瑞星卡卡安全论坛

首页 » 个人产品讨论区 » 瑞星杀毒软件 » 瑞星杀毒软件2011 » 我的瑞星监控被关闭
疯狂小龙 - 2008-5-17 18:54:00
http://forum.ikaka.com/topic.asp?topicClose=1&board=201&artid=8404687
按上面的方法来做

未知家族病毒分析
扫描结果:
无可疑文件

系统活动进程
C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
D:\RISING\RISING\RFW\RFWMAIN.EXE
C:\WINDOWS\SYSTEM32\MFC71.DLL
C:\WINDOWS\SYSTEM32\MSVCR71.DLL
C:\WINDOWS\SYSTEM32\MSVCP71.DLL
D:\RISING\RISING\RFW\RSGUILIB.DLL
D:\RISING\RISING\RFW\PROCCOM.DLL
D:\RISING\RISING\RFW\RSCOMMX2.DLL
D:\RISING\RISING\RFW\RSAPPMGR.DLL
D:\RISING\RISING\RFW\CFGDLL.DLL
D:\RISING\RISING\RFW\RSCOMMON.DLL
D:\RISING\RISING\RFW\RFWCTRL.DLL
D:\RISING\RISING\RFW\RSXML.DLL
D:\RISING\RISING\RFW\PNGDLL.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
D:\RISING\RISING\RFW\RFWRULE.DLL
C:\WINDOWS\SYSTEM32\SMSS.EXE
C:\WINDOWS\SYSTEM32\CSRSS.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\WINLOGON.EXE
C:\WINDOWS\SYSTEM32\WGALOGON.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\MSACM32.DRV
C:\WINDOWS\SYSTEM32\SERVICES.EXE
C:\WINDOWS\APPPATCH\ACADPROC.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\LSASS.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
C:\WINDOWS\SYSTEM32\ATI2EDXX.DLL
C:\WINDOWS\SYSTEM32\ATIPDLXX.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\BOBOTURBO\BOBOTURBO.EXE
C:\WINDOWS\SYSTEM32\NORMALIZ.DLL
C:\WINDOWS\SYSTEM32\IERTUTIL.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE
C:\PROGRAM FILES\RISING\ANTISPYWARE\MFC71.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\MSVCR71.DLL
C:\WINDOWS\SYSTEM32\IEPROT.DLL
D:\新建文件夹 (7)\360SAFE\SAFEMON\SAFEMON.DLL
C:\WINDOWS\SYSTEM32\IERTUTIL.DLL
D:\RISING\RISING\RAV\CCENTER.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\WINDOWS\SYSTEM32\NORMALIZ.DLL
C:\WINDOWS\SYSTEM32\IERTUTIL.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\WUPS2.DLL
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\DRIVERS\CDAC11BA.EXE
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\NORMALIZ.DLL
C:\WINDOWS\SYSTEM32\IERTUTIL.DLL
D:\RISING\RISING\RAV\RAVMOND.EXE
D:\RISING\RISING\RAV\BWLIST.DLL
C:\WINDOWS\SYSTEM32\MFC71.DLL
C:\WINDOWS\SYSTEM32\MSVCR71.DLL
C:\WINDOWS\SYSTEM32\MSVCP71.DLL
D:\RISING\RISING\RAV\RSAPPMGR.DLL
D:\RISING\RISING\RAV\CFGDLL.DLL
D:\RISING\RISING\RAV\RSLOG.DLL
D:\RISING\RISING\RAV\PROCCOM.DLL
D:\RISING\RISING\RAV\RSCOMMX2.DLL
D:\RISING\RISING\RAV\MONRULE.DLL
D:\RISING\RISING\RAV\HOOKSYS.DLL
D:\RISING\RISING\RAV\HOOKREG.DLL
D:\RISING\RISING\RAV\HOOKNTOS.DLL
D:\RISING\RISING\RAV\RSWALMON.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
D:\RISING\RISING\RAV\FAKESCAN.DLL
D:\RISING\RISING\RAV\SCANNER.DLL
D:\RISING\RISING\RAV\HOOKWEB.DLL
D:\RISING\RISING\RAV\RECOMP.DLL
D:\RISING\RISING\RAV\REFS.DLL
D:\RISING\RISING\RAV\VIRUSLIB.DLL
D:\RISING\RISING\RAV\RELIBLDR.DLL
D:\RISING\RISING\RAV\FFR.DLL
D:\RISING\RISING\RAV\NVFILE.DLL
