木马论坛
这个网摘链接地址是:http://bbs.mmbest.com/
这个网摘被浏览320次
这个网摘被下面的人收藏过:
-
木马论坛
木马论坛
niki_mqs 发布于2006-08-01 05:21:05 -
99999999999999999999999木马帝国
liaowan001 收录于标签 临时2 中, 2005-09-07 18:45:15
此域名下的其他网摘
- 网吧破解 -- 2006-07-12 01:10:59
最新评论
| 2007-10-19 10:22:54 | IP: 220.162.24.* | 回复 引用
系统诊断报告
本报告由提供 http://www.fygsoft.com
报告生成时间:[2007-10-19 10:10:58]
操作系统为:WindowsXP 5.1.2600.2 Service Pack 2
Internet Explorer版本为:V6.0.2900.2180 Build:62900.2180
总共内存为:255M 剩余内存为:80M
进程模块信息:
1 (安全进程):C:WINDOWSsystem32smss.exe 命令行: SystemRootSystem32smss.exe
2 (安全进程):c:WINDOWSsystem32csrss.exe 命令行: C:WINDOWSsystem32csrss.exe ObjectDirectory=Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
3 未知进程:c:WINDOWSsystem32winlogon.exe 命令行: winlogon.exe
4 - 未知模块:c:WINDOWSsystem32authz.dll
5 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
6 - 未知模块:c:WINDOWSsystem32ole32.dll
7 - 未知模块:c:WINDOWSsystem32comctl32.dll
8 - 未知模块:c:WINDOWSsystem32sfc_os.dll
9 - 未知模块:c:WINDOWSsystem32uxtheme.dll
10 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
11 - 未知模块:c:WINDOWSsystem32clbcatq.dll
12 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
13 (安全进程):c:WINDOWSsystem32services.exe 命令行: C:WINDOWSsystem32services.exe
14 - 未知模块:c:WINDOWSsystem32authz.dll
15 - 未知模块:c:WINDOWSsystem32umpnpmgr.dll
16 - 未知模块:c:WINDOWSsystem32ole32.dll
17 - 未知模块:c:WINDOWSsystem32uxtheme.dll
18 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
19 - 未知模块:c:WINDOWSsystem32comctl32.dll
20 (安全进程):c:WINDOWSsystem32lsass.exe 命令行: C:WINDOWSsystem32lsass.exe
21 - 未知模块:c:WINDOWSsystem32dnsapi.dll
22 - 未知模块:c:WINDOWSsystem32ole32.dll
23 - 未知模块:c:WINDOWSsystem32uxtheme.dll
24 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
25 - 未知模块:c:WINDOWSsystem32comctl32.dll
26 - 未知模块:c:WINDOWSsystem32kerberos.dll
27 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
28 (安全进程):c:WINDOWSsystem32svchost.exe 命令行: C:WINDOWSsystem32svchost -k DcomLaunch
29 - 未知模块:c:WINDOWSsystem32ole32.dll
30 - 未知模块:c:WINDOWSsystem32uxtheme.dll
31 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
32 - 未知模块:c:WINDOWSsystem32comctl32.dll
33 - 未知模块:c:WINDOWSsystem32rpcss.dll
34 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
35 - 未知模块:c:WINDOWSsystem32clbcatq.dll
36 (安全进程):c:WINDOWSsystem32svchost.exe 命令行: C:WINDOWSsystem32svchost -k rpcss
37 - 未知模块:c:WINDOWSsystem32ole32.dll
38 - 未知模块:c:WINDOWSsystem32uxtheme.dll
39 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
40 - 未知模块:c:WINDOWSsystem32comctl32.dll
41 - 未知模块:c:WINDOWSsystem32rpcss.dll
42 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
43 - 未知模块:c:WINDOWSsystem32dnsapi.dll
44 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
45 - 未知模块:c:WINDOWSsystem32rasadhlp.dll
46 - 未知模块:c:WINDOWSsystem32clbcatq.dll
47 未知进程:d:RisingRavCCenter.exe 命令行: "D:RisingRavCCenter.exe"
48 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
49 - 未知模块:c:WINDOWSsystem32ole32.dll
50 (安全进程):c:WINDOWSsystem32svchost.exe 命令行: C:WINDOWSsystem32svchost.exe -k netsvcs
51 - 未知模块:c:WINDOWSsystem32ole32.dll
52 - 未知模块:c:WINDOWSsystem32uxtheme.dll
53 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
54 - 未知模块:c:WINDOWSsystem32comctl32.dll
55 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
56 - 未知模块:c:WINDOWSsystem32dhcpcsvc.dll
57 - 未知模块:c:WINDOWSsystem32dnsapi.dll
58 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
59 - 未知模块:c:WINDOWSsystem32clbcatq.dll
60 - 未知模块:c:WINDOWSsystem32esent.dll
61 - 未知模块:c:WINDOWSsystem32wuauserv.dll
62 - 未知模块:c:WINDOWSsystem32wuaueng.dll
63 - 未知模块:c:WINDOWSsystem32sfc_os.dll
64 - 未知模块:c:WINDOWSsystem32es.dll
65 - 未知模块:c:WINDOWSsystem32comsvcs.dll
66 - 未知模块:c:WINDOWSsystem32colbact.dll
67 - 未知模块:c:WINDOWSsystem32mtxclu.dll
68 - 未知模块:c:WINDOWSsystem32tapisrv.dll
69 - 未知模块:c:WINDOWSsystem32rasmans.dll
70 - 未知模块:c:WINDOWSsystem32netman.dll
71 - 未知模块:c:WINDOWSsystem32kerberos.dll
72 - 未知模块:c:WINDOWSsystem32rasadhlp.dll
73 (安全进程):c:WINDOWSsystem32svchost.exe 命令行: C:WINDOWSsystem32svchost.exe -k NetworkService
74 - 未知模块:c:WINDOWSsystem32ole32.dll
75 - 未知模块:c:WINDOWSsystem32uxtheme.dll
76 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
77 - 未知模块:c:WINDOWSsystem32comctl32.dll
78 - 未知模块:c:WINDOWSsystem32dnsapi.dll
79 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
80 未知进程:d:RisingRavRavMonD.exe 命令行: "D:RISINGRAVRavmond.exe"
81 - 未知模块:d:RisingRavBWList.dll
82 - 未知模块:c:WINDOWSsystem32mfc71.dll
83 - 未知模块:c:WINDOWSsystem32msvcr71.dll
84 - 未知模块:c:WINDOWSsystem32ole32.dll
85 - 未知模块:c:WINDOWSsystem32msvcp71.dll
86 - 未知模块:c:WINDOWSsystem32comctl32.dll
87 - 未知模块:d:RisingRavRsAppMgr.dll
88 - 未知模块:d:RisingRavCfgDll.dll
89 - 未知模块:d:RisingRavRsLog.dll
90 - 未知模块:d:RisingRavProcCom.dll
91 - 未知模块:d:RisingRavRsCommX2.dll
92 - 未知模块:d:RisingRavMonRule.dll
93 - 未知模块:d:RisingRavHOOKSYS.dll
94 - 未知模块:d:RisingRavHookReg.dll
95 - 未知模块:d:RisingRavHookNtos.dll
96 - 未知模块:d:RisingRavrswalmon.dll
97 - 未知模块:c:WINDOWSsystem32sfc_os.dll
98 - 未知模块:d:RisingRavRsStore.dll
99 - 未知模块:d:RisingRavHookCont.dll
100 - 未知模块:d:RisingRavFakeScan.dll
101 - 未知模块:d:RisingRavScanner.dll
102 - 未知模块:d:RisingRavrecomp.dll
103 - 未知模块:d:RisingRavrefs.dll
104 - 未知模块:d:RisingRavVirusLib.dll
105 - 未知模块:d:RisingRavrelibldr.dll
106 - 未知模块:d:RisingRavHookWeb.dll
107 - 未知模块:c:WINDOWSsystem32clbcatq.dll
108 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
109 - 未知模块:d:RisingRavffr.dll
110 - 未知模块:d:RisingRavnvfile.dll
111 - 未知模块:d:RisingRavscanexec.dll
112 - 未知模块:d:RisingRavunexe.dll
113 - 未知模块:d:RisingRavScanEX.dll
114 - 未知模块:d:RisingRavpearc.dll
115 - 未知模块:d:RisingRavScanPack.dll
