昨天下了个会声会影11,觉得不好用就卸了,今天开机发现瑞星防火墙不能用了,所有的从网上下载的软件和工具基本都不能用了（除360和瑞星），全部显示缺少快捷方式（就像把游戏卸载后点那个空快捷方式的时候显示的一样。QQ、暴风影音、迅雷和电驴全是这样)，瑞星和360都没事，用瑞星、WDS清理助手和360查了半天也查不出来是怎么回事，全部显示正常，哪位高手分析一下是怎么回事？先谢谢了


补充：开机偶尔会有磁盘检查，开机速度变慢好多，应该是中毒了，可为什么一点都查不出来呢？

这是我的诊断报告:
这是我的全面诊断报告
该诊断报告由360安全卫士提供 http://www.360.cn
诊断时间: 2008-12-10  09:22:46
诊断平台: Microsoft Windows XP  Service Pack 3
IE版本: Internet Explorer V7.0.5730.13 Build:75730
计算机物理内存:511.29MB - 当前可用内存:128.27MB

100 - 未知 - Process: RavMonD.exe [Rising Realtime Moniter] - E:\RISING\RAV\ravmond.exe -step
100 - 未知 - Process: RavStub.exe [Rising RavStub] - E:\RISING\RAV\RavStub.exe /RAVMOND=1023
100 - 未知 - Process: DevSvc.exe [Capture Device Service] - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
100 - 未知 - Process: liveupdate.exe [liveupdate] - C:\Program Files\Lenovo\LiveUpdate\liveupdate.exe
100 - 未知 - Process: RavMon.exe [Rising realtime monitor shell] - E:\RISING\RAV\RavMon.exe -SYSTEM
100 - 未知 - Process: RavTask.exe [RavTimer] - E:\Rising\Rav\RavTask.exe
100 - 未知 - Process: RsAgent.exe [RsAgent Application] - E:\Rising\Rav\RsAgent.exe
100 - 未知 - Process: RavCopy.exe [RavCopy] - E:\Rising\Rav\CopyRun\RavCopy.exe
100 - 未知 - Process: ArSwp.exe [ArSwp] - D:\网络资源工具2\arswp\ArSwp.exe
R0 - 未知 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page=http://www.ali213.net
R0 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://www.hao123.com/indexk.htm
O2 - 未知 - BHO: (Adobe PDF Link Helper) - [Adobe PDF Helper for Internet Explorer] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - 未知 - BHO: (BOC ProcessProtect Class) - [ProcessProtection module for Bank of China] - {776B71E2-B4CC-4C94-BC7C-09103AA690B6} - ProcessProtection.dll
O4 - 未知 - HKLM\..\Run: [Adobe Reader Speed Launcher] [Adobe Acrobat SpeedLauncher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - 未知 - HKLM\..\RunOnce: [KKDelay] [RunOnce Application] C:\Program Files\Rising\AntiSpyware\RunOnce.exe
O8 - 未知 - Extra context menu item: 完美安全助手 - res://C:\WINDOWS\system32\PerfectToolbar.dll/MENUSEARCH.HTM
O8 - 未知 - Extra context menu item: 添加到QQ表情 - D:\网络资源工具\AddEmotion.htm
O9 - 未知 - Extra button: 启动迅雷5(HKLM) - D:\网络资源工具\XL````\Thunder.exe
O9 - 未知 - Extra button: 金山网页防挂马模块设置(HKLM) - D:\网络资源工具\Kingsoft Internet Security 2008\Antispy\IEBuddyExt.DLL
O9 - 未知 - Extra button: 联想(HKLM) - http://www.lenovo.com
O9 - 未知 - Extra button: 信息检索(HKLM) - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - 未知 - Extra button: @xpsp3res.dll,-20001(HKLM) - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O14 - 未知 - IERESET.INF: START_PAGE_URL=http://www.lenovo.com
O15 - 未知 - Trusted Zone: https://ebs.boc.cn
O16 - 未知 - DPF: {05F5F404-7C24-4B39-B5CC-340CEDEB9C0D} (PhotoDrawEx) - http://imgcache.qq.com/qzone/client/photo/pages/QQPhotoDrawEx.cab
O16 - 未知 - DPF: {52FF336D-A05D-4A14-A3A1-7B6B4B427F88} (UploadControl Control) - http://st.blog.163.com/bin/UploadControl.cab
O16 - 未知 - DPF: {C661F36D-DF85-4EF4-83C7-E107B83D04B1} (WebActivater Control) - http://dl_dir.qq.com/3dshow/3DShowVM.cab
O20 - 未知 - AppInit DLLs: kmon*dll
O22 - 未知 - Filename Extention: .hlp - winhlp32.exe %1
O23 - 未知 - Service: Capture Device Service [Manages device arrival and removal event. This service is provided by InterVideo.] - "C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe" - (running)
O23 - 未知 - Service: ccosm [Contrl Center of Storm Media] - D:\网络资源工具\stormliv.exe /asservice - (not running)
O23 - 未知 - Service: Lenovo Upgrade Service.bis.release [为联想软件提供升级服务] - C:\Program Files\Lenovo\LiveUpdate\liveupdate.exe - (running)
O23 - 未知 - Service: PnpWMmng [Windows驱动即插即用管理器] - D:\网络资~1\完美卸~1\PnpWMmng.exe - (not running)
O23 - 未知 - Service: RfwProxySrv [Rising Personal Proxy Service] - D:\网络资源工具\Rising\Rfw\rfwProxy.exe - (not running)
O23 - 未知 - Service: RfwService [Rising Personal Firewall Service] - D:\网络资源工具\Rising\Rfw\rfwsrv.exe - (not running)
O23 - 未知 - Service: RsCCenter [Rising Process Communication Center] - "E:\Rising\Rav\CCenter.exe" - (running)
O23 - 未知 - Service: RsRavMon [Rising RealTime Monitor] - "E:\RISING\RAV\Ravmond.exe" - (not running)
O28 - 未知 - IELINK: C:\DOCUME~1\LIXIAO~1.LEN\「开始~1\程序\附件\系统工具\INTERN~2.LNK -  -extoff

