[CODE] 2008-11-08,23:51:56 SysLog Scanner 1.0 - build 20080726 Arswp (http://www.arswp.com) Windows XP Professional Service Pack 3 (build 2600) - Administrators ======================================== 注册项 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <"C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun> [Advanced Micro Devices, Inc., 1, 0, 0, 1, C:2008-01-21 12:17 M:2008-01-21 12:17] <"D:\Rising\Rav\RavTask.exe" -system> [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.23, C:2008-11-04 21:36 M:2008-11-04 21:44] <"D:\Rising\Rfw\rfwmain.exe" -Startup> [(Verified)Beijing Rising Technology Co., Ltd., 7.0.1.67, C:2008-11-04 21:38 M:2008-11-04 21:37] [(Verified)Realtek Semiconductor Corp., 2.1.8.7, C:2008-11-04 21:10 M:2008-01-29 15:47] [(Verified)Realtek Semiconductor Corp., 1.6.0.2, C:2008-11-04 21:10 M:2005-05-03 18:43] [ZSMCSNAP, 3, 6, 818, 7, C:2008-11-04 21:58 M:2006-08-19 11:37] <"C:\Program Files\Unlocker\UnlockerAssistant.exe"> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载] <> [N/A, C:2008-11-04 21:14 M:2008-06-13 09:55] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\使用迅雷下载全部链接] <> [N/A, C:2008-11-04 21:14 M:2008-06-13 09:55] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\导出到 Microsoft Office Excel(&X)] <> [] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\添加到QQ表情] <> [N/A, C:2008-09-17 04:08 M:2008-09-17 04:08] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] [(Verified)ATI Technologies Inc., 6.14.10.4177, C:2008-05-15 10:01 M:2008-05-15 10:01] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] [N/A, C:2008-07-13 15:15 M:2008-07-13 12:22] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-04-15 02:00|(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:14 M:2008-04-15 02:00|N/A, C:2008-07-13 15:15 M:2008-06-12 08:32] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-04-15 02:00|(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:14 M:2008-04-15 02:00|(Verified)N/A, C:2008-07-13 15:15 M:2008-04-15 02:00] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] <> [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-04-15 02:00|Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}] <启动迅雷5> [Thunder Networking Technologies,LTD, 5, 6, 8, 19, C:2008-11-04 21:14 M:2008-07-10 21:15] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors\Lenovo Network Port] [(Verified)Lexmark International, Inc., 8.16, C:2003-02-25 18:11 M:2003-02-25 18:11] ======================================== 启动项 [腾讯QQ] "D:\qq\QQ.exe" > [(Verified)TENCENT, 8,0,1249,1853, C:2007-09-17 14:53 M:2007-09-17 14:53] ======================================== 计划任务 ======================================== 组件 Shell Extension [Display Panning CPL Extension] {42071714-76d4-11d1-8b24-00a0c9068ff3} [] [HyperTerminal Icon Ext] {88895560-9AA2-1069-930E-00AA0030EBC8} [(Verified)Hilgraeve, Inc., 5.1.2600.0, C:2008-07-13 15:22 M:2008-04-15 02:00] [Microsoft Agent Character Property Sheet Handler] {143A62C8-C33B-11D1-84FE-00C04FA34A14} [Microsoft Corporation, 2.00.0.2115, C:1998-09-15 17:21 M:1998-09-15 17:21] [WinRAR shell extension] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2008-07-13 17:26 M:2007-09-23 18:59] [ShellLink for Application References] {e82a2d71-5b2f-43a0-97b8-81be15854de8} [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28] [Shell Icon Handler for Application References] {E37E2028-CE1A-4f42-AF05-6CEABC4E5D75} [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28] [Catalyst Context Menu extension] {5E2121EE-0300-11D4-8D3B-444553540000} [Copyright 2004, 2, 0, 0, 0, C:2008-02-12 12:50 M:2008-02-12 12:50] [RISING] {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.17, C:2008-11-04 21:36 M:2008-11-04 21:34] [UnlockerShellExtension] {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} [N/A, C:2008-11-08 23:16 M:2006-09-07 15:58] Protocols [Cor MIME Filter, CorFltr, CorFltr 1] {1E66F26B-79EE-11D2-8710-00C04F79ED0D} [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28] BrowserHelperObject [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-11-04 21:14 M:2008-06-13 09:43] ActiveX Extension [ThunderAtOnce Class] {01443AEC-0FD1-40FD-9C87-E93D1494C233} [(Verified)Thunder Networking Technologies,LTD, 1.0.5.29, C:2008-11-04 21:14 M:2008-06-13 09:43] [Thunder Agent Class] {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} [(Verified)Thunder Networking Technologies,LTD, 5, 0, 4, 23, C:2008-11-04 21:14 M:2008-06-13 09:43] [XMP Class] {6483F145-A768-4C41-AACC-52D4D7845851} [Copyright XunLei 2007, 2, 1, 2, 77, C:2008-11-04 21:14 M:2008-08-04 12:58] [XDRM] {693571CB-54A3-4E90-9D52-EEAE1334E2D3} [Copyright XunLei 2007, 1, 0, 0, 7, C:2008-11-04 21:14 M:2008-08-04 12:58] [StormPlayer Object] {6BE52E1D-E586-474F-A6E2-1A85A9B4D9FB} [(Verified)北京暴风网际科技有限公司, 3, 8, 10, 22, C:2008-03-25 15:10 M:2008-10-21 19:36] [MediaComm Class] {7670648D-461B-42AF-BDFE-46D26AF5EFF2} [Thunder Networking Technologies,LTD, 3, 1, 5, 78, C:2008-11-04 21:14 M:2008-07-01 15:27] [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-11-04 21:14 M:2008-06-13 09:43] [DapCtrl Class] {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} [ShenZhen Thunder Networking Technologies Ltd., 2, 1, 5803, 60, C:2008-11-07 17:28 M:2008-08-04 12:58] [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] [Thunder DapPlayer] {EEDD6FF9-13DE-496B-9A1C-D78B3215E266} [ShenZhen Thunder Networking Technologies Ltd., 3, 0, 5712, 71, C:2008-11-07 17:28 M:2008-08-04 12:58] [XPPlayer Class] {F3E70CEA-956E-49CC-B444-73AFE593AD7F} [Xunlei Networking Technologies,LTD, 2, 0, 0, 181, C:2008-11-07 17:28 M:2008-08-04 12:58] Context Menu [RisingRavExt] {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.17, C:2008-11-04 21:36 M:2008-11-04 21:34] [UnlockerShellExtension] {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} [N/A, C:2008-11-08 23:16 M:2006-09-07 15:58] [WinRAR] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [N/A, C:2008-07-13 17:26 M:2007-09-23 18:59] ======================================== 服务 [ATI Smart / ATI Smart][Stopped/Auto Start] [Copyright (C) 1998 - 2007 ATI Technologies Inc., 5.13.0027, C:2008-11-04 21:25 M:2008-05-14 21:05] [Human Interface Device Access / HidServ][Stopped/Disabled] <%SystemRoot%\System32\svchost.exe -k netsvcs --> "%SystemRoot%\System32\hidserv.dll"> [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:15 M:2008-04-15 02:00] [NetMeeting Remote Desktop Sharing / mnmsrvc][Stopped/Manual Start] [] [System Restore Service / srservice][Stopped/Disabled] <%SystemRoot%\system32\svchost.exe -k netsvcs --> "C:\WINDOWS\system32\srsvc.dll"> [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:15 M:2008-04-15 02:00] [Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start] <%SystemRoot%\system32\Ati2evxx.exe> [(Verified)ATI Technologies Inc., 6.14.10.4199, C:2008-05-15 09:59 M:2008-05-15 09:59] [Contrl Center of Storm Media / ccosm][Running/Auto Start] [(Verified)北京暴风网际科技有限公司, 3, 8, 10, 15, C:2008-03-11 14:33 M:2008-10-16 17:07] [LexBce Server / LexBceS][Running/Auto Start] [(Verified)Lexmark International, Inc., 8.16, C:2003-02-25 17:52 M:2003-02-25 17:52] [Rising Proxy Service / RfwProxySrv][Running/Auto Start] [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.34, C:2008-11-04 21:38 M:2008-11-04 21:37] [Rising Personal Firewall Service / RfwService][Running/Auto Start] [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.73, C:2008-11-04 21:38 M:2008-11-04 21:37] [Rising Process Communication Center / RsCCenter][Running/Auto Start] <"D:\Rising\Rav\CCenter.exe"> [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.28, C:2008-11-04 21:36 M:2008-11-04 21:34] [Rising RealTime Monitor / RsRavMon][Stopped/Auto Start] <"D:\RISING\RAV\Ravmond.exe"> [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.76, C:2008-11-04 21:36 M:2008-11-04 21:44] ======================================== 驱动 [GMSIPCI / GMSIPCI][Stopped/Manual Start] <\??