============================================================== 金山清理专家系统诊断报告 该诊断报告由金山清理专家提供 http://www.duba.net ============================================================== 诊断时间: 2008-11-25, 18:13 诊断平台: Windows 2000 [5.0.2195] Service Pack 4 IE版本: Internet Explorer V6.0.1106.2800 计算机物理内存: 759(MB) 当前可用内存: 433(MB) 硬盘总大小: 76(GB) 硬盘可用空间: 47(GB) 清理专家版本: 2008.11.18.98 恶意软件库版本: 2008.10.10.1 漏洞库版本: ============================================================== 常规启动项 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [RfwMain] <"D:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> 文件路径: D:\Program Files\Rising\Rfw\rfwmain.exe [未连网] [KavStart] <"e:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KAVStart.exe" -startup> 文件路径: e:\Program Files\Kingsoft\Kingsoft Internet Security 2008\KAVStart.exe [未连网] [Anti-Spy Tools] 文件路径: C:\WINNT\zhizhu\ast_setup\ast\ast.exe [未连网] [SecNotifier] 文件路径: C:\Program Files\Sucop\SecPlugin\SecNotifier.exe [未连网] ============================================================== 启动文件夹位置 ============================================================== Common Startup: C:\Documents and Settings\All Users\「开始」菜单\程序\启动 Startup: C:\Documents and Settings\Administrator\「开始」菜单\程序\启动 Common Startup: %ALLUSERSPROFILE%\「开始」菜单\程序\启动 ============================================================== 开始菜单启动项 ============================================================== 文件路径: [残留信息] 文件路径: C:\WINNT\NUOYPUH2BU.exe [未连网] 文件路径: [残留信息] 文件路径: C:\WINNT\MUH6NML.exe [未连网] ============================================================== 系统服务 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services [SQLSERVERAGENT] [已启用] 文件路径: C:\Program Files\Microsoft SQL Server\MSSQL\binn\sqlagent.exe [未连网] ============================================================== 驱动程序 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services [ASTDriver] [已启用] <\??\C:\WINNT\zhizhu\ast_setup\ast\ASTDriver.sys> 文件路径: C:\WINNT\zhizhu\ast_setup\ast\ASTDriver.sys [未连网] [OBV9PCI7EV] [已启用] <\??\C:\WINNT\E403IKN4C3H.txt> 文件路径: C:\WINNT\E403IKN4C3H.txt [未连网] [RA35JZN] [已启用] <\??\C:\WINNT\6GQUCOBS.txt> 文件路径: C:\WINNT\6GQUCOBS.txt [未连网] [rspp] [已启用] <\??\C:\WINNT\system32\Drivers\Rspp.sys> 文件路径: C:\WINNT\system32\Drivers\Rspp.sys [未连网] ============================================================== 当前进程 ============================================================== 名称: sqlagent.exe [已启用] 命令行: "C:\Program Files\Microsoft SQL Server\MSSQL\binn\sqlagent.exe" -i MSSQLSERVER 文件路径: C:\Program Files\Microsoft SQL Server\MSSQL\binn\sqlagent.exe [未连网] (Microsoft Corporation) 模块文件: C:\WINNT\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\binn\SQLRESLD.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\KERNEL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADVAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ole32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\OLEAUT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSVCR71.dll (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\binn\SQLSVC.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ODBC32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\msvcrt.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\COMCTL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\comdlg32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\odbcbcp.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\LZ32.DLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\binn\W95SCM.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SQLUNIRL.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WINSPOOL.DRV (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPR.DLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\binn\SEMMAP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WSOCK32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2_32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2HELP.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\odbcint.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\clusapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\resutils.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USERENV.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\NDDEAPI.DLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\binn\Resources\2052\SQLSVC.RLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\binn\Resources\2052\SEMMAP.RLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\binn\Resources\2052\sqlagent.RLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\binn\SQLAGENT.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTDSAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\DNSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WLDAP32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETRAP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SAMLIB.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\odbccp32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\msv1_0.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\CRYPT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSASN1.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\iphlpapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ICMP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPRAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ACTIVEDS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADSLDPC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RTUTILS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\SETUPAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RASAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasman.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\TAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\DHCPCSVC.DLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\BINN\SQLCMDSS.DLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\BINN\Resources\2052\SQLCMDSS.RLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\BINN\SQLREPSS.DLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\BINN\Resources\2052\SQLREPSS.RLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\BINN\SQLATXSS.DLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\binn\ATXCORE.dll (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\binn\Resources\2052\ATXCORE.RLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\MSSQL\BINN\Resources\2052\SQLATXSS.RLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\80\Tools\BINN\AXSCPHST.DLL (Microsoft Corporation) 模块文件: C:\Program Files\Microsoft SQL Server\80\Tools\BINN\Resources\2052\AXSCPHST.RLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\SQLSRV32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\sqlsrv32.rll (Microsoft Corporation) 模块文件: C:\WINNT\system32\DBNETLIB.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\security.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\DBmsLPCn.dll (Microsoft Corporation) 名称: ast.exe [已启用] 命令行: "C:\WINNT\zhizhu\ast_setup\ast\ast.exe" -min 文件路径: C:\WINNT\zhizhu\ast_setup\ast\ast.exe [未连网] (超级巡警) 模块文件: C:\WINNT\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\KERNEL32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADVAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\COMCTL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\iphlpapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSVCRT.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2_32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2HELP.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ICMP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPRAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SAMLIB.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTDSAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\DNSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WSOCK32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WLDAP32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETRAP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\OLE32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\OLEAUT32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ACTIVEDS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADSLDPC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RTUTILS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\SETUPAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\USERENV.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RASAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasman.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\TAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHLWAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\DHCPCSVC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\MFC80.DLL (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\MSVCR80.dll (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\MSVCP80.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\PSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\LZ32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WINMM.