=======================================

100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量，ms-dos驱动名称类似lpt1以及com，调用win32壳子系统和运行在windows登陆过程。] - C:\WINDOWS\System32\smss.exe
100 - 安全 - Process: csrss.exe [客户端服务子系统，用以控制windows图形相关子系统。] - C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base
100 - 安全 - Process: winlogon.exe [windows nt用户登陆程序。] - C:\WINDOWS\system32\winlogon.exe
100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:\WINDOWS\system32\services.exe
100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:\WINDOWS\system32\lsass.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k DcomLaunch
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k rpcss
100 - 安全 - Process: CCenter.exe [瑞星杀毒软件控制台相关程序。] - E:\Rising\Rav\CCenter.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k netsvcs
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k NetworkService
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k LocalService
100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell，包括开始菜单、任务栏，桌面和文件管理。] - C:\WINDOWS\Explorer.EXE
100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序，用以打印机就绪。] - C:\WINDOWS\system32\spoolsv.exe
100 - 安全 - Process: nvsvc32.exe [nvidia driver helper service在nvida显卡驱动中被安装。] - C:\WINDOWS\system32\nvsvc32.exe
100 - 安全 - Process: alg.exe [这是一个应用层网关服务用于网络共享。] - C:\WINDOWS\System32\alg.exe
100 - 安全 - Process: 360tray.exe [360安全卫士实时保护模块] - D:\网络资源工具\360safe\safemon\360Tray.exe
100 - 安全 - Process: RSTray.exe [卡卡上网助手6相关程序。] - C:\Program Files\Rising\AntiSpyware\rstray.exe
100 - 安全 - Process: ctfmon.exe [office xp输入法图标。] - C:\WINDOWS\system32\ctfmon.exe
100 - 安全 - Process: safeboxtray.exe [360安全卫士保险箱相关程序。] - C:\Program Files\360Safebox\safeboxtray.exe
100 - 安全 - Process: agentsvr.exe [是一个ActiveX插件，用于多媒体程序。] - C:\WINDOWS\msagent\AgentSvr.exe -Embedding
100 - 安全 - Process: iexplore.exe [microsoft internet explorer浏览器用于浏览网页。] - C:\Program Files\Internet Explorer\IEXPLORE.EXE
100 - 安全 - Process: iexplore.exe [microsoft internet explorer浏览器用于浏览网页。] - C:\Program Files\Internet Explorer\iexplore.exe
100 - 安全 - Process: 360Safe.exe [360安全卫士] - D:\网络资源工具\360safe\360Safe.exe
R0 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page=http://go.microsoft.com/fwlink/?LinkId=54896
R0 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL=http://go.microsoft.com/fwlink/?LinkId=69157
R0 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL=http://go.microsoft.com/fwlink/?LinkId=54896
R1 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
O1 - 安全 - Host: 127.0.0.1 yu.8s7.net
O1 - 安全 - Host: 127.0.0.1 1.jopanqc.com
O1 - 安全 - Host: 127.0.0.1 2.joppnqq.com
O1 - 安全 - Host: 127.0.0.1 wg.47255.com
O1 - 安全 - Host: 127.0.0.1 1.joppnqq.com
O1 - 安全 - Host: 127.0.0.1 xxx.m111.biz
O1 - 安全 - Host: 127.0.0.1 1.jopenqc.com
O1 - 安全 - Host: 127.0.0.1 1.jopenkk.com
O1 - 安全 - Host: 127.0.0.1 xxx.vh7.biz
O1 - 安全 - Host: 127.0.0.1 xxx.j41m.com
O1 - 安全 - Host: 127.0.0.1 3.joppnqq.com
O1 - 安全 - Host: 127.0.0.1 d.93se.com
O1 - 安全 - Host: 127.0.0.1 www.868wg.com
O1 - 安全 - Host: 127.0.0.1 xxx.mmma.biz
O1 - 安全 - Host: 127.0.0.1 ilove.com
O1 - 安全 - Host: 127.0.0.1 tp.shpzhan.cn
O1 - 安全 - Host: 127.0.0.1 www.tomwg.com
O1 - 安全 - Host: 127.0.0.1 www.cike007.cn
O1 - 安全 - Host: 127.0.0.1 www.22aaa.com
O1 - 安全 - Host: 127.0.0.1 xx.exiao01.com
O1 - 安全 - Host: 127.0.0.1 www.exiao01.com
O1 - 安全 - Host: 127.0.0.1 www.exiao01.com
O1 - 安全 - Host: 127.0.0.1 new.749571.com
O1 - 安全 - Host: 127.0.0.1 xtx.kv8.info
O1 - 安全 - Host: 127.0.0.1 cao.kv8.info
O1 - 安全 - Host: 127.0.0.1 1.jopmmqq.com
O1 - 安全 - Host: 127.0.0.1 171817.171817.com
O1 - 安全 - Host: 127.0.0.1 d2.llsging.com
O1 - 安全 - Host: 127.0.0.1 down.malasc.cn
O1 - 安全 - Host: 127.0.0.1 llboss.com
O1 - 安全 - Host: 127.0.0.1 nx.51ylb.cn
O1 - 安全 - Host: 127.0.0.1 my.531jx.cn
O1 - 安全 - Host: 127.0.0.1 qqq.dzydhx.com
O1 - 安全 - Host: 127.0.0.1 qqq.hao1658.com
O1 - 安全 - Host: 127.0.0.1 www.333292.com
O1 - 安全 - Host: 127.0.0.1 down.18dd.net
O1 - 安全 - Host: 127.0.0.1 up.22x44.com
O1 - 安全 - Host: 127.0.0.1 aaa.faba01.com
O1 - 安全 - Host: 127.0.0.1 bad.tqdlt.cn
O1 - 安全 - Host: 127.0.0.1 1.chsipo.com
O1 - 安全 - Host: 127.0.0.1 c3.aishangai.net
O1 - 安全 - Host: 127.0.0.1 c2.aishangai.net
O1 - 安全 - Host: 127.0.0.1 xxx.188dm.com
O1 - 安全 - Host: 127.0.0.1 x2.1a2b3c1.com
O1 - 安全 - Host: 127.0.0.1 d1.163500.net
O1 - 安全 - Host: 127.0.0.1 down.google-serv.cn
O1 - 安全 - Host: 127.0.0.1 gxgxy.net
O1 - 安全 - Host: 127.0.0.1 c0mo.com
O2 - 安全 - BHO: (ThunderAtOnce Class) - [迅雷浏览器高级特性支持模块。] - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - D:\网络资源工具\XL````\ComDlls\TDAtOnce_Now.dll
O2 - 安全 - BHO: (Thunder Browser Helper) - [迅雷附带下载监视器相关文件。] - {889D2FEB-5411-4565-8998-1DD2C5261283} - D:\网络资源工具\XL````\ComDlls\xunleiBHO_Now.dll
O2 - 安全 - BHO: (卡卡上网安全助手) - [卡卡上网安全助手，网络辅助工具。] - {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} - C:\WINDOWS\system32\urlFilter.dll
O4 - 安全 - HKLM\..\Run: [IMJPMIG8.1] [微软Microsoft输入法编辑器程序。] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - 安全 - HKLM\..\Run: [PHIME2002ASync] [输入法软件相关程序。] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - 安全 - HKLM\..\Run: [PHIME2002A] [输入法软件相关程序。] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - 安全 - HKLM\..\Run: [NvCplDaemon] [是NVIDIA显示卡相关动态链接库文件。] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - 安全 - HKLM\..\Run: [360Safebox] [360安全卫士保险箱相关程序。] "C:\Program Files\360Safebox\safeboxTray.exe" /r
O4 - 安全 - HKLM\..\Run: [360Safetray] [360safe实时保护功能模块。] D:\网络资源工具\360safe\safemon\360Tray.exe /start
O4 - 安全 - HKLM\..\Run: [IMSCMig] [微软拼音输入法安装工具。  ] C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload
O4 - 安全 - HKLM\..\Run: [RavTask] [瑞星杀毒软件的任务计划程序。] "E:\Rising\Rav\RavTask.exe" -system
O4 - 安全 - HKLM\..\Run: [runeip] [卡卡上网安全助手相关程序。] "C:\Program Files\Rising\AntiSpyware\rstray.exe" /startup
O4 - 安全 - HKCU\..\Run: [ctfmon.exe] [office xp输入法图标。] C:\WINDOWS\system32\ctfmon.exe
O8 - 安全 - Extra context menu item: 使用迅雷下载 - D:\网络资源工具\XL````\Program\GetUrl.htm
O8 - 安全 - Extra context menu item: 使用迅雷下载全部链接 - D:\网络资源工具\XL````\Program\GetAllUrl.htm
O8 - 安全 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - 安全 - Extra button: Windows Messenger(HKLM) - C:\Program Files\Messenger\msmsgs.exe
O11 - 安全 - Options Group: International*
O16 - 安全 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Flash播放器) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - 安全 - Protocol: OFFICE 相关 - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
O18 - 安全 - Protocol: OFFICE 相关 - {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
O23 - 安全 - Service: NVSvc [是NVIDIA显示卡相关程序。] - C:\WINDOWS\system32\nvsvc32.exe - (running)
O25 - 安全 - ABOUT: DesktopItemNavigationFailure - res://ieframe.dll/navcancl.htm
O25 - 安全 - ABOUT: NavigationCanceled - res://ieframe.dll/navcancl.htm
O25 - 安全 - ABOUT: NavigationFailure - res://ieframe.dll/navcancl.htm
O25 - 安全 - ABOUT: OfflineInformation - res://ieframe.dll/offcancl.htm
O25 - 安全 - ABOUT: PostNotCached - res://ieframe.dll/repost.htm

