不能登录为什么 bbs.ikaka.com

蓝魄 - 2006-9-14 23:14:00

请您帮我看看这是怎么回师啊,谢谢了!

2006-09-14,23:21:04

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<RfwMain><"d:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.]
<RavTask><"d:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup> [NVIDIA Corporation]
<MSConfig><; C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto> [Microsoft Corporation]
<TkBellExe><; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [RealNetworks, Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<RavStub><"d:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [Microsoft Corporation]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [Microsoft Corporation]

==================================
启动文件夹
服务
[Autodesk Licensing Service / Autodesk Licensing Service]
<"C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe"><Autodesk>
[JMediaService / JMediaService]
<C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\MMSASS~1\MMSSVER.DLL,Service><N/A>
[NVIDIA Display Driver Service / NVSvc]
<C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[Rising Proxy Service / RfwProxySrv]
<d:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
<d:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
<"d:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[RsRavMon Service / RsRavMon]
<"d:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[ServiceLayer / ServiceLayer]
<"C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe"><Nokia.>
[TermService / TermService]
<%SystemRoot%\System32\svchost.exe -k netsvcs><N/A>

==================================
浏览器加载项
[IeCatch5 Class]
{2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <D:\PROGRA~1\FLASHGET\jccatch.dll, FlashGet>
[Vision]
{6671A431-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\mmsass~1.dll, >
[MMSAssistMenu]
{6671A433-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\mmsass~1.dll, >
[MMSAssistMenu]
{6671A433-5C3D-463d-A7CF-5587F9B7E191}? <C:\PROGRA~1\MMSASS~1\mmsass~1.dll, >
[CibaCtrl Class]
{8DE0FCD4-5EB5-11D3-AD25-00002100131B}? <D:\PROGRA~1\Kingsoft\IEPlugin.dll, >
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[金山词霸]
{9A687CA6-D585-4947-9ED9-BE96071F5CD9}? <D:\PROGRA~1\Kingsoft\XDictExB.dll, 金山软件股份有限公司>
[JoyoCtrl Class]
{C8CE29C5-7589-11D3-B81B-0080C8DC5DC8}? <D:\PROGRA~1\Kingsoft\IEPlugin.dll, >
[FlashGet]
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <D:\PROGRA~1\FLASHGET\flashget.exe, FlashGet.com>
[QQIEFloatBarCfgCmd Class]
{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}? <d:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683}? <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[卡卡上网安全助手]
{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[VGAPlayer Control]
{339C1EE2-1029-46B8-81F1-360217F26FC4} <C:\WINDOWS\DOWNLO~1\VGAPLA~1.OCX, 北京翰博尔信息技术有限公司>
[IeCatch5 Class]
{2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <D:\PROGRA~1\FLASHGET\jccatch.dll, FlashGet>
[VGAPlayer Control]
{339C1EE2-1029-46B8-81F1-360217F26FC4} <C:\WINDOWS\DOWNLO~1\VGAPLA~1.OCX, 北京翰博尔信息技术有限公司>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <d:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[Vision]
{6671A431-5C3D-463D-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\mmsass~1.dll, >
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Active Desktop Mover]
{72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[CibaCtrl Class]
{8DE0FCD4-5EB5-11D3-AD25-00002100131B} <D:\PROGRA~1\Kingsoft\IEPlugin.dll, >
[RMGetLicense Class]
{A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
[JoyoCtrl Class]
{C8CE29C5-7589-11D3-B81B-0080C8DC5DC8} <D:\PROGRA~1\Kingsoft\IEPlugin.dll, >
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\macromed\flash\Flash.ocx, Macromedia, Inc.>
[卡卡上网安全助手]
{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[>>彩信发送<<]
<res://C:\PROGRA~1\MMSASS~1\mmsass~1.dll/mms.htm, N/A>
[上传到QQ网络硬盘]
<D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[使用网际快车下载]
<D:\Program Files\FlashGet\jc_link.htm, N/A>
[使用网际快车下载全部链接]
<D:\Program Files\FlashGet\jc_all.htm, N/A>
[添加到QQ自定义面板]
<D:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
<D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<D:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

