[CODE] 2008-11-26,13:32:10 SysLog Scanner 1.0 - build 20080726 Arswp (http://www.arswp.com) Windows XP Professional Service Pack 2 (build 2600) - Administrators ======================================== 注册项 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <\\SJ-2\EPSON Stylus Photo RX430 Series> [SEIKO EPSON CORPORATION, 3.00, C:2008-09-26 09:46 M:2004-04-09 11:00] <"C:\Program Files\Rising\AntiSpyware\rstray.exe" /startup> [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.16, C:2008-11-04 10:31 M:2008-11-04 10:31] <"C:\Program Files\Rising\Rav\RavTask.exe" -system> [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.24, C:2008-11-05 12:58 M:2008-11-05 13:00] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] [(Verified)Beijing Rising Information Technology Co., Ltd., 19, 0, 0, 3, C:2008-11-04 10:31 M:2008-11-04 10:31] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{32CD708B-60A7-4C00-9377-D73EAA495F0F}> [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-11-05 12:58 M:2008-11-05 13:00] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00|(Verified)N/A, C:2004-08-17 20:00 M:2004-08-17 20:00] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00|(Verified)N/A, C:2004-08-17 20:00 M:2004-08-17 20:00] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00|(Verified)N/A, C:2007-07-26 01:26 M:2005-01-28 15:25] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到QQ表情] <> [N/A, C:2008-11-24 08:38 M:2008-11-24 08:38] ======================================== 启动项 ======================================== 计划任务 ======================================== 组件 ShellExecuteHook [ShlExecHack Class] {32CD708B-60A7-4C00-9377-D73EAA495F0F} [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-11-05 12:58 M:2008-11-05 13:00] Shell Extension [Display Panning CPL Extension] {42071714-76d4-11d1-8b24-00a0c9068ff3} [] [HyperTerminal Icon Ext] {88895560-9AA2-1069-930E-00AA0030EBC8} [(Verified)Hilgraeve, Inc., 5.1.2600.0, C:2007-07-25 00:09 M:2004-08-17 20:00] [WinRAR shell extension] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2008-10-29 09:21 M:2007-05-06 11:58] [RISING] {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-11-05 12:58 M:2008-11-05 13:00] [Autodesk DWF Preview] {6DEA92E9-8682-4b6a-97DE-354772FE5727} [(Verified)Autodesk, 16.2.54.0, C:2005-03-05 04:14 M:2005-03-05 04:14] BrowserHelperObject [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-11-04 10:31 M:2008-11-04 10:31] ActiveX Extension [Thunder Agent Class] {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} [] [XMP Class] {6483F145-A768-4C41-AACC-52D4D7845851} [Xunlei Networking Technologies,LTD, 2, 1, 9, 100, C:2008-11-15 11:33 M:2008-11-12 14:29] [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-11-04 10:31 M:2008-11-04 10:31] [ScreenCapture Class] {BFB79EE1-04AE-4D4A-B85E-27EE5F30C095} [(Verified)Tencent Inc., 1, 0, 1, 29, C:2008-04-28 15:09 M:2008-04-28 15:09] [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [(Verified)Adobe Systems, Inc., 9,0,47,0, C:2007-06-12 04:04 M:2007-06-12 04:04] Context Menu [RisingRavExt] {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-11-05 12:58 M:2008-11-05 13:00] [WinRAR] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2008-10-29 09:21 M:2007-05-06 11:58] ======================================== 服务 [Adobe LM Service / Adobe LM Service][Stopped/Manual Start] <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"> [Adobe Systems, 2.67.010, C:2008-11-13 14:40 M:2008-11-13 14:40] [Autodesk Licensing Service / Autodesk Licensing Service][Running/Auto Start] <"C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe"> [Autodesk, 2.66.000, C:2008-11-13 14:53 M:2008-11-13 14:53] [Human Interface Device Access / HidServ][Stopped/Disabled] <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\hidserv.dll"> [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] [RaySat_3dsmax8 Server / mi-raysat_3dsmax8][Running/Auto Start] <"C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"> [N/A, C:2005-09-21 14:13 M:2005-09-21 14:13] [Rising Process Communication Center / RsCCenter][Running/Auto Start] <"C:\Program Files\Rising\Rav\CCenter.exe"> [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.33, C:2008-11-05 12:58 M:2008-11-05 13:00] [Rising RealTime Monitor / RsRavMon][Stopped/Auto Start] <"C:\PROGRAM FILES\RISING\RAV\Ravmond.exe"> [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.80, C:2008-11-05 12:58 M:2008-11-05 13:00] ======================================== 驱动 [aeaudio / aeaudio][Running/Manual Start] [Andrea Electronics Corporation, 4.0.1.14, C:2008-10-29 09:21 M:2005-03-04 20:53] [CdaC15BA / CdaC15BA][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS> [Macrovision Europe Ltd, 3.17.000, C:2008-10-29 13:30 M:2008-10-29 13:30] [senfilt / senfilt][Running/Manual Start] [Sensaura, 5.10.00.3518, C:2008-10-29 09:21 M:2005-03-01 13:01] [smwdm / smwdm][Running/Manual Start] [Analog Devices, Inc., 5.12.01.5430, C:2008-10-29 09:21 M:2005-08-03 08:56] [HookCont / HookCont][Running/System Start] <\SystemRoot\system32\drivers\HookCont.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 7, C:2008-11-05 12:58 M:2008-11-05 13:00] [HookNtos / HookNtos][Running/System Start] <\SystemRoot\system32\drivers\HookNtos.