瑞星卡卡安全论坛

首页 » 技术交流区 » 反病毒/反流氓软件论坛 » 出现这个图片是什么意思啊?请给细说一下!
绿袋袋 - 2006-7-5 9:21:00
我不懂英文啊!
绿袋袋 - 2006-7-5 9:30:00
1

附件: 47858620067592210.bmp
我中毒了哎 - 2006-7-5 9:33:00
用金山翻译!
绿袋袋 - 2006-7-5 9:33:00
这个是什么意思啊?

附件: 47858620067592556.bmp
绿袋袋 - 2006-7-5 9:36:00
那我点是还是点否呢?
独孤豪侠 - 2006-7-5 9:38:00
你打开什么东西的时候会有个提示?
从文件夹来看是临时文件夹里的东西.
可以清空掉.


点否吧.然后断网清缓存.


删除temp文件夹下的所有文件
绿袋袋 - 2006-7-5 9:47:00
谢谢!打开网页的时候出现的!
独孤豪侠 - 2006-7-5 9:53:00
哦,那个人建议你在http://forum.ikaka.com/topic.asp?board=28&artid=6979213 下载四楼的扫描工具。扫一份日志上来
绿袋袋 - 2006-7-5 10:06:00
嗯我试试啊,你可等着我啊
绿袋袋 - 2006-7-5 10:15:00
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [Microsoft Corporation]
    <startkey><C:\WINDOWS\system32\csrcss.exe>  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [Microsoft Corporation]
    <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [Microsoft Corporation]
    <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [Microsoft Corporation]
    <IgfxTray><C:\WINDOWS\system32\igfxtray.exe>  [Intel Corporation]
    <HotKeysCmds><C:\WINDOWS\system32\hkcmd.exe>  [Intel Corporation]
    <KernelFaultCheck><%systemroot%\system32\dumprep 0 -k>  []
    <RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system>  [Beijing Rising Technology Co., Ltd.]
    <RfwMain><"D:\Rising\Rfw\rfwmain.exe" -Startup>  [Beijing Rising Technology Co., Ltd.]
    <startkey><C:\WINDOWS\system32\csrcss.exe>  []
    <stup.exe><C:\PROGRA~1\TENCENT\Adplus\stup.exe>  [Tencent]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\Windows\system32\userinit.exe,>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{FB291D25-09D2-4AF8-98DB-CFAD0C8FE094}><C:\WINDOWS\system32\Xzofpf.dll>  []
    <{CE9874E1-3BA6-4E63-882A-976F450FDAF3}><C:\WINDOWS\system32\Auaxdk.dll>  []
    <{DF54765B-5818-4D6F-9E82-466BAC579631}><C:\WINDOWS\system32\Ymskeo.dll>  []
    <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINDOWS\system32\RavExt.dll>  [Beijing Rising Technology Co., Ltd.]
    <{3524F34B-EDA6-44EE-8806-FB88D9B99738}><C:\WINDOWS\system32\Peuqef.dll>  []
    <{6B087B80-5D6E-4849-838A-D6F7E36ECFD3}><C:\WINDOWS\system32\Rvyt.dll>  []
    <{360A5F27-F553-4667-8E36-B7C5E324675E}><C:\WINDOWS\system32\Hnlp.dll>  []
    <{E81F4C03-2363-4905-B20B-4D1486D061F0}><C:\WINDOWS\system32\Eman.dll>  []
绿袋袋 - 2006-7-5 10:17:00
启动文件夹
[Adobe Reader Speed Launch]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Reader Speed Launch.lnk><N>
[Microsoft Office]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Microsoft Office.lnk><N>

==================================
服务
[lsass / lsass]
  <C:\WINDOWS\lsass.exe><N/A>
[Rising Proxy  Service / RfwProxySrv]
  <d:\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
  <d:\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
  <"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[RsRavMon Service / RsRavMon]
  <"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[User Profile Hive Cleanup / UPHClean]
  <C:\Program Files\UPHClean\uphclean.exe><Microsoft Corporation>

