[CODE]

2009-01-24,18:58:23

SysLog Scanner 1.0 - build 20080726
Arswp (http://www.arswp.com)

Windows XP Professional Service Pack 3 (build 2600) - Administrators



========================================
注册项

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}><"C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020>  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:06 M:2008-06-24 16:06]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <TPHOTKEY><C:\PROGRA~1\ThinkPad\PkgMgr\HOTKEY\TPHKMGR.exe>  [N/A, C:2008-11-26 12:06 M:2006-02-14 23:56]
    <runeip><"C:\Program Files\Rising\AntiSpyware\rstray.exe" /startup>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.16, C:2008-11-29 18:33 M:2008-11-29 18:42]
    <NBKeyScan><"C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe">  [(Verified)Nero AG, 3, 5, 3, 0, C:2008-06-08 09:31 M:2008-06-08 09:31]
    <NeroFilterCheck><C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe>  [(Verified)Nero AG, 1, 0, 0, 7, C:2008-06-19 09:53 M:2008-06-19 09:53]
    <Adobe Reader Speed Launcher><"D:\AdbeRdr90\Reader\Reader_sl.exe">  [(Verified)Adobe Systems Incorporated, 9.0.0.2008061200, C:2008-06-12 02:38 M:2008-06-12 02:38]
    <360Safebox><"C:\Program Files\360Safebox\safeboxTray.exe" /r>  [(Verified)360安全中心, 2, 4, 2, 1002, C:2008-12-01 10:30 M:2008-12-01 10:30]
    <360Safetray><D:\360\360safe\safemon\360tray.exe /start>  [(Verified)奇虎网, 5, 0, 0, 1002, C:2008-08-25 14:12 M:2008-08-25 14:12]
    <360Antiarp><D:\360\360safe\antiarp\antiarp.exe /start>  [(Verified)360安全中心, 2, 0, 0, 1008, C:2008-04-11 20:45 M:2008-04-11 20:45]
    <RavTray><"D:\瑞星2008安装\Rising\Rav\RsTray.exe" -system>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.22, C:2008-12-30 08:07 M:2009-01-09 08:21]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_Dlls><kmon.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]

[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><C:\WINDOWS\system32\图片幻灯.SCR>  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2008-05-08 14:07 M:2004-08-17 12:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINDOWS\system32\RavExt.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-11-29 18:33 M:2008-12-30 07:50]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用UUSee下载]
    <><D:\UUSE\uusee\geturltodown.htm>  [N/A, C:2008-05-14 11:27 M:2008-05-14 11:27]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用UUSee加速播放]
    <><D:\UUSE\uusee\geturltoplay.htm>  [N/A, C:2008-05-14 11:27 M:2008-05-14 11:27]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载]
    <><D:\迅雷安装\Program\GetUrl.htm>  [N/A, C:2009-01-14 23:17 M:2008-12-24 13:09]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载全部链接]
    <><D:\迅雷安装\Program\GetAllUrl.htm>  [N/A, C:2009-01-14 23:17 M:2008-12-24 13:09]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\导出到 Microsoft Office Excel(&X)]
    <><res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000>  []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    <WinlogonNotify: igfxcui><igfxdev.dll>  [Intel Corporation, 6.14.10.4906, C:2008-11-25 11:04 M:2007-12-19 17:07]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub>  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2008-04-14 12:00 M:2008-04-14 12:00|(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-04-14 12:00 M:2008-04-14 12:00|(Verified)N/A, C:1980-01-01 00:00 M:2005-01-28 15:25]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2008-04-14 12:00 M:2008-04-14 12:00|Microsoft Corporation, 1.1.4322.573, C:2003-02-20 19:09 M:2003-02-20 19:09]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}]
    <启动迅雷5><D:\迅雷安装\Thunder.exe>  [(Verified)Thunder Networking Technologies,LTD, 5, 6, 8, 19, C:2009-01-14 23:17 M:2008-12-24 12:53]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{998A88A0-A355-809B-831C-B83A80000991}]
    <很快视频搜索><http://www.henkuai.com/?from=iebannel>  []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{998A88A0-A355-809B-831C-B83A80000992}]
    <启动UUSee 网络电视><D:\UUSE\uusee\UUSeePlayer.exe>  [(Verified)版权所有 (C) 2005-2008 UUSee.com, 4, 0, 0, 100, C:2009-01-16 23:27 M:2009-01-16 23:27]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\0WILPT]
    <PrintMonitor: 0WILPT><WILPT.DLL>  [Wordcraft International Ltd., 1, 0, 0, 13, C:2007-03-15 21:56 M:2007-03-15 21:56]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\WilComm]
    <PrintMonitor: WilComm><WILCOM32.DLL>  [Wordcraft International Ltd., 0.46, C:2007-04-26 23:10 M:2007-04-26 23:10]


========================================
启动项



========================================
计划任务



========================================
组件


ShellExecuteHook
[ShlExecHack Class]
    {32CD708B-60A7-4C00-9377-D73EAA495F0F}  <C:\WINDOWS\system32\RavExt.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-11-29 18:33 M:2008-12-30 07:50]

Shell Extension
[Display Panning CPL Extension]
    {42071714-76d4-11d1-8b24-00a0c9068ff3}  <deskpan.dll>  []
[HyperTerminal Icon Ext]
    {88895560-9AA2-1069-930E-00AA0030EBC8}  <C:\WINDOWS\system32\hticons.dll>  [(Verified)Hilgraeve, Inc., 5.1.2600.0, C:2008-05-08 12:33 M:2008-04-14 20:00]
[Microsoft Agent Character Property Sheet Handler]
    {143A62C8-C33B-11D1-84FE-00C04FA34A14}  <C:\WINDOWS\msagent\AgentPsh.dll>  [Microsoft Corporation, 2.00.0.2115, C:1998-09-15 17:21 M:1998-09-15 17:21]
[WinRAR shell extension]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2008-05-08 13:56 M:2007-09-05 17:12]
[NeroDigitalIconHandler]
    {B327765E-D724-4347-8B16-78AE18552FC3}  <C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll>  [(Verified)Nero AG, 3, 1, 0, 13, C:2008-06-24 13:45 M:2008-06-24 13:45]
[NeroDigitalPropSheetHandler]
    {7F1CF152-04F8-453A-B34C-E609530A9DC8}  <C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll>  [(Verified)Nero AG, 3, 1, 0, 13, C:2008-06-24 13:45 M:2008-06-24 13:45]
[NeroCoverEd Live Icons]
    {97F68CE3-7146-45FF-BE24-D9A7DD7CB8A2}  <C:\Program Files\Nero\Nero8\Nero CoverDesigner\CoverEdExtension.dll>  [(Verified)Nero AG, 3, 3, 3, 0, C:2008-06-08 09:34 M:2008-06-08 09:34]
[Fusion Cache]
    {1D2680C9-0E2A-469d-B787-065558BC7D43}  <C:\WINDOWS\system32\mscoree.dll>  [Microsoft Corporation, 1.1.4322.573, C:2003-02-20 19:06 M:2003-02-20 19:06]
[SolidConverter extension]
    {259F616C-A300-44F5-B04A-ED001A26C85C}  <C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll>  [(Verified)VoyagerSoft, LLC, 3.1.437.0, C:2006-11-02 15:09 M:2006-11-02 15:09]
[RISING]
    {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D}  <C:\WINDOWS\system32\RavExt.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-11-29 18:33 M:2008-12-30 07:50]

Protocols
[Cor MIME Filter, CorFltr, CorFltr 1]
    {1E66F26B-79EE-11D2-8710-00C04F79ED0D}  <C:\WINDOWS\system32\mscoree.dll>  [Microsoft Corporation, 1.1.4322.573, C:2003-02-20 19:06 M:2003-02-20 19:06]
[Microsoft Infotech Storage Protocol for IE 4.0]
    {0A9007C0-4076-11D3-8789-0000F8105754}  <C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL>  [Microsoft Corporation, 05.02.9336.01, C:2000-04-19 18:47 M:2000-04-19 18:47]

