[CODE] 2008-11-15,12:34:04 SysLog Scanner 1.0 - build 20080726 Arswp (http://www.arswp.com) Windows XP Professional Service Pack 3 (build 2600) - Administrators ======================================== 注册项 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [(Verified)Realtek Semiconductor Corp., 2.1.2.9, C:2008-01-07 10:40 M:2007-03-21 14:49] <; RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2002-01-03 05:31 M:2008-04-13 19:14|NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] <"C:\Program Files\Rising\Rav\RavTask.exe" -system> [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.24, C:2008-04-27 17:22 M:2008-07-26 20:24] <"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.1.70, C:2008-04-27 17:24 M:2008-07-25 18:25] <; ALCMTR.EXE> [N/A, C:1601-01-01 08:00 M:1601-01-01 08:00] <; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32> [] <; RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2002-01-03 05:31 M:2008-04-13 19:14|NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] <; nwiz.exe /install> [N/A, C:2007-02-06 19:39 M:2007-02-06 19:39] <; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32> [] <"G:\新建文件夹 (4)\rstray.exe" /startup> [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.16, C:2008-07-21 21:45 M:2008-09-11 23:37] <%systemroot%\system32\dumprep 0 -k> [N/A, C:1601-01-01 08:00 M:1601-01-01 08:00] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-07-21 21:45 M:2008-11-08 03:16] [HKEY_CURRENT_USER\Control Panel\Desktop] [Digital Minds Software, 1.0, C:2006-12-03 21:55 M:2006-12-03 21:55] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载] <> [N/A, C:2007-02-28 14:59 M:2007-02-28 14:59] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载全部链接] <> [N/A, C:2007-02-10 14:41 M:2007-02-10 14:41] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\江汉地区便民 供求 招聘 出租 进入江汉百事通] <> [N/A, C:2006-01-04 00:21 M:2006-01-04 00:21] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到QQ表情] <> [N/A, C:2008-09-17 04:08 M:2008-09-17 04:08] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2002-01-03 05:31 M:2008-04-13 19:14|(Verified)Microsoft Corporation, 7.00.6000.16735 (vista_gdr.080820-1506), C:2002-01-03 05:30 M:2008-08-26 15:57|(Verified)N/A, C:2002-01-03 05:30 M:2004-08-17 20:00] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2002-01-03 05:31 M:2008-04-13 19:14|(Verified)Microsoft Corporation, 7.00.6000.16735 (vista_gdr.080820-1506), C:2002-01-03 05:30 M:2008-08-26 15:57|(Verified)N/A, C:2008-06-24 12:49 M:2008-04-13 18:57] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2002-01-03 05:31 M:2008-04-13 19:14|(Verified)Microsoft Corporation, 7.00.6000.16735 (vista_gdr.080820-1506), C:2002-01-03 05:30 M:2008-08-26 15:57|(Verified)N/A, C:2002-01-03 05:31 M:2008-04-13 18:57] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{0A155D3C-68E2-4215-A47A-E800A446447A}] <浩方对战平台> [(Verified)上海浩方在线信息技术有限公司, 5.1.0.1, C:2008-10-29 21:19 M:2008-10-29 21:19] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{1FBA04EE-3024-11D2-8F1F-0000F87ABD16}] <江汉伴侣> [] ======================================== 启动项 [腾讯QQ] "D:\Tencent\QQ.exe" > [(Verified)TENCENT, 8,0,1249,1853, C:2008-10-28 15:39 M:2008-10-28 15:39] ======================================== 计划任务 [SogouImeMgr.job] "D:\搜狗\SOGOUI~1\360~1.165\PinyinRepair.exe" /S > [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] ======================================== 组件 Shell Extension [Display Panning CPL Extension] {42071714-76d4-11d1-8b24-00a0c9068ff3} [] [WinRAR shell extension] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2002-01-03 06:10 M:2007-05-30 08:28] [NvCpl DesktopContext Class] {A70C977A-BF00-412C-90B7-034C51DA2439} [NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] [Play on my TV helper] {FFB699E0-306A-11d3-8BD1-00104B6F7516} [NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] [Desktop Explorer] {1CDB2949-8F65-4355-8456-263E7C208A5D} [N/A, C:2007-02-06 19:39 M:2007-02-06 19:39] [Desktop Explorer Menu] {1E9B04FB-F9E5-4718-997B-B8DA88302A47} [N/A, C:2007-02-06 19:39 M:2007-02-06 19:39] [nView Desktop Context Menu] {1E9B04FB-F9E5-4718-997B-B8DA88302A48} [N/A, C:2007-02-06 19:39 M:2007-02-06 19:39] [Shell Extensions for RealOne Player] {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} [(Verified)RealNetworks, Inc., 1.0.2.44, C:2008-01-07 10:49 M:2008-07-28 19:15] [RISING] {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-04-27 17:22 M:2008-07-28 19:03] ActiveX Extension [ThunderServer.WebThunder] {1DE5794D-B609-4A3E-9E40-22594D5BEAAC} [版权所有 (C) 2007, 1, 0, 2, 3, C:2007-06-19 08:53 M:2007-06-19 08:53] [PowerPlr Control] {2354A44B-3CEB-4829-9940-545B03103538} [(Verified)创智数码科技股份有限公司, 3, 7, 0, 6, C:2008-10-29 13:39 M:2007-11-28 21:13] [RealPlayer RAM Download Handler] {2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93} [(Verified)RealNetworks, Inc., 6.0.10.50, C:2006-10-18 23:05 M:2008-07-28 19:15] [Thunder Agent Class] {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} [Thunder Networking Technologies,LTD, 5, 0, 3, 20, C:2002-01-03 06:08 M:2007-04-27 