==================================
浏览器加载项
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[]
  {07D32FE4-A9A6-4CE3-A779-06B3F1AEDFDB} <C:\WINDOWS\system32\Vhap.dll, N/A>
[Tencent Browser Helper]
  {0C7C23EF-A848-485B-873C-0ED954731014} <, N/A>
[]
  {14F152A4-2969-4E31-99C8-D0A63202A3E1} <C:\WINDOWS\system32\Bwzqh.dll, N/A>
[]
  {21F6D7B6-696C-4A23-BE8B-91D9255A40CB} <C:\WINDOWS\system32\Dbidp.dll, N/A>
[]
  {2CA388EA-69D4-4F83-BABE-CBEDB9786DF1} <C:\WINDOWS\system32\Hler.dll, N/A>
[]
  {3209786E-13D3-4D8C-A939-F688A208D0ED} <C:\WINDOWS\system32\Wcpayv.dll, N/A>
[Yahoo!Photo]
  {33BBE430-0E42-4f12-B075-8D21ACB10DCB} <C:\Program Files\Yahoo!\Assistant\Assist\yphtb.dll, Yahoo! China>
[]
  {3524F34B-EDA6-44EE-8806-FB88D9B99738} <C:\WINDOWS\system32\Peuqef.dll, N/A>
[]
  {360A5F27-F553-4667-8E36-B7C5E324675E} <C:\WINDOWS\system32\Hnlp.dll, N/A>
[AntiFish Class]
  {38928D50-8A48-44C2-945F-D2F23F771410} <C:\Program Files\Yahoo!\Assistant\Assist\yAngling.dll, Yahoo.>
[]
  {3C1407AD-5B6D-4D77-BE48-A996C3798477} <C:\WINDOWS\system32\Kwtv.dll, N/A>
[雅虎助手]
  {406F94F0-504F-4a40-8DFD-58B0666ABEBD} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, Yahoo!>
[QQBrowserHelperObject Class]
  {54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[DragSearch BHO]
  {62EED7C6-9F02-42f9-B634-98E2899E147B} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL, >
[]
  {62FF5A7E-CE16-459D-8C9D-4B9B451A9966} <C:\WINDOWS\system32\Ncfm.dll, N/A>
[]
  {641B1F60-E102-4BD7-83E8-37B46E7BA6BF} <C:\WINDOWS\system32\Zqtpep.dll, N/A>
[]
  {669751ED-D558-49AE-B01A-3B374CC7910E} <C:\WINDOWS\system32\ssup.dll, TENCENT>
[]
  {69ACA470-CC58-4B26-984F-C6E3F86DD250} <C:\WINDOWS\system32\Huqlqi.dll, N/A>
[]
  {6B087B80-5D6E-4849-838A-D6F7E36ECFD3} <C:\WINDOWS\system32\Rvyt.dll, N/A>
[]
  {7636CEB3-81DC-40C3-8994-BC33EC0CBD9A} <C:\WINDOWS\system32\Iecvli.dll, N/A>
[]
  {76D54548-5B90-47B1-9B18-5BF653EA9630} <C:\WINDOWS\system32\Poylv.dll, N/A>
[]
  {783A143A-98E8-4E70-A3F3-635842CB647E} <C:\WINDOWS\system32\Ellhmi.dll, N/A>
[]
  {788F231F-B158-4B98-9642-3B2160FB0FBF} <C:\WINDOWS\system32\Pxik.dll, N/A>
[]
  {8578C439-F7F7-42DD-9874-84CD85DE794B} <C:\WINDOWS\system32\Naxpwv.dll, N/A>
[]
  {91E5C891-41C8-48A4-9075-35969525BB66} <C:\WINDOWS\system32\Wewn.dll, N/A>
[]
  {92D4841E-F2CB-4A99-95FD-71BEA3EFA293} <C:\WINDOWS\system32\Jgyc.dll, N/A>
[]
  {99016389-BAD8-490C-B3D3-D8AE12C6D97F} <C:\WINDOWS\system32\Wlzgj.dll, N/A>
[]
  {99DAF963-13A1-4925-9D00-BB2C8AE721AE} <C:\WINDOWS\system32\Yzfour.dll, N/A>
[]
  {A5687F6A-90F8-4910-9A14-8EF9E0753676} <C:\WINDOWS\system32\Nakm.dll, N/A>
[]
  {A6789301-4364-45EE-88EB-F29F048CF666} <C:\WINDOWS\system32\Aqdjn.dll, N/A>
[]
  {A8B83E28-611B-4BE7-A13A-D3521C2E05BE} <C:\WINDOWS\system32\Hmxnms.dll, N/A>
[]
  {AEEEBB83-7692-4E15-99C0-97AF98230174} <C:\WINDOWS\system32\Lcxav.dll, N/A>
[]
  {C62D3B40-7AC2-4FC0-8D63-A70712C98F7A} <C:\WINDOWS\system32\Dvcre.dll, N/A>
[]
  {CA4FE666-0FD3-4FB1-801C-9707B3152D51} <C:\WINDOWS\system32\Lgsgj.dll, N/A>
[]
  {CE9874E1-3BA6-4E63-882A-976F450FDAF3} <C:\WINDOWS\system32\Auaxdk.dll, N/A>
[CnsHook Class]
  {D157330A-9EF3-49F8-9A67-4141AC41ADD4} <, N/A>
[]
  {D9B0B834-2100-4249-AD80-C020D122B2E7} <C:\WINDOWS\system32\Omfa.dll, N/A>
[]
  {DD03AE92-F870-44B9-A122-18F71CFFC39D} <C:\WINDOWS\system32\Elmjks.dll, N/A>
[]
  {DD65F180-51BA-4A79-9368-D429097F8BE5} <C:\WINDOWS\system32\Ockdv.dll, N/A>
[]
  {DF54765B-5818-4D6F-9E82-466BAC579631} <C:\WINDOWS\system32\Ymskeo.dll, N/A>
[]
  {E073698A-0E9F-4430-9DEA-5E592D4713B0} <C:\WINDOWS\system32\Ojgpv.dll, N/A>
[]
  {E49A9A6F-CD4E-4735-83FD-D0F5F0924BE1} <C:\WINDOWS\system32\Pwviu.dll, N/A>
[]
  {E5B1C735-E3F6-4E22-A6F1-044E0BC262F3} <C:\WINDOWS\system32\Vxnliz.dll, N/A>
[]
  {E81F4C03-2363-4905-B20B-4D1486D061F0} <C:\WINDOWS\system32\Eman.dll, N/A>
[]
  {ECE7D48D-6771-47C0-803F-80FAE70B9D4F} <C:\WINDOWS\system32\Vtytos.dll, N/A>
[]
  {F03FC5EA-73AA-4BD1-91EF-FC4C42F79BB4} <C:\WINDOWS\system32\Kord.dll, N/A>
[]
  {F57BAD5C-2516-47B4-92DD-0A9C71BABD25} <C:\WINDOWS\system32\Xfaia.dll, N/A>
[]
绿袋袋 - 2006-7-5 10:17:00
{3C1407AD-5B6D-4D77-BE48-A996C3798477} <C:\WINDOWS\system32\Kwtv.dll, N/A>
[雅虎助手]
  {406F94F0-504F-4A40-8DFD-58B0666ABEBD} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, Yahoo!>
[QQBrowserHelperObject Class]
  {54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[DragSearch BHO]
  {62EED7C6-9F02-42F9-B634-98E2899E147B} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL, >
[]
  {62FF5A7E-CE16-459D-8C9D-4B9B451A9966} <C:\WINDOWS\system32\Ncfm.dll, N/A>
[]
  {641B1F60-E102-4BD7-83E8-37B46E7BA6BF} <C:\WINDOWS\system32\Zqtpep.dll, N/A>
[]
  {669751ED-D558-49AE-B01A-3B374CC7910E} <C:\WINDOWS\system32\ssup.dll, TENCENT>
[]
  {69ACA470-CC58-4B26-984F-C6E3F86DD250} <C:\WINDOWS\system32\Huqlqi.dll, N/A>
[]
  {6B087B80-5D6E-4849-838A-D6F7E36ECFD3} <C:\WINDOWS\system32\Rvyt.dll, N/A>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[]
  {7636CEB3-81DC-40C3-8994-BC33EC0CBD9A} <C:\WINDOWS\system32\Iecvli.dll, N/A>
[]
  {76D54548-5B90-47B1-9B18-5BF653EA9630} <C:\WINDOWS\system32\Poylv.dll, N/A>
[]
  {783A143A-98E8-4E70-A3F3-635842CB647E} <C:\WINDOWS\system32\Ellhmi.dll, N/A>
[]
  {788F231F-B158-4B98-9642-3B2160FB0FBF} <C:\WINDOWS\system32\Pxik.dll, N/A>
[]
  {8578C439-F7F7-42DD-9874-84CD85DE794B} <C:\WINDOWS\system32\Naxpwv.dll, N/A>
[]
  {91E5C891-41C8-48A4-9075-35969525BB66} <C:\WINDOWS\system32\Wewn.dll, N/A>
[]
  {92D4841E-F2CB-4A99-95FD-71BEA3EFA293} <C:\WINDOWS\system32\Jgyc.dll, N/A>
[]
  {99016389-BAD8-490C-B3D3-D8AE12C6D97F} <C:\WINDOWS\system32\Wlzgj.dll, N/A>
[]
  {99DAF963-13A1-4925-9D00-BB2C8AE721AE} <C:\WINDOWS\system32\Yzfour.dll, N/A>
[]
  {A5687F6A-90F8-4910-9A14-8EF9E0753676} <C:\WINDOWS\system32\Nakm.dll, N/A>
[]
  {A6789301-4364-45EE-88EB-F29F048CF666} <C:\WINDOWS\system32\Aqdjn.dll, N/A>
[]
  {A8B83E28-611B-4BE7-A13A-D3521C2E05BE} <C:\WINDOWS\system32\Hmxnms.dll, N/A>
[]
  {AEEEBB83-7692-4E15-99C0-97AF98230174} <C:\WINDOWS\system32\Lcxav.dll, N/A>
[]
  {C62D3B40-7AC2-4FC0-8D63-A70712C98F7A} <C:\WINDOWS\system32\Dvcre.dll, N/A>
[]
  {CA4FE666-0FD3-4FB1-801C-9707B3152D51} <C:\WINDOWS\system32\Lgsgj.dll, N/A>
[]
  {CE9874E1-3BA6-4E63-882A-976F450FDAF3} <C:\WINDOWS\system32\Auaxdk.dll, N/A>
[CnsHook Class]
  {D157330A-9EF3-49F8-9A67-4141AC41ADD4} <, N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx, Macromedia, Inc.>
[]
  {D9B0B834-2100-4249-AD80-C020D122B2E7} <C:\WINDOWS\system32\Omfa.dll, N/A>
[]
  {DD03AE92-F870-44B9-A122-18F71CFFC39D} <C:\WINDOWS\system32\Elmjks.dll, N/A>
[]
  {DD65F180-51BA-4A79-9368-D429097F8BE5} <C:\WINDOWS\system32\Ockdv.dll, N/A>
[]
