 E8 FD 01 00 00 33 C0 40 89 + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved HyperTerminal Icon Ext [A ] 109. c:\windows\system32\hticons.dll Hilgraeve, Inc. HyperTerminal Applet Library .text,.data,.rsrc,.reloc, Portable Media Devices [A ] 110. c:\windows\system32\audiodev.dll Microsoft Corporation 便携媒体设备命令行解释器扩展 .text,.data,.rsrc,.reloc, 8B FF 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 Portable Media Devices Menu [A ] 110. c:\windows\system32\audiodev.dll Microsoft Corporation 便携媒体设备命令行解释器扩展 .text,.data,.rsrc,.reloc, 8B FF 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 WinRAR shell extension [A ] 111. c:\program files\winrar\rarext.dll .text,.data,.tls,.idata,.edata,.rsrc,.reloc, Microsoft Office HTML Icon Handler [A ] 112. c:\program files\microsoft office\office11\msohev.dll Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc,.reloc, 6A 0C 68 A8 41 5C 32 E8 B5 00 00 00 33 C0 40 89 Web Folders [A ] 113. c:\program files\common files\microsoft shared\web folders\msonsext.dll Microsoft Corporation Microsoft Web Folders .text,.data,.rsrc,.reloc, 6A 0C 68 B0 AC 0A 49 E8 DA 00 00 00 33 C0 40 89 Shell Extensions for RealOne Player [A ] 114. c:\program files\real\realplayer\rpshell.dll RealNetworks, Inc. RealPlayer Shell Extensions .text,.rdata,.data,.rsrc,.reloc, 53 55 56 8B 74 24 14 85 F6 57 B8 01 00 00 00 75 RISING [A ] 115. c:\windows\system32\ravext.dll Beijing Rising Technology Co., Ltd. Rising Shell Ext Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 粉碎文件 [A ] 116. c:\program files\yahoo!\assistant\assist\ywiper.dll Wiper 动态链接库 .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 88 5F 02 10 E8 1B 0B 00 00 33 C0 40 89 Yahoo!Photo [A ] 90. c:\program files\yahoo!\assistant\assist\yphtb.dll Yahoo! China yPhtb .text,.rdata,.data,.yPhtbSe,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks {AC2DC2EF-5165-40A3-8CDF-41DCA1B0901A} [AM] 117. c:\windows\system32\shlhook.dll Beijing Rising Technology Co., Ltd. shlhook Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 + Logon + HKLM\Software\Microsoft\Windows\CurrentVersion\Run igfxtray [AM] 118. c:\windows\system32\igfxtray.exe Intel Corporation igfxTray Module .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 E8 E5 40 00 68 44 84 40 00 64 igfxhkcmd [AM] 119. c:\windows\system32\hkcmd.exe Intel Corporation hkcmd Module .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 58 C4 40 00 68 10 99 40 00 64
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:43 \| 短消息资料字号：小中大 12楼 igfxpers [AM] 120. c:\windows\system32\igfxpers.exe Intel Corporation persistence Module .text,.rdata,.data,.idata,.rsrc,.reloc, 55 8B EC 6A FF 68 68 23 41 00 68 44 C3 40 00 64 SoundMan [AM] 121. c:\windows\soundman.exe Realtek Semiconductor Corp. Realtek Sound Manager .text,.rdata,.data,.sxdata,.rsrc, 6A 60 68 08 B3 40 00 E8 2B 10 00 00 83 65 FC 00 FixCamera [AM] 122. c:\windows\fixcamera.exe CameraFixer MFC Application .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 50 24 40 00 68 74 1B 40 00 64 tsnpstd3 [AM] 123. c:\windows\tsnpstd3.exe tsnp2std Microsoft .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 38 93 42 00 68 9C 0A 41 00 64 snpstd3 [AM] 124. c:\windows\vsnpstd3.exe CameraMonitor Application .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 A0 C2 4A 00 68 50 B2 48 00 64 runeip [AM] 125. c:\program files\rising\antispyware\runiep.exe Beijing Rising Technology Co., Ltd. Rising AntiSpyware Monitor .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 E0 6B 40 00 68 40 52 40 00 64 RavTask [A ] 126. c:\program files\rising\rav\ravtask.exe Beijing Rising Technology Co., Ltd. RavTimer .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 50 E3 40 00 68 D4 90 40 00 64 RfwMain [AM] 127. c:\program files\rising\rfw\rfwmain.exe Beijing Rising Technology Co., Ltd. Rising Personal FireWall Main Program .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 38 EB 41 00 68 20 B0 41 00 64 TkBellExe [A ] 128. c:\program files\common files\real\update_ob\realsched.exe RealNetworks, Inc. RealNetworks Scheduler .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 F0 30 42 00 68 08 97 41 00 64 YLive.exe [AM] 129. c:\program files\yahoo!