BrowserHelperObject
[ThunderAtOnce Class]
    {01443AEC-0FD1-40fd-9C87-E93D1494C233}  <D:\迅雷安装\ComDlls\TDAtOnce_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.34, C:2009-01-14 23:17 M:2008-12-24 12:54]
[Adobe PDF Link Helper]
    {18DF081C-E8AD-4283-A596-FA578C2EBDC3}  <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll>  [(Verified)Adobe Systems Incorporated, 9.0.0.2008061100, C:2008-06-11 22:33 M:2008-06-11 22:33]
[Solid Converter PDF]
    {259F616C-A300-44F5-B04A-ED001A26C85C}  <C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll>  [(Verified)VoyagerSoft, LLC, 3.1.437.0, C:2006-11-02 15:09 M:2006-11-02 15:09]
[Thunder Browser Helper]
    {889D2FEB-5411-4565-8998-1DD2C5261283}  <D:\迅雷安装\ComDlls\xunleiBHO_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120, C:2009-01-14 23:17 M:2008-12-24 12:54]
[卡卡上网安全助手]
    {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}  <C:\WINDOWS\system32\UrlFilter.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-11-29 18:33 M:2008-11-29 18:33]
[SafeMon Class]
    {B69F34DD-F0F9-42DC-9EDD-957187DA688D}  <D:\360\360safe\safemon\safemon.dll>  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]

ToolBar
[Solid Converter PDF]
    {259F616C-A300-44F5-B04A-ED001A26C85C}  <C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll>  [(Verified)VoyagerSoft, LLC, 3.1.437.0, C:2006-11-02 15:09 M:2006-11-02 15:09]

ActiveX Extension
[ThunderAtOnce Class]
    {01443AEC-0FD1-40FD-9C87-E93D1494C233}  <D:\迅雷安装\ComDlls\TDAtOnce_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.34, C:2009-01-14 23:17 M:2008-12-24 12:54]
[Adobe PDF Link Helper]
    {18DF081C-E8AD-4283-A596-FA578C2EBDC3}  <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll>  [(Verified)Adobe Systems Incorporated, 9.0.0.2008061100, C:2008-06-11 22:33 M:2008-06-11 22:33]
[Solid Converter PDF]
    {259F616C-A300-44F5-B04A-ED001A26C85C}  <C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll>  [(Verified)VoyagerSoft, LLC, 3.1.437.0, C:2006-11-02 15:09 M:2006-11-02 15:09]
[IEBuddyExtControl Class]
    {3AECD3C1-7085-4731-96DC-47B6CF7EF749}  <D:\优化大师\KINGSO~1\IEBuddyExt.DLL>  [(Verified)Kingsoft Corporation, 2009,01,13,205, C:2008-11-14 08:52 M:2009-01-24 18:55]
[Thunder Agent Class]
    {485463B7-8FB2-4B3B-B29B-8B919B0EACCE}  <D:\迅雷安装\ComDlls\ThunderAgent_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 6, 0, 5, 47, C:2009-01-14 23:17 M:2008-12-24 12:54]
[InfoSecNetSign Class]
    {62B938C4-4190-4F37-8CF0-A92B0A91CC77}  <C:\WINDOWS\system32\NetSign.dll>  [Infosec Technologies Co., Ltd., 1, 2, 0, 1, C:2009-01-01 17:04 M:2002-06-19 18:52]
[XMP Class]
    {6483F145-A768-4C41-AACC-52D4D7845851}  <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work>  [Xunlei Networking Technologies,LTD, 2, 1, 9, 102, C:2008-12-30 18:37 M:2009-01-12 19:45]
[AxInputControl Class]
    {73E4740C-08EB-4133-896B-8D0A7C9EE3CD}  <C:\WINDOWS\DOWNLO~1\INPUTC~1.DLL>  [Copyright 2003, 1, 0, 0, 12, C:2005-07-25 15:51 M:2005-07-25 15:51]
[MediaComm Class]
    {7670648D-461B-42AF-BDFE-46D26AF5EFF2}  <D:\迅雷安装\Components\InMedia\MediaAddin18.dll>  [(Verified)Thunder Networking Technologies,LTD, 3, 1, 6, 81, C:2009-01-14 23:17 M:2008-12-24 12:58]
[Thunder Browser Helper]
    {889D2FEB-5411-4565-8998-1DD2C5261283}  <D:\迅雷安装\ComDlls\xunleiBHO_Now.dll>  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120, C:2009-01-14 23:17 M:2008-12-24 12:54]
[AxSubmitControl Class]
    {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2}  <C:\WINDOWS\DOWNLO~1\SUBMIT~1.DLL>  [Copyright 2003, 1, 0, 0, 5, C:2005-01-26 00:36 M:2005-01-26 00:36]
[OFrameObject Class]
    {9701758C-4373-482E-B13C-776C048EC890}  <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.5809.132.(773).dll>  [(Verified)ShenZhen Thunder Networking Technologies Ltd., 2, 3, 5809, 132, C:2009-01-14 23:18 M:2009-01-12 19:44]
[卡卡上网安全助手]
    {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}  <C:\WINDOWS\system32\UrlFilter.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-11-29 18:33 M:2008-11-29 18:33]
[Submit Class]
    {A3CD7F74-93C9-4BC4-B892-CCDF1514F714}  <C:\WINDOWS\system32\safeInput4jh.dll>  [Beijing eChannels Century Technology Co.,Ltd, 3, 0, 0, 0, C:2007-08-23 10:22 M:2007-08-23 10:22]
[DapCtrl Class]
    {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8}  <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.5809.132.(773).dll>  [(Verified)ShenZhen Thunder Networking Technologies Ltd., 2, 3, 5809, 132, C:2009-01-14 23:18 M:2009-01-12 19:44]
[SafeMon Class]
    {B69F34DD-F0F9-42DC-9EDD-957187DA688D}  <D:\360\360safe\safemon\safemon.dll>  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]
[PowerDSPlayer Control]
    {B84FBAEF-9539-4244-B096-D6EC142B464D}  <C:\PROGRA~1\POWERS~1\POWERD~1.OCX>  [创智数码科技股份有限公司, 1, 0, 3, 4162, C:2009-01-23 21:54 M:2008-07-24 15:09]
[Shockwave Flash Object]
    {D27CDB6E-AE6D-11CF-96B8-444553540000}  <C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx>  [(Verified)Adobe Systems, Inc., 10,0,12,36, C:2008-10-05 11:16 M:2008-10-05 11:16]
[safeInput Class]
    {ECCBA956-80E5-11D3-9285-0080ADB811C9}  <C:\WINDOWS\system32\safeInput4jh.dll>  [Beijing eChannels Century Technology Co.,Ltd, 3, 0, 0, 0, C:2007-08-23 10:22 M:2007-08-23 10:22]
[XPPlayer Class]
    {F3E70CEA-956E-49CC-B444-73AFE593AD7F}  <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.1.5890.247.(772).dll>  [(Verified)Thunder Networking Technologies,LTD, 2, 1, 5890, 247, C:2009-01-14 23:18 M:2009-01-09 19:03]

Context Menu
[Cover Designer]
    {73FCA462-9BD5-4065-A73F-A8E5F6904EF7}  <C:\Program Files\Nero\Nero8\Nero CoverDesigner\CoverEdExtension.dll>  [(Verified)Nero AG, 3, 3, 3, 0, C:2008-06-08 09:34 M:2008-06-08 09:34]
[RisingRavExt]
    {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D}  <C:\WINDOWS\system32\RavExt.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-11-29 18:33 M:2008-12-30 07:50]
[SolidConverterPDF]
    {259F616C-A300-44F5-B04A-ED001A26C85C}  <C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll>  [(Verified)VoyagerSoft, LLC, 3.1.437.0, C:2006-11-02 15:09 M:2006-11-02 15:09]
[WinRAR]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2008-05-08 13:56 M:2007-09-05 17:12]


