[CODE] 2009-06-08,15:01:17 SysLog Scanner 1.0 - build 20080726 Arswp (http://www.arswp.com) Windows XP Professional Service Pack 2 (build 2600) - Administrators ======================================== 注册项 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [(Verified)PPStream Inc, 1, 0, 11, 171, C:2009-05-23 16:03 M:2008-12-11 18:06] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <; RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup> [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)NVIDIA Corporation, 6.14.10.9424, C:2007-04-19 13:26 M:2007-04-19 13:26] <"C:\Program Files\Rising\Rav\RsTray.exe" -system> [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.22, C:2008-12-21 14:05 M:2009-02-19 14:41] <"C:\Program Files\Rising\Rfw\RsTray.exe" -system> [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.22, C:2008-12-27 22:19 M:2009-02-19 14:46] <"D:\软件备份\Rising\Rising\rstray.exe" /startup> [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.17, C:2009-05-01 15:27 M:2009-05-01 15:27] [N/A, ] <360Safebox><"C:\Program Files\360Safebox\safeboxTray.exe" /r> [(Verified)360安全中心, 2, 5, 2, 1005, C:2009-04-29 21:40 M:2009-04-29 21:40] <360Safetray> [(Verified)360安全中心, 5, 0, 0, 1019, C:2009-05-01 00:26 M:2009-05-01 00:26] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] [(Verified)Beijing Rising Information Technology Co., Ltd., 19, 0, 0, 3, C:2009-05-01 15:27 M:2009-05-01 15:27] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{32CD708B-60A7-4C00-9377-D73EAA495F0F}> [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-02-11 23:00 M:2008-12-21 14:01] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\iSee 保存所有图片] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\iSee保存Flash] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\iSee保存所有图片] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\iSee读取Exif] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用光影编辑和美化] <> [N/A, C:2009-05-09 15:34 M:2008-12-08 00:27] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载] <> [N/A, C:2007-07-17 14:28 M:2008-06-13 09:55] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载全部链接] <> [N/A, C:2007-07-17 14:28 M:2008-06-13 09:55] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到QQ表情] <> [N/A, C:2009-05-23 20:17 M:2009-05-23 20:17] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加相册用户到iSee收藏] <> [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)N/A, C:2004-08-04 16:48 M:2004-08-04 16:48] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)N/A, C:2004-08-04 16:48 M:2004-08-04 16:48] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52|(Verified)N/A, C:2004-08-04 16:48 M:2004-08-04 16:48] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到QQ表情] <> [N/A, C:2009-05-23 20:17 M:2009-05-23 20:17] ======================================== 启动项 [QQ游戏启动加速程序] "D:\QQ游戏\QQGAME\Accel.exe" > [(Verified)深圳市腾讯计算机系统有限公司, 2, 0, 103, 5, C:2009-03-07 01:18 M:2009-03-07 01:18] ======================================== 计划任务 [SogouImeMgr.job] "D:\输入法\SOGOUI~1\413~1.239\PinyinRepair.exe" /S > [(Verified)Sogou.com Inc., 4.1.3.2396, C:2009-04-20 14:40 M:2009-04-20 14:40] ======================================== 组件 ShellExecuteHook [ShlExecHack Class] {32CD708B-60A7-4C00-9377-D73EAA495F0F} [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-02-11 23:00 M:2008-12-21 14:01] Shell Extension [Display Panning CPL Extension] {42071714-76d4-11d1-8b24-00a0c9068ff3} [] [HyperTerminal Icon Ext] {88895560-9AA2-1069-930E-00AA0030EBC8} [(Verified)Hilgraeve, Inc., 5.1.2600.0, C:2007-07-17 14:09 M:2004-06-06 22:13] [NvCpl DesktopContext Class] {A70C977A-BF00-412C-90B7-034C51DA2439} [(Verified)NVIDIA Corporation, 6.14.10.9424, C:2007-04-19 13:26 M:2007-04-19 13:26] [Play on my TV helper] {FFB699E0-306A-11d3-8BD1-00104B6F7516} [(Verified)NVIDIA Corporation, 6.14.10.9424, C:2007-04-19 13:26 M:2007-04-19 13:26] [Desktop Explorer] {1CDB2949-8F65-4355-8456-263E7C208A5D} [N/A, C:2007-04-19 13:26 M:2007-04-19 13:26] [Desktop Explorer Menu] {1E9B04FB-F9E5-4718-997B-B8DA88302A47} [N/A, C:2007-04-19 13:26 M:2007-04-19 13:26] [nView Desktop Context Menu] {1E9B04FB-F9E5-4718-997B-B8DA88302A48} [N/A, C:2007-04-19 13:26 M:2007-04-19 13:26] [WinRAR shell extension] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2007-07-17 14:28 M:2008-09-30 21:14] [AutoCAD 数字签名图标覆盖处理程序] {36A21736-36C2-4C11-8ACB-D4136F2B57BD} [(Verified)Autodesk, 16.0.0.86, C:2003-02-14 01:31 M:2003-02-14 01:31] [Autodesk Drawing Preview] {AC1DB655-4F9A-4c39-8AD2-A65324A4C446} [(Verified)Autodesk, 16.0.0.86, C:2003-02-14 01:31 M:2003-02-14 01:31] [RISING] {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-02-11 23:00 M:2008-12-21 14:01] Protocols [MathPlayer Mime Filter Class] {32F66A26-7614-11D4-BD11-00104BD3F987} [Design Science, Inc., 2007.05.09.00, C:2008-10-24 20:59 M:2007-05-09 09:41] [] {6AC4FBC7-AA38-45EC-9634-D6D20B679EFC} [酷狗, 5.2.4.4, C:2008-02-15 20:36 M:2008-08-13 17:13] BrowserHelperObject [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2009-05-01 15:27 M:2009-05-01 15:27] [SafeMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] ToolBar [瑞星卡卡工具条(&R)] {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 3, C:2009-05-01 15:27 M:2009-05-01 15:26] ActiveX Extension [ThunderAtOnce Class] {01443AEC-0FD1-40FD-9C87-E93D1494C233} [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29, C:2008-04-05 19:50 M:2008-06-13 09:43] [PhotoDrawEx Class] {05F5F404-7C24-4B39-B5CC-340CEDEB9C0D} [(Verified)TENCENT, 1, 9, 109, 144, C:2007-11-03 12:06 M:2007-11-03 12:06] [iTrusPTA Class] {1E0DFFCF-27FF-4574-849B-55007349FEDA} [(Verified)Copyright 2001, 2, 5, 1, 509, C:2008-10-07 23:37 M:2008-03-11 18:50] [Thunder Agent Class] {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} [(Verified)Thunder Networking Technologies,LTD, 5, 0, 4, 23, C:2008-04-05 19:50 M:2008-06-13 09:43] [EditCtrl Class] {488A4255-3236-44B3-8F27-FA1AECAA8844} [(Verified)Copyright 2008, 2, 1, 2, 3, C:2009-03-16 14:07 M:2009-03-16 14:07] [ImageUploadAX Control] {54A1DDD3-59AB-4445-A09F-507C7894A528} [北京新浪网络技术服务有限公司, 1.0.0.3691, C:2007-11-15 14:55 M:2007-11-15 14:55] [WangWangX Class] {5D09DD40-CDC4-4C56-B615-0D1E3B357C2B} [(Verified)Alibaba software (Shanghai) Corporation., 1.0.0.1, C:2009-03-16 14:07 M:2009-03-16 14:07] [PowerPlayer Control] {5EC7C511-CD0F-42E6-830C-1BD9882F3458} [(Verified)PPStream Inc., 2,3,468,9468, C:2009-06-03 15:39 M:2009-03-23 18:38] [XMP Class] {6483F145-A768-4C41-AACC-52D4D7845851} [深圳市迅雷网络技术有限公司, 2, 1, 9, 102, C:2008-04-05 19:50 M:2009-05-04 13:14] [AxInputControl Class] {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} [Copyright 2003, 1, 0, 0, 12, C:2005-07-25 15:51 M:2005-07-25 15:51] [MediaComm Class] {7670648D-461B-42AF-BDFE-46D26AF5EFF2} [(Verified)深圳市迅雷网络技术有限公司, 3, 1, 7, 82, C:2009-05-09 15:29 M:2009-05-04 13:15] [360SafeLive] {87515F61-A66C-4319-A0E0-D416CB8059E3} [(Verified)360.cn, 1, 0, 2, 1004, C:2009-04-30 14:35 M:2009-04-30 14:35] [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-04-05 19:50 M:2008-06-13 09:43] [AxSubmitControl Class] {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} [Copyright 2003, 1, 0, 0, 5, C:2005-01-26 00:36 M:2005-01-26 00:36] [OFrameObject Class] {9701758C-4373-482E-B13C-776C048EC890} [(Verified)深圳市迅雷网络技术有限公司, 2, 3, 5814, 165, C:2009-05-09 15:29 M:2009-05-04 