Adware.Chindo.113

Technical Information

To ensure autorun and distribution

Modifies the following registry keys

[<HKLM>\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] 'RSDTRAY' = '"%ProgramFiles(x86)%\Rising\RSD\popwndexe.exe"'
[<HKLM>\Software\Classes\SHPlayer.m2t\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.mpeg\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.m2v\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.m2p\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.m4v\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.mpg\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.ts\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.vob\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.ogg\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.wma\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.amr\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.aac\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.flac\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.m2ts\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.mp3\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.mkv\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.fli\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.flc\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] 'SohuVA' = '"%ProgramFiles(x86)%\????\SHPlayer.exe" /auto'
[<HKLM>\Software\Classes\SHPlayer.mp4\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.3gp\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.mov\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.qt\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.3gpp\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\Applications\SHPlayer.exe\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.avi\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.wmv\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.rm\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.rmvb\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.ram\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.flv\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.f4v\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.asf\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.mp2\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'
[<HKLM>\Software\Classes\SHPlayer.ifox\shell\open\command] '' = '"%ProgramFiles(x86)%\搜狐影音\SHPlayer.exe" "%1"'

Sets the following service settings

[<HKLM>\System\CurrentControlSet\Services\RsMgrSvc] 'Start' = '00000002'
[<HKLM>\System\CurrentControlSet\Services\RsMgrSvc] 'ImagePath' = '"%ProgramFiles(x86)%\Rising\RSD\RsMgrSvc.exe"'

Creates the following services

'RsMgrSvc' "%ProgramFiles(x86)%\Rising\RSD\RsMgrSvc.exe"
'RsMgrSvc' %ProgramFiles(x86)%\Rising\RSD\RsMgrSvc.exe

