【求助】麻烦大家看一下日志 bbs.ikaka.com

lilicool - 2006-6-13 10:47:00

我的系统是ME，一直以来都有个问题，每过一段时间就会有一些程序停止运行。

在这个[停顿]时间段，硬盘指示灯不亮，如果拷贝一段文字或图片到Word，指针会变为[漏斗]状态，打开的新网页会呈空白状态，查看[连接]，收到和发送的字节数都是停止的，

不过用WMP和RealPlayer播放视频和音频都没问题
过了这个时间段就恢复正常了

下面是hijackthis扫描的
================================
HijackThis_zww汉化版扫描日志 V1.99.1
保存于 21:46:37, 日期 2006-6-12
操作系统： Windows ME (Win9x 4.90.3000)
浏览器： Internet Explorer v6.00 SP1 (6.00.2800.1106)

当前运行的进程：
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\WINDOWS\SYSTEM\SSDPSRV.EXE
C:\PROGRAM FILES\RISING\RFW\RFWSRV.EXE
C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE
C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
C:\PROGRAM FILES\RISING\RAV\RAVMOND.EXE
C:\PROGRAM FILES\RISING\RAV\RAVMON.EXE
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\RPCSS.EXE
C:\PROGRAM FILES\RISING\RFW\RFWMAIN.EXE
C:\WINDOWS\SYSTEM\RESTORE\STMGR.EXE
C:\WINDOWS\SYSTEM\INTERNAT.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\PROGRAM FILES\RISING\RAV\RAVTASK.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\DOWNLOADS\扫描\HIJACKTHIS\HIJACKTHIS1991【TEYQIU】.EXE