18:10] [VaCom.Application] {51E88884-1306-4444-B22D-C34119E44232} [(Verified)土豆网, 1.11, C:2008-07-06 15:20 M:2008-07-06 15:20] [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] [Microsoft Silverlight] {DFEAF541-F3E1-4C24-ACAC-99C30715084A} [(Verified) Microsoft Corporation, 2.0.31005.0, C:2008-10-04 21:48 M:2008-10-04 21:48] [PlayerCtrl Class] {E05BC2A3-9A46-4A32-80C9-023A473F5B23} [(Verified)深圳腾讯科技, 3, 1, 163, 202, C:2007-09-08 10:20 M:2007-09-08 10:20] [QQIEHelper.QQRightClick] {E654770F-10E4-47BC-A309-4CAD96A096E6} [版权所有 (C) 2007, 1, 0, 2, 3, C:2007-06-19 08:53 M:2007-06-19 08:53] [IERPCtl Class] {FDC7A535-4070-4B92-A0EA-D9994BCC0DC5} [(Verified)RealNetworks, Inc., 1.0.2.45, C:2008-01-07 10:49 M:2008-07-28 19:15] Context Menu [RisingRavExt] {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-04-27 17:22 M:2008-07-28 19:03] [WinRAR] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2002-01-03 06:10 M:2007-05-30 08:28] ======================================== 服务 [Human Interface Device Access / HidServ][Stopped/Disabled] <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\hidserv.dll"> [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2002-01-03 05:31 M:2008-04-13 19:14] [InstallDriver Table Manager / IDriverT][Stopped/Manual Start] <"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"> [Macrovision Corporation, 10.50.125, C:2004-10-22 03:24 M:2004-10-22 03:24] [NVIDIA Display Driver Service / NVSvc][Running/Auto Start] <%SystemRoot%\system32\nvsvc32.exe> [NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] [Stormser / Stormser][Stopped/Auto Start] [] [Rising Proxy Service / RfwProxySrv][Running/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.37, C:2008-04-27 17:24 M:2008-07-30 13:22] [Rising Personal Firewall Service / RfwService][Running/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.77, C:2008-04-27 17:24 M:2008-10-17 00:10] [Rising Process Communication Center / RsCCenter][Running/Auto Start] <"C:\Program Files\Rising\Rav\CCenter.exe"> [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.33, C:2008-04-27 17:22 M:2008-07-28 19:04] [Rising RealTime Monitor / RsRavMon][Stopped/Auto Start] <"C:\PROGRAM FILES\RISING\RAV\Ravmond.exe"> [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.80, C:2008-04-27 17:22 M:2008-07-28 19:03] ======================================== 驱动 [EagleNT / EagleNT][Stopped/Manual Start] <\??\C:\WINDOWS\system32\drivers\EagleNT.sys> [] [npkcrypt / npkcrypt][Stopped/Auto Start] <\??\E:\冒险岛\冒险岛online\npkcrypt.sys> [] [npkycryp / npkycryp][Stopped/Manual Start] <\??\C:\WINDOWS\system32\npkycryp.sys> [] [nv / nv][Running/Manual Start] [NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] [QKeyServiceDisplay / QKeyService][Running/Boot Start] [ Tencent Technology (Shenzhen) Company Limited, 1, 0, 0, 9, C:2008-06-07 11:21 M:2008-06-07 11:18] [rspp / rspp][Running/System Start] <\??\C:\WINDOWS\system32\Drivers\Rspp.sys> [Beijing Rising Technology Co., Ltd, 23, 0, 0, 3, C:2008-06-30 16:29 M:2008-06-30 16:29] [TCP/IP Protocol Driver / Tcpip][Running/System Start] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249), C:2002-01-03 05:31 M:2008-06-20 19:51] [AMD Processor Driver / AmdK8][Running/System Start] [(Verified)Advanced Micro Devices, 1.3.2 (dnsrv(wmbla).060701-2226), C:2007-07-30 14:47 M:2006-12-01 03:22] [ati2mtag / ati2mtag][Stopped/Manual Start] [(Verified)ATI Technologies Inc., 6.14.10.6462, C:2002-01-03 05:40 M:2004-08-16 16:24] [Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start] [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK, C:2005-01-07 17:07 M:2008-04-13 09:36] [HookCont / HookCont][Running/System Start] <\SystemRoot\system32\drivers\HookCont.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 7, C:2008-04-27 17:22 M:2008-07-28 19:03] [HookNtos / HookNtos][Running/System Start] <\SystemRoot\system32\drivers\HookNtos.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 52, C:2008-04-27 17:22 M:2008-10-23 19:33] [HookReg / HookReg][Running/System Start] <\SystemRoot\system32\drivers\HookReg.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 29, C:2008-04-27 17:22 M:2008-11-04 20:16] [HookSys / HookSys][Running/System Start] <\SystemRoot\system32\drivers\HookSys.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 55, C:2008-04-27 17:22 M:2008-08-27 19:50] [HookUrl / HookUrl][Running/Auto Start] <\??\C:\Program Files\Rising\Rfw\HookUrl.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.13, C:2008-04-27 17:24 M:2008-10-21 07:14] [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start] [(Verified)Realtek Semiconductor Corp., 5.10.0.5391 built by: WinDDK, C:2008-01-07 10:40 M:2007-03-26 19:21] [Direct Parallel Link Driver / Ptilink][Running/Manual Start] [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2002-01-03 05:31 M:2004-08-17 20:00] [Rising Rfwbase Driver / RfwBase][Running/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.10, C:2008-04-27 17:24 M:2008-07-30 13:22] [RsFwDrv / RsFwDrv][Running/System Start] <\??\C:\Program Files\Rising\Rfw\RsFwDrv.