\G:\INSTALL\GMSIPCI.SYS> [] [MSICPL / MSICPL][Stopped/Manual Start] <\??\G:\install4\MSICPL.sys> [] [NTACCESS / NTACCESS][Stopped/Manual Start] <\??\G:\NTACCESS.sys> [] [SetupNTGLM7X / SetupNTGLM7X][Stopped/Manual Start] <\??\G:\NTGLM7X.sys> [] [SATALink driver accelerator / SiFilter][Running/Boot Start] [Silicon Image, Inc., 1.0.0.11, C:2006-08-08 22:19 M:2006-08-08 22:19] [System Restore Filter Driver / sr][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\sr.sys> [] [TCP/IP Protocol Driver / Tcpip][Running/System Start] [Microsoft Corporation, 5.1.2600.5625 (xpsp_sp3_gdr.080620-1249), C:2008-07-13 15:15 M:2008-07-13 12:24] [USB PC Camera (ZS0211) / ZSMC211][Running/Manual Start] [ZSMC Corporation, 3, 6, 804, 15, C:2008-11-04 21:58 M:2006-08-08 11:29] [ati2mtag / ati2mtag][Running/Manual Start] [(Verified)ATI Technologies Inc., 6.14.10.6822, C:2008-05-15 10:48 M:2008-05-15 10:48] [ATI Function Driver for HDMI Service / AtiHdmiService][Running/Manual Start] [(Verified)ATI Research Inc., 5.00.50000.05, C:2008-11-04 21:25 M:2008-05-21 07:53] [Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start] [(Verified)Windows (R) Server 2003 DDK provider, 5.10.01.5013 built by: WinDDK, C:2008-04-13 17:36 M:2008-07-13 12:29] [HookCont / HookCont][Running/System Start] <\SystemRoot\system32\drivers\HookCont.sys> [(Verified)Beijing Rising Technology Co., Ltd, 22, 0, 0, 5, C:2008-11-04 21:36 M:2008-11-04 21:34] [HookNtos / HookNtos][Running/System Start] <\SystemRoot\system32\drivers\HookNtos.sys> [(Verified)Beijing Rising Technology Co., Ltd, 22, 0, 0, 46, C:2008-11-04 21:36 M:2008-11-04 21:44] [HookReg / HookReg][Running/System Start] <\SystemRoot\system32\drivers\HookReg.sys> [(Verified)Beijing Rising Technology Co., Ltd, 22, 0, 0, 26, C:2008-11-04 21:36 M:2008-11-04 21:44] [HookSys / HookSys][Running/System Start] <\SystemRoot\system32\drivers\HookSys.sys> [(Verified)Beijing Rising Technology Co., Ltd, 22, 0, 0, 48, C:2008-11-04 21:36 M:2008-11-04 21:44] [HookUrl / HookUrl][Running/Auto Start] <\??\D:\Rising\Rfw\HookUrl.sys> [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-11-04 21:38 M:2008-11-04 21:37] [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start] [(Verified)Realtek Semiconductor Corp., 5.10.0.5559 built by: WinDDK, C:2008-11-04 21:10 M:2008-01-30 11:28] [Direct Parallel Link Driver / Ptilink][Running/Manual Start] [(Verified)Parallel Technologies, Inc., 1.10 (XPClient.010817-1148), C:2008-07-13 15:15 M:2008-04-15 02:00] [Rising Rfwbase Driver / RfwBase][Running/Auto Start] [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.8, C:2008-11-04 21:38 M:2008-11-04 21:37] [RsFwDrv / RsFwDrv][Running/System Start] <\??\D:\Rising\Rfw\RsFwDrv.sys> [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.32, C:2008-11-04 21:38 M:2008-11-04 21:37] [RsNTGDI / RsNTGDI][Running/Boot Start] [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 2, C:2008-11-04 21:36 M:2008-11-04 21:34] [Service for HDMI / RTHDMIAzAudService][Stopped/Manual Start] [(Verified)Realtek Semiconductor Corp., 5.10.0.5645 built by: WinDDK, C:2008-11-04 21:10 M:2008-06-18 11:23] [Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver / RTLE8023xp][Running/Manual Start] [(Verified)Realtek Semiconductor Corporation , 5.694.0507.2008 built by: WinDDK, C:2008-11-04 21:10 M:2008-05-07 19:31] [Secdrv / Secdrv][Stopped/Manual Start] [(Verified)Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., 4.03.086, C:2008-07-13 15:15 M:2008-04-15 02:00] ======================================== 进程 [PID: 656 / SYSTEM] \SystemRoot\System32\smss.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:15 M:2008-04-15 02:00] [PID: 744 / SYSTEM] \??\C:\WINDOWS\system32\csrss.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:14 M:2008-04-15 02:00] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 780 / SYSTEM] \??\C:\WINDOWS\system32\winlogon.exe [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113), C:2008-07-13 15:15 M:2008-04-24 06:14] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] C:\WINDOWS\system32\Ati2evxx.dll [(Verified)ATI Technologies Inc., 6.14.10.4177, C:2008-05-15 10:01 M:2008-05-15 10:01] C:\WINDOWS\system32\WgaLogon.dll [N/A, C:2008-07-13 15:15 M:2008-07-13 12:22] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 836 / SYSTEM] C:\WINDOWS\system32\services.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:15 M:2008-04-15 02:00] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 848 / SYSTEM] C:\WINDOWS\system32\lsass.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113), C:2008-07-13 15:15 M:2008-04-15 02:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 1008 / SYSTEM] C:\WINDOWS\system32\Ati2evxx.exe [(Verified)ATI Technologies Inc., 6.14.10.4199, C:2008-05-15 09:59 M:2008-05-15 09:59] C:\WINDOWS\system32\Ati2edxx.dll [(Verified)ATI Technologies, Inc., 6, 14, 10, 2513, C:2008-05-15 10:01 M:2008-05-15 10:01] C:\WINDOWS\system32\atipdlxx.dll [(Verified)ATI Technologies, Inc., 6, 14, 10, 2535, C:2008-05-15 10:02 M:2008-05-15 10:02] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 1036 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:15 M:2008-04-15 02:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 1104 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:15 M:2008-04-15 02:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 1216 / SYSTEM] D:\Rising\Rav\CCenter.exe [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.28, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] [PID: 1252 / SYSTEM] C:\WINDOWS\System32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:15 M:2008-04-15 02:00] C:\WINDOWS\System32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 1336 / NETWORK SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:15 M:2008-04-15 02:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 1472 / SYSTEM] C:\WINDOWS\system32\Ati2evxx.exe [(Verified)ATI Technologies Inc., 6.14.10.4199, C:2008-05-15 09:59 M:2008-05-15 09:59] C:\WINDOWS\system32\Ati2edxx.dll [(Verified)ATI Technologies, Inc., 6, 14, 10, 2513, C:2008-05-15 10:01 M:2008-05-15 10:01] C:\WINDOWS\system32\atipdlxx.dll [(Verified)ATI Technologies, Inc., 6, 14, 10, 2535, C:2008-05-15 10:02 M:2008-05-15 10:02] C:\WINDOWS\system32\ati2evxx.dll [(Verified)ATI Technologies Inc., 6.14.10.4177, C:2008-05-15 10:01 M:2008-05-15 10:01] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 1484 / LOCAL SERVICE] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:15 M:2008-04-15 02:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 1624 / SYSTEM] D:\RISING\RAV\ravmond.exe [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.76, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\RISING\RAV\BWList.