13:15] [卡卡上网安全助手] {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2009-05-01 15:27 M:2009-05-01 15:27] [DapCtrl Class] {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} [(Verified)深圳市迅雷网络技术有限公司, 2, 3, 5814, 165, C:2009-05-09 15:29 M:2009-05-04 13:15] [SafeMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [(Verified)Adobe Systems, Inc., 10,0,22,87, C:2009-02-03 10:07 M:2009-02-03 10:07] [瑞星卡卡工具条(&R)] {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 3, C:2009-05-01 15:27 M:2009-05-01 15:26] [PlayerCtrl Class] {E05BC2A3-9A46-4A32-80C9-023A473F5B23} [(Verified)深圳腾讯科技, 3, 1, 164, 203, C:2009-03-02 20:26 M:2009-03-02 20:27] [XPPlayer Class] {F3E70CEA-956E-49CC-B444-73AFE593AD7F} [(Verified)深圳市迅雷网络技术有限公司, 2, 1, 58130, 251, C:2009-05-09 15:29 M:2009-05-04 13:15] Context Menu [OpenFolder] {0DE1378D-F811-40E6-B60A-1CC56F57D3E9} [(Verified)Alibaba software (Shanghai) Corporation., 1.0.0.1, C:2009-03-16 14:07 M:2009-03-16 14:07] [QvodMenu] {9F44453E-1E46-4D5C-B57C-112FF2EDAE82} [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 0, C:2008-10-31 18:47 M:2008-10-31 18:47] [RisingRavExt] {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-02-11 23:00 M:2008-12-21 14:01] [WinRAR] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2007-07-17 14:28 M:2008-09-30 21:14] ======================================== 服务 [C-DillaCdaC11BA / C-DillaCdaC11BA][Running/Auto Start] [Macrovision, 4.20.020, C:2008-10-27 14:16 M:2008-10-27 14:16] [Contrl Center of Storm Media / ccosm][Stopped/Auto Start] [] [Human Interface Device Access / HidServ][Stopped/Disabled] <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\hidserv.dll"> [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] [NVIDIA Display Driver Service / NVSvc][Running/Auto Start] <%SystemRoot%\system32\nvsvc32.exe> [(Verified)NVIDIA Corporation, 6.14.10.9424, C:2007-04-19 13:26 M:2007-04-19 13:26] [Rav Process Communication Center / RavCCenter][Stopped/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-21 14:04 M:2008-12-21 14:01] [Rising RavTask Manager / RavTask][Running/Auto Start] <"C:\Program Files\Rising\Rav\RavTask.exe" RavTask> [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24, C:2008-12-21 14:04 M:2009-04-13 21:47] [Rfw Process Communication Center / RfwCCenter][Stopped/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-27 22:19 M:2008-12-27 21:57] [Rising Personal Firewall Service / RfwService][Stopped/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-27 22:19 M:2008-12-26 17:04] [Rising RfwTask Manager / RfwTask][Running/Auto Start] <"C:\Program Files\Rising\Rfw\RavTask.exe" RfwTask> [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24, C:2008-12-27 22:19 M:2009-04-13 20:42] [Rising RealTime Monitor / RsRavMon][Stopped/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-21 14:05 M:2009-05-12 16:04] [Rising Scan Service / RsScanSrv][Stopped/Auto Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.11, C:2008-12-21 14:04 M:2008-12-21 14:01] ======================================== 驱动 [360TimeProt / 360TimeProt][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\360TimeProt.sys> [N/A, C:2003-01-01 00:03 M:2003-01-01 00:03] [Mobinex Virtual Webcam - 9You, WDM Video Capture / 9you][Stopped/Auto Start] [Windows (R) 2000 DDK provider, 5.1.2600.2180 built by: WinDDK, C:2008-10-09 13:45 M:2008-03-24 14:32] [Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start] [Realtek Semiconductor Corp., 5.10.00.5950 built by: WinDDK, C:2007-07-17 14:24 M:2005-10-26 16:08] [CdaC15BA / CdaC15BA][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\CDAC15BA.SYS> [Macrovision Europe Ltd, 3.17.000, C:2008-10-27 14:17 M:2008-10-27 14:17] [EagleNT / EagleNT][Stopped/Manual Start] <\??\C:\WINDOWS\system32\drivers\EagleNT.sys> [] [npkcrypt / npkcrypt][Stopped/Auto Start] <\??\D:\QQ\npkcrypt.sys> [] [QKeyServiceDisplay / QKeyService][Running/Boot Start] [ Tencent Technology (Shenzhen) Company Limited, 1, 0, 0, 7, C:2008-02-12 22:55 M:2007-09-17 10:48] [TCP/IP Protocol Driver / Tcpip][Running/System Start] [Microsoft Corporation, 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245), C:2004-08-04 15:14 M:2008-12-31 14:40] [vmfilter303 / vmfilter303][Running/Manual Start] [Vimicro Corporation, 1.4.060423.01, C:2008-02-12 21:04 M:2006-04-25 10:57] [海天地QQ (Vimicro301 Neptune) / ZSMC303][Running/Manual Start] [Vimicro Corporation, 3, 6, 831, 17, C:2008-02-12 22:23 M:2006-08-31 10:30] [BREGDRV / BREGDRV][Stopped/Manual Start] <\??\C:\WINDOWS\system32\drivers\bregdrv.sys> [(Verified)360安全中心, 1.0.0.1010, C:2009-05-09 15:25 M:2009-04-15 15:58] [hookcont / hookcont][Running/System Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 6, C:2008-12-21 14:05 M:2008-12-21 14:01] [hooksys / hooksys][Running/System Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 55, C:2008-12-21 14:05 M:2009-04-27 18:56] [nv / nv][Running/Manual Start] [(Verified)NVIDIA Corporation, 6.14.10.9424, C:2007-04-19 13:26 M:2007-04-19 13:26] [DDK PACKET Protocol / Packet][Running/Disabled] [(Verified)360安全中心, 1, 0, 1, 1001, C:2008-04-09 16:36 M:2008-04-09 16:36] [Direct Parallel Link Driver / Ptilink][Running/Manual Start] [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2004-06-06 22:13 M:2004-06-06 22:13] [Rising RfwBase Driver / RfwBase9][Running/Manual Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.2, C:2008-12-27 22:19 M:2008-12-26 16:50] [rfwtdi / rfwtdi][Running/Auto Start] <\??\C:\Program Files\Rising\Rfw\rfwtdi.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.7, C:2008-12-27 22:19 M:2009-04-17 13:10] [rsfwdrv / rsfwdrv][Running/System Start] <\??\C:\Program Files\Rising\Rfw\rsfwdrv.sys> [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.47, C:2008-12-27 22:19 M:2009-04-27 18:58] [RsNTGDI / RsNTGDI][Running/Boot Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-21 14:04 M:2008-12-21 14:01] [RsProtect / RsProtect][Running/System Start] [(Verified)Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 8, C:2008-12-23 12:02 M:2009-01-06 21:23] [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start] [(Verified)Realtek Semiconductor Corporation, 5.398.613.2003 built by: WinDDK, C:2007-07-17 14:04 M:2004-08-03 22:31] [SafeBoxKrnl / SafeBoxKrnl][Running/System Start] <\??\C:\WINDOWS\system32\Drivers\safeboxkrnl.sys> [(Verified)360安全中心, 2, 3, 0, 1010, C:2009-03-03 18:15 M:2009-03-03 18:15] [Secdrv / Secdrv][Stopped/Manual Start] [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2004-07-18 03:36 M:2007-11-13 18:25] [TesDrvPt / TesDrvPt][Stopped/Manual Start] <\??\C:\WINDOWS\system32\TesDrvPt.sys> [(Verified)TENCENT, 1.0.4 built by: WinDDK, C:2009-05-05 20:34 M:2009-05-05 20:34] [TesSafe / TesSafe][Stopped/Manual Start] <\??\C:\WINDOWS\system32\TesSafe.sys> [(Verified)TENCENT, 0, 1, 0, 0, C:2008-02-11 23:22 M:2009-05-06 19:52] ======================================== 进程 [PID: 704 / SYSTEM] \SystemRoot\System32\smss.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] [PID: 760 / SYSTEM] \??\C:\WINDOWS\system32\csrss.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] [PID: 784 / SYSTEM] \??\C:\WINDOWS\system32\winlogon.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] [PID: 828 / SYSTEM] C:\WINDOWS\system32\services.exe [(Verified)Microsoft Corporation, 5.1.2600.3520 (xpsp_sp2_qfe.090206-1239), C:2004-08-04 16:52 M:2009-02-09 17:48] [PID: 844 / SYSTEM] C:\WINDOWS\system32\lsass.