蓝魄 - 2006-9-14 23:37:00

==================================
正在运行的进程
[PID: 616][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 680][\??\C:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 704][\??\C:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 748][C:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 760][C:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 916][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 980][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1076][d:\Program Files\Rising\Rav\CCenter.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 1092][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1172][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1332][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1356][d:\Program Files\Rising\Rav\Ravmond.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 35>
[d:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[d:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[d:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[d:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[d:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[d:\Program Files\Rising\Rav\RsLog.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
[d:\Program Files\Rising\Rav\HOOKSYS.dll] <Beijing Rising Technology Co., Ltd.><18, 1, 0, 11>
[d:\Program Files\Rising\Rav\Scanner.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 32>
[d:\Program Files\Rising\Rav\libload.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[d:\Program Files\Rising\Rav\VirusLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12>
[d:\Program Files\Rising\Rav\regmon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[d:\Program Files\Rising\Rav\HookWeb.dll] <rising><18, 0, 0, 2>
[d:\Program Files\Rising\Rav\MemMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[d:\Program Files\Rising\Rav\expscan.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[d:\Program Files\Rising\Rav\mPorts.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3>
[d:\Program Files\Rising\Rav\MailMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[d:\Program Files\Rising\Rav\SpamEng.dll] <N/A><18, 0, 0, 6>
[d:\Program Files\Rising\Rav\engine.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 34>
[d:\Program Files\Rising\Rav\PostTrt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 15>
[d:\Program Files\Rising\Rav\UnExe.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[d:\Program Files\Rising\Rav\ScanExec.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[d:\Program Files\Rising\Rav\ScanEx.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
[d:\Program Files\Rising\Rav\RSUnpack.dll] <Beijing Rising Technology Co., Ltd.><1, 0, 0, 13>
[d:\Program Files\Rising\Rav\NvFile.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
[d:\Program Files\Rising\Rav\ScanMac.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
[d:\Program Files\Rising\Rav\ScanSct.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18>
[d:\Program Files\Rising\Rav\Unpacker.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[d:\Program Files\Rising\Rav\ScanNet.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[d:\Program Files\Rising\Rav\ExtOLE.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[PID: 1516][C:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\AcSignIcon.dll] <Autodesk><16.2.54.0>
[C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll] <Autodesk><16.2.54.0>
[d:\Program Files\WinRAR\rarext.dll] <N/A><N/A>
[C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
[d:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[D:\PROGRA~1\FLASHGET\jccatch.dll] <FlashGet><1, 1, 5, 0>
[C:\PROGRA~1\MMSASS~1\mmsass~1.dll] <><1, 2, 0, 5>
[PID: 1560][d:\program files\rising\rfw\rfwsrv.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 33>
[d:\program files\rising\rfw\RfwRule.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 13>
[d:\program files\rising\rfw\rfwlog.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6>
[d:\program files\rising\rfw\Rfwdrv.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 21>
[d:\program files\rising\rfw\MonDrv.dll] <rs><1, 0, 0, 4>
[d:\program files\rising\rfw\ProcLib.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9>
[PID: 1720][C:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
[PID: 1844][D:\Program Files\Rising\Rfw\rfwmain.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 52>
[D:\Program Files\Rising\Rfw\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23>
[D:\Program Files\Rising\Rfw\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[D:\Program Files\Rising\Rfw\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 1876][d:\Program Files\Rising\Rav\RavStub.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
[d:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[d:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 1988][D:\Program Files\Rising\Rav\RavTask.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[D:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[D:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[D:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[PID: 2012][D:\Program Files\Rising\Rav\Ravmon.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 33>
[D:\Program Files\Rising\Rav\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 26>
[D:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[D:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[D:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[D:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[D:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 236][C:\Program Files\Common Files\Real\Update_OB\realsched.exe] <RealNetworks, Inc.><0.1.0.3510>
[PID: 252][C:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 280][C:\WINDOWS\system32\rundll32.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\PROGRA~1\MMSASS~1\MMSSVER.DLL] <><1, 2, 0, 5>
[PID: 2020][C:\WINDOWS\system32\nvsvc32.exe] <NVIDIA Corporation><6.14.10.8466>
[PID: 544][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 200][C:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2748][C:\Program Files\802.1X认证客户端\Dot1XClient.exe] <huawei><2.00>
[C:\WINDOWS\system32\W32N50.dll] <Printing Communications Assoc., Inc. (PCAUSA)><5.03.16.54>
[PID: 3964][C:\Program Files\Internet Explorer\IEXPLORE.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\AcSignIcon.dll] <Autodesk><16.2.54.0>
[D:\PROGRA~1\FLASHGET\jccatch.dll] <FlashGet><1, 1, 5, 0>
[d:\Program Files\Tencent\QQ\QQIEHelper.dll] <深圳市腾讯计算机系统有限公司><1, 1, 0, 5>
[C:\PROGRA~1\MMSASS~1\mmsass~1.dll] <><1, 2, 0, 5>
[d:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>