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.4, C:2008-11-04 21:36 M:2008-11-04 21:34] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-19 05:20 M:2003-03-19 05:20] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2003-02-21 05:42 M:2003-02-21 05:42] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 21:14 M:2003-03-18 21:14] D:\RISING\RAV\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\RsLog.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.35, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\RISING\RAV\ProcCom.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\RISING\RAV\RsCommX2.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\RISING\RAV\MonRule.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.29, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\RISING\RAV\Hooksys.dll [(Verified)Beijing Rising Technology Co., Ltd, 22, 0, 0, 9, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\RISING\RAV\HookReg.dll [(Verified)Beijing Rising Technology Co., Ltd, 22, 0, 0, 4, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\RISING\RAV\HookNtos.dll [(Verified)Beijing Rising Technology Co., Ltd, 22, 0, 0, 2, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\RISING\RAV\rswalmon.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 22, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\RISING\RAV\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\ffr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\Rising\Rav\RsStore.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.8, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\RISING\RAV\HookCont.dll [(Verified)Beijing Rising Technology Co., Ltd, 22, 0, 0, 1, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\fakescan.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.13, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\Scanner.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.36, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\RISING\RAV\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-11-04 21:36 M:2008-11-04 21:52] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\RISING\RAV\HookWeb.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.2, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\RISING\RAV\nvfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 7, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\extfile.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 32, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\pearc.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 8, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\scanexec.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 22, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\unexe.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 6, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\scanex.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 98, C:2008-11-04 21:36 M:2008-11-06 22:46] D:\RISING\RAV\scansct.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 11, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\scanpack.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 10, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\revm.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 11, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\RISING\RAV\urutils.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 7, C:2008-11-04 21:44 M:2008-11-04 21:52] D:\RISING\RAV\ur000.dat [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 22, C:2008-11-04 21:44 M:2008-11-04 21:52] D:\RISING\RAV\extmail.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 10, C:2008-11-04 21:36 M:2008-11-04 21:52] [PID: 1632 / SYSTEM] D:\Rising\Rfw\rfwsrv.exe [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.73, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-19 05:20 M:2003-03-19 05:20] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2003-02-21 05:42 M:2003-02-21 05:42] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 21:14 M:2003-03-18 21:14] D:\Rising\Rfw\ProcCom.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RsCommX2.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RSAPPMGR.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.0, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\CfgDll.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.18, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RfwRule.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.13, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\rfwlog.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.12, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\Rfwdrv.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.45, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\ijt_ctrl.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.0, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\unvdet.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.5, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\mPorts.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.3, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 1684 / SYSTEM] D:\Rising\Rfw\rfwProxy.exe [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.34, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-19 05:20 M:2003-03-19 05:20] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2003-02-21 05:42 M:2003-02-21 05:42] D:\Rising\Rfw\ProcCom.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RsCommX2.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RfwRule.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.13, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\urlrule.dll [(Verified)Beijing Rising Technology Co., Ltd., 1, 0, 0, 9, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\MonMid.