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.35, C:2008-04-27 17:24 M:2008-10-21 07:14] [RsNTGDI / RsNTGDI][Running/Boot Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 3, C:2008-04-27 17:22 M:2008-07-28 19:04] [Secdrv / Secdrv][Stopped/Manual Start] [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2002-01-03 05:31 M:2007-11-13 18:25] [TesSafe / TesSafe][Stopped/Manual Start] <\??\C:\WINDOWS\system32\TesSafe.sys> [(Verified)TENCENT, 0, 0, 9, 0, C:2008-05-17 16:50 M:2008-11-15 12:32] [NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwxp][Running/Manual Start] [(Verified)Marvell, 8.61.2.3 built by: WinDDK, C:2008-01-07 10:43 M:2006-11-02 08:01] ======================================== 进程 [PID: 636 / SYSTEM] \SystemRoot\System32\smss.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2002-01-03 05:31 M:2008-04-13 19:14] [PID: 696 / SYSTEM] \??\C:\WINDOWS\system32\csrss.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2002-01-03 05:30 M:2008-04-13 19:13] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 720 / SYSTEM] \??\C:\WINDOWS\system32\winlogon.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113), C:2002-01-03 05:31 M:2008-04-13 19:14] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 764 / SYSTEM] C:\WINDOWS\system32\services.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2002-01-03 05:31 M:2008-04-13 19:14] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 776 / SYSTEM] C:\WINDOWS\system32\lsass.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113), C:2002-01-03 05:30 M:2008-04-13 19:14] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 956 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2002-01-03 05:31 M:2008-04-13 19:14] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 1020 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2002-01-03 05:31 M:2008-04-13 19:14] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 1108 / SYSTEM] C:\Program Files\Rising\Rav\CCenter.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.33, C:2008-04-27 17:22 M:2008-07-28 19:04] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 1124 / SYSTEM] C:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2002-01-03 05:31 M:2008-04-13 19:14] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 1204 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2002-01-03 05:31 M:2008-04-13 19:14] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 1228 / LOCAL SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2002-01-03 05:31 M:2008-04-13 19:14] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 1316 / SYSTEM] C:\PROGRAM FILES\RISING\RAV\ravmond.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.80, C:2008-04-27 17:22 M:2008-07-28 19:03] C:\PROGRAM FILES\RISING\RAV\BWList.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.5, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\RsLog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.36, C:2008-04-27 17:22 M:2008-07-26 20:25] C:\PROGRAM FILES\RISING\RAV\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\MonRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.29, C:2008-04-27 17:22 M:2008-07-28 19:03] C:\PROGRAM FILES\RISING\RAV\Hooksys.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 12, C:2008-04-27 17:22 M:2008-07-28 19:03] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] C:\PROGRAM FILES\RISING\RAV\HookReg.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6, C:2008-04-27 17:22 M:2008-07-28 19:03] C:\PROGRAM FILES\RISING\RAV\HookNtos.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5, C:2008-04-27 17:22 M:2008-07-28 19:03] C:\PROGRAM FILES\RISING\RAV\rswalmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 24, C:2008-04-27 17:22 M:2008-07-28 19:03] C:\PROGRAM FILES\RISING\RAV\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41, C:2008-04-27 17:22 M:2008-08-20 17:21] C:\PROGRAM FILES\RISING\RAV\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\ffr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-27 17:22 M:2008-09-26 20:16] C:\Program Files\Rising\Rav\RsStore.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.9, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\HookCont.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3, C:2008-04-27 17:22 M:2008-07-28 19:03] C:\Program Files\Rising\Rav\fakescan.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.14, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\Program Files\Rising\Rav\Scanner.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.39, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\HookWeb.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.3, C:2008-04-27 17:22 M:2008-07-28 19:03] C:\PROGRAM FILES\RISING\RAV\extfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 32, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\pearc.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 8, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\nvfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 7, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\scanexec.