========================================
服务

[3ware Controller Service / 3wareSrv][Stopped/Auto Start]
    <%SystemRoot%\System32\3wareSrv.exe>  [N/A, C:2008-05-15 11:09 M:2006-02-26 23:21]
[ASP.NET State Service / aspnet_state][Stopped/Manual Start]
    <%SystemRoot%\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe>  [Microsoft Corporation, 1.1.4322.573, C:2003-02-20 19:19 M:2003-02-20 19:19]
[PLFlash DeviceIoControl Service / PLFlash DeviceIoControl Service][Running/Auto Start]
    <C:\WINDOWS\system32\IoctlSvc.exe>  [Prolific Technology Inc., 1, 6, 0, 0, C:2006-12-19 10:30 M:2006-12-19 10:30]
[Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start]
    <"%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini">  [N/A, C:2003-04-04 14:54 M:2003-04-04 14:54]
[SolidPDFConverterReadSpool / ScReadSpool][Running/Auto Start]
    <C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\SolidPdfService.exe>  [VoyagerSoft, LLC, 3.1.437.0, C:2006-11-02 15:24 M:2006-11-02 15:24]
[Unimessage Printer Tracking Service / wilusbmonitor][Running/Auto Start]
    <%SystemRoot%\system32\wilpmove.exe>  [Wordcraft International Limited, 1, 0, 0, 3, C:2008-12-22 14:16 M:2007-03-23 13:05]

[Contrl Center of Storm Media / ccosm][Running/Auto Start]
    <C:\Program Files\StormII\stormliv.exe /asservice>  [(Verified)北京暴风网际科技有限公司, 3, 8, 3, 15, C:1980-01-01 00:00 M:2008-03-11 14:33]
[ThinkPad PM Service / IBMPMSVC][Running/Auto Start]
    <%SystemRoot%\system32\ibmpmsvc.exe>  [(Verified)N/A, C:2005-09-30 01:32 M:2005-09-30 01:32]
[Kingsoft Basic Service / kaccore][Stopped/Manual Start]
    <"C:\Program Files\Kingsoft\KAC\Service\kaccore.exe">  [(Verified)Kingsoft Corporation, 2008,12,24,397, C:2008-11-03 08:49 M:2008-12-26 11:45]
[Nero BackItUp Scheduler 3 / Nero BackItUp Scheduler 3][Running/Auto Start]
    <C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe>  [(Verified)Nero AG, 3, 5, 3, 0, C:2008-06-08 09:31 M:2008-06-08 09:31]
[NMIndexingService / NMIndexingService][Running/Manual Start]
    <"C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe">  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:05 M:2008-06-24 16:05]
[Rav Process Communication Center / RavCCenter][Stopped/Auto Start]
    <D:\瑞星2008安装\Rising\Rav\CCENTER.EXE>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-28 19:27]
[Rising RavTask Manager / RavTask][Running/Auto Start]
    <"D:\瑞星2008安装\Rising\Rav\RavTask.exe" RavTask>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 23, C:2008-12-30 08:07 M:2009-01-20 18:58]
[Rising RealTime Monitor / RsRavMon][Stopped/Auto Start]
    <D:\瑞星2008安装\Rising\Rav\RavMonD.exe>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
[Rising Scan Service / RsScanSrv][Stopped/Auto Start]
    <D:\瑞星2008安装\Rising\Rav\ScanFrm.exe>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.11, C:2008-12-30 08:07 M:2008-12-28 19:27]