  {DF54765B-5818-4D6F-9E82-466BAC579631} <C:\WINDOWS\system32\Ymskeo.dll, N/A>
[]
  {E073698A-0E9F-4430-9DEA-5E592D4713B0} <C:\WINDOWS\system32\Ojgpv.dll, N/A>
[]
  {E49A9A6F-CD4E-4735-83FD-D0F5F0924BE1} <C:\WINDOWS\system32\Pwviu.dll, N/A>
[]
  {E5B1C735-E3F6-4E22-A6F1-044E0BC262F3} <C:\WINDOWS\system32\Vxnliz.dll, N/A>
[]
  {E81F4C03-2363-4905-B20B-4D1486D061F0} <C:\WINDOWS\system32\Eman.dll, N/A>
[]
  {ECE7D48D-6771-47C0-803F-80FAE70B9D4F} <C:\WINDOWS\system32\Vtytos.dll, N/A>
[]
  {F03FC5EA-73AA-4BD1-91EF-FC4C42F79BB4} <C:\WINDOWS\system32\Kord.dll, N/A>
[]
  {F57BAD5C-2516-47B4-92DD-0A9C71BABD25} <C:\WINDOWS\system32\Xfaia.dll, N/A>
[]
  {FB291D25-09D2-4AF8-98DB-CFAD0C8FE094} <C:\WINDOWS\system32\Xzofpf.dll, N/A>
[Google 搜索(&G)]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html, N/A>
[上传到QQ网络硬盘]
  <C:\Program Files\TENCENT\QQ\AddToNetDisk.htm, N/A>
[反向链接]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html, N/A>
[导出到 Microsoft Excel(&x)]
  <res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
  <C:\Program Files\TENCENT\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <C:\Program Files\TENCENT\QQ\AddEmotion.htm, N/A>
[添加到雅虎订阅(&Y)]
  <res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll/YRSSMENUEXT, N/A>
[用QQ彩信发送该图片]
  <C:\Program Files\TENCENT\QQ\SendMMS.htm, N/A>
[类似网页]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html, N/A>
[缓存的网页快照]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html, N/A>
[翻译英文字词(&T)]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html, N/A>
[雅虎搜索]
  <res://C:\Program Files\Yahoo!\Assistant\Assist\yasbar.dll/246, N/A>
绿袋袋 - 2006-7-5 10:18:00
正在运行的进程
[PID: 452][\SystemRoot\System32\smss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 508][\??\C:\WINDOWS\system32\csrss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 532][\??\C:\WINDOWS\system32\winlogon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 576][C:\WINDOWS\system32\services.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 588][C:\WINDOWS\system32\lsass.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 736][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 780][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 868][C:\Program Files\Rising\Rav\CCenter.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 884][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 964][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1008][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1024][C:\Program Files\Rising\Rav\Ravmond.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 1, 26>
    [C:\Program Files\Rising\Rav\BWList.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\RsLog.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
    [C:\Program Files\Rising\Rav\HOOKSYS.dll]  <Rising><18, 1, 0, 9>
    [C:\Program Files\Rising\Rav\Scanner.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [C:\Program Files\Rising\Rav\libload.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\VirusLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\regmon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
    [C:\Program Files\Rising\Rav\HookWeb.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\MemMon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
    [C:\Program Files\Rising\Rav\expscan.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\mPorts.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3>
    [C:\Program Files\Rising\Rav\MailMon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [C:\Program Files\Rising\Rav\SpamEng.dll]  <N/A><18, 0, 0, 6>
    [C:\Program Files\Rising\Rav\engine.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [C:\Program Files\Rising\Rav\PostTrt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
    [C:\Program Files\Rising\Rav\UnExe.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\ScanExec.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\ScanEx.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\NvFile.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
    [C:\Program Files\Rising\Rav\ScanMac.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 8>
    [C:\Program Files\Rising\Rav\ScanSct.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 17>
    [C:\Program Files\Rising\Rav\Unpacker.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
    [C:\Program Files\Rising\Rav\ExtOLE.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[PID: 1080][d:\rising\rfw\rfwsrv.exe]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 32>
    [d:\rising\rfw\RfwRule.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 13>
    [d:\rising\rfw\rfwlog.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6>
    [d:\rising\rfw\Rfwdrv.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 21>
    [d:\rising\rfw\MonDrv.dll]  <rs><1, 0, 0, 4>
    [d:\rising\rfw\ProcLib.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9>
[PID: 1212][C:\WINDOWS\system32\spoolsv.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1364][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1380][C:\WINDOWS\system32\wdfmgr.exe]  <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)>
[PID: 1420][C:\Program Files\UPHClean\uphclean.exe]  <Microsoft Corporation><1.5.5.21>
[PID: 1500][C:\Program Files\Rising\Rav\RavStub.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 1668][C:\WINDOWS\System32\alg.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 232][C:\WINDOWS\Explorer.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\Xzofpf.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Auaxdk.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ymskeo.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RavExt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
    [C:\WINDOWS\system32\Peuqef.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Rvyt.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Hnlp.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Eman.dll]  <N/A><N/A>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
    [C:\WINDOWS\Downloaded Program Files\Crsde.dll]  <Tencent><4, 1, 1, 17>
    [C:\WINDOWS\system32\Nzqaqe.dll]  <N/A><N/A>
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  <Adobe Systems, Inc.><7.0.0.0>
    [C:\WINDOWS\system32\igfxpph.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\hccutils.DLL]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxres.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxsrvc.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.3924>
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  <Adobe Systems Incorporated><7.0.0.2004121400>