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 22, C:2008-04-27 17:22 M:2008-08-27 19:50] C:\PROGRAM FILES\RISING\RAV\unexe.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 6, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\scanex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 98, C:2008-04-27 17:22 M:2008-11-05 19:19] C:\PROGRAM FILES\RISING\RAV\scanpack.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 10, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\revm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 11, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\urutils.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 7, C:2008-04-27 17:46 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\ur000.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 22, C:2008-04-27 17:46 M:2008-10-09 20:27] C:\PROGRAM FILES\RISING\RAV\extmail.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 10, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\scansct.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 11, C:2008-04-27 17:22 M:2008-09-02 19:49] C:\PROGRAM FILES\RISING\RAV\scriptci.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 4, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\ur001.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-04-27 17:46 M:2008-10-09 20:27] C:\PROGRAM FILES\RISING\RAV\uroutine.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\extole.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 13, C:2008-04-27 17:22 M:2008-07-28 19:04] [PID: 1332 / SYSTEM] c:\program files\rising\rfw\rfwsrv.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.77, C:2008-04-27 17:24 M:2008-10-17 00:10] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\Program Files\Rising\Rfw\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\RfwRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.17, C:2008-04-27 17:24 M:2008-07-30 13:22] c:\program files\rising\rfw\rfwlog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.16, C:2008-04-27 17:24 M:2008-07-30 13:22] c:\program files\rising\rfw\Rfwdrv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.50, C:2008-04-27 17:24 M:2008-10-28 22:53] c:\program files\rising\rfw\ijt_ctrl.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.0, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\unvdet.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.8, C:2008-04-27 17:24 M:2008-07-30 13:22] c:\program files\rising\rfw\mPorts.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.6, C:2008-04-27 17:24 M:2008-07-30 13:22] [PID: 1360 / SYSTEM] c:\program files\rising\rfw\rfwproxy.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.37, C:2008-04-27 17:24 M:2008-07-30 13:22] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\Program Files\Rising\Rfw\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\RfwRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.17, C:2008-04-27 17:24 M:2008-07-30 13:22] c:\program files\rising\rfw\urlrule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1.0.0.15, C:2008-05-12 21:28 M:2008-07-30 13:22] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\MonMid.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.6, C:2008-04-27 17:24 M:2008-07-30 13:22] [PID: 1600 / SYSTEM] c:\program files\rising\rfw\rfwstub.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.12, C:2008-04-27 17:24 M:2008-07-30 13:22] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2002-01-03 05:30 M:2007-07-11 17:25] c:\program files\rising\rfw\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 1864 / SYSTEM] C:\PROGRAM FILES\RISING\RAV\RavStub.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.10, C:2008-04-27 17:22 M:2008-07-28 19:03] C:\PROGRAM FILES\RISING\RAV\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-27 17:22 M:2008-07-28 19:04] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 2020 / Administrator] C:\WINDOWS\Explorer.EXE [(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2002-01-03 05:30 M:2008-04-13 19:14] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] C:\WINDOWS\system32\nvcpl.dll [NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] C:\WINDOWS\system32\NVRSZHC.DLL [NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] C:\WINDOWS\system32\nvapi.dll [NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] C:\WINDOWS\system32\nvshell.dll [N/A, C:2007-02-06 19:39 M:2007-02-06 19:39] D:\Tencent\qdshm.dll [(Verified)Copyright 2004, 1, 0, 101, 20, C:2007-09-17 15:10 M:2007-09-17 15:10] C:\Program Files\WinRAR\rarext.dll [N/A, C:2002-01-03 06:10 M:2007-05-30 08:28] C:\WINDOWS\system32\RavExt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-04-27 17:22 M:2008-07-28 19:03] C:\Program Files\Rising\Rav\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-27 17:22 M:2008-07-28 19:04] [PID: 196 / Administrator] c:\program files\rising\rfw\RfwMain.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.1.70, C:2008-04-27 17:24 M:2008-07-25 18:25] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2002-01-03 05:30 M:2007-07-11 17:25] c:\program files\rising\rfw\RsGuiLib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 90, C:2008-04-27 17:24 M:2008-07-30 13:23] C:\Program Files\Rising\Rfw\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\RfwCtrl.