瑞星卡卡电脑诊断日志 v1.30 (2009-8-29 13:28:26) 北京瑞星信息技术有限公司 注释: [A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + 系统服务 + HKLM\System\CurrentControlSet\Services btwdins [AM] 1. c:\program files\lenovo\bluetooth software\bin\btwdins.exe Broadcom Corporation. Bluetooth Support Server .text,.rdata,.data,.rsrc, NVSvc [AM] 2. c:\windows\system32\nvsvc32.exe NVIDIA Corporation NVIDIA Driver Helper Service, Version 179.30 .text,.rdata,.data,.rsrc, ose [A ] 3. c:\program files\common files\microsoft shared\source engine\ose.exe Microsoft Corporation Office Source Engine .text,.data,.rsrc, RavCCenter [AM] 4. c:\program files\rising\rav\ccenter.exe Beijing Rising Information Technology Co., Ltd. CCenter Application .text,.rdata,.data,.rsrc, RavTask [AM] 5. c:\program files\rising\rav\ravtask.exe Beijing Rising Information Technology Co., Ltd. ravtask .text,.rdata,.data,.rsrc, RfwCCenter [AM] 6. c:\program files\rising\rfw\ccenter.exe Beijing Rising Information Technology Co., Ltd. CCenter Application .text,.rdata,.data,.rsrc, RfwService [AM] 7. c:\program files\rising\rfw\rfwsrv.exe Beijing Rising Information Technology Co., Ltd. rfwsrvex Application .text,.rdata,.data,.rsrc, RfwTask [AM] 8. c:\program files\rising\rfw\ravtask.exe Beijing Rising Information Technology Co., Ltd. ravtask .text,.rdata,.data,.rsrc, RsRavMon [AM] 9. c:\program files\rising\rav\ravmond.exe Beijing Rising Information Technology Co., Ltd. ravmond .text,.rdata,.data,.rsrc, RsScanSrv [AM] 10. c:\program files\rising\rav\scanfrm.exe Beijing Rising Information Technology Co., Ltd. Rising Scan Service Framework .text,.rdata,.data,.rsrc, + 内核驱动 + HKLM\System\CurrentControlSet\Services ACPIVPC [A ] 11. c:\windows\system32\drivers\acpivpc.sys Lenovo Corporation ACPI Virtual Power Controller Driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, BTKRNL [A ] 12. c:\windows\system32\drivers\btkrnl.sys Broadcom Corporation. Bluetooth Bus Enumerator .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, EagleNT [A ] 13. c:\windows\system32\drivers\eaglent.sys HDAudBus [A ] 14. c:\windows\system32\drivers\hdaudbus.sys Windows (R) Server 2003 DDK provider High Definition Audio Bus Driver v1.0a .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, hookcont [A ] 15. c:\windows\system32\drivers\hookcont.sys Beijing Rising Information Technology Co., Ltd. HookCont Driver .text,.rdata,.data,INIT,.rsrc,.reloc, hooksys [A ] 16. c:\windows\system32\drivers\hooksys.sys Beijing Rising Information Technology Co., Ltd. Hooksys.sys .text,.rdata,.data,INIT,.rsrc,.reloc, IntcAzAudAddService [A ] 17. c:\windows\system32\drivers\rtkhdaud.sys Realtek Semiconductor Corp. Realtek(r) High Definition Audio Function Driver .text,CODE,.rdata,.data,.data1,PAGE,INIT,.rsrc,.reloc, JMCR [A ] 18. c:\windows\system32\drivers\jmcr.sys JMicron Technology Corporation JMicron JMB38X Flash Media Controller Driver .text,.rdata,.data,INIT,.rsrc,.reloc, k57w2k [A ] 19. c:\windows\system32\drivers\k57xp32.sys Broadcom Corporation Broadcom NetLink (TM) Gigabit Ethernet NDIS5.1 Driver. .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, NETw5x32 [A ] 20. c:\windows\system32\drivers\netw5x32.sys Intel Corporation Intel? Wireless WiFi Link Driver .text,.rdata,.data,INIT,.rsrc,.reloc, NVHDA [A ] 21. c:\windows\system32\drivers\nvhda32.sys NVIDIA Corporation NVIDIA HDMI Audio Driver .text,CODE,.rdata,.data,PAGE,INIT,.rsrc,.reloc, RfwBase9 [A ] 22. c:\windows\system32\drivers\rfwbase.sys Beijing Rising Information Technology Co., Ltd. rfwbase.sys .text,.rdata,.data,INIT,.rsrc,.reloc, rfwtdi [A ] 23. c:\program files\rising\rfw\rfwtdi.sys Beijing Rising Information Technology Co., Ltd. rfwtdi5.sys .text,.rdata,.data,INIT,.rsrc,.reloc, rsfwdrv [A ] 24. c:\program files\rising\rfw\rsfwdrv.sys Beijing Rising Information Technology Co., Ltd. rsfwdrv.sys .text,.rdata,.data,INIT,.rsrc,.reloc, RsNTGDI [A ] 25. c:\windows\system32\drivers\rsntgdi.sys Beijing Rising Information Technology Co., Ltd. RsNTGDI .text,.rdata,INIT,.rsrc,.reloc, RsProtect [A ] 26. c:\windows\system32\drivers\rsptect.sys Beijing Rising Information Technology Co., Ltd. RsProtect .text,.rdata,.data,INIT,.rsrc,.reloc, Secdrv [A ] 27. c:\windows\system32\drivers\secdrv.sys Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K. Macrovision SECURITY Driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, SiFilter [A ] 28. c:\windows\system32\drivers\siwinacc.sys Silicon Image, Inc. Windows Accelerator Driver .text,.rdata,.data,INIT,.rsrc,.reloc, SynTP [A ] 29. c:\windows\system32\drivers\syntp.sys Synaptics, Inc. Synaptics Touchpad Driver .text,.rdata,.data,.CRT,INIT,.rsrc,.reloc, TesDrvPt [A ] 30. c:\windows\system32\tesdrvpt.sys TENCENT Kernel helper of the Tencent's game trojan killer .text,.rdata,.data,INIT,.rsrc,.reloc, TesSafe [A ] 31. c:\windows\system32\tessafe.sys TENCENT TesSafe NT Driver .text,.rdata,.data,INIT,.rsrc,.tvm, vhidmini [A ] 32. c:\windows\system32\drivers\itehidcir.sys ITE Tech. Inc. ITEhidCIR .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, vm331avs [A ] 33. c:\windows\system32\drivers\vm331avs.sys Vimicro Corporation VM0331 Digital Camera Driver .text,.rdata,.data,PAGECONS,INIT,.rsrc,.reloc, Wdf01000 [A ] 34. c:\windows\system32\drivers\wdf01000.sys Microsoft Corporation WDF Dynamic .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, WSVD [A ] 35. c:\windows\system32\drivers\wsvd.sys CyberLink WIN32 .text,.rdata,.data,INIT,.rsrc,.reloc, yukonwxp [A ] 36. c:\windows\system32\drivers\yk51x86.sys Marvell Miniport Driver for Marvell Yukon Ethernet Controller. .text,.rdata,.data,INIT,.rsrc,.reloc, + 文件系统驱动 + HKLM\System\CurrentControlSet\Services exFat [A ] 37. c:\windows\system32\drivers\exfat.sys Microsoft Corporation Microsoft Extended FAT File System .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, WimFltr [A ] 38. c:\windows\system32\drivers\wimfltr.sys Microsoft Corporation Windows Image File Mini-Filter Driver .text,.rdata,.data,INIT,.rsrc,.reloc, + IE浏览器加载模块 + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [A ] 39. c:\windows\system32\urlfilter.