瑞星卡卡安全论坛
中毒太深啦啊 - 2007-7-11 16:51:00
现在每次开机,瑞星都不能监控,并出现下面的提示,请问是不是中毒了?
请各位帮帮忙,很感谢!
附件:
7578992007712154725.bmp
中毒太深啦啊 - 2007-7-11 17:02:00
帝王时代的帅哥 - 2007-7-11 17:04:00
我的浏览器经常出现类似的错误提示
中毒太深啦啊 - 2007-7-11 17:07:00
想试着修复一下,但按照"开始---所有程序---瑞星---添加删除组件"的步骤操作后,跳出安装对话框(但事实上已经安装了瑞星了)
附件:
7578992007711165735.bmp
中毒太深啦啊 - 2007-7-11 17:12:00
| 引用: |
【帝王时代的帅哥的贴子】我的浏览器经常出现类似的错误提示
……………… |
哈 我们的电脑是不是中毒了?
但是没觉得电脑速度变慢啊
王嘟嘟 - 2007-7-11 18:26:00
我和你的情况一模一样,那位高手来帮帮忙!!!
爱满鱼鱼 - 2007-7-12 11:04:00
我家电脑也是这样怎么办啊?
一笑千秋 - 2007-7-12 11:28:00
最好在安全模式下查查毒,这个我去年出现过,后来在安全模式下重新安装了,就好了.
Leoooo - 2007-7-12 11:31:00
http://download.rising.com.cn/for_down/kakatool/kakasetupv4.exe下载卡卡上网安全助手4.0
1 运行瑞星卡卡上网安全助手
2 诊断求助=》电脑诊断日志
3 选择"文件详细信息"、"文件名相似分析"3个选项
4 开始扫描=》导出信息,导成txt格式(也可以是htm格式方便自己看,不过论坛不能上传htm格式)
5 把日志中的报告完整拷贝贴上来,不要修改(一次发不完请分次发上来)
6 扫日志的时候尽量把不必要的软件关闭 如QQ TM等
7 把扫描出来的可疑文件上传给瑞星
http://up.rising.com.cn/webmail/uploadnew.htm
中毒太深啦啊 - 2007-7-12 15:28:00
瑞星卡卡电脑诊断日志 v1.20 (2007-7-12 15:12:20) 北京瑞星科技股份有限公司
注释:[A]表示该文件存在自启动关联;
[M]表示该文件在内存中;
+ 注册表自运行项目
+ Win32 Services
+ HKLM\System\CurrentControlSet\Services
aspnet_state
[A ] 1. c:\windows\microsoft.net\framework\v1.1.4322\aspnet_state.exe
Microsoft Corporation
aspnet_state.exe
.text,.data,.rsrc,
6A 28 68 F0 11 42 00 E8 D3 02 00 00 33 FF 57 FF
Ati HotKey Poller
[AM] 2. c:\windows\system32\ati2evxx.exe
ATI Technologies Inc.
ATI External Event Utility EXE Module
.text,.rdata,.data,.rsrc,
6A 60 68 38 93 45 00 E8 5A 25 00 00 83 65 FC 00
HidHook
[AM] 3. c:\windows\system32\hidhook.exe
Shanda Computer (Shanghai) Co., Ltd.
EZ Center 遥控器监听服务
.text,.rdata,.data,.rsrc,
6A 60 68 50 01 41 00 E8 EB 0B 00 00 BF 94 00 00
IDriverT
[A ] 4. c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe
Macrovision Corporation
IDriverT Module
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 68 93 40 00 68 34 65 40 00 64
MDM
[AM] 5. c:\program files\common files\microsoft shared\vs7debug\mdm.exe
Microsoft Corporation
Machine Debug Manager
.text,.data,.rsrc,
6A 60 68 F8 15 40 00 E8 F1 21 00 00 BF 94 00 00
ose
[A ] 6. c:\program files\common files\microsoft shared\source engine\ose.exe
Microsoft Corporation
Office Source Engine
.text,.data,.rsrc,
6A 74 68 60 2E 00 30 E8 23 04 00 00 33 DB 89 5D
RfwProxySrv
[A ] 7. d:\瑞星防火墙\rising\rfw\rfwproxy.exe
Beijing Rising Technology Co., Ltd.
Rising Personal Proxy Service
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 60 94 40 00 68 60 85 40 00 64
RfwService
[A ] 8. d:\瑞星防火墙\rising\rfw\rfwsrv.exe
Beijing Rising Technology Co., Ltd.
Rising Personal FireWall Service
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 70 AC 41 00 68 80 94 41 00 64
RsCCenter
[A ] 9. d:\瑞星2006\rising\rav\ccenter.exe
Beijing Rising Technology Co., Ltd.
CCenter
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 C8 26 41 00 68 D8 AB 40 00 64
RsRavMon
[A ] 10. d:\瑞星2006\rising\rav\ravmond.exe
Beijing Rising Technology Co., Ltd.
RavMond
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 F8 D7 42 00 68 C4 E4 41 00 64
UMWdf
[AM] 11. c:\windows\system32\wdfmgr.exe
Microsoft Corporation
Windows User Mode Driver Manager
.text,.data,.rsrc,
6A 28 68 30 26 00 01 E8 A5 01 00 00 66 81 3D 00
+ Kernel Drivers
+ HKLM\System\CurrentControlSet\Services
ALCXWDM
[A ] 12. c:\windows\system32\drivers\alcxwdm.sys
Realtek Semiconductor Corp.
Realtek AC'97 Audio Driver (WDM)
.text,CODE,.rdata,.data,.data1,PAGE,INIT,.rsrc,.reloc,
A1 18 A7 1D 00 85 C0 B9 4E E6 40 BB 74 04 3B C1
AmdK8
[A ] 13. c:\windows\system32\drivers\amdk8.sys
Microsoft Corporation
Processor Device Driver
.text,.rdata,.data,PAGE,PAGELK,INIT,.rsrc,.reloc,
8B FF 55 8B EC A1 B4 50 01 00 85 C0 B9 40 BB 00
BaseTDI
[A ] 14. c:\windows\system32\drivers\basetdi.sys
Beijing Rising Technology Co., Ltd.
basetdi
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 14 53 56 57 E8 13 04 00 00 8B 35
Cinemsup
[A ] 15. c:\windows\system32\drivers\cinemsup.sys
Sonic Solutions
SW CineMaster Support
.text,.rdata,.data,.rsrc,.reloc,
ENTECH
[A ] 16. c:\windows\system32\drivers\entech.sys
EnTech Taiwan
.text,.data,.CRT,.STL,PAGE,INIT,.rsrc,.reloc,
55 8B EC 83 EC 58 56 E8 3C F1 FF FF 8B F0 B8 00
ExpScaner
[A ] 17. d:\瑞星2006\rising\rav\expscan.sys
ExpScan.sys
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 51 68 88 38 02 00 FF 15 70 1F 01 00 83
HookCont
[A ] 18. d:\瑞星2006\rising\rav\hookcont.sys
Rising
HookCont
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 14 53 56 57 68 70 20 00 00 E8 F7
HookReg
[A ] 19. d:\瑞星2006\rising\rav\hookreg.sys
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 64 56 57 C7 45 AC 00 00 00 00 B9
HookSys
[A ] 20. d:\瑞星2006\rising\rav\hooksys.sys
Rising
Hooksys
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 14 53 56 57 E8 8A 08 00 00 68 FC
HookUrl
[A ] 21. d:\瑞星防火墙\rising\rfw\hookurl.sys
Beijing Rising Technology Co., Ltd.
