============================================================== 金山清理专家系统诊断报告 该诊断报告由金山清理专家提供 http://www.duba.net ============================================================== 诊断时间: 2009-01-22, 10:55 诊断平台: Windows XP [5.1.2600] Service Pack 3 IE版本: Internet Explorer V7.0.11.5730 计算机物理内存: 1023(MB) 当前可用内存: 570(MB) 硬盘总大小: 219(GB) 硬盘可用空间: 106(GB) 清理专家版本: 2008.06.13.404 恶意软件库版本: 0.00.00.0 漏洞库版本: 0.00.00.0 ============================================================== 常规启动项 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ISUSPM Startup] <"C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup> 文件路径: C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe [未连网] [VMSnap3] 文件路径: C:\WINDOWS\VMSnap3.exe [未连网] [Domino] 文件路径: C:\WINDOWS\Domino.exe [未连网] ============================================================== 启动文件夹位置 ============================================================== Common Startup: C:\Documents and Settings\All Users\「开始」菜单\程序\启动 Startup: C:\Documents and Settings\user\「开始」菜单\程序\启动 Common Startup: %ALLUSERSPROFILE%\「开始」菜单\程序\启动 ============================================================== 文件扩展名关联 ============================================================== .GIF <"C:\Program Files\ACDSee\ACDSee.exe" /dde> 文件路径: C:\Program Files\ACDSee\ACDSee.exe [未连网] ============================================================== 系统服务 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services [Adobe LM Service] [已启用] <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"> 文件路径: C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [未连网] [ATI Smart] [已禁用] 文件路径: C:\WINDOWS\system32\ati2sgag.exe [未连网] [CCALib8] [已禁用] 文件路径: C:\Program Files\Canon\CAL\CALMAIN.exe [未连网] [FontCache3.0.0.0] [已启用] 文件路径: C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [未连网] [HidServ] [已禁用] <%SystemRoot%\System32\hidserv.dll> [IDriverT] [已启用] <"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"> 文件路径: C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [未连网] [idsvc] [已启用] <"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"> 文件路径: C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [未连网] [NetTcpPortSharing] [已启用] <"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"> 文件路径: C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [未连网] [ServiceLayer] [已启用] <"C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe"> 文件路径: C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe [未连网] ============================================================== 驱动程序 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32 [msacm.iac2] [已启用] 文件路径: C:\WINDOWS\system32\iac25_32.ax [未连网] [vidc.iv50] [已启用] 文件路径: C:\WINDOWS\system32\ir50_32.dll [未连网] [msacm.voxacm160] [已启用] 文件路径: C:\WINDOWS\system32\vct3216.acm [未连网] [vidc.MPG4] [已启用] 文件路径: C:\WINDOWS\system32\MPG4c32.dll [未连网] [vidc.MP42] [已启用] 文件路径: C:\WINDOWS\system32\MPG4c32.dll [未连网] [vidc.MP43] [已启用] 文件路径: C:\WINDOWS\system32\MPG4c32.dll [未连网] [vidc.xivd] [已启用] 文件路径: C:\Program Files\StormII\codec\xvidvfw.dll [未连网] [vidc.tscc] [已启用] 文件路径: C:\WINDOWS\system32\tsccvid.dll [未连网] [vidc.LEAD] [已启用] 文件路径: C:\WINDOWS\system32\LCODCCMP.DLL [未连网] -------------------------------------------------------------- 该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services [BaseTDI] [已启用] 文件路径: C:\WINDOWS\system32\DRIVERS\BaseTDI.SYS [未连网] [MegaIDE] [已启用] 文件路径: C:\WINDOWS\system32\DRIVERS\MegaIDE.sys [未连网] [npkcrypt] [已禁用] <\??\C:\Program Files\Tencent\QQ\npkcrypt.sys> 文件路径: C:\Program Files\Tencent\QQ\npkcrypt.sys [未连网] [oreans32] [已禁用] <\??\C:\WINDOWS\system32\drivers\oreans32.sys> 文件路径: C:\WINDOWS\system32\drivers\oreans32.sys [未连网] [prodrv06] [已启用] <\SystemRoot\System32\drivers\prodrv06.sys> 文件路径: C:\WINDOWS\System32\drivers\prodrv06.sys [未连网] [prohlp02] [已启用] 文件路径: C:\WINDOWS\system32\drivers\prohlp02.sys [未连网] [prosync1] [已启用] 文件路径: C:\WINDOWS\system32\drivers\prosync1.sys [未连网] [QKeyService] [已启用] 文件路径: C:\WINDOWS\system32\KeyCrypt.sys [未连网] [RsAntiSpyware] [已启用] 文件路径: C:\WINDOWS\system32\drivers\RsBoot.sys [未连网] [Secdrv] [已禁用] 文件路径: C:\WINDOWS\system32\DRIVERS\secdrv.sys [未连网] [sfhlp01] [已启用] 文件路径: C:\WINDOWS\system32\drivers\sfhlp01.sys [未连网] [sptd] [已启用] 文件路径: C:\WINDOWS\system32\Drivers\sptd.sys [文件无法访问] [ss_bus] [已启用] 文件路径: C:\WINDOWS\system32\DRIVERS\ss_bus.sys [未连网] [ss_mdfl] [已启用] 文件路径: C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [未连网] [ss_mdm] [已启用] 文件路径: C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [未连网] [vvftav303] [已启用] 文件路径: C:\WINDOWS\system32\drivers\vvftav303.sys [未连网] [ZSMC0303] [已启用] 文件路径: C:\WINDOWS\system32\Drivers\usbVM303.sys [未连网] ============================================================== 当前进程 ============================================================== 名称: SMSvcHost.exe [已启用] 命令行: "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" 文件路径: C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [未连网] (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\KERNEL32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ADVAPI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msvcrt.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\LPK.