O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRAM FILES\FLASHGET\JCCATCH.DLL
O2 - BHO: VnetCookie Class - {4E83D567-4697-4F7B-B1F0-A513B01DB89A} - C:\PROGRA~1\CHINANET\VNETTR~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: (no name) - {A9930D97-9CF0-42A0-A10D-4F28836579D5} - C:\PROGRA~1\KUGOO3\KUGOO3~1.OCX
O2 - BHO: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YASBAR.DLL
O2 - BHO: yPhtb - {33BBE430-0E42-4f12-B075-8D21ACB10DCB} - C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YPHTB.DLL
O2 - BHO: YDragSearch - {62EED7C6-9F02-42f9-B634-98E2899E147B} - C:\PROGRA~1\YAHOO!\ASSIST~1\ASSIST\YDRAGS~1.DLL
O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\COMDLLS\XUNLEIBHO_002.DLL
O3 - IE工具栏增项: 电台(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O3 - IE工具栏增项: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRAM FILES\FLASHGET\FGIEBAR.DLL
O3 - IE工具栏增项: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - IE工具栏增项: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\SYSTEM\KAKATOOL.DLL
O3 - IE工具栏增项: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YASBAR.DLL
O4 - 启动项HKLM\\Run: [internat.exe] internat.exe
O4 - 启动项HKLM\\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - 启动项HKLM\\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - 启动项HKLM\\Run: [PCHealth] C:\WINDOWS\PCHealth\Support\PCHSchd.exe -s
O4 - 启动项HKLM\\Run: [SystemTray] SysTray.Exe
O4 - 启动项HKLM\\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - 启动项HKLM\\Run: [RfwMain] "C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - 启动项HKLM\\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - 启动项HKLM\\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\SYSTEM\NvCpl.dll,NvStartup
O4 - 启动项HKLM\\Run: [nwiz] nwiz.exe /install
O4 - 启动项HKLM\\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\SYSTEM\NvMcTray.dll,NvTaskbarInit
O4 - 启动项HKLM\\Run: [StormCodec_Helper] "C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti
O4 - 启动项HKLM\\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - 启动项HKLM\\RunServices: [SchedulingAgent] mstask.exe
O4 - 启动项HKLM\\RunServices: [SSDPSRV] C:\WINDOWS\SYSTEM\ssdpsrv.exe
O4 - 启动项HKLM\\RunServices: [*StateMgr] C:\WINDOWS\System\Restore\StateMgr.exe
O4 - 启动项HKLM\\RunServices: [RfwService] "C:\PROGRAM FILES\RISING\RFW\RFWSRV.EXE" -service
O4 - 启动项HKLM\\RunServices: [KB891711] C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE
O4 - 启动项HKLM\\RunServices: [RsCcenter] "C:\Program Files\Rising\Rav\CCenter.exe"
O4 - 启动项HKLM\\RunServices: [RavMond] "C:\Program Files\Rising\Rav\RavMond.exe"
O4 - 启动项HKLM\\RunServices: [RavMon] "C:\Program Files\Rising\Rav\RavMon.exe" -system
O8 - IE右键菜单中的新增项目: 使用网际快车下载 - C:\PROGRAM FILES\FLASHGET\jc_link.htm
O8 - IE右键菜单中的新增项目: 使用网际快车下载全部链接 - C:\PROGRAM FILES\FLASHGET\jc_all.htm
O8 - IE右键菜单中的新增项目: Google 搜索(&G) - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmsearch.html
O8 - IE右键菜单中的新增项目: 翻译英文字词(&T) - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmwordtrans.html
O8 - IE右键菜单中的新增项目: 缓存的网页快照 - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmcache.html
O8 - IE右键菜单中的新增项目: 类似网页 - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmsimilar.html
O8 - IE右键菜单中的新增项目: 反向链接 - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmbacklinks.html
O8 - IE右键菜单中的新增项目: 使用KuGoo3下载(&K) - C:\PROGRAM FILES\KUGOO3\KuGoo3DownX.htm
O8 - IE右键菜单中的新增项目: 加入天天网摘 - http://www.365key.com/include/rightClick.aspx
O8 - IE右键菜单中的新增项目: 雅虎搜索 - res://C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YASBAR.DLL/246
O8 - IE右键菜单中的新增项目: 添加到雅虎订阅(&Y) - res://C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YRSS.DLL/YRSSMENUEXT
O8 - IE右键菜单中的新增项目: &使用迅雷下载 - C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm
O8 - IE右键菜单中的新增项目: &使用迅雷下载全部链接 - C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm
O9 - 浏览器额外的按钮: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - 浏览器额外的“工具”菜单项: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - 浏览器额外的按钮: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSEN~1\MSMSGS.EXE
O9 - 浏览器额外的“工具”菜单项: MSN Messenger Service - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSEN~1\MSMSGS.EXE
O9 - 浏览器额外的按钮: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRAM FILES\FLASHGET\FLASHGET.EXE
O9 - 浏览器额外的“工具”菜单项: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRAM FILES\FLASHGET\FLASHGET.EXE

lilicool - 2006-6-13 10:50:00

这是SREng的
=========================
2006-06-12,21:49:22

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows Millennium Edition -

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联

启动项目
注册表
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<internat.exe><internat.exe> [Microsoft Corporation]
<ScanRegistry><C:\WINDOWS\scanregw.exe /autorun> [Microsoft Corporation]
<TaskMonitor><C:\WINDOWS\taskmon.exe> [Microsoft Corporation]
<PCHealth><C:\WINDOWS\PCHealth\Support\PCHSchd.exe -s> [Microsoft Corporation]
<SystemTray><SysTray.Exe> [Microsoft Corporation]
<LoadPowerProfile><Rundll32.exe powrprof.dll,LoadCurrentPwrScheme> [Microsoft Corporation]
<RfwMain><"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.]
<RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\SYSTEM\NvCpl.dll,NvStartup> [NVIDIA Corporation]
<nwiz><nwiz.exe /install> [NVIDIA Corporation]
<NvMediaCenter><RUNDLL32.EXE C:\WINDOWS\SYSTEM\NvMcTray.dll,NvTaskbarInit> [NVIDIA Corporation]
<StormCodec_Helper><"C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
<LoadPowerProfile><Rundll32.exe powrprof.dll,LoadCurrentPwrScheme> [Microsoft Corporation]
<SchedulingAgent><mstask.exe> [Microsoft Corporation]
<SSDPSRV><C:\WINDOWS\SYSTEM\ssdpsrv.exe> [Microsoft Corporation]
<*StateMgr><C:\WINDOWS\System\Restore\StateMgr.exe> [Microsoft Corporation]
<RfwService><"C:\PROGRAM FILES\RISING\RFW\RFWSRV.EXE" -service> [Beijing Rising Technology Co., Ltd.]
<KB891711><C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE> [Microsoft Corporation]
<RsCcenter><"C:\Program Files\Rising\Rav\CCenter.exe"> [Beijing Rising Technology Co., Ltd.]
<RavMond><"C:\Program Files\Rising\Rav\RavMond.exe"> [Beijing Rising Technology Co., Ltd.]
<RavMon><"C:\Program Files\Rising\Rav\RavMon.exe" -system> [Beijing Rising Technology Co., Ltd.]

