八百里加急！！！ bbs.ikaka.com

构建和谐社会 - 2006-11-22 13:56:00

请教高手，我的电脑总出现实时调试对话框内容是microsoft script editor还有一个默认调制器，一天能跳出八百次，害得我几乎用不了电脑，还有一个就是每次我打开网页时也总出现一个小窗口：出现运行时间错误，说是什么flash未定义！！！９９９！９９９！

红夜鬼1 - 2006-11-22 14:10:00

没人敢接战报,我来接,死而无汗

HijackThis1.99.1
扫描日志上来
日志文件内容复制-粘贴上来,,日志一次粘不完，分次粘完，请不要修改。
中文版：
http://free5.ys168.com/?ufwihgu168

构建和谐社会 - 2006-11-22 14:19:00

【回复“红夜鬼1”的帖子】
臣，接旨！
兄台，幽默也！
稍候！

构建和谐社会 - 2006-11-22 14:46:00

【回复“红夜鬼1”的帖子】
兄台，我的日志文件，只要一传IE就关了，很抱谦我没有经你允许就发电子邮件到你的邮箱里了，帮忙看一下好吗？先谢过了！

红夜鬼1 - 2006-11-22 14:50:00

日志文件内容复制-粘贴上来,,日志一次粘不完，分次粘完，请不要修改。

把日志粘贴到这里来

构建和谐社会 - 2006-11-22 14:54:00

【回复“红夜鬼1”的帖子】
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\System32\ctfmon.exe> [(Verified)Microsoft Corporation]
<BitComet><"C:\Program Files\BitComet\BitComet.exe"> [www.BitComet.com]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<RavTask><"D:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload> [(Verified)Microsoft Corporation]
<SoundMan><SOUNDMAN.EXE> [Realtek Semiconductor Corp.]
<C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\tripcaq.exe><C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\tripcaq.exe> [N/A]
<StormCodec_Helper><"C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti> [N/A]
<helper.dll><C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<KKDelay><C:\Program Files\Rising\AntiSpyware\RunOnce.exe> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Corporation]
<Userinit><C:\WINDOWS\System32\Userinit.exe,> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Corporation]

构建和谐社会 - 2006-11-22 15:01:00

启动文件夹
[Adobe Reader Speed Launch]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Reader Speed Launch.lnk --> C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE [Adobe Systems Incorporated]><N>

==================================
服务
[C-DillaCdaC11BA / C-DillaCdaC11BA]
<C:\WINDOWS\System32\drivers\CDAC11BA.EXE><Macrovision>
[Human Interface Device Access / HidServ]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[Spectrum24 Events Monitor / IPRIP]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\System32\acss.dll><N/A>
[Routing Protect Access / MerDE2]
<C:\WINDOWS\SYSTEM32\RUNDLLFROMWIN2000.EXE C:\WINDOWS\SYSTEM32\WBEM\MSRJBP12.DLL,Export 1087><Microsoft Corporation>
[Rising Process Communication Center / RsCCenter]
<"D:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon]
<"D:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[Security Info / secinfo]
<C:\WINDOWS\security.exe><N/A>
[Network Engine / Tech]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\System32\igauec14.dll><Microsoft Corporation>