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] [PID: 1012 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] [PID: 1060 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] [PID: 1164 / SYSTEM] C:\Program Files\Rising\Rav\CCENTER.EXE [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\combase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-21 14:04 M:2008-12-21 14:03] C:\Program Files\Rising\Rav\cnt09.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 37, C:2008-12-21 14:04 M:2008-12-21 14:03] C:\Program Files\Rising\Rav\cnt08.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7, C:2008-12-21 14:04 M:2008-12-21 14:03] [PID: 1180 / SYSTEM] C:\Program Files\Rising\Rfw\CCENTER.EXE [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-27 22:19 M:2008-12-27 21:57] C:\Program Files\Rising\Rfw\combase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-27 22:19 M:2008-12-26 17:15] C:\Program Files\Rising\Rfw\cnt09.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 37, C:2008-12-27 22:19 M:2008-12-27 21:57] [PID: 1188 / SYSTEM] C:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] c:\windows\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159, C:2004-08-04 16:52 M:2008-05-19 06:33] [PID: 1228 / SYSTEM] C:\Program Files\Rising\Rav\RavTask.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24, C:2008-12-21 14:04 M:2009-04-13 21:47] C:\Program Files\Rising\Rav\proccomm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\Program Files\Rising\Rav\rsconf.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-21 14:04 M:2009-03-19 12:20] C:\Program Files\Rising\Rav\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.20, C:2008-12-21 14:04 M:2009-06-02 15:59] C:\Program Files\Rising\Rav\rstask.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 39, C:2008-12-21 14:04 M:2009-05-31 14:45] C:\Program Files\Rising\Rav\rsstub.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-12-21 14:04 M:2008-12-21 14:01] [PID: 1256 / SYSTEM] C:\Program Files\Rising\Rfw\RavTask.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24, C:2008-12-27 22:19 M:2009-04-13 20:42] C:\Program Files\Rising\Rfw\proccomm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-27 22:19 M:2008-12-27 21:57] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\Program Files\Rising\Rfw\rsconf.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-27 22:19 M:2009-03-19 20:32] C:\Program Files\Rising\Rfw\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-27 22:19 M:2008-12-26 17:03] C:\Program Files\Rising\Rfw\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.20, C:2008-12-27 22:19 M:2009-06-02 16:00] C:\Program Files\Rising\Rfw\rstask.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 39, C:2008-12-27 22:19 M:2009-05-31 14:00] C:\Program Files\Rising\Rfw\rsstub.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-12-27 22:19 M:2008-12-27 21:59] [PID: 1368 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] [PID: 1456 / LOCAL SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] [PID: 1500 / SYSTEM] C:\Program Files\Rising\Rfw\rfwsrv.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-27 22:19 M:2008-12-26 17:04] C:\Program Files\Rising\Rfw\combase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-27 22:19 M:2008-12-26 17:15] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\Program Files\Rising\Rfw\MonBase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6, C:2008-12-27 22:19 M:2009-02-24 19:58] C:\Program Files\Rising\Rfw\MonComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13, C:2008-12-27 22:19 M:2009-05-18 16:13] C:\Program Files\Rising\Rfw\rfwlog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13, C:2008-12-27 22:19 M:2009-04-22 16:10] C:\Program Files\Rising\Rfw\rfwrule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.25, C:2008-12-27 22:19 M:2009-05-11 17:43] C:\Program Files\Rising\Rfw\rfwsrv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.87, C:2008-12-27 22:19 M:2009-05-21 19:56] C:\Program Files\Rising\Rfw\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-12-27 22:19 M:2008-12-26 17:01] C:\Program Files\Rising\Rfw\mPorts.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.0, C:2008-12-27 22:19 M:2008-12-26 16:52] C:\Program Files\Rising\Rfw\rfwdrvc.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.3, C:2008-12-27 22:19 M:2008-12-26 17:01] C:\Program Files\Rising\Rfw\Rfwdrv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.5, C:2008-12-27 22:19 M:2008-12-26 17:01] C:\Program Files\Rising\Rfw\rsnetsvr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14, C:2008-12-27 22:19 M:2009-03-16 16:06] C:\Program Files\Rising\Rfw\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-27 22:19 M:2009-03-02 14:20] C:\Program Files\Rising\Rfw\urlrule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1.0.0.18, C:2008-12-27 22:19 M:2008-12-26 17:01] C:\Program Files\Rising\Rfw\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-02-11 22:57 M:2009-02-20 14:13] C:\Program Files\Rising\Rfw\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-02-11 22:57 M:2008-12-27 21:58] C:\Program Files\Rising\Rfw\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-02-11 22:57 M:2009-05-07 16:11] C:\Program Files\Rising\Rfw\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6, C:2008-02-11 22:57 M:2009-05-21 17:01] C:\Program Files\Rising\Rfw\rfwproxy.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.25, C:2008-12-27 22:19 M:2009-04-27 18:58] C:\Program Files\Rising\Rfw\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-27 22:19 M:2008-12-26 17:03] C:\Program Files\Rising\Rfw\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.20, C:2008-12-27 22:19 M:2009-06-02 16:00] C:\Program Files\Rising\Rfw\proccomm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-27 22:19 M:2008-12-27 21:57] C:\Program Files\Rising\Rfw\urllib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-27 22:19 M:2008-12-26 16:59] [PID: 1516 / SYSTEM] C:\Program Files\Rising\Rav\RavMonD.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-21 14:05 M:2009-05-12 16:04] C:\Program Files\Rising\Rav\combase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-21 14:04 M:2008-12-21 14:03] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\Program Files\Rising\Rav\moncomm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13, C:2008-12-21 14:04 M:2009-05-18 16:13] C:\Program Files\Rising\Rav\MonBase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6, C:2008-12-21 14:05 M:2009-02-23 16:38] C:\Program Files\Rising\Rav\Rslog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-21 14:04 M:2009-05-31 14:45] C:\Program Files\Rising\Rav\mondrv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9, C:2008-12-21 14:05 M:2009-03-16 15:05] C:\Program Files\Rising\Rav\defmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 31, C:2008-12-21 14:05 M:2009-03-24 22:36] C:\Program Files\Rising\Rav\moncom08.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\MonRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 9, C:2008-12-21 14:05 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\FileMon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28, C:2008-12-21 14:05 M:2009-05-18 16:12] C:\Program Files\Rising\Rav\MailMon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 24, C:2008-12-21 14:05 M:2009-02-19 14:41] C:\Program Files\Rising\Rav\HookWeb.