116 - 未知模块:d:RisingRavrevm.dll
117 - 未知模块:d:RisingRavuroutine.dll
118 - 未知模块:d:RisingRavscriptci.dll
119 - 未知模块:d:RisingRavScanSct.dll
120 - 未知模块:d:RisingRavExtMail.dll
121 - 未知模块:d:RisingRavExtOLE.dll
122 (安全进程):c:WINDOWSexplorer.exe 命令行: C:WINDOWSExplorer.EXE
123 - 未知模块:c:WINDOWSsystem32ole32.dll
124 - 未知模块:c:WINDOWSsystem32uxtheme.dll
125 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
126 - 未知模块:c:WINDOWSsystem32comctl32.dll
127 - 未知模块:c:WINDOWSsystem32clbcatq.dll
128 - 未知模块:c:WINDOWSsystem32RavExt.dll
129 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
130 - 未知模块:c:WINDOWSsystem32asycfila.dll
131 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
132 - 未知模块:c:WINDOWSsystem32dnsapi.dll
133 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
134 - 未知模块:c:WINDOWSsystem32rasadhlp.dll
135 - 未知模块:c:WINDOWSsystem32linkinfo.dll
136 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
137 - 未知模块:d:program filesastAST.dll
138 - 未知模块:c:WINDOWSsystem32mlang.dll
139 - 未知模块:c:WINDOWSsystem32shdoclc.dll
140 - 未知模块:c:WINDOWSsystem32JPWB.IME
141 - 未知模块:c:WINDOWSsystem32WINABC.IME
142 - 未知模块:c:program filesWinRARRarExt.dll
143 - 未知模块:d:RisingRavRsCommon.dll
144 - 未知模块:c:Program FilesftcFTCCommenu.dll
145 未知进程:d:RisingRavRavStub.exe 命令行: D:RISINGRAVRavStub.exe /RAVMOND=1023
146 - 未知模块:c:WINDOWSsystem32comctl32.dll
147 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
148 - 未知模块:c:WINDOWSsystem32ole32.dll
149 - 未知模块:d:RisingRavProcCom.dll
150 - 未知模块:d:RisingRavRsCommX2.dll
151 - 未知模块:d:RisingRavRsCommon.dll
152 未知进程:d:program filesastAST.exe 命令行: "D:Program FilesastAST.exe" -min
153 - 未知模块:d:program filesastdbghelp.dll
154 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
155 - 未知模块:d:program filesastmfc80.dll
156 - 未知模块:d:program filesastmsvcr80.dll
157 - 未知模块:d:program filesastmsvcp80.dll
158 - 未知模块:c:WINDOWSsystem32ole32.dll
159 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
160 - 未知模块:d:program filesastMFC80CHS.dll
161 - 未知模块:d:program filesastCommon.dll
162 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
163 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
164 - 未知模块:c:WINDOWSsystem32uxtheme.dll
165 - 未知模块:d:program filesastaScanCom.dll
166 - 未知模块:d:program filesastAST.dll
167 - 未知模块:d:program filesastAutoRun.dll
168 - 未知模块:d:program filesastenginesdk.dll
169 - 未知模块:d:program filesastfileanalyser.dll
170 - 未知模块:d:program filesastkillmodule.dll
171 - 未知模块:d:program filesastmanagerprocess.dll
172 - 未知模块:d:program filesastmanagerservice.dll
173 - 未知模块:d:program filesastMonitor.dll
174 - 未知模块:d:program filesastmsvcm80.dll
175 - 未知模块:d:program filesastmsvcm80.dll
176 - 未知模块:d:program filesastsmart.dll
177 - 未知模块:d:program filesastSSDT.dll
178 - 未知模块:d:program filesaststateviewer.dll
179 - 未知模块:d:program filesasttierepair.dll
180 - 未知模块:d:program filesasttrubbishclear.dll
181 - 未知模块:d:program filesasttsecurityoptimize.dll
182 - 未知模块:d:program filesastunarc.dll
183 - 未知模块:d:program filesastzdiagnostictool.dll
184 - 未知模块:d:program filesastMScaner.dll
185 - 未知模块:d:program filesastSKEngine.dll
186 - 未知模块:d:program filesastsm.dll
187 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
188 - 未知模块:c:WINDOWSsystem32dnsapi.dll
189 - 未知模块:c:WINDOWSsystem32rasadhlp.dll
190 (安全进程):c:WINDOWSsystem32rundll32.exe 命令行: "C:WINDOWSsystem32Rundll32.exe" C:PROGRA~1TENCENTSSPlusSPlus.dll,Rundll32 R
191 - 未知模块:c:WINDOWSsystem32ole32.dll
192 - 未知模块:c:WINDOWSsystem32uxtheme.dll
193 - 未知模块:c:WINDOWSsystem32comctl32.dll
194 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
195 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
196 - 未知模块:d:program filesastAST.dll
197 未知进程:d:RisingRavRavTask.exe 命令行: "D:RisingRavRavTask.exe" -system
198 - 未知模块:c:WINDOWSsystem32comctl32.dll
199 - 未知模块:c:WINDOWSsystem32ole32.dll
200 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
201 - 未知模块:d:RisingRavProcCom.dll
202 - 未知模块:d:RisingRavRsCommX2.dll
203 - 未知模块:d:RisingRavRsCommon.dll
204 - 未知模块:d:RisingRavRsAppMgr.dll
205 - 未知模块:d:RisingRavCfgDll.dll
206 未知进程:c:program filesGooglegoogletoolbarnotifier1.2.1128.5462googletoolbarnotifier.exe 命令行: "C:Program FilesGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe"
207 - 未知模块:c:WINDOWSsystem32ole32.dll
208 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
209 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
210 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
211 - 未知模块:c:WINDOWSsystem32clbcatq.dll
212 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
213 - 未知模块:c:program filesGooglegoogletoolbarnotifier1.2.1128.5462res_zh-cn.dll
214 - 未知模块:c:program filesGooglegoogletoolbarnotifier1.2.1128.5462swg.dll
215 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
216 - 未知模块:d:program filesastAST.dll
217 未知进程:d:RisingRavRavMon.exe 命令行: "D:RisingRavRavmon.exe" -SYSTEM
218 - 未知模块:c:WINDOWSsystem32mfc71.dll
219 - 未知模块:c:WINDOWSsystem32msvcr71.dll
220 - 未知模块:c:WINDOWSsystem32ole32.dll
221 - 未知模块:c:WINDOWSsystem32msvcp71.dll
222 - 未知模块:d:RisingRavProcCom.dll
223 - 未知模块:d:RisingRavRsCommX2.dll
224 - 未知模块:d:RisingRavRsCommon.dll
225 - 未知模块:d:RisingRavrecomp.dll
226 - 未知模块:d:RisingRavrefs.dll
227 - 未知模块:d:RisingRavVirusLib.dll
228 - 未知模块:d:RisingRavrelibldr.dll
229 - 未知模块:d:RisingRavRsAppMgr.dll
230 - 未知模块:d:RisingRavCfgDll.dll
231 - 未知模块:d:RisingRavMonRule.dll
232 - 未知模块:d:RisingRavPngDll.dll
233 - 未知模块:d:RisingRavRsGuiLib.dll
234 - 未知模块:c:WINDOWSsystem32uxtheme.dll
235 - 未知模块:d:RisingRavRsXML.dll
236 (安全进程):c:WINDOWSsystem32ctfmon.exe 命令行: "C:WINDOWSsystem32ctfmon.exe"