==================================
启动文件夹
服务

==================================
浏览器加载项
[IeCatch2 Class]
{A5366673-E8CA-11D3-9CD9-0090271D075B} <C:\PROGRAM FILES\FLASHGET\JCCATCH.DLL, Amaze Soft>
[VnetCookie Class]
{4E83D567-4697-4F7B-B1F0-A513B01DB89A} <C:\PROGRA~1\CHINANET\VNETTR~1.DLL, (>
[Google Toolbar Helper]
{AA58ED58-01DD-4d91-8333-CF10577473F7} <c:\program files\google\googletoolbar2.dll, Google Inc.>
[]
{A9930D97-9CF0-42A0-A10D-4F28836579D5} <C:\PROGRA~1\KUGOO3\KUGOO3~1.OCX, N/A>
[雅虎助手]
{406F94F0-504F-4a40-8DFD-58B0666ABEBD} <C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YASBAR.DLL, Yahoo!>
[Yahoo!Photo]
{33BBE430-0E42-4f12-B075-8D21ACB10DCB} <C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YPHTB.DLL, Yahoo! China>
[DragSearch BHO]
{62EED7C6-9F02-42f9-B634-98E2899E147B} <C:\PROGRA~1\YAHOO!\ASSIST~1\ASSIST\YDRAGS~1.DLL, >
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\COMDLLS\XUNLEIBHO_002.DLL, Thunder Networking Technologies,LTD>
[@shdoclc.dll,-866]
{c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\PROGRA~1\MESSEN~1\MSMSGS.EXE, Microsoft Corporation>
[FlashGet]
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\PROGRAM FILES\FLASHGET\FLASHGET.EXE, Amaze Soft>
[Update Class]
{9F1C11AA-197B-4942-BA54-47A8489BB47F} <C:\WINDOWS\SYSTEM\IUCTL.DLL, Microsoft Corporation>
[使用网际快车下载]
<C:\PROGRAM FILES\FLASHGET\jc_link.htm, N/A>
[使用网际快车下载全部链接]
<C:\PROGRAM FILES\FLASHGET\jc_all.htm, N/A>
[Google 搜索(&G)]
<res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmsearch.html, N/A>
[翻译英文字词(&T)]
<res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmwordtrans.html, N/A>
[缓存的网页快照]
<res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmcache.html, N/A>
[类似网页]
<res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmsimilar.html, N/A>
[反向链接]
<res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmbacklinks.html, N/A>
[使用KuGoo3下载(&K)]
<C:\PROGRAM FILES\KUGOO3\KuGoo3DownX.htm, N/A>
[加入天天网摘]
<http://www.365key.com/include/rightClick.aspx, N/A>
[雅虎搜索]
<res://C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YASBAR.DLL/246, N/A>
[添加到雅虎订阅(&Y)]
<res://C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YRSS.DLL/YRSSMENUEXT, N/A>
[&使用迅雷下载]
<C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接]
<C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm, N/A>