    [C:\WINDOWS\system32\Vhap.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Bwzqh.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Dbidp.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Hler.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Wcpayv.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Kwtv.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ncfm.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Zqtpep.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Huqlqi.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Iecvli.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Poylv.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ellhmi.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Pxik.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Naxpwv.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Wewn.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Jgyc.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Wlzgj.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Yzfour.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Nakm.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Aqdjn.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Hmxnms.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Lcxav.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Dvcre.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Lgsgj.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Omfa.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Elmjks.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ockdv.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ojgpv.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Pwviu.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Vxnliz.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Vtytos.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Kord.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Xfaia.dll]  <N/A><N/A>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Yahoo!\Assistant\Assist\yphtb.dll]  <Yahoo! China><1, 1, 2, 1034>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll]  <Yahoo!><2, 1, 8, 1048>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL]  <><1, 2, 7, 1006>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ywiper.dll]  <N/A><1, 0, 1, 1014>
    [C:\Program Files\WinRAR\rarext.dll]  <N/A><N/A>
绿袋袋 - 2006-7-5 10:19:00
[PID: 256][d:\rising\rfw\RfwMain.exe]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 51>
    [d:\rising\rfw\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23>
    [d:\rising\rfw\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [d:\rising\rfw\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
[PID: 180][C:\WINDOWS\system32\hkcmd.exe]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\hccutils.DLL]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxsrvc.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxhk.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxres.dll]  <Intel Corporation><3.0.0.3924>
[PID: 400][C:\Program Files\Rising\Rav\RavTask.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
[PID: 1784][C:\Program Files\Rising\Rav\Ravmon.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 1, 28>
    [C:\Program Files\Rising\Rav\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 24>
    [C:\Program Files\Rising\Rav\BWList.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
[PID: 1964][C:\WINDOWS\system32\ctfmon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
[PID: 2724][C:\Program Files\TENCENT\QQ\QQ.exe]  <TENCENT><0, 0, 0, 0>
    [C:\Program Files\TENCENT\QQ\QQBaseClassInDll.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\QQHelperDll.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\BasicCtrlDll.dll]  <Tencent><5, 0, 200, 160>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
    [C:\Program Files\TENCENT\QQ\QQAPI.dll]  <><1, 0, 0, 1>
    [C:\Program Files\Tencent\QQ\TIMProxy.dll]  <tencent><0, 3, 2, 4>
    [C:\Program Files\TENCENT\QQ\LoginCtrl.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\npkcntc.dll]  <INCA Internet Co., Ltd.><2006, 3, 2, 1>
    [C:\Program Files\TENCENT\QQ\npkpdb.dll]  <INCA Internet Co., Ltd.><2003, 10, 1, 1>
    [C:\Program Files\TENCENT\QQ\QQRes.dll]  <tencent><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\WizardCtrl.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\QQMainFrame.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx]  <Macromedia, Inc.><8,0,22,0>
    [C:\Program Files\TENCENT\QQ\CQQApplication.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\NewSkin.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\HostingMgr.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\CameraDll.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\MailSummary.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\QQSpace.dll]  <><1, 0, 0, 1>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\QQGroupMng.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\GroupLive.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\UserDefinedHead.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\QQPlugin.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\QQConfigPlugin.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\LongConnection.dll]  <tencent><5, 0, 200, 160>
    [C:\Program Files\TENCENT\QQ\QRingMng.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\PhoneAPI.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\DialerAllinOne.dll]  <tencent><1, 4, 0, 0>
    [C:\Program Files\TENCENT\QQ\QQFileTransfer.dll]  <Tencent><5, 0, 202, 180>
    [C:\Program Files\TENCENT\QQ\QQPet.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\QQAvatar.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\FlashAvatarDll.dll]  <><1, 4, 0, 1>
    [C:\Program Files\TENCENT\QQ\ShareFiles.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\QQZip.dll]  <tencent><0, 3, 2, 4>
    [C:\Program Files\TENCENT\QQ\PersonalDesktop.dll]  <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 2>
    [C:\Program Files\TENCENT\QQ\BQQApplication.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\QQSysMsgMng.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\QQSettingCtrl.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\QQAllInOne.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\SCCore.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Xzofpf.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Auaxdk.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ymskeo.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RavExt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