D:\RISING\RISING\RAV\SCANSCT.DLL
C:\WINDOWS\SYSTEM32\DRIVERS\CDANTSRV.EXE
D:\RISING\RISING\RFW\RFWSRV.EXE
C:\WINDOWS\SYSTEM32\MFC71.DLL
C:\WINDOWS\SYSTEM32\MSVCR71.DLL
C:\WINDOWS\SYSTEM32\MSVCP71.DLL
D:\RISING\RISING\RFW\PROCCOM.DLL
D:\RISING\RISING\RFW\RSCOMMX2.DLL
D:\RISING\RISING\RFW\RSAPPMGR.DLL
D:\RISING\RISING\RFW\CFGDLL.DLL
D:\RISING\RISING\RFW\RFWRULE.DLL
D:\RISING\RISING\RFW\RFWLOG.DLL
D:\RISING\RISING\RFW\RFWDRV.DLL
D:\RISING\RISING\RFW\PSAPI.DLL
D:\RISING\RISING\RFW\IJT_CTRL.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
D:\RISING\RISING\RFW\UNVDET.DLL
D:\RISING\RISING\RFW\MPORTS.DLL
D:\RISING\RISING\RFW\RFWPROXY.EXE
C:\WINDOWS\SYSTEM32\MFC71.DLL
C:\WINDOWS\SYSTEM32\MSVCR71.DLL
D:\RISING\RISING\RFW\PSAPI.DLL
D:\RISING\RISING\RFW\PROCCOM.DLL
D:\RISING\RISING\RFW\RSCOMMX2.DLL
D:\RISING\RISING\RFW\RFWRULE.DLL
D:\RISING\RISING\RFW\URLRULE.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
D:\RISING\RISING\RFW\MONMID.DLL
D:\新建文件夹 (8)\STORMLIV.EXE
D:\新建文件夹 (8)\MSVCP60.DLL
C:\WINDOWS\SYSTEM32\NORMALIZ.DLL
C:\WINDOWS\SYSTEM32\IERTUTIL.DLL
D:\RISING\RISING\RAV\RAVTASK.EXE
D:\RISING\RISING\RAV\PROCCOM.DLL
D:\RISING\RISING\RAV\RSCOMMX2.DLL
D:\RISING\RISING\RAV\RSCOMMON.DLL
D:\RISING\RISING\RAV\RSAPPMGR.DLL
D:\RISING\RISING\RAV\CFGDLL.DLL
C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\MSCORSVW.EXE
C:\WINDOWS\SYSTEM32\MSCOREE.DLL
C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\MSCORSVC.DLL
D:\RISING\RISING\RFW\RFWSTUB.EXE
C:\WINDOWS\SYSTEM32\MSVCP71.DLL
C:\WINDOWS\SYSTEM32\MSVCR71.DLL
D:\RISING\RISING\RFW\RSCOMMON.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
D:\RISING\RISING\RAV\RAVMON.EXE
C:\WINDOWS\SYSTEM32\MFC71.DLL
C:\WINDOWS\SYSTEM32\MSVCR71.DLL
C:\WINDOWS\SYSTEM32\MSVCP71.DLL
D:\RISING\RISING\RAV\PROCCOM.DLL
D:\RISING\RISING\RAV\RSCOMMX2.DLL
D:\RISING\RISING\RAV\RSCOMMON.DLL
D:\RISING\RISING\RAV\RECOMP.DLL
D:\RISING\RISING\RAV\REFS.DLL
D:\RISING\RISING\RAV\VIRUSLIB.DLL
D:\RISING\RISING\RAV\RELIBLDR.DLL
D:\RISING\RISING\RAV\RSAPPMGR.DLL
D:\RISING\RISING\RAV\CFGDLL.DLL
D:\RISING\RISING\RAV\MONRULE.DLL
D:\RISING\RISING\RAV\PNGDLL.DLL
D:\RISING\RISING\RAV\RSGUILIB.DLL
D:\RISING\RISING\RAV\RSXML.DLL
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM32\NORMALIZ.DLL
C:\WINDOWS\SYSTEM32\IERTUTIL.DLL
C:\WINDOWS\SYSTEM32\ACSIGNICON.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\PROGRAM FILES\COMMON FILES\AUTODESK SHARED\ACSIGNCORE16.DLL
C:\WINDOWS\SYSTEM32\IEFRAME.DLL
C:\WINDOWS\SYSTEM32\WPDSHSERVICEOBJ.DLL
C:\WINDOWS\SYSTEM32\PORTABLEDEVICETYPES.DLL
C:\WINDOWS\SYSTEM32\PORTABLEDEVICEAPI.DLL
C:\WINDOWS\SYSTEM32\MSACM32.DRV
D:\新建文件夹 (7)\360SAFE\SAFEMON\SAFEMON.DLL
C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\ATIACMXX.DLL
D:\RISING\RISING\RAV\RSCOMMON.DLL
C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE11\MSOHEV.DLL


