[CODE] 2008-12-07,12:39:57 SysLog Scanner 1.0 - build 20080726 Arswp (http://www.arswp.com) Windows XP Professional Service Pack 3 (build 2600) - Administrators ======================================== 注册项 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [土豆网(www.tudou.com), 1.0.1.0, C:2008-04-16 13:11 M:2008-04-16 13:11] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <"D:\Program Files\Rising\Rav\RavTask.exe" -system> [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.24, C:2008-04-29 19:36 M:2008-07-29 19:53] <"D:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.1.70, C:2008-04-29 19:50 M:2008-07-29 23:52] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2004-08-04 08:52 M:2008-04-13 19:14|(Verified)NVIDIA Corporation, 6.14.10.8390, C:2008-04-29 15:28 M:2006-02-09 05:06] <极速酷6><"D:\Program Files\酷6网\极速酷6\Ku6SpeedUpper.exe" /start> [酷6网(北京)信息技术有限公司, 1.3.1.0, C:2008-10-30 23:15 M:2008-10-30 23:15] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载] <> [N/A, C:2008-04-29 20:15 M:2008-07-28 15:43] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载全部链接] <> [N/A, C:2008-04-29 20:15 M:2007-12-10 14:17] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\导出到 Microsoft Office Excel(&X)] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到QQ表情] <> [N/A, C:2008-09-17 04:08 M:2008-09-17 04:08] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到百度搜藏] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\用Babylon翻译] <> [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2004-08-04 08:52 M:2008-04-13 19:14|(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2004-08-04 08:52 M:2008-04-13 19:13|(Verified)N/A, C:2004-08-04 08:48 M:2004-08-04 08:48] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2004-08-04 08:52 M:2008-04-13 19:14|(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2004-08-04 08:52 M:2008-04-13 19:13|(Verified)N/A, C:2004-08-04 08:48 M:2004-08-04 08:48] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2004-08-04 08:52 M:2008-04-13 19:14|(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2004-08-04 08:52 M:2008-04-13 19:13|(Verified)N/A, C:2006-11-02 23:38 M:2006-11-02 23:38] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}] <启动迅雷5> [(Verified)Thunder Networking Technologies,LTD, 5, 6, 8, 19, C:2008-04-29 20:15 M:2008-10-16 18:18] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F30F7813-95DF-4ded-9C61-51554E848075}] [N/A, C:2007-08-16 12:34 M:2008-11-19 10:45] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{FE11E218-278E-4288-B52D-2C72EEB011BB}] [N/A, C:2007-08-16 12:34 M:2008-11-19 10:45] ======================================== 启动项 [启动飞速土豆] "D:\Program Files\Tudou\飞速Tudou\TudouVa.exe" /ArgumentsHere > [土豆网(www.tudou.com), 1.0.1.0, C:2008-04-16 13:11 M:2008-04-16 13:11] ======================================== 计划任务 [SogouImeMgr.job] "D:\PROGRA~1\SOGOUI~1\360~1.165\PinyinRepair.exe" /S > [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] [GoogleUpdateTaskUser.job] "D:\Documents and Settings\lhj\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c > [(Verified)Google Inc., 1.2.131.7, C:2008-09-05 07:45 M:2008-09-05 07:45] ======================================== 组件 Shell Extension [RISING] {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-04-29 19:36 M:2008-07-29 19:53] Protocols [] {BBCA9F81-8F4F-11D2-90FF-0080C83D3571} [N/A, C:2010-05-18 16:07 M:2010-05-18 16:07] [Microsoft Infotech Storage Protocol for IE 4.0] {0A9007C0-4076-11D3-8789-0000F8105754} [Microsoft Corporation, 05.02.9336.01, C:2000-04-19 18:47 M:2000-04-19 18:47] [IEProtocolHandler Class] {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} [(Verified)Skype Technologies, 1, 0, 27, 2, C:2008-05-13 13:28 M:2008-05-13 13:28] BrowserHelperObject [ThunderAtOnce Class] {01443AEC-0FD1-40fd-9C87-E93D1494C233} [(Verified)Thunder Networking Technologies,LTD, 1.0.5.34, C:2008-09-15 14:43 M:2008-09-06 10:36] [WebProtect] {53763D1D-9CA8-4C7C-9756-A8E6B8FC063B} [(Verified)China Merchants Bank, 1, 0, 0, 1, C:2008-09-15 14:39 M:2008-09-15 14:39] [BandIE Class] {77FEF28E-EB96-44FF-B511-3185DEA48697} [(Verified)Baidu.com, Inc., 2, 0, 2, 181, C:2008-12-04 17:16 M:2008-11-07 03:34] [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120, C:2008-04-29 20:15 M:2008-09-19 16:44] ToolBar [Babylon] {965B54B0-71E0-4611-8DE7-F73FA0B20E26} [(Verified)Babylon Ltd., 2.0.1.5, C:2008-06-05 11:34 M:2008-06-05 11:34] [完美网译通] {F43BD772-ABDD-43b7-A96A-3E9E61946EC0} [北京完美时空有限公司, 1, 6, 0, 0, C:1979-10-14 22:02 M:2005-04-05 22:08] [百度工具栏] {B580CF65-E151-49C3-B73F-70B13FCA8E86} [(Verified)Baidu.com, Inc., 2, 0, 2, 181, C:2008-12-04 17:16 M:2008-11-07 03:34] ActiveX Extension [ThunderAtOnce Class] {01443AEC-0FD1-40FD-9C87-E93D1494C233} [(Verified)Thunder Networking Technologies,LTD, 1.0.5.34, C:2008-09-15 14:43 M:2008-09-06 10:36] [PhotoDrawEx Class] {05F5F404-7C24-4B39-B5CC-340CEDEB9C0D} [(Verified)TENCENT, 1, 9, 109, 144, C:2007-11-03 12:06 M:2007-11-03 12:06] [GerneralPeerID Class] {0A47E819-F82E-4D5D-B806-6A9EA94D68CD} [Copyright 2007, 1, 0, 0, 1, C:2008-05-01 23:38 M:2008-04-23 18:43] [Edit Class] {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} [Copyright 2004, 1, 2, 0, 3, C:2007-09-14 15:54 M:2007-09-14 15:54] [Google Update Plugin] {20742C4F-F847-47AB-9154-FD89B34913B0} [(Verified)Google Inc., 1.2.131.27, C:2008-11-21 20:20 M:2008-11-21 20:20] [XWebPlayOCX Control] {3C8A6608-67D1-4AD1-AFE3-967ED0929248} [Info, 1.1.1.4, C:2006-10-13 17:01 M:2006-10-13 17:01] [Thunder Agent Class] {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} [(Verified)Thunder Networking Technologies,LTD, 6, 0, 4, 42, C:2008-04-29 20:15 M:2008-09-23 10:40] [WebProtect] {53763D1D-9CA8-4C7C-9756-A8E6B8FC063B} [(Verified)China Merchants Bank, 1, 0, 0, 1, C:2008-09-15 14:39 M:2008-09-15 14:39] [XMP Class] {6483F145-A768-4C41-AACC-52D4D7845851} [Xunlei Networking Technologies,LTD, 2, 1, 8, 90, C:2008-04-29 20:15 M:2008-10-16 18:17] [XDRM] {693571CB-54A3-4E90-9D52-EEAE1334E2D3} [Copyright XunLei 2007, 1, 0, 0, 7, C:2008-04-29 20:15 M:2008-08-19 17:17] [MediaComm Class] {7670648D-461B-42AF-BDFE-46D26AF5EFF2} [(Verified)Thunder Networking Technologies,LTD, 3, 1, 6, 81, C:2008-11-21 20:38 M:2008-11-25 11:16] [BandIE Class] {77FEF28E-EB96-44FF-B511-3185DEA48697} [(Verified)Baidu.com, Inc., 2, 0, 2, 181, C:2008-12-04 17:16 M:2008-11-07 03:34] [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120, C:2008-04-29 20:15 M:2008-09-19 16:44] [Windows Live 登录帮助程序] {9030D464-4C02-4ABF-8ECC-5164760863C6} [] [Babylon] {965B54B0-71E0-4611-8DE7-F73FA0B20E26} [(Verified)Babylon Ltd., 2.0.1.5, C:2008-06-05 11:34 M:2008-06-05 11:34] [DapCtrl