HookUrl
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 10 53 56 8B 75 08 57 6A 1B B8 8C
MEMSCAN
[A ] 22. d:\瑞星2006\rising\rav\memscan.sys
瑞星软件有限公司
MemScan Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 14 56 8B 35 DC 0C 01 00 57 8D 45
mProcRs
[A ] 23. d:\瑞星防火墙\rising\rfw\mprocrs.sys
Beijing Rising Technology Co., Ltd.
Rising Personal FireWall mprocrs.sys
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 10 56 57 E8 29 02 00 00 85 C0 75
npkcrypt
[A ] 24. d:\传美\qq\npkcrypt.sys
INCA Internet Co., Ltd.
nProtect KeyCrypt Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
51 53 56 E8 6F 2C 00 00 A3 28 46 01 00 E8 EC 2B
PCTINDIS5
[A ] 25. c:\windows\system32\pctindis5.sys
PCTEL Inc.
PCTEL NDIS 5.0 Protocol Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 78 53 56 57 6A 1A 33 DB 59 33 C0
PNP04331
[A ] 26. c:\windows\system32\drivers\pnp04230.sys
Anti Driver
Anti Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
A1 00 1B 01 00 85 C0 B9 4E E6 40 BB 74 04 3B C1
RsAntiSpyware
[A ] 27. c:\windows\system32\drivers\rsboot.sys
Beijing Rising Technology Co., Ltd.
Anti-RootKit Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 20 53 56 33 F6 57 89 75 F4 60 8D
RsFwDrv
[A ] 28. d:\瑞星防火墙\rising\rfw\rsfwdrv.sys
Beijing Rising Technology Co., Ltd.
nt_fwdrv
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 14 53 56 57 E8 74 CA FF FF 84 C0
RsNTGDI
[A ] 29. c:\windows\system32\drivers\rsntgdi.sys
Beijing Rising Technology Co., Ltd.
RsNTGDI
.text,.rdata,INIT,.rsrc,.reloc,
55 8B EC 83 EC 10 56 8B 75 08 57 8B 3D 58 05 01
RSPPSYS
[A ] 30. d:\瑞星2006\rising\rav\rsppsys.sys
Rising
RSPPSYS.SYS
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 14 53 6A 5C E8 EE FB FF FF 33 DB
Secdrv
[A ] 31. c:\windows\system32\drivers\secdrv.sys
.text,.data,INIT,.reloc,
55 8B EC 83 EC 10 53 56 57 E8 E4 A3 FF FF 89 45
Skkbdf
[A ] 32. c:\windows\system32\drivers\skthtfk.sys
SSFltPT
[A ] 33. c:\windows\system32\drivers\ssfltpt.sys
.text,.rdata,.data,PAGE,INIT,.reloc,
56 57 68 A0 1C 01 00 FF 15 78 16 01 00 8B 74 24
w550bus
[A ] 34. c:\windows\system32\drivers\w550bus.sys
MCCI
Sony Ericsson W550 Driver
.text,.data,INIT,.rsrc,.reloc,
FF 74 24 08 FF 74 24 08 68 90 05 01 00 E8 3E 52
w550mdfl
[A ] 35. c:\windows\system32\drivers\w550mdfl.sys
MCCI
Sony Ericsson W550 USB WMC Modem Filter Driver
.text,.rdata,INIT,.rsrc,.reloc,
8B 54 24 04 57 6A 1C B8 E0 03 01 00 8D 7A 38 59
w550mdm
[A ] 36. c:\windows\system32\drivers\w550mdm.sys
MCCI
Sony Ericsson W550 USB WMC Modem WDM Driver
.text,.data,INIT,.rsrc,.reloc,
FF 74 24 08 FF 74 24 08 68 C8 06 01 00 E8 C8 B7
w550mgmt
[A ] 37. c:\windows\system32\drivers\w550mgmt.sys
MCCI
Sony Ericsson W550 USB WMC Device Management Driver
.text,.data,INIT,.rsrc,.reloc,
FF 74 24 08 FF 74 24 08 68 38 06 01 00 E8 76 9F
w550obex
[A ] 38. c:\windows\system32\drivers\w550obex.sys
MCCI
Sony Ericsson W550 USB WMC OBEX Interface Device Driver
.text,.data,INIT,.rsrc,.reloc,
FF 74 24 08 FF 74 24 08 68 28 06 01 00 E8 50 98
中毒太深啦啊 - 2007-7-12 15:28:00
+ File System Drivers
+ HKLM\System\CurrentControlSet\Services
SCBACK
[A ] 39. c:\windows\system32\drivers\scback.sys
StarSoftComm
File System Filter Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 54 53 56 8B 75 08 FF 75 0C 89 35
SSCFLTXP
[A ] 40. c:\windows\system32\drivers\sscfltxp.sys
Windows (R) 2000 DDK provider
File System Filter Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
55 8B EC 83 EC 54 53 8B 5D 08 56 57 8D 45 08 50
+ Winlogon
+ HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
AtiExtEvent
[AM] 41. c:\windows\system32\ati2evxx.dll
ATI Technologies Inc.