构建和谐社会 - 2006-11-22 15:02:00

驱动程序
[2918276 / 2918276]
<2 - 系统找不到指定的文件。
><N/A>
[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc]
<system32\drivers\ac97intc.sys><Intel Corporation>
[Service for WDM 3D Audio Driver / ALCXSENS]
<system32\drivers\ALCXSENS.SYS><N/A>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM]
<system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[ASPI32 / ASPI32]
<System32\drivers\aspi32.sys><Adaptec>
[ati2mtaa / ati2mtaa]
<System32\DRIVERS\ati2mtaa.sys><ATI Technologies Inc.>
[Rising TDI Base Driver / BaseTDI]
<System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[buvy / buvyv]
<\SystemRoot\System32\DRIVERS\buvyv.sys><N/A>
[CdaC15BA / CdaC15BA]
<\??\C:\WINDOWS\System32\drivers\CDAC15BA.SYS><Macrovision Europe Ltd>
[cdawdm / cdawdm]
<\SystemRoot\System32\DRIVERS\CDAWDM.sys><N/A>
[CDGscsi / CDGscsi]
<\SystemRoot\System32\Drivers\cdgscsi.sys><Savage Company>
[cfdbhfdd / cfdbhfdd]
<\SystemRoot\system32\drivers\cfdbhfdd.sys><N/A>
[dqcljx3 / dqcljx38]
<\SystemRoot\System32\DRIVERS\dqcljx38.sys><N/A>
[ExpScaner / ExpScaner]
<\??\D:\Program Files\Rising\Rav\ExpScan.sys><>
[fgp / fgp]
<\??\C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\fgpdox><N/A>
[fms / fms]
<\??\C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\fmsddi><N/A>
[ghhe / ghhe]
<\??\C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\ghheofp><N/A>
[GMSIPCI / GMSIPCI]
<\??\G:\INSTALL\GMSIPCI.SYS><N/A>
[GrandDog USB Driver / Grand]
<System32\Drivers\GrandUsb.sys><SafeNet China Ltd.>
[HookCont / HookCont]
<\??\D:\Program Files\Rising\Rav\HOOKCONT.sys><Rising tech Co. ltd>
[HookReg / HookReg]
<\??\D:\Program Files\Rising\Rav\HookReg.sys><>
[HookSys / HookSys]
<\??\D:\Program Files\Rising\Rav\HookSys.sys><Rising>
[HOSTNT / HOSTNT]
<\??\C:\WINDOWS\System32\drivers\hostnt.sys><N/A>
[ialm / ialm]
<System32\DRIVERS\ialmnt5.sys><Intel Corporation>
[MEMSCAN / MEMSCAN]
<\??\D:\Program Files\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司>
[MZU_RK / MZU_RK]
<\??\C:\WINDOWS\System32\MZU_DRV.sys><N/A>
[Direct Parallel Link Driver / Ptilink]
<System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsAntiSpyware / RsAntiSpyware]
<\SystemRoot\System32\drivers\RsBoot.sys><Beijing Rising>
[RSPPSYS / RSPPSYS]
<\??\D:\PROGRAM FILES\RISING\RAV\RSPPSYS.sys><Rising>
[Realtek RTL8029(AS)-based PCI Ethernet Adapter NT Driver / rtl8029]
<System32\DRIVERS\RTL8029.SYS><Realtek Semiconductor Corporation>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139]
<System32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv]
<System32\DRIVERS\secdrv.sys><N/A>
[sptd / sptd]
<\SystemRoot\System32\Drivers\sptd.sys><N/A>
[VIA AC'97 Audio Controller (WDM) / VIAudio]
<system32\drivers\ac97via.sys><VIA Technologies, Inc.>
[Intel(R) Graphics Platform (SoftBIOS) Driver / {6080A529-897E-4629-A488-ABA0C29B635E}]
<system32\drivers\ialmsbw.sys><Intel Corporation>

构建和谐社会 - 2006-11-22 15:03:00

浏览器加载项
[Adobe PDF Reader Link Helper]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[]
{52CFADF9-6DBD-8C06-8452-21AEFBF10D93} <C:\WINDOWS\system32\ftmsdtcu.dll, N/A>
[@shdoclc.dll,-866]
{c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[卡卡上网安全助手]
{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\System32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[WUWebControl Class]
{6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\System32\wuweb.dll, Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\System32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[使用网际快车下载]
<D:\Program Files\FlashGet\jc_link.htm, N/A>
[使用网际快车下载全部链接]
<D:\Program Files\FlashGet\jc_all.htm, N/A>