Class] {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} [(Verified)ShenZhen Thunder Networking Technologies Ltd., 2, 1, 5807, 94, C:2008-10-22 22:47 M:2008-10-16 17:13] [百度工具栏] {B580CF65-E151-49C3-B73F-70B13FCA8E86} [(Verified)Baidu.com, Inc., 2, 0, 2, 181, C:2008-12-04 17:16 M:2008-11-07 03:34] [RealPlayer G2 Control] {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} [(Verified)RealNetworks, Inc., 6.0.9.2568, C:2006-10-18 23:05 M:2006-10-18 23:05] [Windows Live 登录控制] {D2517915-48CE-4286-970F-921E881B8C5C} [] [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] [PlayerCtrl Class] {E05BC2A3-9A46-4A32-80C9-023A473F5B23} [(Verified)深圳腾讯科技, 3, 1, 162, 202, C:2008-05-15 09:37 M:2008-05-15 09:37] [Thunder DapPlayer] {EEDD6FF9-13DE-496B-9A1C-D78B3215E266} [ShenZhen Thunder Networking Technologies Ltd., 3, 0, 5712, 71, C:2008-08-07 20:02 M:2008-07-31 15:12] [XPPlayer Class] {F3E70CEA-956E-49CC-B444-73AFE593AD7F} [(Verified)Xunlei Networking Technologies,LTD, 2, 1, 5871, 223, C:2008-10-22 22:47 M:2008-10-13 18:29] [完美网译通] {F43BD772-ABDD-43B7-A96A-3E9E61946EC0} [北京完美时空有限公司, 1, 6, 0, 0, C:1979-10-14 22:02 M:2005-04-05 22:08] Context Menu [EmEditor] {DFA0CC7F-D36B-47D1-8EF5-415C1DA53F57} [(Verified)N/A, C:2008-03-25 22:06 M:2008-03-25 22:06] [LCNFile] {823bfc3e-527d-4f44-8d88-e0578386d207} [] [RisingRavExt] {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-04-29 19:36 M:2008-07-29 19:53] [WinRAR] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2008-04-29 19:57 M:2007-05-30 08:28] ======================================== 服务 [Contrl Center of Storm Media / ccosm][Running/Auto Start] [北京暴风网际科技有限公司, 3, 8, 10, 25, C:2008-10-28 12:46 M:2008-10-28 12:46] [Human Interface Device Access / HidServ][Stopped/Disabled] <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\hidserv.dll"> [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:14] [InstallDriver Table Manager / IDriverT][Stopped/Manual Start] <"D:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"> [Macrovision Corporation, 11.00.28844, C:2005-04-04 00:41 M:2005-04-04 00:41] [Qvod Terminal / Qvod Terminal][Running/Auto Start] [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 55, C:2008-10-21 16:46 M:2008-10-21 16:46] [Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start] <"%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini"> [CACE Technologies, 3, 1, 0, 27, C:2005-08-03 05:18 M:2005-08-03 05:18] [Ulead Burning Helper / UleadBurningHelper][Running/Auto Start] [Ulead Systems, Inc., 1, 0, 0, 4, C:2008-05-03 12:18 M:2005-01-31 09:45] [Cmb WebProtect Support / CMBWPS][Running/Auto Start] [(Verified)China Merchants Bank, 1, 0, 0, 1, C:2008-05-14 20:51 M:2007-08-27 16:35] [NVIDIA Display Driver Service / NVSvc][Running/Auto Start] <%SystemRoot%\system32\nvsvc32.exe> [(Verified)NVIDIA Corporation, 6.14.10.8390, C:2008-04-29 15:28 M:2006-02-09 05:06] [Rising Proxy Service / RfwProxySrv][Running/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.37, C:2008-04-29 19:50 M:2008-07-29 23:52] [Rising Personal Firewall Service / RfwService][Running/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.77, C:2008-04-29 19:50 M:2079-10-18 22:20] [Rising Process Communication Center / RsCCenter][Running/Auto Start] <"D:\Program Files\Rising\Rav\CCenter.exe"> [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.33, C:2008-04-29 19:36 M:2008-07-29 19:54] [Rising RealTime Monitor / RsRavMon][Stopped/Auto Start] <"D:\PROGRAM FILES\RISING\RAV\Ravmond.exe"> [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.80, C:2008-04-29 19:36 M:2008-07-29 19:53] ======================================== 驱动 [BdGuard / BdGuard][Running/Boot Start] [Copyright (C) 2005, 1, 0, 12, 0, C:2008-12-04 17:17 M:2008-12-04 17:17] [fat32 driver / Fat32][Running/Auto Start] [Microsoft Corporation, 3, 0, 0, 19, C:2008-07-06 10:54 M:2008-07-13 17:20] [InCD File System / InCDFs][Stopped/Disabled] [] [InCDPass / InCDPass][Stopped/System Start] [] [InCD Reader / InCDRm][Stopped/System Start] [] [sptd / sptd][Running/Boot Start] [N/A, C:2008-05-03 12:14 M:2008-05-03 12:14] [TCP/IP Protocol Driver / Tcpip][Running/System Start] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249), C:2004-08-04 07:14 M:2008-06-20 19:51] [Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start] [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK, C:2005-01-07 17:07 M:2008-04-13 09:36] [HookCont / HookCont][Running/System Start] <\SystemRoot\system32\drivers\HookCont.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 7, C:2008-04-29 19:36 M:2008-07-29 19:53] [HookNtos / HookNtos][Running/System Start] <\SystemRoot\system32\drivers\HookNtos.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 52, C:2008-04-29 19:36 M:2008-10-25 12:06] [HookReg / HookReg][Running/System Start] <\SystemRoot\system32\drivers\HookReg.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 29, C:2008-04-29 19:36 M:2008-11-09 13:34] [HookSys / HookSys][Running/System Start] <\SystemRoot\system32\drivers\HookSys.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 55, C:2008-04-29 19:36 M:2008-08-27 20:32] [HookUrl / HookUrl][Running/Auto Start] <\??\D:\Program Files\Rising\Rfw\HookUrl.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.13, C:2008-04-29 19:50 M:2008-12-07 07:25] [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start] [(Verified)Realtek Semiconductor Corp., 5.10.00.5282 built by: WinDDK, C:2008-04-29 20:01 M:2006-07-24 16:15] [ATK0100 ACPI UTILITY / MTsensor][Running/Manual Start] [(Verified)1043, 2, 15, 46, C:2008-04-29 15:28 M:2005-02-17 23:07] [NetGroup Packet Filter Driver / NPF][Stopped/Manual Start] [(Verified)CACE Technologies, 4.0.0.755, C:2005-08-03 05:10 M:2007-01-26 01:31] [nv / nv][Running/Manual Start] [(Verified)NVIDIA Corporation, 6.14.10.8390, C:2008-04-29 15:28 M:2006-02-09 05:06] [Direct Parallel Link Driver / Ptilink][Running/Manual Start] [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2004-06-06 14:13 M:2004-06-06 14:13] [Rising Rfwbase Driver / RfwBase][Running/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.10, C:2008-04-29 19:50 M:2008-07-29 23:51] [rimmptsk / rimmptsk][Running/Manual Start] [(Verified)REDC, 1.0.0.9, C:2008-04-29 20:03 M:2005-11-16 20:28] [rimsptsk / rimsptsk][Running/Manual Start] [(Verified)REDC, 1.00.02.04, C:2008-04-29 20:03 M:2005-11-01 17:54] [Ricoh xD-Picture Card Driver / rismxdp][Running/Manual Start] [(Verified)REDC, 1.00.02.08, C:2008-04-29 20:03 M:2005-11-01 18:08] [RsFwDrv / RsFwDrv][Running/System Start] <\??\D:\Program Files\Rising\Rfw\RsFwDrv.