=======================================

O31 - 未知 - SEApproved: {42071714-76d4-11d1-8b24-00a0c9068ff3} - deskpan.dll -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID：Shell extensions for file compression -  -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID：加密上下文菜单 -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {0DF44EAA-FF21-4412-828E-260A8728E7F1} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {00E7B358-F65B-4dcf-83DF-CD026B94BFD4} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {7A9D77BD-5403-11d2-8785-2E0420524153} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {1CDB2949-8F65-4355-8456-263E7C208A5D} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11060 - 466944 - 4450bbaf1b77f2b87ab9c5ee4e69532c
O31 - 未知 - SEApproved: {1E9B04FB-F9E5-4718-997B-B8DA88302A47} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11060 - 466944 - 4450bbaf1b77f2b87ab9c5ee4e69532c
O31 - 未知 - SEApproved: {1E9B04FB-F9E5-4718-997B-B8DA88302A48} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11060 - 466944 - 4450bbaf1b77f2b87ab9c5ee4e69532c
O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 129024 - 47b2797941b4c6f9c233b09afa5f6298
O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 129024 - 47b2797941b4c6f9c233b09afa5f6298
O31 - 未知 - BootExecute:  bsmain -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - sv1_0.dll -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - channel.dll -  -  -  - 0 -

=======================================

O40 - Explorer.EXE - Microsoft Corporation - C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll - Microsoft? C Runtime Library - e4fece18310e23b1d8fee993e35e7a6f
O40 - Explorer.EXE - NVIDIA Corporation - C:\WINDOWS\system32\NVRSZHC.DLL - NVIDIA Simplified Chinese language resource library - a49c2d1c05ec8a9dc547dfac821dd1fc
O40 - Explorer.EXE -  - C:\WINDOWS\system32\nvshell.dll -  - 4450bbaf1b77f2b87ab9c5ee4e69532c

=======================================

O41 - PnpWmkDrv - 完美卸载 Driver - C:\WINDOWS\system32\drivers\PnpWmkDrv.sys - (running) - 完美卸载 Driver - Windows (R) 2000 DDK provider - 5b3e48cf6941759c6391dd79b83dcbfe
O41 - Protector - Protector - C:\WINDOWS\system32\drivers\Protector.sys - (running) -  -  - 3fc37041f6de8265f91b3de2cdedf622
O41 - ProtectorA - ProtectorA - C:\WINDOWS\system32\drivers\ProtectorA.sys - (running) -  -  - 73e02417eccee528729bf3924baea02b
O41 - TITAN - Rockey Device Driver - C:\WINDOWS\system32\drivers\TITAN.SYS - (running) - Rockey Device Driver - FeiTian Tech Co.,Ltd - ec813337515a7b48183a22cd4dc319c1
O41 - AlcwWmDrv - AlcwWmDrv - C:\WINDOWS\system32\drivers\AlcwWmDrv.sys - (not running) -  -  - 967c01a7fa82cea2e54f54092e09d579
O41 - EagleNT - EagleNT - C:\WINDOWS\system32\drivers\EagleNT.sys - (not running) -  -  -
O41 - HookUrl - HookUrl - D:\网络资源工具\Rising\Rfw\HookUrl.sys - (not running) -  -  -
O41 - RsFwDrv - RsFwDrv - D:\网络资源工具\Rising\Rfw\RsFwDrv.sys - (not running) -  -  -
O41 - TesSafe - TesSafe NT Driver - C:\WINDOWS\system32\TesSafe.sys - (not running) - TesSafe NT Driver - TENCENT - 71d1b784049c48e92b5875d693f8e985
O41 - WmRegProDrv - 完美卸载 保护驱动 - C:\WINDOWS\system32\drivers\WmRegProDrv.sys - (not running) - 完美卸载 保护驱动 - Windows (R) 2000 DDK provider - 766793da0fc978eef05ce85bfeb37120

=======================================
360Safe.exe=4.4.1.1006
AntiAdwa.dll=4.2.0.1001
AntiEng.dll=4.4.0.1001
AntiActi.dll=2.0.0.3000
CleanHis.dll=4.2.0.1002
live.dll=1.0.1.1029


用户系统信息：Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)

完美卸载智能卸载干掉的吧？

智能分析不是太可靠，估计是卸载了其他的东西

上传份SRE报告上来看看

完美早就不用了,今天迅雷软件助手也报废了

SRE报告是什么东东?不太懂,不好意思

这是WDS清理助手的诊断日志,太大,就分开发了,各位帮好好看看,谢谢了!
[CODE]