Modifies file system

Creates the following files

%TEMP%\rlpinz9.jpg
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\message_box.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\middle_center.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\middle_left.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\middle_right.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\mode_sel.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\logo\navigation.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\point.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\point_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\progressbar_bk.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\progressbar_bk_old.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\progressbar_left.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\progressbar_left_old.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\select\menu_select_middle_1.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\select\menu_select_right_1.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\progressbar_mid.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\pushset_line.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\r_close-hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\r_close-nomal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\r_close-pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\r_min-hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\r_min-nomal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\r_min-pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_arrowdown_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_arrowleft_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_arrowright_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_arrowup_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_bg_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\progressbar_preload.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\progressbar_right.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_h_sliderbg_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_h_bg_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_search_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_hover_old.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_link.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_link_old.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\loading.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\loading_btn.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\loading_btn_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\loading_light.png
%ProgramFiles(x86)%\搜狐影音\skin\default\logo\logo-1.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\logo\logo_max.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_cancel_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_cancel_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_pic_warn.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_active_old.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\select\menu_select_left_1.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_cancel_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_desktop_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_desktop_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_do_search_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_do_search_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_do_search_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_ok_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_ok_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_ok_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_ok_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_search_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_search_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_cancel_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_desktop_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\lyric_btn_desktop_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\logo\logo.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_sliderbg_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_two.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\vico_new.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\warning.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\warning_black.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\windows_bg_bottom.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_bakground_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_normal_bottom.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_normal_cb.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_normal_ct.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_normal_lb.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_normal_lc.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_normal_lt.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_three.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_normal_rb.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_zero.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_normal_rt.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_set_topbk.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\3gp.ico
%TEMP%\r2zwjsd.jpg
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\3gp2.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\asf.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\asx.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\avi.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\f4v.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\flv.ico
%ProgramFiles(x86)%\搜狐影音\hotgame.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\logo\ifoxicon.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_normal_rc.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_start.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\win_normal_top.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_queue.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_pause.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_slider_middle.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\search_bk.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\search_bk1.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_leftpart.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_palyerset_slider.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_palyerset_top.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_playerset_bk.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_rightpart.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_rightpart_center.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_rightpart_left.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_rightpart_right.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_slider_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_slider_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\sliderbar_slider_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_slider_top.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\smart_bk.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\toolbar_bg.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\toolbar_spliter.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\top_center.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\top_left.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\top_right.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\tree_search_bk_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\tree_search_bk_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_complete.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_five.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_four.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_network_err.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\us_one.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_active.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\smart_bkline.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\scroll_slider_bottom.png
%ProgramFiles(x86)%\搜狐影音\logo.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\downloaed_flag.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treecycle_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treecycle_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treecycle_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treecycle_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treedelete_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treedelete_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treedelete_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treedelete_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treeexpansion_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treefileopen_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treefileopen_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treeclose_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treeclose_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treeclose_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treefileopen_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treefresh_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treefresh_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treeie_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treeless_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treesearch_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treesearch_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treesearch_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_tree_noplay.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_tree_played.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_tree_playing.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tvseries_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treefileopen_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treefresh_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treefresh_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tvseries_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tvseries_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tvseries_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_stop_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_stop_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_stop_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_stop_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_tap_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_tap_sel.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_title_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_title_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_title_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_3d_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_3d_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treearrow_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_stick_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treearrow_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_3d_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_copyrul_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_cutprint_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_cutprint_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_cutprint_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_cutprint_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_definition_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_definition_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_definition_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_set_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_set_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_set_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_3d_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_copyrul_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_tool_copyrul_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_unstick_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dbtn_shortcut_del_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_upload_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\desk_left.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\desk_right.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\divid_line.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_back_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_back_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_back_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_ok_disabel.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_ok_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_ok_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_ok_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dbtn_shortcut_create_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_open_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_open_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dbtn_shortcut_del_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_open_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_refresh_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_refresh_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_refresh_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_connected.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_warning.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\download_complete.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\download_deletetask.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\download_downloading.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\download_loading.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\download_pause.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_open_hover.png
%TEMP%\rlacowy.jpg
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_treeclose_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dlna_btn_refresh_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dbtn_shortcut_del_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dbtn_shortcut_create_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\dbtn_shortcut_create_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_upload_nor.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_upload_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_upload_video_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_upload_video_nor.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_upload_video_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_username_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_username_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_username_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\bubble_down.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\bubble_small_up.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\bubble_up.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\combo_btn_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_unstick_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\combo_btn_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\combo_text_left_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\combo_text_right_normal.png