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.35, C:2008-04-29 19:50 M:2008-12-07 07:25] [RsNTGDI / RsNTGDI][Running/Boot Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 3, C:2008-04-29 19:36 M:2008-07-29 19:55] [Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start] [(Verified)Realtek Semiconductor Corporation , 5.638.1116.2005 built by: WinDDK, C:2008-04-29 20:02 M:2005-11-16 16:08] [Secdrv / Secdrv][Stopped/Manual Start] [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2004-07-17 19:36 M:2008-04-13 09:39] [USB2.0 PC Camera (SNP2STD) / SNP2STD][Running/Manual Start] [(Verified)Copyright 2004, 5, 1, 5, 5(v2), C:2008-04-29 15:28 M:2006-03-22 15:08] [SAMSUNG Mobile USB Device 1.0 driver (WDM) / ss_bus][Stopped/Manual Start] [(Verified)MCCI, V4.34, C:2011-06-13 22:15 M:2005-08-30 17:57] [SAMSUNG Mobile USB Modem 1.0 Filter / ss_mdfl][Stopped/Manual Start] [(Verified)MCCI, V4.34, C:2011-06-13 22:15 M:2005-08-30 17:58] [SAMSUNG Mobile USB Modem 1.0 Drivers / ss_mdm][Stopped/Manual Start] [(Verified)MCCI, V4.34, C:2011-06-13 22:15 M:2005-08-30 17:59] [Synaptics TouchPad Driver / SynTP][Running/Manual Start] [(Verified)Synaptics, Inc., 8.3.5 25May06, C:2008-04-29 20:02 M:2006-05-25 19:40] ======================================== 进程 [PID: 572 / SYSTEM] \SystemRoot\System32\smss.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:14] [PID: 636 / SYSTEM] \??\D:\WINDOWS\system32\csrss.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:13] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 660 / SYSTEM] \??\D:\WINDOWS\system32\winlogon.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] [PID: 704 / SYSTEM] D:\WINDOWS\system32\services.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 716 / SYSTEM] D:\WINDOWS\system32\lsass.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] [PID: 896 / SYSTEM] D:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 944 / NETWORK SERVICE] D:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 1000 / SYSTEM] D:\Program Files\Rising\Rav\CCenter.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.33, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 1016 / SYSTEM] D:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] [PID: 1096 / NETWORK SERVICE] D:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 1144 / LOCAL SERVICE] D:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 1176 / SYSTEM] D:\PROGRAM FILES\RISING\RAV\ravmond.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.80, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\PROGRAM FILES\RISING\RAV\BWList.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.5, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\PROGRAM FILES\RISING\RAV\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\RsLog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.36, C:2008-04-29 19:36 M:2008-07-29 19:55] D:\PROGRAM FILES\RISING\RAV\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\MonRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.29, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\PROGRAM FILES\RISING\RAV\Hooksys.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 12, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\PROGRAM FILES\RISING\RAV\HookReg.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\PROGRAM FILES\RISING\RAV\HookNtos.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\PROGRAM FILES\RISING\RAV\rswalmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 24, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\PROGRAM FILES\RISING\RAV\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41, C:2008-04-29 19:36 M:2008-08-22 21:17] D:\PROGRAM FILES\RISING\RAV\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\ffr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-29 19:36 M:2008-10-09 21:49] D:\Program Files\Rising\Rav\RsStore.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.9, C:2008-04-29 19:36 M:2008-07-29 19:55] D:\PROGRAM FILES\RISING\RAV\HookCont.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\Program Files\Rising\Rav\fakescan.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.14, C:2008-04-29 19:36 M:2008-07-29 19:55] D:\Program Files\Rising\Rav\Scanner.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.39, C:2008-04-29 19:36 M:2008-07-29 19:55] D:\PROGRAM FILES\RISING\RAV\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\PROGRAM FILES\RISING\RAV\HookWeb.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.3, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\PROGRAM FILES\RISING\RAV\nvfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 7, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\scanexec.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 22, C:2008-04-29 19:36 M:2008-08-27 20:32] D:\PROGRAM FILES\RISING\RAV\unexe.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 6, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\scanex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 1, 0, C:2008-04-29 19:36 M:2008-12-02 20:23] D:\PROGRAM FILES\RISING\RAV\pearc.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 8, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\extfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 32, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\scanpack.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 10, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\revm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 11, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\urutils.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 7, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\ur000.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 22, C:2008-04-29 19:36 M:2008-10-09 21:49] D:\PROGRAM FILES\RISING\RAV\scriptci.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 4, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\ur001.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-04-29 19:36 M:2008-10-09 21:49] D:\PROGRAM FILES\RISING\RAV\uroutine.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\extmail.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 10, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\scansct.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 11, C:2008-04-29 19:36 M:2008-09-02 22:54] [PID: 1400 / SYSTEM] D:\Program Files\Rising\Rfw\rfwProxy.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.37, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\Program Files\Rising\Rfw\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\RfwRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.17, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\urlrule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1.0.0.15, C:2010-05-17 14:51 M:2008-07-29 23:52] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\Program Files\Rising\Rfw\MonMid.