蓝魄 - 2006-9-14 23:40:00

[D:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[D:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[D:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[PID: 2012][D:\Program Files\Rising\Rav\Ravmon.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 33>
[D:\Program Files\Rising\Rav\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 26>
[D:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[D:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[D:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[D:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[D:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 236][C:\Program Files\Common Files\Real\Update_OB\realsched.exe] <RealNetworks, Inc.><0.1.0.3510>
[PID: 252][C:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 280][C:\WINDOWS\system32\rundll32.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\PROGRA~1\MMSASS~1\MMSSVER.DLL] <><1, 2, 0, 5>
[PID: 2020][C:\WINDOWS\system32\nvsvc32.exe] <NVIDIA Corporation><6.14.10.8466>
[PID: 544][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 200][C:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2748][C:\Program Files\802.1X认证客户端\Dot1XClient.exe] <huawei><2.00>
[C:\WINDOWS\system32\W32N50.dll] <Printing Communications Assoc., Inc. (PCAUSA)><5.03.16.54>
[PID: 3964][C:\Program Files\Internet Explorer\IEXPLORE.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\AcSignIcon.dll] <Autodesk><16.2.54.0>
[D:\PROGRA~1\FLASHGET\jccatch.dll] <FlashGet><1, 1, 5, 0>
[d:\Program Files\Tencent\QQ\QQIEHelper.dll] <深圳市腾讯计算机系统有限公司><1, 1, 0, 5>
[C:\PROGRA~1\MMSASS~1\mmsass~1.dll] <><1, 2, 0, 5>
[d:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\WINDOWS\system32\macromed\flash\Flash.ocx] <Macromedia, Inc.><7,0,19,0>
[PID: 2128][C:\Program Files\Internet Explorer\iexplore.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\AcSignIcon.dll] <Autodesk><16.2.54.0>
[D:\PROGRA~1\FLASHGET\jccatch.dll] <FlashGet><1, 1, 5, 0>
[d:\Program Files\Tencent\QQ\QQIEHelper.dll] <深圳市腾讯计算机系统有限公司><1, 1, 0, 5>
[C:\PROGRA~1\MMSASS~1\mmsass~1.dll] <><1, 2, 0, 5>
[d:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\WINDOWS\system32\macromed\flash\Flash.ocx] <Macromedia, Inc.><7,0,19,0>
[C:\WINDOWS\system32\KakaTool.dll] <Beijing Rising Technology Co., Ltd.><2, 0, 0, 9>
[PID: 2136][D:\Program Files\FlashGet\flashget.exe] <FlashGet.com><1, 7, 2, 0>
[PID: 820][D:\Program Files\AutoCAD 2006\acad.exe] <Autodesk, Inc.><R16.2.54.10>
[C:\Program Files\Common Files\Autodesk Shared\ac1st16.dll] <Autodesk, Inc.><16.2.54.0>
[C:\Program Files\Common Files\Autodesk Shared\acdb16.dll] <Autodesk, Inc.><16.2.54.0>
[C:\Program Files\Common Files\Autodesk Shared\AcGe16.dll] <Autodesk, Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\acui16.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\ANav.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\adui16.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\UserData.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\dswhip.dll] <Autodesk Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\heidi8.dll] <Autodesk, Inc.><8.2.54.0>
[D:\Program Files\AutoCAD 2006\dlint8.dll] <Autodesk, Inc.><8.2.54.0>
[D:\Program Files\AutoCAD 2006\SFTTABAC.dll] <Softel vdm><16.2.54.0>
[D:\Program Files\AutoCAD 2006\adlmdll.dll] <Autodesk, Inc.><6.0.0.17>
[D:\Program Files\AutoCAD 2006\adctrls.dll] <Autodesk, Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\adui16res.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AnavRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\acui16res.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\DsWhipRes.dll] <Autodesk Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\sfttabacRes.dll] <Softel vdm><16.2.54.0>
[C:\DOCUME~1\CAPTAI~1\LOCALS~1\Temp\AdskCleanup.0001.dir.0000\~df394b.tmp] <N/A><N/A>
[C:\DOCUME~1\CAPTAI~1\LOCALS~1\Temp\AdskCleanup.0001.dir.0000\~de6c66.tmp] <N/A><2.66.000>
[D:\Program Files\AutoCAD 2006\ADCtrlsRes.dll] <Autodesk, Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\acadbtn.xmx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\acadres.dll] <Autodesk, Inc.><16.2.54.0>
[C:\Program Files\Common Files\Autodesk Shared\acdb16chsres.dll] <Autodesk, Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\adlmres.dll] <Autodesk, Inc.><6.0.0.17>
[c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_182f910d\mscorlib.dll] <N/A><N/A>
[d:\program files\autocad 2006\acdbmgdhost.dll] <Autodesk, Inc><16.2.54.0>
[D:\Program Files\AutoCAD 2006\acdbmgd.dll] <Autodesk, Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\acmgd.dll] <Autodesk, Inc.><16.2.54.0>
[c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_e243b7b1\system.dll] <N/A><N/A>
