瑞星卡卡电脑诊断日志 v1.30 (2008-8-27 11:57:31) 北京瑞星信息技术有限公司 注释: [A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + 系统服务 + HKLM\System\CurrentControlSet\Services AVP [A ] 1. c:\program files\kaspersky lab\kaspersky anti-virus 2009\avp.exe JavaQuickStarterService [AM] 2. c:\program files\java\jre6\bin\jqs.exe [A ] 3. c:\program files\java\jre6\lib\deploy\jqs\jqs.conf NVSvc [AM] 4. c:\windows\system32\nvsvc32.exe ose [A ] 5. c:\program files\common files\microsoft shared\source engine\ose.exe rpcapd [A ] 6. c:\program files\winpcap\rpcapd.exe WLSetupSvc [A ] 7. c:\program files\windows live\installer\wlsetupsvc.exe WMPNetworkSvc [A ] 8. c:\program files\windows media player\wmpnetwk.exe WudfSvc [A ] 9. c:\windows\system32\wudfsvc.dll + 内核驱动 + HKLM\System\CurrentControlSet\Services ADIHdAudAddService [A ] 10. c:\windows\system32\drivers\adihdaud.sys AEAudio [A ] 11. c:\windows\system32\drivers\aeaudio.sys AmdK8 [A ] 12. c:\windows\system32\drivers\amdk8.sys HDAudBus [A ] 13. c:\windows\system32\drivers\hdaudbus.sys IGALIVE [A ] 14. c:\program files\igalive\igalive.sys JRAID [A ] 15. c:\windows\system32\drivers\jraid.sys kl1 [A ] 16. c:\windows\system32\drivers\kl1.sys klim5 [A ] 17. c:\windows\system32\drivers\klim5.sys MTsensor [A ] 18. c:\windows\system32\drivers\asacpi.sys NPF [A ] 19. c:\windows\system32\drivers\npf.sys npkcrypt [A ] 20. c:\program files\qq2006\npkcrypt.sys RTL8023xp [A ] 21. c:\windows\system32\drivers\rtenicxp.sys SafeBoxKrnl [A ] 22. c:\program files\360safebox\safeboxkrnl.sys Secdrv [A ] 23. c:\windows\system32\drivers\secdrv.sys SenFiltService [A ] 24. c:\windows\system32\drivers\senfilt.sys TesSafe [A ] 25. c:\windows\system32\tessafe.sys TKP [A ] 26. c:\windows\system32\drivers\3b0c TSKSP [A ] 27. d:\program files\tencent\qqdoctor\tsksp.sys WudfPf [A ] 28. c:\windows\system32\drivers\wudfpf.sys WudfRd [A ] 29. c:\windows\system32\drivers\wudfrd.sys ZSMC302 [A ] 30. c:\windows\system32\drivers\usbvm31b.sys + 文件系统驱动 + HKLM\System\CurrentControlSet\Services klbg [A ] 31. c:\windows\system32\drivers\klbg.sys KLIF [A ] 32. c:\windows\system32\drivers\klif.sys + 系统登陆自运行 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify klogon [AM] 33. c:\windows\system32\klogon.dll + HKCU\Control Panel\Desktop Scrnsave.exe [A ] 34. c:\windows\system32\肥皂泡泡.scr + IE浏览器加载模块 + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {01443AEC-0FD1-40fd-9C87-E93D1494C233} [AM] 35. c:\program files\thunder\comdlls\tdatonce_now.dll {889D2FEB-5411-4565-8998-1DD2C5261283} [AM] 36. c:\program files\thunder\comdlls\xunleibho_now.dll {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [A ] 37. c:\windows\system32\urlfilter.dll {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [AM] 38. c:\program files\360safe\safemon\safemon.dll + 资源管理器加载模块 + HKLM\SOFTWARE\Classes\PROTOCOLS\Filter text/xml [AM] 39. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll + HKLM\SOFTWARE\Classes\PROTOCOLS\Handler wlmailhtml [A ] 40. c:\program files\windows live\mail\mailcomm.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved HyperTerminal Icon Ext [A ] 41. c:\windows\system32\hticons.dll WinRAR shell extension [AM] 42. c:\program files\winrar\rarext.dll Microsoft Office HTML Icon Handler [A ] 43. c:\program files\microsoft office\office11\msohev.dll Web Folders [A ] 44. c:\program files\common files\microsoft shared\web folders\msonsext.dll Portable Media Devices [A ] 45. c:\windows\system32\audiodev.dll Portable Devices [A ] 46. c:\windows\system32\wpdshext.dll Portable Devices Menu [A ] 46. c:\windows\system32\wpdshext.dll NvCpl DesktopContext Class [A ] 47. c:\windows\system32\nvcpl.dll Play on my TV helper [A ] 47. c:\windows\system32\nvcpl.dll Desktop Explorer [A ] 48. c:\windows\system32\nvshell.dll Desktop Explorer Menu [A ] 48. c:\windows\system32\nvshell.dll nView Desktop Context Menu [A ] 48. c:\windows\system32\nvshell.dll Web 流量保护状态 [A ] 49. c:\program files\kaspersky lab\kaspersky anti-virus 2009\scieplgn.dll WLMD Message Handler [A ] 40. c:\program files\windows live\mail\mailcomm.