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.6, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 1636 / SYSTEM] D:\PROGRAM FILES\RISING\RAV\RavStub.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.10, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\PROGRAM FILES\RISING\RAV\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 1876 / lhj] D:\WINDOWS\Explorer.EXE [(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll [(Verified)Thunder Networking Technologies,LTD, 1.0.5.34, C:2008-09-15 14:43 M:2008-09-06 10:36] D:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120, C:2008-04-29 20:15 M:2008-09-19 16:44] D:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_01.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 20, C:2008-10-22 22:46 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_01.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 16, C:2008-10-22 22:46 M:2008-10-16 18:17] D:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll [Microsoft Corporation, 8.00.50727.762, C:2007-05-29 11:17 M:2007-05-29 11:17] D:\Program Files\WinRAR\rarext.dll [N/A, C:2008-04-29 19:57 M:2007-05-30 08:28] D:\WINDOWS\system32\RavExt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\Program Files\Rising\Rav\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\EmEditor\emedshl.dll [(Verified)N/A, C:2008-03-25 22:06 M:2008-03-25 22:06] D:\WINDOWS\system32\nvcpl.dll [(Verified)NVIDIA Corporation, 6.14.10.8390, C:2008-04-29 15:28 M:2006-02-09 05:06] D:\WINDOWS\system32\NVRSZHC.DLL [NVIDIA Corporation, 6.14.10.8390, C:2008-04-29 15:28 M:2006-02-09 05:06] D:\WINDOWS\system32\nvshell.dll [N/A, C:2008-04-29 15:28 M:2006-02-09 05:06] [PID: 1896 / SYSTEM] D:\WINDOWS\system32\spoolsv.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 620 / lhj] D:\Program Files\Rising\Rav\RavTask.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.24, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\Program Files\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\RSAPPMGR.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 640 / lhj] D:\Program Files\Rising\Rav\Ravmon.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.01.27, C:2008-04-29 19:36 M:2008-08-27 20:32] D:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\Program Files\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41, C:2008-04-29 19:36 M:2008-08-22 21:17] D:\Program Files\Rising\Rav\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\MonRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.29, C:2008-04-29 19:36 M:2008-07-29 19:53] D:\Program Files\Rising\Rav\PngDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Program Files\Rising\Rav\Rsguilib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 90, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rav\RsXML.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2008-04-29 19:36 M:2008-07-29 19:54] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 980 / lhj] D:\Program Files\酷6网\极速酷6\Ku6SpeedUpper.exe [酷6网(北京)信息技术有限公司, 1.3.1.0, C:2008-10-30 23:15 M:2008-10-30 23:15] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] [PID: 992 / lhj] D:\WINDOWS\system32\CTFMON.EXE [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2004-08-04 08:52 M:2008-04-13 19:13] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] [PID: 1084 / lhj] D:\Program Files\Tudou\飞速Tudou\TudouVa.exe [土豆网(www.tudou.com), 1.0.1.0, C:2008-04-16 13:11 M:2008-04-16 13:11] D:\Program Files\Tudou\飞速Tudou\upnpdll.dll [N/A, C:2008-01-26 16:53 M:2008-01-26 16:53] D:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll [Microsoft Corporation, 8.00.50727.762, C:2007-05-29 11:17 M:2007-05-29 11:17] D:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll [Microsoft Corporation, 8.00.50727.762, C:2007-05-29 11:17 M:2007-05-29 11:17] D:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80.DLL [Microsoft Corporation, 8.00.50727.762, C:2007-05-29 11:22 M:2007-05-29 11:22] D:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80CHS.DLL [Microsoft Corporation, 8.00.50727.762, C:2007-05-29 11:26 M:2007-05-29 11:26] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] [PID: 1804 / SYSTEM] D:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 1852 / SYSTEM] D:\Program Files\QVOD\stormliv.exe [北京暴风网际科技有限公司, 3, 8, 10, 25, C:2008-10-28 12:46 M:2008-10-28 12:46] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 2068 / SYSTEM] D:\Program Files\CMBCHINA\WebProtect\WPService.exe [(Verified)China Merchants Bank, 1, 0, 0, 1, C:2008-05-14 20:51 M:2007-08-27 16:35] D:\Program Files\CMBCHINA\WebProtect\WebProtectPlus.dll [(Verified)China Merchants Bank, 1, 0, 0, 1, C:2008-05-14 20:51 M:2007-08-20 16:16] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] [PID: 2132 / SYSTEM] D:\WINDOWS\system32\inetsrv\inetinfo.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852), C:2008-05-07 22:54 M:2008-04-13 19:14] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 2208 / SYSTEM] D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [(Verified)Microsoft Corporation, 7.00.9466, C:2003-06-19 23:25 M:2003-06-19 23:25] D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll [Microsoft Corporation, 7.00.9466, C:2002-01-29 15:06 M:2002-01-29 15:06] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 2464 / SYSTEM] D:\WINDOWS\system32\nvsvc32.exe [(Verified)NVIDIA Corporation, 6.14.10.8390, C:2008-04-29 15:28 M:2006-02-09 05:06] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 2520 / SYSTEM] D:\Program Files\QVOD\QvodTerminal.exe [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 55, C:2008-10-21 16:46 M:2008-10-21 16:46] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 2632 / SYSTEM] D:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-04 08:52 M:2008-04-13 19:14] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 2828 / SYSTEM] D:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [Ulead Systems, Inc., 1, 0, 0, 4, C:2008-05-03 12:18 M:2005-01-31 09:45] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 3444 / LOCAL SERVICE] D:\WINDOWS\System32\alg.