237 - 未知模块:c:WINDOWSsystem32ole32.dll
238 - 未知模块:c:WINDOWSsystem32uxtheme.dll
239 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
240 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
241 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
242 - 未知模块:d:program filesastAST.dll
243 未知进程:c:program fileslindirmicrolabLAMlam.exe 命令行: "C:Program FilesLinDirMicroLabLAMlam.exe"
244 - 未知模块:c:WINDOWSsystem32MSVBVM60.DLL
245 - 未知模块:c:WINDOWSsystem32ole32.dll
246 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
247 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
248 - 未知模块:c:WINDOWSsystem32clbcatq.dll
249 - 未知模块:c:WINDOWSsystem32MSINET.OCX
250 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
251 - 未知模块:c:WINDOWSsystem32dnsapi.dll
252 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
253 - 未知模块:d:program filesastAST.dll
254 - 未知模块:c:WINDOWSsystem32uxtheme.dll
255 未知进程:c:program filesmsn messengermsnmsgs.exe 命令行: "C:Program FilesMSN Messengermsnmsgs.exe"
256 - 未知模块:c:WINDOWSsystem32ole32.dll
257 - 未知模块:c:WINDOWSsystem32comctl32.dll
258 (安全进程):c:WINDOWSsystem32wbemwmiprvse.exe 命令行: C:WINDOWSsystem32wbemwmiprvse.exe
259 - 未知模块:c:WINDOWSsystem32ole32.dll
260 - 未知模块:c:WINDOWSsystem32dnsapi.dll
261 - 未知模块:c:WINDOWSsystem32uxtheme.dll
262 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
263 - 未知模块:c:WINDOWSsystem32comctl32.dll
264 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
265 - 未知模块:c:WINDOWSsystem32clbcatq.dll
266 未知进程:c:program filesftcftcleaner.exe 命令行: "C:Program FilesftcFTCleaner.exe"
267 - 未知模块:c:WINDOWSsystem32ole32.dll
268 - 未知模块:c:program filesftcMSVBVM60.DLL
269 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
270 - 未知模块:c:program filesftcVB6CHS.DLL
271 - 未知模块:d:program filesastAST.dll
272 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
273 - 未知模块:c:WINDOWSsystem32comctl32.dll
274 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
275 - 未知模块:c:WINDOWSsystem32clbcatq.dll
276 - 未知模块:c:program filesftcMSCOMCTL.OCX
277 - 未知模块:c:program filesftcTABCTL32.OCX
278 - 未知模块:c:program filesftcftcapi.dll
279 - 未知模块:c:program filesftcpsapi.dll
280 - 未知模块:c:WINDOWSsystem32linkinfo.dll
281 - 未知模块:c:program filesftcfplayermenu.ocx
282 - 未知模块:c:program filesftcRICHTX32.OCX
283 - 未知模块:c:program filesftcRiched32.dll
284 - 未知模块:c:program filesftcriched20.dll
285 未知进程:c:program filesftcnewscandrive.exe 命令行: "C:Program FilesftcNewScandrive.exe" -jianjie
286 - 未知模块:c:WINDOWSsystem32ole32.dll
287 - 未知模块:c:WINDOWSsystem32comctl32.dll
288 - 未知模块:c:program filesftcftcapi.dll
289 - 未知模块:d:program filesastAST.dll
290 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
291 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
292 - 未知模块:c:WINDOWSsystem32clbcatq.dll
293 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
294 - 未知模块:c:WINDOWSsystem32uxtheme.dll
295 (安全进程):c:WINDOWSsystem32conime.exe 命令行: C:WINDOWSsystem32conime.exe
296 - 未知模块:c:WINDOWSsystem32ole32.dll
297 - 未知模块:c:WINDOWSsystem32uxtheme.dll
298 - 未知模块:c:WINDOWSsystem32comctl32.dll
299 - 未知模块:d:program filesastAST.dll
300 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
301 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
302 未知进程:c:program filesftccheckpatch.exe 命令行: "C:Program FilesftcCheckPatch.exe"
303 - 未知模块:c:WINDOWSsystem32ole32.dll
304 - 未知模块:c:WINDOWSsystem32comctl32.dll
305 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
306 - 未知模块:d:program filesastAST.dll
307 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
308 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
309 未知进程:c:program filesftcfyganalyze.exe 命令行: "C:Program FilesftcFygAnalyze.exe"
310 - 未知模块:c:WINDOWSsystem32ole32.dll
311 - 未知模块:c:WINDOWSsystem32comctl32.dll
312 - 未知模块:d:program filesastAST.dll
313 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
314 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
315 - 未知模块:c:WINDOWSsystem32uxtheme.dll
316 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
317 - 未知模块:c:program filesftcpsapi.dll
318 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
319 - 未知模块:c:WINDOWSsystem32clbcatq.dll
320 - 未知模块:c:WINDOWSsystem32linkinfo.dll
启动信息:
321 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
322 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
323 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
324 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
325 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
326 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
327 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
328 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
329 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
330 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
331 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
332 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
333 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
334 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
335 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
336 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
337 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
338 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
339 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
340 [HKEY_LOCAL_MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogon]
341 [HKEY_LOCAL_MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogon]
342 [HKEY_LOCAL_MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogon]