========================================
驱动

[aaatimeo / aaatimeo][Running/Boot Start]
    <system32\DRIVERS\aaatimeo.sys>  [Microsoft Corporation, 5.00.1877.1, C:2008-05-15 11:09 M:2006-02-26 23:21]
[ADI UAA Function Driver for High Definition Audio Service / ADIHdAudAddService][Running/Manual Start]
    <system32\drivers\ADIHdAud.sys>  [Analog Devices, Inc., 5.10.01.5410 built by: WinDDK, C:2008-11-25 11:04 M:2007-04-13 13:08]
[AE Audio Service / AEAudio][Running/Manual Start]
    <system32\drivers\AEAudio.sys>  [Andrea Electronics Corporation, 4.2.32.10, C:2008-11-25 11:04 M:2007-03-23 07:59]
[AFAMgt / AFAMgt][Running/Boot Start]
    <system32\DRIVERS\afamgt.sys>  [Adaptec, Inc., 4.1.0.7427, C:2008-05-15 11:09 M:2006-03-28 22:43]
[ahcix86 / ahcix86][Running/Boot Start]
    <system32\DRIVERS\ahcix86.sys>  [ATI Technologies Inc.,  2.5.1540.39 built by: WinDDK, C:2008-05-15 11:09 M:2007-03-07 18:47]
[amdbusdr / amdbusdr][Running/Boot Start]
    <system32\DRIVERS\amdbusdr.sys>  [AMD, 8.2.8, C:2008-05-15 11:09 M:2006-02-26 23:21]
[AMD EIDE 驱动程衼E / amdeide][Running/Boot Start]
    <system32\DRIVERS\AmdEide.sys>  [AMD, 8.2.8, C:2008-05-15 11:09 M:2006-02-26 23:21]
[AMD K8 Processor Driver / AmdK8][Stopped/Manual Start]
    <System32\DRIVERS\amdk8.sys>  [Advanced Micro Devices, 1.1.0 (srv03_sp1_rtm.050324-1447), C:2005-08-12 09:09 M:2005-05-21 20:43]
[SiI-3112 SATALink  Controller / ASH1205][Running/Boot Start]
    <system32\DRIVERS\ASH1205.sys>  [Silicon Image, Inc., 1, 0, 0, 41, C:2008-05-15 11:09 M:2006-02-26 23:21]
[ata1200a / ata1200a][Running/Boot Start]
    <system32\DRIVERS\ata1200a.sys>  [Adaptec, Inc., v1.3, C:2008-05-15 11:09 M:2006-02-26 23:21]
[atiide / atiide][Running/Boot Start]
    <system32\DRIVERS\atiide.sys>  [ATI Technologies Inc., 1.00.0000.3 built by: WinDDK, C:2008-05-15 11:09 M:2006-02-26 23:21]
[atmeltpm / atmeltpm][Running/Manual Start]
    <system32\DRIVERS\atmeltpm.sys>  [Atmel, Inc., 3.0.0.15 built by: WinDDK, C:2005-05-17 10:20 M:2005-05-17 10:20]
[Broadcom NetXtreme Gigabit Ethernet / b57w2k][Running/Manual Start]
    <system32\DRIVERS\b57xp32.sys>  [Broadcom Corporation, 8.39.1.0 built by: WinDDK, C:1980-01-01 00:00 M:2005-08-23 13:50]
[Promise driver accelerator / bb-run][Running/Boot Start]
    <system32\DRIVERS\bb-run.sys>  [Promise Technology, Inc.,  1.0.1.2 built by: WinDDK, C:2008-05-15 11:09 M:2003-11-05 15:45]
[DELL CERC SATA 1.5/6ch RAID Miniport Driver / cercsr6][Running/Boot Start]
    <system32\DRIVERS\cercsr6.sys>  [Adaptec, Inc., 4.1.0.7010, C:2008-05-15 11:09 M:2006-03-28 22:43]
[Cpq32fs2 / Cpq32fs2][Running/Boot Start]
    <system32\DRIVERS\Cpq32fs2.sys>  [Hewlett-Packard Company, 5.24.00.0, C:2008-05-15 11:09 M:2002-11-18 23:47]
[Promise Removable Disk Control Driver / dontgo][Running/Boot Start]
    <system32\DRIVERS\DontGo.sys>  [Promise Technology, Inc.,  1.0.0.3 built by: WinDDK, C:2008-05-15 11:09 M:2006-02-26 23:21]
[fttxr52P / fttxr52P][Running/Boot Start]
    <system32\DRIVERS\fttxr52P.sys>  [Promise Technology, Inc.,  2.6.0.311 built by: WinDDK, C:2008-05-15 11:09 M:2005-11-09 01:07]
[HpCISSm2 / HpCISSm2][Running/Boot Start]
    <system32\DRIVERS\HpCISSm2.sys>  [Hewlett-Packard Company, 5.8.0.32 Build 1 (x86), C:2006-05-28 14:57 M:2006-06-16 18:17]
[hptmv6 / hptmv6][Stopped/Boot Start]
    <system32\DRIVERS\hptmv6.sys>  [HighPoint Technologies, Inc., v1.04, C:2008-05-15 11:09 M:2006-02-26 23:21]
[HSFHWAZL / HSFHWAZL][Running/Manual Start]
    <system32\DRIVERS\VSTAZL3.SYS>  [Conexant Systems, Inc., 7.39.06 built by: WinDDK, C:2006-11-02 15:41 M:2006-11-02 15:41]
[HSF_DPV / HSF_DPV][Running/Manual Start]
    <system32\DRIVERS\VSTDPV3.SYS>  [Conexant Systems, Inc., 7.39.06 built by: WinDDK, C:2006-11-02 15:41 M:2006-11-02 15:41]
[ialm / ialm][Running/Manual Start]
    <system32\DRIVERS\igxpmp32.sys>  [Intel Corporation, 6.14.10.4906, C:2008-11-25 11:04 M:2007-12-19 17:32]
[Intel  RAID Controller / iaStor55][Running/Boot Start]
    <system32\DRIVERS\iaStor55.sys>  [Intel Corporation, 5.5.0.1035, C:2008-05-15 11:09 M:2005-10-12 18:07]
[mv61xx / mv61xx][Running/Boot Start]
    <system32\DRIVERS\mv61xx.sys>  [Marvell Semiconductor, Inc.,  1.2.0.24  built by: WinDDK, C:2008-05-15 11:09 M:2007-02-09 20:24]
[mvSata / mvSata][Running/Boot Start]
    <system32\DRIVERS\mvsata.sys>  [Marvell Semiconductors Inc., 3, 4, 1, 2, C:2008-05-15 11:09 M:2004-09-24 06:34]
[NetGroup Packet Filter Driver / NPF][Stopped/Manual Start]
    <system32\drivers\npf.sys>  [Politecnico di Torino, 3, 0, 0, 18, C:2003-04-04 15:07 M:2003-04-04 15:07]
[nvgts / nvgts][Running/Boot Start]
    <system32\DRIVERS\nvgts.sys>  [NVIDIA Corporation, 10.1.0.20 built by: WinDDK, C:2008-05-15 11:09 M:2007-09-11 23:18]
[NVIDIA nForce RAID Driver / nvrd32][Running/Boot Start]
    <system32\DRIVERS\nvrd32.sys>  [NVIDIA Corporation, 10.1.0.20 built by: WinDDK, C:2008-05-15 11:09 M:2007-09-11 15:18]
[ql2100 / ql2100][Running/Boot Start]
    <system32\DRIVERS\ql2100.sys>  [QLogic Corporation, 7.05.05 (W2K), C:2006-08-31 00:17 M:2006-02-26 23:21]
[ql2200 / ql2200][Running/Boot Start]
    <system32\DRIVERS\ql2200.sys>  [QLogic Corporation, 8.1.5.12 (W2K IP), C:2006-08-31 00:17 M:2006-02-26 23:21]
[rr172x / rr172x][Stopped/Boot Start]
    <system32\DRIVERS\rr172x.sys>  [HighPoint Technologies, Inc., v1.0, C:2008-05-15 11:09 M:2007-06-12 18:06]
[rr174x / rr174x][Stopped/Boot Start]
    <system32\DRIVERS\rr174x.sys>  [HighPoint Technologies, Inc., v1.02, C:2008-05-15 11:09 M:2007-02-01 21:14]
[rr2340 / rr2340][Stopped/Boot Start]
    <system32\DRIVERS\rr2340.sys>  [HighPoint Technologies, Inc., v1.4, C:2008-05-15 11:09 M:2007-07-02 23:14]
[SenFilt Service / SenFiltService][Stopped/Manual Start]
    <system32\drivers\Senfilt.sys>  []
[SATALink External Device Filter / SiRemFil][Running/Boot Start]
    <system32\DRIVERS\SiRemFil.sys>  [Silicon Image, Inc., 1, 1, 6, 0, C:2008-05-15 11:09 M:2006-10-18 20:20]
[sisraidx / sisraidx][Running/Boot Start]
    <system32\DRIVERS\sisraidx.sys>  [Silicon Integrated Systems Corp., 2.11.01 built by: WinDDK, C:2008-05-15 11:09 M:2007-01-12 21:36]
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
    <system32\DRIVERS\tcpip.sys>  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852), C:2008-12-19 15:03 M:2008-04-14 12:00]
[ViBus / ViBus][Running/Boot Start]
    <system32\DRIVERS\ViBus.sys>  [VIA Technologies, Inc., 6.0.6000.212, C:2008-05-15 11:09 M:2007-03-26 21:26]
[videX32 / videX32][Running/Boot Start]
    <system32\DRIVERS\videX32.sys>  [VIA Technologies, Inc., 6.0.3790.160, C:2008-05-15 11:09 M:2006-10-18 03:22]
[VIA SATA IDE Device Driver / ViPrt][Running/Boot Start]
    <system32\DRIVERS\ViPrt.sys>  [VIA Technologies, Inc., 6.0.6000.212, C:2008-05-15 11:09 M:2007-03-26 21:26]
[Wordcraft Parallel Filter / WILPT][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\drivers\WILPT.sys>  [Wordcraft International Ltd, 1.0.0.12, C:2007-03-06 23:59 M:2007-03-06 23:59]
[winachsf / winachsf][Running/Manual Start]
    <system32\DRIVERS\VSTCNXT3.SYS>  [Conexant Systems, Inc., 7.39.06 built by: WinDDK, C:2006-11-02 15:41 M:2006-11-02 15:41]
[VIA SATA IDE Hot-plug Driver / xfilt][Running/Boot Start]
    <system32\DRIVERS\xfilt.sys>  [VIA Technologies,Inc, 6.0.5728.160, C:2008-05-15 11:09 M:2006-10-19 00:39]

[360AntiArp / 360AntiArp][Running/System Start]
    <\??\C:\WINDOWS\system32\drivers\360AntiArp.sys>  [(Verified)360安全中心, 1, 0, 1, 1007, C:2008-04-09 16:33 M:2008-04-09 16:33]
[AliIde / AliIde][Running/Boot Start]
    <system32\DRIVERS\aliide.sys>  [(Verified)Acer Laboratories Inc., 1.20, C:2005-06-29 18:14 M:2001-08-17 13:51]
[AMD AGP Bus Filter Driver / amdagp][Running/Boot Start]
    <system32\DRIVERS\amdagp.sys>  [(Verified)Advanced Micro Devices, Inc., 5.00 (xpsp.080413-2111), C:2008-05-15 11:09 M:2008-04-13 11:36]
[CmdIde / CmdIde][Running/Boot Start]
    <system32\DRIVERS\cmdide.sys>  [(Verified)CMD Technology, Inc., 2.0.7 (XPClient.010817-1148), C:2004-04-12 20:37 M:2001-08-31 15:29]
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
    <system32\DRIVERS\HDAudBus.sys>  [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK, C:2008-04-14 12:00 M:2008-04-14 12:00]
[hookcont / hookcont][Running/System Start]
    <system32\drivers\HookCont.sys>  [(Verified)Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 6, C:2008-12-30 08:07 M:2008-12-28 19:27]
[hooksys / hooksys][Running/System Start]
    <system32\drivers\HookSys.sys>  [(Verified)Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 47, C:2008-12-30 08:07 M:2008-12-30 07:52]
[Intel AHCI Controller / iaStor][Running/Boot Start]
    <system32\DRIVERS\iaStor.sys>  [(Verified)Intel Corporation, 7.8.0.1012, C:2004-04-12 20:37 M:2007-09-30 06:03]
[Intel RAID  Controller / iaStor70][Running/Boot Start]
    <system32\DRIVERS\iaStor70.sys>  [(Verified)Intel Corporation, 7.0.0.1020, C:2008-05-15 11:09 M:2007-02-12 19:36]
[IBMPMDRV / IBMPMDRV][Running/Manual Start]
    <system32\DRIVERS\ibmpmdrv.sys>  [(Verified)Lenovo., 1.32, C:2005-09-30 01:32 M:2005-09-30 01:32]
[DDK PACKET Protocol / Packet][Running/Manual Start]
    <system32\DRIVERS\ProtoDrv.sys>  [(Verified)360安全中心, 1, 0, 1, 1001, C:2008-04-09 16:36 M:2008-04-09 16:36]
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
    <system32\DRIVERS\ptilink.sys>  [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2008-04-14 12:00 M:2008-04-14 12:00]
[RsNTGDI / RsNTGDI][Running/Boot Start]
    <system32\Drivers\RsNTGdi.sys>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-11-29 18:33 M:2008-12-28 19:27]
[SafeBoxKrnl / SafeBoxKrnl][Running/System Start]
    <\??\C:\WINDOWS\system32\drivers\SafeBoxKrnl.sys>  [(Verified)360安全中心, 2, 2, 2, 1008, C:2008-11-15 11:33 M:2008-11-15 11:33]
[Secdrv / Secdrv][Stopped/Manual Start]
    <system32\DRIVERS\secdrv.sys>  [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2008-04-14 12:00 M:2008-04-14 12:00]
[SIS AGP Bus Filter / sisagp][Running/Boot Start]
    <system32\DRIVERS\sisagp.sys>  [(Verified)Silicon Integrated Systems Corporation, 5.12.01.2010 (xpsp.080413-2111), C:2008-05-15 11:09 M:2008-04-13 11:36]
[Intel(R) PRO/Wireless 3945ABG Adapter Driver / w39n51][Running/Manual Start]
    <system32\DRIVERS\w39n51.sys>  [(Verified)Intel? Corporation, 10, 1, 1, 3, C:2006-04-04 11:17 M:2006-04-04 11:17]