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852), C:2004-08-04 08:52 M:2008-04-13 19:13] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 4064 / lhj] D:\Program Files\Thunder Network\Thunder\Program\Thunder5.exe [(Verified)Thunder Networking Technologies,LTD, 5.8.6.607, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\BugReport.dll [Thunder Networking Technologies,LTD, 1, 4, 1, 20, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Thunder Network\Thunder\Program\TaskManager.dll [Thunder Networking Technologies,LTD, 1, 3, 10, 72, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\download_interface.dll [Thunder Networking Technologies,LTD, 3, 3, 2, 325, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\mp.dll [Thunder Networking Technologies,LTD, 1, 0, 2, 2, C:2008-10-22 22:46 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-06-26 16:27 M:2008-06-20 11:31] D:\Program Files\Thunder Network\Thunder\Program\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-06-26 16:27 M:2008-06-20 11:31] D:\Program Files\Thunder Network\Thunder\Program\asyn_frame.dll [Thunder Networking Technologies,LTD, 1, 3, 2, 28, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\ATL71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\Program Files\Thunder Network\Thunder\Program\XLNet.Dll [Thunder Networking Technologies,LTD, 1, 5, 2, 25, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Program Files\Thunder Network\Thunder\Program\dl_peer_id.dll [Thunder Networking Technologies,LTD, 3, 1, 2, 3, C:2008-08-24 08:46 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\iTargetAD.dll [Thunder Networking Technologies,LTD, 1, 0, 4, 35, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\backend_agent.dll [Thunder Networking Technologies,LTD, 1, 1, 2, 25, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\zlib1.dll [(C) 1995-2004 Jean-loup Gailly & Mark Adler, 1.2.3, C:2008-10-22 22:46 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\ptl.dll [Thunder Networking Technologies,LTD, 3, 2, 2, 35, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\xl_stat.dll [Copyright 2007, 1, 1, 2, 6, C:2008-06-26 16:27 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\BHOStub.dll [Thunder Networking Technologies,LTD, 1, 1, 1, 10, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\DownAndPlay\DownAndPlay.dll [Copyright 2007, 1, 0, 12, 30, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\p2p_network_com.dll [版权所有 (C) 2008, 1, 0, 2, 25, C:2008-07-21 08:31 M:2008-10-16 18:17] D:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] D:\Program Files\Thunder Network\Thunder\Components\InMedia\iEmbedShell.dll [ , 1, 0, 2, 25, C:2008-04-29 20:15 M:2008-11-10 10:11] D:\Program Files\Thunder Network\Thunder\Program\p2p_upload.dll [Thunder Networking Technologies,LTD, 1,1,2,13, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\InMedia\iEmbed19.dll [Thunder Networking Technologies,LTD, 3, 4, 10, 117, C:2008-11-21 20:38 M:2008-11-27 11:07] D:\Program Files\Thunder Network\Thunder\Program\p2p.dll [Thunder Networking Technologies,LTD, 1,1,2,37, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\fs.dll [Thunder Networking Technologies,LTD, 1, 1, 2, 13, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\InMedia\PlayerHelper.dll [thunder, 1, 2, 7, 61, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\InMedia\XLIPC.DLL [Thunder Networking Technologies,LTD, 1, 0, 0, 2, C:2008-04-29 20:15 M:2008-11-07 01:58] D:\Program Files\Thunder Network\Thunder\Program\xldc.dll [Thunder Networking Technologies,LTD, 3, 6, 2, 23, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\stream.dll [Thunder Networking Technologies,LTD, 2, 1, 2, 401, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\p2sp.dll [Thunder Networking Technologies,LTD, 1, 1, 2, 43, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\down_dispatcher.dll [Thunder Networking Technologies,LTD, 1, 0, 2, 29, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\p2p_local_res.dll [Thunder Networking Technologies,LTD, 1,1,2,18, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\al.dll [Thunder Networking Technologies,LTD, 1,1,2,23, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\P4PClient\P4PClient.dll [Thunder Networking Technologies,LTD, 2, 2, 5, 70, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\Community\XLCommunity.dll [Thunder Networking Technologies,LTD, 2, 5, 0, 90, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\RegisterDll.dll [Thunder Networking Technologies,LTD, 2, 17, 0, 67, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\MSVCIRT.dll [Microsoft Corporation, 7.0.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\imdt.dll [Thunder Networking Technologies,LTD, 1.2.0.21, C:2008-06-26 16:27 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\Community\audioCtrl.dll [Thunder Networking Technologies,LTD, 1, 0, 2, 2, C:2008-08-24 08:46 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\Community\xlaudio.dll [Copyright (c) 2003-2008 Thunder Networking Technologies,LTD, 1, 0, 2, 4, C:2008-08-24 08:46 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\xlvdt.dll [Thunder Networking Technologies,LTD, 1.0.2.6, C:2008-08-24 08:46 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\Security\ThunderSafe.dll [深圳市迅雷网络技术有限公司, 2, 1, 5, 99, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\Security\ConfigManager.dll [深圳市迅雷网络技术有限公司, 1, 0, 0, 1, C:2008-06-26 16:27 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\Security\SafeManager.dll [Xunlei Networking Technologies,LTD, 1, 0, 5, 20, C:2008-06-26 16:27 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\Security\SafeStatistic.dll [Xunlei Networking Technologies,LTD, 1, 0, 0, 1, C:2008-08-24 08:46 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\XLNetU.Dll [Thunder Networking Technologies,LTD, 1, 5, 1, 24, C:2008-06-26 16:27 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Plugins\XLSafeHost\XLSafeHost.dll [深圳市迅雷网络技术有限公司, 1, 2, 7, 87, C:2008-08-05 11:01 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Plugins\XLSafeHost\ThunderRAV\ThunderRAV.dll [N/A, C:2007-09-19 12:26 M:2007-09-19 12:26] D:\Program Files\Thunder Network\Thunder\Plugins\XLSafeHost\ThunderRAV\bin\rsscan.dll [Beijing Rising Technology Co., Ltd., 20, 0, 0, 4, C:2008-04-02 14:42 M:2008-04-02 14:42] D:\Program Files\Thunder Network\Thunder\Program\bd.dll [Thunder Networking Technologies,LTD, 1, 0, 2, 19, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Plugins\XLSafeHost\ThunderRAV\bin\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41, C:2007-08-23 13:27 M:2008-08-22 21:17] D:\Program Files\Thunder Network\Thunder\Plugins\XLSafeHost\ThunderRAV\bin\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18, C:2008-05-01 23:25 M:2008-07-29 19:54] D:\Program Files\Thunder Network\Thunder\Plugins\XLSafeHost\ThunderRAV\bin\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-05-01 23:25 M:2008-07-29 19:54] D:\Program Files\Thunder Network\Thunder\Plugins\XLSafeHost\ThunderRAV\bin\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-05-01 23:25 M:2008-07-29 