2008-12-11,22:36:50

SysLog Scanner 1.0 - build 20080726
Arswp (http://www.arswp.com)

Windows XP Home Edition Service Pack 3 (build 2600) - Administrators



========================================
注册项

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup>  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2004-08-17 12:00 M:2008-04-14 10:14|(Verified)NVIDIA Corporation, 6.14.10.9380, C:2005-02-23 23:32 M:2006-10-26 10:31]
    <360Safebox><"C:\Program Files\360Safebox\safeboxTray.exe" /r>  [(Verified)360安全中心, 2, 4, 2, 1002, C:2008-12-01 10:30 M:2008-12-01 10:30]
    <360Safetray><D:\网络资源工具\360safe\safemon\360Tray.exe /start>  [(Verified)奇虎网, 5, 0, 0, 1002, C:2008-08-25 14:12 M:2008-08-25 14:12]
    <RavTask><"E:\Rising\Rav\RavTask.exe" -system>  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.24, C:2008-04-25 08:54 M:2008-07-27 15:55]
    <runeip><"C:\Program Files\Rising\AntiSpyware\rstray.exe" /startup>  [(Verified)Beijing Rising Information Technology Co., Ltd., 21.0.0.16, C:2008-08-05 11:32 M:2008-09-12 07:45]
    <Adobe Reader Speed Launcher><"C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe">  [(Verified)Adobe Systems Incorporated, 9.0.0.2008061200, C:2008-06-12 02:38 M:2008-06-12 02:38]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
    <KKDelay><C:\Program Files\Rising\AntiSpyware\RunOnce.exe>  [(Verified)Beijing Rising Information Technology Co., Ltd., 19, 0, 0, 3, C:2008-04-25 14:42 M:2008-08-05 11:31]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_Dlls><kmon.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 1, 0, 0, 33, C:2008-08-05 11:32 M:2008-11-07 16:03]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINDOWS\system32\RavExt.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-04-25 08:54 M:2008-07-29 17:57]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载]
    <><D:\网络资源工具\XL````\Program\GetUrl.htm>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载全部链接]
    <><D:\网络资源工具\XL````\Program\GetAllUrl.htm>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\完美安全助手]
    <><res://C:\WINDOWS\system32\PerfectToolbar.dll/MENUSEARCH.HTM>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\导出到 Microsoft Office Excel(&X)]
    <><res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000>  []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到QQ表情]
    <><D:\网络资源工具\AddEmotion.htm>  []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2004-08-17 12:00 M:2008-04-14 10:14|(Verified)Microsoft Corporation, 7.00.6000.16762 (vista_gdr.081013-1507), C:2004-08-17 12:00 M:2008-10-17 04:04|(Verified)N/A, C:2004-08-17 12:00 M:2004-08-17 12:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
    <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2004-08-17 12:00 M:2008-04-14 10:14|(Verified)Microsoft Corporation, 7.00.6000.16762 (vista_gdr.081013-1507), C:2004-08-17 12:00 M:2008-10-17 04:04|(Verified)N/A, C:2004-08-17 12:00 M:2004-08-17 12:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub>  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2004-08-17 12:00 M:2008-04-14 10:14|(Verified)Microsoft Corporation, 7.00.6000.16762 (vista_gdr.081013-1507), C:2004-08-17 12:00 M:2008-10-17 04:04|(Verified)N/A, C:2004-08-17 12:00 M:2008-04-14 09:57]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8b15971b-5355-4c82-8c07-7e181ea07608}]
    <Fax><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser>  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2004-08-17 12:00 M:2008-04-14 10:14|(Verified)Microsoft Corporation, 7.00.6000.16762 (vista_gdr.081013-1507), C:2004-08-17 12:00 M:2008-10-17 04:04|(Verified)N/A, C:2004-08-17 12:00 M:2004-08-17 12:00]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}]
    <启动迅雷5><D:\网络资源工具\XL````\Thunder.exe>  []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{6096E38F-5AC1-4391-8EC4-75DFA92FB32F}]
    <联想><http://www.lenovo.com>  []


========================================
启动项



========================================
计划任务



========================================
组件


ShellExecuteHook
[ShlExecHack Class]
    {32CD708B-60A7-4C00-9377-D73EAA495F0F}  <C:\WINDOWS\system32\RavExt.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-04-25 08:54 M:2008-07-29 17:57]

Shell Extension
[Display Panning CPL Extension]
    {42071714-76d4-11d1-8b24-00a0c9068ff3}  <deskpan.dll>  []
[HyperTerminal Icon Ext]
    {88895560-9AA2-1069-930E-00AA0030EBC8}  <C:\WINDOWS\system32\hticons.dll>  [(Verified)Hilgraeve, Inc., 5.1.2600.0, C:2005-10-09 13:58 M:2004-08-17 20:00]
[NvCpl DesktopContext Class]
    {A70C977A-BF00-412C-90B7-034C51DA2439}  <C:\WINDOWS\system32\nvcpl.dll>  [(Verified)NVIDIA Corporation, 6.14.10.9380, C:2005-02-23 23:32 M:2006-10-26 10:31]
[Play on my TV helper]
    {FFB699E0-306A-11d3-8BD1-00104B6F7516}  <C:\WINDOWS\system32\nvcpl.dll>  [(Verified)NVIDIA Corporation, 6.14.10.9380, C:2005-02-23 23:32 M:2006-10-26 10:31]
[Desktop Explorer]
    {1CDB2949-8F65-4355-8456-263E7C208A5D}  <C:\WINDOWS\system32\nvshell.dll>  [N/A, C:2006-11-24 15:54 M:2006-10-26 10:31]
[Desktop Explorer Menu]
    {1E9B04FB-F9E5-4718-997B-B8DA88302A47}  <C:\WINDOWS\system32\nvshell.dll>  [N/A, C:2006-11-24 15:54 M:2006-10-26 10:31]
[nView Desktop Context Menu]
    {1E9B04FB-F9E5-4718-997B-B8DA88302A48}  <C:\WINDOWS\system32\nvshell.dll>  [N/A, C:2006-11-24 15:54 M:2006-10-26 10:31]
[WinRAR shell extension]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2008-04-23 15:45 M:2007-09-05 17:12]
[RISING]
    {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D}  <C:\WINDOWS\system32\RavExt.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-04-25 08:54 M:2008-07-29 17:57]