构建和谐社会 - 2006-11-22 15:03:00

正在运行的进程
[PID: 360][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]
[PID: 416][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 440][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]
[PID: 484][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 496][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]
[PID: 660][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 696][D:\Program Files\Rising\Rav\CCenter.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3]
[PID: 712][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[c:\windows\system32\igauec14.dll] [Microsoft Corporation, 5.1.2600.0]
[PID: 780][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 816][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 832][D:\Program Files\Rising\Rav\Ravmond.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 1, 47]
[D:\Program Files\Rising\Rav\BWList.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
[D:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[D:\Program Files\Rising\Rav\RsPPsys.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3]
[D:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
[D:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[D:\Program Files\Rising\Rav\RsLog.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
[D:\Program Files\Rising\Rav\HOOKSYS.dll] [Beijing Rising Technology Co., Ltd., 18, 1, 0, 12]
[D:\Program Files\Rising\Rav\Scanner.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 33]
[D:\Program Files\Rising\Rav\libload.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 10]
[D:\Program Files\Rising\Rav\VirusLib.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 13]
[D:\Program Files\Rising\Rav\regmon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6]
[D:\Program Files\Rising\Rav\psapi.dll] [Microsoft Corporation, 4.00]
[D:\Program Files\Rising\Rav\HookWeb.dll] [rising, 18, 0, 0, 2]
[D:\Program Files\Rising\Rav\MemMon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 12]
[D:\Program Files\Rising\Rav\expscan.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[D:\Program Files\Rising\Rav\mPorts.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 3]
[D:\Program Files\Rising\Rav\MailMon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
[D:\Program Files\Rising\Rav\SpamEng.dll] [N/A, 18, 0, 0, 6]
[D:\Program Files\Rising\Rav\engine.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 35]
[D:\Program Files\Rising\Rav\PostTrt.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 18]
[D:\Program Files\Rising\Rav\UnExe.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
[D:\Program Files\Rising\Rav\ScanExec.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 16]
[D:\Program Files\Rising\Rav\ScanEx.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 33]
[D:\Program Files\Rising\Rav\RSUnpack.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 21]
[D:\Program Files\Rising\Rav\ExtFile.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 24]
[D:\Program Files\Rising\Rav\NvFile.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 7]
[D:\Program Files\Rising\Rav\ScanMac.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 10]
[D:\Program Files\Rising\Rav\ScanSct.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
[D:\Program Files\Rising\Rav\Unpacker.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
[D:\Program Files\Rising\Rav\ExtOLE.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6]
[D:\Program Files\Rising\Rav\ScanNet.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
[D:\Program Files\Rising\Rav\RsStore.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6]
[D:\Program Files\Rising\Rav\posttrtx.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]