%ProgramFiles(x86)%\rising\rsd\data\rav\rav.ini
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\correct .png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\cs_bg.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\cs_btn_common_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\cs_btn_common_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\cs_btn_common_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\cs_red_progress.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\cs_yuan.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\cs_zhizhen_0.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\cs_zhizhen_1.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\error.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\combo_text_center_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_unstick_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\skin\images\ico-1.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_font_smart_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\logo\logo.ico
%ProgramFiles(x86)%\搜狐影音\avcodec-53.dll
%ProgramFiles(x86)%\搜狐影音\avutil-51.dll
%ProgramFiles(x86)%\搜狐影音\codecs\real\cook.dll
%ProgramFiles(x86)%\搜狐影音\d3dx9_43.dll
%ProgramFiles(x86)%\搜狐影音\codecs\real\dnet3260.dll
%ProgramFiles(x86)%\搜狐影音\downloadui.dll
%ProgramFiles(x86)%\搜狐影音\codecs\real\drv2.dll
%ProgramFiles(x86)%\搜狐影音\codecs\real\drvc.dll
%ProgramFiles(x86)%\搜狐影音\effectivemergemp4file.dll
%ProgramFiles(x86)%\搜狐影音\codecs\evrcp.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ffmpeg.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ff_kerneldeint.dll
%ProgramFiles(x86)%\搜狐影音\codecs\real\atrc.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ff_liba52.dll
%ProgramFiles(x86)%\搜狐影音\avformat-53.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ff_libfaad2.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ff_samplerate.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ff_unrar.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ff_wmv9.dll
%ProgramFiles(x86)%\搜狐影音\flyfoxdsfilter.dll
%ProgramFiles(x86)%\搜狐影音\flyfoxlocalplayer.dll
%ProgramFiles(x86)%\搜狐影音\homepageplugin.dll
%ProgramFiles(x86)%\搜狐影音\hotgameplugin.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ijl15.dll
%ProgramFiles(x86)%\搜狐影音\codecs\libmpeg2_ff.dll
%ProgramFiles(x86)%\搜狐影音\libpthread-2.dll
%ProgramFiles(x86)%\搜狐影音\liveplayplugin.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ff_libdts.dll
%ProgramFiles(x86)%\搜狐影音\codecs\mkunicode.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ff_libmad.dll
%ProgramFiles(x86)%\搜狐影音\codecs\mkzlib.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ac3filter.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravdefdb\rsmon.db1
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravdefdb\uprsmon.dat
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravdefdb\uprsuser.dat
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravdefdb\ravdefdb.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsmondef\selfmon.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsmondef\bacore.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsmondef\defmon.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsmondef\adefmon.mond
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsmondef\x64\adefmon.mond
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsmondef\monrule.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsmondef\bawhite.dll
%ProgramFiles(x86)%\搜狐影音\codecs\real\28_83260.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsmondef\bawhite.dat
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravdefdb\rsuser.db1
%ProgramFiles(x86)%\搜狐影音\codecs\real\14_43260.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsmondef\rsmondef.xml
%ALLUSERSPROFILE%\rising\rav\language.ini
%ProgramFiles(x86)%\搜狐影音\360inst_sohuyy.exe
%ProgramFiles(x86)%\搜狐影音\crashsubmit.exe
%ProgramFiles(x86)%\搜狐影音\fileassociationstool.exe
%ProgramFiles(x86)%\搜狐影音\shplayer.exe
%ProgramFiles(x86)%\搜狐影音\shres.exe
%ProgramFiles(x86)%\搜狐影音\shupdate.exe
%ProgramFiles(x86)%\搜狐影音\sohuliveupdate.exe
%ProgramFiles(x86)%\搜狐影音\sohuva.exe
%ProgramFiles(x86)%\搜狐影音\uninstall.exe
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsmondef\antipromotionmon.dll
%ProgramFiles(x86)%\搜狐影音\codecs\mkx.dll
%ProgramFiles(x86)%\rising\rav\netconfig.ini
%ALLUSERSPROFILE%\rising\rav\rav.ini
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\logo.ico
%ProgramFiles(x86)%\搜狐影音\codecs\mp4.dll
%ALLUSERSPROFILE%\microsoft\windows\start menu\programs\搜狐影音\卸载搜狐影音.lnk
%ALLUSERSPROFILE%\microsoft\windows\start menu\programs\搜狐影音\搜狐影音.lnk
%ALLUSERSPROFILE%\microsoft\windows\start menu\programs\搜狐影音\热门游戏中心.lnk
%ProgramFiles(x86)%\搜狐影音\startbarbt\搜狐影音.lnk
%APPDATA%\microsoft\internet explorer\quick launch\user pinned\startmenu\搜狐影音.lnk
%ProgramFiles(x86)%\搜狐影音\taskbarbt\搜狐影音.lnk
%APPDATA%\microsoft\internet explorer\quick launch\user pinned\taskbar\搜狐影音.lnk
%TEMP%\rspcver12.xml.rs
%TEMP%\kantivirus\kinst.log
%HOMEPATH%\documents\搜狐影音\config\sysconfig.xml
%HOMEPATH%\documents\搜狐影音\config\sohuva.ini
%ProgramFiles(x86)%\搜狐影音\videoconsoleplugin.dll
%HOMEPATH%\documents\搜狐影音\config\pushmsg.xml
%HOMEPATH%\documents\搜狐影音\config\videolib.db
%HOMEPATH%\desktop\搜狐影音.lnk
%HOMEPATH%\documents\搜狐影音\config\playlist.xml
%TEMP%\sohuva.ini
%HOMEPATH%\documents\搜狐影音\config\bhoconfig.xml
%ProgramFiles(x86)%\rising\rav\compsver.inf
%ProgramFiles(x86)%\rising\rsd\backup\rav\compsver.inf
%ProgramFiles(x86)%\rising\rav\label.dat
%ProgramFiles(x86)%\rising\rsd\backup\rav\label.dat
%ProgramFiles(x86)%\rising\rav\xmls\setup.xml
%ProgramFiles(x86)%\rising\rav\xmls\_rav.xml
%ProgramFiles(x86)%\rising\rav\rscfg.dll
%ProgramFiles(x86)%\rising\rav\xmls\rscfg.xml
%HOMEPATH%\documents\搜狐影音\config\userdata.xml
%ProgramFiles(x86)%\搜狐影音\vadsdisplay.dll
%ProgramFiles(x86)%\搜狐影音\uploadui.dll
D:\sohucache\cacherecords.xml
%ProgramFiles(x86)%\搜狐影音\uiresource.dll
%ProgramFiles(x86)%\搜狐影音\npifox.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ogm.dll
%ProgramFiles(x86)%\搜狐影音\playerplugin.dll
%ProgramFiles(x86)%\搜狐影音\playerutilits.dll
%ProgramFiles(x86)%\搜狐影音\codecs\pncrt.dll
%ProgramFiles(x86)%\搜狐影音\codecs\qasf.dll
%ProgramFiles(x86)%\搜狐影音\codecs\real\raac.dll
%ProgramFiles(x86)%\搜狐影音\codecs\real\ralf.dll
%ProgramFiles(x86)%\搜狐影音\shapp.dll
%ProgramFiles(x86)%\搜狐影音\shbrowser.dll
%ProgramFiles(x86)%\搜狐影音\shcontrol.dll
%ProgramFiles(x86)%\搜狐影音\shdlnaplayer.dll
%ProgramFiles(x86)%\搜狐影音\shdownloader.dll
%ProgramFiles(x86)%\搜狐影音\shplayercommon.dll
%ProgramFiles(x86)%\搜狐影音\shrestool.dll
%ProgramFiles(x86)%\搜狐影音\playerengine.dll
%ProgramFiles(x86)%\搜狐影音\shtooltip.dll
%ProgramFiles(x86)%\搜狐影音\shuploader.dll
%ProgramFiles(x86)%\搜狐影音\shuploadfile.dll
%ProgramFiles(x86)%\搜狐影音\shversion.dll
%ProgramFiles(x86)%\搜狐影音\codecs\real\sipr.dll
%ProgramFiles(x86)%\搜狐影音\sohuautodetector.dll
%ProgramFiles(x86)%\搜狐影音\sohudetector.dll
%ProgramFiles(x86)%\搜狐影音\sohuept.dll
%ProgramFiles(x86)%\搜狐影音\sohuplugin.dll
%ProgramFiles(x86)%\搜狐影音\sohutool.dll
%ProgramFiles(x86)%\搜狐影音\testspeedui.dll
%ProgramFiles(x86)%\搜狐影音\codecs\ts.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudv3\cloudv3.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudv3\datastorage.db
%ProgramFiles(x86)%\搜狐影音\shudptool.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravdefdb\mondef.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudv3\userdata.rstray
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudv3\userdata.mond
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\64\sysmon.sys
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_hover.png.r27661
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\sysmon_if.dll
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_link.png.r27661
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_active.png.r28001
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_hover.png.r28001
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\sysmon.sys
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\64\rsutils.sys
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_link.png.r28001
%ProgramFiles(x86)%\搜狐影音\网址大全.url
%ProgramFiles(x86)%\搜狐影音\高清热播影视剧.url
%ProgramFiles(x86)%\搜狐影音\codecs\realmediasplitter.ax
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\rsutils.sys
%ProgramFiles(x86)%\搜狐影音\codecs\matroskasplitter.ax
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\i_no_active.png.r27661
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\64\rsndisp.sys
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\kguard_if.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\kguard.sys
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\rsdll.dll.dat
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\hookbase.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\license\12345678.000
%ProgramFiles(x86)%\rising\rsd\backup\rav\license\license.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\mscrt9\atl90.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\mscrt9\microsoft.vc90.atl.manifest
%ProgramFiles(x86)%\rising\rsd\backup\rav\mscrt9\microsoft.vc90.crt.manifest
%ProgramFiles(x86)%\rising\rsd\backup\rav\mscrt9\msvcp90.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\rsutils_if.dll
%ProgramFiles(x86)%\搜狐影音\codecs\mpegsplitter.ax
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\rsndisp.sys
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\hookbase.dll
%ProgramFiles(x86)%\搜狐影音\codecs\mp4splitter.ax
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\mkv.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_stick_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\mp4.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\rmvb.ico
%ProgramFiles(x86)%\搜狐影音\sogou.ico
%ProgramFiles(x86)%\搜狐影音\sohu.ico
%ProgramFiles(x86)%\rising\rsd\backup\rav\_rav\setup.xml
%ProgramFiles(x86)%\搜狐影音\uninstall.ico
%ProgramFiles(x86)%\rising\rsd\backup\rav\_rav\_rav.xml
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\wmv.ico
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\focus.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscfg\rscfg.dll
%ProgramFiles(x86)%\搜狐影音\plugin.xml
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\error.html
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\thumbs.db
%ProgramFiles(x86)%\搜狐影音\skin\default\player\icon\mov.ico
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscfg\rscfg.xml
%ProgramFiles(x86)%\搜狐影音\videolib.db
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudqry\cloudsta.dll
%ProgramFiles(x86)%\搜狐影音\codecs\audioswitcher.ax
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudqry\cloudnet.dll
%ProgramFiles(x86)%\搜狐影音\codecs\coreaac.ax
%ProgramFiles(x86)%\搜狐影音\codecs\coreavc.ax
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudqry\rscurl.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudqry\rsnscfg.dat
%ProgramFiles(x86)%\搜狐影音\codecs\ffdshow.ax
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudqry\cloudqry.xml
%ProgramFiles(x86)%\搜狐影音\codecs\flvsplitter.ax
%ProgramFiles(x86)%\rising\rsd\backup\rav\hookbase\mondrv.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\mscrt9\msvcr90.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudqry\cloudqry.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\mscrt9\mscrt9.xml
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_stick_pressed.png
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsdk\procenv.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsdk\comx3.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravconfig\mergexml.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravconfig\ravconfig.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravlog\rslog.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravlog\ravlog.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravmaindui\rsmain.exe
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravmaindui\rsmain.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravmaindui\ravmaindui.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscomm\cnt09.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscomm\cnt08.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscomm\proccom.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\repairmanager.mondcoms
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscomm\proccomm.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscomm\moncom08.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravconfig\ravcfg.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscomm\rscommx2.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscomm\rsbasenetwrapper.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscomm\rscomm.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravxp\ravxp.exe
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravxp\ravxp.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudv3\cloudv3.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudv3\localopt.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudv3\cloudstore.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudv3\cloudwork.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudv3\dataups.dat
%ProgramFiles(x86)%\rising\rsd\backup\rav\cloudv3\cloudnotifier.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscomm\syslay.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\repairmanager.mond
%ProgramFiles(x86)%\搜狐影音\codecs\splitter.ax
%ProgramFiles(x86)%\rising\rsd\backup\rav\rscomm\rssqlite.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\ravbase.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\rssmall.bmp