ATI External Event Utility DLL Module
.text,.rdata,.data,.rsrc,.reloc,
8B FF 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57
+ HKCU\Control Panel\Desktop
Scrnsave.exe
[A ] 42. d:\my\桌面\yoyocici\jfpb00004061214a.scr
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 F0 BD 45 00 68 40 2D 43 00 64
+ Internet Explorer
+ HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C}
[A ] 43. c:\windows\system32\kakatool.dll
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware Toolbar
.text,.rdata,.data,MonitorS,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
{00000000-12C9-4305-82F9-43058F20E8D2}
[AM] 44. d:\qqdownload\qqiehelper01.dll
腾讯公司
超级旋风下载组件
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
+ HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions
Exec
[A ] 45. d:\迅雷\thunder.exe
Thunder Networking Technologies,LTD
CODE,DATA,BSS,.idata,.tls,.rdata,.reloc,.rsrc,
55 8B EC B9 06 00 00 00 6A 00 6A 00 49 75 F9 51
Exec
[A ] 46. d:\tencent2007\qq.exe
TENCENT
QQ
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 08 54 52 00 68 AE 54 48 00 64
Exec
[A ] 47. c:\program files\messenger\msmsgs.exe
Microsoft Corporation
Windows Messenger
.text,.data,.rsrc,
6A 70 68 28 98 00 01 E8 BF 01 00 00 33 DB 53 8B
+ Explorer
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Filter
application/octet-stream
[A ] 48. c:\windows\system32\mscoree.dll
Microsoft Corporation
Microsoft .NET Runtime Execution Engine
.text,.data,.rsrc,.reloc,
6A 0C 68 B8 21 17 79 E8 84 FF FF FF 33 C0 40 89
application/x-complus
[A ] 48. c:\windows\system32\mscoree.dll
Microsoft Corporation
Microsoft .NET Runtime Execution Engine
.text,.data,.rsrc,.reloc,
6A 0C 68 B8 21 17 79 E8 84 FF FF FF 33 C0 40 89
application/x-msdownload
[A ] 48. c:\windows\system32\mscoree.dll
Microsoft Corporation
Microsoft .NET Runtime Execution Engine
.text,.data,.rsrc,.reloc,
6A 0C 68 B8 21 17 79 E8 84 FF FF FF 33 C0 40 89
text/xml
[AM] 49. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll
Microsoft Corporation
Microsoft Office XML MIME Filter
.text,.data,.rsrc,.reloc,
6A 0C 68 70 22 40 00 E8 FD 01 00 00 33 C0 40 89
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Handler
ic32pp
[A ] 50. c:\windows\wc98pp.dll
CODE,DATA,BSS,.idata,.edata,.reloc,.rsrc,
55 8B EC 83 C4 B4 B8 1C A8 40 00 E8 18 A0 FF FF
KuGoo3
[A ] 51. d:\酷狗\kugoo3\inextend\kugoo3downxcontrol.ocx
CODE,DATA,BSS,.idata,.edata,.reloc,.rsrc,
55 8B EC 83 C4 C4 B8 FC 90 46 00 E8 64 D6 F9 FF
ms-itss
[A ] 52. c:\program files\common files\microsoft shared\information retrieval\msitss.dll
Microsoft Corporation
Microsoft? InfoTech Storage System Library
.text,.data,.rsrc,.reloc,
55 8B EC 53 56 8B 75 0C 57 6A 01 5F 3B F7 75 7C
mso-offdap
[A ] 53. c:\program files\common files\microsoft shared\web components\10\owc10.dll
Microsoft Corporation
Microsoft Office XP Web Components
.text,.data,.rtext,.bootdat,msoconst,Shared,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
mso-offdap11
[A ] 54. c:\program files\common files\microsoft shared\web components\11\owc11.dll
Microsoft Corporation
Microsoft Office Web Components 2003
.text,.data,.rtext,Shared,.rsrc,.reloc,
6A 0C 68 F0 2F 73 38 E8 1A 90 02 00 33 C0 40 89
+ HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers
{F9DB5320-233E-11D1-9F84-707F02C10627}
[AM] 55. d:\adobe reader 7.08\activex\pdfshell.dll
Adobe Systems, Inc.
PDF Shell Extension
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 E8 DD 00 10 E8 F5 EF FF FF 33 C0 40 89
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
HyperTerminal Icon Ext
[A ] 56. c:\windows\system32\hticons.dll
Hilgraeve, Inc.
HyperTerminal Applet Library
.text,.data,.rsrc,.reloc,
Fusion Cache
[A ] 48. c:\windows\system32\mscoree.dll
Microsoft Corporation
Microsoft .NET Runtime Execution Engine
.text,.data,.rsrc,.reloc,
6A 0C 68 B8 21 17 79 E8 84 FF FF FF 33 C0 40 89
Catalyst Context Menu extension
[A ] 57. c:\program files\ati technologies\ati.ace\atiacmxx.dll
ACE Context Menu
.text,.rdata,.data,.rsrc,.reloc,
8B FF 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57
EZCenter Shell Manager
[A ] 58. c:\program files\ezcenter\shell\sdextend.dll
CODE,DATA,BSS,.idata,.edata,.reloc,.rsrc,
55 8B EC 83 C4 C4 B8 9C A7 41 00 E8 04 BB FE FF
Portable Media Devices
[A ] 59. c:\windows\system32\audiodev.dll
Microsoft Corporation
便携媒体设备命令行解释器扩展
.text,.data,.rsrc,.reloc,
8B FF 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57
Portable Media Devices Menu
[A ] 59. c:\windows\system32\audiodev.dll
Microsoft Corporation
便携媒体设备命令行解释器扩展
.text,.data,.rsrc,.reloc,
8B FF 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57
Shell Extensions for RealOne Player
[A ] 60. d:\realone\rpshell.dll
RealNetworks, Inc.
RealPlayer Shell Extensions
.text,.rdata,.data,.rsrc,.reloc,
53 55 56 8B 74 24 14 85 F6 57 B8 01 00 00 00 75
WinRAR shell extension
[A ] 61. c:\program files\winrar\rarext.dll
.text,.data,.tls,.idata,.edata,.rsrc,.reloc,
ScriptDropShellExt
[A ] 62. c:\program files\acd systems\roboenhancer\scriptdropshellext.dll
RoboEnhancer ScriptDropShellExt Module
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
Web Folders
[A ] 63. c:\program files\common files\microsoft shared\web folders\msonsext.dll
Microsoft Corporation
Microsoft Web Folders
.text,.data,.rsrc,.reloc,
6A 0C 68 B0 AC 0A 49 E8 DA 00 00 00 33 C0 40 89
Microsoft Office Outlook Desktop Icon Handler
[A ] 64. c:\program files\microsoft office\office11\mlshext.dll
Microsoft Corporation
Microsoft Shell Extension Library
.text,.data,.rsrc,.reloc,
6A 0C 68 98 13 A2 35 E8 FC 01 00 00 33 C0 40 89
Microsoft Office Outlook Custom Icon Handler
[A ] 65. c:\program files\microsoft office\office11\olkfstub.dll
Microsoft Corporation
Outlook Shell Hook for Start/Find
.text,.data,.rsrc,.reloc,
6A 0C 68 E0 1B 75 35 E8 FC 01 00 00 33 C0 40 89
Microsoft Office HTML Icon Handler
[AM] 66. c:\program files\microsoft office\office11\msohev.dll
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,.reloc,
6A 0C 68 A8 41 5C 32 E8 B5 00 00 00 33 C0 40 89
RISING
[AM] 67. c:\windows\system32\ravext.dll
Beijing Rising Technology Co., Ltd.