343 [HKEY_LOCAL_MACHINESoftwareMicrosoftWindows NTCurrentVersionWindows]
344 [C:Documents and SettingsAdministrator「开始」菜单程序启动]
345 [C:Documents and SettingsAdministrator「开始」菜单程序启动]
346 [C:Documents and SettingsAdministrator「开始」菜单程序启动]
347 [C:Documents and SettingsAll Users「开始」菜单程序启动]
348 [C:Documents and SettingsAll Users「开始」菜单程序启动]
349 [C:Documents and SettingsAll Users「开始」菜单程序启动]
350 [C:Documents and SettingsAll Users「开始」菜单程序启动]
351 [C:Documents and SettingsAll Users「开始」菜单程序启动]
352 [C:Documents and SettingsAll Users「开始」菜单程序启动]
353 [C:Documents and SettingsAll Users「开始」菜单程序启动]
IE辅助对象BHO信息:
354 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
355 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
356 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
357 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
358 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
359 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
IE右键菜单信息:
360 [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
361 [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
362 [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
363 [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
364 [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
IE工具栏项信息:
365 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerExtensions]
366 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerExtensions]
ActiveX对象DPF信息:
367 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftCode Store DatabaseDistribution Units]
网络服务SPI信息:
无可疑
系统服务信息:
368 [ COM+ System Application | COMSysApp | 停用 ]
c:windowssystem32dllhost.exe /processid:{02d4b3f1-fd88-11d1-960d-00805fc79235}
369 [ DCOM Server Process Launcher | DcomLaunch | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32rpcss.dll
370 [ DHCP Client | Dhcp | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32dhcpcsvc.dll
371 [ COM+ Event System | EventSystem | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32es.dll
372 [ Google Updater Service | gusvc | 停用 ]
c:program filesgooglecommongoogle updatergoogleupdaterservice.exe
373 [ Human Interface Device Access | HidServ | 停用 ]
c:windowssystem32svchost.exe - c:windowssystem32hidserv.dll
374 [ Server | lanmanserver | 停用 ]
c:windowssystem32svchost.exe - c:windowssystem32srvsvc.dll
375 [ Windows Installer | MSIServer | 停用 ]
c:windowssystem32msiexec.exe
376 [ Network Connections | Netman | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32netman.dll
377 [ Remote Access Connection Manager | RasMan | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32rasmans.dll
378 [ Remote Procedure Call (RPC) | RpcSs | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32rpcss.dll
379 [ Rising Process Communication Center | RsCCenter | 启动 ]
d:risingravccenter.exe
380 [ Rising RealTime Monitor | RsRavMon | 启动 ]
d:risingravravmond.exe
381 [ ServiceJsHelp | ServiceJsHelp | 停用 ]
c:windowssystem32playasp.exe
382 [ Print Spooler | Spooler | 停用 ]
c:windowssystem32spoolsv.exe
383 [ Telephony | TapiSrv | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32tapisrv.dll
384 [ Telephotsgoogle | Wdswsdewn | 停用 ]
c:windowssystem32serdst.exe
385 [ WebClient | WebClient | 停用 ]
c:windowssystem32svchost.exe - c:windowssystem32webclnt.dll
386 [ Automatic Updates | wuauserv | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32wuauserv.dll
系统驱动信息:
387 [ Microsoft Kernel Acoustic Echo Canceller | aec | 停用 ]
c:windowssystem32driversaec.sys
388 [ asycfila | asycfila | 启动 ]
c:windowssystem32driversasycfila.sys
389 [ cnprov | cnprov | 停用 ]
c:windowssystem32driverscnprov.sys
390 [ FBS4 | FBS4 | 启动 ]
c:windowssystem32driversfbs4.sys
391 [ FltMgr | FltMgr | 启动 ]
c:windowssystem32driversfltmgr.sys
392 [ HookCont | HookCont | 启动 ]
C:WINDOWSsystem32drivershookcont.sys
393 [ HookNtos | HookNtos | 启动 ]
C:WINDOWSsystem32drivershookntos.sys
394 [ HookReg | HookReg | 启动 ]
C:WINDOWSsystem32drivershookreg.sys
395 [ HookSys | HookSys | 启动 ]
C:WINDOWSsystem32drivershooksys.sys
396 [ HTTP | HTTP | 停用 ]
c:windowssystem32drivershttp.sys
397 [ IP Network Address Translator | IpNat | 停用 ]
c:windowssystem32driversipnat.sys
398 [ Microsoft Kernel Wave Audio Mixer | kmixer | 启动 ]
c:windowssystem32driverskmixer.sys
399 [ MRxSmb | MRxSmb | 启动 ]
c:windowssystem32driversmrxsmb.sys
400 [ Rdbss | Rdbss | 启动 ]
c:windowssystem32driversrdbss.sys
401 [ RsNTGDI | RsNTGDI | 启动 ]
c:windowssystem32driversrsntgdi.sys
402 [ Microsoft Kernel Audio Splitter | splitter | 停用 ]
c:windowssystem32driverssplitter.sys
403 [ Srv | Srv | 停用 ]
c:windowssystem32driverssrv.sys
404 [ TCP/IP Protocol Driver | Tcpip | 启动 ]
c:windowssystem32driverstcpip.sys
405 [ Microcode Update Driver | Update | 启动 ]
c:windowssystem32driversupdate.sys
406 [ Microsoft WINMM WDM Audio Compatibility Driver | wdmaud | 启动 ]
c:windowssystem32driverswdmaud.sys
407 [ bootdrv | bootdrv | 停用 ]
c:windowssystem32driversbootdrv.sys
已经加载的驱动信息:
408 C:WINDOWSsystem32driversasycfila.sys
409 C:WINDOWSsystem32driversfltmgr.sys
410 C:WINDOWSsystem32driversrsntgdi.sys
411 C:WINDOWSsystem32driversupdate.sys
412 C:WINDOWSsystem32driverstcpip.sys
413 C:WINDOWSsystem32driversrdbss.sys
414 C:WINDOWSsystem32driversmrxsmb.sys
415 C:WINDOWSsystem32drivershooksys.sys
416 C:WINDOWSsystem32drivershookhelp.sys
417 C:WINDOWSsystem32drivershookreg.sys
418 C:WINDOWSsystem32drivershookntos.sys
419 C:WINDOWSsystem32drivershookcont.sys
420 C:WINDOWSsystem32driversdump_atapi.sys
421 C:WINDOWSsystem32driversdump_wmilib.sys
422 C:WINDOWSsystem32driverswdmaud.sys
423 c:windowssystem32driversfbs4.sys