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-21 14:05 M:2008-12-21 14:03] C:\Program Files\Rising\Rav\proccomm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.20, C:2008-12-21 14:04 M:2009-06-02 15:59] C:\Program Files\Rising\Rav\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-21 14:04 M:2009-03-02 14:35] C:\Program Files\Rising\Rav\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\Hooksys.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 18, C:2008-12-21 14:05 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\HookCont.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 23, 0, 0, 12, C:2008-12-21 14:05 M:2009-02-19 14:41] C:\Program Files\Rising\Rav\rsnetsvr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14, C:2008-12-21 14:05 M:2009-03-16 15:06] C:\Program Files\Rising\Rav\BACore.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 22, C:2008-12-21 14:05 M:2009-03-30 21:33] C:\Program Files\Rising\Rav\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-21 14:04 M:2009-02-19 18:04] C:\Program Files\Rising\Rav\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\RSStore.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-12-21 14:05 M:2009-05-12 16:04] C:\Program Files\Rising\Rav\ScanAdd.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.19, C:2008-12-21 14:04 M:2009-05-31 14:45] C:\Program Files\Rising\Rav\Scanner.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.38, C:2008-12-21 14:04 M:2009-04-29 16:12] C:\Program Files\Rising\Rav\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-12-21 14:04 M:2009-05-07 17:02] C:\Program Files\Rising\Rav\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6, C:2008-12-21 14:04 M:2009-05-22 10:21] C:\Program Files\Rising\Rav\ffr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-21 14:04 M:2009-02-19 14:41] C:\Program Files\Rising\Rav\nvfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\scanexec.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-12-21 14:04 M:2009-02-19 14:41] C:\Program Files\Rising\Rav\unexe.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\scanex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 42, C:2008-12-21 14:04 M:2009-06-05 19:07] C:\Program Files\Rising\Rav\extfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14, C:2008-12-21 14:04 M:2009-05-19 15:57] C:\Program Files\Rising\Rav\pearc.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\scanpe.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14, C:2008-12-21 14:04 M:2009-05-22 10:21] C:\Program Files\Rising\Rav\ur000.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13, C:2008-12-21 14:04 M:2009-04-29 16:11] C:\Program Files\Rising\Rav\urutils.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\methodex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2009-06-03 16:44 M:2009-06-03 16:43] C:\Program Files\Rising\Rav\pecompd.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2009-06-03 16:44 M:2009-06-03 16:43] C:\Program Files\Rising\Rav\heurex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2009-06-03 16:44 M:2009-06-03 16:43] C:\Program Files\Rising\Rav\revm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-12-21 14:04 M:2009-05-14 21:15] C:\Program Files\Rising\Rav\scansct.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-21 14:04 M:2009-02-19 14:41] C:\Program Files\Rising\Rav\extmail.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-12-21 14:04 M:2009-04-14 19:13] C:\Program Files\Rising\Rav\ur001.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7, C:2008-12-21 14:04 M:2009-03-03 17:42] C:\Program Files\Rising\Rav\ur025.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\ur021.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-21 14:04 M:2008-12-21 14:01] [PID: 1720 / SYSTEM] C:\WINDOWS\system32\spoolsv.exe [(Verified)Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519), C:2004-08-04 16:52 M:2005-06-11 07:53] C:\WINDOWS\System32\spool\PRTPROCS\W32X86\cwprintproc.dll [Windows (R) 2000 DDK provider, 5.00.2195.1620, C:2008-11-01 11:11 M:2007-11-05 23:40] [PID: 1776 / SYSTEM] C:\Program Files\Rising\Rav\rsnetsvr.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 15, C:2008-12-21 14:05 M:2009-03-16 15:06] C:\Program Files\Rising\Rav\NComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.12, C:2008-12-21 14:05 M:2009-03-16 15:06] C:\Program Files\Rising\Rav\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-21 14:04 M:2009-03-02 14:35] C:\Program Files\Rising\Rav\ProcComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-02-11 22:57 M:2008-02-11 22:55] [PID: 316 / df] C:\WINDOWS\Explorer.EXE [(Verified)Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234), C:2004-08-04 16:52 M:2007-06-13 21:21] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\WINDOWS\system32\AcSignIcon.dll [(Verified)Autodesk, 16.0.0.86, C:2003-02-14 01:31 M:2003-02-14 01:31] C:\WINDOWS\system32\RavExt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-02-11 23:00 M:2008-12-21 14:01] C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll [(Verified)Autodesk, 16.0.0.86, C:2003-02-14 01:31 M:2003-02-14 01:31] C:\WINDOWS\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159, C:2004-08-04 16:52 M:2008-05-19 06:33] C:\WINDOWS\system32\nvcpl.dll [(Verified)NVIDIA Corporation, 6.14.10.9424, C:2007-04-19 13:26 M:2007-04-19 13:26] C:\WINDOWS\system32\NVRSZHC.DLL [NVIDIA Corporation, 6.14.10.9424, C:2007-04-19 13:26 M:2007-04-19 13:26] C:\WINDOWS\system32\nvapi.dll [(Verified)N/A, C:2007-04-19 13:26 M:2007-04-19 13:26] C:\WINDOWS\system32\nvshell.dll [N/A, C:2007-04-19 13:26 M:2007-04-19 13:26] C:\Program Files\WinRAR\rarext.dll [N/A, C:2007-07-17 14:28 M:2008-09-30 21:14] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416), C:2009-03-02 20:26 M:2009-03-02 20:26] C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29, C:2008-04-05 19:50 M:2008-06-13 09:43] C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-04-05 19:50 M:2008-06-13 09:43] C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_01.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 20, C:2008-09-29 14:14 M:2008-08-04 12:58] C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_01.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 16, C:2008-09-29 14:14 M:2008-08-04 12:58] C:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 4.1.3.2396, C:2009-04-20 14:40 M:2009-04-20 14:40] D:\软件备份\qvod\QvodPlayer\QvodBand.dll [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 0, C:2008-10-31 18:47 M:2008-10-31 18:47] D:\旺旺\WangWang\AliIMExt.dll [(Verified)Alibaba software (Shanghai) Corporation., 1.0.0.1, C:2009-03-16 14:07 M:2009-03-16 14:07] D:\软件备份\奇虎360\360safe\safemon\safemon.dll [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] [PID: 328 / LOCAL SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] [PID: 376 / SYSTEM] C:\WINDOWS\system32\drivers\CDAC11BA.EXE [Macrovision, 4.20.020, C:2008-10-27 14:16 M:2008-10-27 14:16] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] [PID: 480 / SYSTEM] C:\WINDOWS\system32\nvsvc32.exe [(Verified)NVIDIA Corporation, 6.14.10.9424, C:2007-04-19 13:26 M:2007-04-19 13:26] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\WINDOWS\system32\nvapi.dll [(Verified)N/A, C:2007-04-19 13:26 M:2007-04-19 13:26] [PID: 568 / df] C:\Program Files\Rising\Rav\RsTray.