Rising Shell Ext Module
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
中毒太深啦啊 - 2007-7-12 15:29:00
Sony Ericsson 文件管理器
[A ] 68. e:\sony ericsson\同步或传输多媒体\file manager\fmgrgui.dll
Sony Ericsson Mobile Communications AB
File Manager interface
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 38 AC 03 10 E8 F9 00 00 00 33 C0 40 89
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
{32CD708B-60A7-4C00-9377-D73EAA495F0F}
[AM] 67. c:\windows\system32\ravext.dll
Beijing Rising Technology Co., Ltd.
Rising Shell Ext Module
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
{AC2DC2EF-5165-40A3-8CDF-41DCA1B0901A}
[AM] 69. c:\windows\system32\shlhook.dll
Beijing Rising Technology Co., Ltd.
shlhook Module
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
+ Logon
+ HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Sony Ericsson PC Suite
[AM] 70. e:\sony ericsson\同步或传输多媒体\application launcher\application launcher.exe
Sony Ericsson Mobile Communications AB
Application Launcher
.text,.rdata,.data,.rsrc,
6A 74 68 60 E6 41 00 E8 C2 04 00 00 33 FF 89 7D
QQDownload
[A ] 71. d:\qqdownload\qqdownload.exe
Tencent Technology (Shenzhen) Company Limited
超级旋风
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 50 BF 4B 00 68 BA AC 49 00 64
+ HKLM\Software\Microsoft\Windows\CurrentVersion\Run
SoundMan
[AM] 72. c:\windows\soundman.exe
Realtek Semiconductor Corp.
Realtek Sound Manager
.text,.rdata,.data,.sxdata,.rsrc,
6A 60 68 08 B3 40 00 E8 2B 10 00 00 83 65 FC 00
ATICCC
[A ] 73. c:\program files\ati technologies\ati.ace\cli.exe
ATI Technologies Inc.
CLI Application (Command Line Interface)
.text,.rsrc,.reloc,
Alert
[AM] 74. c:\program files\starsoftcomm\starcenter\alert.exe
Alert Microsoft 基础类应用程序
.text,.rdata,.data,.rsrc,
6A 70 68 68 A1 41 00 E8 E4 01 00 00 33 DB 53 8B
StarCenter
[AM] 75. c:\program files\starsoftcomm\starcenter\starcenter.exe
starsoftcomm
StarCenter
.text,.rdata,.data,.rsrc,
6A 70 68 68 50 41 00 E8 E4 01 00 00 33 DB 53 8B
AutoUpd
[AM] 76. c:\program files\starsoftcomm\starcenter\updtray.exe
UpdTray Microsoft 基础类应用程序
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 A8 24 40 00 68 36 1D 40 00 64
jmekey
[AM] 77. c:\program files\jmesoft\hotkey.exe
JME Co.,Ltd.
hotkey driver
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 98 46 40 00 68 06 32 40 00 64
IMSCMig
[A ] 78. c:\program files\common files\microsoft shared\ime\imsc40a\imscmig.exe
Microsoft Corporation
微软拼音输入法安装工具
.text,.data,.rsrc,
RavTask
[A ] 79. d:\瑞星2006\rising\rav\ravtask.exe
Beijing Rising Technology Co., Ltd.
RavTimer
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 50 E3 40 00 68 D4 90 40 00 64
RfwMain
[AM] 80. d:\瑞星防火墙\rising\rfw\rfwmain.exe
Beijing Rising Technology Co., Ltd.
Rising Personal FireWall Main Program
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 38 EB 41 00 68 20 B0 41 00 64
SysExplr
[AM] 81. c:\herosoft\herov8\sysexplr.exe
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 F8 F4 40 00 68 48 99 40 00 64
runeip
[AM] 82. c:\program files\rising\antispyware\runiep.exe
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware Monitor
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 E0 6B 40 00 68 40 52 40 00 64
StormCodec_Helper
[A ] 83. d:\暴风\storm codec\stormset.exe
.text,.rdata,.data,.ndata,.rsrc,
83 EC 20 53 55 56 33 F6 57 89 74 24 18 BD 68 91
Adobe Photo Downloader
[AM] 84. e:\sony ericsson\存储编辑共享图片\3.0\apps\apdproxy.exe
Adobe Systems Incorporated
Adobe Photoshop Album Starter Edition 3.0 component
.text,.rdata,.data,.rsrc,
6A 74 68 A8 35 40 00 E8 60 02 00 00 33 DB 89 5D
TkBellExe
[AM] 85. c:\program files\common files\real\update_ob\realsched.exe
RealNetworks, Inc.
RealNetworks Scheduler
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 D0 30 42 00 68 48 97 41 00 64
+ Boot Execute
+ HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order
BootExecute
[A ] 86. c:\windows\system32\bsmain.exe
Beijing Rising Technology Co., Ltd.
BootScan
.text,.data,.rsrc,.reloc,
55 8B EC 6A FF 68 F0 27 00 01 68 74 9E 00 01 64
+ Image Hijacks
+ HKCR\.html
htmlfile\Edit\Command
[A ] 87. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
6A 74 68 58 26 00 30 E8 A8 FF FF FF 33 DB 89 5D
htmlfile\Print\Command
[A ] 87. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
6A 74 68 58 26 00 30 E8 A8 FF FF FF 33 DB 89 5D
+ HKCR\.htm
htmlfile\Edit\Command
[A ] 87. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
6A 74 68 58 26 00 30 E8 A8 FF FF FF 33 DB 89 5D
htmlfile\Print\Command
[A ] 87. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
6A 74 68 58 26 00 30 E8 A8 FF FF FF 33 DB 89 5D
+ HKCR\.mp3
RealPlayer.MP3.6\open\Command
[A ] 88. d:\realone\realplay.exe
RealNetworks, Inc.