424 C:WINDOWSsystem32driverskmixer.sys
==============================================
木马清道夫,查杀木马病毒第一品牌,超强查杀各类木马病毒
下载地址:http://www.fygsoft.com
本报告由提供 http://www.fygsoft.com
报告生成时间:[2007-10-19 10:10:58]
操作系统为:WindowsXP 5.1.2600.2 Service Pack 2
Internet Explorer版本为:V6.0.2900.2180 Build:62900.2180
总共内存为:255M 剩余内存为:80M
进程模块信息:
1 (安全进程):C:WINDOWSsystem32smss.exe 命令行: SystemRootSystem32smss.exe
2 (安全进程):c:WINDOWSsystem32csrss.exe 命令行: C:WINDOWSsystem32csrss.exe ObjectDirectory=Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
3 未知进程:c:WINDOWSsystem32winlogon.exe 命令行: winlogon.exe
4 - 未知模块:c:WINDOWSsystem32authz.dll
5 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
6 - 未知模块:c:WINDOWSsystem32ole32.dll
7 - 未知模块:c:WINDOWSsystem32comctl32.dll
8 - 未知模块:c:WINDOWSsystem32sfc_os.dll
9 - 未知模块:c:WINDOWSsystem32uxtheme.dll
10 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
11 - 未知模块:c:WINDOWSsystem32clbcatq.dll
12 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
13 (安全进程):c:WINDOWSsystem32services.exe 命令行: C:WINDOWSsystem32services.exe
14 - 未知模块:c:WINDOWSsystem32authz.dll
15 - 未知模块:c:WINDOWSsystem32umpnpmgr.dll
16 - 未知模块:c:WINDOWSsystem32ole32.dll
17 - 未知模块:c:WINDOWSsystem32uxtheme.dll
18 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
19 - 未知模块:c:WINDOWSsystem32comctl32.dll
20 (安全进程):c:WINDOWSsystem32lsass.exe 命令行: C:WINDOWSsystem32lsass.exe
21 - 未知模块:c:WINDOWSsystem32dnsapi.dll
22 - 未知模块:c:WINDOWSsystem32ole32.dll
23 - 未知模块:c:WINDOWSsystem32uxtheme.dll
24 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
25 - 未知模块:c:WINDOWSsystem32comctl32.dll
26 - 未知模块:c:WINDOWSsystem32kerberos.dll
27 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
28 (安全进程):c:WINDOWSsystem32svchost.exe 命令行: C:WINDOWSsystem32svchost -k DcomLaunch
29 - 未知模块:c:WINDOWSsystem32ole32.dll
30 - 未知模块:c:WINDOWSsystem32uxtheme.dll
31 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
32 - 未知模块:c:WINDOWSsystem32comctl32.dll
33 - 未知模块:c:WINDOWSsystem32rpcss.dll
34 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
35 - 未知模块:c:WINDOWSsystem32clbcatq.dll
36 (安全进程):c:WINDOWSsystem32svchost.exe 命令行: C:WINDOWSsystem32svchost -k rpcss
37 - 未知模块:c:WINDOWSsystem32ole32.dll
38 - 未知模块:c:WINDOWSsystem32uxtheme.dll
39 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
40 - 未知模块:c:WINDOWSsystem32comctl32.dll
41 - 未知模块:c:WINDOWSsystem32rpcss.dll
42 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
43 - 未知模块:c:WINDOWSsystem32dnsapi.dll
44 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
45 - 未知模块:c:WINDOWSsystem32rasadhlp.dll
46 - 未知模块:c:WINDOWSsystem32clbcatq.dll
47 未知进程:d:RisingRavCCenter.exe 命令行: "D:RisingRavCCenter.exe"
48 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
49 - 未知模块:c:WINDOWSsystem32ole32.dll
50 (安全进程):c:WINDOWSsystem32svchost.exe 命令行: C:WINDOWSsystem32svchost.exe -k netsvcs
51 - 未知模块:c:WINDOWSsystem32ole32.dll
52 - 未知模块:c:WINDOWSsystem32uxtheme.dll
53 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
54 - 未知模块:c:WINDOWSsystem32comctl32.dll
55 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
56 - 未知模块:c:WINDOWSsystem32dhcpcsvc.dll
57 - 未知模块:c:WINDOWSsystem32dnsapi.dll
58 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
59 - 未知模块:c:WINDOWSsystem32clbcatq.dll
60 - 未知模块:c:WINDOWSsystem32esent.dll
61 - 未知模块:c:WINDOWSsystem32wuauserv.dll
62 - 未知模块:c:WINDOWSsystem32wuaueng.dll
63 - 未知模块:c:WINDOWSsystem32sfc_os.dll
64 - 未知模块:c:WINDOWSsystem32es.dll
65 - 未知模块:c:WINDOWSsystem32comsvcs.dll
66 - 未知模块:c:WINDOWSsystem32colbact.dll
67 - 未知模块:c:WINDOWSsystem32mtxclu.dll
68 - 未知模块:c:WINDOWSsystem32tapisrv.dll
69 - 未知模块:c:WINDOWSsystem32rasmans.dll
70 - 未知模块:c:WINDOWSsystem32netman.dll
71 - 未知模块:c:WINDOWSsystem32kerberos.dll
72 - 未知模块:c:WINDOWSsystem32rasadhlp.dll
73 (安全进程):c:WINDOWSsystem32svchost.exe 命令行: C:WINDOWSsystem32svchost.exe -k NetworkService
74 - 未知模块:c:WINDOWSsystem32ole32.dll
75 - 未知模块:c:WINDOWSsystem32uxtheme.dll
76 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
77 - 未知模块:c:WINDOWSsystem32comctl32.dll
78 - 未知模块:c:WINDOWSsystem32dnsapi.dll
79 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
80 未知进程:d:RisingRavRavMonD.exe 命令行: "D:RISINGRAVRavmond.exe"
81 - 未知模块:d:RisingRavBWList.dll
82 - 未知模块:c:WINDOWSsystem32mfc71.dll
83 - 未知模块:c:WINDOWSsystem32msvcr71.dll
84 - 未知模块:c:WINDOWSsystem32ole32.dll
85 - 未知模块:c:WINDOWSsystem32msvcp71.dll
86 - 未知模块:c:WINDOWSsystem32comctl32.dll
87 - 未知模块:d:RisingRavRsAppMgr.dll
88 - 未知模块:d:RisingRavCfgDll.dll
89 - 未知模块:d:RisingRavRsLog.dll
90 - 未知模块:d:RisingRavProcCom.dll
91 - 未知模块:d:RisingRavRsCommX2.dll
92 - 未知模块:d:RisingRavMonRule.dll
93 - 未知模块:d:RisingRavHOOKSYS.dll
94 - 未知模块:d:RisingRavHookReg.dll
95 - 未知模块:d:RisingRavHookNtos.dll
96 - 未知模块:d:RisingRavrswalmon.dll
97 - 未知模块:c:WINDOWSsystem32sfc_os.dll
98 - 未知模块:d:RisingRavRsStore.dll
99 - 未知模块:d:RisingRavHookCont.dll
100 - 未知模块:d:RisingRavFakeScan.dll
101 - 未知模块:d:RisingRavScanner.dll
102 - 未知模块:d:RisingRavrecomp.dll
103 - 未知模块:d:RisingRavrefs.dll
104 - 未知模块:d:RisingRavVirusLib.dll
105 - 未知模块:d:RisingRavrelibldr.dll
106 - 未知模块:d:RisingRavHookWeb.dll
107 - 未知模块:c:WINDOWSsystem32clbcatq.dll
108 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
109 - 未知模块:d:RisingRavffr.dll
110 - 未知模块:d:RisingRavnvfile.dll
111 - 未知模块:d:RisingRavscanexec.dll
112 - 未知模块:d:RisingRavunexe.dll
113 - 未知模块:d:RisingRavScanEX.dll
114 - 未知模块:d:RisingRavpearc.dll
115 - 未知模块:d:RisingRavScanPack.dll
116 - 未知模块:d:RisingRavrevm.dll
117 - 未知模块:d:RisingRavuroutine.dll
118 - 未知模块:d:RisingRavscriptci.dll
119 - 未知模块:d:RisingRavScanSct.dll