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.4, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] [PID: 1956 / SYSTEM] D:\Rising\Rfw\rfwstub.exe [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.10, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 21:14 M:2003-03-18 21:14] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2003-02-21 05:42 M:2003-02-21 05:42] D:\Rising\Rfw\RSCOMMON.DLL [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 16, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 152 / Administrator] C:\WINDOWS\Explorer.EXE [(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-04-15 02:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [Copyright 2004, 2, 0, 0, 0, C:2008-02-12 12:50 M:2008-02-12 12:50] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamCHS.dll [Advanced Micro Devices, Inc., 6.14.10.2001, C:2008-03-31 14:01 M:2008-03-31 14:01] C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-11-04 21:14 M:2008-06-13 09:43] C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_01.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 20, C:2008-11-07 17:28 M:2008-08-04 12:58] C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_01.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 16, C:2008-11-07 17:28 M:2008-08-04 12:58] C:\WINDOWS\system32\shdoclc.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-04-15 02:00] [PID: 488 / SYSTEM] D:\RISING\RAV\RavStub.exe [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.9, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\RISING\RAV\ProcCom.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\RISING\RAV\RsCommX2.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\RISING\RAV\RSCOMMON.DLL [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 16, C:2008-11-04 21:36 M:2008-11-04 21:34] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 548 / SYSTEM] C:\WINDOWS\system32\LEXBCES.EXE [(Verified)Lexmark International, Inc., 8.16, C:2003-02-25 17:52 M:2003-02-25 17:52] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\lexp2p32.dll [(Verified)Lexmark International, Inc., 8.16, C:2003-02-25 17:49 M:2003-02-25 17:49] C:\WINDOWS\system32\lex2kusb.dll [(Verified)Lexmark International, Inc., 8.16, C:2003-02-25 17:54 M:2003-02-25 17:54] [PID: 572 / SYSTEM] C:\WINDOWS\system32\LEXPPS.EXE [(Verified)Lexmark International, Inc., 8.16, C:2003-02-25 17:50 M:2003-02-25 17:50] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] C:\WINDOWS\system32\LEXBCE.DLL [(Verified)Lexmark International, Inc., 8.16, C:2003-02-25 17:51 M:2003-02-25 17:51] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 580 / SYSTEM] C:\WINDOWS\system32\spoolsv.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852), C:2008-07-13 15:15 M:2008-04-15 02:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\LEXLMPM.DLL [(Verified)Lexmark International, Inc., 8.16, C:2003-02-25 18:11 M:2003-02-25 18:11] C:\WINDOWS\system32\LexBce.dll [(Verified)Lexmark International, Inc., 8.16, C:2003-02-25 17:51 M:2003-02-25 17:51] C:\WINDOWS\System32\spool\PRTPROCS\W32X86\LGBCPP5C.dll [(Verified)Lenovo, 1.0.3.0, C:2003-04-09 00:04 M:2003-04-09 00:04] C:\WINDOWS\system32\LGBCpwr.dll [(Verified)Lenovo, 1, 0, 1, 0, C:2003-04-08 23:47 M:2003-04-08 23:47] [PID: 1088 / Administrator] D:\Rising\Rfw\RfwMain.exe [(Verified)Beijing Rising Technology Co., Ltd., 7.0.1.67, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-19 05:20 M:2003-03-19 05:20] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2003-02-21 05:42 M:2003-02-21 05:42] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 21:14 M:2003-03-18 21:14] D:\Rising\Rfw\RsGuiLib.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 88, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\ProcCom.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RsCommX2.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RSAPPMGR.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.0, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\CfgDll.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.18, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RSCOMMON.DLL [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 16, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RfwCtrl.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.7, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RsXML.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 0, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\PngDll.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 4, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\RfwRule.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.13, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 1164 / LOCAL SERVICE] C:\WINDOWS\System32\alg.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852), C:2008-07-13 15:14 M:2008-04-15 02:00] C:\WINDOWS\System32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] [PID: 1208 / SYSTEM] C:\Program Files\StormII\stormliv.exe [(Verified)北京暴风网际科技有限公司, 3, 8, 10, 15, C:2008-03-11 14:33 M:2008-10-16 17:07] C:\Program Files\StormII\MSVCP60.dll [Microsoft Corporation, 6.02.3104.0, C:2007-09-21 19:43 M:2007-09-21 19:43] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] C:\Program Files\StormII\bfoptdll.dll [(Verified)北京暴风网际科技有限公司, 3, 8, 7, 16, C:2008-08-01 20:11 M:2008-08-01 20:11] C:\Program Files\StormII\box\BoxLog.dll [(Verified)北京暴风网际科技有限公司, 3, 8, 11, 3, C:2008-11-03 10:35 M:2008-11-03 10:35] [PID: 1952 / SYSTEM] C:\WINDOWS\system32\svchost.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111), C:2008-07-13 15:15 M:2008-04-15 02:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] [PID: 2816 / Administrator] D:\Rising\Rav\RavTask.exe [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.23, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\RsCommX2.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\RSCOMMON.DLL [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 16, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\RSAPPMGR.DLL [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-11-04 21:36 M:2008-11-04 21:52] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] [PID: 2868 / Administrator] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [Advanced Micro Devices Inc., 2.0.0.0, C:2007-07-17 11:13 M:2007-07-17 11:13] C:\WINDOWS\system32\mscoree.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\MSVCR80.dll [Microsoft Corporation, 8.00.50727.42, C:2005-09-22 23:48 M:2005-09-22 23:48] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\8ac6353e4744364aa66a065031d85aaf\mscorlib.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:27 M:2008-11-04 21:27] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\090a01f106203949a5115c37f1fb1f35\System.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:27 M:2008-11-04 21:27] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\7990994baa6a57468b23ebc647e5c16f\System.Drawing.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:27 M:2008-11-04 21:27] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\c17bb4fa39938e4fbd39e7129cc8b026\System.Windows.Forms.