[CODE] 2010-06-08,13:04:10 SysLog Scanner 3.1 - build 20100518 Arswp (http://www.arswp.com) Windows XP Professional Service Pack 3 (build 2600) ================================================================ 注册项 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [AMD, 1, 1, 3, 0] <"E:\杀毒\Rising\Rav\RsTray.exe" -system> [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.10] <"E:\杀毒\卡卡\rstray.exe" /startup> [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.29] <"E:\杀毒\瑞星防火墙\Rising\RFW\RsTray.exe" -system> [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.11] <"C:\Program Files\Common Files\uusee\UUSeeMediaCenter.exe"> [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify] [(Verified)ATI Technologies Inc., 6.14.10.4176] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components] <{44BBA842-CC51-11CF-AAFA-00AA00B6015B}> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339) | (Verified)N/A] <{5945c046-1e7d-11d1-bc44-00c04fd912be}> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339) | (Verified)N/A] <{6BF52A52-394A-11d3-B153-00C04F79FAA6}> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105) | (Verified)Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339) | (Verified)N/A] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt] <&U使用米人下载并收藏> [N/A] <上传到淘江湖相册> [N/A] <使用迅雷下载> [N/A] <使用迅雷下载全部链接> [N/A] <添加为阿里旺旺表情> [N/A] <添加到QQ表情> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\MenuExt] <添加到QQ表情> [N/A] ================================================================ 启动组 ================================================================ 任务计划 [SogouImeMgr.job] <"C:\PROGRA~1\SOGOUI~1\500~1.393\SGTool.exe" --appid=pinyinrepair /S> [(Verified)Sogou.com Inc., 5.0.0.3935] ================================================================ 组件 -------------------------------- UrlSeachHook [PIPI Link Helper] <{1E315374-71A5-471A-B683-4C4ADB5C588B}> [(Verified)PIPI Tech., 1, 4, 0, 5] -------------------------------- Shell Extension [Display Panning CPL Extension] <{42071714-76d4-11d1-8b24-00a0c9068ff3}> [] [HyperTerminal Icon Ext] <{88895560-9AA2-1069-930E-00AA0030EBC8}> [(Verified)Hilgraeve, Inc., 5.1.2600.0] [任务栏和「开始」菜单] <{0DF44EAA-FF21-4412-828E-260A8728E7F1}> <> [] [WinRAR shell extension] <{B41DB860-8EE4-11D2-9906-E49FADC173CA}> [N/A] [RISING] <{1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D}> [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [YouKuDesktop Shell Extension] <{20CE0080-7137-41E6-B545-2EAEEEAB6BC9}> [(Verified)www.youku.com, 1.2.7.1700] -------------------------------- Context Menu [iku] <{20CE0080-7137-41E6-B545-2EAEEEAB6BC9}> [(Verified)www.youku.com, 1.2.7.1700] [NamipanExt] <{5696473A-FC50-4CA7-B87A-AF60201B04DD}> [N/A] [OpenFolder] <{0DE1378D-F811-40E6-B60A-1CC56F57D3E9}> [(Verified)Alibaba software (Shanghai) Corporation., 1.0.0.1] [RisingKaKaExt] <{356B11FA-929F-4eb7-8B26-D7E3184DDD16}> [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.4] [RisingRavExt] <{1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D}> [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [WinRAR] <{B41DB860-8EE4-11D2-9906-E49FADC173CA}> [N/A] -------------------------------- BrowserHelperObject [ThunderAtOnce Class] <{01443AEC-0FD1-40fd-9C87-E93D1494C233}> [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29] [PIPI Link Helper] <{1A3440C6-F123-4CAB-84EE-C814E1AE0D8F}> [(Verified)PIPI Tech., 1, 4, 0, 5] [Thunder Browser Helper] <{889D2FEB-5411-4565-8998-1DD2C5261283}> [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96] [卡卡上网安全助手] <{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}> [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 28] [ICBC Anti-Phishing class] <{BB4491A2-D11A-4c6b-91C0-B53246A3122B}> [(Verified)中国工商银行, 1.0.6.29] -------------------------------- ActiveX Extension [ThunderAtOnce Class] <{01443AEC-0FD1-40FD-9C87-E93D1494C233}> [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29] [PIPI Link Helper] <{1A3440C6-F123-4CAB-84EE-C814E1AE0D8F}> [(Verified)PIPI Tech., 1, 4, 0, 5] [WWPicUploadCtrl Class] <{1D63232D-4F15-4A42-890D-EE617AA1537D}> [Alibaba software (Shanghai) Corporation, 1.0.0.1] [InstallHelper Class] <{1DABF8D5-8430-4985-9B7F-A30E53D709B3}> [(Verified)Tencent, 8.13.4808.0] [iTrusPTA Class] <{1E0DFFCF-27FF-4574-849B-55007349FEDA}> [(Verified)Copyright 2001, 2, 5, 1, 509] [QQCPHelper.CPAdder] <{23752AA7-CAD7-40C2-99EE-7A9CD3C20C6D}> [(Verified)Tencent, 1, 26, 760, 0] [Zyzzyva] <{30FA9641-9CFE-4D71-A3AA-DF8B6FA02FCC}> <> [] [GDGetTokenInfo Class] <{3AA9CF07-DF20-48FF-98BE-DED276E40146}> [Copyright 2007, 1, 0, 0, 2] [Thunder