120 - 未知模块:d:RisingRavExtMail.dll
121 - 未知模块:d:RisingRavExtOLE.dll
122 (安全进程):c:WINDOWSexplorer.exe 命令行: C:WINDOWSExplorer.EXE
123 - 未知模块:c:WINDOWSsystem32ole32.dll
124 - 未知模块:c:WINDOWSsystem32uxtheme.dll
125 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
126 - 未知模块:c:WINDOWSsystem32comctl32.dll
127 - 未知模块:c:WINDOWSsystem32clbcatq.dll
128 - 未知模块:c:WINDOWSsystem32RavExt.dll
129 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
130 - 未知模块:c:WINDOWSsystem32asycfila.dll
131 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
132 - 未知模块:c:WINDOWSsystem32dnsapi.dll
133 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
134 - 未知模块:c:WINDOWSsystem32rasadhlp.dll
135 - 未知模块:c:WINDOWSsystem32linkinfo.dll
136 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
137 - 未知模块:d:program filesastAST.dll
138 - 未知模块:c:WINDOWSsystem32mlang.dll
139 - 未知模块:c:WINDOWSsystem32shdoclc.dll
140 - 未知模块:c:WINDOWSsystem32JPWB.IME
141 - 未知模块:c:WINDOWSsystem32WINABC.IME
142 - 未知模块:c:program filesWinRARRarExt.dll
143 - 未知模块:d:RisingRavRsCommon.dll
144 - 未知模块:c:Program FilesftcFTCCommenu.dll
145 未知进程:d:RisingRavRavStub.exe 命令行: D:RISINGRAVRavStub.exe /RAVMOND=1023
146 - 未知模块:c:WINDOWSsystem32comctl32.dll
147 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
148 - 未知模块:c:WINDOWSsystem32ole32.dll
149 - 未知模块:d:RisingRavProcCom.dll
150 - 未知模块:d:RisingRavRsCommX2.dll
151 - 未知模块:d:RisingRavRsCommon.dll
152 未知进程:d:program filesastAST.exe 命令行: "D:Program FilesastAST.exe" -min
153 - 未知模块:d:program filesastdbghelp.dll
154 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
155 - 未知模块:d:program filesastmfc80.dll
156 - 未知模块:d:program filesastmsvcr80.dll
157 - 未知模块:d:program filesastmsvcp80.dll
158 - 未知模块:c:WINDOWSsystem32ole32.dll
159 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
160 - 未知模块:d:program filesastMFC80CHS.dll
161 - 未知模块:d:program filesastCommon.dll
162 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
163 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
164 - 未知模块:c:WINDOWSsystem32uxtheme.dll
165 - 未知模块:d:program filesastaScanCom.dll
166 - 未知模块:d:program filesastAST.dll
167 - 未知模块:d:program filesastAutoRun.dll
168 - 未知模块:d:program filesastenginesdk.dll
169 - 未知模块:d:program filesastfileanalyser.dll
170 - 未知模块:d:program filesastkillmodule.dll
171 - 未知模块:d:program filesastmanagerprocess.dll
172 - 未知模块:d:program filesastmanagerservice.dll
173 - 未知模块:d:program filesastMonitor.dll
174 - 未知模块:d:program filesastmsvcm80.dll
175 - 未知模块:d:program filesastmsvcm80.dll
176 - 未知模块:d:program filesastsmart.dll
177 - 未知模块:d:program filesastSSDT.dll
178 - 未知模块:d:program filesaststateviewer.dll
179 - 未知模块:d:program filesasttierepair.dll
180 - 未知模块:d:program filesasttrubbishclear.dll
181 - 未知模块:d:program filesasttsecurityoptimize.dll
182 - 未知模块:d:program filesastunarc.dll
183 - 未知模块:d:program filesastzdiagnostictool.dll
184 - 未知模块:d:program filesastMScaner.dll
185 - 未知模块:d:program filesastSKEngine.dll
186 - 未知模块:d:program filesastsm.dll
187 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
188 - 未知模块:c:WINDOWSsystem32dnsapi.dll
189 - 未知模块:c:WINDOWSsystem32rasadhlp.dll
190 (安全进程):c:WINDOWSsystem32rundll32.exe 命令行: "C:WINDOWSsystem32Rundll32.exe" C:PROGRA~1TENCENTSSPlusSPlus.dll,Rundll32 R
191 - 未知模块:c:WINDOWSsystem32ole32.dll
192 - 未知模块:c:WINDOWSsystem32uxtheme.dll
193 - 未知模块:c:WINDOWSsystem32comctl32.dll
194 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
195 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
196 - 未知模块:d:program filesastAST.dll
197 未知进程:d:RisingRavRavTask.exe 命令行: "D:RisingRavRavTask.exe" -system
198 - 未知模块:c:WINDOWSsystem32comctl32.dll
199 - 未知模块:c:WINDOWSsystem32ole32.dll
200 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
201 - 未知模块:d:RisingRavProcCom.dll
202 - 未知模块:d:RisingRavRsCommX2.dll
203 - 未知模块:d:RisingRavRsCommon.dll
204 - 未知模块:d:RisingRavRsAppMgr.dll
205 - 未知模块:d:RisingRavCfgDll.dll
206 未知进程:c:program filesGooglegoogletoolbarnotifier1.2.1128.5462googletoolbarnotifier.exe 命令行: "C:Program FilesGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe"
207 - 未知模块:c:WINDOWSsystem32ole32.dll
208 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
209 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
210 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
211 - 未知模块:c:WINDOWSsystem32clbcatq.dll
212 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
213 - 未知模块:c:program filesGooglegoogletoolbarnotifier1.2.1128.5462res_zh-cn.dll
214 - 未知模块:c:program filesGooglegoogletoolbarnotifier1.2.1128.5462swg.dll
215 - 未知模块:c:WINDOWSsystem32iphlpapi.dll
216 - 未知模块:d:program filesastAST.dll
217 未知进程:d:RisingRavRavMon.exe 命令行: "D:RisingRavRavmon.exe" -SYSTEM
218 - 未知模块:c:WINDOWSsystem32mfc71.dll
219 - 未知模块:c:WINDOWSsystem32msvcr71.dll
220 - 未知模块:c:WINDOWSsystem32ole32.dll
221 - 未知模块:c:WINDOWSsystem32msvcp71.dll
222 - 未知模块:d:RisingRavProcCom.dll
223 - 未知模块:d:RisingRavRsCommX2.dll
224 - 未知模块:d:RisingRavRsCommon.dll
225 - 未知模块:d:RisingRavrecomp.dll
226 - 未知模块:d:RisingRavrefs.dll
227 - 未知模块:d:RisingRavVirusLib.dll
228 - 未知模块:d:RisingRavrelibldr.dll
229 - 未知模块:d:RisingRavRsAppMgr.dll
230 - 未知模块:d:RisingRavCfgDll.dll
231 - 未知模块:d:RisingRavMonRule.dll
232 - 未知模块:d:RisingRavPngDll.dll
233 - 未知模块:d:RisingRavRsGuiLib.dll
234 - 未知模块:c:WINDOWSsystem32uxtheme.dll
235 - 未知模块:d:RisingRavRsXML.dll
236 (安全进程):c:WINDOWSsystem32ctfmon.exe 命令行: "C:WINDOWSsystem32ctfmon.exe"
237 - 未知模块:c:WINDOWSsystem32ole32.dll
238 - 未知模块:c:WINDOWSsystem32uxtheme.dll
239 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