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad WPDShServiceObj [AM] 50. c:\windows\system32\wpdshserviceobj.dll + 用户登陆自运行项目 + HKLM\Software\Microsoft\Windows\CurrentVersion\Run BigDogPath [AM] 51. c:\windows\vm_sti.exe 360Safebox [A ] 52. c:\program files\360safebox\safeboxtray.exe AVP [A ] 1. c:\program files\kaspersky lab\kaspersky anti-virus 2009\avp.exe runeip [AM] 53. d:\program files\rising\antispyware\rstray.exe + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce KKDelay [A ] 54. d:\program files\rising\antispyware\runonce.exe + 开机执行 + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 55. c:\windows\system32\kknative.exe + 映像劫持 + HKCR\.html htmlfile\Edit\Command [A ] 56. c:\program files\microsoft office\office11\msohtmed.exe htmlfile\open\Command [AM] 57. d:\program files\maxthon2\maxthon.exe htmlfile\Print\Command [A ] 56. c:\program files\microsoft office\office11\msohtmed.exe htmlfile\傲游(Maxthon)\Command [AM] 57. d:\program files\maxthon2\maxthon.exe + HKCR\.htm htmlfile\Edit\Command [A ] 56. c:\program files\microsoft office\office11\msohtmed.exe htmlfile\open\Command [AM] 57. d:\program files\maxthon2\maxthon.exe htmlfile\Print\Command [A ] 56. c:\program files\microsoft office\office11\msohtmed.exe htmlfile\傲游(Maxthon)\Command [AM] 57. d:\program files\maxthon2\maxthon.exe + HKCR\.mp3 Audio.MP3\open\Command [A ] 58. c:\program files\ttplayer\ttplayer.exe Audio.MP3\PlayList\Command [A ] 58. c:\program files\ttplayer\ttplayer.exe Audio.MP3\QQMusic.1.Play\Command [A ] 59. d:\program files\tencent\qqmusic\qqmusic.exe Audio.MP3\QQMusic.2.Add\Command [A ] 59. d:\program files\tencent\qqmusic\qqmusic.exe + 程序初始化和已知动态连接库 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows AppInit_DLLs [AM] 60. c:\windows\system32\kmon.dll + 其他自启动项目 + C:\Documents and Settings\Default User\「开始」菜单\程序\启动 Stardock ObjectDock.lnk [A ] 61. c:\windows\objectdock\objectdock.exe + C:\Documents and Settings\Administrator\「开始」菜单\程序\启动 Dr.COM宽带认证客户端.lnk [AM] 62. c:\program files\dr.com宽带认证客户端\ishare_user.exe + C:\Documents and Settings\Default User\「开始」菜单\程序\启动 Stardock ObjectDock.lnk [A ] 61. c:\windows\objectdock\objectdock.exe + 正在运行的进程 + 000000b8(184) Explorer.EXE 164A0000[00023000] [AM] 50. c:\windows\system32\wpdshserviceobj.dll 72C80000[00008000] [ M] 63. c:\windows\system32\msacm32.drv 109C0000[0002C000] [ M] 64. c:\windows\system32\portabledevicetypes.dll 10930000[00049000] [ M] 65. c:\windows\system32\portabledeviceapi.dll 01BE0000[0002C000] [AM] 35. c:\program files\thunder\comdlls\tdatonce_now.dll 02E20000[00031000] [AM] 36. c:\program files\thunder\comdlls\xunleibho_now.dll 027F0000[0002B000] [AM] 42. c:\program files\winrar\rarext.dll 6D910000[0000C000] [ M] 66. c:\program files\kaspersky lab\kaspersky anti-virus 2009\shellex.dll 78130000[0009B000] [ M] 67. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcr80.dll 7C420000[00087000] [ M] 68. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcp80.dll + 00000180(384) jqs.exe 00400000[00024000] [AM] 2. c:\program files\java\jre6\bin\jqs.exe 7C340000[00056000] [ M] 69. c:\program files\java\jre6\bin\msvcr71.dll 4B4F0000[00006000] [ M] 70. c:\windows\system32\odbcbcp.dll 10000000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll + 000001b4(436) nvsvc32.exe 00400000[0002E000] [AM] 4. c:\windows\system32\nvsvc32.exe 009B0000[00057000] [ M] 72. c:\windows\system32\nvapi.dll + 000001d0(464) svchost.exe + 000001f0(496) FetionVM.exe 70000000[0000C000] [ M] 73. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\fetionvm.exe 70040000[0002C000] [ M] 74. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\rsdeploy.dll 79000000[00046000] [ M] 75. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\mscoree.dll 00B10000[00006000] [ M] 76. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\fetionvm.rsm 79E70000[0058F000] [ M] 77. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\v2.0.50727\mscorwks.dll 790C0000[00440000] [ M] 78. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\c\windows\assembly\gac_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll 79060000[00056000] [ M] 79. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\v2.0.50727\mscorjit.dll 30000000[00012000] [ M] 80. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\c\windows\assembly\nativeimages_v2.0.50727_32\fetionvm\a87393057972c752eb50061d4235f9ec\fetionvm.ni.exe 7AFD0000[004CA000] [ M] 81. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\system\system.windows.forms.dll 7A440000[002F2000] [ M] 82. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\system\system.dll 04570000[000F6000] [ M] 83. d:\program files\china mobile\fetion\impscontrols.dll 7ADE0000[0009E000] [ M] 84. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\system\system.drawing.dll 039A0000[0000E000] [ M] 85. d:\program files\china mobile\fetion\impspcbase.dll 637A0000[001FC000] [ M] 86. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\system\system.xml.dll 04990000[0000C000] [ M] 87. d:\program files\china mobile\fetion\impsclientbase.dll 04A10000[0002A000] [ M] 88. d:\program files\china mobile\fetion\impsclientutils.dll 04A70000[001F0000] [ M] 89. d:\program files\china mobile\fetion\impsclientresource.dll 04EB0000[000DC000] [ M] 90. d:\program files\china mobile\fetion\impsclientcore.dll 04E60000[00032000] [ M] 91. d:\program files\china mobile\fetion\impsbase.dll 60000000[00008000] [ M] 92. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\system\accessibility.dll 64890000[0006C000] [ M] 93. d:\program files\china mobile\fetion\vmdotnet\v2.0.50727\system\system.configuration.dll 05800000[00020000] [ M] 94. d:\program files\china mobile\fetion\ncindy.dll 05BE0000[00008000] [ M] 95. d:\program files\china mobile\fetion\interop.dynamicgifctllib.dll 07120000[0001C000] [ M] 96. d:\program files\china mobile\fetion\impspccommlayer.dll 08500000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll 09D30000[00016000] [ M] 97. d:\program files\china mobile\fetion\impsclientdata.dll 09B40000[0009F000] [ M] 98. d:\program files\china mobile\fetion\sqlite.interop.dll 06630000[00028000] [ M] 99. d:\program files\china mobile\fetion\sensmon.dll 0A7C0000[00046000] [ M] 100. d:\program files\china mobile\fetion\interop.wmplib.dll 0A720000[00010000] [ M] 101. d:\program files\china mobile\fetion\axinterop.wmplib.dll 0C210000[00112000] [ M] 102. c:\windows\system32\qqpinyin.ime 72C80000[00008000] [ M] 63. c:\windows\system32\msacm32.drv + 000002fc(764) TXPlatform.exe 00400000[00025000] [ M] 103. d:\program files\tencent\qq\txplatform.exe 10000000[00029000] [AM] 38. c:\program files\360safe\safemon\safemon.dll + 00000388(904) smss.exe + 000003a8(936) VM_STI.EXE 00400000[0000D000] [AM] 51. c:\windows\vm_sti.exe 00D90000[00039000] [ M] 104. c:\windows\system32\vm31bprp.ax + 000003b8(952) csrss.exe + 000003d0(976) winlogon.exe 6D4D0000[00036000] [AM] 33. c:\windows\system32\klogon.dll 72C80000[00008000] [ M] 63. c:\windows\system32\msacm32.drv + 000003fc(1020) services.exe 47260000[0000F000] [ M] 105. c:\windows\apppatch\acadproc.dll + 00000408(1032) lsass.exe 10000000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll + 000004a8(1192) svchost.exe + 00000508(1288) svchost.exe 10000000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll + 0000056c(1388) Maxthon.exe 00400000[0034F000] [AM] 57. d:\program files\maxthon2\maxthon.exe 10000000[00017000] [ M] 106. d:\program files\maxthon2\mxpp.dll 003D0000[00022000] [ M] 107. d:\program files\maxthon2\mxsk.dll 007F0000[0009E000] [ M] 108. d:\program files\maxthon2\mxproxy2.dll 00890000[0000D000] [ M] 109. d:\program files\maxthon2\mxext.dll 008A0000[001D6000] [ M] 110. d:\program files\maxthon2\mxui.dll 02020000[00015000] [ M] 111. d:\program files\maxthon2\mxtool.dll 02040000[00012000] [ M] 112. d:\program files\maxthon2\maxzlib.dll 11000000[00017000] [ M] 113. d:\program files\maxthon2\plugin\傲游新闻栏\newsbar.dll 73390000[00154000] [ M] 114. c:\windows\system32\msvbvm60.dll 03EA0000[00016000] [ M] 115. d:\program files\maxthon2\modules\mxpagesearch\mxpagesearch.dll 040B0000[0003B000] [ M] 116. d:\program files\maxthon2\modules\mxwebboost\mxwebboost.dll 040F0000[00062000] [ M] 117. d:\program files\maxthon2\mxdb.dll 04640000[00028000] [ M] 118. d:\program files\maxthon2\modules\mxguardian\mxguardian.dll 04880000[0002F000] [ M] 119. d:\program files\maxthon2\modules\mxhistory\mxhistory.dll 04CC0000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll 04D40000[00016000] [ M] 120. d:\program files\maxthon2\plugin\傲游快讯\news.dll 6D8E0000[00026000] [ M] 121. c:\program files\kaspersky lab\kaspersky anti-virus 2009\scrchpg.dll 6D510000[0000A000] [ M] 122. c:\program files\kaspersky lab\kaspersky anti-virus 2009\klscav.dll 78130000[0009B000] [ M] 67. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcr80.dll 6D860000[00015000] [ M] 123. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prremote.dll 7C420000[00087000] [ M] 68. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcp80.dll 6D810000[00043000] [ M] 124. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prloader.dll 6E360000[00030000] [ M] 125. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prkernel.ppl 6E240000[0007B000] [ M] 126. c:\program files\kaspersky lab\kaspersky anti-virus 2009\params.ppl 6E4B0000[00009000] [ M] 127. c:\program files\kaspersky lab\kaspersky anti-virus 2009\pxstub.ppl 6E680000[00006000] [ M] 128. c:\program files\kaspersky lab\kaspersky anti-virus 2009\tempfile.ppl 0B1D0000[00112000] [ M] 102. c:\windows\system32\qqpinyin.ime 05820000[000E4000] [ M] 129. d:\program files\ringz studio\storm codec\codecs\vsfilter.dll 05910000[0003F000] [ M] 130. d:\program files\ringz studio\storm codec\codecs\pmpsplt.ax 05950000[00049000] [ M] 131. f:\邮箱硬盘\realmediasplitter.ax 30BF0000[00289000] [ M] 132. c:\windows\system32\ffdshow.ax 7C340000[00056000] [ M] 133. c:\windows\system32\msvcr71.dll 72C80000[00008000] [ M] 63. c:\windows\system32\msacm32.drv 30000000[003AF000] [ M] 134. c:\windows\system32\macromed\flash\flash9f.ocx 1AA50000[00037000] [ M] 135. c:\windows\system32\mfplat.dll + 00000584(1412) svchost.exe 10000000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll 50E60000[0000C000] [ M] 136. c:\windows\system32\wups2.dll + 000005b8(1464) ctfmon.exe + 000005d8(1496) ScanningProcess.exe 00400000[00016000] [ M] 137. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\scanningprocess.exe 64D00000[0002C000] [ M] 138. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\prloader.dll 10000000[00029000] [AM] 38. c:\program files\360safe\safemon\safemon.dll 64A00000[00031000] [ M] 139. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\prkernel.ppl 00C50000[00009000] [ M] 140. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\prefetch.ppl 62100000[0000D000] [ M] 141. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\avpmgr.ppl 69300000[0000A000] [ M] 142. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\wdiskio.ppl 65B00000[00010000] [ M] 143. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\nfio.ppl 61B00000[00007000] [ M] 144. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\avlib.ppl 63600000[0000F000] [ M] 145. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\dtreg.ppl 69100000[00008000] [ M] 146. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\prutil.ppl 61C00000[0001F000] [ M] 147. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\avp1.ppl 64B00000[00006000] [ M] 148. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\l_llio.ppl 5E100000[00006000] [ M] 149. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\ichstrms.ppl 63E00000[00006000] [ M] 150. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\hashcont.ppl 64000000[00006000] [ M] 151. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\hccmp.ppl 68600000[00008000] [ M] 152. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\uniarc.ppl 65600000[00008000] [ M] 153. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\minizip.ppl 62C00000[00008000] [ M] 154. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\cab.ppl 61900000[00008000] [ M] 155. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\arj.ppl 66B00000[00017000] [ M] 156. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\rar.ppl 65300000[0000A000] [ M] 157. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\mdb.ppl 62060000[0001F000] [ M] 158. c:\windows\system32\mapi32.dll 65700000[0000E000] [ M] 159. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\msoe.ppl 67F00000[00007000] [ M] 160. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\tempfile.ppl 64980000[00006000] [ M] 161. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\iwgen.ppl 67600000[00007000] [ M] 162. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\prseqio.ppl 63F00000[00006000] [ M] 163. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\hashmd5.ppl 64800000[00008000] [ M] 164. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\inflate.ppl + 00000628(1576) svchost.exe 10000000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll + 00000638(1592) ishare_user.exe 00400000[00025000] [AM] 62. c:\program files\dr.com宽带认证客户端\ishare_user.exe 00B30000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll + 00000710(1808) rstray.exe 00400000[00023000] [AM] 53. d:\program files\rising\antispyware\rstray.exe 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[0003C000] [ M] 165. d:\program files\rising\antispyware\rsmginfo.dll 23800000[00022000] [ M] 166. d:\program files\rising\antispyware\rsxml.dll 7C3A0000[0007B000] [ M] 167. d:\program files\rising\antispyware\msvcp71.dll 7C340000[00056000] [ M] 168. d:\program files\rising\antispyware\msvcr71.dll 00C60000[00024000] [ M] 169. d:\program files\rising\antispyware\comserv.dll 00C90000[00019000] [ M] 170. d:\program files\rising\antispyware\syslay.dll 23700000[00026000] [ M] 171. d:\program files\rising\antispyware\rscommon.dll 00CD0000[0002F000] [ M] 172. d:\program files\rising\antispyware\comx3.dll 23900000[00040000] [ M] 173. d:\program