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.22, C:2008-12-21 14:05 M:2009-02-19 14:41] C:\Program Files\Rising\Rav\ComServ.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.49, C:2008-12-21 14:05 M:2009-02-19 14:41] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\Program Files\Rising\Rav\rslang.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28, C:2008-12-21 14:04 M:2009-03-02 14:35] C:\Program Files\Rising\Rav\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-21 14:04 M:2009-03-02 14:35] C:\Program Files\Rising\Rav\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\rsxml.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\ProcComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\MonState.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7, C:2008-12-21 14:05 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\ScanEvnt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.14, C:2008-12-21 14:05 M:2009-04-13 21:48] C:\Program Files\Rising\Rav\rsguilib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 75, C:2008-12-21 14:04 M:2009-05-11 12:58] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\Program Files\Rising\Rav\rsconf.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-21 14:04 M:2009-03-19 12:20] C:\Program Files\Rising\Rav\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.20, C:2008-12-21 14:04 M:2009-06-02 15:59] C:\Program Files\Rising\Rav\rspalvd.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.26, C:2008-12-21 14:04 M:2009-05-11 12:58] C:\Program Files\Rising\Rav\ravbintl.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 29, C:2008-12-21 14:05 M:2009-05-11 19:01] C:\Program Files\Rising\Rav\mruleui.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 10, C:2008-12-21 14:05 M:2008-12-21 14:02] C:\Program Files\Rising\Rav\MonTray.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.1.4, C:2008-12-21 14:05 M:2009-05-31 14:45] C:\Program Files\Rising\Rav\PngDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\RavITray.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 23, C:2008-12-21 14:05 M:2009-03-25 21:11] C:\Program Files\Rising\Rav\ScanPrxy.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.17, C:2008-12-21 14:04 M:2009-04-29 16:12] C:\Program Files\Rising\Rav\rsmginfo.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-21 14:05 M:2009-02-19 14:41] [PID: 580 / df] C:\Program Files\Rising\Rfw\RsTray.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.22, C:2008-12-27 22:19 M:2009-02-19 14:46] C:\Program Files\Rising\Rfw\ComServ.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.49, C:2008-12-27 22:19 M:2009-02-19 14:46] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\Program Files\Rising\Rfw\rslang.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 28, C:2008-12-27 22:19 M:2009-03-02 14:20] C:\Program Files\Rising\Rfw\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-27 22:19 M:2009-03-02 14:20] C:\Program Files\Rising\Rfw\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-12-27 22:19 M:2008-12-26 17:01] C:\Program Files\Rising\Rfw\rsxml.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-27 22:19 M:2008-12-26 17:01] C:\Program Files\Rising\Rfw\ProcComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-27 22:19 M:2008-12-27 21:57] C:\Program Files\Rising\Rfw\MonState.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7, C:2008-12-27 22:19 M:2008-12-26 17:04] C:\Program Files\Rising\Rfw\rfwrule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.25, C:2008-12-27 22:19 M:2009-05-11 17:43] C:\Program Files\Rising\Rfw\rsconf.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-27 22:19 M:2009-03-19 20:32] C:\Program Files\Rising\Rfw\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-27 22:19 M:2008-12-26 17:03] C:\Program Files\Rising\Rfw\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.20, C:2008-12-27 22:19 M:2009-06-02 16:00] C:\Program Files\Rising\Rfw\rspalvd.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.26, C:2008-12-27 22:19 M:2009-05-11 12:57] C:\Program Files\Rising\Rfw\rsguilib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 75, C:2008-12-27 22:19 M:2009-05-11 12:57] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\Program Files\Rising\Rfw\ravbintl.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 29, C:2008-12-27 22:19 M:2009-05-11 17:43] C:\Program Files\Rising\Rfw\rsnetsvr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14, C:2008-12-27 22:19 M:2009-03-16 16:06] C:\Program Files\Rising\Rfw\rsmginfo.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-27 22:19 M:2009-02-19 14:46] C:\Program Files\Rising\Rfw\rfwtray.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 1, 11, C:2008-12-27 22:19 M:2009-04-27 18:58] C:\Program Files\Rising\Rfw\PngDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-27 22:19 M:2008-12-26 17:02] C:\Program Files\Rising\Rfw\rfwlog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13, C:2008-12-27 22:19 M:2009-04-22 16:10] [PID: 592 / df] D:\软件备份\Rising\Rising\rstray.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.17, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\rsmginfo.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\RsXML.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\ComServ.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.31, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\rscommon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.1.1, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\pngdll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\runiep.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.43, C:2009-05-01 15:27 M:2009-05-06 22:15] D:\软件备份\Rising\Rising\NComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.11, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\Program Files\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-12-21 14:04 M:2008-12-21 14:01] D:\软件备份\Rising\Rising\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\pscan.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.67, C:2009-05-01 15:27 M:2009-05-19 15:57] D:\软件备份\Rising\Rising\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\NtLib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 3, 0, 0, 19, C:2009-05-01 15:27 M:2009-05-13 11:46] D:\软件备份\Rising\Rising\SecEx.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 3, 0, 0, 12, C:2009-05-01 15:27 M:2009-05-14 21:16] [PID: 644 / df] C:\WINDOWS\system32\ctfmon.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] [PID: 908 / df] D:\PPS\PPStream\ppsap.exe [(Verified)PPStream Inc, 1, 0, 11, 171, C:2009-05-23 16:03 M:2008-12-11 18:06] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] d:\PPS\PPStream\1.1.0.2663\Vodnet.dll [(Verified)PPStream Inc., 1, 0, 11, 218, C:2009-06-03 15:39 M:2009-05-11 11:19] d:\PPS\PPStream\1.1.0.2663\vodres.dll [(Verified)PPStream Inc., 1, 0, 11, 218, C:2009-06-03 15:39 M:2009-05-11 11:19] d:\PPS\PPStream\1.1.0.2663\fds.dll [(Verified)PPStream Inc., 1, 0, 0, 101, C:2009-06-03 15:39 M:2009-03-18 17:42] [PID: 1044 / SYSTEM] C:\Program Files\Rising\Rav\ScanFrm.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.11, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\Program Files\Rising\Rav\combase.