lilicool - 2006-6-13 10:50:00

正在运行的进程
[PID: 4294839513][C:\WINDOWS\SYSTEM\MPREXE.EXE] <Microsoft Corporation><4.90.3000>
[PID: 4294868009][C:\WINDOWS\SYSTEM\MSTASK.EXE] <Microsoft Corporation><4.71.2721.1>
[PID: 4294856385][C:\WINDOWS\SYSTEM\SSDPSRV.EXE] <Microsoft Corporation><4.90.3003.0>
[C:\WINDOWS\SYSTEM\NETBIOS.DLL] <N/A><N/A>
[C:\PROGRAM FILES\RISING\RFW\PROCLIB.DLL] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9>
[C:\PROGRAM FILES\RISING\RFW\RFWAPI.DLL] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 5>
[C:\PROGRAM FILES\RISING\RFW\RFWDRV.DLL] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 21>
[C:\PROGRAM FILES\RISING\RFW\RFWLOG.DLL] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6>
[C:\PROGRAM FILES\RISING\RFW\RFWRULE.DLL] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 13>
[PID: 4294895221][C:\PROGRAM FILES\RISING\RFW\RFWSRV.EXE] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 32>
[PID: 4294892953][C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[C:\PROGRAM FILES\RISING\RAV\UNPACKER.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[C:\PROGRAM FILES\RISING\RAV\SCANEXEC.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\PROGRAM FILES\RISING\RAV\SCANSCT.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 15>
[C:\PROGRAM FILES\RISING\RAV\SCANMAC.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
[C:\PROGRAM FILES\RISING\RAV\NVFILE.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
[C:\PROGRAM FILES\RISING\RAV\SCANEX.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\PROGRAM FILES\RISING\RAV\UNEXE.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\PROGRAM FILES\RISING\RAV\POSTTRT.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
[C:\PROGRAM FILES\RISING\RAV\ENGINE.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 28>
[C:\PROGRAM FILES\RISING\RAV\SPAMENG.DLL] <N/A><18, 0, 0, 6>
[C:\PROGRAM FILES\RISING\RAV\MAILMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\PROGRAM FILES\RISING\RAV\MEMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
[C:\PROGRAM FILES\RISING\RAV\HOOKWEB.DLL] <rising><18, 0, 0, 1>
[C:\PROGRAM FILES\RISING\RAV\REGMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[C:\PROGRAM FILES\RISING\RAV\VIRUSLIB.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\PROGRAM FILES\RISING\RAV\LIBLOAD.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\PROGRAM FILES\RISING\RAV\SCANNER.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
[C:\PROGRAM FILES\RISING\RAV\HOOKSYS.DLL] <Rising><18, 1, 0, 9>
[C:\PROGRAM FILES\RISING\RAV\RSLOG.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
[C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\PROGRAM FILES\RISING\RAV\CFGDLL.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\PROGRAM FILES\RISING\RAV\RSCOMMX.DLL] <rising><18, 0, 0, 1>
[PID: 4294782329][C:\PROGRAM FILES\RISING\RAV\RAVMOND.EXE] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 22>
[C:\PROGRAM FILES\RISING\RAV\BWLIST.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18>
[C:\WINDOWS\SYSTEM\NETBIOS.DLL] <N/A><N/A>
[C:\PROGRAM FILES\RISING\RAV\PNGDLL.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\PROGRAM FILES\RISING\RAV\RSCOMMX.DLL] <rising><18, 0, 0, 1>
[C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\PROGRAM FILES\RISING\RAV\CFGDLL.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[PID: 4294774613][C:\PROGRAM FILES\RISING\RAV\RAVMON.EXE] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 19>