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USP10.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kmon.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2\MSVCR80.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\comctl32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\32e6f703c114f3a971cbe706586e3655\mscorlib.ni.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ole32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\ba0e3a22211ba7343e0116b051f2965a\System.ni.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SMSvcHost\a098c66aa40d958878f3f5344e6ae1a4\SMSvcHost.ni.exe (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\rsaenh.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\193ac978af569ad9ee45110b359961b9\System.ServiceProcess.ni.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\169ba2fe1a4d87ede3ab8dd3d44d867e\SMDiagnostics.ni.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\350903c091629396c08742c996c1caba\System.ServiceModel.ni.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\bdd94a4c46e4424787dfed9381196cb3\System.IdentityModel.ni.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\eee9b48577689e92db5a7b5c5de98d9b\System.Configuration.ni.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\c98cb65a79cfccb44ea727ebe4593ede\System.Xml.ni.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\e27527e67611d8acc0d8dff6d286af23\System.Runtime.Serialization.ni.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\67cfb70213562afe2ca9b9066764af3a\System.Web.ni.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_zh-CHS_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll (Microsoft Corporation) 名称: VMSnap3.exe [已启用] 命令行: "C:\WINDOWS\VMSnap3.exe" 文件路径: C:\WINDOWS\VMSnap3.exe [未连网] (Vimicro) 模块文件: C:\WINDOWS\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kernel32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ADVAPI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ole32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msvcrt.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ksproxy.ax (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SETUPAPI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ksuser.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\LPK.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USP10.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kmon.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\iertutil.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\uxtheme.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MSCTF.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\CLBCATQ.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\COMRes.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WINTRUST.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\CRYPT32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MSASN1.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\IMAGEHLP.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msdmo.dll 模块文件: C:\WINDOWS\system32\COMCTL32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\Program Files\360\360Safe\safemon\safemon.dll (360.CN) 模块文件: C:\WINDOWS\system32\PSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\devenum.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WINMM.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kswdmcap.ax (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MFC42.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MFC42LOC.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\VM303Prp.Ax (Vimicro) 模块文件: C:\WINDOWS\system32\comdlg32.dll (Microsoft Corporation) 名称: Domino.exe [已启用] 命令行: "C:\WINDOWS\Domino.exe" 文件路径: C:\WINDOWS\Domino.exe [未连网] 模块文件: C:\WINDOWS\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kernel32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ole32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ADVAPI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msvcrt.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\LPK.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USP10.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kmon.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\iertutil.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\uxtheme.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MSCTF.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\CLBCATQ.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\COMRes.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\setupapi.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WINTRUST.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\CRYPT32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MSASN1.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\IMAGEHLP.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msdmo.dll 模块文件: C:\WINDOWS\system32\COMCTL32.dll (Microsoft Corporation) 模块文件: D:\QQ\QQDoctor\TSVulMon.DAT (Tencent) 模块文件: C:\Program Files\360\360Safe\safemon\safemon.dll (360.CN) 模块文件: C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\PSAPI.DLL (Microsoft Corporation) 名称: procexp.exe [已启用] 命令行: "D:\hk工具\进程管理\procexp.exe" 文件路径: D:\hk工具\进程管理\procexp.exe [未连网] (Sysinternals) 模块文件: C:\WINDOWS\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kernel32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WS2_32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ADVAPI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msvcrt.