19:54] D:\Program Files\Thunder Network\Thunder\Plugins\XLSafeHost\AutoHelp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.9, C:2008-10-22 22:52 M:2008-08-16 14:51] D:\Program Files\Thunder Network\Thunder\Components\Search\XLSearch.dll [Thunder Networking Technologies,LTD, 1, 1, 7, 25, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\LiveUpdate.dll [Thunder Networking Technologies,LTD, 1, 2, 4, 26, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\XLSoftBase\DrThunderHost.dll [深圳市迅雷网络技术有限公司, 1.0.0.9, C:2008-10-22 22:47 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\XLSoftBase\DrKernel.dll [深圳市迅雷网络技术有限公司, 1.0.0.4, C:2008-10-22 22:47 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\XLSoftBase\DrSoftIdentifier.dll [深圳市迅雷网络技术有限公司, 1.0.0.9, C:2008-10-22 22:47 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\XLSoftBase\DrUpdate.dll [深圳市迅雷网络技术有限公司, 1.1.0.3, C:2008-10-22 22:47 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Plugins\GouGouTop\GouGouTop.dll [Thunder Networking Technologies,LTD, 1, 0, 2, 5, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin18.dll [(Verified)Thunder Networking Technologies,LTD, 3, 1, 6, 81, C:2008-11-21 20:38 M:2008-11-25 11:16] D:\Program Files\Thunder Network\Thunder\Plugins\BhoAdv\bho_adv.dll [深圳市迅雷网络技术有限公司, 1.0.1.0, C:2008-04-29 20:15 M:2007-12-10 14:17] D:\Program Files\Thunder Network\Thunder\Plugins\KanKanTop\KanKanTop.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 4, C:2008-05-01 23:38 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\ExplorerHelper\ExplorerHelper.dll [Thunder Networking Technologies,LTD, 1, 0, 4, 19, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\Tips\TipsClient.dll [Thunder Networking Technologies,LTD, 2, 2, 14, 120, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\VPSHELL\VPSHELL.dll [迅雷网络, 4, 0, 0, 38, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\UserExperience\UserExperience.dll [Thunder Networking Technologies,LTD, 1, 0, 3, 5, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsXlCom.dll [版权所有 (C) 2007, 1, 0, 0, 30, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\Tips\XLIPC.DLL [Thunder Networking Technologies,LTD, 1, 0, 0, 2, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_01.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 16, C:2008-10-22 22:46 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\ResWorker\MediaWorker.dll [Thunder Networking Technologies,LTD, 1, 2, 0, 22, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\DownloadStat\DownloadStat.dll [Thunder Networking Technologies,LTD, 1, 4, 1, 6, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Program\emule_id.dll [Copyright 2007, 1, 0, 2, 11, C:2008-05-01 23:38 M:2008-10-16 18:17] [PID: 1408 / lhj] D:\WINDOWS\system32\wuauclt.exe [(Verified)Microsoft Corporation, 7.2.6001.788 (winmain_oob/wu_wsuswlc(wmbla).081016-1330), C:2008-04-29 19:20 M:2008-10-16 14:09] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 3396 / lhj] D:\Program Files\Maxthon2\Maxthon.exe [(Verified)Maxthon International ltd., 2, 1, 4, 443, C:2008-09-02 13:31 M:2008-09-02 13:31] D:\Program Files\Maxthon2\mxpp.dll [(Verified)Maxthon International ltd., 1, 0, 0, 216, C:2008-09-02 13:32 M:2008-09-02 13:32] D:\Program Files\Maxthon2\MxSk.dll [(Verified)Maxthon, 1, 0, 0, 369, C:2008-09-02 13:32 M:2008-09-02 13:32] D:\Program Files\Maxthon2\MxProxy2.dll [(Verified)Maxthon International ltd., 1, 0, 0, 4099, C:2008-09-02 13:32 M:2008-09-02 13:32] D:\Program Files\Maxthon2\MxExt.dll [(Verified)N/A, C:2008-09-02 13:32 M:2008-09-02 13:32] D:\Program Files\Maxthon2\MxUI.dll [Maxthon International, 3, 3, 0, 9, C:2008-07-31 14:44 M:2008-07-31 14:44] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Program Files\Maxthon2\mxtool.dll [(Verified)Copyright 2005, 1, 0, 0, 1, C:2008-09-02 13:32 M:2008-09-02 13:32] D:\Program Files\Maxthon2\maxzlib.dll [(Verified)(C) 1995-2004 Jean-loup Gailly & Mark Adler, 1.2.3, C:2008-09-02 13:31 M:2008-09-02 13:31] D:\Program Files\Maxthon2\Modules\MxPageSearch\MxPageSearch.dll [(Verified)Maxthon International ltd., 1,0,0,1386, C:2008-09-02 13:32 M:2008-09-02 13:32] D:\Program Files\Maxthon2\Modules\MxWebBoost\MxWebBoost.dll [(Verified)Maxthon, 1,0,2,1267, C:2008-09-02 13:32 M:2008-09-02 13:32] D:\Program Files\Maxthon2\mxdb.dll [(Verified)Max, 3, 5, 3, 125, C:2008-09-02 13:32 M:2008-09-02 13:32] D:\Program Files\Maxthon2\Modules\MxHistory\MxHistory.dll [(Verified)Maxthon International ltd., 1, 0, 0, 289, C:2008-09-02 13:32 M:2008-09-02 13:32] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\Program Files\Maxthon2\MxFav.dll [(Verified)Maxthon International ltd., 1, 0, 0, 258, C:2008-09-02 13:32 M:2008-09-02 13:32] D:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.1.5807.94.(313).dll [(Verified)ShenZhen Thunder Networking Technologies Ltd., 2, 1, 5807, 94, C:2008-10-22 22:47 M:2008-10-16 17:13] D:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.1.5871.223.(314).dll [(Verified)Xunlei Networking Technologies,LTD, 2, 1, 5871, 223, C:2008-10-22 22:47 M:2008-10-13 18:29] D:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] D:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin18.dll [(Verified)Thunder Networking Technologies,LTD, 3, 1, 6, 81, C:2008-11-21 20:38 M:2008-11-25 11:16] D:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work [Xunlei Networking Technologies,LTD, 2, 1, 8, 90, C:2008-04-29 20:15 M:2008-10-16 18:17] D:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\ATL71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 20:15 M:2007-12-18 09:50] D:\Program Files\Common Files\Thunder Network\KanKan\StreamCtrl.1.0.5807.20.(313).dll [Xunlei Networking Technologies,LTD, 1.0.5805.7, C:2008-10-22 22:47 M:2008-10-16 18:17] D:\Program Files\Thunder Network\Thunder\Components\DownAndPlay\RealMediaSplitter.ax [Gabest, 1, 0, 2, 1, C:2008-04-29 20:15 M:2008-10-11 14:56] D:\Program Files\Common Files\Real\Codecs\drvc.dll [RealNetworks, Inc., 10.0.0.1740, C:2008-05-01 08:17 M:2006-10-18 23:05] D:\WINDOWS\system32\PNCRT.dll [Real Networks, Inc, 6.0.0.0, C:2008-05-24 19:15 M:2008-03-05 11:01] D:\WINDOWS\system32\msdmo.dll [(Verified)N/A, C:2004-08-04 08:52 M:2008-04-13 19:13] D:\Program Files\Common Files\Real\Codecs\RAAC.dll [RealNetworks, Inc., 10.0.0.1066, C:2008-05-01 08:17 M:2006-10-18 23:05] D:\Program Files\MvBox\DCDSPFilter.ax [http://www.dsp-worx.de/, 1, 0, 3, 0, C:2005-08-22 03:00 M:2005-08-22 03:00] D:\WINDOWS\system32\freeime.ime [极点五笔工作室, 6.4.0.0, C:2008-12-06 14:25 M:2008-10-30 20:17] [PID: 3880 / SYSTEM] D:\Program Files\Rising\Rfw\rfwsrv.