[c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_136ec00d\system.xml.dll] <N/A><N/A>
[c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_f6fc7ff3\system.drawing.dll] <N/A><N/A>
[c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_b3905c68\system.windows.forms.dll] <N/A><N/A>
[D:\Program Files\AutoCAD 2006\PrxyInet.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\PrxyInetRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\oleaprot.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\colorRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\drv\gdi8.hdi] <Autodesk, Inc.><8.2.54.0>
[D:\Program Files\AutoCAD 2006\drv\gdi8Res.dll] <Autodesk, Inc.><8.2.54.0>
[D:\Program Files\AutoCAD 2006\drv\szb8.hdi] <Autodesk, Inc.><8.2.54.0>
[D:\Program Files\AutoCAD 2006\drv\rblast8.hdi] <Autodesk, Inc.><8.2.54.0>
[D:\Program Files\AutoCAD 2006\drv\gdifont8.hdi] <Autodesk, Inc.><8.2.54.0>
[D:\Program Files\AutoCAD 2006\acgs.dll] <Autodesk Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\acgsRes.dll] <Autodesk Inc.><16.2.54.0>
[c:\program files\common files\autodesk shared\achapi16.dbx] <Autodesk, Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\hcreg8.dll] <Autodesk, Inc.><8.2.54.0>
[D:\Program Files\AutoCAD 2006\hcreg8Res.dll] <Autodesk, Inc.><8.2.54.0>
[D:\Program Files\AutoCAD 2006\vl.arx] <Autodesk Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\VLMSG.DLL] <Autodesk Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\VLLIB.DLL] <Autodesk Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcApp.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcAppRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcDblClkEdit.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcDblClkEditPE.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcDblClkEditRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\acdim.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\ShareMFC.dll] <Autodesk, Inc><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcDimRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\aceplotx.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcEplotXRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\achlnkui.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\achlnkuiRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcIDropMgr.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcIDropMgrRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcLayerP.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcLayerPRes.dll] <Autodesk, Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcSign.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcSignRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcSpaceTrans.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcSpaceTransRes.dll] <Autodesk, Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcStd.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcStStdRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcStMgr.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcStRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcTaskBar.arx] <Autodesk, Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcTaskBarRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcTp.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcTc.DLL] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcUt.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcTcUi.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcTcRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcTcUiRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\whohas.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\whohasRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcDwgRecovery.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcDwgRecoveryRes.dll] <Autodesk><16.2.54.0>
[d:\program files\autocad 2006\acdxui.dll] <Autodesk, Inc><16.2.54.0>
[d:\program files\autocad 2006\acdx.dll] <Autodesk, Inc><16.2.54.0>
[d:\program files\autocad 2006\zh-cn\acdxui.resources.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcDxNotify.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcDxNotifyRes.dll] <Autodesk, Inc.><16.2.54.0>
[d:\program files\autocad 2006\acmgdshared.dll] <Autodesk, Inc><16.2.54.0>
[D:\Program Files\AutoCAD 2006\acetlodr.arx] <Autodesk, Inc.><16.2.54.0>
[d:\program files\autocad 2006\aclayer.dll] <Autodesk, Inc><16.2.54.0>
[d:\program files\autocad 2006\zh-cn\aclayer.resources.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcPrevInput.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcSmNav.arx] <Autodesk><16.2.54.0>
[c:\program files\common files\autodesk shared\AcSmComponents16.dll] <Autodesk><16.2.54.0>