========================================
进程

[PID: 424 / SYSTEM]   \SystemRoot\System32\smss.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-04-14 12:00 M:2008-04-14 12:00]

[PID: 920 / SYSTEM]   \??\C:\WINDOWS\system32\csrss.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-04-14 12:00 M:2008-04-14 12:00]

[PID: 948 / SYSTEM]   \??\C:\WINDOWS\system32\winlogon.exe   [Microsoft Corporation, 5.1.2600.3300 (xpsp.080125-2034), C:1980-01-01 00:00 M:2008-02-11 04:29]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    C:\WINDOWS\system32\igfxdev.dll  [Intel Corporation, 6.14.10.4906, C:2008-11-25 11:04 M:2007-12-19 17:07]

[PID: 992 / SYSTEM]   C:\WINDOWS\system32\services.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-04-14 12:00 M:2008-04-14 12:00]

[PID: 1004 / SYSTEM]   C:\WINDOWS\system32\lsass.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 1164 / SYSTEM]   C:\WINDOWS\system32\ibmpmsvc.exe   [(Verified)N/A, C:2005-09-30 01:32 M:2005-09-30 01:32]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]

[PID: 1192 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 1256 / NETWORK SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 1308 / SYSTEM]   D:\瑞星2008安装\Rising\Rav\CCENTER.EXE   [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\combase.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-30 08:07 M:2008-12-30 08:05]
    D:\瑞星2008安装\Rising\Rav\cnt09.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 37, C:2008-12-30 08:07 M:2008-12-30 08:05]
    D:\瑞星2008安装\Rising\Rav\cnt08.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7, C:2008-12-30 08:07 M:2008-12-30 08:05]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 1320 / SYSTEM]   C:\WINDOWS\System32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 1460 / NETWORK SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 1532 / LOCAL SERVICE]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 1576 / SYSTEM]   D:\瑞星2008安装\Rising\Rav\RavMonD.exe   [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\combase.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-30 08:07 M:2008-12-30 08:05]
    C:\WINDOWS\system32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:1980-01-01 00:00 M:2004-05-19 17:43]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:1980-01-01 00:00 M:2004-05-19 17:43]
    D:\瑞星2008安装\Rising\Rav\moncomm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-12-30 08:07 M:2008-12-30 07:51]
    D:\瑞星2008安装\Rising\Rav\MonBase.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\Rslog.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.32, C:2008-12-30 08:07 M:2008-12-30 08:05]
    D:\瑞星2008安装\Rising\Rav\mondrv.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\defmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 29, C:2008-12-30 08:07 M:2008-12-30 07:53]
    D:\瑞星2008安装\Rising\Rav\moncom08.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\MonRule.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\FileMon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 21, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\MailMon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 23, C:2008-12-30 08:07 M:2009-01-07 10:27]
    D:\瑞星2008安装\Rising\Rav\HookWeb.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-30 08:07 M:2008-12-30 08:05]
    D:\瑞星2008安装\Rising\Rav\proccomm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\RSAPPMGR.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\CfgDll.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.18, C:2008-12-30 08:07 M:2009-01-14 20:08]
    D:\瑞星2008安装\Rising\Rav\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\Hooksys.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 18, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\ProcCom.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-29 18:33 M:2008-11-29 18:32]
    D:\瑞星2008安装\Rising\Rav\RsCommX2.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-29 18:33 M:2008-11-29 18:32]
    D:\瑞星2008安装\Rising\Rav\HookCont.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 11, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\rsnetsvr.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13, C:2008-12-30 08:07 M:2008-12-30 08:06]
    D:\瑞星2008安装\Rising\Rav\BACore.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 19, C:2008-12-30 08:07 M:2009-01-14 20:08]
    D:\瑞星2008安装\Rising\Rav\recomp.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\refs.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\RSStore.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9, C:2008-12-30 08:07 M:2009-01-05 09:20]
    D:\瑞星2008安装\Rising\Rav\ScanAdd.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.14, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\Scanner.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.33, C:2008-12-30 08:07 M:2009-01-15 22:34]
    D:\瑞星2008安装\Rising\Rav\viruslib.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\relibldr.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-28 19:27]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    D:\瑞星2008安装\Rising\Rav\ffr.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\nvfile.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\scanexec.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2009-01-05 09:20]
    D:\瑞星2008安装\Rising\Rav\unexe.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\scanex.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 17, C:2008-12-30 08:07 M:2009-01-09 15:57]
    D:\瑞星2008安装\Rising\Rav\pearc.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\scanpe.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\ur000.dat  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\extfile.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\revm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\urutils.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\scriptci.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\uroutine.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ur001.dat  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\scansct.dll  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\extmail.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-30 07:52]

[PID: 1832 / SYSTEM]   C:\WINDOWS\system32\spoolsv.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    C:\WINDOWS\system32\WILPT.DLL  [Wordcraft International Ltd., 1, 0, 0, 13, C:2007-03-15 21:56 M:2007-03-15 21:56]
    C:\WINDOWS\system32\WILCOM32.DLL  [Wordcraft International Ltd., 0.46, C:2007-04-26 23:10 M:2007-04-26 23:10]

[PID: 1964 / SYSTEM]   C:\Program Files\StormII\stormliv.exe   [(Verified)北京暴风网际科技有限公司, 3, 8, 3, 15, C:1980-01-01 00:00 M:2008-03-11 14:33]
    C:\Program Files\StormII\MSVCP60.dll  [Microsoft Corporation, 6.02.3104.0, C:1980-01-01 00:00 M:2007-09-21 19:43]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 1972 / SYSTEM]   D:\瑞星2008安装\Rising\Rav\rsnetsvr.exe   [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-12-30 08:07 M:2009-01-09 15:57]
    D:\瑞星2008安装\Rising\Rav\NComm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.9, C:2008-12-30 08:07 M:2008-12-30 08:06]
    D:\瑞星2008安装\Rising\Rav\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ProcComm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-30 08:07 M:2008-12-28 19:27]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:1980-01-01 00:00 M:2004-05-19 17:43]
    C:\WINDOWS\system32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:1980-01-01 00:00 M:2004-05-19 17:43]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 2020 / SYSTEM]   C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE   [(Verified)Microsoft Corporation, 7.00.9466, C:2003-06-19 23:25 M:2003-06-19 23:25]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll  [Microsoft Corporation, 7.00.9466, C:2002-01-29 15:06 M:2002-01-29 15:06]