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:27 M:2008-11-04 21:27] C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3056.37096__90ba9c70f846762e\MOM.Implementation.dll [Advanced Micro Devices Inc., 2.0.3056.37096, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3036.27930__90ba9c70f846762e\LOG.Foundation.dll [Advanced Micro Devices Inc., 2.0.3036.27930, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3036.27941__90ba9c70f846762e\LOG.Foundation.Private.dll [Advanced Micro Devices Inc., 2.0.3036.27941, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3056.37094__90ba9c70f846762e\LOG.Foundation.Implementation.dll [Advanced Micro Devices Inc., 2.0.3056.37094, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3036.27960__90ba9c70f846762e\MOM.Foundation.dll [Advanced Micro Devices Inc., 2.0.3036.27960, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3036.27961__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll [Advanced Micro Devices Inc., 2.0.3036.27961, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:26 M:2008-11-04 21:26] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\8554b1e3c845ae4dbf6f3a704823a565\System.Web.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 22:30 M:2008-11-04 22:30] C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3056.37095__90ba9c70f846762e\CCC.Implementation.dll [Advanced Micro Devices Inc., 2.0.3056.37095, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3036.27933__90ba9c70f846762e\NEWAEM.Foundation.dll [Advanced Micro Devices Inc., 2.0.3036.27933, C:2008-11-04 21:30 M:2008-11-04 21:30] [PID: 2876 / Administrator] C:\WINDOWS\RTHDCPL.EXE [(Verified)Realtek Semiconductor Corp., 2.1.8.7, C:2008-11-04 21:10 M:2008-01-29 15:47] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] [PID: 2896 / Administrator] D:\Rising\Rav\Ravmon.exe [(Verified)Beijing Rising Technology Co., Ltd., 20.0.01.19, C:2008-11-04 21:36 M:2008-11-04 21:44] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-19 05:20 M:2003-03-19 05:20] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2003-02-21 05:42 M:2003-02-21 05:42] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 21:14 M:2003-03-18 21:14] D:\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\RsCommX2.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\RSCOMMON.DLL [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 16, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\recomp.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 41, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\Rising\Rav\refs.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 18, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\Rising\Rav\viruslib.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 27, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\Rising\Rav\relibldr.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20, 0, 0, 17, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\Rising\Rav\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\Rising\Rav\MonRule.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.29, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\Rising\Rav\PngDll.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 4, C:2008-11-04 21:36 M:2008-11-04 21:44] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rav\Rsguilib.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 89, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\Rising\Rav\RsXML.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 0, C:2008-11-04 21:36 M:2008-11-04 21:34] [PID: 2916 / Administrator] C:\WINDOWS\ZSSnp211.exe [ZSMCSNAP, 3, 6, 818, 7, C:2008-11-04 21:58 M:2006-08-19 11:37] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] C:\WINDOWS\system32\msdmo.dll [(Verified)N/A, C:2008-07-13 15:15 M:2008-04-15 02:00] C:\WINDOWS\system32\ZS211Prp.Ax [ZSMC, 3, 6, 703, 15, C:2008-11-04 21:58 M:2006-07-14 14:36] [PID: 3032 / Administrator] C:\WINDOWS\system32\ctfmon.exe [(Verified)Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105), C:2008-07-13 15:14 M:2008-04-15 02:00] C:\WINDOWS\system32\UxTheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rfw\ijt_base.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.19, C:2008-11-04 21:38 M:2008-11-04 21:37] D:\Rising\Rfw\olemon.dll [(Verified)Beijing Rising Technology Co., Ltd., 7.0.0.6, C:2008-11-04 21:38 M:2008-11-04 21:37] [PID: 3432 / Administrator] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe [ATI Technologies Inc., 2.0.0.0, C:2007-07-17 11:13 M:2007-07-17 11:13] C:\WINDOWS\system32\mscoree.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\MSVCR80.dll [Microsoft Corporation, 8.00.50727.42, C:2005-09-22 23:48 M:2005-09-22 23:48] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\8ac6353e4744364aa66a065031d85aaf\mscorlib.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:27 M:2008-11-04 21:27] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2005-09-23 07:28 M:2005-09-23 07:28] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\090a01f106203949a5115c37f1fb1f35\System.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:27 M:2008-11-04 21:27] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\7990994baa6a57468b23ebc647e5c16f\System.Drawing.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:27 M:2008-11-04 21:27] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\c17bb4fa39938e4fbd39e7129cc8b026\System.Windows.Forms.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:27 M:2008-11-04 21:27] C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3056.37095__90ba9c70f846762e\CCC.Implementation.dll [Advanced Micro Devices Inc., 2.0.3056.37095, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3036.27930__90ba9c70f846762e\LOG.Foundation.dll [Advanced Micro Devices Inc., 2.0.3036.27930, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3036.27960__90ba9c70f846762e\MOM.Foundation.dll [Advanced Micro Devices Inc., 2.0.3036.27960, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3036.27933__90ba9c70f846762e\CLI.Foundation.dll [Advanced Micro Devices Inc., 2.0.3036.27933, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3036.27961__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll [Advanced Micro Devices Inc., 2.0.3036.27961, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3056.37094__90ba9c70f846762e\LOG.Foundation.Implementation.dll [Advanced Micro Devices Inc., 2.0.3056.37094, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:26 M:2008-11-04 21:26] C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3036.27941__90ba9c70f846762e\LOG.Foundation.Private.dll [Advanced Micro Devices Inc., 2.0.3036.27941, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3056.37096__90ba9c70f846762e\MOM.Implementation.dll [Advanced Micro Devices Inc., 2.0.3056.37096, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3056.36829__90ba9c70f846762e\CLI.Component.SkinFactory.dll [Advanced Micro Devices Inc., 2.0.3056.36829, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3036.28032__90ba9c70f846762e\CLI.Foundation.XManifest.dll [Advanced Micro Devices Inc., 2.0.3036.28032, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\cb0cef4c03c35c4d8044b928b2f33536\System.Xml.