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\RsXML.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\PngDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-04-27 17:24 M:2008-07-30 13:23] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\RfwRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.17, C:2008-04-27 17:24 M:2008-07-30 13:22] [PID: 264 / SYSTEM] C:\WINDOWS\system32\spoolsv.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852), C:2002-01-03 05:31 M:2008-04-13 19:14] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 404 / SYSTEM] C:\WINDOWS\system32\nvsvc32.exe [NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] C:\WINDOWS\system32\nvapi.dll [NVIDIA Corporation, 6.14.11.0085, C:2007-02-06 19:39 M:2007-02-06 19:39] [PID: 988 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2002-01-03 05:31 M:2008-04-13 19:14] [PID: 2220 / Administrator] C:\WINDOWS\RTHDCPL.EXE [(Verified)Realtek Semiconductor Corp., 2.1.2.9, C:2008-01-07 10:40 M:2007-03-21 14:49] [PID: 2232 / LOCAL SERVICE] C:\WINDOWS\System32\alg.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852), C:2002-01-03 05:30 M:2008-04-13 19:13] [PID: 2304 / Administrator] C:\PROGRAM FILES\RISING\RAV\RavMon.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.01.27, C:2008-04-27 17:22 M:2008-08-27 19:50] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2002-01-03 05:30 M:2007-07-11 17:25] C:\PROGRAM FILES\RISING\RAV\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41, C:2008-04-27 17:22 M:2008-08-20 17:21] C:\PROGRAM FILES\RISING\RAV\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\PROGRAM FILES\RISING\RAV\MonRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.29, C:2008-04-27 17:22 M:2008-07-28 19:03] C:\PROGRAM FILES\RISING\RAV\PngDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-04-27 17:22 M:2008-07-26 20:24] C:\PROGRAM FILES\RISING\RAV\Rsguilib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 90, C:2008-04-27 17:22 M:2008-07-26 20:24] C:\PROGRAM FILES\RISING\RAV\RsXML.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2008-04-27 17:22 M:2008-07-28 19:04] [PID: 2556 / Administrator] C:\Program Files\Rising\Rav\RavTask.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.24, C:2008-04-27 17:22 M:2008-07-26 20:24] C:\Program Files\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\Program Files\Rising\Rav\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\Program Files\Rising\Rav\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\Program Files\Rising\Rav\RSAPPMGR.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-27 17:22 M:2008-07-28 19:04] C:\Program Files\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-27 17:22 M:2008-07-28 19:04] [PID: 2804 / Administrator] G:\新建文件夹 (4)\rstray.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.16, C:2008-07-21 21:45 M:2008-09-11 23:37] G:\新建文件夹 (4)\rsmginfo.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 8, C:2008-07-21 21:45 M:2008-08-02 18:08] G:\新建文件夹 (4)\RsXML.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2008-07-21 21:45 M:2008-07-26 13:19] G:\新建文件夹 (4)\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-07-21 21:45 M:2008-07-21 21:45] G:\新建文件夹 (4)\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-07-21 21:45 M:2008-07-21 21:45] G:\新建文件夹 (4)\ComServ.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.31, C:2008-07-21 21:45 M:2008-07-26 13:18] G:\新建文件夹 (4)\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-07-21 21:45 M:2008-09-02 19:48] G:\新建文件夹 (4)\rscommon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.1.1, C:2008-07-21 21:45 M:2008-07-26 13:19] G:\新建文件夹 (4)\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-07-21 21:45 M:2008-09-28 13:23] G:\新建文件夹 (4)\pngdll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-07-21 21:45 M:2008-07-26 13:19] G:\新建文件夹 (4)\runiep.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.41, C:2008-07-21 21:45 M:2008-11-05 00:16] G:\新建文件夹 (4)\NComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.6, C:2008-07-21 21:45 M:2008-07-26 13:19] C:\Program Files\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-27 17:22 M:2008-07-28 19:04] G:\新建文件夹 (4)\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-10-06 20:40 M:2008-10-06 20:40] G:\新建文件夹 (4)\pscan.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.58, C:2008-07-21 21:45 M:2008-11-07 03:19] G:\新建文件夹 (4)\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-07-21 21:45 M:2008-07-21 21:45] C:\Program Files\Rising\Rav\RavScrCh.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-04-27 17:22 M:2008-07-28 19:03] [PID: 2876 / Administrator] C:\WINDOWS\system32\ctfmon.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2002-01-03 05:30 M:2008-04-13 19:13] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 2924 / Administrator] D:\Tencent\QQ.exe [(Verified)TENCENT, 8,0,1249,1853, C:2008-10-28 15:39 M:2008-10-28 15:39] D:\Tencent\QQBaseClassInDll.