构建和谐社会 - 2006-11-22 15:05:00

[PID: 1080][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)]
[C:\WINDOWS\system32\mdimon.dll] [Microsoft Corporation, 11.3.1897.0]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll] [Microsoft Corporation, 11.3.1897.0]
[PID: 1184][D:\Program Files\Rising\Rav\RavStub.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 16]
[D:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 1332][C:\WINDOWS\System32\drivers\CDAC11BA.EXE] [Macrovision, 4.20.020]
[PID: 1380][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL] [Microsoft Corporation, 7.00.9466]
[PID: 1404][C:\WINDOWS\SYSTEM32\RUNDLLFROMWIN2000.EXE] [Microsoft Corporation, 5.00.2134.1]
[C:\WINDOWS\SYSTEM32\WBEM\MSRJBP12.DLL] [Microsoft Corporation, 5, 1, 2600, 2709]
[PID: 1492][C:\WINDOWS\System32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)]
[PID: 1804][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920)]
[C:\WINDOWS\System32\AcSignIcon.dll] [Autodesk, 16.0.0.86]
[C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll] [Autodesk, 16.0.0.86]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0]
[C:\WINDOWS\system32\ftmsdtcu.dll] [N/A, N/A]
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\WINDOWS\System32\WINWB86.IME] [Microsoft Corporation, 5.00.2000.3]
[c:\windows\system32\igauec14.dll] [Microsoft Corporation, 5.1.2600.0]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[C:\PROGRA~1\3721\autolive.dll] [, 1, 1, 9, 1329]
[C:\PROGRA~1\3721\alLiveEx.dll] [ , 1, 0, 3, 1006]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.7.2006011200]
[C:\WINDOWS\System32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[PID: 2040][D:\Program Files\Rising\Rav\RavTask.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 22]
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[D:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
[D:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
[D:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[PID: 208][C:\WINDOWS\SOUNDMAN.EXE] [Realtek Semiconductor Corp., 5.1.0.29]
[PID: 228][D:\Program Files\Rising\Rav\Ravmon.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 1, 39]
[D:\Program Files\Rising\Rav\RsGuiLib.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 26]
[D:\Program Files\Rising\Rav\BWList.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
[D:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
[D:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[D:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[D:\Program Files\Rising\Rav\PngDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[PID: 256][C:\Program Files\Common Files\System\Update.exe] [N/A, N/A]
[PID: 264][C:\WINDOWS\System32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]
[PID: 304][C:\Program Files\BitComet\BitComet.exe] [www.BitComet.com, 0.74]
[C:\Program Files\BitComet\dbghelp.dll] [Microsoft Corporation, 6.3.0011.3 (DbgBuild.040120-1256)]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\PDM.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\INK\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[PID: 2888][D:\Program Files\AutoCAD 2004\acad.exe] [Autodesk, Inc., R16.00.086]
[C:\Program Files\Common Files\Autodesk Shared\ac1st16.dll] [Autodesk, Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\MSVCR70.dll] [Microsoft Corporation, 7.00.9466.0]
[D:\Program Files\AutoCAD 2004\MSVCP70.dll] [Microsoft Corporation, 7.00.9466.0]
[C:\Program Files\Common Files\Autodesk Shared\acdb16.dll] [Autodesk, Inc., 16.0.0.86]
[C:\Program Files\Common Files\Autodesk Shared\AcGe16.dll] [Autodesk, Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\MFC70.DLL] [Microsoft Corporation, 7.00.9466.0]
[D:\Program Files\AutoCAD 2004\acui16.dll] [, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\ANav.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\adui16.dll] [, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\dswhip.dll] [Autodesk Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\heidi8.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\dlint8.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\SFTTABAC.dll] [Softel vdm, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\UserData.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\adlmdll.dll] [Autodesk, Inc., 4.0.0.2]
[D:\Program Files\AutoCAD 2004\adctrls.dll] [Autodesk, Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\adui16res.dll] [, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AnavRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\acui16res.dll] [, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\DsWhipRes.dll] [Autodesk Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\sfttabacRes.dll] [Softel vdm, 16.0.0.86]
[C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\~ef77a2\~df394b.tmp] [N/A, N/A]
[C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\~ef77a2\~de8c3a.tmp] [N/A, 2.20.020]
[D:\Program Files\AutoCAD 2004\ADCtrlsRes.dll] [Autodesk, Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\acadbtn.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\acadres.dll] [Autodesk, Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\adlmres.dll] [Autodesk, Inc., 4.0.0.2]
[D:\Program Files\AutoCAD 2004\PrxyInet.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\PrxyInetRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\oleaprot.arx] [Autodesk, 16.0.0.86]