用户系统信息:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727)
疯狂小龙 - 2008-5-17 18:56:00
D:\RISING\RISING\RAV\RAVSTUB.EXE
D:\RISING\RISING\RAV\PROCCOM.DLL
D:\RISING\RISING\RAV\RSCOMMX2.DLL
D:\RISING\RISING\RAV\RSCOMMON.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL

C:\WINDOWS\SYSTEM32\CTFMON.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL

E:\QQ\TXPLATFORM.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL

C:\WINDOWS\SYSTEM32\ALG.EXE
F:\新建文件夹 (2)\RSDETECT.EXE
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
D:\新建文件夹 (7)\360SAFE\SAFEMON\SAFEMON.DLL

C:\PROGRAM FILES\RISING\ANTISPYWARE\RAS.EXE
C:\WINDOWS\SYSTEM32\NORMALIZ.DLL
C:\WINDOWS\SYSTEM32\IERTUTIL.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\MFC71.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\MSVCR71.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\MSVCP71.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\TOPSOFT.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\NCOMM.DLL
D:\RISING\RISING\RAV\PROCCOM.DLL
D:\RISING\RISING\RAV\RSCOMMX2.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\RASGUI.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\RSXML.DLL
C:\WINDOWS\SYSTEM32\IEFRAME.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\KTROJAN.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\ENGINE.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\RSDIALOG.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\SCANUNV.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\SECSCAN.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\SECEX.DLL
C:\PROGRAM FILES\RISING\ANTISPYWARE\ZIP.DLL
D:\RISING\RISING\RAV\RAVSCRCH.DLL
C:\WINDOWS\SYSTEM32\MACROMED\FLASH\FLASH9F.OCX
C:\WINDOWS\SYSTEM32\MSACM32.DRV
C:\PROGRAM FILES\INTERNET EXPLORER\IEPROXY.DLL