240 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
241 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
242 - 未知模块:d:program filesastAST.dll
243 未知进程:c:program fileslindirmicrolabLAMlam.exe 命令行: "C:Program FilesLinDirMicroLabLAMlam.exe"
244 - 未知模块:c:WINDOWSsystem32MSVBVM60.DLL
245 - 未知模块:c:WINDOWSsystem32ole32.dll
246 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
247 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
248 - 未知模块:c:WINDOWSsystem32clbcatq.dll
249 - 未知模块:c:WINDOWSsystem32MSINET.OCX
250 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
251 - 未知模块:c:WINDOWSsystem32dnsapi.dll
252 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
253 - 未知模块:d:program filesastAST.dll
254 - 未知模块:c:WINDOWSsystem32uxtheme.dll
255 未知进程:c:program filesmsn messengermsnmsgs.exe 命令行: "C:Program FilesMSN Messengermsnmsgs.exe"
256 - 未知模块:c:WINDOWSsystem32ole32.dll
257 - 未知模块:c:WINDOWSsystem32comctl32.dll
258 (安全进程):c:WINDOWSsystem32wbemwmiprvse.exe 命令行: C:WINDOWSsystem32wbemwmiprvse.exe
259 - 未知模块:c:WINDOWSsystem32ole32.dll
260 - 未知模块:c:WINDOWSsystem32dnsapi.dll
261 - 未知模块:c:WINDOWSsystem32uxtheme.dll
262 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
263 - 未知模块:c:WINDOWSsystem32comctl32.dll
264 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
265 - 未知模块:c:WINDOWSsystem32clbcatq.dll
266 未知进程:c:program filesftcftcleaner.exe 命令行: "C:Program FilesftcFTCleaner.exe"
267 - 未知模块:c:WINDOWSsystem32ole32.dll
268 - 未知模块:c:program filesftcMSVBVM60.DLL
269 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
270 - 未知模块:c:program filesftcVB6CHS.DLL
271 - 未知模块:d:program filesastAST.dll
272 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
273 - 未知模块:c:WINDOWSsystem32comctl32.dll
274 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
275 - 未知模块:c:WINDOWSsystem32clbcatq.dll
276 - 未知模块:c:program filesftcMSCOMCTL.OCX
277 - 未知模块:c:program filesftcTABCTL32.OCX
278 - 未知模块:c:program filesftcftcapi.dll
279 - 未知模块:c:program filesftcpsapi.dll
280 - 未知模块:c:WINDOWSsystem32linkinfo.dll
281 - 未知模块:c:program filesftcfplayermenu.ocx
282 - 未知模块:c:program filesftcRICHTX32.OCX
283 - 未知模块:c:program filesftcRiched32.dll
284 - 未知模块:c:program filesftcriched20.dll
285 未知进程:c:program filesftcnewscandrive.exe 命令行: "C:Program FilesftcNewScandrive.exe" -jianjie
286 - 未知模块:c:WINDOWSsystem32ole32.dll
287 - 未知模块:c:WINDOWSsystem32comctl32.dll
288 - 未知模块:c:program filesftcftcapi.dll
289 - 未知模块:d:program filesastAST.dll
290 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
291 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
292 - 未知模块:c:WINDOWSsystem32clbcatq.dll
293 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
294 - 未知模块:c:WINDOWSsystem32uxtheme.dll
295 (安全进程):c:WINDOWSsystem32conime.exe 命令行: C:WINDOWSsystem32conime.exe
296 - 未知模块:c:WINDOWSsystem32ole32.dll
297 - 未知模块:c:WINDOWSsystem32uxtheme.dll
298 - 未知模块:c:WINDOWSsystem32comctl32.dll
299 - 未知模块:d:program filesastAST.dll
300 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
301 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
302 未知进程:c:program filesftccheckpatch.exe 命令行: "C:Program FilesftcCheckPatch.exe"
303 - 未知模块:c:WINDOWSsystem32ole32.dll
304 - 未知模块:c:WINDOWSsystem32comctl32.dll
305 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
306 - 未知模块:d:program filesastAST.dll
307 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
308 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
309 未知进程:c:program filesftcfyganalyze.exe 命令行: "C:Program FilesftcFygAnalyze.exe"
310 - 未知模块:c:WINDOWSsystem32ole32.dll
311 - 未知模块:c:WINDOWSsystem32comctl32.dll
312 - 未知模块:d:program filesastAST.dll
313 - 未知模块:c:Program FilesTENCENTSSPlusSPlus.dll
314 - 未知模块:c:WINDOWSsystem32nvplifcn.dll
315 - 未知模块:c:WINDOWSsystem32uxtheme.dll
316 - 未知模块:c:WINDOWSsystem32rarjbpi.dll
317 - 未知模块:c:program filesftcpsapi.dll
318 - 未知模块:c:WINDOWSsystem32xpsp2res.dll
319 - 未知模块:c:WINDOWSsystem32clbcatq.dll
320 - 未知模块:c:WINDOWSsystem32linkinfo.dll
启动信息:
321 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
322 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
323 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
324 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
325 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
326 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
327 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
328 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
329 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
330 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
331 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
332 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
333 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun]
334 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
335 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
336 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
337 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
338 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
339 [HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
340 [HKEY_LOCAL_MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogon]
341 [HKEY_LOCAL_MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogon]
342 [HKEY_LOCAL_MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogon]
343 [HKEY_LOCAL_MACHINESoftwareMicrosoftWindows NTCurrentVersionWindows]
344 [C:Documents and SettingsAdministrator「开始」菜单程序启动]
345 [C:Documents and SettingsAdministrator「开始」菜单程序启动]
346 [C:Documents and SettingsAdministrator「开始」菜单程序启动]