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\pngdll.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsdk\rsxml3w.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsdk\rsxml3a.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsdk\rsdk.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravmon\mond.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravmon\mondcoms.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravmon\ravmon.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\monbasedui\rscombas.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\monbasedui\moncomm.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\monbasedui\rssrv.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\monbasedui\ravmond.exe
%ProgramFiles(x86)%\rising\rsd\backup\rav\monbasedui\monbasedui.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\rav936\lics936.txt
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsdk\dfw.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rav936\chs.lag
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\ravsetup.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\rstray.ico
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\rising.ico
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\rsmain.ico
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\rav.ico
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\logac.bmp
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\logdc.bmp
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\rstask.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\setup.dat
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\url.ini
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\repair.url
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\rspalvd.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsdk\rscom.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\rav936\rav936.xml
%ProgramFiles(x86)%\rising\rsd\backup\rav\rsdk\traywnd.dll
%ProgramFiles(x86)%\rising\rsd\backup\rav\ravbase\repairmanager.dll
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_stick_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_speedshow_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_speedshow_normal.png
%TEMP%\rav.cfg
%TEMP%\rav.cfg.tmp
%APPDATA%\baidu\baidupinyin\rpt.dat
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\os.xml
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rslang.dll
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsappmgr.dll
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\cfgdll.dll
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\setup.exe
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\updater.exe
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsstub.exe
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsmgrsvc.exe
%TEMP%\rsdsfxtmp\hookbase\sysmon.sys
%TEMP%\rsdsfxtmp\hookbase\64\sysmon.sys
%TEMP%\rsdsfxtmp\install1078565.exe.log
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsbackup.exe
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\protreg.sys
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\update.xml
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsdinfo.dll
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsd936\chs.lag
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsd950\cht.lag
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsd1252\eng.lag
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsd932\jpn.lag
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\popwndexe.exe
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\localopt.dll
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsmginfo.dll
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rsdk.dll
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\setup.dat
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\comx3.dll
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\syslay.dll
%LOCALAPPDATA%\temp尰\sohuva_installer.7z
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\ui\snin.htm
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rstoredll.dll
%TEMP%\rsdsfxtmp\rsdk\rscom.dll
%TEMP%\rsdsfxtmp\monbasedui\rscombas.dll
%TEMP%\rsdsfxtmp\rscomm\rscommx2.dll
%TEMP%\rsdsfxtmp\cloudqry\rscurl.dll
%TEMP%\rsdsfxtmp\rsdinfo.dll
%TEMP%\rsdsfxtmp\rsdk.dll
%TEMP%\rsdsfxtmp\rslang.dll
%TEMP%\rsdsfxtmp\ravlog\rslog.dll
%TEMP%\rsdsfxtmp\ravmaindui\rsmain.dll
%TEMP%\rsdsfxtmp\rsmginfo.dll
%TEMP%\rsdsfxtmp\ravbase\rspalvd.dll
%TEMP%\rsdsfxtmp\hookbase\rsutils.sys
%TEMP%\rsdsfxtmp\rscomm\rsbasenetwrapper.dll
%TEMP%\rsdsfxtmp\hookbase\64\rsutils.sys
%TEMP%\rsdsfxtmp\rscomm\rssqlite.dll
%TEMP%\rsdsfxtmp\rsdk\rsxml3a.dll
%TEMP%\rsdsfxtmp\rsdk\rsxml3w.dll
%TEMP%\rsdsfxtmp\rsmondef\selfmon.dll
%TEMP%\rsdsfxtmp\syslay.dll
%TEMP%\rsdsfxtmp\rscomm\syslay.dll
%TEMP%\rsdsfxtmp\hookbase\sysmon_if.dll
%TEMP%\rsdsfxtmp\rsdk\traywnd.dll
%TEMP%\rsdsfxtmp\hookbase\kguard.sys
%TEMP%\rsdsfxtmp\protreg.sys
%TEMP%\rsdsfxtmp\hookbase\64\rsndisp.sys
%TEMP%\rsdsfxtmp\hookbase\rsndisp.sys
%TEMP%\rsdsfxtmp\monbasedui\rssrv.dll
%TEMP%\rsdsfxtmp\rstoredll.dll
%TEMP%\rsdsfxtmp\hookbase\rsutils_if.dll
%ProgramFiles(x86)%\rising\rsd\backup\rsd\rssetup\rssetup.xml
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\main.swf
%TEMP%\rludahf.jpg
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\playerstop.swf
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\ranking.swf
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\sohuspecialty.swf
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\bottom_center.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\bottom_left.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\menu\bottom_right.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\bp.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_1x_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_1x_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_1x_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\gugao.swf
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_1x_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_2x_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\playerloading.swf
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_2x_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_addtap_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_addtap_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_afv_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_afv_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_afv_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_checkbox_checked_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_checkbox_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_clearlist_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_clearlist_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_clearlist_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_2x_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\generalloading2.swf
%TEMP%\sohuva_4.2.0.16-c204900003-ng-nti-tp-s-x.exe
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_2x_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\network_off.swf
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\generalloading.swf
%ProgramFiles(x86)%\rising\rsd\rsmgrsvc.ini
%ProgramFiles(x86)%\rising\rsd\rsappmgr.dll
%ProgramFiles(x86)%\rising\rsd\cfgdll.dll
%ProgramFiles(x86)%\rising\rsd\setup.exe
%ProgramFiles(x86)%\rising\rsd\updater.exe
%ProgramFiles(x86)%\rising\rsd\rsstub.exe
%ProgramFiles(x86)%\rising\rsd\rsmgrsvc.exe
%ProgramFiles(x86)%\搜狐影音\sohu.cfg
%ProgramFiles(x86)%\rising\rsd\rsbackup.exe
%ProgramFiles(x86)%\rising\rsd\setup.dat
%ProgramFiles(x86)%\rising\rsd\comx3.dll
%ProgramFiles(x86)%\rising\rsd\syslay.dll
%ProgramFiles(x86)%\rising\rsd\update.xml
%ProgramFiles(x86)%\rising\rsd\rslang.dll
%ProgramFiles(x86)%\rising\rsd\rsdinfo.dll
%TEMP%\kinst_1_329.exe
%ProgramFiles(x86)%\rising\rsd\rsd950\cht.lag
%ProgramFiles(x86)%\rising\rsd\rsd1252\eng.lag
%ProgramFiles(x86)%\rising\rsd\rsd932\jpn.lag
%ProgramFiles(x86)%\rising\rsd\popwndexe.exe
%ProgramFiles(x86)%\rising\rsd\localopt.dll
%ProgramFiles(x86)%\rising\rsd\rsmginfo.dll
%ProgramFiles(x86)%\rising\rsd\rsdk.dll
%ProgramFiles(x86)%\rising\rsd\ui\snin.htm
%ProgramFiles(x86)%\rising\rsd\rstoredll.dll
%ProgramFiles(x86)%\搜狐影音\skin\default\loading\dlnaconnecting.swf
%ProgramFiles(x86)%\rising\rsd\xmls\rssetup.xml
%TEMP%\rsdsfxtmp\rsappmgr.dll
%ProgramFiles(x86)%\rising\rsd\rsd936\chs.lag
%ProgramFiles(x86)%\rising\rsd\os.xml
%TEMP%\rsdsfxtmp\rscfg\rscfg.dll
%TEMP%\rsdsfxtmp\ravbase\repairmanager.dll
%ALLUSERSPROFILE%\baidu\common\global.db
%TEMP%\rsdsfxtmp\ravbase\setup.dat
%TEMP%\rsdsfxtmp\ravbase\ravbase.xml
%TEMP%\rsdsfxtmp\ravconfig\ravcfg.xml
%TEMP%\rsdsfxtmp\ravconfig\ravconfig.xml
%TEMP%\rsdsfxtmp\ravdefdb\ravdefdb.xml
%TEMP%\rsdsfxtmp\ravlog\ravlog.xml
%TEMP%\rsdsfxtmp\ravmaindui\ravmaindui.xml
%TEMP%\rsdsfxtmp\ravmon\ravmon.xml
%TEMP%\rsdsfxtmp\ravxp\ravxp.xml
%TEMP%\rsdsfxtmp\rscfg\rscfg.xml
%TEMP%\rsdsfxtmp\rscomm\rscomm.xml
%TEMP%\rsdsfxtmp\rsdk\rsdk.xml
%TEMP%\rsdsfxtmp\mscrt9\mscrt9.xml
%TEMP%\rsdsfxtmp\ravmon\mond.xml
%TEMP%\rsdsfxtmp\rav936\rav936.xml
%TEMP%\rsdsfxtmp\rsmondef\rsmondef.xml
%TEMP%\rsdsfxtmp\update.xml
%TEMP%\rsdsfxtmp\_rav\_rav.xml
%TEMP%\rsdsfxtmp\ui\snin.htm
%TEMP%\rsdsfxtmp\rav936\lics936.txt
%TEMP%\rsdsfxtmp\auto.ini
%TEMP%\rsdsfxtmp\ravbase\url.ini
%TEMP%\rsdsfxtmp\cloudv3\datastorage.db
%TEMP%\rsdsfxtmp\license\12345678.000
%TEMP%\rsdsfxtmp\rsmondef\bawhite.dat
%TEMP%\rsdsfxtmp\cloudv3\dataups.dat
%TEMP%\rsdsfxtmp\label.dat
%TEMP%\rsdsfxtmp\rssetup.xml
%TEMP%\rsdsfxtmp\ravbase\rstask.xml
%TEMP%\rsdsfxtmp\_rav\setup.xml
%TEMP%\rsdsfxtmp\ravmon\mondcoms.xml
%TEMP%\rsdsfxtmp\monbasedui\monbasedui.xml
%TEMP%\rsdsfxtmp\hookbase\rsdll.dll.dat
%TEMP%\rlvivl5.jpg
%TEMP%\tbbrzfqhpq_1202000033.exe
%TEMP%\nsj9bf2.tmp
%TEMP%\nsj9bf3.tmp\res\onlinewnd.zip
%TEMP%\rlvmya2.jpg
%TEMP%\nsj9bf3.tmp\bdmskin.dll
%TEMP%\nsj9bf3.tmp\bdmgetnetinfo.dll
%TEMP%\nsj9bf3.tmp\bdmpesde.dll
%TEMP%\nsj9bf3.tmp\report.dll
%TEMP%\nsj9bf3.tmp\protocol.dll
%TEMP%\nsj9bf3.tmp\imeminisetupexe.dll
%TEMP%\install1078565.exe
%TEMP%\r2ashwm.jpg
%TEMP%\rlpiu6w.jpg
%TEMP%\rsdsfxtmp\rav.7z
%TEMP%\rsdsfxtmp\ravbase\logdc.bmp
%TEMP%\rsdsfxtmp\ravbase\rssmall.bmp
%TEMP%\rsdsfxtmp\ravbase\rav.ico
%TEMP%\rsdsfxtmp\ravbase\rising.ico
%TEMP%\rsdsfxtmp\ravbase\rsmain.ico
%TEMP%\rsdsfxtmp\ravbase\rstray.ico
%TEMP%\rsdsfxtmp\mscrt9\microsoft.vc90.atl.manifest
%TEMP%\rsdsfxtmp\mscrt9\microsoft.vc90.crt.manifest
%TEMP%\rsdsfxtmp\cloudqry\cloudqry.xml
%TEMP%\rsdsfxtmp\cloudv3\cloudv3.xml
%TEMP%\rsdsfxtmp\custom.xml
%TEMP%\rsdsfxtmp\hookbase\hookbase.xml
%TEMP%\rsdsfxtmp\license\license.xml
%TEMP%\rsdsfxtmp\ravbase\logac.bmp
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_clearlist_pressed.png
%LOCALAPPDATA%\microsoft\windows\history\history.ie5\mshist012022060320220604\index.dat
%TEMP%\rsdsfxtmp\cloudqry\rsnscfg.dat
%TEMP%\rsdsfxtmp\ravdefdb\uprsuser.dat
%TEMP%\rsdsfxtmp\cloudv3\cloudstore.dll
%TEMP%\rsdsfxtmp\cloudv3\cloudv3.dll
%TEMP%\rsdsfxtmp\cloudv3\cloudwork.dll
%TEMP%\rsdsfxtmp\rscomm\cnt08.dll
%TEMP%\rsdsfxtmp\rscomm\cnt09.dll
%TEMP%\rsdsfxtmp\comx3.dll
%TEMP%\rsdsfxtmp\rsdk\comx3.dll
%TEMP%\rsdsfxtmp\rsmondef\defmon.dll
%TEMP%\rsdsfxtmp\rsdk\dfw.dll
%TEMP%\rsdsfxtmp\hookbase\hookbase.dll
%TEMP%\rsdsfxtmp\hookbase\kguard_if.dll
%TEMP%\rsdsfxtmp\cloudv3\cloudnotifier.dll
%TEMP%\rsdsfxtmp\localopt.dll
%TEMP%\rsdsfxtmp\cloudqry\cloudsta.dll
%TEMP%\rsdsfxtmp\ravconfig\mergexml.dll
%TEMP%\rsdsfxtmp\monbasedui\moncomm.dll
%TEMP%\rsdsfxtmp\ravdefdb\mondef.dll
%TEMP%\rsdsfxtmp\hookbase\mondrv.dll
%TEMP%\rsdsfxtmp\rsmondef\monrule.dll
%TEMP%\rsdsfxtmp\mscrt9\msvcp90.dll
%TEMP%\rsdsfxtmp\mscrt9\msvcr90.dll
%TEMP%\rsdsfxtmp\ravbase\pngdll.dll
%TEMP%\rsdsfxtmp\rscomm\proccom.dll
%TEMP%\rsdsfxtmp\rscomm\proccomm.dll
%TEMP%\rsdsfxtmp\rsdk\procenv.dll
%TEMP%\rsdsfxtmp\ravbase\ravsetup.dll
%TEMP%\rsdsfxtmp\cloudv3\localopt.dll
%TEMP%\rsdsfxtmp\os.xml
%TEMP%\rsdsfxtmp\rscomm\moncom08.dll
%TEMP%\rsdsfxtmp\cloudqry\cloudqry.dll
%TEMP%\rsdsfxtmp\cloudqry\cloudnet.dll
%TEMP%\rsdsfxtmp\cfgdll.dll
%TEMP%\rsdsfxtmp\ravdefdb\rsmon.db1
%TEMP%\rsdsfxtmp\ravdefdb\rsuser.db1
%TEMP%\rsdsfxtmp\compsver.inf
%TEMP%\rsdsfxtmp\rsd936\chs.lag
%TEMP%\rsdsfxtmp\rav936\chs.lag
%TEMP%\rsdsfxtmp\rsd950\cht.lag
%TEMP%\rsdsfxtmp\rsd1252\eng.lag
%TEMP%\rsdsfxtmp\rsd932\jpn.lag
%TEMP%\rsdsfxtmp\rsmondef\adefmon.mond
%TEMP%\rsdsfxtmp\rsmondef\x64\adefmon.mond
%TEMP%\rsdsfxtmp\ravbase\repairmanager.mond
%TEMP%\rsdsfxtmp\cloudv3\userdata.mond
%TEMP%\rsdsfxtmp\ravdefdb\uprsmon.dat
%TEMP%\rsdsfxtmp\ravbase\repairmanager.mondcoms
%TEMP%\rsdsfxtmp\ravbase\repair.url
%TEMP%\rsdsfxtmp\popwndexe.exe
%TEMP%\rsdsfxtmp\monbasedui\ravmond.exe
%TEMP%\rsdsfxtmp\ravxp\ravxp.exe
%TEMP%\rsdsfxtmp\rsbackup.exe
%TEMP%\rsdsfxtmp\ravmaindui\rsmain.exe
%TEMP%\rsdsfxtmp\rsmgrsvc.exe
%TEMP%\rsdsfxtmp\rsstub.exe
%TEMP%\rsdsfxtmp\setup.exe
%TEMP%\rsdsfxtmp\updater.exe
%TEMP%\rsdsfxtmp\rsmondef\antipromotionmon.dll
%TEMP%\rsdsfxtmp\mscrt9\atl90.dll
%TEMP%\rsdsfxtmp\rsmondef\bacore.dll
%TEMP%\rsdsfxtmp\cloudv3\userdata.rstray
%TEMP%\rsdsfxtmp\rsmondef\bawhite.dll
%TEMP%\rsdsfxtmp\setup.dat
%ProgramFiles(x86)%\搜狐影音\codecs\vsfilter.dll
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_clmsg_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_close_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_previous_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_printscreen_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_pushset_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_pushset_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_pushset_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_radio_commonchecked_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_radio_common_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_refresh_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_refresh_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_refresh_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_refresh_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_previous_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_resotre_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_previous_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_resotre_hover_top.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_resotre_normal_top.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_resotre_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_resotre_pressed_top.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_restore_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_restore_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_restore_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_retframevib_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_retframevib_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_retframevib_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_retframevib_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_retry_h.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_resotre_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_retry_p.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_resotre_normal.png