files\rising\antispyware\pngdll.dll 010E0000[0005C000] [ M] 174. d:\program files\rising\antispyware\runiep.dll 02700000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll + 0000072c(1836) spoolsv.exe + 0000075c(1884) QQPets3D.exe 00400000[00071000] [ M] 175. d:\program files\tencent\qq\qqpet\qqpets3d\qqpets3d.exe 7C420000[00087000] [ M] 176. d:\program files\tencent\qq\qqpet\qqpets3d\msvcp80.dll 78130000[0009B000] [ M] 177. d:\program files\tencent\qq\qqpet\qqpets3d\msvcr80.dll 03000000[00118000] [ M] 178. d:\program files\tencent\qq\qqpet\qqpets3d\dbghelp.dll 10000000[00012000] [ M] 179. d:\program files\tencent\qq\qqpet\qqpets3d\tenio\tenfact.dll 00C10000[00226000] [ M] 180. d:\program files\tencent\qq\qqpet\qqpets3d\tenio\tenpet2.dll 68080000[0001F000] [ M] 181. d:\program files\tencent\qq\qqpet\qqpets3d\lzo1.dll 781D0000[0010F000] [ M] 182. d:\program files\tencent\qq\qqpet\qqpets3d\mfc80.dll 5D360000[0000A000] [ M] 183. d:\program files\tencent\qq\qqpet\qqpets3d\mfc80chs.dll 013A0000[00448000] [ M] 184. d:\program files\tencent\qq\qqpet\qqpets3d\p3dcommonmodule.dll 01800000[00056000] [ M] 185. d:\program files\tencent\qq\qqpet\qqpets3d\p3dqqcommunication.dll 01870000[0010F000] [ M] 182. d:\program files\tencent\qq\qqpet\qqpets3d\mfc80.dll 01CD0000[00275000] [ M] 186. d:\program files\tencent\qq\qqpet\qqpets3d\qcodec.dll 025C0000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll 02A70000[00025000] [ M] 187. d:\program files\tencent\qq\qqpet\qqpets3d\p3ddownloadmodule.dll 02BB0000[0010F000] [ M] 188. d:\program files\tencent\qq\qqpet\qqpets3d\p3dpetactormodule.dll 02E30000[000B1000] [ M] 189. d:\program files\tencent\qq\qqpet\qqpets3d\p3ddesktopanimation.dll 02F00000[000D3000] [ M] 190. d:\program files\tencent\qq\qqpet\qqpets3d\p3dmarriagemodle.dll 06B70000[00106000] [ M] 191. d:\program files\tencent\qq\qqpet\qqpets3d\p3ddreamsystem.dll 08D70000[000AF000] [ M] 192. d:\program files\tencent\qq\qqpet\qqpets3d\p3dbulbsys.dll 08E30000[00087000] [ M] 193. d:\program files\tencent\qq\qqpet\qqpets3d\p3dstudyworksystem.dll 08ED0000[00034000] [ M] 194. d:\program files\tencent\qq\qqpet\qqpets3d\p3dpetaisystem.dll 08F20000[000B4000] [ M] 195. d:\program files\tencent\qq\qqpet\qqpets3d\p3dshop.dll 08FF0000[0002A000] [ M] 196. d:\program files\tencent\qq\qqpet\qqpets3d\p3drightmenusystem.dll 09030000[0000D000] [ M] 197. d:\program files\tencent\qq\qqpet\qqpets3d\p3dsoundsystem.dll 72C80000[00008000] [ M] 63. c:\windows\system32\msacm32.drv 0FD30000[00037000] [ M] 135. c:\windows\system32\mfplat.dll 02890000[00032000] [ M] 198. d:\program files\tencent\qq\qqpet\qqpets3d\p3deventsystem.dll + 0000089c(2204) zdsj.exe 00400000[000B2000] [ M] 199. d:\同花顺核新\zdsj.exe 00BE0000[00076000] [ M] 200. d:\同花顺核新\riched20.dll 00DE0000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll + 000008a8(2216) alg.exe 10000000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll + 00000910(2320) Thunder5.exe 00400000[001CC000] [ M] 201. c:\program files\thunder\program\thunder5.exe 22B30000[0000C000] [ M] 202. c:\program files\thunder\program\bugreport.dll 22D40000[0003D000] [ M] 203. c:\program files\thunder\program\taskmanager.dll 21830000[0003E000] [ M] 204. c:\program files\thunder\program\download_interface.dll 7C3A0000[0007B000] [ M] 205. c:\windows\system32\msvcp71.dll 7C340000[00056000] [ M] 133. c:\windows\system32\msvcr71.dll 21430000[0006A000] [ M] 206. c:\program files\thunder\program\asyn_frame.dll 21510000[00019000] [ M] 207. c:\program files\thunder\program\atl71.dll 011E0000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll 220F0000[0001C000] [ M] 208. c:\program files\thunder\program\p2p_upload.dll 21D50000[00029000] [ M] 209. c:\program files\thunder\program\fs.dll 22DD0000[0001E000] [ M] 210. c:\program files\thunder\program\xlnet.dll 22B10000[0000A000] [ M] 211. c:\program files\thunder\program\bhostub.dll 22B90000[0000F000] [ M] 212. c:\program files\thunder\program\floatbar.dll 23620000[00014000] [ M] 213. c:\program files\thunder\components\downandplay\downandplay.dll 21550000[00046000] [ M] 214. c:\program files\thunder\program\backend_agent.dll 22130000[0011F000] [ M] 215. c:\program files\thunder\program\p2sp.dll 218C0000[00041000] [ M] 216. c:\program files\thunder\program\down_dispatcher.dll 22370000[0009F000] [ M] 217. c:\program files\thunder\program\ptl.dll 22A70000[00026000] [ M] 218. c:\program files\thunder\program\xl_stat.dll 22010000[00062000] [ M] 219. c:\program files\thunder\program\p2p_network_com.dll 13000000[00004000] [ M] 220. c:\program files\thunder\program\itargetad.dll 6D8E0000[00026000] [ M] 121. c:\program files\kaspersky lab\kaspersky anti-virus 2009\scrchpg.dll 6D510000[0000A000] [ M] 122. c:\program files\kaspersky lab\kaspersky anti-virus 2009\klscav.dll 78130000[0009B000] [ M] 67. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcr80.dll 6D860000[00015000] [ M] 123. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prremote.dll 7C420000[00087000] [ M] 68. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcp80.dll 6D810000[00043000] [ M] 124. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prloader.dll 6E360000[00030000] [ M] 125. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prkernel.ppl 6E240000[0007B000] [ M] 126. c:\program files\kaspersky lab\kaspersky anti-virus 2009\params.ppl 6E4B0000[00009000] [ M] 127. c:\program files\kaspersky lab\kaspersky anti-virus 2009\pxstub.ppl 6E680000[00006000] [ M] 128. c:\program files\kaspersky lab\kaspersky anti-virus 2009\tempfile.ppl 21E80000[00087000] [ M] 221. c:\program files\thunder\program\p2p.dll 22940000[00061000] [ M] 222. c:\program files\thunder\program\xldc.dll 226F0000[0011C000] [ M] 223. c:\program files\thunder\program\stream.dll 72C80000[00008000] [ M] 63. c:\windows\system32\msacm32.drv 21FB0000[00023000] [ M] 224. c:\program files\thunder\program\p2p_local_res.dll 213A0000[0003C000] [ M] 225. c:\program files\thunder\program\al.dll 22F40000[00264000] [ M] 226. c:\program files\thunder\components\community\xlcommunity.dll 15000000[00005000] [ M] 227. c:\program files\thunder\program\xlcommunityex.dll 224B0000[00040000] [ M] 228. c:\program files\thunder\program\registerdll.dll 22D10000[00011000] [ M] 229. c:\program files\thunder\program\msvcirt.dll 21DB0000[00058000] [ M] 230. c:\program files\thunder\program\imdt.dll 241F0000[0002A000] [ M] 231. c:\program files\thunder\components\security\thundersafe.dll 24180000[0000C000] [ M] 232. c:\program files\thunder\components\security\configmanager.dll 241B0000[00015000] [ M] 233. c:\program files\thunder\components\security\safemanager.dll 21330000[00030000] [ M] 234. c:\program files\thunder\plugins\xlsafehost\xlsafehost.dll 08230000[00007000] [ M] 235. c:\program files\thunder\plugins\xlsafehost\thunderkav\thunderkav.dll 210F0000[00119000] [ M] 236. c:\program files\thunder\plugins\xlsafehost\autohelp.dll 22E20000[00020000] [ M] 237. c:\program files\thunder\program\xlnetu.dll 088D0000[00079000] [ M] 238. c:\program files\thunder\plugins\klscan\pluginklscan.dll 238C0000[00010000] [ M] 239. c:\program files\thunder\components\explorerhelper\explorerhelper.dll 23880000[00011000] [ M] 240. c:\program files\thunder\components\downloadstat\downloadstat.dll 215F0000[00022000] [ M] 241. c:\program files\thunder\program\bd.dll 21D00000[00020000] [ M] 242. c:\program files\thunder\program\emule_id.dll 00E70000[0000D000] [AM] 39. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll 054C0000[00043000] [ M] 243. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\kave.dll + 000009d0(2512) ras.exe 00400000[0000B000] [ M] 244. d:\program files\rising\antispyware\ras.exe 7C140000[00103000] [ M] 245. d:\program files\rising\antispyware\mfc71.dll 7C340000[00056000] [ M] 168. d:\program files\rising\antispyware\msvcr71.dll 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 10000000[00047000] [ M] 246. d:\program files\rising\antispyware\kakamgr.dll 7C3A0000[0007B000] [ M] 167. d:\program files\rising\antispyware\msvcp71.dll 00B70000[00019000] [ M] 170. d:\program files\rising\antispyware\syslay.dll 00BA0000[0002F000] [ M] 172. d:\program files\rising\antispyware\comx3.dll 00E10000[00058000] [ M] 247. d:\program files\rising\antispyware\dbmgr.dll 23800000[00022000] [ M] 166. d:\program files\rising\antispyware\rsxml.dll 00F70000[0002D000] [ M] 248. d:\program files\rising\antispyware\pweb.dll 00FE0000[000C1000] [ M] 249. d:\program files\rising\antispyware\pscan.dll 010B0000[0002F000] [ M] 250. d:\program files\rising\antispyware\ncomm.dll 01100000[00070000] [ M] 251. d:\program files\rising\antispyware\pset.dll 01190000[0002A000] [ M] 252. d:\program files\rising\antispyware\pdefend.dll 011C0000[000B6000] [ M] 253. d:\program files\rising\antispyware\ptools.dll 01390000[0008C000] [ M] 254. d:\program files\rising\antispyware\psysinfo.dll 23900000[00040000] [ M] 173. d:\program files\rising\antispyware\pngdll.dll 6D8E0000[00026000] [ M] 121. c:\program files\kaspersky lab\kaspersky anti-virus 2009\scrchpg.dll 6D510000[0000A000] [ M] 122. c:\program files\kaspersky lab\kaspersky anti-virus 2009\klscav.dll 78130000[0009B000] [ M] 67. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcr80.dll 6D860000[00015000] [ M] 123. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prremote.dll 7C420000[00087000] [ M] 68. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcp80.dll 6D810000[00043000] [ M] 124. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prloader.dll 6E360000[00030000] [ M] 125. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prkernel.ppl 6E240000[0007B000] [ M] 126. c:\program files\kaspersky lab\kaspersky anti-virus 2009\params.ppl 6E4B0000[00009000] [ M] 127. c:\program files\kaspersky lab\kaspersky anti-virus 2009\pxstub.ppl 6E680000[00006000] [ M] 128. c:\program files\kaspersky lab\kaspersky anti-virus 2009\tempfile.ppl 30000000[003AF000] [ M] 134. c:\windows\system32\macromed\flash\flash9f.ocx 72C80000[00008000] [ M] 63. c:\windows\system32\msacm32.drv 037F0000[00085000] [ M] 255. d:\program files\rising\antispyware\kengine.dll 05400000[00045000] [ M] 256. d:\program files\rising\antispyware\posttrt.dll 03880000[00010000] [ M] 257. d:\program files\rising\antispyware\kscanex.dll 05650000[0002F000] [ M] 258. d:\program files\rising\antispyware\engine.dll 05680000[00033000] [ M] 259. d:\program files\rising\antispyware\rsdialog.dll + 00000b68(2920) QPetXX.exe 00400000[00070000] [ M] 260. f:\xt\xbs-1.8\qpetxx.exe 017C0000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll 6D8E0000[00026000] [ M] 121. c:\program files\kaspersky lab\kaspersky anti-virus 2009\scrchpg.dll 6D510000[0000A000] [ M] 122. c:\program files\kaspersky lab\kaspersky anti-virus 2009\klscav.dll 78130000[0009B000] [ M] 67. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcr80.dll 6D860000[00015000] [ M] 123. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prremote.dll 7C420000[00087000] [ M] 68. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcp80.dll 6D810000[00043000] [ M] 124. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prloader.dll 6E360000[00030000] [ M] 125. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prkernel.ppl 6E240000[0007B000] [ M] 126. c:\program files\kaspersky lab\kaspersky anti-virus 2009\params.ppl 6E4B0000[00009000] [ M] 127. c:\program files\kaspersky lab\kaspersky anti-virus 2009\pxstub.ppl 6E680000[00006000] [ M] 128. c:\program files\kaspersky lab\kaspersky anti-virus 2009\tempfile.ppl + 00000d18(3352) ScanningProcess.exe 00400000[00016000] [ M] 137. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\scanningprocess.exe 64D00000[0002C000] [ M] 138. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\prloader.dll 10000000[00029000] [AM] 38. c:\program files\360safe\safemon\safemon.dll 64A00000[00031000] [ M] 139. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\prkernel.ppl 00C50000[00009000] [ M] 140. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\prefetch.ppl 62100000[0000D000] [ M] 141. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\avpmgr.ppl 69300000[0000A000] [ M] 142. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\wdiskio.ppl 65B00000[00010000] [ M] 143. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\nfio.ppl 61B00000[00007000] [ M] 144. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\avlib.ppl 63600000[0000F000] [ M] 145. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\dtreg.ppl 69100000[00008000] [ M] 146. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\prutil.ppl 61C00000[0001F000] [ M] 147. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\avp1.ppl 64B00000[00006000] [ M] 148. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\l_llio.ppl 5E100000[00006000] [ M] 149. c:\program files\thunder\plugins\xlsafehost\thunderkav\bin\ichstrms.ppl + 00000dd0(3536) QQ.exe 00400000[001FC000] [ M] 261. d:\program files\tencent\qq\qq.exe 614D0000[0033E000] [ M] 262. d:\program files\tencent\qq\qqbaseclassindll.dll 61960000[000F2000] [ M] 263. d:\program files\tencent\qq\qqhelperdll.dll 600A0000[00070000] [ M] 264. d:\program files\tencent\qq\basicctrldll.dll 60B00000[000F2000] [ M] 265. d:\program files\tencent\qq\mfc42.dll 10000000[0000C000] [ M] 266. d:\program files\tencent\qq\msimg32.dll 010B0000[000D2000] [ M] 267. d:\program files\tencent\qq\caihong\caihong.dll 00FE0000[0004E000] [ M] 71. c:\windows\system32\tcpipdog1.dll 626F0000[00005000] [ M] 268. d:\program files\tencent\qq\riched32.dll 62680000[00068000] [ M] 269. d:\program files\tencent\qq\riched20.dll 