BrowserHelperObject
[ThunderAtOnce Class]
    {01443AEC-0FD1-40fd-9C87-E93D1494C233}  <D:\网络资源工具\XL````\ComDlls\TDAtOnce_Now.dll>  []
[Adobe PDF Link Helper]
    {18DF081C-E8AD-4283-A596-FA578C2EBDC3}  <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll>  [(Verified)Adobe Systems Incorporated, 9.0.0.2008061100, C:2008-06-11 22:33 M:2008-06-11 22:33]
[BOC ProcessProtect Class]
    {776B71E2-B4CC-4C94-BC7C-09103AA690B6}  <ProcessProtection.dll>  [(Verified)www.ISRA.org.cn, 1, 2, 2, 5, C:2008-10-15 07:27 M:2008-10-14 16:26]
[Thunder Browser Helper]
    {889D2FEB-5411-4565-8998-1DD2C5261283}  <D:\网络资源工具\XL````\ComDlls\xunleiBHO_Now.dll>  []
[卡卡上网安全助手]
    {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}  <C:\WINDOWS\system32\urlFilter.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-08-05 11:32 M:2008-08-05 11:31]
[SafeMon Class]
    {B69F34DD-F0F9-42DC-9EDD-957187DA688D}  <D:\网络资源工具\360safe\safemon\safemon.dll>  [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 17:42]

ActiveX Extension
[ThunderAtOnce Class]
    {01443AEC-0FD1-40FD-9C87-E93D1494C233}  <D:\网络资源工具\XL````\ComDlls\TDAtOnce_Now.dll>  []
[PhotoDrawEx Class]
    {05F5F404-7C24-4B39-B5CC-340CEDEB9C0D}  <C:\WINDOWS\system32\QQPhotoDrawEx.dll>  [(Verified)TENCENT, 1, 9, 109, 144, C:2007-11-03 12:06 M:2007-11-03 12:06]
[Adobe PDF Reader Link Helper]
    {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}  <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll>  [(Verified)Adobe Systems Incorporated, 9.0.0.2008061100, C:2008-06-11 22:33 M:2008-06-11 22:33]
[GerneralPeerID Class]
    {0A47E819-F82E-4D5D-B806-6A9EA94D68CD}  <D:\网络资源工具\XL````\Components\InMedia\peerid.dll>  []
[完美安全助手]
    {0E1230F8-EA50-42A9-983C-E33ABC2EED3D}  <C:\WINDOWS\system32\PerfectToolbar.dll>  [Copyright 2001, 1, 0, 0, 1, C:2008-03-19 12:14 M:2008-03-19 12:14]
[Adobe PDF Link Helper]
    {18DF081C-E8AD-4283-A596-FA578C2EBDC3}  <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll>  [(Verified)Adobe Systems Incorporated, 9.0.0.2008061100, C:2008-06-11 22:33 M:2008-06-11 22:33]
[IEBuddyExtControl Class]
    {3AECD3C1-7085-4731-96DC-47B6CF7EF749}  <D:\网络资源工具\Kingsoft Internet Security 2008\Antispy\IEBuddyExt.DLL>  []
[Thunder Agent Class]
    {485463B7-8FB2-4B3B-B29B-8B919B0EACCE}  <D:\网络资源工具\XL````\ComDlls\ThunderAgent_Now.dll>  []
[UploadControl Control]
    {52FF336D-A05D-4A14-A3A1-7B6B4B427F88}  <C:\WINDOWS\system32\UPLOAD~1.OCX>  [网易（杭州）网络有限公司, 1.0.0.39, C:2008-04-21 10:51 M:2008-08-25 20:04]
[XMP Class]
    {6483F145-A768-4C41-AACC-52D4D7845851}  <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work>  [Xunlei Networking Technologies,LTD, 2, 1, 8, 85, C:2008-04-25 09:29 M:2008-09-23 17:39]
[XDRM]
    {693571CB-54A3-4E90-9D52-EEAE1334E2D3}  <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work>  [Copyright XunLei 2007, 1, 0, 0, 7, C:2008-04-25 09:29 M:2008-08-25 17:25]
[StormPlayer Object]
    {6BE52E1D-E586-474F-A6E2-1A85A9B4D9FB}  <D:\网络资源工具\mps.dll>  []
[js5mBho Class]
    {72578201-3A99-4164-88E9-9799393159C8}  <C:\WINDOWS\system32\perfectBHO.dll>  [Copyright 2004, 1, 0, 0, 1, C:2008-03-19 12:15 M:2008-03-19 12:15]
[MediaComm Class]
    {7670648D-461B-42AF-BDFE-46D26AF5EFF2}  <D:\网络资源工具\XL````\Components\InMedia\MediaAddin18.dll>  []
[BOC ProcessProtect Class]
    {776B71E2-B4CC-4C94-BC7C-09103AA690B6}  <ProcessProtection.dll>  [(Verified)www.ISRA.org.cn, 1, 2, 2, 5, C:2008-10-15 07:27 M:2008-10-14 16:26]
[360SafeLive]
    {87515F61-A66C-4319-A0E0-D416CB8059E3}  <D:\网络资源工具\360safe\live.dll>  [(Verified)360.cn, 1, 0, 1, 1029, C:2008-11-25 09:42 M:2008-11-25 09:42]
[Thunder Browser Helper]
    {889D2FEB-5411-4565-8998-1DD2C5261283}  <D:\网络资源工具\XL````\ComDlls\xunleiBHO_Now.dll>  []
[卡卡上网安全助手]
    {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}  <C:\WINDOWS\system32\urlFilter.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 6, 0, 0, 15, C:2008-08-05 11:32 M:2008-08-05 11:31]
[DapCtrl Class]
    {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8}  <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.1.5804.63.(957).dll>  [(Verified)ShenZhen Thunder Networking Technologies Ltd., 2, 1, 5804, 63, C:2008-10-25 11:06 M:2008-09-19 16:30]
[SafeMon Class]
    {B69F34DD-F0F9-42DC-9EDD-957187DA688D}  <D:\网络资源工具\360safe\safemon\safemon.dll>  [(Verified)360.CN, 4, 2, 0, 1005, C:2008-04-03 20:55 M:2008-07-10 17:42]
[WebActivater Control]
    {C661F36D-DF85-4EF4-83C7-E107B83D04B1}  <C:\WINDOWS\system32\3DShowVM.ocx>  [QQ, 1, 0, 200, 50, C:2006-03-13 14:00 M:2006-03-13 14:00]
[QQPlayerCtrl Class]
    {CD108273-D434-43E6-AA90-1469F97EB398}  <D:\网络资源工具\QzoneMusic.dll>  []
[RealPlayer G2 Control]
    {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA}  <D:\网络资源工具\Codec\rmoc3260.dll>  [(Verified)RealNetworks, Inc., 6.0.9.2568, C:2006-10-18 23:05 M:2006-10-18 23:05]
[Shockwave Flash Object]
    {D27CDB6E-AE6D-11CF-96B8-444553540000}  <C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx>  [(Verified)Adobe Systems, Inc., 10,0,12,36, C:2008-10-05 11:16 M:2008-10-05 11:16]
[PlayerCtrl Class]
    {E05BC2A3-9A46-4A32-80C9-023A473F5B23}  <D:\网络资源工具\QzoneMusic.dll>  []
[BOC Edit Class]
    {E61E8363-041F-455C-8AD0-8A61F1D8E540}  <KeyboardProtection.dll>  [(Verified)www.ISRA.org.cn, 1, 1, 7, 14, C:2008-10-15 07:27 M:2008-10-14 16:24]
[PasswordEditCtrl Class]
    {E787FD25-8D7C-4693-AE67-9406BC6E22DF}  <C:\WINDOWS\system32\qqedit\qqedit.dll>  [(Verified)腾讯科技（深圳）有限公司, 1, 1, 0, 5, C:2008-01-07 17:08 M:2008-01-07 17:08]
[TimwpDll.TimwpCheck]
    {ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4}  <D:\网络资~1\Timwp.dll>  []
[Thunder DapPlayer]
    {EEDD6FF9-13DE-496B-9A1C-D78B3215E266}  <D:\网络资源工具\XL````\Components\DownAndPlay\DapPlayer3.0.5712.71.741.dll>  []
[XPPlayer Class]
    {F3E70CEA-956E-49CC-B444-73AFE593AD7F}  <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.1.5853.212.(276).dll>  [(Verified)Xunlei Networking Technologies,LTD, 2, 1, 5853, 212, C:2008-10-29 10:46 M:2008-09-24 11:03]