Agent Class] <{485463B7-8FB2-4B3B-B29B-8B919B0EACCE}> [(Verified)Thunder Networking Technologies,LTD, 5, 0, 4, 23] [EditCtrl Class] <{488A4255-3236-44B3-8F27-FA1AECAA8844}> [(Verified)Copyright 2008, 2, 1, 2, 5] [SkyDrive.Plugin.1] <{4990272A-0655-4D80-90A7-C18D0FF7A4A9}> [Copyright 1998, 1, 0, 1, 0] [WangWangX Class] <{5D09DD40-CDC4-4C56-B615-0D1E3B357C2B}> [(Verified)Alibaba software (Shanghai) Corporation., 1.0.0.1] [CAntiVersion Object] <{5EFE0AA6-B28B-41BD-9B3C-02AA3F79EA9A}> [(Verified)中国工商银行, 1.0.5.27] [InfoSecNetSign Class] <{62B938C4-4190-4F37-8CF0-A92B0A91CC77}> [Infosec Technologies Co., Ltd., 1, 2, 2, 5] [AxInputControl Class] <{73E4740C-08EB-4133-896B-8D0A7C9EE3CD}> [Copyright 2003, 1, 0, 0, 12] [XDownloaddManager Class] <{802F530B-A8F6-4631-AE49-6BACAAC6373E}> [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96] [AxSubmitControl Class] <{8D9E0B29-563C-4226-86C1-5FF2AE77E1D2}> [Copyright 2003, 1, 0, 0, 5] [SSOForPTLogin Class] <{8FC1EE75-72B3-4A23-B987-2B1C4C8A611B}> [(Verified)(c) Tencent Co. Ltd. All rights reserved., 1, 0, 1, 4] [卡卡上网安全助手] <{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}> [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 28] [PIPIWebPlayer Control] <{A74BF134-5213-46B5-AF36-CE1888315DC7}> [皮皮科技, 1.2.0.2] [ICBC Anti-Phishing class] <{BB4491A2-D11A-4C6B-91C0-B53246A3122B}> [(Verified)中国工商银行, 1.0.6.29] [QQPlayerCtrl Class] <{CD108273-D434-43E6-AA90-1469F97EB398}> [(Verified)Tencent, 3.3.205.112] [Shockwave Flash Object] <{D27CDB6E-AE6D-11CF-96B8-444553540000}> [(Verified)Adobe Systems, Inc., 10,0,45,2] [KuAgent2 Class] <{D928E486-C465-4A64-976D-F3B24BBECC69}> [(Verified)www.youku.com, 1.6.0.0] [TimwpDll.TimwpCheck] <{ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4}> [(Verified)Tencent, 1, 26, 760, 0] [webmod Class] <{FEE3C8C5-9BEA-4079-AB36-63ECABFC7392}> [(Verified)Alipay.com Co.,Ltd, 1, 0, 0, 4] ================================================================ 服务 [HID Input Service / HidServ][Stopped/Auto Start] <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\hidserv.dll"> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [Ati HotKey Poller / Ati HotKey Poller][Stopped/Disabled] <%SystemRoot%\system32\Ati2evxx.exe> [(Verified)ATI Technologies Inc., 6.14.10.4190] [Contrl Center of Storm Media / ccosm][Stopped/Disabled] [(Verified)北京暴风网际科技有限公司, 3, 8, 3, 15] [ICBC Daemon Service / ICBC Daemon Service][Running/Auto Start] [(Verified)N/A] [Rav Service / RsRavMon][Running/Auto Start] <"E:\杀毒\Rising\Rav\RavMonD.exe"> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] [RFW Service / RsRFWMon][Running/Auto Start] <"E:\杀毒\瑞星防火墙\Rising\RFW\RavMonD.exe"> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] ================================================================ 驱动 [AmdK8 Compatible Device / AmdK8][Stopped/Manual Start] [Advanced Micro Devices, 1.3.2 (dnsrv(wmbla).060701-2226)] [Netgroup Packet Filter / NPF][Stopped/Manual Start] [Politecnico di Torino, 3, 0, 0, 18] [TCP/IP Protocol Driver / Tcpip][Running/System Start] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_qfe.080620-1309)] [Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc][Stopped/Manual Start] [(Verified)Intel Corporation, 5.10.3523 built by: WinDDK] [AMD Low Level Device Driver / AmdLLD][Running/Manual Start] [(Verified)AMD, Inc., 1.0.1.0] [ati2mtag / ati2mtag][Running/Manual Start] [(Verified)ATI Technologies Inc., 6.14.10.6783] [Dritek Keyboard Filter Driver / DKbFltr][Running/Manual Start] [(Verified)Dritek System Inc., 1, 2, 1, 420] [VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS][Stopped/Manual Start] [(Verified)VIA Technologies, Inc. , 2.66] [Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start] [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK] [hookcont / hookcont][Running/System Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 24, 0, 0, 5] [hooksys / hooksys][Running/System Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 24, 0, 0, 31] [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start] [(Verified)Realtek Semiconductor Corp., 5.10.0.5574 built by: WinDDK] [nv / nv][Stopped/Manual Start] [(Verified)NVIDIA Corporation, 6.14.10.5673] [NVIDIA nForce 10/100 Mbps Ethernet / NVENETFD][Running/Manual Start] [(Verified)NVIDIA Corporation, 1.00.02.06780] [NVIDIA Network Bus Enumerator / nvnetbus][Running/Manual Start] [(Verified)NVIDIA Corporation, 1.00.01.06780] [Direct Parallel Link Driver / Ptilink][Running/Manual Start] [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148)] [Rising RfwARP Driver / RFWARP][Running/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [Rising RfwBase Driver / RfwBase9][Running/Manual Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.3] [rfwtdi / rfwtdi][Running/Auto Start] <\??