%ProgramFiles(x86)%\rstest.ini
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_previous_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_preload_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_operating_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_operating_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_operating_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_pause_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_pause_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_pause_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_pause_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_pause_nor.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_pause_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_pause_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_preload_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_open_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_pause_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_retry_n.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_playerminus_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_playerminus_pressedl.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_play_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_play_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_play_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_play_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_play_nor.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_play_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_play_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_play_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_preload_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_playeradd_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_playeradd_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_preload_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_playerminus_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_retshow_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_showmainctrl_hoverl.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_reverse_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_showtree_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_showtree_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_shutdownset_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_shutdownset_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_shutdownset_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_shutdownset_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_sliderval_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_sliderval_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_smartset_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_smartset_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_showmainctrl_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_smartset_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_soundadd_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_showtree_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_soundadd_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_soundless_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_soundless_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_sound_forbidden_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_sound_forbidden_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_sound_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_sound_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_speedhide_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_speedhide_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_speedhide_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_speedshow_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_soundadd_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_showconsole_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_retshow_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_soundless_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_showmainctrl_normal.png
%ProgramFiles(x86)%\rising\rsd\rsmgrsvc.exe.log
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_showconsole_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_reverse_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_reverse_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_rotate_left_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_rotate_left_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_rotate_left_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_rotate_left_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_rotate_right_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_rotate_right_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_rotate_right_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_rotate_right_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_searchclosenormal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_searchclosepressed..png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_reverse_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_searchclose_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_settype_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_settype_sel.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_set_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_set_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_set_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_set_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_share_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_share_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_share_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_share_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_showconsole_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_showconsole_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_open_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_searchclose_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_retshow_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_operating_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_open_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_open_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_openfloder_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_down_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_down_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_dwdopenfloder_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_dwdopenfloder_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_dwdopenfloder_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_dwdplay_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_dwdplay_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_dwdplay_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_episode_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_episode_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_pause_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_pause_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_episode_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_down_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_exnode_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_exnode_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fast_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fast_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fast_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fast_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_finder_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_finder_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_finder_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_font_big_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_font_big_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_episode_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_exnode_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_clmsg_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_exnode_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_down_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_pause_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_delete_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_close_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_close_tips_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_close_tips_nor.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_common_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_common_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_common_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_common_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_corner_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_cycleplay_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_cycleplay_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_cycleplay_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_cycleplay_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_close_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_del_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_del_nor.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_del_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_downloadset_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_downloadset_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_downloadset_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_downloadset_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_begin_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_begin_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_begin_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_begin_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_delete_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_delete_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_delete_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_del_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_font_big_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_font_big_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_clmsg_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_font_smart_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_frametap_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_home_pre_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_home_pre_nor.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_livemessage_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_livemessage_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_livemessage_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_maintap_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_maintap_sel.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_max_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_max_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\window\btn_max_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_home_next_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_miniclose_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_minishow_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_home_pre_down.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_minishow_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_minishow_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_next_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_next_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_next_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_next_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_nv_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_nv_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_nv_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_openfloder_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_openfloder_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_miniclose_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_download_pause_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\upload\btn_openfloder_normal.png
%ProgramFiles(x86)%\rising\rsd\rsmgrsvc.dat
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_home_pre_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_home_next_nor.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_home_next_down.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_frametap_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_frametap_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fullshow_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fullshow_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fullshow_hover_top.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fullshow_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fullshow_normal_top.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fullshow_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_fullshow_pressed_top.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_gk_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_gk_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_font_smart_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\commonctl\btn_gk_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_gotop_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_gotop_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_gotop_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_hideconsole_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_hideconsole_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_hideconsole_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_hideconsole_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_hidetree_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_hidetree_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_hidetree_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_history_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_history_hover.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_history_normal.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_gotop_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_history_pressed.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\frames\btn_home_next_disable.png
%ProgramFiles(x86)%\搜狐影音\skin\default\player\centerconsole\btn_font_smart_pressed.png
%WINDIR%\syswow64\config\systemprofile\appdata\roaming\microsoft\windows\ietldcache\index.dat