\assistant\ylive.exe Yahoo! China YLive .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 E8 20 40 00 68 C0 1A 40 00 64 yassistse [AM] 130. c:\program files\yahoo!\assistant\yassistse.exe Yahoo! AssistSetting .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 48 52 40 00 68 6E 40 40 00 64 IdnSvr [AM] 131. c:\program files\ocins\idnsvr.exe 中国互联网信息中心(CNNIC) 国际化域名支持模块 .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 18 92 40 00 68 24 69 40 00 64 + Boot Execute + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 132. c:\windows\system32\bsmain.exe Beijing Rising Technology Co., Ltd. BootScan .text,.data,.rsrc,.reloc, 55 8B EC 6A FF 68 F0 27 00 01 68 74 9E 00 01 64 + Image Hijacks + HKCR\.html htmlfile\Edit\Command [A ] 133. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc, 6A 74 68 58 26 00 30 E8 A8 FF FF FF 33 DB 89 5D htmlfile\Maxthon\Command [AM] 134. c:\program files\maxthon\maxthon.exe Maxthon International Ltd. Maxthon Web Browser UPX0,UPX1,.rsrc, 60 BE 00 10 56 00 8D BE 00 00 EA FF 57 83 CD FF htmlfile\open\Command [AM] 134. c:\program files\maxthon\maxthon.exe Maxthon International Ltd. Maxthon Web Browser UPX0,UPX1,.rsrc, 60 BE 00 10 56 00 8D BE 00 00 EA FF 57 83 CD FF htmlfile\Print\Command [A ] 133. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc, 6A 74 68 58 26 00 30 E8 A8 FF FF FF 33 DB 89 5D + HKCR\.htm htmlfile\Edit\Command [A ] 133. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc, 6A 74 68 58 26 00 30 E8 A8 FF FF FF 33 DB 89 5D htmlfile\Maxthon\Command [AM] 134. c:\program files\maxthon\maxthon.exe Maxthon International Ltd. Maxthon Web Browser UPX0,UPX1,.rsrc, 60 BE 00 10 56 00 8D BE 00 00 EA FF 57 83 CD FF htmlfile\open\Command [AM] 134. c:\program files\maxthon\maxthon.exe Maxthon International Ltd. Maxthon Web Browser UPX0,UPX1,.rsrc, 60 BE 00 10 56 00 8D BE 00 00 EA FF 57 83 CD FF htmlfile\Print\Command [A ] 133. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc, 6A 74 68 58 26 00 30 E8 A8 FF FF FF 33 DB 89 5D + 其他自启动项目 + C:\Documents and Settings\Administrator\「开始」菜单\程序\启动腾讯QQ.lnk [A ] 135. c:\program files\tencent\qq\qq.exe TENCENT QQ .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 D0 63 53 00 68 48 EF 48 00 64 + 系统活动模块 + 00000078(120) 81ad1.exe 00400000[0001E000] [AM] 1. c:\windows\system32\81ad1.exe .text,.rdata,.data,.rsrc, 6A 18 68 80 4A 41 00 E8 3C 19 00 00 BF 94 00 00 + 000001e8(488) smss.exe + 00000230(560) csrss.exe + 00000248(584) winlogon.exe 72C80000[00008000] [ M] 136. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, 8B 44 24 08 83 E8 00 74 30 48 75 3A 56 8B 74 24 + 00000274(628) services.exe + 00000280(640) lsass.exe + 00000334(820) svchost.exe + 00000364(868) svchost.exe + 000003c4(964) svchost.exe 50E60000[0000C000] [ M] 137. c:\windows\system32\wups2.dll Microsoft Corporation Windows Update client proxy stub 2 .text,.orpc,.data,.rsrc,.reloc, 8B FF 55 8B EC 83 7D 0C 01 75 05 E8 F9 04 00 00 + 00000408(1032) svchost.exe + 00000420(1056) Maxthon.exe 00400000[0023D000] [AM] 134. c:\program files\maxthon\maxthon.exe Maxthon International Ltd. Maxthon Web Browser UPX0,UPX1,.rsrc, 60 BE 00 10 56 00 8D BE 00 00 EA FF 57 83 CD FF 10000000[00015000] [ M] 138. c:\program files\maxthon\maxzlib.dll maxzlib .text,.rdata,.data,.idata,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D 00C50000[00029000] [ M] 139. c:\program files\tencent\ssplus\splus.dll TENCENT .text,.rdata,.data,Shared_T,Shared_H,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 37210000[00086000] [ M] 140. c:\windows\downloaded program files\cnsmin.dll 国风因特软件（北京）有限公司 CnsMin .text,.rdata,.data,.cnsdata,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 53000000[0000D000] [ M] 141. c:\program files\3721\helper.dll Helper Module .text,.rdata,.data,.cnshelp,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 00DD0000[0000B000] [ M] 142. c:\program files\yahoo!\assistant\yhelper.dll Helper Module .text,.rdata,.data,.cnshelp,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 4B4F0000[00006000] [ M] 143. c:\windows\system32\odbcbcp.dll Microsoft Corporation Microsoft BCP for ODBC .text,.data,.rsrc,.reloc, 8B FF 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 02790000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 03450000[00019000] [ M] 145. c:\program files\rising\rav\ravscrch.dll Beijing Rising Technology Co., Ltd. RavScrCh Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 30000000[002EE000] [ M] 146. c:\windows\system32\macromed\flash\flash9b.ocx Adobe Systems, Inc. Adobe Flash Player 9.0 r28 .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 C8 B9 1C 30 E8 67 EB FF FF 33 C0 40 89 72C80000[00008000] [ M] 136. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, 8B 44 24 08 83 E8 00 74 30 48 75 3A 56 8B 74 24