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 11, C:2008-12-21 14:04 M:2008-12-21 14:03] C:\Program Files\Rising\Rav\moncomm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13, C:2008-12-21 14:04 M:2009-05-18 16:13] C:\Program Files\Rising\Rav\scansrvp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.13, C:2008-12-21 14:04 M:2009-05-31 14:45] C:\Program Files\Rising\Rav\proccomm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 46, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\ScanSrv.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.10, C:2008-12-21 14:04 M:2009-04-13 21:48] C:\Program Files\Rising\Rav\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-21 14:04 M:2009-03-02 14:35] C:\Program Files\Rising\Rav\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\ScanRavT.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.26, C:2008-12-21 14:04 M:2009-05-31 14:45] C:\Program Files\Rising\Rav\ScanBT.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.47, C:2008-12-21 14:04 M:2009-05-31 14:45] C:\Program Files\Rising\Rav\ScanStub.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.9, C:2008-12-21 14:04 M:2009-04-13 21:48] C:\Program Files\Rising\Rav\RsLog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2008-12-21 14:04 M:2009-05-31 14:45] C:\Program Files\Rising\Rav\ScanAdd.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.19, C:2008-12-21 14:04 M:2009-05-31 14:45] C:\Program Files\Rising\Rav\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.1, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.20, C:2008-12-21 14:04 M:2009-06-02 15:59] C:\Program Files\Rising\Rav\Scanner.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.38, C:2008-12-21 14:04 M:2009-04-29 16:12] C:\Program Files\Rising\Rav\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-21 14:04 M:2009-02-19 18:04] C:\Program Files\Rising\Rav\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-12-21 14:04 M:2009-05-07 17:02] C:\Program Files\Rising\Rav\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6, C:2008-12-21 14:04 M:2009-05-22 10:21] C:\Program Files\Rising\Rav\mvengine.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\posttrt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 2, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\ffr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-21 14:04 M:2009-02-19 14:41] C:\Program Files\Rising\Rav\nvfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 3, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\scanexec.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-12-21 14:04 M:2009-02-19 14:41] C:\Program Files\Rising\Rav\unexe.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\scanex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 42, C:2008-12-21 14:04 M:2009-06-05 19:07] C:\Program Files\Rising\Rav\pearc.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\scanpe.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14, C:2008-12-21 14:04 M:2009-05-22 10:21] C:\Program Files\Rising\Rav\ur000.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 13, C:2008-12-21 14:04 M:2009-04-29 16:11] C:\Program Files\Rising\Rav\urutils.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 4, C:2008-12-21 14:04 M:2008-12-21 14:01] C:\Program Files\Rising\Rav\methodex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2009-06-03 16:44 M:2009-06-03 16:43] C:\Program Files\Rising\Rav\pecompd.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2009-06-03 16:44 M:2009-06-03 16:43] C:\Program Files\Rising\Rav\heurex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2009-06-03 16:44 M:2009-06-03 16:43] C:\Program Files\Rising\Rav\revm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 5, C:2008-12-21 14:04 M:2009-05-14 21:15] C:\Program Files\Rising\Rav\ur023.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 6, C:2008-12-21 14:04 M:2009-04-29 16:11] C:\Program Files\Rising\Rav\ur001.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 7, C:2008-12-21 14:04 M:2009-03-03 17:42] C:\Program Files\Rising\Rav\extfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 14, C:2008-12-21 14:04 M:2009-05-19 15:57] C:\Program Files\Rising\Rav\ur025.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 1, C:2008-12-21 14:04 M:2008-12-21 14:01] [PID: 1100 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416), C:2009-03-02 20:26 M:2009-03-02 20:26] [PID: 2132 / df] D:\QQ2009\Bin\QQ.exe [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:17 M:2009-05-23 20:18] D:\QQ2009\Bin\Common.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.DLL [Microsoft Corporation, 8.00.50727.762, C:2008-09-29 13:53 M:2008-09-29 13:53] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll [Microsoft Corporation, 8.00.50727.762, C:2008-09-29 13:53 M:2008-09-29 13:53] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll [Microsoft Corporation, 8.00.50727.762, C:2008-09-29 13:53 M:2008-09-29 13:53] D:\QQ2009\Bin\KernelUtil.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\GF.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll [Microsoft Corporation, 5.1.3102.5581 (xpsp_sp3_qfe.080415-1416), C:2009-03-02 20:26 M:2009-03-02 20:26] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\QQ2009\Bin\AppUtil.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\MainFrame.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\TaskTray.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\TXPFProxy.dll [(Verified)N/A, C:2009-05-23 20:18 M:2009-05-23 20:18] C:\WINDOWS\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159, C:2004-08-04 16:52 M:2008-05-19 06:33] D:\QQ2009\Bin\AppMisc.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\ChatFrame.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\ConfigCenter.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\CustomFace.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\IM.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\KernelMisc.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\LongCnn.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\ContactInfoFrame.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\MsgMgr.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\SkinMgr.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\QInterLive.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\AppCtrl.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\SystemMsg.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.PaiPai\Bin\PaiPai.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.AudioVideo\Bin\AudioVideo.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.MMOG\Bin\MMOG.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.Soso\Bin\Soso.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.Qzone\Bin\Qzone.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.Weather\Bin\Weather.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.SoBar\Bin\SoBar.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.PaiPaiGift\Bin\PaiPaiGift.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.QQLive\Bin\QQLive.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.QQMusic\Bin\QQMusic.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll [(Verified)Tencent, 1.0.1.22, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.taotao\Bin\Taotao.