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware UrlFilter Module .text,.rdata,.data,.rsrc,.reloc, + HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions Exec [A ] 40. e:\program files\holdfast\platform 5.0\gameclient.exe 上海浩方在线信息技术有限公司 浩方电竞平台 .text,.rdata,.data,.rsrc, Script [A ] 41. c:\program files\lenovo\bluetooth software\btsendto_ie.htm Exec [A ] 42. c:\windows\network diagnostic\xpnetdiag.exe Microsoft Corporation Network Diagnostic for Windows XP .text,.data,.rsrc, Exec [A ] 43. c:\program files\messenger\msmsgs.exe Microsoft Corporation Windows Messenger .text,.data,.rsrc, + 资源管理器加载模块 + HKLM\SOFTWARE\Classes\PROTOCOLS\Filter text/xml [A ] 44. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll Microsoft Corporation Microsoft Office XML MIME Filter .text,.data,.cdata,.rsrc,.reloc, + HKLM\SOFTWARE\Classes\PROTOCOLS\Handler mso-offdap [A ] 45. c:\program files\common files\microsoft shared\web components\10\owc10.dll Microsoft Corporation Microsoft Office XP Web Components .text,.data,.rtext,.bootdat,msoconst,Shared,.rsrc,.reloc, + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved HyperTerminal Icon Ext [A ] 46. c:\windows\system32\hticons.dll Hilgraeve, Inc. HyperTerminal Applet Library .text,.data,.rsrc,.reloc, WinRAR shell extension [A ] 47. c:\program files\winrar\rarext.dll .text,.data,.tls,.idata,.edata,.rsrc,.reloc, Microsoft Office HTML Icon Handler [A ] 48. c:\program files\microsoft office\office11\msohev.dll Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc,.reloc, Web Folders [A ] 49. c:\program files\common files\microsoft shared\web folders\msonsext.dll Microsoft Corporation Microsoft Web Folders .text,.data,.rsrc,.reloc, Portable Media Devices [A ] 50. c:\windows\system32\audiodev.dll Microsoft Corporation 便携媒体设备命令行解释器扩展 .text,.data,.rsrc,.reloc, Portable Media Devices Menu [A ] 50. c:\windows\system32\audiodev.dll Microsoft Corporation 便携媒体设备命令行解释器扩展 .text,.data,.rsrc,.reloc, Shell Extensions for RealOne Player [A ] 51. c:\program files\real\realplayer\rpshell.dll RealNetworks, Inc. RealPlayer Shell Extensions .text,.rdata,.data,.rsrc,.reloc, 7-Zip Shell Extension [A ] 52. c:\program files\7-zip\7-zip.dll Igor Pavlov 7-Zip 菜单扩展插件 .text,.rdata,.data,.rsrc,.reloc, My Bluetooth Places [A ] 53. c:\windows\system32\btneighborhood.dll Broadcom Corporation. BTNeighborhood DLL .text,.rdata,.data,.rsrc,.reloc, Monitor [A ] 54. c:\windows\system32\btncopy.dll Broadcom Corporation. BTNCopy Module .text,.rdata,.data,.rsrc,.reloc, NvCpl DesktopContext Class [AM] 55. c:\windows\system32\nvcpl.dll NVIDIA Corporation NVIDIA Display Properties Extension .text,.orpc,.rdata,.data,CONST,.rsrc,.reloc, Play on my TV helper [AM] 55. c:\windows\system32\nvcpl.dll NVIDIA Corporation NVIDIA Display Properties Extension .text,.orpc,.rdata,.data,CONST,.rsrc,.reloc, Synaptics Control Panel [A ] 56. c:\program files\synaptics\syntp\syntpcpl.dll Synaptics, Inc. TouchPad Control Panel Extensions .text,.rdata,.data,.rsrc,.reloc, Desktop Explorer [AM] 57. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, Desktop Explorer Menu [AM] 57. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, nView Desktop Context Menu [AM] 57. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, WdmidleDeviceShellExtension [A ] 58. c:\program files\lenovo\energy management\powcpl.dll .text,.rdata,.data,.rsrc,.reloc, RISING [A ] 59. c:\windows\system32\ravext.dll Beijing Rising Information Technology Co., Ltd. Rising Shell Ext Module .text,.rdata,.data,.rsrc,.reloc, Microsoft.XPS.Shell.Metadata.1 [A ] 60. c:\windows\system32\xpsshhdr.dll Microsoft Corporation Package Document Shell Extension Handler .text,.data,.rsrc,.reloc, Microsoft.XPS.Shell.Thumbnail.1 [A ] 60. c:\windows\system32\xpsshhdr.dll Microsoft Corporation Package Document Shell Extension Handler .text,.data,.rsrc,.reloc, + 用户登陆自运行项目 + HKLM\Software\Microsoft\Windows\CurrentVersion\Run 331BigDog [AM] 61. c:\windows\vm331_sti.exe Vimicro VM331 StiMnt .text,.rdata,.data,.rsrc, nwiz [A ] 62. c:\windows\system32\nwiz.exe .text,.rdata,.data,.rsrc, SynTPEnh [AM] 63. c:\program files\synaptics\syntp\syntpenh.exe Synaptics, Inc. Synaptics TouchPad Enhancements .text,.rdata,.data,.rsrc, EnergyUtility [AM] 64. c:\program files\lenovo\energy management\utility.exe Lenovo(Beijing)Limited Lenovo Power Management .text,.rdata,.data,.Shared,.rsrc, Energy Management [AM] 65. c:\program files\lenovo\energy management\energy management.exe Lenovo (Beijing) Limited Lenovo Power Management Software .text,.rdata,.data,.rsrc, RavTray [AM] 66. c:\program files\rising\rav\rstray.exe Beijing Rising Information Technology Co., Ltd. Rising tray framework .text,.rdata,.data,.rsrc, RFWTray [AM] 67. c:\program files\rising\rfw\rstray.exe Beijing Rising Information Technology Co., Ltd. Rising tray framework .text,.rdata,.data,.rsrc, runeip [AM] 68. c:\program files\rising\antispyware\rstray.exe Beijing Rising Information Technology Co., Ltd. RSTray .text,.rdata,.data,.rsrc, safety3 [AM] 69. c:\program files\rising\rav\rssafety.exe Beijing Rising Information Technology Co., Ltd. Safety3 .text,.rdata,.data,.rsrc, + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce KKDelay [A ] 70. c:\program files\rising\antispyware\runonce.exe Beijing Rising Information Technology Co., Ltd. RunOnce Application .text,.rdata,.data,.rsrc, + 开机执行 + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 71. c:\windows\system32\bsmain.exe Beijing Rising Information Technology Co., Ltd. Rising Antivirus 2008 .text,.rdata,.data,.rsrc,.reloc, + 映像劫持 + HKCR\.html htmlfile\Edit\Command [A ] 72. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.cdata,.rsrc, htmlfile\Print\Command [A ] 72. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.cdata,.rsrc, + HKCR\.htm htmlfile\Edit\Command [A ] 72. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.cdata,.rsrc, htmlfile\Print\Command [A ] 72. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.cdata,.rsrc, + 程序初始化和已知动态连接库 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows AppInit_DLLs [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, + 打印机监控 + HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors Bluetooth 打印机端口 [AM] 74. c:\windows\system32\bthcrp.dll Broadcom Corporation. bthcrp DLL .text,.rdata,.data,.rsrc,.reloc, + 其他自启动项目 + C:\Documents and Settings\pjlenovo\「开始」菜单\程序\启动 QQ游戏启动加速程序.lnk [A ] 75. d:\program files\腾讯游戏\qqgame\accel.exe 深圳市腾讯计算机系统有限公司 QQ游戏 .text,.rdata,.data,.rsrc, + C:\Documents and Settings\All Users\「开始」菜单\程序\启动 蓝牙控制盘.lnk [AM] 76. c:\program files\lenovo\bluetooth software\bttray.exe Broadcom Corporation. Bluetooth Tray Application .text,.rdata,.data,.rsrc, + C:\WINDOWS\Tasks SogouImeMgr.job [A ] 77. d:\program files\sogouinput\4.2.3.2810\pinyinrepair.exe Sogou.com Inc. 