构建和谐社会 - 2006-11-22 15:06:00

[D:\Program Files\coolzhb\ctt\ctt2004.dll] [Namdeb, 1.00]
[D:\Program Files\AutoCAD 2004\colorRes.dll] [, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\drv\gdi8.hdi] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\drv\gdi8Res.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\acgsRes.dll] [Autodesk Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\hcreg8.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\hcreg8Res.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\mtl8.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\acgsimage.dll] [Autodesk Inc., 16.0.0.86]
[c:\program files\common files\autodesk shared\IE80.dll] [N/A, N/A]
[D:\Program Files\AutoCAD 2004\light8.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\vl.arx] [Autodesk Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\VLMSG.DLL] [Autodesk Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\VLLIB.DLL] [Autodesk Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcApp.arx] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\Appload.arx] [Autodesk Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\ApploadRes.dll] [Autodesk Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcDblClkEdit.arx] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcDblClkEditPE.arx] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcDblClkEditRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\acdim.arx] [, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\ShareAC.dll] [Autodesk, Inc, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\ShareMFC.dll] [Autodesk, Inc, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcDimRes.dll] [, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\aceplotx.arx] [Autodesk, 16.0.0.86]
[c:\program files\common files\autodesk shared\achapi16.dbx] [Autodesk, Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcEplotXRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\achlnkui.arx] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\achlnkuiRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcIDropMgr.arx] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcIDropMgrRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcLayerP.arx] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcLayerPRes.dll] [Autodesk, Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcSign.arx] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcSignRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcSpaceTrans.arx] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcSpaceTransRes.dll] [Autodesk, Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcStd.arx] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcStStdRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcTp.arx] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcTc.DLL] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcTcUi.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcTcRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\AcTcUiRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\whohas.arx] [, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\whohasRes.dll] [, 16.0.0.86]
[D:\Program Files\AutoCAD 2004\acetlodr.arx] [Autodesk, Inc., 16.0.0.86]
[D:\Program Steel tower\Arx\PScope16.arx] [ManuSoft, 2, 2, 0, 2]
[D:\Program Files\AutoCAD 2004\axdb16.dll] [N/A, N/A]
[D:\Program Files\AutoCAD 2004\WSCommCntrAcCon.arx] [Autodesk, Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\WSCommCntrAcConRes.dll] [Autodesk, 16.0.0.86]
[D:\Program Steel tower\Arx\CxDocBar16.arx] [CADwerx, 1, 0, 0, 66]
[C:\WINDOWS\System32\AcSignIcon.dll] [Autodesk, 16.0.0.86]
[D:\Program Steel tower\Arx\TrueTable2004.arx] [N/A, N/A]
[D:\Program Files\AutoCAD 2004\vlcom.dll] [Autodesk Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\vlreac.dll] [Autodesk, Inc., 16.0.0.86]
[D:\Program Files\AutoCAD 2004\apperr.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\plotcfg8.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\pctres8.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\apperrRes.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\plcfmgr.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\MSVCI70.dll] [Microsoft Corporation, 7.00.9466.0]
[D:\Program Files\AutoCAD 2004\plcfmgrRes.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\plcferr.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\pm8.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\pmres8.dll] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\pmutil8.dll] [Autodesk, Inc., 8.0.16.86]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNL4EUI.DLL] [CANON INC., 4.71]
[D:\Program Files\AutoCAD 2004\drv\gdiplot8.hdi] [Autodesk, Inc., 8.0.16.86]
[D:\Program Files\AutoCAD 2004\drv\gdiplot8Res.dll] [Autodesk, Inc., 8.0.16.86]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNL4E.DLL] [CANON INC., 4.71]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNL4EGR.DLL] [CANON INC., 4.71]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll] [Autodesk, 16.0.0.86]
[C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\~e5d141.tmp] [Macrovision Europe Ltd., 1, 0, 0, 1]