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:44 \| 短消息资料字号：小中大 13楼 + 00000448(1096) svchost.exe + 0000054c(1356) igfxtray.exe 00400000[0001A000] [AM] 118. c:\windows\system32\igfxtray.exe Intel Corporation igfxTray Module .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 E8 E5 40 00 68 44 84 40 00 64 10000000[00013000] [ M] 147. c:\windows\system32\hccutils.dll Intel Corporation hccutils Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 00D90000[0000E000] [ M] 148. c:\windows\system32\igfxsrvc.dll Intel Corporation igfxsrvc Module .text,.orpc,.rdata,.data,.rsrc,.reloc, 83 7C 24 08 01 75 10 8B 44 24 04 50 A3 70 52 00 00DA0000[00014000] [ M] 149. c:\windows\system32\igfxres.dll Intel Corporation igfxres Module .text,.rdata,.data,.rsrc,.reloc, FF 74 24 0C FF 74 24 0C FF 74 24 0C E8 A9 F7 FF 00E00000[0016F000] [ M] 150. c:\windows\system32\igfxress.dll Intel Corporation igfxress Module .text,.rdata,.data,.rsrc,.reloc, FF 74 24 0C FF 74 24 0C FF 74 24 0C E8 A9 F7 FF 00FB0000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 01100000[00029000] [ M] 139. c:\program files\tencent\ssplus\splus.dll TENCENT .text,.rdata,.data,Shared_T,Shared_H,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 37210000[00086000] [ M] 140. c:\windows\downloaded program files\cnsmin.dll 国风因特软件（北京）有限公司 CnsMin .text,.rdata,.data,.cnsdata,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 + 00000574(1396) hkcmd.exe 00400000[00013000] [AM] 119. c:\windows\system32\hkcmd.exe Intel Corporation hkcmd Module .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 58 C4 40 00 68 10 99 40 00 64 10000000[00013000] [ M] 147. c:\windows\system32\hccutils.dll Intel Corporation hccutils Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 003F0000[0000E000] [ M] 148. c:\windows\system32\igfxsrvc.dll Intel Corporation igfxsrvc Module .text,.orpc,.rdata,.data,.rsrc,.reloc, 83 7C 24 08 01 75 10 8B 44 24 04 50 A3 70 52 00 00D60000[00014000] [ M] 149. c:\windows\system32\igfxres.dll Intel Corporation igfxres Module .text,.rdata,.data,.rsrc,.reloc, FF 74 24 0C FF 74 24 0C FF 74 24 0C E8 A9 F7 FF 00DC0000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 + 00000598(1432) spoolsv.exe + 000005c0(1472) igfxpers.exe 00400000[0001D000] [AM] 120. c:\windows\system32\igfxpers.exe Intel Corporation persistence Module .text,.rdata,.data,.idata,.rsrc,.reloc, 55 8B EC 6A FF 68 68 23 41 00 68 44 C3 40 00 64 10000000[0000E000] [ M] 148. c:\windows\system32\igfxsrvc.dll Intel Corporation igfxsrvc Module .text,.orpc,.rdata,.data,.rsrc,.reloc, 83 7C 24 08 01 75 10 8B 44 24 04 50 A3 70 52 00 00E50000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 + 000005d4(1492) Explorer.EXE 00F10000[00011000] [AM] 117. c:\windows\system32\shlhook.dll Beijing Rising Technology Co., Ltd. shlhook Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 01B00000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 72C80000[00008000] [ M] 136. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, 8B 44 24 08 83 E8 00 74 30 48 75 3A 56 8B 74 24 53000000[0000D000] [ M] 141. c:\program files\3721\helper.dll Helper Module .text,.rdata,.data,.cnshelp,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 01DE0000[00007000] [ M] 151. c:\program files\3721\alrex.dll alrex Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 01DF0000[0000B000] [ M] 142. c:\program files\yahoo!