Deletes the following files

%TEMP%\rsdsfxtmp\rav.7z
%TEMP%\rsdsfxtmp\ravmon\mondcoms.xml
%TEMP%\rsdsfxtmp\ravmon\ravmon.xml
%TEMP%\rsdsfxtmp\ravxp\ravxp.exe
%TEMP%\rsdsfxtmp\ravxp\ravxp.xml
%TEMP%\rsdsfxtmp\rsappmgr.dll
%TEMP%\rsdsfxtmp\rsbackup.exe
%TEMP%\rsdsfxtmp\rscfg\rscfg.dll
%TEMP%\rsdsfxtmp\rscfg\rscfg.xml
%TEMP%\rsdsfxtmp\rscomm\cnt08.dll
%TEMP%\rsdsfxtmp\rscomm\cnt09.dll
%TEMP%\rsdsfxtmp\rscomm\moncom08.dll
%TEMP%\rsdsfxtmp\rscomm\proccom.dll
%TEMP%\rsdsfxtmp\rscomm\proccomm.dll
%TEMP%\rsdsfxtmp\rscomm\rsbasenetwrapper.dll
%TEMP%\rsdsfxtmp\rscomm\rscomm.xml
%TEMP%\rsdsfxtmp\ravmon\mond.xml
%TEMP%\rsdsfxtmp\rscomm\rscommx2.dll
%TEMP%\rsdsfxtmp\ravmaindui\rsmain.exe
%TEMP%\rsdsfxtmp\ravmaindui\ravmaindui.xml
%TEMP%\rsdsfxtmp\ravbase\rstask.xml
%TEMP%\rsdsfxtmp\ravbase\rstray.ico
%TEMP%\rsdsfxtmp\ravbase\setup.dat
%TEMP%\rsdsfxtmp\ravbase\url.ini
%TEMP%\rsdsfxtmp\ravconfig\mergexml.dll
%TEMP%\rsdsfxtmp\ravconfig\ravcfg.xml
%TEMP%\rsdsfxtmp\ravconfig\ravconfig.xml
%TEMP%\rsdsfxtmp\ravdefdb\mondef.dll
%TEMP%\rsdsfxtmp\ravdefdb\ravdefdb.xml
%TEMP%\rsdsfxtmp\ravdefdb\rsmon.db1
%TEMP%\rsdsfxtmp\ravdefdb\rsuser.db1
%TEMP%\rsdsfxtmp\ravdefdb\uprsmon.dat
%TEMP%\rsdsfxtmp\ravdefdb\uprsuser.dat
%TEMP%\rsdsfxtmp\ravlog\ravlog.xml
%TEMP%\rsdsfxtmp\ravlog\rslog.dll
%TEMP%\rsdsfxtmp\ravmaindui\rsmain.dll
%TEMP%\rsdsfxtmp\rscomm\rssqlite.dll
%TEMP%\rsdsfxtmp\rscomm\syslay.dll
%TEMP%\rsdsfxtmp\rsd1252\eng.lag
%TEMP%\rsdsfxtmp\rsmondef\defmon.dll
%TEMP%\rsdsfxtmp\rsmondef\monrule.dll
%TEMP%\rsdsfxtmp\rsmondef\rsmondef.xml
%TEMP%\rsdsfxtmp\rsmondef\selfmon.dll
%TEMP%\rsdsfxtmp\rsmondef\x64\adefmon.mond
%TEMP%\rsdsfxtmp\rssetup.xml
%TEMP%\rsdsfxtmp\_rav\setup.xml
%TEMP%\rsdsfxtmp\rsstub.exe
%TEMP%\rsdsfxtmp\setup.dat
%TEMP%\rsdsfxtmp\setup.exe
%TEMP%\rsdsfxtmp\syslay.dll
%TEMP%\rsdsfxtmp\ui\snin.htm
%TEMP%\rsdsfxtmp\update.xml
%TEMP%\rsdsfxtmp\updater.exe
%TEMP%\rsdsfxtmp\rsmondef\bawhite.dat
%TEMP%\rsdsfxtmp\rsmondef\bawhite.dll
%TEMP%\rsdsfxtmp\rsmondef\bacore.dll
%TEMP%\rsdsfxtmp\rsmondef\antipromotionmon.dll
%TEMP%\rsdsfxtmp\rsmondef\adefmon.mond
%TEMP%\rsdsfxtmp\rsd936\chs.lag
%TEMP%\rsdsfxtmp\rsd950\cht.lag
%TEMP%\rsdsfxtmp\rsdinfo.dll
%TEMP%\rsdsfxtmp\rsdk\comx3.dll
%TEMP%\rsdsfxtmp\rsdk\dfw.dll
%TEMP%\rsdsfxtmp\rsdk\procenv.dll
%TEMP%\rsdsfxtmp\ravbase\rssmall.bmp
%TEMP%\rsdsfxtmp\rsdk\rsdk.xml
%TEMP%\rsdsfxtmp\rsdk\rscom.dll
%TEMP%\rsdsfxtmp\rsdk\rsxml3w.dll
%TEMP%\rsdsfxtmp\rsdk\traywnd.dll
%TEMP%\rsdsfxtmp\rsdk.dll
%TEMP%\rsdsfxtmp\rslang.dll
%TEMP%\rsdsfxtmp\rsmginfo.dll
%TEMP%\rsdsfxtmp\rsmgrsvc.exe
%TEMP%\rsdsfxtmp\rsd932\jpn.lag
%TEMP%\rsdsfxtmp\rsdk\rsxml3a.dll
%TEMP%\rsdsfxtmp\rstoredll.dll
%TEMP%\rsdsfxtmp\ravbase\rspalvd.dll
%TEMP%\rsdsfxtmp\ravbase\rav.ico
%TEMP%\rsdsfxtmp\cloudv3\datastorage.db
%TEMP%\rsdsfxtmp\cloudv3\dataups.dat
%TEMP%\rsdsfxtmp\cloudv3\localopt.dll
%TEMP%\rsdsfxtmp\cloudv3\userdata.mond
%TEMP%\rsdsfxtmp\cloudv3\userdata.rstray
%TEMP%\rsdsfxtmp\compsver.inf
%TEMP%\rsdsfxtmp\comx3.dll
%TEMP%\rsdsfxtmp\custom.xml
%TEMP%\rsdsfxtmp\hookbase\64\rsndisp.sys
%TEMP%\rsdsfxtmp\hookbase\64\rsutils.sys
%TEMP%\rsdsfxtmp\hookbase\64\sysmon.sys
%TEMP%\rsdsfxtmp\hookbase\hookbase.dll
%TEMP%\rsdsfxtmp\hookbase\hookbase.xml
%TEMP%\rsdsfxtmp\hookbase\kguard.sys
%TEMP%\rsdsfxtmp\hookbase\kguard_if.dll
%TEMP%\rsdsfxtmp\cloudv3\cloudwork.dll
%TEMP%\rsdsfxtmp\hookbase\mondrv.dll
%TEMP%\rsdsfxtmp\cloudv3\cloudv3.xml
%TEMP%\rsdsfxtmp\cloudv3\cloudstore.dll
%ProgramFiles(x86)%\rstest.ini
%TEMP%\rav.cfg
%TEMP%\nsj9bf3.tmp\bdmpesde.dll
%TEMP%\nsj9bf3.tmp\report.dll
%TEMP%\nsj9bf3.tmp\protocol.dll
%TEMP%\rspcver12.xml
%TEMP%\rsdsfxtmp\auto.ini
%TEMP%\rsdsfxtmp\cfgdll.dll
%TEMP%\rsdsfxtmp\cloudqry\cloudnet.dll
%TEMP%\rsdsfxtmp\cloudqry\cloudqry.dll
%TEMP%\rsdsfxtmp\cloudqry\cloudqry.xml
%TEMP%\rsdsfxtmp\cloudqry\cloudsta.dll
%TEMP%\rsdsfxtmp\cloudqry\rscurl.dll
%TEMP%\rsdsfxtmp\cloudqry\rsnscfg.dat
%TEMP%\rsdsfxtmp\cloudv3\cloudnotifier.dll
%TEMP%\rsdsfxtmp\cloudv3\cloudv3.dll
%TEMP%\rsdsfxtmp\hookbase\rsdll.dll.dat
%TEMP%\rsdsfxtmp\hookbase\rsndisp.sys
%TEMP%\rsdsfxtmp\hookbase\rsutils.sys
%TEMP%\rsdsfxtmp\protreg.sys
%TEMP%\rsdsfxtmp\rav936\chs.lag
%TEMP%\rsdsfxtmp\rav936\lics936.txt
%TEMP%\rsdsfxtmp\rav936\rav936.xml
%TEMP%\rsdsfxtmp\ravbase\logac.bmp
%TEMP%\rsdsfxtmp\ravbase\logdc.bmp
%TEMP%\rsdsfxtmp\ravbase\rising.ico
%TEMP%\rsdsfxtmp\ravbase\pngdll.dll
%TEMP%\rsdsfxtmp\ravbase\ravbase.xml
%TEMP%\rsdsfxtmp\ravbase\ravsetup.dll
%TEMP%\rsdsfxtmp\ravbase\repair.url
%TEMP%\rsdsfxtmp\ravbase\repairmanager.dll
%TEMP%\rsdsfxtmp\ravbase\repairmanager.mond
%TEMP%\rsdsfxtmp\ravbase\repairmanager.mondcoms
%TEMP%\rsdsfxtmp\os.xml
%TEMP%\rsdsfxtmp\popwndexe.exe
%TEMP%\rsdsfxtmp\mscrt9\msvcr90.dll
%TEMP%\rsdsfxtmp\mscrt9\msvcp90.dll
%TEMP%\rsdsfxtmp\mscrt9\mscrt9.xml
%TEMP%\rsdsfxtmp\hookbase\sysmon.sys
%TEMP%\rsdsfxtmp\hookbase\sysmon_if.dll
%TEMP%\rsdsfxtmp\install1078565.exe.log
%TEMP%\rsdsfxtmp\label.dat
%TEMP%\rsdsfxtmp\license\12345678.000.bak
%TEMP%\rsdsfxtmp\license\license.xml
%TEMP%\rsdsfxtmp\ravbase\rsmain.ico
%TEMP%\rsdsfxtmp\monbasedui\monbasedui.xml
%TEMP%\rsdsfxtmp\localopt.dll
%TEMP%\rsdsfxtmp\monbasedui\ravmond.exe
%TEMP%\rsdsfxtmp\monbasedui\rscombas.dll
%TEMP%\rsdsfxtmp\monbasedui\rssrv.dll
%TEMP%\rsdsfxtmp\mscrt9\atl90.dll
%TEMP%\rsdsfxtmp\mscrt9\microsoft.vc90.atl.manifest
%TEMP%\rsdsfxtmp\mscrt9\microsoft.vc90.crt.manifest
%TEMP%\rsdsfxtmp\hookbase\rsutils_if.dll
%TEMP%\rsdsfxtmp\monbasedui\moncomm.dll
%TEMP%\rsdsfxtmp\_rav\_rav.xml