    [C:\WINDOWS\system32\Peuqef.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Rvyt.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Hnlp.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Eman.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\CommercesMng.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\QQAddr.dll]  <深圳市腾讯计算机系统有限公司><5, 0, 101, 200>
    [C:\Program Files\TENCENT\QQ\QQSceneMng.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\OEMApplication.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\QQCustomFace.dll]  <N/A><N/A>
    [C:\Program Files\TENCENT\QQ\ImageOle.dll]  <TODO: <Company name>><1.0.0.1>
    [C:\Program Files\TENCENT\QQ\QQMagicFace.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQ\GroupConnection.dll]  <Tencent><5, 0, 202, 170>
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
    [C:\Program Files\TENCENT\QQGame\GameLogCore.Dll]  <><0, 10, 106, 13>
    [C:\Program Files\TENCENT\QQGame\Core.dll]  <é??úêDìú???????ú?μí3óD?T1???><0, 10, 0, 0>
    [C:\Program Files\TENCENT\QQGame\NetCenter.dll]  <é??úêDìú???????ú?μí3óD?T1???><0, 10, 0, 0>
    [C:\Program Files\TENCENT\QQGame\CmdCenter.dll]  <深圳市腾讯计算机系统有限公司><0, 10, 0, 0>
    [C:\Program Files\TENCENT\QQGame\HelpDll.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQGame\ResEx.dll]  <深圳市腾讯计算机系统有限公司><0, 10, 0, 0>
    [C:\Program Files\TENCENT\QQGame\GameLogAidMgr.dll]  <><1, 0, 0, 1>
    [C:\Program Files\TENCENT\QQGame\COMToolKit.dll]  <><1, 0, 0, 3>
    [C:\Program Files\TENCENT\QQGame\QQGameAvatar.dll]  <深圳市腾讯计算机系统有限公司                                    Tencent Computer System Ltd.><0, 10, 0, 0>
    [C:\Program Files\TENCENT\QQGame\GamePublic.dll]  <><1, 0, 0, 1>
[PID: 2904][C:\Program Files\Tencent\QQ\TIMPlatform.exe]  <tencent><0, 3, 1, 8>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
    [C:\Program Files\Tencent\QQ\TIMProxy.dll]  <tencent><0, 3, 2, 4>
[PID: 2296][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
    [C:\WINDOWS\Downloaded Program Files\Crsde.dll]  <Tencent><4, 1, 1, 17>
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  <Adobe Systems Incorporated><7.0.0.2004121400>
    [C:\WINDOWS\system32\Vhap.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Bwzqh.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Dbidp.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Hler.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Wcpayv.dll]  <N/A><N/A>
    [C:\Program Files\Yahoo!\Assistant\Assist\yphtb.dll]  <Yahoo! China><1, 1, 2, 1034>
    [C:\WINDOWS\system32\Peuqef.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Hnlp.dll]  <N/A><N/A>
    [C:\Program Files\Yahoo!\Assistant\Assist\yAngling.dll]  <Yahoo.><1, 0, 2, 1002>
    [C:\WINDOWS\system32\Kwtv.dll]  <N/A><N/A>
绿袋袋 - 2006-7-5 10:19:00
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll]  <Yahoo!><2, 1, 8, 1048>
    [C:\Program Files\Tencent\QQ\QQIEHelper.dll]  <深圳市腾讯计算机系统有限公司><1, 1, 0, 5>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL]  <><1, 2, 7, 1006>
    [C:\WINDOWS\system32\Ncfm.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Zqtpep.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ssup.dll]  <TENCENT><4, 1, 3, 33>
    [C:\WINDOWS\system32\Huqlqi.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Rvyt.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Iecvli.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Poylv.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ellhmi.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Pxik.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Naxpwv.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Wewn.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Jgyc.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Wlzgj.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Yzfour.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Nakm.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Aqdjn.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Hmxnms.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Lcxav.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Dvcre.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Lgsgj.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Auaxdk.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Omfa.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Elmjks.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ockdv.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ymskeo.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ojgpv.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Pwviu.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Vxnliz.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Eman.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Vtytos.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Kord.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Xfaia.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Xzofpf.dll]  <N/A><N/A>
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
    [C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx]  <Macromedia, Inc.><8,0,22,0>
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  <Adobe Systems, Inc.><7.0.0.0>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\PROGRA~1\TENCENT\QQ\Timwp.dll]  <><1, 0, 0, 1>
[PID: 4028][C:\Program Files\Wom\Womcc.exe]  <鲁锦><7.31.6.618>
    [C:\Program Files\Wom\womp2p.dll]  <鲁锦><1.2.6.615>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
    [C:\WINDOWS\system32\Xzofpf.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Auaxdk.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Ymskeo.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RavExt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
    [C:\WINDOWS\system32\Peuqef.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Rvyt.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Hnlp.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Eman.dll]  <N/A><N/A>
[PID: 3752][C:\Documents and Settings\Administrator\桌面\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>
    [C:\WINDOWS\Downloaded Program Files\Yvycb.dll]  <Tencent><4, 1, 1, 17>
绿袋袋 - 2006-7-5 10:19:00
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]
绿袋袋 - 2006-7-5 10:21:00
好了,就这些了给看一下有什么问题吗?好以前程序比较多,删了就是不知道删没删净,帮忙分析一下吧,
绿袋袋 - 2006-7-5 11:41:00
有没有高手在啊!
独孤豪侠 - 2006-7-5 11:48:00
[lsass / lsass]
<C:\WINDOWS\lsass.exe><N/A>
唉,还好是在服务项里.
1.开始-运行输入regedit,打开注册表编辑器,定位到HKEY_LOCAL_MACHINE\ SYSTEM \ CURRENTCONTROLSET \ SERVICES分支,删除左栏中的病毒服务名lsass
2.重启系统,在“文件夹选项”的“查看”面板中勾选“显示系统文件”、“显示所有的文件和文件夹”两项,点击“确定”按钮。然后在%windows%下寻找病毒文件名C:\WINDOWS\lsass.exe,C:\WINDOWS\lsass.dll,C:\WINDOWS\lsass_Hook.dll,C:\WINDOWS\lsasskey.dll,能找到的都删除,