\assistant\yhelper.dll Helper Module .text,.rdata,.data,.cnshelp,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 01B40000[00026000] [ M] 152. c:\windows\system32\igfxpph.dll Intel Corporation igfxpph Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 02060000[00013000] [ M] 147. c:\windows\system32\hccutils.dll Intel Corporation hccutils Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 02090000[00014000] [ M] 149. c:\windows\system32\igfxres.dll Intel Corporation igfxres Module .text,.rdata,.data,.rsrc,.reloc, FF 74 24 0C FF 74 24 0C FF 74 24 0C E8 A9 F7 FF 020F0000[0016F000] [ M] 150. c:\windows\system32\igfxress.dll Intel Corporation igfxress Module .text,.rdata,.data,.rsrc,.reloc, FF 74 24 0C FF 74 24 0C FF 74 24 0C E8 A9 F7 FF 37210000[00086000] [ M] 140. c:\windows\downloaded program files\cnsmin.dll 国风因特软件（北京）有限公司 CnsMin .text,.rdata,.data,.cnsdata,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 023A0000[0000E000] [ M] 148. c:\windows\system32\igfxsrvc.dll Intel Corporation igfxsrvc Module .text,.orpc,.rdata,.data,.rsrc,.reloc, 83 7C 24 08 01 75 10 8B 44 24 04 50 A3 70 52 00 027B0000[00029000] [ M] 139. c:\program files\tencent\ssplus\splus.dll TENCENT .text,.rdata,.data,Shared_T,Shared_H,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 + 00000614(1556) SOUNDMAN.EXE 00400000[0008F000] [AM] 121. c:\windows\soundman.exe Realtek Semiconductor Corp. Realtek Sound Manager .text,.rdata,.data,.sxdata,.rsrc, 6A 60 68 08 B3 40 00 E8 2B 10 00 00 83 65 FC 00 10000000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 + 00000638(1592) RavStub.exe 00400000[00018000] [ M] 153. c:\program files\rising\rav\ravstub.exe Beijing Rising Technology Co., Ltd. Rising RavStub .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 98 F4 40 00 68 20 6D 40 00 64 10000000[0001B000] [ M] 154. c:\program files\rising\rav\rscommx.dll rising RsCommX .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 23700000[0001A000] [ M] 155. c:\program files\rising\rav\rscommon.dll Beijing Rising Technology Co., Ltd. Rising Common Function Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 + 00000684(1668) FixCamera.exe 00400000[00005000] [AM] 122. c:\windows\fixcamera.exe CameraFixer MFC Application .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 50 24 40 00 68 74 1B 40 00 64 10000000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 + 00000688(1672) tsnpstd3.exe 00400000[00046000] [AM] 123. c:\windows\tsnpstd3.exe tsnp2std Microsoft .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 38 93 42 00 68 9C 0A 41 00 64 10000000[0000F000] [ M] 156. c:\windows\system32\vsnpstd3.dll .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 00C30000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 37210000[00086000] [ M] 140. c:\windows\downloaded program files\cnsmin.dll 国风因特软件（北京）有限公司 CnsMin .text,.rdata,.data,.cnsdata,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 00D80000[00029000] [ M] 139. c:\program files\tencent\ssplus\splus.dll TENCENT
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:45 \| 短消息资料字号：小中大 14楼 .text,.rdata,.data,Shared_T,Shared_H,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 + 000006ec(1772) vsnpstd3.exe 00400000[000D2000] [AM] 124. c:\windows\vsnpstd3.exe CameraMonitor Application .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 A0 C2 4A 00 68 50 B2 48 00 64 10000000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 + 00000708(1800) runiep.exe 00400000[00012000] [AM] 125. c:\program files\rising\antispyware\runiep.exe Beijing Rising Technology Co., Ltd. Rising AntiSpyware Monitor .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 E0 6B 40 00 68 40 52 40 00 64 00C00000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 + 00000720(1824) Ras.exe 00400000[0013D000] [ M] 157. c:\program files\rising\antispyware\ras.exe Beijing Rising Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 90 3A 4C 00 68 70 B7 4A 00 64 10000000[00029000] [ M] 139. c:\program files\tencent\ssplus\splus.dll TENCENT .text,.rdata,.data,Shared_T,Shared_H,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 37210000[00086000] [ M] 140. c:\windows\downloaded program files\cnsmin.dll 国风因特软件（北京）有限公司 CnsMin .text,.rdata,.data,.cnsdata,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 53000000[0000D000] [ M] 141. c:\program files\3721\helper.dll Helper Module .text,.rdata,.data,.cnshelp,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 00C30000[0000B000] [ M] 142. c:\program files\yahoo!