\E:\杀毒\瑞星防火墙\Rising\RFW\rfwtdi.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] [rsassist / rsassist][Stopped/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 4] [rsfwdrv / rsfwdrv][Running/System Start] <\??\E:\杀毒\瑞星防火墙\Rising\RFW\rsfwdrv.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.37] [RsNTGDI / RsNTGDI][Running/Boot Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.0] [RsProtect / RsProtect][Running/System Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 24, 0, 0, 5] [Service for HDMI / RTHDMIAzAudService][Running/Manual Start] [(Verified)Realtek Semiconductor Corp., 5.10.0.5413 built by: WinDDK] [Secdrv / Secdrv][Stopped/Manual Start] [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086] [Sony USB Filter Driver (SONYPVU1) / SONYPVU1][Stopped/Manual Start] [(Verified)Sony Corporation, 1.3.0526.0 (XPClient.010817-1148)] [TesDrvPt / TesDrvPt][Stopped/Manual Start] <\??\C:\WINDOWS\system32\TesDrvPt.sys> [(Verified)TENCENT, 1.0.5 built by: WinDDK] [TesSafe / TesSafe][Stopped/Manual Start] <\??\C:\WINDOWS\system32\TesSafe.sys> [(Verified)TENCENT, 1.11.3.3182] ================================================================ 活动进程 [PID: 964 / SYSTEM] \??\C:\WINDOWS\system32\winlogon.exe [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\WINDOWS\system32\Ati2evxx.dll [(Verified)ATI Technologies Inc., 6.14.10.4176] [PID: 1020 / SYSTEM] C:\WINDOWS\system32\lsass.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1184 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1240 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1420 / SYSTEM] C:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\System32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] c:\windows\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159] [PID: 1580 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1736 / LOCAL SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 1872 / SYSTEM] C:\WINDOWS\system32\spoolsv.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 244 / Administrator] C:\WINDOWS\Explorer.EXE [(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\卡卡\RegCall.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 6] C:\WINDOWS\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159] C:\Program Files\WinRAR\rarext.dll [N/A] C:\WINDOWS\system32\browselc.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29] C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96] C:\WINDOWS\system32\RavExt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] C:\WINDOWS\system32\kakaext.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.4] C:\WINDOWS\system32\shdoclc.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] C:\WINDOWS\system32\MSISIP.DLL [Microsoft Corporation, 4.5.6001.22159 (vistasp1_ldr.080415-1732)] [PID: 688 / Administrator] E:\杀毒\卡卡\rstray.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.29] E:\杀毒\卡卡\rsmginfo.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\卡卡\RegCall.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 6] E:\杀毒\卡卡\RsXML.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] E:\杀毒\卡卡\ComServ.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.33] E:\杀毒\卡卡\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6] E:\杀毒\卡卡\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0] E:\杀毒\卡卡\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4] E:\杀毒\卡卡\rscommon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.1.1] E:\杀毒\卡卡\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37] E:\杀毒\卡卡\rsxml1.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2] E:\杀毒\卡卡\pngdll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5] E:\杀毒\卡卡\runiep.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.65] E:\杀毒\卡卡\NComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.11] E:\杀毒\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] E:\杀毒\卡卡\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] [PID: 736 / Administrator] C:\WINDOWS\system32\ctfmon.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\卡卡\RegCall.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 6] [PID: 568 / LOCAL SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 152 / SYSTEM] F:\工商钓鱼\IcbcDaemon.exe [(Verified)N/A] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 2688 / LOCAL SERVICE] C:\WINDOWS\System32\alg.