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\BasicCtrlDll.dll [(Verified)TENCENT, 8,0,773,1801, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\Com.Tencent.QQShow\Bin\FlashAvatarDll.dll [(Verified)Tencent, 1.25.1.25, C:2009-05-23 20:18 M:2009-05-23 20:18] C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx [(Verified)Adobe Systems, Inc., 10,0,22,87, C:2009-02-03 10:07 M:2009-02-03 10:07] C:\WINDOWS\system32\msdmo.dll [(Verified)N/A, C:2004-08-04 16:52 M:2004-08-04 16:52] D:\QQ2009\Plugin\com.tencent.advertisement\Bin\Advertisement.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.snsapp\Bin\SNSApp.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.NetBar\Bin\NetBar.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.wireless\Bin\Wireless.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.qqshow\Bin\QQShow.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.wenwen\Bin\WenWen.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.qqgame\Bin\QQGame.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.mail\Bin\Mail.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.crm\Bin\CRM.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.paycenter\Bin\PayCenter.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.qqring\Bin\QQRing.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.qqvip\Bin\QQVip.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\InformationBox.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\GroupApp.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Bin\vqqsdl.dll [(Verified)Tencent, 5, 0, 3, 24, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.gamelife\Bin\GameLife.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.qbar\Bin\QBar.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.qqpet\Bin\QQPet.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] C:\Program Files\Design Science\MathPlayer\MathMLMimer.dll [Design Science, Inc., 2007.05.09.00, C:2008-10-24 20:59 M:2007-05-09 09:41] D:\QQ2009\Plugin\com.tencent.memo\Bin\Memo.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] D:\QQ2009\Plugin\com.tencent.today\Bin\Today.dll [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] C:\Program Files\Microsoft Silverlight\2.0.31005.0\npctrl.dll [(Verified) Microsoft Corporation, 2.0.31005.0, C:2008-10-04 21:48 M:2008-10-04 21:48] D:\QQ2009\Bin\AddrSearch.dll [(Verified)Tencent, 2, 3, 10, 12, C:2009-05-23 20:18 M:2009-05-23 20:18] C:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 4.1.3.2396, C:2009-04-20 14:40 M:2009-04-20 14:40] C:\WINDOWS\system32\RavExt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-02-11 23:00 M:2008-12-21 14:01] D:\软件备份\奇虎360\360safe\safemon\safemon.dll [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] [PID: 2836 / LOCAL SERVICE] C:\WINDOWS\System32\alg.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] C:\WINDOWS\System32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] [PID: 3164 / df] D:\QQ2009\Bin\TXPlatform.exe [(Verified)Tencent, 1, 25, 660, 0, C:2009-05-23 20:18 M:2009-05-23 20:18] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\奇虎360\360safe\safemon\safemon.dll [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] D:\QQ2009\Bin\TXPFProxy.dll [(Verified)N/A, C:2009-05-23 20:18 M:2009-05-23 20:18] C:\WINDOWS\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159, C:2004-08-04 16:52 M:2008-05-19 06:33] [PID: 3264 / df] C:\DOCUME~1\df\LOCALS~1\Temp\Rar$EX00.938\QQ伴侣.exe [1.05, C:2009-06-08 13:23 M:2009-05-31 22:21] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\WINDOWS\system32\vb6chs.dll [Microsoft Corporation, 6.00.8988, C:2000-10-02 00:00 M:2000-10-02 00:00] C:\WINDOWS\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159, C:2004-08-04 16:52 M:2008-05-19 06:33] D:\软件备份\奇虎360\360safe\safemon\safemon.dll [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] [PID: 2096 / df] C:\WINDOWS\system32\conime.exe [(Verified)Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158), C:2004-08-04 16:52 M:2004-08-04 16:52] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] [PID: 1668 / df] D:\软件备份\qvod\QvodPlayer\QvodTerminal.exe [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 59, C:2008-05-26 19:02 M:2008-05-26 19:02] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] [PID: 1040 / df] D:\PPS\PPStream\PPStream.exe [(Verified)PPStream Inc., 2, 6, 86, 8800, C:2009-06-01 09:37 M:2009-06-01 09:37] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] d:\PPS\PPStream\110~1.266\POWERP~1.DLL [(Verified)PPStream Inc., 2,3,468,9468, C:2009-06-03 15:39 M:2009-03-23 18:38] d:\PPS\PPStream\110~1.266\MSVCP60.dll [Microsoft Corporation, 6.02.3104.0, C:2009-06-03 15:39 M:2008-04-13 19:13] d:\PPS\PPStream\110~1.266\PSNetwork.dll [(Verified)PPStream Inc., 1, 1, 0, 2635, C:2009-06-03 15:39 M:2009-02-12 14:19] d:\PPS\PPStream\1.1.0.2663\fds.dll [(Verified)PPStream Inc., 1, 0, 0, 101, C:2009-06-03 15:39 M:2009-03-18 17:42] d:\PPS\PPStream\1.1.0.2663\ppsimage.dll [(Verified)PPStream Inc., 2, 0, 0, 1001, C:2009-06-03 15:39 M:2009-06-01 09:36] d:\PPS\PPStream\110~1.266\MList.ocx [(Verified)PPStream Inc., 2, 0, 0, 1056, C:2009-06-03 15:39 M:2008-12-04 17:55] d:\PPS\PPStream\110~1.266\POWERL~1.OCX [(Verified)PPStream Inc., 5, 0, 0, 1004, C:2009-06-03 15:39 M:2009-06-01 09:37] d:\PPS\PPStream\1.1.0.2663\psclg.dll [(Verified)PPStream Inc., 1.0.13.142, C:2009-06-03 15:39 M:2009-05-18 11:22] d:\PPS\PPStream\1.1.0.2663\Vodnet.dll [(Verified)PPStream Inc., 1, 0, 11, 218, C:2009-06-03 15:39 M:2009-05-11 11:19] d:\PPS\PPStream\1.1.0.2663\vodres.dll [(Verified)PPStream Inc., 1, 0, 11, 218, C:2009-06-03 15:39 M:2009-05-11 11:19] d:\PPS\PPStream\1.1.0.2663\ppssg.dll [(Verified)PPStream Inc., 1, 0, 11, 192, C:2009-06-03 15:39 M:2009-02-23 11:55] d:\PPS\PPStream\1.1.0.2663\pp2play.dll [(Verified)PPStream Inc., 1, 1, 10, 3000, C:2009-06-03 15:39 M:2009-03-06 15:33] C:\WINDOWS\system32\msdmo.dll [(Verified)N/A, C:2004-08-04 16:52 M:2004-08-04 16:52] C:\Program Files\Common Files\QvodPlayer\Codecs\ac3filter.ax [Copyright c 2002-2004 by Alexander Vigovsky, 1.01a, C:2006-10-29 02:11 M:2006-10-29 02:11] C:\Program Files\Common Files\QvodPlayer\Codecs\ffdshow.ax [Copyright ? 2002-2005 Milan èutka, 1.0.5.1925, C:2008-04-21 15:00 M:2008-04-21 15:00] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2008-02-11 22:57 M:2008-02-11 22:55] C:\Program Files\Common Files\QvodPlayer\Codecs\VSFilter.dll [Gabest, 1, 0, 1, 4, C:2007-06-07 17:10 M:2007-06-07 17:10] C:\Program Files\Common Files\QvodPlayer\Codecs\TTL2DecodeFilter.dll [N/A, C:2002-12-27 10:18 M:2002-12-27 10:18] [PID: 3740 / df] D:\软件备份\Rising\Rising\ras.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.7, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\KakaMgr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.29, C:2009-05-01 15:27 M:2009-05-13 11:46] D:\软件备份\Rising\Rising\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\Program Files\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-12-21 14:04 M:2008-12-21 14:01] D:\软件备份\Rising\Rising\RsCommX2.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\dbmgr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.4, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\RSXML.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 2, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\pweb.