Context Menu
[RisingRavExt]
    {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D}  <C:\WINDOWS\system32\RavExt.dll>  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.18, C:2008-04-25 08:54 M:2008-07-29 17:57]
[WinRAR]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA}  <C:\Program Files\WinRAR\rarext.dll>  [N/A, C:2008-04-23 15:45 M:2007-09-05 17:12]


========================================
服务

[Application Management / AppMgmt][Stopped/Manual Start]
    <%SystemRoot%\system32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\appmgmts.dll">  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-17 12:00 M:2008-04-14 10:14]
[Contrl Center of Storm Media / ccosm][Stopped/Auto Start]
    <D:\网络资源工具\stormliv.exe /asservice>  []
[Human Interface Device Access / HidServ][Stopped/Disabled]
    <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\hidserv.dll">  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-17 12:00 M:2008-04-14 10:14]
[lenovo live update / Lenovo Upgrade Service.bis.release][Running/Auto Start]
    <C:\Program Files\Lenovo\LiveUpdate\liveupdate.exe>  [新思软件技术有限公司, 3, 2, 4, 18, C:2007-01-13 14:29 M:2006-09-29 00:22]
[PnpWMmng / PnpWMmng][Stopped/Auto Start]

<D:\网络资~1\完美卸~1\PnpWMmng.exe>  []

[Capture Device Service / Capture Device Service][Running/Auto Start]
    <"C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe">  [(Verified)InterVideo Inc., 1.0.0.1, C:2007-03-06 10:35 M:2007-03-06 10:35]
[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
    <%SystemRoot%\system32\nvsvc32.exe>  [(Verified)NVIDIA Corporation, 6.14.10.9380, C:2005-02-23 23:32 M:2006-10-26 10:31]
[Rising Proxy  Service / RfwProxySrv][Stopped/Auto Start]
    <D:\网络资源工具\Rising\Rfw\rfwProxy.exe>  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.29, C:2008-04-25 16:06 M:2008-04-25 16:05]
[Rising Personal Firewall Service / RfwService][Stopped/Auto Start]
    <D:\网络资源工具\Rising\Rfw\rfwsrv.exe>  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.68, C:2008-04-25 16:06 M:2008-04-25 16:05]
[Rising Process Communication Center / RsCCenter][Running/Auto Start]
    <"E:\Rising\Rav\CCenter.exe">  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.33, C:2008-04-25 08:54 M:2008-07-29 17:57]
[Rising RealTime Monitor / RsRavMon][Stopped/Auto Start]
    <"E:\RISING\RAV\Ravmond.exe">  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.80, C:2008-04-25 08:54 M:2008-07-29 17:57]


========================================
驱动

[AlcwWmDrv / AlcwWmDrv][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\drivers\AlcwWmDrv.sys>  [N/A, C:2008-04-23 20:22 M:2007-12-30 19:46]
[EagleNT / EagleNT][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\drivers\EagleNT.sys>  []
[HookUrl / HookUrl][Stopped/Auto Start]
    <\??\D:\网络资源工具\Rising\Rfw\HookUrl.sys>  []
[PnpWmkDrv / PnpWmkDrv][Running/System Start]
    <\??\C:\WINDOWS\system32\drivers\PnpWmkDrv.sys>  [Windows (R) 2000 DDK provider, 5.1.2600.0 built by: WinDDK, C:2008-04-21 09:23 M:2007-09-05 10:23]
[Protector / Protector][Running/System Start]
    <system32\drivers\Protector.sys>  [N/A, C:2008-10-15 07:27 M:2008-01-03 11:38]
[ProtectorA / ProtectorA][Running/System Start]
    <system32\drivers\ProtectorA.sys>  [N/A, C:2008-10-15 07:27 M:2008-10-14 11:51]
[RsFwDrv / RsFwDrv][Stopped/System Start]
    <\??\D:\网络资源工具\Rising\Rfw\RsFwDrv.sys>  []
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
    <system32\DRIVERS\tcpip.sys>  [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249), C:2004-08-17 12:00 M:2008-06-20 19:51]
[TesSafe / TesSafe][Stopped/Manual Start]
    <\??\C:\WINDOWS\system32\TesSafe.sys>  [TENCENT, 0, 0, 6, 8, C:2008-08-18 08:57 M:2008-08-27 17:17]
[TITAN / TITAN][Running/Auto Start]
    <\??\C:\WINDOWS\system32\drivers\TITAN.SYS>  [FeiTian Tech Co.,Ltd, 4.00, C:2008-08-05 12:20 M:2006-04-19 12:57]
[WmRegProDrv / WmRegProDrv][Stopped/Manual Start]
    <System32\Drivers\WmRegProDrv.sys>  [Windows (R) 2000 DDK provider, 5.1.2600.0 built by: WinDDK, C:2008-04-23 20:22 M:2007-12-10 20:57]