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Tencent\QQHelperDll.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 16:04 M:2007-09-17 16:04] D:\Tencent\BasicCtrlDll.dll [(Verified)TENCENT, 8,0,1248,1851, C:2007-09-17 15:02 M:2007-09-17 15:02] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] D:\Tencent\QQAPI.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Tencent\LoginCtrl.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:51 M:2007-09-17 14:51] D:\Tencent\LoginCtrlRes.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:51 M:2007-09-17 14:51] D:\Tencent\QQRes.dll [(Verified)TENCENT, 8,0,978,1833, C:2007-09-17 14:57 M:2007-09-17 14:57] D:\Tencent\QQMainFrame.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:56 M:2007-09-17 14:56] D:\Tencent\UnReadMsgMgr.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:00 M:2007-09-17 15:00] D:\Tencent\QQAllInOne.dll [(Verified)TENCENT, 8,0,1249,1853, C:2008-10-29 16:25 M:2008-10-29 16:25] D:\Tencent\SCCore.dll [(Verified)TENCENT, 1, 6, 0, 2, C:2007-09-17 14:59 M:2007-09-17 14:59] D:\Tencent\CameraDll.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:03 M:2007-09-17 15:03] D:\Tencent\CQQApplication.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:50 M:2007-09-17 14:50] D:\Tencent\FlashAvatarDll.dll [(Verified)版权所有 (C) 2008, 1, 0, 0, 1, C:2007-09-17 14:50 M:2007-09-17 14:50] D:\Tencent\NewSkin.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:52 M:2007-09-17 14:52] D:\Tencent\MailSummary.dll [(Verified)TENCENT, 8,0,1234,1851, C:2007-09-17 14:51 M:2007-09-17 14:51] D:\Tencent\QQSpace.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:57 M:2007-09-17 14:57] D:\Tencent\UserDefinedHead.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:01 M:2007-09-17 15:01] D:\Tencent\QQPlugin.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:56 M:2007-09-17 14:56] C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] C:\WINDOWS\system32\msdmo.dll [(Verified)N/A, C:2002-01-03 05:30 M:2008-04-13 19:13] D:\Tencent\QQAvatar.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Tencent\OEMApplication.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:52 M:2007-09-17 14:52] D:\Tencent\QQKnowledgeSearch.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Tencent\QQGroupMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Tencent\QQPet.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:56 M:2007-09-17 14:56] D:\Tencent\QQSysMsgMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:58 M:2007-09-17 14:58] D:\Tencent\QQConfigPlugin.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Tencent\QQCustomFace.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:54 M:2007-09-17 14:54] D:\Tencent\GroupConnection.dll [(Verified)TENCENT, 8,0,1249,1851, C:2008-10-29 09:39 M:2008-10-29 09:40] C:\Program Files\Rising\Rav\RavScrCh.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-04-27 17:22 M:2008-07-28 19:03] D:\Tencent\QRingMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:58 M:2007-09-17 14:58] D:\Tencent\LongConnection.dll [(Verified)TENCENT, 8,0,1249,1851, C:2007-09-17 15:05 M:2007-09-17 15:05] D:\Tencent\QQFileTransfer.dll [(Verified)TENCENT, 8,0,1249,1851, C:2007-09-17 15:06 M:2007-09-17 15:06] D:\Tencent\PhoneAPI.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:52 M:2007-09-17 14:52] D:\Tencent\DialerAllinOne.dll [(Verified)tencent, 1, 4, 0, 0, C:2007-09-17 14:50 M:2007-09-17 14:50] D:\Tencent\BQQApplication.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:49 M:2007-09-17 14:49] D:\Tencent\QQMagicFace.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Tencent\ImageOle.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:04 M:2007-09-17 15:04] D:\Tencent\QQSceneMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:57 M:2007-09-17 14:57] D:\Tencent\QQLiveQMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Tencent\CommercesMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:49 M:2007-09-17 14:49] D:\Tencent\PersonalDesktop.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:06 M:2007-09-17 15:06] D:\Tencent\QQAddr.dll [(Verified)深圳市腾讯计算机系统有限公司, 5, 0, 101, 330, C:2007-09-17 15:06 M:2007-09-17 15:06] D:\Tencent\AddrSearch.dll [(Verified)腾讯科技(深圳)有限公司, 2, 2, 1, 17, C:2007-09-17 14:49 M:2008-10-20 19:56] D:\Tencent\QQMsgFriendMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:56 M:2007-09-17 14:56] D:\Tencent\QQZip.dll [(Verified)TENCENT, 8,0,1249,1851, C:2007-09-17 15:07 M:2007-09-17 15:07] D:\Tencent\CPaiPaiApplication.dll [(Verified)Copyright (C) 1998 - 2008 TENCENT Inc. All Rights Reserved, 8,0,1249,1853, C:2007-09-17 14:50 M:2007-09-17 14:50] C:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Tencent\videodevice.dll [(Verified)Tencent, 2, 1, 0, 0, C:2007-09-17 15:08 M:2007-09-17 15:08] D:\Tencent\inplus.dll [(Verified)Tencent, 2, 1, 0, 0, C:2007-09-17 15:04 M:2007-09-17 15:04] C:\Program Files\3304\VDecoder.ax [Copyright (C) 2003-2005, 1, 0, 1, 1, C:2005-06-24 14:41 M:2005-06-24 14:41] C:\WINDOWS\system32\RealMediaSplitter.ax [Gabest, 1, 0, 1, 1, C:2008-10-29 