Moves the following files

from %TEMP%\rsdsfxtmp\license\12345678.000 to %TEMP%\rsdsfxtmp\license\12345678.000.bak
from %TEMP%\rav.cfg to %TEMP%\rav.cfg.bak
from %ProgramFiles(x86)%\搜狐影音\360inst_sohuyy.exe to %TEMP%\360inst_sohuyy.exe
from %TEMP%\rspcver12.xml.rs to %TEMP%\rspcver12.xml

Modifies the following files

Substitutes the following files

%TEMP%\rsdsfxtmp\license\12345678.000
%TEMP%\rav.cfg
%TEMP%\rav.cfg.tmp

Network activity

Connects to

'in#.###ol.sina.com.cn':80
're#####r.hd.sohu.com':80
'p2#.##.sohu.com.cn':80
'cl###.#d.sohu.com.cn':80
'pl.##.sohu.com':80
'so##.com':80
'cl###.rising.com.cn':80
'di#####h.hd.sohu.com':80
'co####.i.duba.net':80
'rs####.rising.com.cn':80
'ce####.rising.com.cn':80
'12#.#5.104.133':80
'ww#.#inaimg.cn':80
't.#n':80
'pv.#ohu.com':80
'in###0.duba.net':80
'22#.#81.90.44':80

TCP

HTTP GET requests

http://pv.#ohu.com/cityjson
http://cl###.#d.sohu.com.cn/ifox.gif?ty##########################################################################################################################################################...
http://pl.##.sohu.com/sohuva_rollmsg?en############
http://ce####.rising.com.cn/urg.asp?v=##
http://cl###.rising.com.cn/productstat/productStat.aspx?in#######################################################################################################################################...
http://rs####.rising.com.cn/rs2012/RsPcVer12.xml
http://ww#.#inaimg.cn/large/7185bdf1gw1es77si01scj20dw06dhdz.jpg
http://t.#n/R2ZWjsD
http://ww#.#inaimg.cn/images/default_d_w_large.gif
http://ww#.#inaimg.cn/large/7185bdf1gw1etsyl356mqj20jb05zb29.jpg
http://t.#n/RLAcowy
http://ww#.#inaimg.cn/large/7185bdf1gw1etxryfd307j20go0d9qkw.jpg
http://rs####.rising.com.cn/Register/OnlineHelper/ForLog/ForLogDeve.aspx?In######################################################################################################################...
http://ce####.rising.com.cn/LogCenter.asp?in#####################################################################################################################################################...
http://t.#n/RLUDAHF
http://ww#.#inaimg.cn/large/7185bdf1gw1es8mf9rfd4j20go090e8f.jpg
http://t.#n/R2AShwm
http://ww#.#inaimg.cn/large/7185bdf1gw1etl88ti65fj20eq04qe84.jpg
http://t.#n/RLvMya2
http://12#.#5.104.133/ZmZlYnR5cC5leGU=/40.html
http://ww#.#inaimg.cn/large/7185bdf1gw1etl9sypm9ej20740747wh.jpg
http://t.#n/RLviVL5
http://t.#n/RLPiu6w
http://t.#n/RLPinz9
http://p2#.##.sohu.com.cn/dcs.do?ty##############################################################################################################################################################...
http://cl###.#d.sohu.com.cn/BHOConfig.xml