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WS2HELP.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MPR.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\COMCTL32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\comdlg32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ole32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\LPK.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USP10.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kmon.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\Program Files\Rising\AntiSpyware\comx3.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\Program Files\Rising\AntiSpyware\Syslay.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\WINDOWS\system32\Wtsapi32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WINSTA.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\NETAPI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\iertutil.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\dbghelp.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\acledit.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\NETUI0.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\NETUI1.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\NETRAP.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SAMLIB.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\NETUI2.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\netmsg.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\iphlpapi.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\aclui.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\uxtheme.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CorperfmonExt.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2\MSVCR80.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\perfctrs.dll (Microsoft Corporation) 模块文件: F:\office\Office12\OLMAPI32.DLL (Microsoft Corporation) 模块文件: C:\Program Files\Common Files\Microsoft Shared\office12\mso.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msi.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\pschdprf.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\TRAFFIC.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WMI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\System32\rasctrs.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\rasman.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msv1_0.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\System32\rsvpperf.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\tapiperf.dll (Microsoft Corporation) 模块文件: C:\Program Files\360\360Safe\safemon\safemon.dll (360.CN) 模块文件: C:\WINDOWS\system32\PSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MSCTF.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\netfxperf.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\perfcounter.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\pdh.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\CRYPT32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MSASN1.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ODBC32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\odbcbcp.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\odbcint.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msctfime.ime (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\CLBCATQ.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\COMRes.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\Wintrust.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\IMAGEHLP.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\Powrprof.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscordbi.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SETUPAPI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\appHelp.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\System32\cscui.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\System32\CSCDLL.dll (Microsoft Corporation) 名称: 金-山-诊-断及粉-碎-器.exe [已启用] 命令行: "C:\Documents and Settings\user\桌面\jinsha\金-山-诊-断及粉-碎-器.exe" 文件路径: C:\Documents and Settings\user\桌面\jinsha\金-山-诊-断及粉-碎-器.exe [未连网] 模块文件: C:\WINDOWS\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kernel32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ADVAPI32.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\WinSxS\X86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\COMCTL32.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msvcrt.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\COMDLG32.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\OLE32.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\LPK.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USP10.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kmon.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\Program Files\Rising\AntiSpyware\comx3.