搜狗拼音输入法 输入法修复程序 .text,.rdata,.data,.rsrc, + 正在运行的进程 + 000000b8(184) BTTray.exe 00400000[000CE000] [AM] 76. c:\program files\lenovo\bluetooth software\bttray.exe Broadcom Corporation. Bluetooth Tray Application .text,.rdata,.data,.rsrc, 10000000[000BD000] [ M] 78. c:\windows\system32\wbtapi.dll Broadcom Corporation. WBTApi DLL .text,.rdata,.data,.rsrc,.reloc, 00390000[00020000] [ M] 79. c:\windows\system32\btosif.dll Broadcom Corporation. BTOSIF DLL .text,.rdata,.data,.rsrc,.reloc, 003B0000[0003B000] [ M] 80. c:\windows\system32\btwhidcs.dll Broadcom Corporation. Bluetooth HID Power Control Suite dll .text,.rdata,.data,.rsrc,.reloc, 004D0000[00009000] [ M] 81. c:\program files\lenovo\bluetooth software\btballoon.dll Broadcom Corporation. Balloon Tooltip Routine DLL .text,.rdata,.data,.rsrc,.reloc, 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 00CE0000[000DF000] [ M] 82. c:\windows\system32\btrez.dll Broadcom Corporation. btrez DLL .text,.rdata,.data,.rsrc,.reloc, 00DC0000[002BA000] [ M] 83. c:\windows\system32\btwicons.dll btwicons DLL .text,.rdata,.data,.rsrc,.reloc, 01280000[0000C000] [ M] 84. c:\program files\lenovo\bluetooth software\btkeyind.dll .text,.rdata,.data,.JOE,.reloc, 017C0000[00013000] [ M] 85. c:\windows\system32\btmmhook.dll Broadcom Corporation. Multimedia Keys Hook DLL .text,.rdata,.data,.shared,.rsrc,.reloc, + 000000bc(188) svchost.exe + 00000124(292) Explorer.EXE 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 72C80000[00008000] [ M] 86. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, 10000000[00013000] [ M] 85. c:\windows\system32\btmmhook.dll Broadcom Corporation. Multimedia Keys Hook DLL .text,.rdata,.data,.shared,.rsrc,.reloc, 02560000[0000C000] [ M] 87. c:\program files\lenovo\energy management\hooklib.dll .text,.rdata,.data,Shared,.reloc, 02770000[00D1D000] [AM] 55. c:\windows\system32\nvcpl.dll NVIDIA Corporation NVIDIA Display Properties Extension .text,.orpc,.rdata,.data,CONST,.rsrc,.reloc, 034B0000[00037000] [ M] 88. c:\windows\system32\nvrszhc.dll NVIDIA Corporation NVIDIA Simplified Chinese language resource library .rsrc,.reloc, 03530000[00078000] [ M] 89. c:\windows\system32\nvapi.dll NVIDIA Corporation NVIDIA NVAPI Library, Version 179.30 .text,.rdata,.data,.idata,.rsrc,.reloc, 035C0000[00073000] [AM] 57. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, + 00000134(308) rstray.exe 00400000[00023000] [AM] 68. c:\program files\rising\antispyware\rstray.exe Beijing Rising Information Technology Co., Ltd. RSTray .text,.rdata,.data,.rsrc, 10000000[00044000] [ M] 90. c:\program files\rising\antispyware\rsmginfo.dll Beijing Rising Information Technology Co., Ltd. rsmginfo .text,.rdata,.data,.rsrc,.reloc, 23800000[00022000] [ M] 91. c:\program files\rising\antispyware\rsxml.dll Beijing Rising Information Technology Co., Ltd. RsXML .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 92. c:\program files\rising\antispyware\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 93. c:\program files\rising\antispyware\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 00AC0000[00024000] [ M] 94. c:\program files\rising\antispyware\comserv.dll Beijing Rising Information Technology Co., Ltd. .text,.rdata,.data,.rsrc,.reloc, 00990000[00019000] [ M] 95. c:\program files\rising\antispyware\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 23700000[00026000] [ M] 96. c:\program files\rising\antispyware\rscommon.dll Beijing Rising Information Technology Co., Ltd. Rising Common Function Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00B10000[0002D000] [ M] 97. c:\program files\rising\antispyware\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 23900000[00040000] [ M] 98. c:\program files\rising\antispyware\pngdll.dll Beijing Rising Information Technology Co., Ltd. Rising .Png File Loader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00E20000[00068000] [ M] 99. c:\program files\rising\antispyware\runiep.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware tray .text,.rdata,.data,.rsrc,.reloc, 00E90000[00034000] [ M] 100. c:\program files\rising\antispyware\ncomm.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 00EF0000[0001F000] [ M] 101. c:\program files\rising\rav\proccom.dll Beijing Rising Information Technology Co., Ltd. ProcessC Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00F10000[00024000] [ M] 102. c:\program files\rising\antispyware\rscommx2.dll Beijing Rising Information Technology Co., Ltd. RsCommX2 .text,.rdata,.data,.rsrc,.reloc, + 000001a4(420) svchost.exe + 000001c4(452) VM331_STI.EXE 00400000[0004B000] [AM] 61. c:\windows\vm331_sti.exe Vimicro VM331 StiMnt .text,.rdata,.data,.rsrc, 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, + 000001f4(500) RavMonD.exe 00400000[00020000] [AM] 9. c:\program files\rising\rav\ravmond.exe Beijing Rising Information Technology Co., Ltd. ravmond .text,.rdata,.data,.rsrc, 10000000[00029000] [ M] 103. c:\program files\rising\rav\combase.dll Beijing Rising Information Technology Co., Ltd. combase .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 104. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 105. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 00A00000[00019000] [ M] 106. c:\program files\rising\rav\moncomm.dll Beijing Rising Information Technology Co., Ltd. MonComm .text,.rdata,.data,.rsrc,.reloc, 00A20000[0001D000] [ M] 107. c:\program files\rising\rav\monbase.dll Beijing Rising Information Technology Co., Ltd. MonBase .text,.rdata,.data,.rsrc,.reloc, 00A50000[0006A000] [ M] 108. c:\program files\rising\rav\rslog.dll Beijing Rising Information Technology Co., Ltd. rslog Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00AE0000[00018000] [ M] 109. c:\program files\rising\rav\mondrv.dll Beijing Rising Information Technology Co., Ltd. mondrv .text,.rdata,.data,.rsrc,.reloc, 00B10000[00023000] [ M] 110. c:\program files\rising\rav\defmon.dll Beijing Rising Information Technology Co., Ltd. DefMon .text,.rdata,.data,.rsrc,.reloc, 00B50000[00010000] [ M] 111. c:\program files\rising\rav\moncom08.dll Beijing Rising Information Technology Co., Ltd. MonCom08 .text,.rdata,.data,.rsrc,.reloc, 00B70000[0006C000] [ M] 112. c:\program files\rising\rav\monrule.dll Beijing Rising Information Technology Co., Ltd. MonRule .text,.rdata,.data,.rsrc,.reloc, 00C20000[00028000] [ M] 113. c:\program files\rising\rav\filemon.dll Beijing Rising Information Technology Co., Ltd. Filemon .text,.rdata,.data,.rsrc,.reloc, 00C60000[0002B000] [ M] 114. c:\program files\rising\rav\mailmon.dll Beijing Rising Information Technology Co., Ltd. MailMon .text,.rdata,.data,.rsrc,.reloc, 00CA0000[00012000] [ M] 115. c:\program files\rising\rav\hookweb.dll Beijing Rising Information Technology Co., Ltd. hookweb .text,.rdata,.data,.rsrc,.reloc, 00D20000[00010000] [ M] 116. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01030000[0000E000] [ M] 117. c:\program files\rising\rav\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 01050000[00031000] [ M] 118. c:\program files\rising\rav\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 01190000[0002D000] [ M] 119. c:\program files\rising\rav\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 011C0000[00019000] [ M] 120. c:\program files\rising\rav\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 01330000[00020000] [ M] 121. c:\program files\rising\rav\hooksys.dll Beijing Rising Information Technology Co., Ltd. Hooksys.dll .text,.rdata,.data,.idata,.rsrc,.reloc, 01400000[0001F000] [ M] 101. c:\program files\rising\rav\proccom.dll Beijing Rising Information Technology Co., Ltd. ProcessC Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01420000[00024000] [ M] 122. c:\program files\rising\rav\rscommx2.dll Beijing Rising Information Technology Co., Ltd. RsCommX2 .text,.rdata,.data,.rsrc,.reloc, 01560000[00013000] [ M] 123. c:\program files\rising\rav\hookcont.dll Beijing Rising Information Technology Co., Ltd. HookCont Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 015A0000[00067000] [ M] 124. c:\program files\rising\rav\rsnetsvr.dll Beijing Rising Information Technology Co., Ltd. rsnetsvr .text,.rdata,.data,.rsrc,.reloc, 01960000[00071000] [ M] 125. c:\program files\rising\rav\bacore.dll Beijing Rising Information Technology Co., Ltd. Rising MBA DLL .text,.rdata,.data,.rsrc,.reloc, 01AF0000[0003C000] [ M] 126. c:\program files\rising\rav\recomp.dll Beijing Rising Information Technology Co., Ltd. component manager Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01B40000[00038000] [ M] 127. c:\program files\rising\rav\refs.dll Beijing Rising Information Technology Co., Ltd. filesystem Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01B90000[0002B000] [ M] 128. c:\program files\rising\rav\rsstore.dll Beijing Rising Information Technology Co., Ltd. RSStore .text,.rdata,.data,.rsrc,.reloc, 01BD0000[0000D000] [ M] 129. c:\program files\rising\rav\scanadd.dll Beijing Rising Information Technology Co., Ltd. Rising Scan Service Addon .text,.rdata,.data,.rsrc,.reloc, 01BE0000[00027000] [ M] 130. c:\program files\rising\rav\scanner.dll Beijing Rising Information Technology Co., Ltd. RsScanner Module .text,.rdata,.data,.rsrc,.reloc, 01E20000[00030000] [ M] 131. c:\program files\rising\rav\viruslib.dll Beijing Rising Information Technology Co., Ltd. VirusLib Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01F60000[00029000] [ M] 132. c:\program files\rising\rav\relibldr.dll Beijing Rising Information Technology Co., Ltd. libloader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01460000[000FF000] [ M] 133. c:\program files\rising\rav\extfile.dll Beijing Rising Information Technology Co., Ltd. extfile Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 04200000[00022000] [ M] 134. c:\program files\rising\rav\ffr.dll Beijing Rising Information Technology Co., Ltd. ffr Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 04240000[00021000] [ M] 135. c:\program files\rising\rav\nvfile.dll Beijing Rising Information Technology Co., Ltd. NVFile .text,.rdata,.data,.rsrc,.reloc, 13AB0000[00045000] [ M] 136. c:\program files\rising\rav\scanexec.dll Beijing Rising Information Technology Co., Ltd. ScanExec .text,.rdata,.data,.rsrc,.reloc, 04AE0000[002DD000] [ M] 137. c:\program files\rising\rav\unexe.dll Beijing Rising Information Technology Co., Ltd. UnExe .text,.rdata,.data,.rsrc,.reloc, 04DD0000[000BF000] [ M] 138. c:\program files\rising\rav\scanex.dll Beijing Rising Information Technology Co., Ltd. ScanEx .text,.rdata,.data,.rsrc,.reloc, 05350000[00029000] [ M] 139. c:\program files\rising\rav\pearc.dll Beijing Rising Information Technology Co., Ltd. pearchive Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 027B0000[0002A000] [ M] 140. c:\program files\rising\rav\scanpe.dll Beijing Rising Information Technology Co., Ltd. scanpe Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 03880000[0001B000] [ M] 141. c:\program files\rising\rav\ur000.dat Beijing Rising Information Technology Co., Ltd. Unpack Routine .text,.rdata,.data,.rsrc,.reloc, 03F00000[00035000] [ M] 142. c:\program files\rising\rav\urutils.dll Beijing Rising Information Technology Co., Ltd. urutils Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 03F50000[00085000] [ M] 143. c:\program files\rising\rav\methodex.dll Beijing Rising Information Technology Co., Ltd. MethodEx .text,.rdata,.data,.rsrc,.reloc, 076C0000[000B9000] [ M] 144. c:\program files\rising\rav\revm.dll Beijing Rising Information Technology Co., Ltd. REVM Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 05AD0000[00023000] [ M] 145. c:\program files\rising\rav\pecompd.dll Beijing Rising Information Technology Co., Ltd. PeCompdEx .text,.rdata,.data,.rsrc,.reloc, 07C80000[00034000] [ M] 146. c:\program files\rising\rav\heurex.dll Beijing Rising Information Technology Co., Ltd. HeurEx .text,.rdata,.data,.rsrc,.reloc, 02730000[00023000] [ M] 147. c:\program files\rising\rav\scansct.dll Beijing Rising Information Technology Co., Ltd. ScanSct Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 00000200(512) rfwsrv.exe 00400000[00016000] [AM] 7. c:\program files\rising\rfw\rfwsrv.exe Beijing Rising Information Technology Co., Ltd. rfwsrvex Application .text,.rdata,.data,.rsrc, 10000000[00029000] [ M] 148. c:\program files\rising\rfw\combase.dll Beijing Rising Information Technology Co., Ltd. combase .text,.rdata,.data,.rsrc,.reloc, 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 104. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 105. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 00900000[0001D000] [ M] 149. c:\program files\rising\rfw\monbase.dll Beijing Rising Information Technology Co., Ltd. MonBase .text,.rdata,.data,.rsrc,.reloc, 00930000[00019000] [ M] 150. c:\program files\rising\rfw\moncomm.dll Beijing Rising Information Technology Co., Ltd. MonComm .text,.rdata,.data,.rsrc,.reloc, 00960000[00064000] [ M] 151. c:\program files\rising\rfw\rfwlog.dll Beijing Rising Information Technology Co., Ltd. rfwlog Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 009F0000[0000C000] [ M] 152. c:\program files\rising\rfw\rfwrule.dll Beijing Rising Information Technology Co., Ltd. TODO: .text,.rdata,.data,.rsrc,.reloc, 00A00000[00041000] [ M] 153. c:\program files\rising\rfw\rfwsrv.dll Beijing Rising Information Technology Co., Ltd. Rising Personal FireWall Service .text,.rdata,.data,.rsrc,.reloc, 00A50000[00019000] [ M] 154. c:\program files\rising\rfw\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 00AE0000[0001B000] [ M] 155. c:\program files\rising\rfw\mports.dll Beijing Rising Information Technology Co., Ltd. get ports list .text,.rdata,.data,.rsrc,.reloc, 00B10000[00010000] [ M] 156. c:\program files\rising\rfw\rfwdrvc.dll Beijing Rising Information Technology Co., Ltd. rfwdrvc Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00B30000[00014000] [ M] 157. c:\program files\rising\rfw\rfwdrv.dll Beijing Rising Information Technology Co., Ltd. rfwdrv.dll .text,.rdata,.data,.rsrc,.reloc, 00E60000[00067000] [ M] 158. c:\program files\rising\rfw\rsnetsvr.dll Beijing Rising Information Technology Co., Ltd. rsnetsvr .text,.rdata,.data,.rsrc,.reloc, 012F0000[0002D000] [ M] 159. c:\program files\rising\rfw\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01330000[00014000] [ M] 160. c:\program files\rising\rfw\urlrule.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware UrlRule Library .text,.rdata,.data,.rsrc,.reloc, 01360000[0003C000] [ M] 161. c:\program files\rising\rfw\recomp.dll Beijing Rising Information Technology Co., Ltd. component manager Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 013B0000[00038000] [ M] 162. c:\program files\rising\rfw\refs.dll Beijing Rising Information Technology Co., Ltd. filesystem Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01750000[00030000] [ M] 163. c:\program files\rising\rfw\viruslib.dll Beijing Rising Information Technology Co., Ltd. VirusLib Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01790000[00029000] [ M] 164. c:\program files\rising\rfw\relibldr.dll Beijing Rising Information Technology Co., Ltd. libloader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01800000[0022C000] [ M] 165. c:\program files\rising\rfw\rfwproxy.dll Beijing Rising Information Technology Co., Ltd. rfwproxy Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01D80000[0000E000] [ M] 166. c:\program files\rising\rfw\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 01DA0000[00031000] [ M] 167. c:\program files\rising\rfw\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 01EC0000[00010000] [ M] 168. c:\program files\rising\rfw\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 03510000[0000E000] [ M] 169. c:\program files\rising\rfw\urllib.dll Beijing Rising Information Technology Co., Ltd. Urllib Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 0000025c(604) RUNDLL32.EXE 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 10000000[00017000] [ M] 170. c:\windows\system32\nvmctray.dll NVIDIA Corporation NVIDIA Media Center Library .text,.rdata,.data,.rsrc,.reloc, 00B40000[00078000] [ M] 89. c:\windows\system32\nvapi.dll NVIDIA Corporation NVIDIA NVAPI Library, Version 179.30 .text,.rdata,.data,.idata,.rsrc,.reloc, 00AC0000[00037000] [ M] 88. c:\windows\system32\nvrszhc.dll NVIDIA Corporation NVIDIA Simplified Chinese language resource library .rsrc,.reloc, + 0000027c(636) SynTPEnh.exe 00400000[00157000] [AM] 63. c:\program files\synaptics\syntp\syntpenh.exe Synaptics, Inc. Synaptics TouchPad Enhancements .text,.rdata,.data,.rsrc, 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 10000000[00028000] [ M] 171. c:\windows\system32\syncom.dll Synaptics, Inc. SynCOM .text,.rdata,.data,.rsrc,.reloc, 63010000[00028000] [ M] 172. c:\windows\system32\syntpapi.dll Synaptics, Inc. SynTPAPI .text,.rdata,.data,.rsrc,.reloc, + 000002e4(740) utility.exe 00400000[00443000] [AM] 64. c:\program files\lenovo\energy management\utility.exe Lenovo(Beijing)Limited Lenovo Power Management .text,.rdata,.data,.Shared,.rsrc, 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 72C80000[00008000] [ M] 86. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, 10000000[0000C000] [ M] 173. c:\program files\lenovo\energy management\kbdhook.dll .text,.rdata,.data,.Shared,.reloc, + 00000308(776) smss.exe + 00000328(808) rssafety.exe 00400000[00136000] [AM] 69. c:\program files\rising\rav\rssafety.exe Beijing Rising Information Technology Co., Ltd. Safety3 .text,.rdata,.data,.rsrc, + 00000348(840) ctfmon.exe 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, + 00000398(920) Energy Management.exe 00400000[0013B000] [AM] 65. c:\program files\lenovo\energy management\energy management.exe Lenovo (Beijing) Limited Lenovo Power Management Software .text,.rdata,.data,.rsrc, 10000000[0000C000] [ M] 87. c:\program files\lenovo\energy management\hooklib.dll .text,.rdata,.data,Shared,.reloc, 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, + 000003e8(1000) spoolsv.exe 10000000[0001B000] [AM] 74. c:\windows\system32\bthcrp.dll Broadcom Corporation. bthcrp DLL .text,.rdata,.data,.rsrc,.reloc, 00D70000[00115000] [ M] 174. c:\windows\system32\widcommsdk.dll Broadcom Corporation. WidcommSdk DLL .text,.rdata,.data,.idata,.rsrc,.reloc, 00E90000[000BD000] [ M] 78. c:\windows\system32\wbtapi.dll Broadcom Corporation. WBTApi DLL .text,.rdata,.data,.rsrc,.reloc, 3F420000[0001B000] [ M] 175. c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll Microsoft Corporation Print Filter Pipeline Proxy .text,.orpc,.data,.rsrc,.reloc, + 00000420(1056) rsnetsvr.exe 00400000[00079000] [ M] 176. c:\program files\rising\rav\rsnetsvr.exe Beijing Rising Information Technology Co., Ltd. rsnetsvr .text,.rdata,.data,.rsrc, 10000000[00035000] [ M] 177. c:\program files\rising\rav\ncomm.