[C:\PROGRAM FILES\RISING\RAV\BWLIST.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18>
[C:\WINDOWS\SYSTEM\NETBIOS.DLL] <N/A><N/A>
[C:\PROGRAM FILES\RISING\RAV\RSGUILIB.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 24>
[C:\PROGRAM FILES\FOTOBATCH\MCSHLEX.DLL] <N/A><N/A>
[C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YWIPER.DLL] <N/A><1, 0, 1, 1014>
[C:\WINDOWS\SYSTEM\RAVEXT.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[C:\PROGRAM FILES\WINRAR\RAREXT.DLL] <N/A><N/A>
[C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\COMDLLS\XUNLEIBHO_002.DLL] <Thunder Networking Technologies,LTD><5, 0, 0, 2>
[C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YDRAGSEARCH.DLL] < ><1, 2, 7, 1006>
[C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YPHTB.DLL] <Yahoo! China><1, 1, 3, 1035>
[C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YASBAR.DLL] <Yahoo!><2, 1, 8, 1048>
[C:\PROGRAM FILES\KUGOO3\KUGOO3DOWNXCONTROL.OCX] <N/A><N/A>
[C:\PROGRAM FILES\FLASHGET\JCCATCH.DLL] <Amaze Soft><1, 1, 4, 0>
[C:\WINDOWS\SYSTEM\DCIMAN32.DLL] <Intel(R) Corp., Microsoft Corp.><4.90.3000>
[C:\WINDOWS\SYSTEM\NVCPL.DLL] <NVIDIA Corporation><4.14.10.7184>
[C:\WINDOWS\SYSTEM\NVRSZHC.DLL] <NVIDIA Corporation><4.14.10.7184>
[C:\WINDOWS\SYSTEM\NVSHELL.DLL] <NVIDIA Corporation><4.14.10.10035>
[C:\WINDOWS\SYSTEM\DHCPCSVC.DLL] <N/A><N/A>
[C:\WINDOWS\SYSTEM\NETBIOS.DLL] <N/A><N/A>
[PID: 4294797881][C:\WINDOWS\EXPLORER.EXE] <Microsoft Corporation><5.50.4134.100>
[C:\WINDOWS\SYSTEM\DHCPCSVC.DLL] <N/A><N/A>
[C:\WINDOWS\SYSTEM\NETBIOS.DLL] <N/A><N/A>
[PID: 4294793833][C:\WINDOWS\SYSTEM\RPCSS.EXE] <Microsoft Corporation><4.71.3328>
[C:\PROGRAM FILES\RISING\RFW\PNGDLL.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\PROGRAM FILES\RISING\RFW\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 4294757005][C:\PROGRAM FILES\RISING\RFW\RFWMAIN.EXE] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 51>
[C:\PROGRAM FILES\RISING\RFW\RSGUILIB.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23>
[PID: 4294646685][C:\WINDOWS\SYSTEM\RESTORE\STMGR.EXE] <Microsoft Corporation><4.90.0.2533>
[PID: 4294605493][C:\WINDOWS\SYSTEM\INTERNAT.EXE] <Microsoft Corporation><4.90.1000.0>
[PID: 4294579093][C:\WINDOWS\TASKMON.EXE] <Microsoft Corporation><4.90.3000>
[PID: 4294607741][C:\WINDOWS\SYSTEM\SYSTRAY.EXE] <Microsoft Corporation><4.90.3000>
[C:\PROGRAM FILES\RISING\RAV\RSCOMMX.DLL] <rising><18, 0, 0, 1>
[C:\PROGRAM FILES\RISING\RAV\CFGDLL.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 4294657209][C:\PROGRAM FILES\RISING\RAV\RAVTASK.EXE] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
[PID: 4294457621][C:\WINDOWS\SYSTEM\WMIEXE.EXE] <Microsoft Corporation><4.90.2452.1>
[C:\WINDOWS\SYSTEM\NVDD32.DLL] <NVidia Corporation><4.14.10.7184>
[C:\WINDOWS\SYSTEM\NVARCH32.DLL] <NVIDIA Corporation><4.14.10.7184>
[PID: 4294573917][C:\WINDOWS\SYSTEM\DDHELP.EXE] <Microsoft Corporation><4.07.01.3000>
[C:\WINDOWS\SYSTEM\DHCPCSVC.DLL] <N/A><N/A>
[PID: 4294384537][C:\DOWNLOADS\扫描\SRENG\SRENG2\SRENG.EXE] <Smallfrogs Studio><2.0.21.505>
[C:\WINDOWS\SYSTEM\NETBIOS.DLL] <N/A><N/A>

==================================
文件关联
.TXT OK. [C:\WINDOWS\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [C:\WINDOWS\winhlp32.exe %1]
.INI OK. [C:\WINDOWS\NOTEPAD.EXE %1]
.INF OK. [C:\WINDOWS\NOTEPAD.EXE %1]
.VBS OK. [C:\WINDOWS\WScript.exe "%1" %*]
.JS OK. [C:\WINDOWS\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

瑞星卡卡安全论坛