蓝魄 - 2006-9-14 23:42:00

[D:\Program Files\AutoCAD 2006\axdb16.dll] <N/A><N/A>
[D:\Program Files\AutoCAD 2006\AcSmPublishUtils.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcSmDwgMine.arx] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcSmNavRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\WSCommCntrAcCon.arx] <Autodesk, Inc.><16.2.54.0>
[D:\Program Files\AutoCAD 2006\WSCommCntrAcConRes.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcPrevInputRes.dll] <Autodesk, Inc.><16.2.54.0>
[d:\program files\autocad 2006\acmultilineui.dll] <Autodesk, Inc><16.2.54.0>
[d:\program files\autocad 2006\acmgdinternal.dll] <Autodesk, Inc.><16.2.54.0>
[d:\program files\autocad 2006\zh-cn\acmultilineui.resources.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\color.dll] <Autodesk><16.2.54.0>
[c:\program files\common files\autodesk shared\acutxmldom16.dll] <Autodesk><16.2.54.0>
[C:\WINDOWS\system32\AcSignIcon.dll] <Autodesk><16.2.54.0>
[D:\Program Files\AutoCAD 2006\AcProject16.dll] <Autodesk><16.2.54.0>
[d:\program files\autocad 2006\bzlocation.dll] <Autodesk, Inc><16.2.54.0>
[d:\program files\autocad 2006\projectpointclientlib.dll] <Autodesk, Inc.><6.1.1158.0>
[D:\Program Files\AutoCAD 2006\AcProject16res.dll] <Autodesk><16.2.54.0>
[C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll] <Autodesk><16.2.54.0>
[C:\DOCUME~1\CAPTAI~1\LOCALS~1\Temp\AdskCleanup.0001] <Macrovision Europe Ltd.><1, 0, 0, 1>
[PID: 3620][C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe] <Autodesk><2.66.000>
[PID: 2420][C:\Program Files\Common Files\Autodesk Shared\WSCommCntr1.exe] <Autodesk, Inc.><1.2.0.1>
[C:\Program Files\Common Files\Autodesk Shared\WebServices1.dll] <Autodesk, Inc.><1.2.0.1>
[PID: 1248][d:\Program Files\WinRAR\WinRAR.exe] <N/A><N/A>
[C:\WINDOWS\system32\AcSignIcon.dll] <Autodesk><16.2.54.0>
[PID: 2372][C:\DOCUME~1\CAPTAI~1\LOCALS~1\Temp\Rar$EX05.032\SREng2\SREng.exe] <Smallfrogs Studio><2.0.21.505>
[PID: 2804][C:\WINDOWS\system32\macromed\flash\GetFlash.exe] <Macromedia, Inc.><7,0,19,0>