HTTP POST requests

http://ce####.rising.com.cn/register/minicenter/e/r.aspx

Other

're#####r.hd.sohu.com':80
'di#####h.hd.sohu.com':80

UDP

DNS ASK in#.###ol.sina.com.cn
DNS ASK di#####h.hd.sohu.com
DNS ASK p2#.##.sohu.com.cn
DNS ASK cl###.#d.sohu.com.cn
DNS ASK pl.##.sohu.com
DNS ASK so##.com
DNS ASK cl###.rising.com.cn
DNS ASK co####.i.duba.net
DNS ASK re#####r.hd.sohu.com
DNS ASK da###.iruixing.com
DNS ASK rs####.rising.com.cn
DNS ASK ce####.rising.com.cn
DNS ASK d.#.#aidu.com
DNS ASK p.#.#aidu.com
DNS ASK ww#.#inaimg.cn
DNS ASK t.#n
DNS ASK pv.#ohu.com
DNS ASK in###0.duba.net
DNS ASK se####.vrs.sohu.com

Miscellaneous

Searches for the following windows

ClassName: 'BaiduPinyinOnLineWnd' WindowName: ''
ClassName: '{0A376DB5-640F-47ef-B475-39C0A409FCC6}' WindowName: ''

Creates and executes the following

'%ProgramFiles(x86)%\搜狐影音\fileassociationstool.exe' /ModifyTaskbar "%APPDATA%\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\搜狐影音.lnk"
'%ProgramFiles(x86)%\rising\rsd\rsmgrsvc.exe'
'%ProgramFiles(x86)%\搜狐影音\fileassociationstool.exe' /TIFOX
'%ProgramFiles(x86)%\搜狐影音\fileassociationstool.exe' /ModifyMainShortcut
'%ProgramFiles(x86)%\搜狐影音\fileassociationstool.exe' /EnableAutoRun
'%ProgramFiles(x86)%\搜狐影音\fileassociationstool.exe' /InstallSuccess 0
'%ProgramFiles(x86)%\搜狐影音\fileassociationstool.exe' /PreventPinning "%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\搜狐影音\卸载搜狐影音.lnk"
'%ProgramFiles(x86)%\搜狐影音\shres.exe' /RegServer
'%ProgramFiles(x86)%\rising\rsd\popwndexe.exe'
'%ProgramFiles(x86)%\搜狐影音\fileassociationstool.exe' /F
'%ProgramFiles(x86)%\搜狐影音\fileassociationstool.exe' /ChangeSohuVARunToSHplayerRun
'%ProgramFiles(x86)%\搜狐影音\shplayer.exe' /auto
'%ProgramFiles(x86)%\搜狐影音\sohuva.exe'
'%TEMP%\sohuva_4.2.0.16-c204900003-ng-nti-tp-s-x.exe'
'%ProgramFiles(x86)%\搜狐影音\shres.exe' -Embedding
'%TEMP%\install1078565.exe'
'%TEMP%\kinst_1_329.exe'
'%ProgramFiles(x86)%\搜狐影音\fileassociationstool.exe' /ReleaseSWF
'%TEMP%\tbbrzfqhpq_1202000033.exe'
'%TEMP%\qqpcdownload72805.exe' ' (with hidden window)
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\2345Explorer_329241_silence.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\2345Explorer_329241_silence.exe' (with hidden window)
'%TEMP%\2345explorer_329241_silence.exe' ' (with hidden window)
'%TEMP%\kele2014beta3.6.2promote0326_20090195130.exe' ' (with hidden window)
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\F0608_s_31250.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\F0608_s_31250.exe' (with hidden window)
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\jabvst.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\jabvst.exe' (with hidden window)
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\install1078565.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\install1078565.exe' (with hidden window)
'%TEMP%\sohuva_4.2.0.16-c204900003-ng-nti-tp-s-x.exe' ' (with hidden window)
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\SoHuVA_4.2.0.16-c204900003-ng-nti-tp-s-x.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\SoHuVA_4.2.0.16-c204900003-ng-nti-tp-s-x.exe' (with hidden window)
'%TEMP%\install1078565.exe' ' (with hidden window)
'%TEMP%\tbbrzfqhpq_1202000033.exe' ' (with hidden window)
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\tbbrzfqhpq_1202000033.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\tbbrzfqhpq_1202000033.exe' (with hidden window)
'%TEMP%\kinst_1_329.exe' ' (with hidden window)
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\KeLe2014Beta3.6.2Promote0326_20090195130.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\KeLe2014Beta3.6.2Promote0326_20090195130.exe' (with hidden window)
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\V8._90237_20150703213256.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\V8._90237_20150703213256.exe' (with hidden window)

Executes the following

'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\F0608_s_31250.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\F0608_s_31250.exe
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\tbbrzfqhpq_1202000033.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\tbbrzfqhpq_1202000033.exe
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\install1078565.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\install1078565.exe
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\SoHuVA_4.2.0.16-c204900003-ng-nti-tp-s-x.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\SoHuVA_4.2.0.16-c204900003-ng-nti-tp-s-x.exe
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\jabvst.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\jabvst.exe
'%WINDIR%\syswow64\regsvr32.exe' /s "%ProgramFiles(x86)%\搜狐影音\SoHuAutoDetector.dll"
'%WINDIR%\syswow64\regsvr32.exe' /s "%ProgramFiles(x86)%\搜狐影音\SHUploadFile.dll"
'%WINDIR%\syswow64\regsvr32.exe' /s "%ProgramFiles(x86)%\搜狐影音\SohuDetector.dll"
'<SYSTEM32>\rundll32.exe' <SYSTEM32>\FirewallControlPanel.dll,ShowNotificationDialog /configure /ETOnly 0 /OnProfiles 6 /OtherAllowed 0 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 4 "%ProgramFiles(x86)%\搜狐影音\sohuva....
'<SYSTEM32>\regsvr32.exe' /s RavExt64.dll
'<SYSTEM32>\rundll32.exe' <SYSTEM32>\FirewallControlPanel.dll,ShowNotificationDialog /configure /ETOnly 0 /OnProfiles 6 /OtherAllowed 0 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 4 "%ProgramFiles(x86)%\搜狐影音\shplaye...
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\2345Explorer_329241_silence.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\2345Explorer_329241_silence.exe
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\KeLe2014Beta3.6.2Promote0326_20090195130.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\KeLe2014Beta3.6.2Promote0326_20090195130.exe
'%WINDIR%\syswow64\net.exe' start GuaGua-Service
'%WINDIR%\syswow64\cmd.exe' /c copy/b %TEMP%\V8._90237_20150703213256.exe+%WINDIR%\Fonts\simsun.ttc %TEMP%\V8._90237_20150703213256.exe
'%WINDIR%\syswow64\net1.exe' start GuaGua-Service

Технології

Терміни

Навчання

Міфи

Technical Information

Рекомендации по лечению

Демо бесплатно на 14 дней