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\Program Files\Rising\AntiSpyware\Syslay.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\WINDOWS\system32\Wtsapi32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WINSTA.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\NETAPI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\iertutil.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\riched32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\RICHED20.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\uxtheme.dll (Microsoft Corporation) 模块文件: C:\Program Files\360\360Safe\safemon\safemon.dll (360.CN) 模块文件: C:\WINDOWS\system32\PSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MSCTF.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msctfime.ime (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\CLBCATQ.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\COMRes.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SETUPAPI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\appHelp.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHDOCVW.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\CRYPT32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MSASN1.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\CRYPTUI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WININET.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\Normaliz.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WINTRUST.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\IMAGEHLP.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WLDAP32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation) 名称: 123.exe [已启用] 命令行: "C:\DOCUME~1\user\LOCALS~1\Temp\RarSFX0\123.exe" 文件路径: C:\DOCUME~1\user\LOCALS~1\Temp\RarSFX0\123.exe [未连网] (Ki-ngso-ft Corp-oration) 模块文件: C:\WINDOWS\system32\ntdll.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kernel32.dll (Microsoft Corporation) 模块文件: C:\DOCUME~1\user\LOCALS~1\Temp\RarSFX0\MFC80U.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2\MSVCR80.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msvcrt.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\GDI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USER32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHLWAPI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ADVAPI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\RPCRT4.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\Secur32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\MSIMG32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\comdlg32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\WinSxS\X86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\COMCTL32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ole32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation) 模块文件: C:\DOCUME~1\user\LOCALS~1\Temp\RarSFX0\kis.dll (Kingsoft Corporation) 模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2\MSVCP80.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\VERSION.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WININET.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\Normaliz.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\iertutil.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\PSAPI.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WS2_32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WS2HELP.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\IMM32.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\LPK.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USP10.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\kmon.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\MFC80CHS.DLL (Microsoft Corporation) 模块文件: C:\Program Files\Rising\AntiSpyware\comx3.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\Program Files\Rising\AntiSpyware\Syslay.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\WINDOWS\system32\Wtsapi32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WINSTA.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\NETAPI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\uxtheme.dll (Microsoft Corporation) 模块文件: C:\Program Files\360\360Safe\safemon\safemon.dll (360.CN) 模块文件: C:\WINDOWS\system32\MSCTF.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msctfime.ime (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\CLBCATQ.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\COMRes.dll (Microsoft Corporation) 模块文件: C:\DOCUME~1\user\LOCALS~1\Temp\RarSFX0\KAVDevC.dll (Kingsoft Corporation) 模块文件: C:\WINDOWS\system32\RICHED20.DLL (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\RASAPI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\rasman.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\TAPI32.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\rtutils.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\WINMM.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msv1_0.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\iphlpapi.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\USERENV.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\sensapi.