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

我无邪 - 2006-9-15 13:23:00

下载超级兔子,专业卸载。
http://www.pctutu.com/news.asp?id=92
安装好后，打开“winspeed”“专业卸载,卸载所有提示的垃圾软件，卸载是不要打开任何浏览窗口。卸载不了可以重启后再去卸载。
卸载完后
打开System Repair Engineer（也就是你的扫描日志软件SREng.exe），点“启动项目，服务，点“Win32服务应用程序”勾选“隐藏微软服务”选中病毒服务TermService ，选择“删除服务”点“设置”选择“否”
重启后，再扫个日志粘上来。

蓝魄 - 2006-9-16 4:04:00

2006-09-16,03:49:04

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> []
<run><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<RfwMain><"d:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.]
<RavTask><"d:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup> [NVIDIA Corporation]
<MSConfig><C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto> [Microsoft Corporation]
<TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [RealNetworks, Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<RavStub><"d:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [Microsoft Corporation]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<TkBellExe><; ; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> []

==================================
启动文件夹
服务
[Autodesk Licensing Service / Autodesk Licensing Service]
<"C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe"><Autodesk>
[NVIDIA Display Driver Service / NVSvc]
<C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[Rising Proxy Service / RfwProxySrv]
<d:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
<d:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
<"d:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[RsRavMon Service / RsRavMon]
<"d:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[ServiceLayer / ServiceLayer]
<"C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe"><Nokia.>
[TermService / TermService]
<%SystemRoot%\System32\svchost.exe -k netsvcs><N/A>

==================================
浏览器加载项
[CibaCtrl Class]
{8DE0FCD4-5EB5-11D3-AD25-00002100131B}? <D:\PROGRA~1\Kingsoft\IEPlugin.dll, >
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[金山词霸]
{9A687CA6-D585-4947-9ED9-BE96071F5CD9}? <D:\PROGRA~1\Kingsoft\XDictExB.dll, 金山软件股份有限公司>
[JoyoCtrl Class]
{C8CE29C5-7589-11D3-B81B-0080C8DC5DC8}? <D:\PROGRA~1\Kingsoft\IEPlugin.dll, >
[FlashGet]
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <D:\PROGRA~1\FLASHGET\flashget.exe, FlashGet.com>
[QQIEFloatBarCfgCmd Class]
{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}? <d:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683}? <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[卡卡上网安全助手]
{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[VGAPlayer Control]
{339C1EE2-1029-46B8-81F1-360217F26FC4} <C:\WINDOWS\DOWNLO~1\VGAPLA~1.OCX, 北京翰博尔信息技术有限公司>
[IeCatch5 Class]
{2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <D:\PROGRA~1\FLASHGET\jccatch.dll, N/A>
[VGAPlayer Control]
{339C1EE2-1029-46B8-81F1-360217F26FC4} <C:\WINDOWS\DOWNLO~1\VGAPLA~1.OCX, 北京翰博尔信息技术有限公司>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <d:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Active Desktop Mover]
{72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[CibaCtrl Class]
{8DE0FCD4-5EB5-11D3-AD25-00002100131B} <D:\PROGRA~1\Kingsoft\IEPlugin.dll, >
[RMGetLicense Class]
{A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
[JoyoCtrl Class]
{C8CE29C5-7589-11D3-B81B-0080C8DC5DC8} <D:\PROGRA~1\Kingsoft\IEPlugin.dll, >
[VIDEO__X_MS_WMV Moniker Class]
{CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[卡卡上网安全助手]
{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[上传到QQ网络硬盘]
<D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[使用网际快车下载]
<D:\Program Files\FlashGet\jc_link.htm, N/A>
[使用网际快车下载全部链接]
<D:\Program Files\FlashGet\jc_all.htm, N/A>
[添加到QQ自定义面板]
<D:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
<D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<D:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