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 00390000[00019000] [ M] 120. c:\program files\rising\rav\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 009A0000[0002D000] [ M] 119. c:\program files\rising\rav\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 009F0000[00010000] [ M] 116. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 105. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 104. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, + 00000444(1092) wmiprvse.exe 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 10000000[0002D000] [ M] 97. c:\program files\rising\antispyware\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 007D0000[00019000] [ M] 95. c:\program files\rising\antispyware\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, + 00000534(1332) csrss.exe + 00000554(1364) winlogon.exe 72C80000[00008000] [ M] 86. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, + 00000580(1408) services.exe 46040000[0000F000] [ M] 178. c:\windows\apppatch\acadproc.dll Microsoft Corporation Windows Compatibility DLL .text,.data,.rsrc,.reloc, + 0000058c(1420) lsass.exe + 00000644(1604) svchost.exe + 0000064c(1612) RsTray.exe 00400000[00023000] [AM] 66. c:\program files\rising\rav\rstray.exe Beijing Rising Information Technology Co., Ltd. Rising tray framework .text,.rdata,.data,.rsrc, 10000000[00023000] [ M] 179. c:\program files\rising\rav\comserv.dll Beijing Rising Information Technology Co., Ltd. Rising tray common service .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 104. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 105. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 23700000[00023000] [ M] 180. c:\program files\rising\rav\rslang.dll Beijing Rising Information Technology Co., Ltd. Rising Common Function Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00990000[0002D000] [ M] 119. c:\program files\rising\rav\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 009C0000[00019000] [ M] 120. c:\program files\rising\rav\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 23800000[00025000] [ M] 181. c:\program files\rising\rav\rsxml.dll Beijing Rising Information Technology Co., Ltd. RsXML .text,.rdata,.data,.rsrc,.reloc, 00CC0000[00010000] [ M] 116. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00ED0000[00013000] [ M] 182. c:\program files\rising\rav\monstate.dll Beijing Rising Information Technology Co., Ltd. MonState .text,.rdata,.data,.rsrc,.reloc, 00F00000[0000B000] [ M] 183. c:\program files\rising\rav\scanevnt.dll Beijing Rising Information Technology Co., Ltd. Rising Scan Service Event Handler .text,.rdata,.data,.rsrc,.reloc, 26600000[000C3000] [ M] 184. c:\program files\rising\rav\rsguilib.dll Beijing Rising Information Technology Co., Ltd. Rising GUI Library Loader .text,.rdata,.data,.rsrc,.reloc, 7C140000[00103000] [ M] 185. c:\windows\system32\mfc71.dll Microsoft Corporation MFCDLL Shared Library - Retail Version .text,.data,.rsrc,.reloc, 01050000[00017000] [ M] 186. c:\program files\rising\rav\rsconf.dll Beijing Rising Information Technology Co., Ltd. rsconf Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01080000[0000E000] [ M] 117. c:\program files\rising\rav\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 010A0000[00031000] [ M] 118. c:\program files\rising\rav\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 010F0000[00030000] [ M] 187. c:\program files\rising\rav\rspalvd.dll Beijing Rising Information Technology Co., Ltd. rspalvd .text,.rdata,.data,.rsrc,.reloc, 33000000[00025000] [ M] 188. c:\program files\rising\rav\ravbintl.dll Beijing Rising Information Technology Co., Ltd. ravbintl Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01260000[0006C000] [ M] 189. c:\program files\rising\rav\mruleui.dll Beijing Rising Information Technology Co., Ltd. mruleui .text,.rdata,.data,.rsrc,.reloc, 012D0000[0006D000] [ M] 190. c:\program files\rising\rav\montray.dll Beijing Rising Information Technology Co., Ltd. Rising AntiVirus 2009 .text,.rdata,.data,.rsrc,.reloc, 23900000[00040000] [ M] 191. c:\program files\rising\rav\pngdll.dll Beijing Rising Information Technology Co., Ltd. Rising .Png File Loader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 34500000[00020000] [ M] 192. c:\program files\rising\rav\ravitray.dll Beijing Rising Information Technology Co., Ltd. ravitray Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 018F0000[00059000] [ M] 193. c:\program files\rising\rav\scanprxy.dll Beijing Rising Information Technology Co., Ltd. ScanPrxy Module .text,.rdata,.data,.rsrc,.reloc, 01950000[00044000] [ M] 194. c:\program files\rising\rav\rsmginfo.dll Beijing Rising Information Technology Co., Ltd. rsmginfo .text,.rdata,.data,.rsrc,.reloc, + 00000684(1668) svchost.exe + 00000738(1848) RsTray.exe 00400000[00023000] [AM] 67. c:\program files\rising\rfw\rstray.exe Beijing Rising Information Technology Co., Ltd. Rising tray framework .text,.rdata,.data,.rsrc, 10000000[00023000] [ M] 195. c:\program files\rising\rfw\comserv.dll Beijing Rising Information Technology Co., Ltd. Rising tray common service .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 104. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 105. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 23700000[00023000] [ M] 196. c:\program files\rising\rfw\rslang.dll Beijing Rising Information Technology Co., Ltd. Rising Common Function Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00990000[0002D000] [ M] 159. c:\program files\rising\rfw\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 009C0000[00019000] [ M] 154. c:\program files\rising\rfw\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 23800000[00025000] [ M] 197. c:\program files\rising\rfw\rsxml.dll Beijing Rising Information Technology Co., Ltd. RsXML .text,.rdata,.data,.rsrc,.reloc, 00CC0000[00010000] [ M] 168. c:\program files\rising\rfw\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00FD0000[00013000] [ M] 198. c:\program files\rising\rfw\monstate.dll Beijing Rising Information Technology Co., Ltd. MonState .text,.rdata,.data,.rsrc,.reloc, 01000000[0000C000] [ M] 152. c:\program files\rising\rfw\rfwrule.dll Beijing Rising Information Technology Co., Ltd. TODO: .text,.rdata,.data,.rsrc,.reloc, 01010000[00017000] [ M] 199. c:\program files\rising\rfw\rsconf.dll Beijing Rising Information Technology Co., Ltd. rsconf Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01040000[0000E000] [ M] 166. c:\program files\rising\rfw\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 01060000[00031000] [ M] 167. c:\program files\rising\rfw\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 010B0000[00030000] [ M] 200. c:\program files\rising\rfw\rspalvd.dll Beijing Rising Information Technology Co., Ltd. rspalvd .text,.rdata,.data,.rsrc,.reloc, 26600000[000C3000] [ M] 201. c:\program files\rising\rfw\rsguilib.dll Beijing Rising Information Technology Co., Ltd. Rising GUI Library Loader .text,.rdata,.data,.rsrc,.reloc, 7C140000[00103000] [ M] 185. c:\windows\system32\mfc71.dll Microsoft Corporation MFCDLL Shared Library - Retail Version .text,.data,.rsrc,.reloc, 33000000[00025000] [ M] 202. c:\program files\rising\rfw\ravbintl.dll Beijing Rising Information Technology Co., Ltd. ravbintl Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01240000[00067000] [ M] 158. c:\program files\rising\rfw\rsnetsvr.dll Beijing Rising Information Technology Co., Ltd. rsnetsvr .text,.rdata,.data,.rsrc,.reloc, 012B0000[00044000] [ M] 203. c:\program files\rising\rfw\rsmginfo.dll Beijing Rising Information Technology Co., Ltd. rsmginfo .text,.rdata,.data,.rsrc,.reloc, 01310000[0004B000] [ M] 204. c:\program files\rising\rfw\rfwtray.dll Beijing Rising Information Technology Co., Ltd. rfwtray Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 23900000[00040000] [ M] 205. c:\program files\rising\rfw\pngdll.dll Beijing Rising Information Technology Co., Ltd. Rising .Png File Loader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01B80000[00064000] [ M] 151. c:\program files\rising\rfw\rfwlog.dll Beijing Rising Information Technology Co., Ltd. rfwlog Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 00000754(1876) CCENTER.EXE 00400000[0001B000] [AM] 4. c:\program files\rising\rav\ccenter.exe Beijing Rising Information Technology Co., Ltd. CCenter Application .text,.rdata,.data,.rsrc, 10000000[00029000] [ M] 103. c:\program files\rising\rav\combase.dll Beijing Rising Information Technology Co., Ltd. combase .text,.rdata,.data,.rsrc,.reloc, 00680000[00027000] [ M] 206. c:\program files\rising\rav\cnt09.dll Beijing Rising Information Technology Co., Ltd. cnt09 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 009C0000[0001D000] [ M] 207. c:\program files\rising\rav\cnt08.dll Beijing Rising Information Technology Co., Ltd. cnt08 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 00000768(1896) CCENTER.EXE 00400000[0001B000] [AM] 6. c:\program files\rising\rfw\ccenter.exe Beijing Rising Information Technology Co., Ltd. CCenter Application .text,.rdata,.data,.rsrc, 10000000[00029000] [ M] 148. c:\program files\rising\rfw\combase.dll Beijing Rising Information Technology Co., Ltd. combase .text,.rdata,.data,.rsrc,.reloc, 00680000[00027000] [ M] 208. c:\program files\rising\rfw\cnt09.dll Beijing Rising Information Technology Co., Ltd. cnt09 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 00000770(1904) svchost.exe + 00000788(1928) btwdins.exe 00400000[0007F000] [AM] 1. c:\program files\lenovo\bluetooth software\bin\btwdins.exe Broadcom Corporation. Bluetooth Support Server .text,.rdata,.data,.rsrc, 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, + 000007b4(1972) RavTask.exe 00400000[00020000] [AM] 5. c:\program files\rising\rav\ravtask.exe Beijing Rising Information Technology Co., Ltd. ravtask .text,.rdata,.data,.rsrc, 10000000[00010000] [ M] 116. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 105. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 104. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 003E0000[00017000] [ M] 186. c:\program files\rising\rav\rsconf.dll Beijing Rising Information Technology Co., Ltd. rsconf Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00A90000[0000E000] [ M] 117. c:\program files\rising\rav\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 00AB0000[00031000] [ M] 118. c:\program files\rising\rav\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 00C00000[00027000] [ M] 209. c:\program files\rising\rav\rstask.dll Beijing Rising Information Technology Co., Ltd. RsTask Control .text,.rdata,.data,.rsrc,.reloc, 00CC0000[00018000] [ M] 210. c:\program files\rising\rav\rsstub.dll Beijing Rising Information Technology Co., Ltd. rsstub Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 000007cc(1996) RavTask.exe 00400000[00020000] [AM] 8. c:\program files\rising\rfw\ravtask.exe Beijing Rising Information Technology Co., Ltd. ravtask .text,.rdata,.data,.rsrc, 10000000[00010000] [ M] 168. c:\program files\rising\rfw\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 105. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 104. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 003E0000[00017000] [ M] 199. c:\program files\rising\rfw\rsconf.dll Beijing Rising Information Technology Co., Ltd. rsconf Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00A90000[0000E000] [ M] 166. c:\program files\rising\rfw\rsappmgr.dll Beijing Rising Information Technology Co., Ltd. Rising Application Manager .text,.rdata,.data,.rsrc,.reloc, 00AB0000[00031000] [ M] 167. c:\program files\rising\rfw\cfgdll.dll Beijing Rising Information Technology Co., Ltd. CfgDll .text,.rdata,.data,.rsrc,.reloc, 00CE0000[00027000] [ M] 211. c:\program files\rising\rfw\rstask.dll Beijing Rising Information Technology Co., Ltd. RsTask Control .text,.rdata,.data,.rsrc,.reloc, 00DA0000[00018000] [ M] 212. c:\program files\rising\rfw\rsstub.dll Beijing Rising Information Technology Co., Ltd. rsstub Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 00000930(2352) alg.exe 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 10000000[0002D000] [ M] 97. c:\program files\rising\antispyware\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00710000[00019000] [ M] 95. c:\program files\rising\antispyware\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, + 00000a3c(2620) ras.exe 00400000[0000B000] [ M] 213. c:\program files\rising\antispyware\ras.exe Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc, 7C140000[00103000] [ M] 214. c:\program files\rising\antispyware\mfc71.dll Microsoft Corporation MFCDLL Shared Library - Retail Version .text,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 93. c:\program files\rising\antispyware\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 10000000[00047000] [ M] 215. c:\program files\rising\antispyware\kakamgr.