61440000[0003D000] [ M] 270. d:\program files\tencent\qq\qqapi.dll 608D0000[00046000] [ M] 271. d:\program files\tencent\qq\loginctrl.dll 60920000[0009C000] [ M] 272. d:\program files\tencent\qq\loginctrlres.dll 61E30000[00628000] [ M] 273. d:\program files\tencent\qq\qqres.dll 61AB0000[000D7000] [ M] 274. d:\program files\tencent\qq\qqmainframe.dll 60480000[001A3000] [ M] 275. d:\program files\tencent\qq\gdiplus.dll 61CE0000[00142000] [ M] 276. d:\program files\tencent\qq\qqplugin.dll 62870000[00022000] [ M] 277. d:\program files\tencent\qq\unreadmsgmgr.dll 61190000[002AB000] [ M] 278. d:\program files\tencent\qq\qqallinone.dll 62710000[0002B000] [ M] 279. d:\program files\tencent\qq\sccore.dll 60130000[00036000] [ M] 280. d:\program files\tencent\qq\cameradll.dll 02EE0000[00195000] [ M] 281. d:\program files\tencent\qq\cqqapplication.dll 60430000[00047000] [ M] 282. d:\program files\tencent\qq\flashavatardll.dll 60CA0000[0005F000] [ M] 283. d:\program files\tencent\qq\newskin.dll 60AC0000[00034000] [ M] 284. d:\program files\tencent\qq\mailsummary.dll 62510000[0002D000] [ M] 285. d:\program files\tencent\qq\qqspace.dll 628A0000[0001D000] [ M] 286. d:\program files\tencent\qq\userdefinedhead.dll 03510000[00017000] [ M] 287. d:\program files\tencent\qq\vbscript.dll 73460000[0006B000] [ M] 288. d:\program files\tencent\qq\aqing.dll 30000000[003AF000] [ M] 134. c:\windows\system32\macromed\flash\flash9f.ocx 72C80000[00008000] [ M] 63. c:\windows\system32\msacm32.drv 04090000[0001D000] [ M] 289. d:\program files\tencent\qq\caihong\reporter.dll 62490000[0006F000] [ M] 290. d:\program files\tencent\qq\qqsettingctrl.dll 60D00000[00015000] [ M] 291. d:\program files\tencent\qq\oemapplication.dll 02E40000[00044000] [ M] 292. d:\program files\tencent\qq\qqavatar.dll 61A60000[00018000] [ M] 293. d:\program files\tencent\qq\qqknowledgesearch.dll 618D0000[00086000] [ M] 294. d:\program files\tencent\qq\qqgroupmng.dll 61CB0000[0002D000] [ M] 295. d:\program files\tencent\qq\qqpet.dll 02BE0000[00052000] [ M] 296. d:\program files\tencent\qq\qqsysmsgmng.dll 02B90000[0000D000] [AM] 39. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll 61810000[0000E000] [ M] 297. d:\program files\tencent\qq\qqconfigplugin.dll 61820000[00056000] [ M] 298. d:\program files\tencent\qq\qqcustomface.dll 62660000[00017000] [ M] 299. d:\program files\tencent\qq\qringmng.dll 60780000[00028000] [ M] 300. d:\program files\tencent\qq\groupconnection.dll 609C0000[000D4000] [ M] 301. d:\program files\tencent\qq\longconnection.dll 60170000[0004F000] [ M] 302. d:\program files\tencent\qq\commercesmng.dll 60D20000[0000F000] [ M] 303. d:\program files\tencent\qq\personaldesktop.dll 06B30000[00287000] [ M] 304. d:\program files\tencent\qq\qqaddr.dll 62460000[0002D000] [ M] 305. d:\program files\tencent\qq\qqscenemng.dll 01F40000[00037000] [ M] 306. d:\program files\tencent\qq\addrsearch.dll 607B0000[0001A000] [ M] 307. d:\program files\tencent\qq\imageole.dll 6D8E0000[00026000] [ M] 121. c:\program files\kaspersky lab\kaspersky anti-virus 2009\scrchpg.dll 6D510000[0000A000] [ M] 122. c:\program files\kaspersky lab\kaspersky anti-virus 2009\klscav.dll 78130000[0009B000] [ M] 67. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcr80.dll 6D860000[00015000] [ M] 123. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prremote.dll 7C420000[00087000] [ M] 68. c:\program files\kaspersky lab\kaspersky anti-virus 2009\msvcp80.dll 6D810000[00043000] [ M] 124. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prloader.dll 6E360000[00030000] [ M] 125. c:\program files\kaspersky lab\kaspersky anti-virus 2009\prkernel.ppl 6E240000[0007B000] [ M] 126. c:\program files\kaspersky lab\kaspersky anti-virus 2009\params.ppl 6E4B0000[00009000] [ M] 127. c:\program files\kaspersky lab\kaspersky anti-virus 2009\pxstub.ppl 6E680000[00006000] [ M] 128. c:\program files\kaspersky lab\kaspersky anti-virus 2009\tempfile.ppl 61A80000[00015000] [ M] 308. d:\program files\tencent\qq\qqliveqmng.dll 07DB0000[00112000] [ M] 102. c:\windows\system32\qqpinyin.ime 10930000[00049000] [ M] 65. c:\windows\system32\portabledeviceapi.dll + 00000ebc(3772) knownsvr.exe 00400000[00072000] [ M] 309. d:\program files\rising\antispyware\knownsvr.exe 10000000[0002F000] [ M] 250. d:\program files\rising\antispyware\ncomm.dll 60000000[00074000] [AM] 60. c:\windows\system32\kmon.dll 00A90000[0002F000] [ M] 172. d:\program files\rising\antispyware\comx3.dll 00AC0000[00019000] [ M] 170. d:\program files\rising\antispyware\syslay.dll