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.21, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\pscan.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.67, C:2009-05-01 15:27 M:2009-05-19 15:57] D:\软件备份\Rising\Rising\NComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.11, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\pset.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.12, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\pdefend.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.14, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\ptools.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.16, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\psysinfo.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.57, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\WINDOWS\system32\RavExt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21, 0, 0, 12, C:2008-02-11 23:00 M:2008-12-21 14:01] D:\软件备份\Rising\Rising\PngDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx [(Verified)Adobe Systems, Inc., 10,0,22,87, C:2009-02-03 10:07 M:2009-02-03 10:07] D:\软件备份\Rising\Rising\NtLib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 3, 0, 0, 19, C:2009-05-01 15:27 M:2009-05-13 11:46] D:\软件备份\Rising\Rising\SecEx.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 3, 0, 0, 12, C:2009-05-01 15:27 M:2009-05-14 21:16] D:\软件备份\Rising\Rising\SecScan.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 3, 0, 0, 21, C:2009-05-01 15:27 M:2009-05-14 21:16] D:\软件备份\Rising\Rising\kengine.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 16, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\posttrt.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 24, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\kscanex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 2, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\engine.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 19, 0, 0, 26, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\rsdialog.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 6, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\奇虎360\360safe\safemon\safemon.dll [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] [PID: 748 / df] D:\软件备份\Rising\Rising\knownsvr.exe [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.14, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\NComm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6.0.0.11, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] [PID: 2460 / df] D:\软件备份\奇虎360\360safe\safemon\360Tray.exe [(Verified)360安全中心, 5, 0, 0, 1019, C:2009-05-01 00:26 M:2009-05-01 00:26] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\奇虎360\360safe\safemon\360procmon.dll [(Verified)360.CN, 1, 0, 0, 1010, C:2009-04-30 20:51 M:2009-04-30 20:51] D:\软件备份\奇虎360\360safe\safemon\safeboxapi.dll [(Verified)360安全中心, 2, 3, 0, 1001, C:2008-09-28 02:42 M:2008-09-28 02:42] D:\软件备份\奇虎360\360safe\safemon\360compro.dll [(Verified)360安全中心, 1, 0, 0, 1009, C:2009-04-23 20:45 M:2009-04-23 20:45] D:\软件备份\奇虎360\360safe\safemon\safemon.dll [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] D:\软件备份\奇虎360\360safe\safemon\urlproc.dll [(Verified)360.CN, 1, 0, 0, 1005, C:2009-04-22 18:50 M:2009-04-22 18:50] D:\软件备份\奇虎360\360safe\safemon\SafeKrnl.dll [(Verified)奇虎网, 4, 3, 0, 1006, C:2009-04-08 16:15 M:2009-04-08 16:15] D:\软件备份\奇虎360\360safe\AntiAdwa.dll [(Verified)360Safe.com, 4, 2, 0, 1002, C:2008-10-10 18:34 M:2008-10-10 18:34] D:\软件备份\奇虎360\360safe\safemon\360webpro.dll [(Verified)360.CN, 1, 0, 0, 1007, C:2009-02-27 20:07 M:2009-02-23 17:52] D:\软件备份\奇虎360\360safe\live.dll [(Verified)360.cn, 1, 0, 2, 1004, C:2009-04-30 14:35 M:2009-04-30 14:35] D:\软件备份\奇虎360\360safe\pdown.dll [(Verified)360Safe.com, 1, 1, 0, 0, C:2009-04-24 13:41 M:2009-04-24 13:41] D:\软件备份\奇虎360\360safe\LiveUpd360.dll [(Verified)360Safe.com, 1, 1, 0, 0, C:2009-04-24 13:41 M:2009-04-24 13:41] D:\软件备份\奇虎360\360safe\360net.dll [(Verified)奇虎网, 1, 1, 1, 1004, C:2008-11-10 22:10 M:2009-03-25 14:29] [PID: 1052 / df] D:\软件备份\奇虎360\360safe\LiveUpdate360.exe [(Verified)360Safe.com, 1, 1, 0, 1, C:2009-04-30 16:53 M:2009-04-30 16:53] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\奇虎360\360safe\safemon\safemon.dll [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] D:\软件备份\奇虎360\360safe\LiveUpd360.dll [(Verified)360Safe.com, 1, 1, 0, 0, C:2009-04-24 13:41 M:2009-04-24 13:41] D:\软件备份\奇虎360\360safe\360net.dll [(Verified)奇虎网, 1, 1, 1, 1004, C:2008-11-10 22:10 M:2009-03-25 14:29] [PID: 3772 / df] D:\软件备份\清理助手\arswp\ArSwp.exe [(Verified)ArSwp.com, 2, 8, 2, 1115, C:2008-11-15 11:58 M:2008-11-15 11:58] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\奇虎360\360safe\safemon\safemon.dll [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] C:\WINDOWS\system32\AcSignIcon.dll [(Verified)Autodesk, 16.0.0.86, C:2003-02-14 01:31 M:2003-02-14 01:31] D:\软件备份\清理助手\arswp\plugin\ArFix.dll [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2007-11-28 15:19 M:2007-11-28 15:19] C:\Program Files\Design Science\MathPlayer\MathMLMimer.dll [Design Science, Inc., 2007.05.09.00, C:2008-10-24 20:59 M:2007-05-09 09:41] [PID: 4080 / df] C:\Program Files\Internet Explorer\IEXPLORE.EXE [(Verified)Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158), C:2007-07-17 14:10 M:2004-08-04 16:52] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\comx3.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.37, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\Syslay.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.6, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\奇虎360\360safe\safemon\safemon.dll [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] C:\WINDOWS\system32\AcSignIcon.dll [(Verified)Autodesk, 16.0.0.86, C:2003-02-14 01:31 M:2003-02-14 01:31] C:\WINDOWS\system32\UrlFilter.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\Rising\Rising\UrlRule.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1.0.0.15, C:2009-05-01 15:27 M:2009-05-01 15:27] D:\软件备份\奇虎360\360safe\safemon\urlproc.dll [(Verified)360.CN, 1, 0, 0, 1005, C:2009-04-22 18:50 M:2009-04-22 18:50] C:\WINDOWS\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159, C:2004-08-04 16:52 M:2008-05-19 06:33] [PID: 2948 / df] C:\Documents and Settings\df\桌面\QQ伴侣.exe [1.05, C:2009-06-08 13:26 M:2009-05-31 22:21] C:\WINDOWS\system32\kmon.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2009-05-01 15:27 M:2009-05-01 15:27] C:\WINDOWS\system32\vb6chs.dll [Microsoft Corporation, 6.00.8988, C:2000-10-02 00:00 M:2000-10-02 00:00] D:\软件备份\奇虎360\360safe\safemon\safemon.dll [(Verified)360.CN, 5, 0, 0, 1011, C:2009-04-22 18:50 M:2009-06-05 16:03] C:\WINDOWS\system32\msi.dll [Microsoft Corporation, 4.5.6001.22159, C:2004-08-04 16:52 M:2008-05-19 06:33] C:\WINDOWS\system32\VSListview.ocx [Mndsoft Studio, 0.00.0009, C:2009-06-08 13:23 M:2009-06-08 13:23] C:\WINDOWS\system32\WINSKCHS.DLL [Microsoft Corporation, 6.00.8163, C:1998-07-07 00:00 M:1998-07-07 00:00] C:\WINDOWS\system32\msjetoledb40.dll [(Verified)N/A, C:2004-07-18 03:34 M:2008-03-25 12:50] ======================================== 文件关联 ======================================== AutoRun.INF ======================================== Winsock提供者 ======================================== HOSTS 127.0.0.1 localhost [/CODE]