构建和谐社会 - 2006-11-22 15:07:00

[PID: 2940][C:\Program Files\Common Files\Autodesk Shared\WSCommCntr1.exe] [Autodesk, Inc., 1.0.0.1]
[C:\Program Files\Common Files\Autodesk Shared\WebServices1.dll] [Autodesk, Inc., 1.0.0.1]
[PID: 3520][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920)]
[C:\WINDOWS\System32\AcSignIcon.dll] [Autodesk, 16.0.0.86]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.7.2006011200]
[C:\WINDOWS\System32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\ftmsdtcu.dll] [N/A, N/A]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\PDM.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\INK\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[C:\PROGRA~1\3721\autolive.dll] [, 1, 1, 9, 1329]
[C:\PROGRA~1\3721\alLiveEx.dll] [ , 1, 0, 3, 1006]
[C:\WINDOWS\System32\WINWB86.IME] [Microsoft Corporation, 5.00.2000.3]
[PID: 3792][C:\WINDOWS\system32\rundll32.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[C:\PROGRA~1\3721\autolive.dll] [, 1, 1, 9, 1329]
[C:\PROGRA~1\3721\notifier.dll] [, 1, 0, 0, 5]
[PID: 3920][C:\WINDOWS\System32\regsvr32.exe] [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[C:\WINDOWS\System32\DllReg.dll] [, 1, 0, 0, 1]
[PID: 2724][C:\WINDOWS\system32\NOTEPAD.EXE] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[PID: 2640][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920)]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[C:\PROGRA~1\3721\scrblock.dll] [3721, 1, 0, 1, 1000]
[C:\PROGRA~1\3721\alrex.dll] [, 1, 0, 1, 1001]
[C:\PROGRA~1\3721\autolive.dll] [, 1, 1, 9, 1329]
[C:\PROGRA~1\3721\alLiveEx.dll] [ , 1, 0, 3, 1006]
[C:\WINDOWS\System32\AcSignIcon.dll] [Autodesk, 16.0.0.86]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.7.2006011200]
[C:\WINDOWS\System32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\PDM.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\INK\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[C:\WINDOWS\System32\WINWB86.IME] [Microsoft Corporation, 5.00.2000.3]
[C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll] [Autodesk, 16.0.0.86]
[PID: 3472][D:\Program Files\FlashGet\flashget.exe] [Amaze Soft, 1, 6, 5, 0]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\PDM.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\INK\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[PID: 3456][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920)]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]
[C:\PROGRA~1\3721\scrblock.dll] [3721, 1, 0, 1, 1000]
[C:\PROGRA~1\3721\alrex.dll] [, 1, 0, 1, 1001]
[C:\PROGRA~1\3721\autolive.dll] [, 1, 1, 9, 1329]
[C:\PROGRA~1\3721\alLiveEx.dll] [ , 1, 0, 3, 1006]
[C:\WINDOWS\System32\AcSignIcon.dll] [Autodesk, 16.0.0.86]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.7.2006011200]
[C:\WINDOWS\System32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\PDM.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL] [Microsoft Corporation, 7.00.9466]
[C:\Program Files\Common Files\Microsoft Shared\INK\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[PID: 3892][C:\Documents and Settings\Bluewater\桌面\SREng\SREng.exe] [Smallfrogs Studio, 2.2.6.605]
[C:\PROGRA~1\3721\helper.dll] [, 1, 1, 1, 1327]