347 [C:Documents and SettingsAll Users「开始」菜单程序启动]
348 [C:Documents and SettingsAll Users「开始」菜单程序启动]
349 [C:Documents and SettingsAll Users「开始」菜单程序启动]
350 [C:Documents and SettingsAll Users「开始」菜单程序启动]
351 [C:Documents and SettingsAll Users「开始」菜单程序启动]
352 [C:Documents and SettingsAll Users「开始」菜单程序启动]
353 [C:Documents and SettingsAll Users「开始」菜单程序启动]
IE辅助对象BHO信息:
354 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
355 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
356 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
357 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
358 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
359 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
IE右键菜单信息:
360 [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
361 [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
362 [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
363 [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
364 [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
IE工具栏项信息:
365 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerExtensions]
366 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerExtensions]
ActiveX对象DPF信息:
367 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftCode Store DatabaseDistribution Units]
网络服务SPI信息:
无可疑
系统服务信息:
368 [ COM+ System Application | COMSysApp | 停用 ]
c:windowssystem32dllhost.exe /processid:{02d4b3f1-fd88-11d1-960d-00805fc79235}
369 [ DCOM Server Process Launcher | DcomLaunch | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32rpcss.dll
370 [ DHCP Client | Dhcp | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32dhcpcsvc.dll
371 [ COM+ Event System | EventSystem | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32es.dll
372 [ Google Updater Service | gusvc | 停用 ]
c:program filesgooglecommongoogle updatergoogleupdaterservice.exe
373 [ Human Interface Device Access | HidServ | 停用 ]
c:windowssystem32svchost.exe - c:windowssystem32hidserv.dll
374 [ Server | lanmanserver | 停用 ]
c:windowssystem32svchost.exe - c:windowssystem32srvsvc.dll
375 [ Windows Installer | MSIServer | 停用 ]
c:windowssystem32msiexec.exe
376 [ Network Connections | Netman | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32netman.dll
377 [ Remote Access Connection Manager | RasMan | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32rasmans.dll
378 [ Remote Procedure Call (RPC) | RpcSs | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32rpcss.dll
379 [ Rising Process Communication Center | RsCCenter | 启动 ]
d:risingravccenter.exe
380 [ Rising RealTime Monitor | RsRavMon | 启动 ]
d:risingravravmond.exe
381 [ ServiceJsHelp | ServiceJsHelp | 停用 ]
c:windowssystem32playasp.exe
382 [ Print Spooler | Spooler | 停用 ]
c:windowssystem32spoolsv.exe
383 [ Telephony | TapiSrv | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32tapisrv.dll
384 [ Telephotsgoogle | Wdswsdewn | 停用 ]
c:windowssystem32serdst.exe
385 [ WebClient | WebClient | 停用 ]
c:windowssystem32svchost.exe - c:windowssystem32webclnt.dll
386 [ Automatic Updates | wuauserv | 启动 ]
c:windowssystem32svchost.exe - c:windowssystem32wuauserv.dll
系统驱动信息:
387 [ Microsoft Kernel Acoustic Echo Canceller | aec | 停用 ]
c:windowssystem32driversaec.sys
388 [ asycfila | asycfila | 启动 ]
c:windowssystem32driversasycfila.sys
389 [ cnprov | cnprov | 停用 ]
c:windowssystem32driverscnprov.sys
390 [ FBS4 | FBS4 | 启动 ]
c:windowssystem32driversfbs4.sys
391 [ FltMgr | FltMgr | 启动 ]
c:windowssystem32driversfltmgr.sys
392 [ HookCont | HookCont | 启动 ]
C:WINDOWSsystem32drivershookcont.sys
393 [ HookNtos | HookNtos | 启动 ]
C:WINDOWSsystem32drivershookntos.sys
394 [ HookReg | HookReg | 启动 ]
C:WINDOWSsystem32drivershookreg.sys
395 [ HookSys | HookSys | 启动 ]
C:WINDOWSsystem32drivershooksys.sys
396 [ HTTP | HTTP | 停用 ]
c:windowssystem32drivershttp.sys
397 [ IP Network Address Translator | IpNat | 停用 ]
c:windowssystem32driversipnat.sys
398 [ Microsoft Kernel Wave Audio Mixer | kmixer | 启动 ]
c:windowssystem32driverskmixer.sys
399 [ MRxSmb | MRxSmb | 启动 ]
c:windowssystem32driversmrxsmb.sys
400 [ Rdbss | Rdbss | 启动 ]
c:windowssystem32driversrdbss.sys
401 [ RsNTGDI | RsNTGDI | 启动 ]
c:windowssystem32driversrsntgdi.sys
402 [ Microsoft Kernel Audio Splitter | splitter | 停用 ]
c:windowssystem32driverssplitter.sys
403 [ Srv | Srv | 停用 ]
c:windowssystem32driverssrv.sys
404 [ TCP/IP Protocol Driver | Tcpip | 启动 ]
c:windowssystem32driverstcpip.sys
405 [ Microcode Update Driver | Update | 启动 ]
c:windowssystem32driversupdate.sys
406 [ Microsoft WINMM WDM Audio Compatibility Driver | wdmaud | 启动 ]
c:windowssystem32driverswdmaud.sys
407 [ bootdrv | bootdrv | 停用 ]
c:windowssystem32driversbootdrv.sys
已经加载的驱动信息:
408 C:WINDOWSsystem32driversasycfila.sys
409 C:WINDOWSsystem32driversfltmgr.sys
410 C:WINDOWSsystem32driversrsntgdi.sys
411 C:WINDOWSsystem32driversupdate.sys
412 C:WINDOWSsystem32driverstcpip.sys
413 C:WINDOWSsystem32driversrdbss.sys
414 C:WINDOWSsystem32driversmrxsmb.sys
415 C:WINDOWSsystem32drivershooksys.sys
416 C:WINDOWSsystem32drivershookhelp.sys
417 C:WINDOWSsystem32drivershookreg.sys
418 C:WINDOWSsystem32drivershookntos.sys
419 C:WINDOWSsystem32drivershookcont.sys
420 C:WINDOWSsystem32driversdump_atapi.sys
421 C:WINDOWSsystem32driversdump_wmilib.sys
422 C:WINDOWSsystem32driverswdmaud.sys
423 c:windowssystem32driversfbs4.sys
424 C:WINDOWSsystem32driverskmixer.sys
==============================================
木马清道夫,查杀木马病毒第一品牌,超强查杀各类木马病毒
下载地址:http://www.fygsoft.com
共2条评论
eYou 网友 | 2007-10-19 10:28:10 | IP: 220.162.24.* | 回复 引用