[PID: 148 / SYSTEM]   C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe   [(Verified)Nero AG, 3, 5, 3, 0, C:2008-06-08 09:31 M:2008-06-08 09:31]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    C:\Program Files\Nero\Nero8\Nero BackItUp\NB.dll  [(Verified)Nero AG, 3, 5, 3, 0, C:2008-06-08 09:30 M:2008-06-08 09:30]
    C:\Program Files\Nero\Nero8\Nero BackItUp\NeroAPIGlueLayerUnicode.dll  [(Verified)Nero AG, 8.3.6.0, C:2008-06-24 13:45 M:2008-06-24 13:45]
    C:\Program Files\Nero\Nero8\Nero BackItUp\LBFC.dll  [(Verified)Nero AG, 3, 5, 3, 0, C:2008-06-08 09:30 M:2008-06-08 09:30]
    C:\Program Files\Nero\Nero8\Nero BackItUp\NBHDMgr.dll  [(Verified)Nero AG, 3, 5, 3, 0, C:2008-06-08 09:30 M:2008-06-08 09:30]

[PID: 488 / SYSTEM]   C:\WINDOWS\system32\IoctlSvc.exe   [Prolific Technology Inc., 1, 6, 0, 0, C:2006-12-19 10:30 M:2006-12-19 10:30]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]

[PID: 512 / SYSTEM]   D:\瑞星2008安装\Rising\Rav\RavTask.exe   [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 23, C:2008-12-30 08:07 M:2009-01-20 18:58]
    D:\瑞星2008安装\Rising\Rav\rsconf.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-30 08:07 M:2009-01-05 09:20]
    D:\瑞星2008安装\Rising\Rav\RSAPPMGR.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\CfgDll.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.18, C:2008-12-30 08:07 M:2009-01-14 20:08]
    D:\瑞星2008安装\Rising\Rav\proccomm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-30 08:07 M:2008-12-28 19:27]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:1980-01-01 00:00 M:2004-05-19 17:43]
    C:\WINDOWS\system32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:1980-01-01 00:00 M:2004-05-19 17:43]
    D:\瑞星2008安装\Rising\Rav\rstask.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 36, C:2008-12-30 08:07 M:2009-01-20 18:58]

[PID: 564 / SYSTEM]   D:\瑞星2008安装\Rising\Rav\ScanFrm.exe   [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.11, C:2008-12-30 08:07 M:2008-12-28 19:27]
    C:\WINDOWS\system32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:1980-01-01 00:00 M:2004-05-19 17:43]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:1980-01-01 00:00 M:2004-05-19 17:43]
    D:\瑞星2008安装\Rising\Rav\combase.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-30 08:07 M:2008-12-30 08:05]
    D:\瑞星2008安装\Rising\Rav\moncomm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-12-30 08:07 M:2008-12-30 07:51]
    D:\瑞星2008安装\Rising\Rav\scansrvp.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.11, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\proccomm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ScanSrv.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.9, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-12-30 08:07 M:2008-12-28 19:27]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    D:\瑞星2008安装\Rising\Rav\ScanRavT.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.23, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ScanBT.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.38, C:2008-12-30 08:07 M:2009-01-20 18:58]
    D:\瑞星2008安装\Rising\Rav\ScanStub.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.8, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ScanAdd.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.14, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\RsLog.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.32, C:2008-12-30 08:07 M:2008-12-30 08:05]
    D:\瑞星2008安装\Rising\Rav\RSAPPMGR.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\CfgDll.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.18, C:2008-12-30 08:07 M:2009-01-14 20:08]
    D:\瑞星2008安装\Rising\Rav\Scanner.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.33, C:2008-12-30 08:07 M:2009-01-15 22:34]
    D:\瑞星2008安装\Rising\Rav\recomp.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\refs.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\viruslib.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\relibldr.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\mvengine.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\posttrt.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\SysMail.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.5, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ffr.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\nvfile.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\scanexec.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2009-01-05 09:20]
    D:\瑞星2008安装\Rising\Rav\unexe.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\scanex.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 17, C:2008-12-30 08:07 M:2009-01-09 15:57]
    D:\瑞星2008安装\Rising\Rav\scansct.dll  [Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\extfile.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\pearc.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\scanpe.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\ur000.dat  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\revm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\urutils.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\ur001.dat  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\extmail.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\extole.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ur004.dat  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ur025.dat  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\scanmac.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-30 08:07 M:2008-12-30 07:52]
    D:\瑞星2008安装\Rising\Rav\scriptci.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\uroutine.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ur023.dat  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\scanelf.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ur027.dat  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-28 19:27]

[PID: 748 / SYSTEM]   C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\SolidPdfService.exe   [VoyagerSoft, LLC, 3.1.437.0, C:2006-11-02 15:24 M:2006-11-02 15:24]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]

[PID: 780 / SYSTEM]   C:\WINDOWS\system32\svchost.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 800 / LOCAL SERVICE]   C:\WINDOWS\system32\wdfmgr.exe   [(Verified)Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act), C:2005-01-28 01:36 M:2005-01-28 01:36]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]

[PID: 856 / SYSTEM]   C:\WINDOWS\system32\wilpmove.exe   [Wordcraft International Limited, 1, 0, 0, 3, C:2008-12-22 14:16 M:2007-03-23 13:05]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]

[PID: 1216 / LOCAL SERVICE]   C:\WINDOWS\System32\alg.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\System32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    C:\WINDOWS\System32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]

[PID: 1696 / Administrator]   C:\WINDOWS\Explorer.EXE   [(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    D:\360\360safe\safemon\safemon.dll  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]
    C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll  [(Verified)Nero AG, 3, 1, 0, 13, C:2008-06-24 13:45 M:2008-06-24 13:45]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80.DLL  [Microsoft Corporation, 8.00.50727.762, C:2006-12-02 00:25 M:2006-12-02 00:25]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80CHS.DLL  [Microsoft Corporation, 8.00.50727.762, C:2006-12-02 00:08 M:2006-12-02 00:08]
    C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll  [(Verified)Adobe Systems, Inc., 9.0.0.2008061100, C:2008-06-11 22:49 M:2008-06-11 22:49]
    C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS  [Adobe Systems, Inc., 9.0.0.0, C:2008-06-22 22:23 M:2008-06-22 22:23]
    C:\WINDOWS\system32\RavExt.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-11-29 18:33 M:2008-12-30 07:50]
    C:\WINDOWS\system32\shdoclc.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2008-05-05 15:58]
    C:\Program Files\Nero\Nero8\Nero BackItUp\NBShell.dll  [(Verified)Nero AG, 3, 5, 3, 0, C:2008-06-08 09:31 M:2008-06-08 09:31]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL  [Microsoft Corporation, 8.00.50727.762, C:2006-12-02 00:25 M:2006-12-02 00:25]
    C:\Program Files\WinRAR\rarext.dll  [N/A, C:2008-05-08 13:56 M:2007-09-05 17:12]
    C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll  [(Verified)VoyagerSoft, LLC, 3.1.437.0, C:2006-11-02 15:09 M:2006-11-02 15:09]
    C:\WINDOWS\system32\browselc.dll  [Microsoft Corporation, 6.00.2600.0000, C:1980-01-01 00:00 M:2001-10-25 12:00]
    D:\迅雷安装\ComDlls\xunleiBHO_Now.dll  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120, C:2009-01-14 23:17 M:2008-12-24 12:54]
    D:\迅雷安装\Components\ResWorker\DsBho_00.dll  [Thunder Networking Technologies,LTD, 1, 0, 0, 20, C:2009-01-14 23:17 M:2009-01-12 19:45]
    D:\迅雷安装\Components\ResWorker\DataProcessor_00.dll  [Thunder Networking Technologies,LTD, 1, 0, 0, 16, C:2009-01-14 23:17 M:2009-01-12 19:45]
    C:\WINDOWS\system32\JPWB.IME  [常诚研制, 4.00.950, C:2008-04-06 08:31 M:2008-04-06 08:31]