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 21:27 M:2008-11-04 21:27] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3056.36828__90ba9c70f846762e\CLI.Component.Runtime.dll [Advanced Micro Devices, Inc., 2.0.3056.36828, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3036.27962__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll [Advanced Micro Devices Inc., 2.0.3036.27962, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3036.27937__90ba9c70f846762e\CLI.Foundation.Private.dll [Advanced Micro Devices Inc., 2.0.3036.27937, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3036.27944__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27944, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.3036.27941__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll [Advanced Micro Devices, Inc., 2.0.3036.27941, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll [Advanced Micro Devices Inc., 2.0.0.0, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll [ , 1.0.0.0, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3056.36827__90ba9c70f846762e\AEM.Server.dll [Advanced Micro Devices Inc., 2.0.3056.36827, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3036.27933__90ba9c70f846762e\NEWAEM.Foundation.dll [Advanced Micro Devices Inc., 2.0.3036.27933, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3036.27944__90ba9c70f846762e\AEM.Server.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27944, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3056.37124__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll [Advanced Micro Devices Inc., 2.0.3056.37124, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3036.27993__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27993, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory.resources\2.0.3056.36829_zh-CHS_90ba9c70f846762e\CLI.Component.SkinFactory.resources.dll [Advanced Micro Devices Inc., 2.0.3056.36829, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3036.27945__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27945, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3036.27963__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27963, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\PROGRA~1\ATITEC~1\ATI.ACE\CORE-I~1\32\wbocx.ocx [Stardock Corporation, 5.0.2.4, C:2008-01-21 18:48 M:2008-01-21 18:48] C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll [ATI Technologies Inc., 2.0.2573.17685, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll [ATI Technologies Inc., 2.0.2573.17684, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3036.27964__90ba9c70f846762e\DEM.Graphics.dll [Advanced Micro Devices Inc., 2.0.3036.27964, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll [ , 1.0.0.0, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\system32\ATIDEMGX.dll [(Verified)Advanced Micro Devices, Inc., 2.0.3056.38183, C:2008-11-04 21:25 M:2008-05-15 10:12] C:\WINDOWS\system32\atiadlxx.dll [(Verified)Advanced Micro Devices, Inc., 6.14.10.1004, C:2008-05-15 09:18 M:2008-05-15 09:18] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\8b1ed1ee1846e04c99a4eb0ebf1b3bd9\System.Configuration.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 22:30 M:2008-11-04 22:30] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\9da60996857760479b0683c353ec6265\Accessibility.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 22:30 M:2008-11-04 22:30] C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3056.37136__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll [Advanced Micro Devices, Inc., 2.0.3056.37136, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3056.36836__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll [Advanced Mirco Devices, Inc., 2.0.3056.36836, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3036.27946__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll [Advanced Mirco Devices, Inc., 2.0.3036.27946, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\Program Files\ATI Technologies\ATI.ACE\Core-Implementation\32\wbhelp2.dll [Stardock.Net, Inc, 1.5, C:2006-10-10 10:55 M:2006-10-10 10:55] C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll [ATI Technologies Inc., 2.0.2573.17685, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3036.27964__90ba9c70f846762e\DEM.OS.I0602.dll [Advanced Micro Devices Inc., 2.0.3036.27964, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.3036.27964__90ba9c70f846762e\DEM.OS.dll [Advanced Micro Devices Inc., 2.0.3036.27964, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll [Advanced Micro Devices, Inc., 2.0.2743.23304, C:2007-10-29 14:56 M:2007-10-29 14:56] C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.3056.36828__90ba9c70f846762e\ATIDEMOS.dll [Advanced Micro Devices, Inc., 2.0.3056.36828, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3036.27993__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27993, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3036.27937__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27937, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll [Advanced Micro Devices, Inc., 2.0.3015.27871, C:2008-04-03 16:29 M:2008-04-03 16:29] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3056.36856__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll [Advanced Micro Devices Inc., 2.0.3056.36856, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3036.27966__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27966, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3056.37036__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll [Advanced Micro Devices Inc., 2.0.3056.37036, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3036.27979__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll [Advanced Micro Devices Inc., 2.0.3036.27979, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3036.27978__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27978, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3056.36990__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll [Advanced Micro Devices, Inc., 2.0.3056.36990, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3036.27962__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27962, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll [Advanced Micro Devices, Inc., 2.0.2743.23304, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3036.27959__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27959, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3056.37073__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll [Advanced Micro Devices Inc., 2.0.3056.37073, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3036.27978__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27978, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3056.36910__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll [Advanced Micro Devices Inc., 