RealPlayer
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 E8 EC 40 00 68 60 D1 40 00 64
+ Print Monitor
+ HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors
Microsoft Document Imaging Writer Monitor
[AM] 89. c:\windows\system32\mdimon.dll
Microsoft Corporation
Microsoft? Document Imaging
.text,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
+ 其他自启动项目
+ C:\Documents and Settings\user\「开始」菜单\程序\启动
腾讯QQ.lnk
[A ] 46. d:\tencent2007\qq.exe
TENCENT
QQ
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 08 54 52 00 68 AE 54 48 00 64
+ C:\Documents and Settings\All Users\「开始」菜单\程序\启动
Adobe Reader Speed Launch.lnk
[A ] 90. d:\adobe reader 7.08\reader\reader_sl.exe
Adobe Systems Incorporated
Adobe Acrobat SpeedLauncher
.text,.rdata,.data,.rsrc,
6A 74 68 E0 66 40 00 E8 08 02 00 00 33 DB 89 5D
中毒太深啦啊 - 2007-7-12 15:30:00
+ 系统活动模块
+ 00000178(376) alg.exe
+ 000001a8(424) smss.exe
+ 000001e0(480) csrss.exe
+ 000001fc(508) winlogon.exe
10000000[00011000]
[AM] 41. c:\windows\system32\ati2evxx.dll
ATI Technologies Inc.
ATI External Event Utility DLL Module
.text,.rdata,.data,.rsrc,.reloc,
8B FF 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57
72C80000[00008000]
[ M] 91. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
8B 44 24 08 83 E8 00 74 30 48 75 3A 56 8B 74 24
+ 00000228(552) services.exe
+ 00000234(564) lsass.exe
+ 000002d0(720) Ati2evxx.exe
00400000[00065000]
[AM] 2. c:\windows\system32\ati2evxx.exe
ATI Technologies Inc.
ATI External Event Utility EXE Module
.text,.rdata,.data,.rsrc,
6A 60 68 38 93 45 00 E8 5A 25 00 00 83 65 FC 00
003E0000[0000F000]
[ M] 92. c:\windows\system32\ati2edxx.dll
ATI Technologies, Inc.
ati2edxx
.text,.data,.SHAREDS,.rsrc,.reloc,
8B FF 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57
+ 000002e0(736) svchost.exe
+ 00000328(808) svchost.exe
+ 0000037c(892) svchost.exe
+ 00000394(916) SOUNDMAN.EXE
00400000[00018000]
[AM] 72. c:\windows\soundman.exe
Realtek Semiconductor Corp.
Realtek Sound Manager
.text,.rdata,.data,.sxdata,.rsrc,
6A 60 68 08 B3 40 00 E8 2B 10 00 00 83 65 FC 00
10000000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
+ 000003b4(948) svchost.exe
+ 000003e8(1000) alert.exe
00400000[00063000]
[AM] 74. c:\program files\starsoftcomm\starcenter\alert.exe
Alert Microsoft 基础类应用程序
.text,.rdata,.data,.rsrc,
6A 70 68 68 A1 41 00 E8 E4 01 00 00 33 DB 53 8B
6BC40000[000FB000]
[ M] 94. c:\program files\starsoftcomm\starcenter\mfc42.dll
Microsoft Corporation
MFCDLL Shared Library - Retail Version
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
00E70000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
+ 000003ec(1004) StarCenter.exe
00400000[00038000]
[AM] 75. c:\program files\starsoftcomm\starcenter\starcenter.exe
starsoftcomm
StarCenter
.text,.rdata,.data,.rsrc,
6A 70 68 68 50 41 00 E8 E4 01 00 00 33 DB 53 8B
6BC40000[000FB000]
[ M] 94. c:\program files\starsoftcomm\starcenter\mfc42.dll
Microsoft Corporation
MFCDLL Shared Library - Retail Version
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
10000000[00028000]
[ M] 95. c:\program files\starsoftcomm\starcenter\smartbackup.dll
SSC
SmartBackup
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
009D0000[00028000]
[ M] 96. c:\program files\starsoftcomm\starcenter\drvkernel.dll
DrvKernel DLL
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
27100000[0000B000]
[ M] 97. c:\program files\starsoftcomm\starcenter\sc_systemprotect.dll
.text,.rdata,.data,.reloc,
00A10000[00035000]
[ M] 98. c:\program files\starsoftcomm\starcenter\asset.dll
Asset DLL
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
00A50000[0001D000]
[ M] 99. c:\program files\starsoftcomm\starcenter\diskmonitor.dll
DiskMonitor DLL
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
00A80000[00009000]
[ M] 100. c:\program files\starsoftcomm\starcenter\drvmonitor.dll
DriverMonitor DLL
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
01170000[00007000]
[ M] 101. c:\program files\starsoftcomm\starcenter\hookmgr.dll
HookMgr DLL
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
01180000[00012000]
[ M] 102. c:\program files\starsoftcomm\starcenter\sscregac.dll
SCFunc DLL
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
012B0000[0001C000]
[ M] 103. c:\program files\starsoftcomm\starcenter\softfunc.dll
SoftFunc DLL
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
012D0000[0000D000]
[ M] 104. c:\program files\starsoftcomm\starcenter\encrypt.dll
.text,.rdata,.data,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
012F0000[0001B000]
[ M] 105. c:\program files\starsoftcomm\starcenter\sscac.dll
.text,.rdata,.data,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
01520000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
中毒太深啦啊 - 2007-7-12 15:30:00
+ 000003fc(1020) svchost.exe
+ 00000408(1032) UpdTray.exe
00400000[00005000]
[AM] 76. c:\program files\starsoftcomm\starcenter\updtray.exe
UpdTray Microsoft 基础类应用程序
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 A8 24 40 00 68 36 1D 40 00 64
6BC40000[000FB000]
[ M] 94. c:\program files\starsoftcomm\starcenter\mfc42.dll
Microsoft Corporation
MFCDLL Shared Library - Retail Version
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
+ 00000428(1064) hotkey.exe
00400000[00008000]
[AM] 77. c:\program files\jmesoft\hotkey.exe
JME Co.,Ltd.
hotkey driver
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 98 46 40 00 68 06 32 40 00 64
72C80000[00008000]
[ M] 91. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
8B 44 24 08 83 E8 00 74 30 48 75 3A 56 8B 74 24
10000000[00008000]
[ M] 106. c:\program files\jmesoft\keyhook.dll
.text,.rdata,.data,mydata,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
00F30000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
+ 00000488(1160) SysExplr.EXE
00400000[0002E000]
[AM] 81. c:\herosoft\herov8\sysexplr.exe
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 F8 F4 40 00 68 48 99 40 00 64
10000000[00006000]
[ M] 107. c:\herosoft\herov8\httpreq.dll
.text,.rdata,.data,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
00380000[00009000]
[ M] 108. c:\herosoft\herov8\coolmenu.dll
.text,.rdata,.data,.idata,.rsrc,.reloc,
53 B8 01 00 00 00 8B 5C 24 0C 56 57 85 DB 55 75
00390000[0000C000]
[ M] 109. c:\herosoft\herov8\httphlp.dll
.text,.rdata,.data,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
003A0000[0001C000]
[ M] 110. c:\herosoft\herov8\avcdrom.dll
.text,.rdata,.data,.idata,.reloc,
53 B8 01 00 00 00 8B 5C 24 0C 56 57 85 DB 55 75
00AF0000[00018000]
[ M] 111. c:\herosoft\herov8\sys936.dll
.rsrc,.reloc,
00D00000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
+ 000004cc(1228) realsched.exe
00400000[0002F000]
[AM] 85. c:\program files\common files\real\update_ob\realsched.exe
RealNetworks, Inc.