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 52, C:2008-11-05 12:58 M:2008-11-05 13:00] [HookReg / HookReg][Running/System Start] <\SystemRoot\system32\drivers\HookReg.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 29, C:2008-11-05 12:58 M:2008-11-05 13:00] [HookSys / HookSys][Running/System Start] <\SystemRoot\system32\drivers\HookSys.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 55, C:2008-11-05 12:58 M:2008-11-05 13:00] [nv / nv][Running/Manual Start] [(Verified)NVIDIA Corporation, 6.14.10.5673, C:2008-10-29 09:16 M:2004-08-03 22:29] [Direct Parallel Link Driver / Ptilink][Running/Manual Start] [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2004-08-17 20:00 M:2004-08-17 20:00] [RsNTGDI / RsNTGDI][Running/Boot Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 3, C:2008-11-05 12:58 M:2008-11-05 13:01] [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start] [(Verified)Realtek Semiconductor Corporation, 5.398.613.2003 built by: WinDDK, C:2008-10-29 09:16 M:2004-08-03 22:31] [Secdrv / Secdrv][Stopped/Manual Start] [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2004-08-17 20:00 M:2007-11-13 18:25] ======================================== 进程 [PID: 496 / SYSTEM] \SystemRoot\System32\smss.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] [PID: 552 / SYSTEM] \??\C:\WINDOWS\system32\csrss.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] [PID: 576 / SYSTEM] \??\C:\WINDOWS\system32\winlogon.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] [PID: 620 / SYSTEM] C:\WINDOWS\system32\services.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] [PID: 632 / SYSTEM] C:\WINDOWS\system32\lsass.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] [PID: 780 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] [PID: 848 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] [PID: 940 / SYSTEM] C:\Program Files\Rising\Rav\CCenter.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.33, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] [PID: 956 / SYSTEM] C:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\System32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] [PID: 1008 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] [PID: 1100 / LOCAL SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] [PID: 1200 / SYSTEM] C:\PROGRAM FILES\RISING\RAV\ravmond.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.80, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\BWList.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.5, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-10-29 09:24 M:2008-10-29 09:23] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-10-29 09:24 M:2008-10-29 09:23] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-10-29 09:24 M:2008-10-29 09:23] C:\WINDOWS\system32\MFC71CHS.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 20:44 M:2003-03-18 20:44] C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\RsLog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.36, C:2008-11-05 12:58 M:2008-11-05 13:02] C:\PROGRAM FILES\RISING\RAV\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\MonRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.29, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\Hooksys.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 12, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\HookReg.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\HookNtos.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\rswalmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 24, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\ffr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\Program Files\Rising\Rav\RsStore.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.9, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\HookCont.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\fakescan.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.14, C:2008-11-05 12:58 M:2008-11-05 13:02] C:\Program Files\Rising\Rav\Scanner.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.39, C:2008-11-05 12:58 M:2008-11-05 13:02] C:\PROGRAM FILES\RISING\RAV\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\extfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 32, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\pearc.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 8, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] C:\PROGRAM FILES\RISING\RAV\HookWeb.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.3, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\nvfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 7, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\scanexec.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 22, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\unexe.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 6, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\scanex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 99, C:2008-11-05 12:58 M:2008-11-19 15:51] C:\PROGRAM FILES\RISING\RAV\scanpack.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 10, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\revm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 11, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\urutils.