13:39 M:2006-02-28 15:54] C:\Program Files\3304\Audio\l3codecx.ax [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0311, C:2000-06-08 17:00 M:2000-06-08 17:00] D:\Tencent\QQSettingCtrl.dll [(Verified)TENCENT, , C:2007-09-17 14:57 M:2007-09-17 14:57] C:\WINDOWS\system32\tssoft32.acm [(Verified)DSP GROUP, INC., 1.01, C:2002-01-03 05:31 M:2004-08-17 20:00] C:\WINDOWS\system32\tsd32.dll [(Verified)N/A, C:2002-01-03 05:31 M:2004-08-17 20:00] C:\WINDOWS\system32\sl_anet.acm [(Verified)Sipro Lab Telecom Inc., 3.02, C:2002-01-03 05:31 M:2008-04-13 19:13] C:\WINDOWS\system32\iac25_32.ax [(Verified)Intel Corporation, 2.05.53, C:2002-01-03 05:30 M:2008-04-13 19:14] C:\WINDOWS\system32\l3codeca.acm [(Verified)Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305, C:2002-01-03 05:30 M:2008-04-13 19:12] C:\WINDOWS\system32\vct3216.acm [Voxware, Inc., 1.6.0.17, C:1999-10-30 02:36 M:1999-10-30 02:36] C:\WINDOWS\system32\vct3216.dll [Voxware, Inc., 1.6.0.12, C:1999-10-30 02:36 M:1999-10-30 02:36] C:\WINDOWS\system32\msms001.vwp [Voxware, Inc., 2.0.2.61, C:1999-04-15 13:10 M:1999-04-15 13:10] C:\WINDOWS\system32\mvoice.vwp [Voxware, Inc., 2.0.0.12.01, C:1999-10-30 02:36 M:1999-10-30 02:36] [PID: 2980 / Administrator] D:\Tencent\TXPlatform.exe [(Verified)Tencent, 1, 5, 225, 0, C:2008-05-20 17:53 M:2008-05-20 17:53] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 2932 / Administrator] C:\WINDOWS\system32\conime.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2002-01-03 05:30 M:2008-04-13 19:13] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] [PID: 2756 / Administrator] D:\Tencent\QQ.exe [(Verified)TENCENT, 8,0,1249,1853, C:2008-10-28 15:39 M:2008-10-28 15:39] D:\Tencent\QQBaseClassInDll.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Tencent\QQHelperDll.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 16:04 M:2007-09-17 16:04] D:\Tencent\BasicCtrlDll.dll [(Verified)TENCENT, 8,0,1248,1851, C:2007-09-17 15:02 M:2007-09-17 15:02] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] D:\Tencent\QQAPI.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Tencent\LoginCtrl.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:51 M:2007-09-17 14:51] D:\Tencent\LoginCtrlRes.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:51 M:2007-09-17 14:51] D:\Tencent\QQRes.dll [(Verified)TENCENT, 8,0,978,1833, C:2007-09-17 14:57 M:2007-09-17 14:57] D:\Tencent\QQMainFrame.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:56 M:2007-09-17 14:56] D:\Tencent\UnReadMsgMgr.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:00 M:2007-09-17 15:00] D:\Tencent\QQAllInOne.dll [(Verified)TENCENT, 8,0,1249,1853, C:2008-10-29 16:25 M:2008-10-29 16:25] D:\Tencent\SCCore.dll [(Verified)TENCENT, 1, 6, 0, 2, C:2007-09-17 14:59 M:2007-09-17 14:59] D:\Tencent\CameraDll.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:03 M:2007-09-17 15:03] D:\Tencent\CQQApplication.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:50 M:2007-09-17 14:50] D:\Tencent\FlashAvatarDll.dll [(Verified)版权所有 (C) 2008, 1, 0, 0, 1, C:2007-09-17 14:50 M:2007-09-17 14:50] D:\Tencent\NewSkin.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:52 M:2007-09-17 14:52] D:\Tencent\MailSummary.dll [(Verified)TENCENT, 8,0,1234,1851, C:2007-09-17 14:51 M:2007-09-17 14:51] D:\Tencent\QQSpace.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:57 M:2007-09-17 14:57] C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] C:\WINDOWS\system32\msdmo.dll [(Verified)N/A, C:2002-01-03 05:30 M:2008-04-13 19:13] D:\Tencent\QQAvatar.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Tencent\OEMApplication.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:52 M:2007-09-17 14:52] D:\Tencent\QQKnowledgeSearch.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Tencent\QQGroupMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Tencent\QQPlugin.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:56 M:2007-09-17 14:56] D:\Tencent\QQSysMsgMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:58 M:2007-09-17 14:58] D:\Tencent\UserDefinedHead.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:01 M:2007-09-17 15:01] D:\Tencent\QQConfigPlugin.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Tencent\QQCustomFace.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:54 M:2007-09-17 14:54] D:\Tencent\QRingMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:58 M:2007-09-17 14:58] D:\Tencent\QQPet.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:56 M:2007-09-17 14:56] D:\Tencent\LongConnection.dll [(Verified)TENCENT, 8,0,1249,1851, C:2007-09-17 15:05 M:2007-09-17 15:05] D:\Tencent\PhoneAPI.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:52 M:2007-09-17 14:52] D:\Tencent\DialerAllinOne.dll [(Verified)tencent, 1, 4, 0, 0, C:2007-09-17 14:50 M:2007-09-17 14:50] D:\Tencent\BQQApplication.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:49 M:2007-09-17 14:49] D:\Tencent\CommercesMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:49 M:2007-09-17 14:49] D:\Tencent\PersonalDesktop.