RealNetworks Scheduler
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 D0 30 42 00 68 48 97 41 00 64
10000000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
+ 00000518(1304) Ati2evxx.exe
00400000[00065000]
[AM] 2. c:\windows\system32\ati2evxx.exe
ATI Technologies Inc.
ATI External Event Utility EXE Module
.text,.rdata,.data,.rsrc,
6A 60 68 38 93 45 00 E8 5A 25 00 00 83 65 FC 00
003E0000[0000F000]
[ M] 92. c:\windows\system32\ati2edxx.dll
ATI Technologies, Inc.
ati2edxx
.text,.data,.SHAREDS,.rsrc,.reloc,
8B FF 55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57
10000000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
+ 00000530(1328) apdproxy.exe
00400000[0000E000]
[AM] 84. e:\sony ericsson\存储编辑共享图片\3.0\apps\apdproxy.exe
Adobe Systems Incorporated
Adobe Photoshop Album Starter Edition 3.0 component
.text,.rdata,.data,.rsrc,
6A 74 68 A8 35 40 00 E8 60 02 00 00 33 DB 89 5D
10000000[0001D000]
[ M] 112. e:\sony ericsson\存储编辑共享图片\3.0\apps\apdboot.dll
Adobe Systems Incorporated
Adobe Photoshop Album Starter Edition 3.0 component
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 33 01 10 E8 1A 02 00 00 33 C0 40 89
7C3A0000[0007B000]
[ M] 113. e:\sony ericsson\存储编辑共享图片\3.0\apps\msvcp71.dll
Microsoft Corporation
Microsoft? C++ Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 E8 1C 3D 7C E8 EB EA FF FF 33 C0 40 89
7C340000[00056000]
[ M] 114. e:\sony ericsson\存储编辑共享图片\3.0\apps\msvcr71.dll
Microsoft Corporation
Microsoft? C Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 8B 45 0C 83 F8 01 56 57 0F 84 50 FB FF
00C40000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
+ 00000568(1384) Explorer.EXE
01330000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
72C80000[00008000]
[ M] 91. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
8B 44 24 08 83 E8 00 74 30 48 75 3A 56 8B 74 24
10000000[0001C000]
[AM] 55. d:\adobe reader 7.08\activex\pdfshell.dll
Adobe Systems, Inc.
PDF Shell Extension
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 E8 DD 00 10 E8 F5 EF FF FF 33 C0 40 89
01F50000[0001B000]
[AM] 67. c:\windows\system32\ravext.dll
Beijing Rising Technology Co., Ltd.
Rising Shell Ext Module
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
00C90000[00011000]
[AM] 69. c:\windows\system32\shlhook.dll
Beijing Rising Technology Co., Ltd.
shlhook Module
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
+ 000005ac(1452) ctfmon.exe
10000000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
+ 000005b0(1456) Application Launcher.exe
00400000[00028000]
[AM] 70. e:\sony ericsson\同步或传输多媒体\application launcher\application launcher.exe
Sony Ericsson Mobile Communications AB
Application Launcher
.text,.rdata,.data,.rsrc,
6A 74 68 60 E6 41 00 E8 C2 04 00 00 33 FF 89 7D
10000000[00024000]
[ M] 115. c:\program files\common files\teleca shared\telecalib_logging.dll
Teleca/Popwire AB
Telecalib Logging, Dynamic Link Library. Dll used for logging purposes.
.text,.rdata,.data,.idata,.rsrc,.reloc,
6A 0C 68 00 89 01 10 E8 EA 00 00 00 33 C0 40 89
7C3A0000[0007B000]
[ M] 116. c:\windows\system32\msvcp71.dll
Microsoft Corporation
Microsoft? C++ Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 E8 1C 3D 7C E8 EB EA FF FF 33 C0 40 89
7C340000[00056000]
[ M] 117. c:\windows\system32\msvcr71.dll
Microsoft Corporation
Microsoft? C Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 8B 45 0C 83 F8 01 56 57 0F 84 50 FB FF
00370000[00012000]
[ M] 118. c:\program files\common files\teleca shared\boost_log-vc71-mt-1_32.dll
.text,.rdata,.data,.reloc,
6A 0C 68 40 A2 00 10 E8 62 02 00 00 33 C0 40 89
00430000[00102000]
[ M] 119. c:\windows\system32\mfc71u.dll
Microsoft Corporation
MFCDLL Shared Library - Retail Version
.text,.data,.rsrc,.reloc,
6A 0C 68 D8 DC 25 7C E8 9D 65 01 00 33 C0 40 89
00AD0000[00009000]
[ M] 120. e:\sony ericsson\同步或传输多媒体\application launcher\application launcherlg.dll
Sony Ericsson Mobile Communications AB
应用程序启动程序
.text,.rdata,.data,.rsrc,.reloc,
00C80000[002C1000]
[ M] 121. e:\sony ericsson\同步或传输多媒体\application launcher\application launcherbmp.dll
Sony Ericsson Mobile Communications AB
Application Launcher
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 F0 22 00 10 E8 4C 01 00 00 33 C0 40 89
7C140000[00103000]
[ M] 122. c:\windows\system32\mfc71.dll
Microsoft Corporation
MFCDLL Shared Library - Retail Version
.text,.data,.rsrc,.reloc,
6A 0C 68 B8 F4 14 7C E8 30 3A 02 00 33 C0 40 89
014E0000[0000F000]
[ M] 123. c:\program files\common files\teleca shared\tc device mgmt.dll
Teleca Software Solutions
Device Management type library and proxy/stub dll.