建议你下载超级兔子。
http://www.pctutu.com/srmsdown.asp
安装好后,打开“超级兔子优化王”“专业卸载,卸载所有提示的垃圾软件,卸载是不要打开任何浏览窗口。卸载不了可以重启后再去卸载


你的系统好乱呀~~~~



上面几步做完后再扫一个上来看看.
独孤豪侠 - 2006-7-5 11:51:00
对了.在删除之前把那个文件压缩一下.发到我邮箱里zkkgsg@163.com
绿袋袋 - 2006-7-5 11:56:00
谢谢啦!等会儿啊!
独孤豪侠 - 2006-7-5 12:00:00
<startkey><C:\WINDOWS\system32\csrcss.exe> []
爆汗~~~~~~居然还有这个~~~~~

在你扫日志的那个工具的"启动项"中勾选修复掉.删除对应文件.

这个也一起发给我吧.
绿袋袋 - 2006-7-5 12:06:00
我那瑞星白装了啦?
下班啦!下午吧!
绿袋袋 - 2006-7-5 15:01:00
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [Microsoft Corporation]
    <startkey><C:\WINDOWS\system32\csrcss.exe>  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  []
    <run><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [Microsoft Corporation]
    <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [Microsoft Corporation]
    <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [Microsoft Corporation]
    <IgfxTray><C:\WINDOWS\system32\igfxtray.exe>  [Intel Corporation]
    <HotKeysCmds><C:\WINDOWS\system32\hkcmd.exe>  [Intel Corporation]
    <KernelFaultCheck><%systemroot%\system32\dumprep 0 -k>  []
    <RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system>  [Beijing Rising Technology Co., Ltd.]
    <RfwMain><"D:\Rising\Rfw\rfwmain.exe" -Startup>  [Beijing Rising Technology Co., Ltd.]
    <startkey><C:\WINDOWS\system32\csrcss.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\Windows\system32\userinit.exe,>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [Microsoft Corporation]

==================================
启动文件夹
[Adobe Reader Speed Launch]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Reader Speed Launch.lnk><N>
[Microsoft Office]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Microsoft Office.lnk><N>

==================================
服务
[lsass / lsass]
  <C:\WINDOWS\lsass.exe><N/A>
[Rising Proxy  Service / RfwProxySrv]
  <d:\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
  <d:\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
  <"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[RsRavMon Service / RsRavMon]
  <"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[User Profile Hive Cleanup / UPHClean]
  <C:\Program Files\UPHClean\uphclean.exe><Microsoft Corporation>