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.77, C:2008-04-29 19:50 M:2079-10-18 22:20] D:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\Program Files\Rising\Rfw\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\RfwRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.17, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\rfwlog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.16, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\Rfwdrv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.50, C:2008-04-29 19:50 M:2008-12-07 07:25] D:\Program Files\Rising\Rfw\ijt_ctrl.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.0, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\unvdet.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.8, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\mPorts.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.6, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 1884 / SYSTEM] D:\Program Files\Rising\Rfw\rfwstub.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.12, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\Program Files\Rising\Rfw\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 1316 / lhj] D:\Program Files\Rising\Rfw\RfwMain.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.1.70, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-04-29 19:36 M:2008-04-29 19:34] D:\Program Files\Rising\Rfw\RsGuiLib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 90, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\RSCOMMON.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\RfwCtrl.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\RsXML.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\PngDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-04-29 19:50 M:2008-07-29 23:53] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\RfwRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.17, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 5844 / lhj] D:\Documents and Settings\lhj\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [(Verified)Google Inc., 1.2.131.7, C:2008-09-05 07:45 M:2008-09-05 07:45] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Documents and Settings\lhj\Local Settings\Application Data\Google\Update\1.2.131.27\goopdate.dll [(Verified)Google Inc., 1.2.131.27, C:2008-11-21 20:20 M:2008-11-21 20:20] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] [PID: 5484 / lhj] D:\Program Files\Tencent\QQ\QQ.exe [(Verified)TENCENT, 8,0,1249,1853, C:2008-10-28 15:39 M:2008-10-28 15:39] D:\Program Files\Tencent\QQ\QQBaseClassInDll.dll [(Verified)TENCENT, 8,0,1249,1853, C:2008-11-13 15:41 M:2008-11-13 15:41] D:\Program Files\Tencent\QQ\QQHelperDll.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 16:04 M:2007-09-17 16:04] D:\Program Files\Tencent\QQ\BasicCtrlDll.dll [(Verified)TENCENT, 8,0,1248,1851, C:2007-09-17 15:02 M:2007-09-17 15:02] D:\Program Files\Tencent\QQ\MSIMG32.dll [N/A, C:2010-05-17 22:52 M:2008-09-24 09:34] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Tencent\QQ\QQAPI.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Program Files\Tencent\QQ\LoginCtrl.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:51 M:2007-09-17 14:51] D:\Program Files\Tencent\QQ\LoginCtrlRes.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:51 M:2007-09-17 14:51] D:\Program Files\Tencent\QQ\QQRes.dll [(Verified)TENCENT, 8,0,978,1833, C:2007-09-17 14:57 M:2007-09-17 14:57] D:\Program Files\Tencent\QQ\QQMainFrame.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:56 M:2007-09-17 14:56] D:\Program Files\Tencent\QQ\UnReadMsgMgr.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:00 M:2007-09-17 15:00] D:\Program Files\Tencent\QQ\QQAllInOne.dll [(Verified)TENCENT, 8,0,1249,1853, C:2008-10-29 16:25 M:2008-10-29 16:25] D:\Program Files\Tencent\QQ\SCCore.dll [(Verified)TENCENT, 1, 6, 0, 2, C:2007-09-17 14:59 M:2007-09-17 14:59] D:\Program Files\Tencent\QQ\CameraDll.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:03 M:2007-09-17 15:03] D:\Program Files\Tencent\QQ\CQQApplication.dll [(Verified)TENCENT, 8,0,1249,1853, C:2008-11-12 15:25 M:2008-11-12 15:25] D:\Program Files\Tencent\QQ\FlashAvatarDll.dll [(Verified)版权所有 (C) 2008, 1, 0, 0, 1, C:2007-09-17 14:50 M:2007-09-17 14:50] D:\Program Files\Tencent\QQ\NewSkin.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:52 M:2007-09-17 14:52] D:\Program Files\Tencent\QQ\MailSummary.dll [(Verified)TENCENT, 8,0,1234,1851, C:2007-09-17 14:51 M:2007-09-17 14:51] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\Program Files\Tencent\QQ\QQSpace.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:57 M:2007-09-17 14:57] D:\Program Files\Tencent\QQ\UserDefinedHead.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:01 M:2007-09-17 15:01] D:\Program Files\Tencent\QQ\QQPlugin.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:56 M:2007-09-17 14:56] D:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] D:\Program Files\Tencent\QQ\msdmo.dll [(Verified)N/A, C:2007-09-17 15:10 M:2007-09-17 15:10] D:\Program Files\Tencent\QQ\QQAvatar.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Program Files\Tencent\QQ\OEMApplication.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:52 M:2007-09-17 14:52] D:\Program Files\Tencent\QQ\QQKnowledgeSearch.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Program Files\Tencent\QQ\QQGroupMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Program Files\Tencent\QQ\QQPet.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:56 M:2007-09-17 14:56] D:\Program Files\Tencent\QQ\QQCustomFace.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:54 M:2007-09-17 14:54] D:\Program Files\Tencent\QQ\QQConfigPlugin.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] D:\Program Files\Tencent\QQ\QRingMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:58 M:2007-09-17 14:58] D:\Program Files\Tencent\QQ\LongConnection.dll [(Verified)TENCENT, 8,0,1249,1851, C:2007-09-17 15:05 M:2007-09-17 15:05] D:\Program Files\Tencent\QQ\QQMagicFace.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Program Files\Tencent\QQ\ImageOle.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:04 M:2007-09-17 15:04] D:\Program Files\Tencent\QQ\QQLiveQMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:55 M:2007-09-17 14:55] D:\Program Files\Tencent\QQ\PhoneAPI.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:52 M:2007-09-17 14:52] D:\Program Files\Tencent\QQ\DialerAllinOne.dll [(Verified)tencent, 1, 4, 0, 0, C:2007-09-17 14:50 M:2007-09-17 14:50] D:\Program Files\Tencent\QQ\QQSceneMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:57 M:2007-09-17 14:57] D:\Program Files\Tencent\QQ\GroupConnection.dll [(Verified)TENCENT, 8,0,1249,1851, C:2008-10-29 09:39 M:2008-10-29 09:39] D:\Program Files\Tencent\QQ\BQQApplication.