.text,.orpc,.rdata,.data,.rsrc,.reloc,
6A 0C 68 E8 92 00 10 E8 44 01 00 00 33 C0 40 89
01500000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
中毒太深啦啊 - 2007-7-12 15:32:00
+ 000005f8(1528) spoolsv.exe
00AE0000[00008000]
[AM] 89. c:\windows\system32\mdimon.dll
Microsoft Corporation
Microsoft? Document Imaging
.text,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
00AF0000[00008000]
[ M] 124. c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll
Microsoft Corporation
Microsoft? Document Imaging
.text,.data,.rsrc,.reloc,
+ 0000067c(1660) wmiapsrv.exe
+ 00000698(1688) RfwMain.exe
00400000[00073000]
[AM] 80. d:\瑞星防火墙\rising\rfw\rfwmain.exe
Beijing Rising Technology Co., Ltd.
Rising Personal FireWall Main Program
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 38 EB 41 00 68 20 B0 41 00 64
26600000[0007D000]
[ M] 125. d:\瑞星防火墙\rising\rfw\rsguilib.dll
Beijing Rising Technology Co., Ltd.
Rising GUI Library Loader
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
23700000[0001A000]
[ M] 126. d:\瑞星防火墙\rising\rfw\rscommon.dll
Beijing Rising Technology Co., Ltd.
Rising Common Function Dynamic Link Library
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
10000000[0000F000]
[ M] 127. d:\瑞星防火墙\rising\rfw\rfwctrl.dll
Beijing Rising Technology Co., Ltd.
RfwCtrl DLL
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
23800000[0001A000]
[ M] 128. d:\瑞星防火墙\rising\rfw\rsxml.dll
Beijing Rising Technology Co., Ltd.
RsXML
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
23900000[00031000]
[ M] 129. d:\瑞星防火墙\rising\rfw\pngdll.dll
Beijing Rising Technology Co., Ltd.
Rising .Png File Loader Dynamic Link Library
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
012F0000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
+ 00000704(1796) hidhook.exe
00400000[00017000]
[AM] 3. c:\windows\system32\hidhook.exe
Shanda Computer (Shanghai) Co., Ltd.
EZ Center 遥控器监听服务
.text,.rdata,.data,.rsrc,
6A 60 68 50 01 41 00 E8 EB 0B 00 00 BF 94 00 00
72C80000[00008000]
[ M] 91. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
8B 44 24 08 83 E8 00 74 30 48 75 3A 56 8B 74 24
+ 0000071c(1820) MDM.EXE
00400000[0004D000]
[AM] 5. c:\program files\common files\microsoft shared\vs7debug\mdm.exe
Microsoft Corporation
Machine Debug Manager
.text,.data,.rsrc,
6A 60 68 F8 15 40 00 E8 F1 21 00 00 BF 94 00 00
51810000[00006000]
[ M] 130. c:\program files\common files\microsoft shared\vs7debug\2052\mdmui.dll
Microsoft Corporation
MDM 资源
.rsrc,.reloc,
+ 000007ac(1964) wdfmgr.exe
01000000[0000C000]
[AM] 11. c:\windows\system32\wdfmgr.exe
Microsoft Corporation
Windows User Mode Driver Manager
.text,.data,.rsrc,
6A 28 68 30 26 00 01 E8 A5 01 00 00 66 81 3D 00
+ 00000850(2128) CapabilityManager.exe
00400000[00044000]
[ M] 131. c:\program files\common files\teleca shared\capabilitymanager.exe
Teleca Software Solutions AB
Capability Manager
.text,.rdata,.data,.rsrc,
6A 74 68 C0 9C 43 00 E8 F4 01 00 00 33 DB 89 5D
10000000[00024000]
[ M] 115. c:\program files\common files\teleca shared\telecalib_logging.dll
Teleca/Popwire AB
Telecalib Logging, Dynamic Link Library. Dll used for logging purposes.
.text,.rdata,.data,.idata,.rsrc,.reloc,
6A 0C 68 00 89 01 10 E8 EA 00 00 00 33 C0 40 89
7C3A0000[0007B000]
[ M] 116. c:\windows\system32\msvcp71.dll
Microsoft Corporation
Microsoft? C++ Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 E8 1C 3D 7C E8 EB EA FF FF 33 C0 40 89
7C340000[00056000]
[ M] 117. c:\windows\system32\msvcr71.dll
Microsoft Corporation
Microsoft? C Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 8B 45 0C 83 F8 01 56 57 0F 84 50 FB FF
00370000[00012000]
[ M] 118. c:\program files\common files\teleca shared\boost_log-vc71-mt-1_32.dll
.text,.rdata,.data,.reloc,
6A 0C 68 40 A2 00 10 E8 62 02 00 00 33 C0 40 89
00AC0000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
69B10000[0012E000]
[ M] 132. c:\windows\system32\msxml4.dll
Microsoft Corporation
MSXML 4.0 SP 1
.text,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
016F0000[0000B000]
[AM] 49. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll
Microsoft Corporation
Microsoft Office XML MIME Filter
.text,.data,.rsrc,.reloc,
6A 0C 68 70 22 40 00 E8 FD 01 00 00 33 C0 40 89
+ 000008c8(2248) iexplore.exe
10000000[00037000]
[AM] 44. d:\qqdownload\qqiehelper01.dll
腾讯公司
超级旋风下载组件
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
02770000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
028F0000[0006F000]
[ M] 133. c:\program files\common files\microsoft shared\ink\penchs.dll
Microsoft Corporation
Microsoft CHS Handwriting Input UI
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
325C0000[00012000]
[AM] 66. c:\program files\microsoft office\office11\msohev.dll
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,.reloc,
6A 0C 68 A8 41 5C 32 E8 B5 00 00 00 33 C0 40 89
72C80000[00008000]
[ M] 91. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
8B 44 24 08 83 E8 00 74 30 48 75 3A 56 8B 74 24
30000000[002EF000]
[ M] 134. c:\windows\system32\macromed\flash\flash9c.ocx
Adobe Systems, Inc.
Adobe Flash Player 9.0 r45
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 C8 C9 1C 30 E8 67 EB FF FF 33 C0 40 89
025D0000[00007000]
[ M] 101. c:\program files\starsoftcomm\starcenter\hookmgr.dll
HookMgr DLL
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
6BC40000[000FB000]
[ M] 94. c:\program files\starsoftcomm\starcenter\mfc42.dll
Microsoft Corporation
MFCDLL Shared Library - Retail Version
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
034F0000[0000B000]
[ M] 135. d:\tencent2007\cphelper.dll
QQCPHelper DLL
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
621F0000[00007000]
[ M] 136. d:\tencent2007\timproxy.dll
tencent
TIMProxy
.text,.orpc,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
+ 000009a4(2468) Generic.exe
00400000[0005E000]
[ M] 137. c:\program files\common files\teleca shared\generic.exe
Teleca Software Solutions
Generic Device Management Executable.