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RICHED20.DLL (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\common.dll (超级巡警) 模块文件: C:\WINNT\system32\INDICDLL.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SOGOUPY.IME (Sogou.com Inc.) 模块文件: C:\WINNT\system32\MSIMG32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTMARTA.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WINSPOOL.DRV (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPR.DLL (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\EngineSDK.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\AST.dll (超级巡警) 模块文件: C:\WINNT\system32\WINTRUST.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\CRYPT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSASN1.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\IMAGEHLP.dll (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\AutoRun.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\FileAnalyser.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\FileForceKiller.dll (DSW Lab) 模块文件: C:\WINNT\system32\MFC42u.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42LOC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\comdlg32.dll (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\ManagerProcess.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\ManagerService.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\Monitor.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\PortAssociate.dll (超级巡警) 模块文件: C:\WINNT\system32\WININET.dll (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\StateViewer.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\TIERepair.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\aScanCom.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\ssdt.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\tRubbishClear.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\tSecurityOptimize.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\zDiagnosticTool.dll (超级巡警) 模块文件: C:\WINNT\system32\cscdll.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\mlang.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\msafd.dll (Microsoft Corporation) 模块文件: C:\WINNT\System32\wshtcpip.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\sensapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\KillModule.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\MScaner.dll (超级巡警) 模块文件: C:\WINNT\System32\rnr20.dll (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\SKEngine.dll (超级巡警) 模块文件: C:\WINNT\System32\winrnr.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasadhlp.dll (Microsoft Corporation) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\ScanAd.dll (Secward Technologies. Inc.) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\smart.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\unarc.dll (超级巡警) 模块文件: C:\WINNT\zhizhu\ast_setup\ast\SScanner.dll (超级巡警) 模块文件: C:\WINNT\system32\MFC42.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSVCP60.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\CLBCATQ.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\LINKINFO.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ntshrui.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ATL.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\rsaenh.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\asfsipc.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSISIP.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\wshext.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\wshCHS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\cryptnet.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WINHTTP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\wdmaud.drv (Microsoft Corporation) 模块文件: C:\WINNT\system32\msacm32.drv (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSACM32.dll (Microsoft Corporation) 名称: SecNotifier.exe [已启用] 命令行: "C:\Program Files\Sucop\SecPlugin\SecNotifier.exe" 文件路径: C:\Program Files\Sucop\SecPlugin\SecNotifier.exe [未连网] (超级巡警) 模块文件: C:\WINNT\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\KERNEL32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADVAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\COMCTL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\iphlpapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSVCRT.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2_32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2HELP.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ICMP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPRAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SAMLIB.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTDSAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\DNSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WSOCK32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WLDAP32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETRAP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\OLE32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\OLEAUT32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ACTIVEDS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADSLDPC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RTUTILS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\SETUPAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\USERENV.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RASAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasman.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\TAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHLWAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\DHCPCSVC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSVCP60.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\LZ32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42LOC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\INDICDLL.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SOGOUPY.IME (Sogou.com Inc.) 模块文件: C:\WINNT\system32\MSIMG32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTMARTA.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WINSPOOL.DRV (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPR.DLL (Microsoft Corporation) 名称: rfwmain.exe [已启用] 命令行: "D:\Program Files\Rising\Rfw\rfwmain.exe" 文件路径: D:\Program Files\Rising\Rfw\rfwmain.exe [未连网] 模块文件: C:\WINNT\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSVCRT.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\KERNEL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADVAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42LOC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\COMCTL32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\INDICDLL.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SOGOUPY.IME (Sogou.com Inc.) 模块文件: C:\WINNT\system32\MSIMG32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ole32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\OLEAUT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\LZ32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTMARTA.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WINSPOOL.DRV (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPR.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WLDAP32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SAMLIB.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTDSAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\DNSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WSOCK32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2_32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2HELP.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETRAP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WININET.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\CRYPT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSASN1.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RASAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasman.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\TAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RTUTILS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\sensapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USERENV.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\msafd.dll (Microsoft Corporation) 模块文件: C:\WINNT\System32\wshtcpip.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasadhlp.dll (Microsoft Corporation) 模块文件: C:\WINNT\System32\rnr20.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\iphlpapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ICMP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPRAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ACTIVEDS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADSLDPC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\SETUPAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\DHCPCSVC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\System32\winrnr.dll (Microsoft Corporation) 名称: rfwmain.exe [已启用] 命令行: "D:\Program Files\Rising\Rfw\rfwmain.exe" 文件路径: D:\Program Files\Rising\Rfw\rfwmain.exe [未连网] 模块文件: C:\WINNT\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSVCRT.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\KERNEL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADVAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42LOC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\COMCTL32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\INDICDLL.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SOGOUPY.IME (Sogou.com Inc.) 模块文件: C:\WINNT\system32\MSIMG32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ole32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\OLEAUT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\LZ32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTMARTA.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WINSPOOL.DRV (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPR.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WLDAP32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SAMLIB.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTDSAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\DNSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WSOCK32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2_32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2HELP.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETRAP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WININET.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\CRYPT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSASN1.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RASAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasman.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\TAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RTUTILS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\sensapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USERENV.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINNT\System32\rnr20.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\iphlpapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ICMP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPRAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ACTIVEDS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADSLDPC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\SETUPAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\DHCPCSVC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\System32\winrnr.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasadhlp.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\msafd.dll (Microsoft Corporation) 模块文件: C:\WINNT\System32\wshtcpip.dll (Microsoft Corporation) 名称: rfwmain.exe [已启用] 命令行: "D:\Program Files\Rising\Rfw\rfwmain.exe" 文件路径: D:\Program Files\Rising\Rfw\rfwmain.exe [未连网] 模块文件: C:\WINNT\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSVCRT.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\KERNEL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADVAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42LOC.DLL (Microsoft Corporation) 模块文件: D:\Program Files\Rising\Rfw\ijt_base.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\WINNT\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\COMCTL32.dll (Microsoft Corporation) 模块文件: D:\Program Files\Rising\Rfw\olemon.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\WINNT\system32\SOGOUPY.IME (Sogou.com Inc.) 模块文件: C:\WINNT\system32\MSIMG32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ole32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\OLEAUT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\LZ32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTMARTA.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WINSPOOL.DRV (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPR.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WLDAP32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SAMLIB.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTDSAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\DNSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WSOCK32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2_32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2HELP.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETRAP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WININET.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\CRYPT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSASN1.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RASAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasman.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\TAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RTUTILS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\sensapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USERENV.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\msafd.dll (Microsoft Corporation) 模块文件: C:\WINNT\System32\wshtcpip.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasadhlp.dll (Microsoft Corporation) 模块文件: C:\WINNT\System32\rnr20.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\iphlpapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ICMP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPRAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ACTIVEDS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADSLDPC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\SETUPAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\DHCPCSVC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\System32\winrnr.dll (Microsoft Corporation) 名称: rfwmain.exe [已启用] 命令行: "D:\Program Files\Rising\Rfw\rfwmain.exe" 文件路径: D:\Program Files\Rising\Rfw\rfwmain.exe [未连网] 模块文件: C:\WINNT\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSVCRT.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\KERNEL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADVAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MFC42LOC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\COMCTL32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\INDICDLL.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SOGOUPY.IME (Sogou.com Inc.) 模块文件: C:\WINNT\system32\MSIMG32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ole32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\OLEAUT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\LZ32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTMARTA.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WINSPOOL.DRV (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPR.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WLDAP32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\SAMLIB.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\NTDSAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\DNSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WSOCK32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2_32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\WS2HELP.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\NETRAP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\WININET.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\CRYPT32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MSASN1.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RASAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasman.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\TAPI32.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\RTUTILS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\sensapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\USERENV.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINNT\System32\rnr20.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\iphlpapi.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ICMP.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\MPRAPI.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\ACTIVEDS.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\ADSLDPC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\SETUPAPI.DLL (Microsoft Corporation) 模块文件: C:\WINNT\system32\DHCPCSVC.DLL (Microsoft Corporation) 模块文件: C:\WINNT\System32\winrnr.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\rasadhlp.dll (Microsoft Corporation) 模块文件: C:\WINNT\system32\msafd.dll (Microsoft Corporation) 模块文件: C:\WINNT\System32\wshtcpip.dll (Microsoft Corporation) ============================================================== ActiveX控件 ============================================================== 该项来源: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats [Thunder Agent Class] <{485463B7-8FB2-4B3B-B29B-8B919B0EACCE}> ============================================================== 其他安全区域 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved [显示摇曳 CPL 扩展]