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:49 M:2007-09-17 14:49] D:\WINDOWS\system32\freeime.ime [极点五笔工作室, 6.4.0.0, C:2008-12-06 14:25 M:2008-10-30 20:17] D:\Program Files\Tencent\QQ\CommercesMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:49 M:2007-09-17 14:49] D:\Program Files\Tencent\QQ\PersonalDesktop.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 15:06 M:2007-09-17 15:06] D:\Program Files\Tencent\QQ\QQAddr.dll [(Verified)深圳市腾讯计算机系统有限公司, 5, 0, 101, 330, C:2007-09-17 15:06 M:2007-09-17 15:06] D:\Program Files\Tencent\QQ\AddrSearch.dll [(Verified)腾讯科技(深圳)有限公司, 2, 2, 1, 25, C:2007-09-17 14:49 M:2008-12-02 19:59] D:\Program Files\Tencent\QQ\QQSysMsgMng.dll [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:58 M:2007-09-17 14:58] [PID: 3560 / lhj] D:\Program Files\Tencent\QQ\TXPlatform.exe [(Verified)Tencent, 1, 5, 225, 0, C:2008-05-20 17:53 M:2008-05-20 17:53] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] [PID: 5276 / lhj] D:\Program Files\Tencent\QQ\QQMusic.exe [Tencent, 7, 12, 110, 120, C:2007-12-12 12:38 M:2007-12-12 12:38] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\Program Files\Tencent\QQ\MSIMG32.dll [N/A, C:2010-05-17 22:52 M:2008-09-24 09:34] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\Program Files\Tencent\QQ\QQMusicUI.dll [Tencent, 7, 12, 110, 120, C:2007-12-12 12:29 M:2007-12-12 12:29] D:\Program Files\Tencent\QQ\QQMusicSkin.dll [Copyright 2007, 3, 0, 101, 57, C:2007-11-15 22:17 M:2007-11-15 22:17] D:\Program Files\Tencent\QQ\LyricDisp.dll [Tencent, 1, 0, 102, 30, C:2007-11-20 19:18 M:2007-11-20 19:18] D:\PROGRA~1\Tencent\QQ\VQQPLA~1.OCX [(Verified)Tencent Technology (Shenzhen) Company Limited, 3, 15, 160, 216, C:2008-08-15 11:36 M:2008-08-15 11:36] D:\PROGRA~1\Tencent\QQ\vqqsdl.dll [(Verified)Tencent Technology (Shenzhen) Company Limited, 3, 15, 160, 216, C:2008-08-15 11:37 M:2008-08-15 11:37] D:\PROGRA~1\Tencent\QQ\TNProxy.dll [(Verified)Tencent Technology(Shenzhen) Company Limited, 2, 1, 101, 60, C:2007-09-17 15:11 M:2007-09-17 15:11] D:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xmvsource.dll_1_work [XunLei, 1, 0, 0, 5, C:2008-04-29 20:15 M:2008-08-19 17:17] D:\Program Files\Tencent\QQ\msdmo.dll [(Verified)N/A, C:2007-09-17 15:10 M:2007-09-17 15:10] D:\Program Files\MvBox\DCDSPFilter.ax [http://www.dsp-worx.de/, 1, 0, 3, 0, C:2005-08-22 03:00 M:2005-08-22 03:00] D:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] D:\Program Files\Tencent\QQ\QQMusicDldEx.dll [(Verified)Tencent Technology (Shenzhen) Company Limited, 1, 2, 86, 86, C:2008-07-28 11:48 M:2008-07-28 11:48] [PID: 4220 / lhj] D:\Program Files\QingLiZhuShou\arswp.exe [(Verified)ArSwp.com, 2, 8, 2, 1115, C:2008-11-15 11:58 M:2008-11-15 11:58] D:\Program Files\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.21, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\Program Files\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 7.0.0.9, C:2008-04-29 19:50 M:2008-07-29 23:52] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] D:\WINDOWS\system32\ipfilter.dll [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] D:\Program Files\QingLiZhuShou\plugin\ArFix.dll [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2007-11-28 15:19 M:2007-11-28 15:19] [PID: 4592 / lhj] D:\Documents and Settings\lhj\桌面\最好的截图软件\最好的截图软件.exe [N/A, C:2008-11-30 08:51 M:2008-08-25 13:01] D:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.6.0.1653, C:2008-09-17 10:07 M:2008-09-17 10:07] ======================================== 文件关联 [.chm] <"hh.exe" %1> [Microsoft Corporation, 4.73.8412, C:1999-05-05 22:22 M:1999-05-05 22:22] ======================================== AutoRun.INF ======================================== Winsock提供者 MSUdpFilter [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] MSTcpFilter [N/A, C:2008-07-06 10:54 M:2008-07-13 17:20] ======================================== HOSTS 127.0.0.1 localhost 127.0.0.1 www.worldfax.net 127.0.0.1 www.answerbag.com 127.0.0.1 www.21cn2.com 60.190.223.138 www.renya.cn 127.0.0.1 www.csmarket.com 127.0.0.1 www.18100.cn 127.0.0.1 agent.18100.cn 127.0.0.1 www.soft518.com.cn 127.0.0.1 www.da001.com 60.190.223.138 www.yingxiao88.com 60.190.223.138 www.keruo.com 127.0.0.1 www.lxwltg.com 127.0.0.1 www.j1888.cn 127.0.0.1 www.xj818.net 127.0.0.1 www.net800.net 127.0.0.1 www.fda.gov 127.0.0.1 www.xingfuquan.com 127.0.0.1 www.ab222.cn 127.0.0.1 www.ab777.cn 127.0.0.1 www.ab555.cn 127.0.0.1 www.ab666.cn 127.0.0.1 www.20zm.com 127.0.0.1 www.viagracures.com 127.0.0.1 www.beisu.net 60.190.223.138 www.51tui.com 127.0.0.1 www.yxr88.com 127.0.0.1 www.345d.com 60.190.223.138 www.918qf.cn 127.0.0.1 www.askc2c.com 127.0.0.1 www.yf28168.cn 127.0.0.1 www.swqf.com 127.0.0.1 www.zghttp.com 127.0.0.1 www.quzuche.com 127.0.0.1 www.kyqfw.cn 127.0.0.1 www.cy1898.cn 127.0.0.1 xccq.3322.net 127.0.0.1 www.yykf.net 127.0.0.1 www.kxqm.com 127.0.0.1 www.w6q8.cn 60.190.223.138 soft518.com.cn 60.190.223.138 www.86168.biz 127.0.0.1 www.cg263.com 127.0.0.1 www.cqqzx.cn 127.0.0.1 www.w6q8.cn 127.0.0.1 www.kxqm.com 127.0.0.1 www.cg263.com 127.0.0.1 www.vip56.com 127.0.0.1 www.yingxiaosoft.cn 127.0.0.1 www.seoq.cn 127.0.0.1 www.yxw8.com 60.190.223.138 www.qunfa888.com 60.190.223.138 www.comsj.com 127.0.0.1 www.tg555.cn 127.0.0.1 www.yiechowww.net 60.190.223.138 www.fk18.com 127.0.0.1 www.615china.com 127.0.0.1 www.rj139.com 60.190.223.138 www.qf-soft.cn 127.0.0.1 www.ruier88.cn 127.0.0.1 www.tg555.cn 127.0.0.1 www.zwcc.net 127.0.0.1 www.04bbs.cn 127.0.0.1 www.shijie-trade.cn 127.0.0.1 www.615china.com 127.0.0.1 down.16ip.cn 127.0.0.1 www.16ip.cn 127.0.0.1 www.soo168.com 60.190.223.138 www.jisu888.com 127.0.0.1 www.netyy.cn 60.190.223.138 www.wx12.com 127.0.0.1 www.ggsgg.cn 127.0.0.1 www.gz-118.cn 127.0.0.1 www.tofoko.com 127.0.0.1 www.3power.com.cn 127.0.0.1 www.78rj.cn 127.0.0.1 www.hliwen.cn 60.190.223.138 www.ruyiwww.com 60.190.223.138 www.yelag.com 127.0.0.1 www.inxiao.com.cn 127.0.0.1 www.19i.net 127.0.0.1 www.tg518.cn 127.0.0.1 www.51qunfa.com.cn 127.0.0.1 www.jsf365.com 60.190.223.138 www.wodiyi.net 127.0.0.1 www.fa8fa8.com 127.0.0.1 www.789buy.com 127.0.0.1 www.99258.com 60.190.223.138 www.skyknow.cn 127.0.0.1 www.henjiandan.com 60.190.223.138 www.jiaohao365.com 127.0.0.1 www.fk18.com 127.0.0.1 www.01ad.cn 127.0.0.1 www.suminfo.com 127.0.0.1 www.inxiao.com 127.0.0.1 www.8tui.cn 60.190.223.138 www.seorj.cn 60.190.223.138 www.qfsoft.net 127.0.0.1 www.clickgold.com.cn 127.0.0.1 www.zug.com 127.0.0.1 www.coreynahman.com 127.0.0.1 www.rxlist.com [/CODE]