D:\RISING\RISING\RFW\RFWCFG.EXE
C:\WINDOWS\SYSTEM32\MFC71.DLL
C:\WINDOWS\SYSTEM32\MSVCR71.DLL
C:\WINDOWS\SYSTEM32\MSVCP71.DLL
D:\RISING\RISING\RFW\RSGUILIB.DLL
D:\RISING\RISING\RFW\PROCCOM.DLL
D:\RISING\RISING\RFW\RSCOMMX2.DLL
D:\RISING\RISING\RFW\RSAPPMGR.DLL
D:\RISING\RISING\RFW\CFGDLL.DLL
D:\RISING\RISING\RFW\RSCOMMON.DLL
D:\RISING\RISING\RFW\RFWCTRL.DLL
D:\RISING\RISING\RFW\PROXYCTR.DLL
D:\RISING\RISING\RFW\RSXML.DLL
D:\RISING\RISING\RFW\PNGDLL.DLL
D:\RISING\RISING\RFW\RFWRULE.DLL
C:\WINDOWS\SYSTEM32\ACSIGNICON.DLL
C:\WINDOWS\SYSTEM32\NORMALIZ.DLL
C:\WINDOWS\SYSTEM32\IERTUTIL.DLL
C:\WINDOWS\SYSTEM32\IEFRAME.DLL
C:\PROGRAM FILES\COMMON FILES\AUTODESK SHARED\ACSIGNCORE16.DLL
C:\WINDOWS\SYSTEM32\WPDSHEXT.DLL
C:\WINDOWS\SYSTEM32\PORTABLEDEVICEAPI.DLL
C:\WINDOWS\SYSTEM32\AUDIODEV.DLL

D:\RISING\RISING\RAV\RAV.EXE
C:\WINDOWS\SYSTEM32\NORMALIZ.DLL
C:\WINDOWS\SYSTEM32\IERTUTIL.DLL
D:\RISING\RISING\RAV\PROCCOM.DLL
D:\RISING\RISING\RAV\RSCOMMX2.DLL
D:\RISING\RISING\RAV\RSGUILIB.DLL
C:\WINDOWS\SYSTEM32\MFC71.DLL
C:\WINDOWS\SYSTEM32\MSVCR71.DLL
C:\WINDOWS\SYSTEM32\MSVCP71.DLL
D:\RISING\RISING\RAV\RSXML.DLL
D:\RISING\RISING\RAV\PNGDLL.DLL
D:\RISING\RISING\RAV\RSCOMMON.DLL
D:\RISING\RISING\RAV\RAVPAGEM.DLL
D:\RISING\RISING\RAV\HTMLLIB.DLL
D:\RISING\RISING\RAV\RSAPPMGR.DLL
D:\RISING\RISING\RAV\CFGDLL.DLL
D:\RISING\RISING\RAV\RAVPAGEW.DLL
C:\WINDOWS\SYSTEM32\ACSIGNICON.DLL
D:\RISING\RISING\RAV\FAKESCAN.DLL
D:\RISING\RISING\RAV\SCANNER.DLL
D:\RISING\RISING\RAV\BWLIST.DLL
D:\RISING\RISING\RAV\SYSMAIL.DLL
C:\WINDOWS\SYSTEM32\IEFRAME.DLL

C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\WINDOWS\SYSTEM32\IERTUTIL.DLL
D:\RISING\RISING\RFW\IJT_BASE.DLL
D:\RISING\RISING\RFW\OLEMON.DLL
C:\WINDOWS\SYSTEM32\IEFRAME.DLL
D:\新建文件夹 (7)\360SAFE\SAFEMON\SAFEMON.DLL
C:\WINDOWS\SYSTEM32\IEUI.DLL
C:\WINDOWS\SYSTEM32\XMLLITE.DLL
C:\WINDOWS\SYSTEM32\ACSIGNICON.DLL
C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE11\MSOHEV.DLL
C:\PROGRAM FILES\INTERNET EXPLORER\IEPROXY.DLL
C:\WINDOWS\SYSTEM32\NORMALIZ.DLL
D:\新建文件夹 (2)\新建文件夹\MAGICSET\HAOKANBAR.DLL
C:\PROGRAM FILES\TENCENT\QQTOOLBAR\IEBAR.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\TENCENT\QQTOOLBAR\BUTTONS\TOOLBAR.DLL
C:\WINDOWS\SYSTEM32\IEAPFLTR.DLL
D:\RISING\RISING\RAV\RAVSCRCH.DLL
C:\WINDOWS\SYSTEM32\MACROMED\FLASH\FLASH9F.OCX
C:\WINDOWS\SYSTEM32\MSACM32.DRV
C:\WINDOWS\SYSTEM32\WINWB86.IME
C:\WINDOWS\SYSTEM32\MSCOREE.DLL
C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\MSCORIE.DLL
C:\WINDOWS\SYSTEM32\PORTABLEDEVICEAPI.DLL