\assistant\yhelper.dll Helper Module .text,.rdata,.data,.cnshelp,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 00EA0000[000A0000] [ M] 158. c:\program files\rising\antispyware\rasgui.dll Beijing Rising Technology Co., Ltd. RasGUI .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 01750000[00011000] [AM] 117. c:\windows\system32\shlhook.dll Beijing Rising Technology Co., Ltd. shlhook Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 01570000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 + 00000748(1864) p2psvr.exe 00400000[00016000] [AM] 3. c:\program files\common files\sogou pxp\p2psvr.exe Sohu.com Inc. Sogou P4P Service .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 58 F1 40 00 68 A0 C8 40 00 64 10000000[00012000] [ M] 159. c:\program files\p4p\p4pipc.dll Sohu.com Inc. Sogou P4P IPC Service .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 + 00000764(1892) rundll32.exe 10000000[00115000] [ M] 160. c:\windows\system32\501.dll Player 动态链接库 .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 D0 94 09 10 E8 EA 21 00 00 33 C0 40 89 00AB0000[00029000] [ M] 139. c:\program files\tencent\ssplus\splus.dll TENCENT .text,.rdata,.data,Shared_T,Shared_H,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 37210000[00086000] [ M] 140. c:\windows\downloaded program files\cnsmin.dll 国风因特软件（北京）有限公司 CnsMin .text,.rdata,.data,.cnsdata,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 53000000[0000D000] [ M] 141. c:\program files\3721\helper.dll Helper Module .text,.rdata,.data,.cnshelp,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 00A80000[0000B000] [ M] 142. c:\program files\yahoo!\assistant\yhelper.dll Helper Module .text,.rdata,.data,.cnshelp,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 00FA0000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 + 00000774(1908) svchost.exe + 0000077c(1916) RfwMain.exe 00400000[00073000] [AM] 127. c:\program files\rising\rfw\rfwmain.exe Beijing Rising Technology Co., Ltd. Rising Personal FireWall Main Program .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 38 EB 41 00 68 20 B0 41 00 64 26600000[0007D000] [ M] 161. c:\program files\rising\rfw\rsguilib.dll Beijing Rising Technology Co., Ltd. Rising GUI Library Loader .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 23700000[0001A000] [ M] 162. c:\program files\rising\rfw\rscommon.dll Beijing Rising Technology Co., Ltd. Rising Common Function Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 10000000[0000F000] [ M] 163. c:\program files\rising\rfw\rfwctrl.dll Beijing Rising Technology Co., Ltd. RfwCtrl DLL .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 23800000[0001A000] [ M] 164. c:\program files\rising\rfw\rsxml.dll Beijing Rising Technology Co., Ltd. RsXML .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 23900000[00031000] [ M] 165. c:\program files\rising\rfw\pngdll.dll Beijing Rising Technology Co., Ltd. Rising .Png File Loader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 01320000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 01470000[00029000] [ M] 139. c:\program files\tencent\ssplus\splus.dll TENCENT
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:46 \| 短消息资料字号：小中大 15楼 [ M] 141. c:\program files\3721\helper.dll Helper Module .text,.rdata,.data,.cnshelp,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 00990000[0000B000] [ M] 142. c:\program files\yahoo!\assistant\yhelper.dll Helper Module .text,.rdata,.data,.cnshelp,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 10000000[0001B000] [ M] 144. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 6A 0C 68 00 CD 57 01 E8 BD 02 00 00 33 C0 40 89 72C80000[00008000] [ M] 136. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, 8B 44 24 08 83 E8 00 74 30 48 75 3A 56 8B 74 24 00F90000[00029000] [ M] 139. c:\program files\tencent\ssplus\splus.dll TENCENT .text,.rdata,.data,Shared_T,Shared_H,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

<<上一主题|下一主题>>

12

2 / 2 页

跳转页

页面顶部

Powered by Discuz!NT