==================================
浏览器加载项
[Tencent Browser Helper]
  {0C7C23EF-A848-485B-873C-0ED954731014} <, N/A>
[超级兔子上网精灵]
  {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[新浪UC]
  {2253922F-1B26-4C74-8B57-E3AEE748DBB8} <C:\Program Files\sina\UC\uc.exe, N/A>
[Yahoo 1G电邮]
  {507F9113-CD77-4866-BA92-0E86DA3D0B97} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yahoomail, N/A>
[寻宝乐趣多]
  {59BC54A2-56B3-44a0-93E5-432D58746E26} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=taobao, N/A>
[雅虎助手]
  {5D73EE86-05F1-49ed-B850-E423120EC338} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yassist, N/A>
[微软]
  {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://www.microsoft.com/china/index.htm, N/A>
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <C:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[QQIEFloatBarCfgCmd Class]
  {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, N/A>
[情景聊天]
  {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yahoomsg, N/A>
[]
  {ECF2E268-F28C-48d2-9AB7-8F69C11CCB71} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=repair, N/A>
[Messenger]
  {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, N/A>
[]
  {FD00D911-7529-4084-9946-A29F1BDF4FE5} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=clean, N/A>
[&Google]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx, Macromedia, Inc.>
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[]
  {07D32FE4-A9A6-4CE3-A779-06B3F1AEDFDB} <C:\WINDOWS\system32\Vhap.dll, N/A>
[Tencent Browser Helper]
  {0C7C23EF-A848-485B-873C-0ED954731014} <, N/A>
[]
  {14F152A4-2969-4E31-99C8-D0A63202A3E1} <C:\WINDOWS\system32\Bwzqh.dll, N/A>
[]
  {21F6D7B6-696C-4A23-BE8B-91D9255A40CB} <C:\WINDOWS\system32\Dbidp.dll, N/A>
[&Google]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[]
  {2CA388EA-69D4-4F83-BABE-CBEDB9786DF1} <C:\WINDOWS\system32\Hler.dll, N/A>
[]
  {3209786E-13D3-4D8C-A939-F688A208D0ED} <C:\WINDOWS\system32\Wcpayv.dll, N/A>
[]
  {3524F34B-EDA6-44EE-8806-FB88D9B99738} <C:\WINDOWS\system32\Peuqef.dll, N/A>
[]
  {360A5F27-F553-4667-8E36-B7C5E324675E} <C:\WINDOWS\system32\Hnlp.dll, N/A>
[]
  {3C1407AD-5B6D-4D77-BE48-A996C3798477} <C:\WINDOWS\system32\Kwtv.dll, N/A>
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[QQBrowserHelperObject Class]
  {54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, N/A>
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A>
[]
  {62FF5A7E-CE16-459D-8C9D-4B9B451A9966} <C:\WINDOWS\system32\Ncfm.dll, N/A>
[]
  {641B1F60-E102-4BD7-83E8-37B46E7BA6BF} <C:\WINDOWS\system32\Zqtpep.dll, N/A>
[]
  {669751ED-D558-49AE-B01A-3B374CC7910E} <C:\WINDOWS\system32\ssup.dll, TENCENT>
[]
  {69ACA470-CC58-4B26-984F-C6E3F86DD250} <C:\WINDOWS\system32\Huqlqi.dll, N/A>
[]
  {6B087B80-5D6E-4849-838A-D6F7E36ECFD3} <C:\WINDOWS\system32\Rvyt.dll, N/A>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[超级兔子上网精灵]
独孤豪侠 - 2006-7-5 15:04:00
[lsass / lsass]
<C:\WINDOWS\lsass.exe><N/A>
<startkey><C:\WINDOWS\system32\csrcss.exe> []
<startkey><C:\WINDOWS\system32\csrcss.exe> []
唉,不该在的全都在.
绿袋袋 - 2006-7-5 15:10:00
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[]
  {7636CEB3-81DC-40C3-8994-BC33EC0CBD9A} <C:\WINDOWS\system32\Iecvli.dll, N/A>
[]
  {76D54548-5B90-47B1-9B18-5BF653EA9630} <C:\WINDOWS\system32\Poylv.dll, N/A>
[]
  {783A143A-98E8-4E70-A3F3-635842CB647E} <C:\WINDOWS\system32\Ellhmi.dll, N/A>
[]
  {788F231F-B158-4B98-9642-3B2160FB0FBF} <C:\WINDOWS\system32\Pxik.dll, N/A>
[]
  {8578C439-F7F7-42DD-9874-84CD85DE794B} <C:\WINDOWS\system32\Naxpwv.dll, N/A>
[]
  {91E5C891-41C8-48A4-9075-35969525BB66} <C:\WINDOWS\system32\Wewn.dll, N/A>
[]
  {92D4841E-F2CB-4A99-95FD-71BEA3EFA293} <C:\WINDOWS\system32\Jgyc.dll, N/A>
[]
  {99016389-BAD8-490C-B3D3-D8AE12C6D97F} <C:\WINDOWS\system32\Wlzgj.dll, N/A>
[]
  {99DAF963-13A1-4925-9D00-BB2C8AE721AE} <C:\WINDOWS\system32\Yzfour.dll, N/A>
[]
  {A5687F6A-90F8-4910-9A14-8EF9E0753676} <C:\WINDOWS\system32\Nakm.dll, N/A>
[]
  {A6789301-4364-45EE-88EB-F29F048CF666} <C:\WINDOWS\system32\Aqdjn.dll, N/A>
[]
  {A8B83E28-611B-4BE7-A13A-D3521C2E05BE} <C:\WINDOWS\system32\Hmxnms.dll, N/A>
[]
  {AEEEBB83-7692-4E15-99C0-97AF98230174} <C:\WINDOWS\system32\Lcxav.dll, N/A>
[]
  {C62D3B40-7AC2-4FC0-8D63-A70712C98F7A} <C:\WINDOWS\system32\Dvcre.dll, N/A>
[]
  {CA4FE666-0FD3-4FB1-801C-9707B3152D51} <C:\WINDOWS\system32\Lgsgj.dll, N/A>
[]
  {CE9874E1-3BA6-4E63-882A-976F450FDAF3} <C:\WINDOWS\system32\Auaxdk.dll, N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx, Macromedia, Inc.>
[]
  {D9B0B834-2100-4249-AD80-C020D122B2E7} <C:\WINDOWS\system32\Omfa.dll, N/A>
[]
  {DD03AE92-F870-44B9-A122-18F71CFFC39D} <C:\WINDOWS\system32\Elmjks.dll, N/A>
[]
  {DD65F180-51BA-4A79-9368-D429097F8BE5} <C:\WINDOWS\system32\Ockdv.dll, N/A>
[]
  {DF54765B-5818-4D6F-9E82-466BAC579631} <C:\WINDOWS\system32\Ymskeo.dll, N/A>
[]
  {E073698A-0E9F-4430-9DEA-5E592D4713B0} <C:\WINDOWS\system32\Ojgpv.dll, N/A>
[]
  {E49A9A6F-CD4E-4735-83FD-D0F5F0924BE1} <C:\WINDOWS\system32\Pwviu.dll, N/A>
[]
  {E5B1C735-E3F6-4E22-A6F1-044E0BC262F3} <C:\WINDOWS\system32\Vxnliz.dll, N/A>
[]
  {E81F4C03-2363-4905-B20B-4D1486D061F0} <C:\WINDOWS\system32\Eman.dll, N/A>
[]
  {ECE7D48D-6771-47C0-803F-80FAE70B9D4F} <C:\WINDOWS\system32\Vtytos.dll, N/A>
[]
  {F03FC5EA-73AA-4BD1-91EF-FC4C42F79BB4} <C:\WINDOWS\system32\Kord.dll, N/A>
[]
  {F57BAD5C-2516-47B4-92DD-0A9C71BABD25} <C:\WINDOWS\system32\Xfaia.dll, N/A>
[]
  {FB291D25-09D2-4AF8-98DB-CFAD0C8FE094} <C:\WINDOWS\system32\Xzofpf.dll, N/A>
[Google 搜索(&G)]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html, N/A>
[上传到QQ网络硬盘]
  <C:\Program Files\TENCENT\QQ\AddToNetDisk.htm, N/A>
[导出到 Microsoft Excel(&x)]
  <res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