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 7, C:2008-11-05 13:04 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\ur000.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 22, C:2008-11-05 13:04 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\scriptci.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 4, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\ur001.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-11-05 13:04 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\scansct.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 11, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\extole.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 13, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\extmail.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 10, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\uroutine.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\PROGRAM FILES\RISING\RAV\posttrt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 25, C:2008-11-05 12:58 M:2008-11-05 13:01] [PID: 1420 / SYSTEM] C:\WINDOWS\system32\spoolsv.exe [(Verified)Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519), C:2004-08-17 20:00 M:2005-06-11 07:53] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FUIC9CP.DLL [SEIKO EPSON Corporation, 0. 3. 0, 126, C:2008-09-26 09:46 M:2004-05-21 13:00] [PID: 1520 / Administrator] C:\WINDOWS\Explorer.EXE [(Verified)Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234), C:2004-08-17 20:00 M:2007-06-13 21:21] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] C:\WINDOWS\system32\RavExt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\WINDOWS\system32\shdoclc.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-16 16:38] C:\Program Files\Rising\Rav\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\WinRAR\rarext.dll [N/A, C:2008-10-29 09:21 M:2007-05-06 11:58] C:\Program Files\Corel\Corel Graphics 12\PROGRAMS\CdrIco.DLL [Corel Corporation, 1.0.0.458, C:2003-12-04 03:14 M:2003-12-04 03:14] C:\Program Files\Corel\Corel Graphics 12\PROGRAMS\CRLUTL.dll [Corel Corporation, 1.0.0.458, C:2003-12-04 16:30 M:2003-12-04 16:30] C:\Program Files\Corel\Corel Graphics 12\PROGRAMS\CRLI18N.dll [Corel Corporation, 1.0.0.458, C:2003-12-04 03:15 M:2003-12-04 03:15] C:\WINDOWS\system32\MFC71U.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 21:12 M:2003-03-18 21:12] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-10-29 09:24 M:2008-10-29 09:23] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-10-29 09:24 M:2008-10-29 09:23] C:\WINDOWS\system32\MFC71CHS.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 20:44 M:2003-03-18 20:44] C:\WINDOWS\system32\msdmo.dll [(Verified)N/A, C:2004-08-17 20:00 M:2004-08-17 20:00] [PID: 1788 / SYSTEM] C:\PROGRAM FILES\RISING\RAV\RavStub.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.10, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] [PID: 1892 / SYSTEM] C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [Autodesk, 2.66.000, C:2008-11-13 14:53 M:2008-11-13 14:53] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] [PID: 1948 / SYSTEM] C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [N/A, C:2005-09-21 14:13 M:2005-09-21 14:13] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] [PID: 2016 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] [PID: 336 / Administrator] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CP.EXE [SEIKO EPSON CORPORATION, 3.00, C:2008-09-26 09:46 M:2004-04-09 11:00] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] [PID: 388 / Administrator] C:\Program Files\Rising\AntiSpyware\rstray.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.16, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\Program Files\Rising\AntiSpyware\rsmginfo.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 8, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\Program Files\Rising\AntiSpyware\RsXML.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] C:\Program Files\Rising\AntiSpyware\ComServ.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.31, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\rscommon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.1.1, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\pngdll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\runiep.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.41, C:2008-11-04 10:31 M:2008-11-05 13:05] C:\Program Files\Rising\AntiSpyware\NComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\AntiSpyware\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\RavExt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\AntiSpyware\pscan.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.58, C:2008-11-04 10:31 M:2008-11-07 08:38] C:\Program Files\Rising\AntiSpyware\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\MFC71CHS.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 20:44 M:2003-03-18 20:44] [PID: 408 / Administrator] C:\Program Files\Rising\Rav\RavTask.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.24, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\RSAPPMGR.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] [PID: 432 / Administrator] C:\WINDOWS\system32\ctfmon.