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\xpsp2res.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\rasadhlp.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\hnetcfg.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\System32\wship6.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\DNSAPI.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\appHelp.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\System32\wshtcpip.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msls31.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\mlang.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\msimtf.dll (Microsoft Corporation) 模块文件: F:\Rising\Rav\RavScrCh.dll (Beijing Rising Information Technology Co.. Ltd.) 模块文件: C:\WINDOWS\system32\vbscript.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\jscript.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\ImgUtil.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\pngfilt.dll (Microsoft Corporation) 模块文件: C:\WINDOWS\system32\mshtmled.dll (Microsoft Corporation) 模块文件: C:\DOCUME~1\user\LOCALS~1\Temp\RarSFX0\KasCommon.dll (Kingsoft Corporation) 模块文件: C:\DOCUME~1\user\LOCALS~1\Temp\RarSFX0\KAEAutorunEx.dll (Kingsoft Corporation) 模块文件: C:\DOCUME~1\user\LOCALS~1\Temp\RarSFX0\KAVRep.DLL (Kingsoft Corporation) ============================================================== 协议 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler 文件路径: C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [未连网] 文件路径: C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [未连网] ============================================================== 第3方IE插件 ============================================================== 名称: nprfxins.dll [已启用] 文件路径: C:\Program Files\Internet Explorer\PLUGINS\RichFX\Player\nprfxins.dll [未连网] ============================================================== IE扩展菜单 ============================================================== 该项来源: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt 文件路径: C:\WINDOWS\system32\GPhotos.scr [未连网] <使用Web迅雷下载> 文件路径: D:\web讯雷\GetUrl.htm [未连网] <使用Web迅雷下载全部链接> 文件路径: D:\web讯雷\GetAllUrl.htm [未连网] <添加到QQ表情> 文件路径: D:\QQ\AddEmotion.htm [未连网] ============================================================== ActiveX控件 ============================================================== 该项来源: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats [WebThunder Browser Helper] <{00000AAA-A363-466E-BEF5-9BB68697AA7F}> [Web Browser Applet Control] <{08B0E5C0-4FCB-11CF-AAA5-00401C608501}> 文件路径: C:\WINDOWS\system32\msjava.dll [未连网] [WebThunder DapPlayer] <{2EEDA47E-8D5C-4d7e-B4B6-E16E19218555}> 文件路径: D:\web讯雷\DownAndPlay\DapPlayer3.0.5712.71.936.dll [未连网] [KvScan Control] <{626AEE7D-DC95-4405-8F9E-9FB1EA80AEDE}> 文件路径: C:\WINDOWS\KVSCAN~1\KvKill.ocx [未连网] [XMP Class] <{6483F145-A768-4C41-AACC-52D4D7845851}> 文件路径: C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work [未连网] [XDRM] <{693571CB-54A3-4E90-9D52-EEAE1334E2D3}> 文件路径: C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work [未连网] [MediaComm Class] <{7670648D-461B-42AF-BDFE-46D26AF5EFF2}> 文件路径: D:\web讯雷\InMedia\MediaAddin13.dll [未连网] [XML DOM Document 5.0] <{88D969E5-F192-11D4-A65F-0040963251E5}> 文件路径: C:\Program Files\Common Files\Microsoft Shared\OFFICE12\msxml5.dll [未连网] [Free Threaded XML DOM Document 5.0] <{88D969E6-F192-11D4-A65F-0040963251E5}> 文件路径: C:\Program Files\Common Files\Microsoft Shared\OFFICE12\msxml5.dll [未连网] [XSL Template 5.0] <{88D969E8-F192-11D4-A65F-0040963251E5}> 文件路径: C:\Program Files\Common Files\Microsoft Shared\OFFICE12\msxml5.dll [未连网] [XML HTTP 5.0] <{88D969EA-F192-11D4-A65F-0040963251E5}> 文件路径: C:\Program Files\Common Files\Microsoft Shared\OFFICE12\msxml5.dll [未连网] [Uploader Class] <{8A990A37-B746-43CC-BF08-400740854928}> 文件路径: C:\WINDOWS\system32\FMO.dll [未连网] [DapCtrl Class] <{ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8}> 文件路径: C:\Program Files\Common Files\Thunder Network\KanKan\dapctrl.2.1.5801.53.(936).dll [未连网] [ScreenCapture Class] <{B4D9857D-8A55-4442-A577-6B3ED5D4E41B}> 文件路径: C:\WINDOWS\system32\FMO.dll [未连网] [WebActivater Control] <{C661F36D-DF85-4EF4-83C7-E107B83D04B1}> 文件路径: C:\WINDOWS\system32\3DShowVM.ocx [未连网] [TencentVmpCtl Class] <{D9819BD5-422B-4281-8523-726466ED692B}> 文件路径: C:\Program Files\Tencent\Viewpoint Media Player\AxMetaStream.dll [未连网] [Rising Web Scan Object] <{E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153}> 文件路径: C:\WINDOWS\Downloaded Program Files\OL2005.dll [未连网] [Thunder DapCtrl] <{EF1EA76E-5428-4e40-85A1-D4DD2893183A}> 文件路径: D:\web讯雷\DownAndPlay\DapCtrl1.3.17.20.638.dll [未连网] [KvScanOnline Control] <{EF6205C1-3F17-4829-BCB5-1336ED89E356}> 文件路径: C:\WINDOWS\system32\KvDown.ocx [未连网] [XPPlayer Class] <{F3E70CEA-956E-49CC-B444-73AFE593AD7F}> 文件路径: C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.0.0.164.(936).dll [未连网] ============================================================== 其他安全区域 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved [WinRAR] 文件路径: C:\Program Files\WinRAR\rarext.dll [未连网] [PicaView 外壳扩展] 文件路径: C:\Program Files\ACDSee\picaview.dll [未连网] [诺基亚手机浏览器] 文件路径: E:\Nokia\Nokia PC Suite 6\PhoneBrowser.dll [未连网]