构建和谐社会 - 2006-11-22 15:08:00

文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM Error. [C:\WINDOWS\hh.exe" %1]
.HLP Error. [winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1 LOCALHOST
127.0.0.1 WWW.POWERNUM123.COM
127.0.0.1 WWW.POWERNUM123.COM.CN
127.0.0.1 POWERNUM123.COM
127.0.0.1 POWERNUM123.COM.CN
127.0.0.1 WWW.CHEBL.COM
127.0.0.1 WWW.CHEBL.CN
127.0.0.1 WWW.CHEBL.COM.CN
127.0.0.1 CHEBL.COM
127.0.0.1 CHEBL.COM.CN
127.0.0.1 CHEBL.CN
127.0.0.1 WWW.CHEBULUO.COM.CN
127.0.0.1 WWW.CHEBULUO.COM
127.0.0.1 WWW.CHEBULUO.CN
127.0.0.1 CHEBULUO.COM.CN
127.0.0.1 CHEBULUO.COM
127.0.0.1 CHEBULUO.CN
127.0.0.1 WWW.17SP.COM
127.0.0.1 WWW.17SP.COM.CN
127.0.0.1 17SP.COM
127.0.0.1 17SP.COM.CN
127.0.0.1 WWW.FEIKONG.COM
127.0.0.1 WWW.FEIKONG.COM.CN
127.0.0.1 WWW.FEIKONG.CN
127.0.0.1 FEIKONG.COM
127.0.0.1 FEIKONG.COM.CN
127.0.0.1 FEIKONG.CN
127.0.0.1 WWW.HACONG.COM
127.0.0.1 HACONG.COM
127.0.0.1 WWW.XBXBXBXB.COM
127.0.0.1 WWW.SOBT.COM
127.0.0.1 WWW.SOBT.COM.CN
127.0.0.1 WWW.SOBT.CN
127.0.0.1 WWW.SOBT.NET
127.0.0.1 SOBT.COM
127.0.0.1 SOBT.COM.CN
127.0.0.1 SOBT.CN
127.0.0.1 SOBT.NET
127.0.0.1 WWW.XBXBXBXBXB.COM
127.0.0.1 XBXBXBXB.COM
127.0.0.1 XBXBXBXBXB.COM
127.0.0.1 WWW.NFSINFO.COM
127.0.0.1 NFSINFO.COM
127.0.0.1 CRMEASE.COM
127.0.0.1 HONGBANGZHU.COM
127.0.0.1 LINUX007.COM
127.0.0.1 LOSPLE.COM
127.0.0.1 LOSTEMPLE.COM
127.0.0.1 WWW.CRMEASE.COM
127.0.0.1 WWW.HONGBANGZHU.COM
127.0.0.1 WWW.LINUX007.COM
127.0.0.1 WWW.LOSPLE.COM
127.0.0.1 WWW.LOSTEMPLE.COM
127.0.0.1 SMARTALLYES.COM
127.0.0.1 51CPM.NET
127.0.0.1 51CPM.COM
127.0.0.1 YIQILAI.COM
127.0.0.1 UPDATE.SMARTALLYES.COM
127.0.0.1 MDMDMDMDMD.COM
127.0.0.1 WWW.SMARTALLYES.COM
127.0.0.1 WWW.51CPM.NET
127.0.0.1 WWW.51CPM.COM
127.0.0.1 WWW.YIQILAI.COM
127.0.0.1 WWW.MDMDMDMDMD.COM
127.0.0.1 QUANTUMBIZS.COM
127.0.0.1 WWW.QUANTUMBIZS.COM
127.0.0.1 PDSHN.COM
127.0.0.1 WWW.PDSHN.COM
127.0.0.1 PKPKPK.COM
127.0.0.1 WWW.PKPKPK.COM
127.0.0.1 PKPKPK.NET
127.0.0.1 WWW.PKPKPK.NET
127.0.0.1 OOOOOS.COM
127.0.0.1 WWW.OOOOOS.COM
127.0.0.1 CCTV06.COM
127.0.0.1 WWW.CCTV06.COM
127.0.0.1 FEIXIN.ORG
127.0.0.1 WWW.FEIXIN.ORG
127.0.0.1 PENGK.COM
127.0.0.1 WWW.PENGK.COM
127.0.0.1 QQYE.COM
127.0.0.1 WWW.QQYE.COM
127.0.0.1 XIA3.COM
127.0.0.1 WWW.XIA3.COM
127.0.0.1 XIAZAI1.COM
127.0.0.1 WWW.XIAZAI1.COM
127.0.0.1 CCWINFO.NET
127.0.0.1 WWW.CCWINFO.NET
127.0.0.1 DDPDDP.COM
127.0.0.1 WWW.DDPDDP.COM

构建和谐社会 - 2006-11-22 15:09:00

终于完成任务了，请兄台明查！

红夜鬼1 - 2006-11-22 15:10:00

运行(双击)SRENG2，点“启动项目，服务，点“Win32服务应用程序”
勾选“隐藏微软服务”选中病毒服务
Spectrum24 Events Monitor
Routing Protect Access
Security Info
Network Engine
，选择“删除服务”
点“设置”选择“否”
运行SREng2,使用“启动项目”－－注册表－－删除
<C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\tripcaq.exe><C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\tripcaq.exe> [N/A]
<helper.dll><C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32> []

重启按F８进入安全模式下
显示隐藏文件
删除：
C:\WINDOWS\System32\acss.dll
C:\WINDOWS\SYSTEM32\RUNDLLFROMWIN2000.EXE
C:\WINDOWS\System32\igauec14.dll
C:\WINDOWS\security.exe
C:\WINDOWS\SYSTEM32\WBEM\MSRJBP12.DLL
C:\DOCUME~1\BLUEWA~1\LOCALS~1\Temp\清空文件夹
C:\PROGRA~1\3721\helper.dll

推荐使用360安全卫士清理一下流氓

.360下载地址:
http://www.360safe.com/
http://www.xdowns.com/soft/8/9/2006/Soft_31554.html
使用后删除360安全卫士

构建和谐社会 - 2006-11-22 16:25:00

【回复“红夜鬼1”的帖子】
在操作过程中又碰到了一些问题，不过总算问题解决，感谢！

瑞星卡卡安全论坛