[PID: 2148 / Administrator]   C:\PROGRA~1\ThinkPad\PkgMgr\HOTKEY\TPHKMGR.exe   [N/A, C:2008-11-26 12:06 M:2006-02-14 23:56]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 2156 / Administrator]   C:\Program Files\Rising\AntiSpyware\rstray.exe   [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.16, C:2008-11-29 18:33 M:2008-11-29 18:42]
    C:\Program Files\Rising\AntiSpyware\rsmginfo.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-11-29 18:33 M:2009-01-10 08:53]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    C:\Program Files\Rising\AntiSpyware\RsXML.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\Program Files\Rising\AntiSpyware\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\Program Files\Rising\AntiSpyware\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\Program Files\Rising\AntiSpyware\ComServ.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.31, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\Program Files\Rising\AntiSpyware\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\Program Files\Rising\AntiSpyware\rscommon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.1.1, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\Program Files\Rising\AntiSpyware\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-29 18:33 M:2008-11-28 22:47]
    C:\Program Files\Rising\AntiSpyware\pngdll.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\Program Files\Rising\AntiSpyware\runiep.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.42, C:2008-11-29 18:33 M:2008-12-19 10:51]
    C:\Program Files\Rising\AntiSpyware\NComm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.11, C:2008-11-29 18:33 M:2008-12-19 10:50]
    D:\瑞星2008安装\Rising\Rav\ProcCom.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-29 18:33 M:2008-11-29 18:32]
    C:\Program Files\Rising\AntiSpyware\RsCommX2.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-11-29 18:42 M:2008-11-29 18:42]

[PID: 2224 / Administrator]   C:\Program Files\ThinkPad\PkgMgr\HOTKEY\TPONSCR.exe   [N/A, C:2008-11-26 12:06 M:2006-02-14 23:56]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]

[PID: 2240 / Administrator]   C:\Program Files\ThinkPad\PkgMgr\HOTKEY_1\TpScrex.exe   [IBM Corporation, 1.06, C:2008-11-26 12:06 M:2006-02-14 23:56]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    D:\360\360safe\safemon\safemon.dll  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]

[PID: 2332 / Administrator]   D:\360\360safe\antiarp\antiarp.exe   [(Verified)360安全中心, 2, 0, 0, 1008, C:2008-04-11 20:45 M:2008-04-11 20:45]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    D:\360\360safe\safemon\safemon.dll  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]

[PID: 2340 / Administrator]   D:\瑞星2008安装\Rising\Rav\RsTray.exe   [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.22, C:2008-12-30 08:07 M:2009-01-09 08:21]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    D:\瑞星2008安装\Rising\Rav\ComServ.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.49, C:2008-12-30 08:07 M:2009-01-14 20:09]
    C:\WINDOWS\system32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:1980-01-01 00:00 M:2004-05-19 17:43]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:1980-01-01 00:00 M:2004-05-19 17:43]
    D:\瑞星2008安装\Rising\Rav\rslang.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 27, C:2008-12-30 08:07 M:2009-01-05 09:20]
    D:\瑞星2008安装\Rising\Rav\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\rsxml.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ProcComm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\MonState.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ScanEvnt.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.12, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\rsguilib.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 70, C:2008-12-30 08:07 M:2009-01-05 09:20]
    C:\WINDOWS\system32\MFC71.DLL  [Microsoft Corporation, 7.10.3077.0, C:1980-01-01 00:00 M:2004-05-19 17:43]
    D:\瑞星2008安装\Rising\Rav\rsconf.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-30 08:07 M:2009-01-05 09:20]
    D:\瑞星2008安装\Rising\Rav\RSAPPMGR.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\CfgDll.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.18, C:2008-12-30 08:07 M:2009-01-14 20:08]
    D:\瑞星2008安装\Rising\Rav\rspalvd.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.21, C:2008-12-30 08:07 M:2008-12-30 18:45]
    D:\瑞星2008安装\Rising\Rav\ravbintl.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 25, C:2008-12-30 08:07 M:2008-12-31 18:47]
    D:\瑞星2008安装\Rising\Rav\mruleui.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 10, C:2008-12-30 08:07 M:2008-12-30 07:53]
    D:\瑞星2008安装\Rising\Rav\MonTray.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.90, C:2008-12-30 08:07 M:2009-01-14 20:09]
    D:\瑞星2008安装\Rising\Rav\PngDll.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\RavITray.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 19, C:2008-12-30 08:07 M:2008-12-28 19:27]
    D:\瑞星2008安装\Rising\Rav\ScanPrxy.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.14, C:2008-12-30 08:07 M:2009-01-20 18:58]
    D:\瑞星2008安装\Rising\Rav\rsmginfo.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-30 08:07 M:2009-01-09 15:57]

[PID: 2360 / Administrator]   C:\WINDOWS\system32\ctfmon.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    D:\360\360safe\safemon\safemon.dll  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]

[PID: 2380 / Administrator]   C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe   [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:06 M:2008-06-24 16:06]
    C:\Program Files\Common Files\Nero\Lib\NMSQLDB.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:06 M:2008-06-24 16:06]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    D:\360\360safe\safemon\safemon.dll  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]
    C:\Program Files\Common Files\Nero\Lib\NMLogCxx.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:06 M:2008-06-24 16:06]
    C:\Program Files\Common Files\Nero\Lib\log4cxx.dll  [(Verified)Nero AG, 1, 0, 1, 0, C:2008-06-24 16:04 M:2008-06-24 16:04]
    C:\Program Files\Common Files\Nero\Lib\NMIndexingServicePS.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:05 M:2008-06-24 16:05]
    C:\Program Files\Common Files\Nero\Lib\NMCoFoundation.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:05 M:2008-06-24 16:05]
    C:\Program Files\Common Files\Nero\Lib\NMPluginBase.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:06 M:2008-06-24 16:06]
    C:\Program Files\Common Files\Nero\Lib\NMFullTextExtraction.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:05 M:2008-06-24 16:05]
    C:\Program Files\Common Files\Nero\Lib\NMSearchPluginSimilarImages.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:06 M:2008-06-24 16:06]
    C:\Program Files\Common Files\Nero\Lib\NMDataServices.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:05 M:2008-06-24 16:05]
    C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvrPS.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:06 M:2008-06-24 16:06]

[PID: 2508 / SYSTEM]   C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe   [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:05 M:2008-06-24 16:05]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    C:\Program Files\Common Files\Nero\Lib\NMIndexingServicePS.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:05 M:2008-06-24 16:05]
    C:\Program Files\Common Files\Nero\Lib\NMLogCxx.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:06 M:2008-06-24 16:06]
    C:\Program Files\Common Files\Nero\Lib\log4cxx.dll  [(Verified)Nero AG, 1, 0, 1, 0, C:2008-06-24 16:04 M:2008-06-24 16:04]
    C:\Program Files\Common Files\Nero\Lib\NMDataServices.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:05 M:2008-06-24 16:05]
    C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvrPS.dll  [(Verified)Nero AG, 3.3.8.0, C:2008-06-24 16:06 M:2008-06-24 16:06]