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 92. c:\program files\rising\antispyware\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 00A80000[00019000] [ M] 95. c:\program files\rising\antispyware\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 00AB0000[0001F000] [ M] 101. c:\program files\rising\rav\proccom.dll Beijing Rising Information Technology Co., Ltd. ProcessC Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00AD0000[00024000] [ M] 102. c:\program files\rising\antispyware\rscommx2.dll Beijing Rising Information Technology Co., Ltd. RsCommX2 .text,.rdata,.data,.rsrc,.reloc, 00C20000[0002D000] [ M] 97. c:\program files\rising\antispyware\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00D90000[00058000] [ M] 216. c:\program files\rising\antispyware\dbmgr.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 23800000[00022000] [ M] 91. c:\program files\rising\antispyware\rsxml.dll Beijing Rising Information Technology Co., Ltd. RsXML .text,.rdata,.data,.rsrc,.reloc, 00EF0000[0002E000] [ M] 217. c:\program files\rising\antispyware\pweb.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 00F60000[000C2000] [ M] 218. c:\program files\rising\antispyware\pscan.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 01030000[00034000] [ M] 100. c:\program files\rising\antispyware\ncomm.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 01090000[00070000] [ M] 219. c:\program files\rising\antispyware\pset.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 01120000[0002A000] [ M] 220. c:\program files\rising\antispyware\pdefend.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 01150000[000B6000] [ M] 221. c:\program files\rising\antispyware\ptools.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 013A0000[0008D000] [ M] 222. c:\program files\rising\antispyware\psysinfo.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 23900000[00040000] [ M] 98. c:\program files\rising\antispyware\pngdll.dll Beijing Rising Information Technology Co., Ltd. Rising .Png File Loader Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01770000[00013000] [ M] 85. c:\windows\system32\btmmhook.dll Broadcom Corporation. Multimedia Keys Hook DLL .text,.rdata,.data,.shared,.rsrc,.reloc, 034D0000[00017000] [ M] 223. c:\program files\rising\rav\ravscrch.dll Beijing Rising Information Technology Co., Ltd. webmon module .text,.rdata,.data,.rsrc,.reloc, 04210000[004A3000] [ M] 224. c:\windows\system32\macromed\flash\flash10c.ocx Adobe Systems, Inc. Adobe Flash Player 10.0 r32 .text,.rdata,.data,.rodata,.rsrc,.reloc, 72C80000[00008000] [ M] 86. c:\windows\system32\msacm32.drv Microsoft Corporation Microsoft Sound Mapper .text,.data,.rsrc,.reloc, + 00000aa0(2720) knownsvr.exe 00400000[00072000] [ M] 225. c:\program files\rising\antispyware\knownsvr.exe Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc, 10000000[00034000] [ M] 100. c:\program files\rising\antispyware\ncomm.dll Beijing Rising Information Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc,.reloc, 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 009A0000[0002D000] [ M] 97. c:\program files\rising\antispyware\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 009D0000[00019000] [ M] 95. c:\program files\rising\antispyware\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, + 00000ad4(2772) svchost.exe + 00000b18(2840) nvsvc32.exe 00400000[0002F000] [AM] 2. c:\windows\system32\nvsvc32.exe NVIDIA Corporation NVIDIA Driver Helper Service, Version 179.30 .text,.rdata,.data,.rsrc, 60000000[0009B000] [AM] 73. c:\windows\system32\kmon.dll Beijing Rising Information Technology Co., Ltd. KaKa Monitors .text,.rdata,.data,.rsrc,.reloc, 10000000[0002D000] [ M] 97. c:\program files\rising\antispyware\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 003E0000[00019000] [ M] 95. c:\program files\rising\antispyware\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, 017C0000[00078000] [ M] 89. c:\windows\system32\nvapi.dll NVIDIA Corporation NVIDIA NVAPI Library, Version 179.30 .text,.rdata,.data,.idata,.rsrc,.reloc, + 00000c60(3168) ScanFrm.exe 00400000[0000B000] [AM] 10. c:\program files\rising\rav\scanfrm.exe Beijing Rising Information Technology Co., Ltd. Rising Scan Service Framework .text,.rdata,.data,.rsrc, 7C3A0000[0007B000] [ M] 104. c:\windows\system32\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 105. c:\windows\system32\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 10000000[00029000] [ M] 103. c:\program files\rising\rav\combase.dll Beijing Rising Information Technology Co., Ltd. combase .text,.rdata,.data,.rsrc,.reloc, 003E0000[00019000] [ M] 106. c:\program files\rising\rav\moncomm.dll Beijing Rising Information Technology Co., Ltd. MonComm .text,.rdata,.data,.rsrc,.reloc, 00900000[00008000] [ M] 226. c:\program files\rising\rav\scansrvp.dll Beijing Rising Information Technology Co., Ltd. ScanSrvP Module .text,.rdata,.data,.rsrc,.reloc, 00910000[00010000] [ M] 116. c:\program files\rising\rav\proccomm.dll Beijing Rising Information Technology Co., Ltd. ProcComm Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 00B20000[0000E000] [ M] 227. c:\program files\rising\rav\scansrv.dll Beijing Rising Information Technology Co., Ltd. ScanSrv Module .text,.rdata,.data,.rsrc,.reloc, 01130000[0002D000] [ M] 119. c:\program files\rising\rav\comx3.dll Beijing Rising Information Technology Co., Ltd. comx3 Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, 01160000[00019000] [ M] 120. c:\program files\rising\rav\syslay.dll Beijing Rising Information Technology Co., Ltd. Syslay .text,.rdata,.data,.rsrc,.reloc, + 00000c68(3176) svchost.exe