普通自启动项
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
ATICCC = "C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CLISTART.EXE"
runeip = "C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE" /STARTUP
RfwMain = "D:\RISING\RISING\RFW\RFWMAIN.EXE" -STARTUP
RavTask = "D:\RISING\RISING\RAV\RAVTASK.EXE" -SYSTEM
360Safetray = D:\新建文件夹 (7)\360SAFE\SAFEMON\360TRAY.EXE /START
360Safebox = "C:\PROGRAM FILES\360SAFEBOX\SAFEBOXTRAY.EXE" /R
KernelFaultCheck = C:\WINDOWS\SYSTEM32\DUMPREP 0 -K

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
ctfmon.exe = C:\WINDOWS\SYSTEM32\CTFMON.EXE


系统文件关联
.exe ==> exefile = "%1" %*
.com ==> comfile = "%1" %*
.cmd ==> cmdfile = "%1" %*
.bat ==> batfile = "%1" %*
.txt ==> txtfile = C:\WINDOWS\notepad.exe %1
.scr ==> scrfile = "%1" /S
.reg ==> regfile = regedit.exe "%1"
.doc ==> Word.Document.8 = "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE" /n /dde

其它启动项
WIN.INI
无信息

SYSTEM.INI
SHELL = Explorer.exe
SCRNSAVE.EXE = C:\WINDOWS\system32\ravss.scr


Winlogon 启动项
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
crypt32chain = CRYPT32.DLL
cryptnet = CRYPTNET.DLL
cscdll = CSCDLL.DLL
ScCertProp = WLNOTIFY.DLL
Schedule = WLNOTIFY.DLL
sclgntfy = SCLGNTFY.DLL
SensLogn = WLNOTIFY.DLL
termsrv = WLNOTIFY.DLL
WgaLogon = WGALOGON.DLL
wlballoon = WLNOTIFY.DLL

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Userinit = C:\WINDOWS\SYSTEM32\USERINIT.EXE,
shell = EXPLORER.EXE


IE - BHO
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} = D:\新建文件夹 (2)\新建文件夹\MagicSet\haokanbar.dll
{B69F34DD-F0F9-42DC-9EDD-957187DA688D} = D:\新建文件夹 (7)\360safe\safemon\safemon.dll