[ADI UAA Function Driver for High Definition Audio Service / ADIHdAudAddService][Running/Manual Start]
    <system32\drivers\ADIHdAud.sys>  [(Verified)Analog Devices, Inc., 5.10.01.4160 built by: WinDDK, C:2006-12-05 09:50 M:2006-07-06 15:00]
[AEAudio Service / AEAudioService][Running/Manual Start]
    <system32\drivers\AEAudio.sys>  [(Verified)Andrea Electronics Corporation, 4.1.32.25, C:2006-12-05 09:50 M:2005-12-21 15:25]
[AliIde / AliIde][Running/Boot Start]
    <system32\DRIVERS\aliide.sys>  [(Verified)Acer Laboratories Inc., 1.20, C:2005-10-09 14:50 M:2001-08-17 13:51]
[AMD AGP Bus Filter Driver / amdagp][Running/Boot Start]
    <system32\DRIVERS\amdagp.sys>  [(Verified)Advanced Micro Devices, Inc., 5.00 (xpsp.080413-2111), C:2005-10-09 14:33 M:2008-04-14 02:36]
[AMD Processor Driver / AmdK8][Running/System Start]
    <system32\DRIVERS\AmdK8.sys>  [(Verified)Advanced Micro Devices, 1.3.2 (dnsrv(wmbla).060618-2337), C:2007-01-13 14:34 M:2006-06-18 23:47]
[asc / asc][Running/Boot Start]
    <system32\DRIVERS\asc.sys>  [(Verified)Advanced System Products, Inc., 2.9I-MS (XPClient.010817-1148), C:2005-10-09 14:49 M:2001-08-17 13:52]
[asc3550 / asc3550][Running/Boot Start]
    <system32\DRIVERS\asc3550.sys>  [(Verified)Advanced System Products, Inc., 3.1E-MS (XPClient.010817-1148), C:2005-10-09 14:49 M:2001-08-17 13:51]
[Broadcom 440x 10/100 Integrated Controller XP Driver / bcm4sbxp][Running/Manual Start]
    <system32\DRIVERS\bcm4sbxp.sys>  [(Verified)Broadcom Corporation, 4.47.0.0 built by: WinDDK, C:2007-01-13 14:25 M:2006-05-17 11:03]
[CmdIde / CmdIde][Running/Boot Start]
    <system32\DRIVERS\cmdide.sys>  [(Verified)CMD Technology, Inc., 2.0.7 (XPClient.010817-1148), C:2005-10-09 14:50 M:2001-08-31 15:29]
[dac2w2k / dac2w2k][Running/Boot Start]
    <system32\DRIVERS\dac2w2k.sys>  [(Verified)Mylex Corporation, 6.00-21 (XPClient.010817-1148), C:2005-10-09 14:48 M:2001-08-17 13:52]
[Microsoft UAA Function Driver for High Definition Audio Service / HdAudAddService][Stopped/Manual Start]
    <system32\drivers\HdAudio.sys>  [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK, C:2005-01-07 17:07 M:2005-01-07 17:07]
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
    <system32\DRIVERS\HDAudBus.sys>  [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK, C:2005-01-07 17:07 M:2008-04-14 00:36]
[HookCont / HookCont][Running/System Start]
    <\SystemRoot\system32\drivers\HookCont.sys>  [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 7, C:2008-04-25 08:54 M:2008-07-29 17:57]
[HookNtos / HookNtos][Running/System Start]
    <\SystemRoot\system32\drivers\HookNtos.sys>  [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 52, C:2008-04-25 08:54 M:2008-10-25 10:37]
[HookReg / HookReg][Running/System Start]
    <\SystemRoot\system32\drivers\HookReg.sys>  [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 29, C:2008-04-25 08:54 M:2008-11-06 08:31]
[HookSys / HookSys][Running/System Start]
    <\SystemRoot\system32\drivers\HookSys.sys>  [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 55, C:2008-04-25 08:54 M:2008-08-27 17:20]
[KAVBootC / KAVBootC][Stopped/Boot Start]
    <system32\Drivers\KAVBootC.sys>  [(Verified)Kingsoft Corporation, 2008,02,21,80, C:2008-04-25 12:48 M:2008-04-23 21:18]
[KAVSafe / KAVSafe][Stopped/Auto Start]
    <\??\C:\WINDOWS\system32\Drivers\KAVSafe.sys>  [(Verified)Kingsoft Corporation, 2008,03,04,62, C:2008-04-23 19:35 M:2008-04-15 18:46]
[mraid35x / mraid35x][Running/Boot Start]
    <system32\DRIVERS\mraid35x.sys>  [(Verified)American Megatrends Inc., 6.19 (XPClient.010817-1148), C:2005-10-09 14:44 M:2001-08-17 13:52]
[nv / nv][Running/Manual Start]
    <system32\DRIVERS\nv4_mini.sys>  [(Verified)NVIDIA Corporation, 6.14.10.9380, C:2005-02-23 23:32 M:2006-10-26 10:31]
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
    <system32\DRIVERS\ptilink.sys>  [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2004-08-17 12:00 M:2004-08-17 12:00]
[ql1080 / ql1080][Running/Boot Start]
    <system32\DRIVERS\ql1080.sys>  [(Verified)QLogic Corporation, 3.04, C:2005-10-09 14:46 M:2001-08-17 13:52]
[ql12160 / ql12160][Running/Boot Start]
    <system32\DRIVERS\ql12160.sys>  [(Verified)QLogic Corporation, 7.13.02 (W64), C:2005-10-09 14:46 M:2001-08-17 13:52]
[ql1280 / ql1280][Running/Boot Start]
    <system32\DRIVERS\ql1280.sys>  [(Verified)QLogic Corporation, 7.13.01 (W2K), C:2005-10-09 14:46 M:2001-08-17 13:52]
[Rising  Rfwbase Driver / RfwBase][Running/Auto Start]
    <System32\DRIVERS\rfwbase.SYS>  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.8, C:2008-04-25 16:06 M:2008-04-25 16:05]
[RsNTGDI / RsNTGDI][Running/Boot Start]
    <system32\Drivers\RsNTGdi.sys>  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 3, C:2008-04-25 08:54 M:2008-07-29 17:57]
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Stopped/Manual Start]
    <system32\DRIVERS\RTL8139.SYS>  [(Verified)Realtek Semiconductor Corporation, 5.398.613.2003 built by: WinDDK, C:2005-10-09 13:56 M:2004-08-03 22:31]
[SafeBoxKrnl / SafeBoxKrnl][Running/System Start]
    <\??\C:\WINDOWS\system32\drivers\SafeBoxKrnl.sys>  [(Verified)360安全中心, 2, 2, 2, 1008, C:2008-11-15 11:33 M:2008-11-15 11:33]
[Secdrv / Secdrv][Stopped/Manual Start]
    <system32\DRIVERS\secdrv.sys>  [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2004-08-17 12:00 M:2007-11-13 18:25]
[SenFilt Service / SenFiltService][Running/Manual Start]
    <system32\drivers\Senfilt.sys>  [(Verified)Sensaura, 5.10.00.3524, C:2006-12-05 09:50 M:2006-03-17 18:19]
[Sparrow / Sparrow][Running/Boot Start]
    <system32\DRIVERS\sparrow.sys>  [(Verified)Adaptec, Inc., v2.0a (ReleaseBinaries.001205-1804), C:2005-10-09 14:41 M:2001-08-17 14:07]
[symc810 / symc810][Running/Boot Start]
    <system32\DRIVERS\symc810.sys>  [(Verified)Symbios Logic Inc., 5.1.2409.1 (ReleaseBinaries.001205-1804), C:2005-10-09 14:46 M:2001-08-17 14:07]
[symc8xx / symc8xx][Running/Boot Start]
    <system32\DRIVERS\symc8xx.sys>  [(Verified)LSI Logic, 5.1.2409.1 (ReleaseBinaries.001205-1804), C:2005-10-09 14:45 M:2001-08-17 14:07]
[sym_hi / sym_hi][Running/Boot Start]
    <system32\DRIVERS\sym_hi.sys>  [(Verified)LSI Logic, 5.1.2462.0 (Lab01_N.010309-0027), C:2005-10-09 14:44 M:2001-08-17 14:07]
[sym_u3 / sym_u3][Running/Boot Start]
    <system32\DRIVERS\sym_u3.sys>  [(Verified)LSI Logic, 5.1.2462.0 (Lab01_N.010309-0027), C:2005-10-09 14:45 M:2001-08-17 14:07]
[TSKSP / TSKSP][Stopped/Manual Start]
    <\??\D:\网络资源工具\QQDoctor\TSKSP.sys>  [(Verified)Tencent, 2008, 9, 27, 17, C:2008-12-09 15:29 M:2008-12-09 01:37]
[ultra / ultra][Running/Boot Start]
    <system32\DRIVERS\ultra.sys>  [(Verified)Promise Technology, Inc.,  1.43 (第 0603 版), C:2005-10-09 14:49 M:2001-08-17 13:52]