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:06 M:2007-09-17 15:06] D:\Tencent\QQAddr.dll [(Verified)深圳市腾讯计算机系统有限公司, 5, 0, 101, 330, C:2007-09-17 15:06 M:2007-09-17 15:06] D:\Tencent\QQSceneMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:57 M:2007-09-17 14:57] D:\Tencent\GroupConnection.dll [(Verified)TENCENT, 8,0,1249,1851, C:2008-10-29 09:39 M:2008-10-29 09:40] D:\Tencent\QQMagicFace.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Tencent\ImageOle.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:04 M:2007-09-17 15:04] D:\Tencent\QQLiveQMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] C:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Tencent\VqqModule.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:01 M:2007-09-17 15:01] D:\Tencent\VqqAllInOne.dll [(Verified)Tencent, 2, 2, 0, 3, C:2007-09-17 15:08 M:2007-09-17 15:08] D:\Tencent\tencent-proto1.dll [(Verified)tencent, 2, 1, 0, 0, C:2007-09-17 15:07 M:2007-09-17 15:07] D:\Tencent\tencent-comlib.dll [(Verified)tencent, 2, 1, 0, 0, C:2007-09-17 15:07 M:2007-09-17 15:07] D:\Tencent\tencent-proto2.dll [(Verified)tencent, 2, 1, 0, 0, C:2007-09-17 15:07 M:2007-09-17 15:07] D:\Tencent\InPlus.dll [(Verified)Tencent, 2, 1, 0, 0, C:2007-09-17 15:04 M:2007-09-17 15:04] [PID: 3292 / Administrator] G:\新建文件夹 (4)\knownsvr.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.12, C:2008-07-21 21:45 M:2008-10-20 23:17] G:\新建文件夹 (4)\NComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.6, C:2008-07-21 21:45 M:2008-07-26 13:19] G:\新建文件夹 (4)\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-07-21 21:45 M:2008-09-28 13:23] G:\新建文件夹 (4)\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-07-21 21:45 M:2008-09-02 19:48] [PID: 564 / Administrator] C:\Program Files\Thunder\Program\Thunder5.exe [Thunder Networking Technologies,LTD, 5, 6, 8, 329, C:2007-07-04 09:19 M:2007-07-04 09:19] C:\Program Files\Thunder\Program\ThunderEx.dll [版权所有 (C) 2006, 1, 1, 6, 12, C:2007-07-07 10:29 M:2007-07-07 10:29] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] C:\Program Files\Thunder\Program\TaskManager.dll [Thunder Networking Technologies,LTD, 1, 1, 2, 26, C:2007-06-25 12:40 M:2007-06-25 12:40] C:\Program Files\Thunder\Program\download_interface.dll [Thunder Networking Technologies,LTD, 2, 16, 2, 108, C:2007-06-27 10:21 M:2007-06-27 10:21] C:\Program Files\Thunder\Program\stlport_vc646.dll [STLport Consulting, Inc., 4.6.2003.1031, C:2007-06-27 10:21 M:2007-06-27 10:21] C:\Program Files\Thunder\Program\asyn_dns.dll [Thunder Networking Technologies,LTD, 2, 16, 2, 108, C:2007-06-27 10:21 M:2007-06-27 10:21] C:\Program Files\Thunder\Program\BHOStub.dll [Thunder Networking Technologies,LTD, 1, 1, 0, 8, C:2007-06-27 10:21 M:2007-06-27 10:21] C:\Program Files\Thunder\Program\FloatBar.dll [Giganology Inc., 1, 0, 0, 2, C:2007-06-27 10:21 M:2007-06-27 10:21] C:\Program Files\Thunder\Components\DownAndPlay\DownAndPlay.dll [Copyright 2007, 1, 0, 0, 18, C:2007-06-25 12:40 M:2007-06-25 12:40] C:\Program Files\Thunder\Program\iTargetAD.dll [N/A, C:2007-05-21 16:18 M:2007-05-21 16:18] C:\Program Files\Thunder\Components\Community\XLCommunity.dll [Thunder Networking Technologies,LTD, 1, 2, 1, 36, C:2007-06-25 12:40 M:2007-06-25 12:40] C:\Program Files\Thunder\Components\Security\ThunderSafe.dll [深圳市迅雷网络技术有限公司, 1, 0, 3, 18, C:2007-06-25 12:40 M:2007-06-25 12:40] C:\Program Files\Thunder\Components\ExplorerHelper\ExplorerHelper.dll [Thunder Networking Technologies,LTD, 1, 0, 4, 15, C:2007-06-25 12:40 M:2007-06-25 12:40] C:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] C:\Program Files\Thunder\Program\RegisterDll.dll [Thunder Networking Technologies,LTD, 2, 13, 4, 58, C:2007-06-25 12:40 M:2007-06-25 12:40] C:\Program Files\Thunder\Program\MSVCIRT.dll [Microsoft Corporation, 7.0.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2007-06-22 13:42 M:2007-06-22 13:42] C:\Program Files\Thunder\Program\XLNet.Dll [Thunder Networking Technologies,LTD, 1, 2, 1, 9, C:2007-06-25 12:40 M:2007-06-25 12:40] C:\Program Files\Thunder\Plugins\BhoAdv\bho_adv.dll [深圳市迅雷网络技术有限公司, 1.0.1.0, C:2007-01-25 16:38 M:2007-01-25 16:38] [PID: 3004 / Administrator] F:\助手\arswp2\ArSwp.exe [(Verified)ArSwp.com, 2, 8, 1, 815, C:2008-08-15 22:25 M:2008-08-15 22:25] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] F:\助手\arswp2\plugin\ArFix.dll [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2007-11-28 15:19 M:2007-11-28 15:19] [PID: 3420 / Administrator] E:\地下城與勇士\start\DNFchina.exe [Copyright (C) 2008, 3, 1, 3, 34, C:2008-06-17 21:31 M:2008-10-07 19:54] E:\地下城與勇士\start\BugTrap.dll [IntelleSoft, 1.2.2654.37769, C:2008-03-10 11:45 M:2008-03-10 11:45] c:\program files\rising\rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-27 17:24 M:2008-07-25 18:25] c:\program files\rising\rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-27 17:24 M:2008-07-25 18:25] ======================================== 文件关联 ======================================== AutoRun.INF ======================================== Winsock提供者 ======================================== HOSTS 127.0.0.1 localhost [/CODE]