2.0.3056.36910, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3036.27974__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27974, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3056.37015__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll [Advanced Micro Devices Inc., 2.0.3056.37015, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3036.27977__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27977, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3056.36998__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll [Advanced Micro Devices Inc., 2.0.3056.36998, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3036.27976__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27976, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3056.37028__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll [Advanced Micro Devices, Inc., 2.0.3056.37028, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3036.27966__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27966, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3056.36991__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll [Advanced Micro Devices, Inc., 2.0.3056.36991, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3036.27976__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27976, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll [Advanced Micro Devices, Inc., 2.0.2939.20866, C:2008-01-18 11:35 M:2008-01-18 11:35] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.3056.36884__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll [Advanced Micro Devices Inc., 2.0.3056.36884, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.3036.27974__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27974, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Runtime\2.0.3056.37132__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Runtime.dll [Advanced Micro Devices Inc., 2.0.3056.37132, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0703\2.0.2651.18802__90ba9c70f846762e\DEM.Graphics.I0703.dll [Advanced Micro Devices, Inc., 2.0.2651.18802, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Shared\2.0.3036.27988__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27988, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3056.37043__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll [Advanced Micro Devices Inc., 2.0.3056.37043, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3036.27978__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27978, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3056.36998__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll [Advanced Micro Devices Inc., 2.0.3056.36998, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3036.27976__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27976, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.3056.36826__90ba9c70f846762e\APM.Server.dll [Advanced Micro Devices, Inc., 2.0.3056.36826, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.3036.27961__90ba9c70f846762e\APM.Foundation.dll [Advanced Micro Devices Inc., 2.0.3036.27961, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\8554b1e3c845ae4dbf6f3a704823a565\System.Web.ni.dll [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200), C:2008-11-04 22:30 M:2008-11-04 22:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3056.36827__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll [Advanced Micro Devices Inc., 2.0.3056.36827, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3036.27961__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27961, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3056.37087__90ba9c70f846762e\CLI.Component.Systemtray.dll [Advanced Micro Devices Inc., 2.0.3056.37087, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3036.27949__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll [Advanced Micro Devices, Inc., 2.0.3036.27949, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3056.36863__90ba9c70f846762e\CLI.Component.Wizard.dll [Advanced Micro Devices, Inc., 2.0.3056.36863, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3036.27940__90ba9c70f846762e\CLI.Component.Client.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27940, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3036.27948__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27948, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3036.27962__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll [Advanced Micro Devices Inc., 2.0.3036.27962, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3056.36870__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll [Advanced Micro Devices Inc., 2.0.3056.36870, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3036.27974__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27974, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3056.37106__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll [Advanced Micro Devices Inc., 2.0.3056.37106, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll [ , 2.0.2477.16262, C:2008-05-26 15:25 M:2008-05-26 15:25] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3056.37050__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll [Advanced Micro Devices Inc., 2.0.3056.37050, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3056.36878__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll [Advanced Micro Devices Inc., 2.0.3056.36878, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3056.36891__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll [Advanced Micro Devices Inc., 2.0.3056.36891, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3036.27990__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27990, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray.resources\2.0.3056.37087_zh-CHS_90ba9c70f846762e\CLI.Component.Systemtray.resources.dll [Advanced Micro Devices Inc., 2.0.3056.37087, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll [ , 1.0.0.0, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\Program Files\Common Files\ATI Technologies\Multimedia\atixcode.dll [ATI Technologies, Inc., 9.15.0.20713, C:2007-07-13 18:08 M:2007-07-13 18:08] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\MSVCP80.dll [Microsoft Corporation, 8.00.50727.42, C:2005-09-22 23:48 M:2005-09-22 23:48] C:\Program Files\Common Files\ATI Technologies\Multimedia\atidvcr.dll [ATI Technologies, Inc., 9.15.0.20713, C:2007-07-13 18:08 M:2007-07-13 18:08] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3056.37064__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll [Advanced Micro Devices Inc., 2.0.3056.37064, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Wizard\2.0.3056.37081__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Wizard.dll [Advanced Micro Devices Inc., 2.0.3056.37081, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Wizard\2.0.3056.37058__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Wizard.dll [Advanced Micro Devices Inc., 