.text,.rdata,.data,.rsrc,
6A 74 68 50 30 45 00 E8 FF 01 00 00 33 FF 89 7D
10000000[00024000]
[ M] 115. c:\program files\common files\teleca shared\telecalib_logging.dll
Teleca/Popwire AB
Telecalib Logging, Dynamic Link Library. Dll used for logging purposes.
.text,.rdata,.data,.idata,.rsrc,.reloc,
6A 0C 68 00 89 01 10 E8 EA 00 00 00 33 C0 40 89
中毒太深啦啊 - 2007-7-12 15:34:00
7C3A0000[0007B000]
[ M] 116. c:\windows\system32\msvcp71.dll
Microsoft Corporation
Microsoft? C++ Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 E8 1C 3D 7C E8 EB EA FF FF 33 C0 40 89
7C340000[00056000]
[ M] 117. c:\windows\system32\msvcr71.dll
Microsoft Corporation
Microsoft? C Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 8B 45 0C 83 F8 01 56 57 0F 84 50 FB FF
00370000[00012000]
[ M] 118. c:\program files\common files\teleca shared\boost_log-vc71-mt-1_32.dll
.text,.rdata,.data,.reloc,
6A 0C 68 40 A2 00 10 E8 62 02 00 00 33 C0 40 89
00AA0000[0000F000]
[ M] 123. c:\program files\common files\teleca shared\tc device mgmt.dll
Teleca Software Solutions
Device Management type library and proxy/stub dll.
.text,.orpc,.rdata,.data,.rsrc,.reloc,
6A 0C 68 E8 92 00 10 E8 44 01 00 00 33 C0 40 89
69B10000[0012E000]
[ M] 132. c:\windows\system32\msxml4.dll
Microsoft Corporation
MSXML 4.0 SP 1
.text,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
011B0000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
01880000[0001F000]
[ M] 138. e:\sony ericsson\同步或传输多媒体\device manager\specificmpm.dll
SonyEricsson
Mobile Phone Monitor specific device management dll.
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 10 6B 01 10 E8 D8 00 00 00 33 C0 40 89
018A0000[00010000]
[ M] 139. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\anubisps.dll
.text,.orpc,.rdata,.data,.reloc,
83 7C 24 08 01 75 10 8B 44 24 04 50 A3 A8 DC 00
018B0000[00024000]
[ M] 140. c:\program files\common files\teleca shared\specificusb.dll
Teleca Software Solutions
USB specific device management dll.
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 88 9A 01 10 E8 DA 00 00 00 33 C0 40 89
+ 00000a18(2584) epmworker.exe
00400000[000D5000]
[ M] 141. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\epmworker.exe
Sony Ericsson Mobile Communications AB
CAPI_Worker Module
.text,.rdata,.data,.rsrc,
6A 60 68 90 56 46 00 E8 03 08 00 00 BF 94 00 00
10000000[0005E000]
[ M] 142. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\showmfcdialog.dll
Sony Ericsson Mobile Communications AB
ShowMfcDialog DLL
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 60 39 02 10 E8 83 09 00 00 33 C0 40 89
10F00000[00032000]
[ M] 143. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\msmeirsock_object.dll
Sony Ericsson Mobile Communications AB
MSMEIrSock_object Module
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 6A FF 68 80 66 F2 10 68 1C 6C F1 10 64
01290000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
10D00000[0002C000]
[ M] 144. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\ms98irsock_object.dll
Sony Ericsson Mobile Communications AB
MS98IrSock_object Module
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 6A FF 68 D0 03 D2 10 68 E4 11 D1 10 64
014F0000[00010000]
[ M] 139. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\anubisps.dll
.text,.orpc,.rdata,.data,.reloc,
83 7C 24 08 01 75 10 8B 44 24 04 50 A3 A8 DC 00
10E00000[00034000]
[ M] 145. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\msirsock_object.dll
Sony Ericsson Mobile Communications AB
MSIrSock_object Module
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 6A FF 68 E8 78 E2 10 68 AC 46 E1 10 64
10400000[00066000]
[ M] 146. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\cellphone_object.dll
Sony Ericsson Mobile Communications AB
cellphone_object Module
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 40 04 43 10 E8 4B 04 00 00 33 C0 40 89
01550000[00017000]
[ M] 147. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\ecsmoddata.dll
Sony Ericsson Mobile Communications AB
ecsmoddata
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 10 EE 00 10 E8 F3 04 00 00 33 C0 40 89
02200000[0002D000]
[ M] 148. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\cabmain.dll
Sony Ericsson Mobile Communications AB
cabmain
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 18 FC 21 02 E8 B8 04 00 00 33 C0 40 89
69B10000[0012E000]
[ M] 132. c:\windows\system32\msxml4.dll
Microsoft Corporation
MSXML 4.0 SP 1
.text,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 85 F6 57 8B 7D
01D40000[00044000]
[ M] 149. e:\sony ericsson\同步或传输多媒体\mobile phone monitor\xpbtsock_2_object.dll
Sony Ericsson Mobile Communications AB
xpbtsock_2_object Module
.text,.orpc,.rdata,.data,.rsrc,.reloc,
55 8B EC 6A FF 68 20 4B 03 10 68 A4 6D 01 10 64
+ 00000bd0(3024) svchost.exe
+ 00000cf8(3320) Ras.exe
00400000[0013E000]
[ M] 150. c:\program files\rising\antispyware\ras.exe
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 B8 3A 4C 00 68 10 B9 4A 00 64
10000000[000A3000]
[ M] 151. c:\program files\rising\antispyware\rasgui.dll
Beijing Rising Technology Co., Ltd.
RasGUI
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
01660000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
030F0000[0006F000]
[ M] 133. c:\program files\common files\microsoft shared\ink\penchs.dll
Microsoft Corporation
Microsoft CHS Handwriting Input UI
.text,.rdata,.data,.rsrc,.reloc,
55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85
+ 00000d7c(3452) runiep.exe
00400000[00012000]
[AM] 82. c:\program files\rising\antispyware\runiep.exe
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware Monitor
.text,.rdata,.data,.rsrc,
55 8B EC 6A FF 68 E0 6B 40 00 68 40 52 40 00 64
00C50000[0001B000]
[ M] 93. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
6A 0C 68 00 CD 66 01 E8 BD 02 00 00 33 C0 40 89
中毒太深啦啊 - 2007-7-13 18:31:00
还请各位帮帮忙:)
简简单单23 - 2007-7-15 8:39:00
请扫SREng日志.
1
© 2000 - 2026 Rising Corp. Ltd.