========================================
进程

[PID: 588 / SYSTEM]  \SystemRoot\System32\smss.exe  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-17 12:00 M:2008-04-14 10:14]

[PID: 656 / SYSTEM]  \??\C:\WINDOWS\system32\csrss.exe  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-17 12:00 M:2008-04-14 10:13]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]

[PID: 680 / SYSTEM]  \??\C:\WINDOWS\system32\winlogon.exe  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113), C:2004-08-17 12:00 M:2008-04-14 10:14]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]

[PID: 724 / SYSTEM]  C:\WINDOWS\system32\services.exe  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-17 12:00 M:2008-04-14 10:14]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]

[PID: 736 / SYSTEM]  C:\WINDOWS\system32\lsass.exe  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113), C:2004-08-17 12:00 M:2008-04-14 10:14]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]

[PID: 892 / SYSTEM]  C:\WINDOWS\system32\svchost.exe  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-17 12:00 M:2008-04-14 10:14]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]

[PID: 988 / NETWORK SERVICE]  C:\WINDOWS\system32\svchost.exe  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-17 12:00 M:2008-04-14 10:14]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]

[PID: 1076 / SYSTEM]  E:\Rising\Rav\CCenter.exe  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.33, C:2008-04-25 08:54 M:2008-07-29 17:57]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]

[PID: 1092 / SYSTEM]  C:\WINDOWS\System32\svchost.exe  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-17 12:00 M:2008-04-14 10:14]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]
    E:\Rising\Rav\RavScrCh.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 5, C:2008-04-25 08:54 M:2008-07-29 17:57]

[PID: 1184 / NETWORK SERVICE]  C:\WINDOWS\system32\svchost.exe  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-17 12:00 M:2008-04-14 10:14]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]

[PID: 1252 / LOCAL SERVICE]  C:\WINDOWS\system32\svchost.exe  [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2004-08-17 12:00 M:2008-04-14 10:14]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]

[PID: 1292 / SYSTEM]  E:\RISING\RAV\ravmond.exe  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.80, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\BWList.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.5, C:2008-04-25 08:54 M:2008-07-29 17:57]
    C:\WINDOWS\system32\MFC71.DLL  [Microsoft Corporation, 7.10.3077.0, C:2008-04-25 08:54 M:2008-04-25 08:53]
    C:\WINDOWS\system32\MSVCR71.dll  [Microsoft Corporation, 7.10.3052.4, C:2003-02-21 04:42 M:2003-02-21 04:42]
    C:\WINDOWS\system32\MSVCP71.dll  [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 22:14 M:2003-03-18 22:14]
    E:\RISING\RAV\RSAPPMGR.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\CfgDll.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\RsLog.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.36, C:2008-04-25 08:54 M:2008-07-27 15:57]
    E:\RISING\RAV\ProcCom.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\RsCommX2.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 20, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\MonRule.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.29, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\Hooksys.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 12, C:2008-04-25 08:54 M:2008-07-29 17:57]
    D:\网络资源工具\Rising\Rfw\ijt_base.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-04-25 16:06 M:2008-04-25 16:05]
    D:\网络资源工具\Rising\Rfw\olemon.dll  [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-04-25 16:06 M:2008-04-25 16:05]
    E:\RISING\RAV\HookReg.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 6, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\HookNtos.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 5, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\rswalmon.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 24, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\recomp.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41, C:2008-04-25 08:54 M:2008-08-22 11:31]
    E:\RISING\RAV\refs.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\ffr.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-25 08:54 M:2008-09-26 18:30]
    E:\Rising\Rav\RsStore.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.9, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\HookCont.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 22, 0, 0, 3, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\Rising\Rav\fakescan.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.14, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\Rising\Rav\Scanner.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.39, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\viruslib.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\relibldr.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\HookWeb.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.3, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\extfile.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 32, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\pearc.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 8, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\nvfile.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 7, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\scanexec.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 22, C:2008-04-25 08:54 M:2008-08-27 17:20]
    E:\RISING\RAV\unexe.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 6, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\scanex.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 1, 0, C:2008-04-25 08:54 M:2008-12-02 20:07]
    E:\RISING\RAV\scanpack.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 10, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\revm.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 11, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\urutils.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 7, C:2008-04-25 09:08 M:2008-07-29 17:57]
    E:\RISING\RAV\ur000.dat  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 22, C:2008-04-25 09:08 M:2008-10-10 21:26]
    E:\RISING\RAV\scansct.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 11, C:2008-04-25 08:54 M:2008-09-02 18:11]
    E:\RISING\RAV\extole.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 13, C:2008-04-25 08:54 M:2008-07-29 17:57]
    E:\RISING\RAV\extmail.dll  [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 10, C:2008-04-25 08:54 M:2008-07-29 17:57]