2.0.3056.37058, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3056.36843__90ba9c70f846762e\CLI.Component.Dashboard.dll [Advanced Micro Devices, Inc., 2.0.3056.36843, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3036.27945__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27945, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3036.27959__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll [Advanced Micro Devices Inc., 2.0.3036.27959, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3056.36850__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.36850, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3036.27965__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll [Advanced Micro Devices Inc., 2.0.3036.27965, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3056.37111__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll [Advanced Mirco Devices, Inc., 2.0.3056.37111, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3056.36898__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.36898, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3056.36858__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.36858, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3056.37016__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.37016, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3056.36992__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.36992, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Dashboard\2.0.3056.37038__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.37038, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Dashboard\2.0.3056.37074__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.37074, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3056.36984__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll [Advanced Micro Devices, Inc., 2.0.3056.36984, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3056.37044__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.37044, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3056.36903__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.36903, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3056.36999__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.36999, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.3056.36885__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.36885, C:2008-11-04 21:30 M:2008-11-04 21:30] C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Dashboard\2.0.3056.37132__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll [Advanced Micro Devices Inc., 2.0.3056.37132, C:2008-11-04 21:30 M:2008-11-04 21:30] [PID: 3632 / Administrator] D:\Rising\Rav\Rav.exe [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 54, C:2008-11-04 21:36 M:2008-11-04 21:34] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\Rising\Rav\ProcCom.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\RsCommX2.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 19, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\Rsguilib.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 89, C:2008-11-04 21:36 M:2008-11-04 21:44] C:\WINDOWS\system32\MFC71.DLL [Microsoft Corporation, 7.10.3077.0, C:2003-03-19 05:20 M:2003-03-19 05:20] C:\WINDOWS\system32\MSVCR71.dll [Microsoft Corporation, 7.10.3052.4, C:2003-02-21 05:42 M:2003-02-21 05:42] C:\WINDOWS\system32\MSVCP71.dll [Microsoft Corporation, 7.10.3077.0, C:2003-03-18 21:14 M:2003-03-18 21:14] D:\Rising\Rav\RsXML.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 0, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\PngDll.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 4, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\Rising\Rav\RsCommon.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 16, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\ravpagem.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 1, 5, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\Rising\Rav\htmllib.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.16, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\Rising\Rav\ravpagew.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 88, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\Rising\Rav\RSAPPMGR.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.1, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\Rising\Rav\CfgDll.dll [(Verified)Beijing Rising Information Technology Co., Ltd., 20.0.0.19, C:2008-11-04 21:36 M:2008-11-04 21:52] D:\Rising\Rav\fakescan.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.13, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\Scanner.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.36, C:2008-11-04 21:36 M:2008-11-04 21:44] D:\Rising\Rav\BWList.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.4, C:2008-11-04 21:36 M:2008-11-04 21:34] D:\Rising\Rav\SysMail.dll [(Verified)Beijing Rising Technology Co., Ltd., 20.0.0.10, C:2008-11-04 21:36 M:2008-11-04 21:34] [PID: 3804 / Administrator] C:\Program Files\Internet Explorer\iexplore.exe [(Verified)Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:23 M:2008-04-15 02:00] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll [(Verified)Thunder Networking Technologies,LTD, 5, 0, 8, 96, C:2008-11-04 21:14 M:2008-06-13 09:43] C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_01.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 20, C:2008-11-07 17:28 M:2008-08-04 12:58] C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_01.dll [Thunder Networking Technologies,LTD, 1, 0, 0, 16, C:2008-11-07 17:28 M:2008-08-04 12:58] C:\WINDOWS\system32\shdoclc.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-04-15 02:00] D:\Rising\Rav\RavScrCh.dll [(Verified)Beijing Rising Technology Co., Ltd., 20, 0, 0, 3, C:2008-11-04 21:36 M:2008-11-04 21:34] C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx [(Verified)Adobe Systems, Inc., 9,0,124,0, C:2008-03-25 10:32 M:2008-03-25 10:32] C:\WINDOWS\system32\SOGOUPY.IME [(Verified)Sogou.com Inc., 3.5.0.0, C:2008-06-03 17:31 M:2008-06-03 17:31] C:\Program Files\SogouInput\Plugin\SgImeWord.dll [(Verified)Sogou.com Inc., 3.5.0.0, C:2008-06-03 17:31 M:2008-06-03 17:31] [PID: 2096 / Administrator] C:\Program Files\SogouInput\ImeUtil.exe [(Verified)Sogou.com Inc., 3.5.0.0, C:2008-06-03 17:30 M:2008-06-03 17:30] [PID: 2992 / Administrator] D:\删除\arswp\ArSwp.exe [(Verified)ArSwp.com, 2, 8, 1, 815, C:2008-11-08 23:50 M:2008-08-15 22:25] C:\WINDOWS\system32\uxtheme.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-06-12 08:32] D:\删除\arswp\plugin\ArFix.dll [(Verified)ArSwp.Com, 2, 5, 0, 0, C:2008-11-08 23:50 M:2007-11-28 15:19] C:\WINDOWS\system32\shdoclc.dll [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105), C:2008-07-13 15:15 M:2008-04-15 02:00] ======================================== 文件关联 ======================================== AutoRun.INF ======================================== Winsock提供者 ======================================== HOSTS 127.0.0.1 localhost [/CODE]