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)] C:\WINDOWS\System32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [PID: 3108 / Administrator] C:\WINDOWS\system32\conime.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\卡卡\RegCall.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 6] [PID: 3264 / SYSTEM] E:\杀毒\瑞星防火墙\Rising\RFW\RavMonD.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] E:\杀毒\瑞星防火墙\Rising\RFW\combase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\瑞星防火墙\Rising\RFW\cnt09.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] E:\杀毒\瑞星防火墙\Rising\RFW\MonBase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\瑞星防火墙\Rising\RFW\MonComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 9] E:\杀毒\瑞星防火墙\Rising\RFW\rfwlog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.15] E:\杀毒\瑞星防火墙\Rising\RFW\rfwrule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4] E:\杀毒\瑞星防火墙\Rising\RFW\rfwsrv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.2] E:\杀毒\瑞星防火墙\Rising\RFW\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6] E:\杀毒\瑞星防火墙\Rising\RFW\mPorts.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.0] E:\杀毒\瑞星防火墙\Rising\RFW\rfwdrvc.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1] E:\杀毒\瑞星防火墙\Rising\RFW\Rfwdrv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.5] E:\杀毒\瑞星防火墙\Rising\RFW\RfwArp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.5] E:\杀毒\瑞星防火墙\Rising\RFW\rsnetsvr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\瑞星防火墙\Rising\RFW\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37] E:\杀毒\瑞星防火墙\Rising\RFW\urlrule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] E:\杀毒\瑞星防火墙\Rising\RFW\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] E:\杀毒\瑞星防火墙\Rising\RFW\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\瑞星防火墙\Rising\RFW\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\瑞星防火墙\Rising\RFW\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\瑞星防火墙\Rising\RFW\rfwproxy.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 73] E:\杀毒\瑞星防火墙\Rising\RFW\rslang.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] E:\杀毒\瑞星防火墙\Rising\RFW\rsindent.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 11] E:\杀毒\瑞星防火墙\Rising\RFW\taskplug.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10] E:\杀毒\瑞星防火墙\Rising\RFW\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.0] E:\杀毒\瑞星防火墙\Rising\RFW\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.0] E:\杀毒\瑞星防火墙\Rising\RFW\proccomm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] E:\杀毒\瑞星防火墙\Rising\RFW\NComm2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\瑞星防火墙\Rising\RFW\rstask.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] E:\杀毒\瑞星防火墙\Rising\RFW\rsstub.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] E:\杀毒\瑞星防火墙\Rising\RFW\urllib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] [PID: 3496 / Administrator] E:\杀毒\瑞星防火墙\Rising\RFW\RsTray.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.11] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\瑞星防火墙\Rising\RFW\comserv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.15] E:\杀毒\瑞星防火墙\Rising\RFW\rslang.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] E:\杀毒\瑞星防火墙\Rising\RFW\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37] E:\杀毒\瑞星防火墙\Rising\RFW\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6] E:\杀毒\瑞星防火墙\Rising\RFW\ProcComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] E:\杀毒\瑞星防火墙\Rising\RFW\rsxml.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] E:\杀毒\瑞星防火墙\Rising\RFW\MonState.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] E:\杀毒\瑞星防火墙\Rising\RFW\rfwrule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4] E:\杀毒\瑞星防火墙\Rising\RFW\rsconf.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] E:\杀毒\瑞星防火墙\Rising\RFW\rspalvd.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.7] E:\杀毒\瑞星防火墙\Rising\RFW\rsguilib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 57] E:\杀毒\瑞星防火墙\Rising\RFW\ravbintl.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 22] E:\杀毒\瑞星防火墙\Rising\RFW\rsnetsvr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\瑞星防火墙\Rising\RFW\rsmginfo.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] E:\杀毒\瑞星防火墙\Rising\RFW\rfwtray.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 39] E:\杀毒\瑞星防火墙\Rising\RFW\ravppops.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 21] E:\杀毒\瑞星防火墙\Rising\RFW\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.0] E:\杀毒\瑞星防火墙\Rising\RFW\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.0] E:\杀毒\瑞星防火墙\Rising\RFW\PngDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] E:\杀毒\瑞星防火墙\Rising\RFW\rfwlog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.15] [PID: 456 / SYSTEM] E:\杀毒\Rising\Rav\RavMonD.