==================================

蓝魄 - 2006-9-16 4:05:00

正在运行的进程
[PID: 608][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 672][\??\C:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 696][\??\C:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 740][C:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 752][C:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 908][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 964][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1060][d:\Program Files\Rising\Rav\CCenter.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 1076][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1156][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1392][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1464][C:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\AcSignIcon.dll] <Autodesk><16.2.54.0>
[C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll] <Autodesk><16.2.54.0>
[PID: 1476][d:\Program Files\Rising\Rav\Ravmond.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 35>
[d:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[d:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[d:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[d:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[d:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[d:\Program Files\Rising\Rav\RsLog.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
[d:\Program Files\Rising\Rav\HOOKSYS.dll] <Beijing Rising Technology Co., Ltd.><18, 1, 0, 11>
[d:\Program Files\Rising\Rav\Scanner.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 32>
[d:\Program Files\Rising\Rav\libload.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[d:\Program Files\Rising\Rav\VirusLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12>
[d:\Program Files\Rising\Rav\regmon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[d:\Program Files\Rising\Rav\HookWeb.dll] <rising><18, 0, 0, 2>
[d:\Program Files\Rising\Rav\MemMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[d:\Program Files\Rising\Rav\expscan.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[d:\Program Files\Rising\Rav\mPorts.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3>
[d:\Program Files\Rising\Rav\MailMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[d:\Program Files\Rising\Rav\SpamEng.dll] <N/A><18, 0, 0, 6>
[d:\Program Files\Rising\Rav\engine.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 34>
[d:\Program Files\Rising\Rav\PostTrt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 15>
[d:\Program Files\Rising\Rav\UnExe.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[d:\Program Files\Rising\Rav\ScanExec.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[d:\Program Files\Rising\Rav\ScanEx.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
[d:\Program Files\Rising\Rav\RSUnpack.dll] <Beijing Rising Technology Co., Ltd.><1, 0, 0, 13>
[d:\Program Files\Rising\Rav\NvFile.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
[d:\Program Files\Rising\Rav\ScanMac.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
[d:\Program Files\Rising\Rav\ScanSct.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18>
[d:\Program Files\Rising\Rav\Unpacker.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[d:\Program Files\Rising\Rav\ScanNet.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[d:\Program Files\Rising\Rav\ExtOLE.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[PID: 1580][d:\program files\rising\rfw\rfwsrv.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 33>
[d:\program files\rising\rfw\RfwRule.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 13>
[d:\program files\rising\rfw\rfwlog.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6>
[d:\program files\rising\rfw\Rfwdrv.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 21>
[d:\program files\rising\rfw\MonDrv.dll] <rs><1, 0, 0, 4>
[d:\program files\rising\rfw\ProcLib.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9>
[PID: 1768][d:\Program Files\Rising\Rav\RavStub.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
[d:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[d:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 1948][d:\program files\rising\rfw\RfwMain.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 52>
[d:\program files\rising\rfw\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23>
[d:\program files\rising\rfw\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[d:\program files\rising\rfw\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 1172][D:\Program Files\Rising\Rav\RavTask.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[D:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[D:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[D:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[PID: 1220][D:\Program Files\Rising\Rav\Ravmon.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 33>
[D:\Program Files\Rising\Rav\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 26>
[D:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[D:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[D:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[D:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[D:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 1272][C:\Program Files\Common Files\Real\Update_OB\realsched.exe] <RealNetworks, Inc.><0.1.0.3510>
[PID: 1312][C:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1228][C:\WINDOWS\system32\nvsvc32.exe] <NVIDIA Corporation><6.14.10.8466>
[PID: 568][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 364][C:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1832][C:\WINDOWS\system32\wuauclt.exe] <Microsoft Corporation><5.4.3790.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 756][d:\Program Files\WinRAR\WinRAR.exe] <N/A><N/A>
[C:\WINDOWS\system32\AcSignIcon.dll] <Autodesk><16.2.54.0>
[PID: 588][C:\DOCUME~1\CAPTAI~1\LOCALS~1\Temp\Rar$EX00.828\SREng2\SREng.exe] <Smallfrogs Studio><2.0.21.505>

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

瑞星卡卡安全论坛