  <C:\Program Files\TENCENT\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <C:\Program Files\TENCENT\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <C:\Program Files\TENCENT\QQ\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 444][\SystemRoot\System32\smss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 504][\??\C:\WINDOWS\system32\csrss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 528][\??\C:\WINDOWS\system32\winlogon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 572][C:\WINDOWS\system32\services.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 584][C:\WINDOWS\system32\lsass.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 736][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 796][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 860][C:\Program Files\Rising\Rav\CCenter.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 876][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 928][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1000][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1048][C:\Program Files\Rising\Rav\Ravmond.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 1, 26>
    [C:\Program Files\Rising\Rav\BWList.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\RsLog.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
    [C:\Program Files\Rising\Rav\HOOKSYS.dll]  <Rising><18, 1, 0, 9>
绿袋袋 - 2006-7-5 15:10:00
[C:\Program Files\Rising\Rav\Scanner.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [C:\Program Files\Rising\Rav\libload.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\VirusLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\regmon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
    [C:\Program Files\Rising\Rav\HookWeb.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\MemMon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
    [C:\Program Files\Rising\Rav\expscan.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\mPorts.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3>
    [C:\Program Files\Rising\Rav\MailMon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [C:\Program Files\Rising\Rav\SpamEng.dll]  <N/A><18, 0, 0, 6>
    [C:\Program Files\Rising\Rav\engine.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [C:\Program Files\Rising\Rav\PostTrt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
    [C:\Program Files\Rising\Rav\UnExe.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\ScanExec.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\ScanEx.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\NvFile.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
    [C:\Program Files\Rising\Rav\ScanMac.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 8>
    [C:\Program Files\Rising\Rav\ScanSct.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 17>
    [C:\Program Files\Rising\Rav\Unpacker.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
    [C:\Program Files\Rising\Rav\ExtOLE.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[PID: 1132][d:\rising\rfw\rfwsrv.exe]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 32>
    [d:\rising\rfw\RfwRule.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 13>
    [d:\rising\rfw\rfwlog.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6>
    [d:\rising\rfw\Rfwdrv.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 21>
    [d:\rising\rfw\MonDrv.dll]  <rs><1, 0, 0, 4>
    [d:\rising\rfw\ProcLib.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9>
[PID: 1280][C:\WINDOWS\system32\spoolsv.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1364][C:\Program Files\Rising\Rav\RavStub.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 1528][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1636][C:\WINDOWS\system32\wdfmgr.exe]  <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)>
[PID: 1664][C:\Program Files\UPHClean\uphclean.exe]  <Microsoft Corporation><1.5.5.21>
[PID: 1820][C:\WINDOWS\System32\alg.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 436][C:\WINDOWS\Explorer.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  <Adobe Systems, Inc.><7.0.0.0>
    [C:\WINDOWS\system32\igfxpph.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\hccutils.DLL]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxres.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxsrvc.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.3924>
[PID: 476][d:\rising\rfw\RfwMain.exe]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 51>
    [d:\rising\rfw\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23>
    [d:\rising\rfw\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [d:\rising\rfw\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 1108][C:\WINDOWS\system32\hkcmd.exe]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\hccutils.DLL]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxsrvc.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxhk.dll]  <Intel Corporation><3.0.0.3924>
    [C:\WINDOWS\system32\igfxres.dll]  <Intel Corporation><3.0.0.3924>
[PID: 1316][C:\Program Files\Rising\Rav\RavTask.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
[PID: 1560][C:\WINDOWS\system32\ctfmon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1508][C:\Program Files\Rising\Rav\Ravmon.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 1, 28>
    [C:\Program Files\Rising\Rav\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 24>
    [C:\Program Files\Rising\Rav\BWList.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 2116][C:\WINDOWS\system32\wbem\wmiprvse.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2412][C:\Documents and Settings\Administrator\桌面\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>
绿袋袋 - 2006-7-5 15:29:00
那怎么办呀?
绿袋袋 - 2006-7-5 15:29:00
我不知道啦!
绿袋袋 - 2006-7-5 15:30:00
您说的让我发往邮箱的东西,我不知道是什么
1
查看完整版本: 出现这个图片是什么意思啊?请给细说一下!
© 2000 - 2026 Rising Corp. Ltd.