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] E:\杀毒\Rising\Rav\combase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\Rising\Rav\cnt09.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] E:\杀毒\Rising\Rav\moncomm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 9] E:\杀毒\Rising\Rav\MonBase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\Rising\Rav\Rslog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.41] E:\杀毒\Rising\Rav\mondrv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] E:\杀毒\Rising\Rav\defmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 46] E:\杀毒\Rising\Rav\moncom08.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] E:\杀毒\Rising\Rav\MonRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10] E:\杀毒\Rising\Rav\FileMon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 29] E:\杀毒\Rising\Rav\MailMon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 22] E:\杀毒\Rising\Rav\HookWeb.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 12] E:\杀毒\Rising\Rav\rsindent.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 11] E:\杀毒\Rising\Rav\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6] E:\杀毒\Rising\Rav\taskplug.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10] E:\杀毒\Rising\Rav\scansrvp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.7] E:\杀毒\Rising\Rav\cnt08.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] E:\杀毒\Rising\Rav\proccomm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] E:\杀毒\Rising\Rav\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.0] E:\杀毒\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.0] E:\杀毒\Rising\Rav\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37] E:\杀毒\Rising\Rav\Hooksys.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 24, 0, 0, 3] E:\杀毒\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] E:\杀毒\Rising\Rav\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20] E:\杀毒\Rising\Rav\HookCont.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 24, 0, 0, 1] E:\杀毒\Rising\Rav\BACore.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 36] E:\杀毒\Rising\Rav\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] E:\杀毒\Rising\Rav\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\Rising\Rav\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\Rising\Rav\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\Rising\Rav\rsnetsvr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\Rising\Rav\bawhite.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\Rising\Rav\RSStore.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] E:\杀毒\Rising\Rav\Scanner.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.22] E:\杀毒\Rising\Rav\ScanAdd.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.4] E:\杀毒\Rising\Rav\rstask.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] E:\杀毒\Rising\Rav\rsstub.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] E:\杀毒\Rising\Rav\ScanSrv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.3] E:\杀毒\Rising\Rav\scanpe.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 10] E:\杀毒\Rising\Rav\pearc.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] E:\杀毒\Rising\Rav\ur000.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] E:\杀毒\Rising\Rav\urutils.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] E:\杀毒\Rising\Rav\revm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] E:\杀毒\Rising\Rav\ffr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] E:\杀毒\Rising\Rav\nvfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] E:\杀毒\Rising\Rav\scanexec.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] E:\杀毒\Rising\Rav\unexe.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] E:\杀毒\Rising\Rav\scanex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 69] E:\杀毒\Rising\Rav\extmail.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] E:\杀毒\Rising\Rav\ScanRavT.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.4] E:\杀毒\Rising\Rav\ScanBT.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.19] E:\杀毒\Rising\Rav\ScanStub.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] E:\杀毒\Rising\Rav\scantj.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] E:\杀毒\Rising\Rav\methodex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3] E:\杀毒\Rising\Rav\heurex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 16] E:\杀毒\Rising\Rav\pecompd.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5] E:\杀毒\Rising\Rav\scansct.