[PID: 1628 / Administrator]   C:\Program Files\Internet Explorer\iexplore.exe   [(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-05-08 12:34 M:2008-04-14 20:00]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\Program Files\Rising\AntiSpyware\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-29 18:33 M:2008-11-28 22:47]
    C:\Program Files\Rising\AntiSpyware\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    D:\360\360safe\safemon\safemon.dll  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]
    C:\WINDOWS\system32\browselc.dll  [Microsoft Corporation, 6.00.2600.0000, C:1980-01-01 00:00 M:2001-10-25 12:00]
    D:\迅雷安装\ComDlls\TDAtOnce_Now.dll  [(Verified)Thunder Networking Technologies,LTD, 1.0.5.34, C:2009-01-14 23:17 M:2008-12-24 12:54]
    C:\WINDOWS\system32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:1980-01-01 00:00 M:2004-05-19 17:43]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:1980-01-01 00:00 M:2004-05-19 17:43]
    C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll  [(Verified)Adobe Systems Incorporated, 9.0.0.2008061100, C:2008-06-11 22:33 M:2008-06-11 22:33]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll  [Microsoft Corporation, 8.00.50727.762, C:2006-12-01 22:54 M:2006-12-01 22:54]
    C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll  [(Verified)Adobe Systems Incorporated, 9.0.0.2008061100, C:2008-06-11 22:33 M:2008-06-11 22:33]
    C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll  [(Verified)VoyagerSoft, LLC, 3.1.437.0, C:2006-11-02 15:09 M:2006-11-02 15:09]
    D:\迅雷安装\ComDlls\xunleiBHO_Now.dll  [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 120, C:2009-01-14 23:17 M:2008-12-24 12:54]
    D:\迅雷安装\Components\ResWorker\DsBho_00.dll  [Thunder Networking Technologies,LTD, 1, 0, 0, 20, C:2009-01-14 23:17 M:2009-01-12 19:45]
    D:\迅雷安装\Components\ResWorker\DataProcessor_00.dll  [Thunder Networking Technologies,LTD, 1, 0, 0, 16, C:2009-01-14 23:17 M:2009-01-12 19:45]
    C:\WINDOWS\system32\UrlFilter.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\Program Files\Rising\AntiSpyware\UrlRule.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1.0.0.15, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\WINDOWS\system32\shdoclc.dll  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:1980-01-01 00:00 M:2008-05-05 15:58]
    D:\瑞星2008安装\Rising\Rav\RavScrCh.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.60, C:2008-12-30 08:07 M:2009-01-21 21:05]
    C:\WINDOWS\system32\JPWB.IME  [常诚研制, 4.00.950, C:2008-04-06 08:31 M:2008-04-06 08:31]
    C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx  [(Verified)Adobe Systems, Inc., 10,0,12,36, C:2008-10-05 11:16 M:2008-10-05 11:16]
    D:\迅雷安装\ComDlls\ThunderAgent_Now.dll  [(Verified)Thunder Networking Technologies,LTD, 6, 0, 5, 47, C:2009-01-14 23:17 M:2008-12-24 12:54]
    C:\WINDOWS\system32\RavExt.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-11-29 18:33 M:2008-12-30 07:50]
    C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS  [Adobe Systems, Inc., 9.0.0.0, C:2008-06-22 22:23 M:2008-06-22 22:23]

[PID: 4080 / Administrator]   C:\WINDOWS\system32\conime.exe   [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2008-04-14 12:00 M:2008-04-14 12:00]
    C:\WINDOWS\system32\UxTheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\Program Files\Rising\AntiSpyware\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-29 18:33 M:2008-11-28 22:47]
    C:\Program Files\Rising\AntiSpyware\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-29 18:33 M:2008-11-29 18:33]
    D:\360\360safe\safemon\safemon.dll  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]

[PID: 3704 / Administrator]   D:\Program Files\QQ\QQ.exe   [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:03]
    D:\Program Files\QQ\QQBaseClassInDll.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQHelperDll.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\BasicCtrlDll.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\MFC42.DLL  [Microsoft Corporation, 6.00.8665.0, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\MSIMG32.dll  [N/A, C:2008-11-25 11:06 M:2008-01-31 08:06]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    D:\360\360safe\safemon\safemon.dll  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]
    C:\Program Files\Rising\AntiSpyware\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-29 18:33 M:2008-11-28 22:47]
    C:\Program Files\Rising\AntiSpyware\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-29 18:33 M:2008-11-29 18:33]
    D:\Program Files\QQ\FinePlus.dll  [N/A, C:2008-11-25 11:06 M:2008-02-06 23:22]
    D:\Program Files\QQ\fphelper.dll  [N/A, C:2008-11-25 11:06 M:2008-01-27 15:59]
    D:\Program Files\QQ\RICHED32.DLL  [Microsoft Corporation, 5.00.2134.1, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\RICHED20.dll  [Microsoft Corporation, 5.31.23.1218, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQAPI.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\LoginCtrl.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\LoginCtrlRes.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQRes.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-19 20:21]
    D:\Program Files\QQ\QQMainFrame.dll  [N/A, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\gdiplus.dll  [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158), C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQPlugin.dll  [N/A, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\UnReadMsgMgr.dll  [N/A, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\CQQApplication.dll  [N/A, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\FlashAvatarDll.dll  [版权所有 (C) 2005, 1, 4, 0, 1, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\NewSkin.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\MailSummary.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQSpace.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\vbscript.dll  [N/A, C:2008-11-25 11:06 M:2008-01-30 22:20]
    D:\Program Files\QQ\encode.dll  [Microsoft Corporation, 5.6.0.8825, C:2008-11-25 11:06 M:2005-05-17 23:12]
    C:\WINDOWS\system32\msdmo.dll  [(Verified)N/A, C:2008-04-14 12:00 M:2008-04-14 12:00]
    D:\Program Files\QQ\QQKnowledgeSearch.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\OEMApplication.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQGroupMng.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQAvatar.dll  [N/A, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQAllInOne.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-18 10:38]
    D:\Program Files\QQ\SCCore.dll  [TENCENT, 1, 6, 0, 2, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\CameraDll.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\UserDefinedHead.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQConfigPlugin.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQCustomFace.dll  [N/A, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QRingMng.dll  [N/A, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\ImageOle.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQLiveQMng.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQSceneMng.dll  [N/A, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\LongConnection.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-18 17:52]
    D:\Program Files\QQ\QQPet.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\PhoneAPI.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\DialerAllinOne.dll  [tencent, 1, 4, 0, 0, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQSysMsgMng.dll  [N/A, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\GroupConnection.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\BQQApplication.dll  [N/A, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\PersonalDesktop.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\CommercesMng.dll  [TENCENT, 8,0,713,1791, C:2008-11-25 11:06 M:2008-02-15 18:04]
    D:\Program Files\QQ\QQAddr.dll  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 330, C:2008-11-25 11:06 M:2008-02-15 15:59]

[PID: 3236 / Administrator]   D:\Program Files\QQ\TXPlatform.exe   [(Verified)Tencent, 1, 0, 170, 0, C:2008-11-25 11:06 M:2007-11-18 09:53]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\Program Files\Rising\AntiSpyware\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-29 18:33 M:2008-11-28 22:47]
    C:\Program Files\Rising\AntiSpyware\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    D:\360\360safe\safemon\safemon.dll  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]

[PID: 2804 / Administrator]   D:\安装文件夹\windows清理助手安装\arswp\ArSwp.exe   [(Verified)ArSwp.com, 2, 8, 2, 1115, C:2009-01-22 15:20 M:2008-11-15 11:58]
    C:\WINDOWS\system32\kmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-11-29 18:33 M:2008-11-28 22:48]
    C:\Program Files\Rising\AntiSpyware\comx3.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-11-29 18:33 M:2008-11-28 22:47]
    C:\Program Files\Rising\AntiSpyware\Syslay.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-11-29 18:33 M:2008-11-29 18:33]
    C:\WINDOWS\system32\uxtheme.dll  [Microsoft Corporation, 6.0.2900.5512, C:1980-01-01 00:00 M:2008-04-23 13:55]
    D:\360\360safe\safemon\safemon.dll  [(Verified)360.CN, 4, 2, 0, 1007, C:2008-12-10 01:14 M:2008-12-10 01:14]
    D:\安装文件夹\windows清理助手安装\arswp\plugin\ArFix.dll  [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2009-01-22 15:20 M:2007-11-28 15:19]
    D:\瑞星2008安装\Rising\Rav\ur027.dat  [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-30 08:07 M:2008-12-28 19:27]


========================================
文件关联



========================================
AutoRun.INF



========================================
Winsock提供者



========================================
HOSTS

    127.0.0.1 localhost


[/CODE]