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] [PID: 304 / Administrator] C:\Program Files\Rising\Rav\Ravmon.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.01.27, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-10-29 09:24 M:2008-10-29 09:23] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-10-29 09:24 M:2008-10-29 09:23] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-10-29 09:24 M:2008-10-29 09:23] C:\WINDOWS\system32\MFC71CHS.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 20:44 M:2003-03-18 20:44] C:\Program Files\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\Program Files\Rising\Rav\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\Program Files\Rising\Rav\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\Program Files\Rising\Rav\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\Program Files\Rising\Rav\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\MonRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.29, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\Program Files\Rising\Rav\PngDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] C:\Program Files\Rising\Rav\Rsguilib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 90, C:2008-11-05 12:58 M:2008-11-05 13:01] C:\Program Files\Rising\Rav\RsXML.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2008-11-05 12:58 M:2008-11-05 13:00] [PID: 2052 / LOCAL SERVICE] C:\WINDOWS\System32\alg.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-17 20:00] C:\WINDOWS\System32\UxTheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\System32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] [PID: 3860 / Administrator] E:\QQ\Bin\QQ.exe [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\Common.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.DLL [Microsoft Corporation, 8.00.50727.762, C:2008-10-29 13:27 M:2008-10-29 13:27] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll [Microsoft Corporation, 8.00.50727.762, C:2008-10-29 13:27 M:2008-10-29 13:27] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll [Microsoft Corporation, 8.00.50727.762, C:2008-10-29 13:27 M:2008-10-29 13:27] E:\QQ\Bin\KernelUtil.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\Program Files\Rising\AntiSpyware\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] E:\QQ\Bin\GF.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\MainFrame.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\AppUtil.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] E:\QQ\Bin\TaskTray.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\TXPFProxy.dll [(Verified)N/A, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\AppMisc.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\ChatFrame.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\ConfigCenter.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\CustomFace.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\IM.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\KernelMisc.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\LongCnn.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\MsgMgr.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\SystemMsg.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll [(Verified)Tencent, 1.0.1.10, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\SkinMgr.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\system32\shdoclc.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-16 16:38] E:\QQ\Plugin\com.tencent.audiovideo\Bin\AudioVideo.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.mail\Bin\Mail.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.paipai\Bin\PaiPai.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qbar\Bin\QBar.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqchat\Bin\QQChat.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqgame\Bin\QQGame.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqpet\Bin\QQPet.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqring\Bin\QQRing.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqshow\Bin\QQShow.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qzone\Bin\Qzone.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.soso\Bin\Soso.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.today\Bin\Today.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.wenwen\Bin\WenWen.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.wireless\Bin\Wireless.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.vas\Bin\VAS.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\Program Files\Rising\Rav\RavScrCh.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx [(Verified)Adobe Systems, Inc., 9,0,47,0, C:2007-06-12 04:04 M:2007-06-12 04:04] E:\QQ\Bin\Timwp.dll [(Verified)TENCENT, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL [Microsoft Corporation, 8.00.50727.762, C:2008-10-29 13:27 M:2008-10-29 13:27] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80CHS.DLL [Microsoft Corporation, 8.00.50727.762, C:2008-10-29 13:27 M:2008-10-29 13:27] E:\QQ\Plugin\com.tencent.qqshow\Bin\FlashAvatarDll.dll [(Verified)版权所有 (C) 2005, 1, 4, 0, 1, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\ContactInfoFrame.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqmusic\Bin\QQMusic.