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] [PID: 3124 / Administrator] E:\杀毒\Rising\Rav\RsTray.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.10] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\Rising\Rav\comserv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.15] E:\杀毒\Rising\Rav\rslang.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 1] E:\杀毒\Rising\Rav\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37] E:\杀毒\Rising\Rav\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6] E:\杀毒\Rising\Rav\ProcComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] E:\杀毒\Rising\Rav\rsxml.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] E:\杀毒\Rising\Rav\MonState.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 2] E:\杀毒\Rising\Rav\ScanEvnt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.3] E:\杀毒\Rising\Rav\rsguilib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 57] E:\杀毒\Rising\Rav\rsconf.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.1] E:\杀毒\Rising\Rav\rspalvd.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.7] E:\杀毒\Rising\Rav\ravbintl.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 22] E:\杀毒\Rising\Rav\mruleui.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 7] E:\杀毒\Rising\Rav\MonTray.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.74] E:\杀毒\Rising\Rav\RavITray.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] E:\杀毒\Rising\Rav\rsmginfo.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 4] E:\杀毒\Rising\Rav\scanleak.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6] E:\杀毒\Rising\Rav\ravppops.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 21] E:\杀毒\Rising\Rav\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.0] E:\杀毒\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.0] E:\杀毒\Rising\Rav\PngDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4] E:\杀毒\Rising\Rav\ScanPrxy.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22.0.0.4] [PID: 3664 / Administrator] E:\杀毒\Rising\Rav\rssafety.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 4.0.0.38] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\卡卡\RegCall.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 6] [PID: 2272 / Administrator] E:\windows清理助手\arswp\ArSwp3.exe [(Verified)Windows 清理助手, 3.1.0.0522] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\卡卡\RegCall.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 6] C:\WINDOWS\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159] E:\杀毒\Rising\Rav\RavScrCh.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4] C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx [(Verified)Adobe Systems, Inc., 10,0,45,2] [PID: 3832 / Administrator] C:\Program Files\Internet Explorer\iexplore.exe [(Verified)Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\卡卡\RegCall.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 6] C:\WINDOWS\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159] [PID: 916 / Administrator] C:\Program Files\Internet Explorer\iexplore.exe [(Verified)Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] E:\杀毒\卡卡\RegCall.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 6] C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29] D:\pipi\JfCheck.dll [(Verified)PIPI Tech., 1, 4, 0, 5] C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96] C:\WINDOWS\system32\UrlFilter.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 28] E:\杀毒\卡卡\UrlRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1.0.0.21] F:\工商钓鱼\Icbc_AntiPhishing.dll [(Verified)中国工商银行, 1.0.6.29] C:\WINDOWS\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159] F:\工商钓鱼\KeyMonitor.dll [(Verified)N/A] E:\杀毒\Rising\Rav\RavScrCh.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 17] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4] [PID: 2660 / Administrator] E:\杀毒\卡卡\knownsvr.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.14] E:\杀毒\卡卡\NComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.11] E:\杀毒\卡卡\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37] E:\杀毒\卡卡\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6] ================================================================ 文件关联 ================================================================ Autorun.Inf ================================================================ Winsock提供者 ================================================================ 隐藏进程 ================================================================ 可疑文件 ================================================================ HOSTS 127.0.0.1 localhost [/CODE]