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\Camera.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] [PID: 3900 / Administrator] E:\QQ\Bin\TXPlatform.exe [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\Program Files\Rising\AntiSpyware\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] E:\QQ\Bin\TXPFProxy.dll [(Verified)N/A, C:2008-11-24 08:38 M:2008-11-24 08:38] [PID: 2328 / Administrator] E:\QQ\Bin\QQ.exe [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\Common.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.DLL [Microsoft Corporation, 8.00.50727.762, C:2008-10-29 13:27 M:2008-10-29 13:27] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll [Microsoft Corporation, 8.00.50727.762, C:2008-10-29 13:27 M:2008-10-29 13:27] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll [Microsoft Corporation, 8.00.50727.762, C:2008-10-29 13:27 M:2008-10-29 13:27] E:\QQ\Bin\KernelUtil.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\Program Files\Rising\AntiSpyware\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] E:\QQ\Bin\GF.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\MainFrame.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\AppUtil.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] E:\QQ\Bin\TaskTray.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\TXPFProxy.dll [(Verified)N/A, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\AppMisc.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\ChatFrame.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\ConfigCenter.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\CustomFace.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\IM.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\KernelMisc.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\LongCnn.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\MsgMgr.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\SystemMsg.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll [(Verified)Tencent, 1.0.1.10, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Bin\SkinMgr.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\system32\shdoclc.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-16 16:38] E:\QQ\Plugin\com.tencent.audiovideo\Bin\AudioVideo.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.mail\Bin\Mail.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.paipai\Bin\PaiPai.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qbar\Bin\QBar.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqchat\Bin\QQChat.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqgame\Bin\QQGame.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqpet\Bin\QQPet.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqring\Bin\QQRing.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqshow\Bin\QQShow.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qzone\Bin\Qzone.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.soso\Bin\Soso.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.today\Bin\Today.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.wenwen\Bin\WenWen.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.wireless\Bin\Wireless.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\Program Files\Rising\Rav\RavScrCh.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-11-05 12:58 M:2008-11-05 13:00] E:\QQ\Bin\Timwp.dll [(Verified)TENCENT, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL [Microsoft Corporation, 8.00.50727.762, C:2008-10-29 13:27 M:2008-10-29 13:27] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80CHS.DLL [Microsoft Corporation, 8.00.50727.762, C:2008-10-29 13:27 M:2008-10-29 13:27] E:\QQ\Plugin\com.tencent.qqmusic\Bin\QQMusic.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.vas\Bin\VAS.dll [(Verified)TODO: , 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.qqshow\Bin\FlashAvatarDll.dll [(Verified)版权所有 (C) 2005, 1, 4, 0, 1, C:2008-11-24 08:38 M:2008-11-24 08:38] E:\QQ\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx [(Verified)Adobe Systems, Inc., 9,0,47,0, C:2007-06-12 04:04 M:2007-06-12 04:04] E:\QQ\Bin\ContactInfoFrame.dll [(Verified)Tencent, 1, 15, 305, 0, C:2008-11-24 08:38 M:2008-11-24 08:38] [PID: 2292 / Administrator] C:\Program Files\Corel\Graphics9\Programs\coreldrw.exe [Corel Corporation, 9.397, C:1999-01-09 16:38 M:1999-01-09 16:38] C:\Program Files\Corel\Graphics9\Programs\CrlWeb91.dll [Copyright (C) 1998, 1, 0, 0, 1, C:1999-10-06 19:32 M:1999-10-06 19:32] C:\Program Files\Corel\Graphics9\Programs\CRLCTL91.dll [Corel Corporation, 9.397, C:1999-10-06 23:22 M:1999-10-06 23:22] C:\Program Files\Corel\Graphics9\Programs\CRLUI91.dll [Corel Corporation, 9.397, C:1999-10-06 19:22 M:1999-10-06 19:22] C:\Program Files\Corel\Graphics9\Programs\CRLIUI91.dll [Corel Corporation, 9.397, C:1999-07-21 19:00 M:1999-07-21 19:00] C:\Program Files\Corel\Graphics9\Programs\FN3API.dll [Bitstream, Inc., 3, 0, 0, 2, C:1999-10-06 19:38 M:1999-10-06 19:38] C:\WINDOWS\system32\SHW32.dll [N/A, C:2008-10-29 09:51 M:1998-11-03 18:10] C:\Program Files\Corel\Graphics9\Programs\ixlacam.dll [IXLA Limited, 1, 5, 0, 0, C:1999-10-06 20:35 M:1999-10-06 20:35] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\Program Files\Corel\Graphics9\Programs\iuiintl.dll [Corel Corporation, 9.397, C:1999-11-07 20:46 M:1999-11-07 20:46] C:\WINDOWS\system32\ATMLIB.dll [(Verified)Adobe Systems, 5.1 Build 226, C:2004-08-17 20:00 M:2004-08-17 20:00] C:\Program Files\Rising\AntiSpyware\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] C:\Program Files\Corel\Graphics9\Programs\drawintl.dll [Corel Corporation, 9.397, C:1999-10-15 14:23 M:1999-10-15 14:23] C:\Program Files\Corel\Graphics9\Programs\Sprof32.dll [Eastman Kodak Company, 1.6.1, C:1999-10-06 23:18 M:1999-10-06 23:18] C:\Program Files\Corel\Graphics9\Programs\KPSYS32.dll [Eastman Kodak Company, 3.2.2, C:1997-10-14 15:03 M:1997-10-14 15:03] C:\Program Files\Corel\Graphics9\Programs\KPCP32.dll [Eastman Kodak Company, 3.1.0, C:1997-04-09 08:31 M:1997-04-09 08:31] C:\Program Files\Corel\Graphics9\Programs\CDRCPR91.DLL [Corel Corporation, 9.337, C:1999-04-15 02:54 M:1999-04-15 02:54] C:\Program Files\Common Files\Microsoft Shared\DAO\dao350.dll [Microsoft Corporation, 3.50.3602.0, C:2008-10-29 09:52 M:1999-02-17 19:49] C:\WINDOWS\system32\MSJET35.DLL [Microsoft Corporation, 3.50.3602.4, C:2008-10-29 09:52 M:1999-02-17 19:49] C:\WINDOWS\system32\vbar332.dll [Microsoft Corporation, 3.0.6908, C:2008-10-29 09:52 M:1999-02-17 19:49] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FUIC9CP.DLL [SEIKO EPSON Corporation, 0. 3. 0, 126, C:2008-09-26 09:46 M:2004-05-21 13:00] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FMAI9CP.DLL [SEIKO EPSON Corporation, 0. 3. 3. 17, C:2008-09-26 09:46 M:2004-01-19 13:00] C:\Program Files\Corel\Graphics9\Filters\IEJPG91.FLT [Corel Corporation, 9.397, C:1999-09-02 10:39 M:1999-09-02 10:39] C:\Program Files\Corel\Graphics9\Programs\CRLFUI91.DLL [Corel Corporation, 9.397, C:1999-07-21 20:02 M:1999-07-21 20:02] C:\Program Files\Corel\Graphics9\Programs\FUIINTL.DLL [Corel Corporation, 9.397, C:1999-11-06 14:22 M:1999-11-06 14:22] [PID: 440 / Administrator] C:\Program Files\Internet Explorer\IEXPLORE.EXE [(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2007-07-25 00:10 M:2004-08-17 20:00] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\Program Files\Rising\AntiSpyware\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] C:\WINDOWS\system32\UrlFilter.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\UrlRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1.0.0.15, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\shdoclc.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-16 16:38] C:\Program Files\Rising\Rav\RavScrCh.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx [(Verified)Adobe Systems, Inc., 9,0,47,0, C:2007-06-12 04:04 M:2007-06-12 04:04] [PID: 3916 / Administrator] C:\Program Files\Internet Explorer\IEXPLORE.EXE [(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2007-07-25 00:10 M:2004-08-17 20:00] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\Program Files\Rising\AntiSpyware\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] C:\WINDOWS\system32\UrlFilter.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\UrlRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1.0.0.15, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\shdoclc.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-16 16:38] C:\Program Files\Rising\Rav\RavScrCh.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-11-05 12:58 M:2008-11-05 13:00] E:\QQ\Bin\TXFTNActiveX.dll [(Verified)Tencent, 1, 0, 0, 8, C:2008-11-24 08:38 M:2008-11-24 08:38] C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx [(Verified)Adobe Systems, Inc., 9,0,47,0, C:2007-06-12 04:04 M:2007-06-12 04:04] [PID: 2704 / Administrator] C:\Program Files\Rising\AntiSpyware\knownsvr.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.12, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\NComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\Program Files\Rising\AntiSpyware\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] [PID: 3288 / Administrator] D:\soft\解决办法\W i n d o w s 清理助手第12步\ArSwp.exe [(Verified)ArSwp.com, 2, 8, 2, 1115, C:2008-11-15 11:58 M:2008-11-15 11:58] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-04 10:31 M:2008-11-08 02:48] C:\Program Files\Rising\AntiSpyware\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\Program Files\Rising\AntiSpyware\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-04 10:31 M:2008-11-04 10:31] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2007-07-26 01:34] C:\WINDOWS\system32\JPWB.IME [常诚研制, 4.00.950, C:2008-10-29 09:21 M:2007-04-02 07:14] D:\soft\解决办法\W i n d o w s 清理助手第12步\plugin\ArFix.dll [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2007-11-28 15:19 M:2007-11-28 15:19] C:\WINDOWS\system32\shdoclc.dll [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-17 20:00 M:2004-08-16 16:38] C:\Program Files\Rising\Rav\RavScrCh.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-11-05 12:58 M:2008-11-05 13:00] C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx [(Verified)Adobe Systems, Inc., 9,0,47,0, C:2007-06-12 04:04 M:2007-06-12 04:04] ======================================== 文件关联 ======================================== AutoRun.INF ======================================== Winsock提供者 ======================================== HOSTS 127.0.0.1 localhost [/CODE]