Winsock SPI
MSAFD Tcpip [TCP/IP] = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD Tcpip [UDP/IP] = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD Tcpip [RAW/IP] = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
RSVP UDP Service Provider = C:\WINDOWS\SYSTEM32\RSVPSP.DLL
RSVP TCP Service Provider = C:\WINDOWS\SYSTEM32\RSVPSP.DLL
MSAFD NetBIOS [\Device\NetBT_Tcpip_{02FA5DC7-C7A0-4385-8893-FFD6FAF36CFD}] SEQPACKET 0 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD NetBIOS [\Device\NetBT_Tcpip_{02FA5DC7-C7A0-4385-8893-FFD6FAF36CFD}] DATAGRAM 0 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD NetBIOS [\Device\NetBT_Tcpip_{FCD4B0C8-53FA-44D6-A408-6C7060274ED9}] SEQPACKET 1 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD NetBIOS [\Device\NetBT_Tcpip_{FCD4B0C8-53FA-44D6-A408-6C7060274ED9}] DATAGRAM 1 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD NetBIOS [\Device\NetBT_Tcpip_{980B5A24-5754-498C-AE73-EBFAA6E25AE8}] SEQPACKET 2 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD NetBIOS [\Device\NetBT_Tcpip_{980B5A24-5754-498C-AE73-EBFAA6E25AE8}] DATAGRAM 2 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD NetBIOS [\Device\NetBT_Tcpip_{169350DC-F4AA-48D9-A593-AE410A12C7A4}] SEQPACKET 3 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD NetBIOS [\Device\NetBT_Tcpip_{169350DC-F4AA-48D9-A593-AE410A12C7A4}] DATAGRAM 3 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD NetBIOS [\Device\NetBT_Tcpip_{AF58BE0F-967E-4DD1-B40E-9FFE97166A13}] SEQPACKET 4 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
MSAFD NetBIOS [\Device\NetBT_Tcpip_{AF58BE0F-967E-4DD1-B40E-9FFE97166A13}] DATAGRAM 4 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
疯狂小龙 - 2008-5-17 18:56:00
系统服务项
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
Alerter = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
ALG = C:\WINDOWS\SYSTEM32\ALG.EXE
AppMgmt = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
aspnet_state = C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\ASPNET_STATE.EXE
Ati HotKey Poller = C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
ATI Smart = C:\WINDOWS\SYSTEM32\ATI2SGAG.EXE
AudioSrv = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
Autodesk Licensing Service = "C:\PROGRAM FILES\COMMON FILES\AUTODESK SHARED\SERVICE\ADSKSCSRV.EXE"
BITS = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
BoBoTurbo = C:\WINDOWS\SYSTEM32\BOBOTURBO\BOBOTURBO.EXE
Browser = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
C-DillaCdaC11BA = C:\WINDOWS\SYSTEM32\DRIVERS\CDAC11BA.EXE
C-DillaSrv = C:\WINDOWS\SYSTEM32\DRIVERS\CDANTSRV.EXE
ccosm = D:\新建文件夹 (8)\STORMLIV.EXE /ASSERVICE
CiSvc = C:\WINDOWS\SYSTEM32\CISVC.EXE
ClipSrv = C:\WINDOWS\SYSTEM32\CLIPSRV.EXE
clr_optimization_v2.0.50727_32 = C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\MSCORSVW.EXE
COMSysApp = C:\WINDOWS\SYSTEM32\DLLHOST.EXE /PROCESSID:{02D4B3F1-FD88-11D1-960D-00805FC79235}
CryptSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
DcomLaunch = C:\WINDOWS\SYSTEM32\SVCHOST -K DCOMLAUNCH
Dhcp = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
dmadmin = C:\WINDOWS\SYSTEM32\DMADMIN.EXE /COM
dmserver = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
Dnscache = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETWORKSERVICE
ERSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
Eventlog = C:\WINDOWS\SYSTEM32\SERVICES.EXE
EventSystem = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
FastUserSwitchingCompatibility = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
helpsvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
HidServ = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
HTTPFilter = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K HTTPFILTER
ImapiService = C:\WINDOWS\SYSTEM32\IMAPI.EXE
lanmanserver = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
lanmanworkstation = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
LmHosts = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
Messenger = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
mnmsrvc = C:\WINDOWS\SYSTEM32\MNMSRVC.EXE
MSDTC = C:\WINDOWS\SYSTEM32\MSDTC.EXE
MSIServer = C:\WINDOWS\SYSTEM32\MSIEXEC.EXE /V
NetDDE = C:\WINDOWS\SYSTEM32\NETDDE.EXE
NetDDEdsdm = C:\WINDOWS\SYSTEM32\NETDDE.EXE
Netlogon = C:\WINDOWS\SYSTEM32\LSASS.EXE
Netman = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
Nla = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
NtLmSsp = C:\WINDOWS\SYSTEM32\LSASS.EXE
NtmsSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
ose = "C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\SOURCE ENGINE\OSE.EXE"
PlugPlay = C:\WINDOWS\SYSTEM32\SERVICES.EXE
PolicyAgent = C:\WINDOWS\SYSTEM32\LSASS.EXE
ProtectedStorage = C:\WINDOWS\SYSTEM32\LSASS.EXE
RasAuto = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
RasMan = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
RDSessMgr = C:\WINDOWS\SYSTEM32\SESSMGR.EXE
RemoteAccess = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
RemoteRegistry = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
RfwProxySrv = D:\RISING\RISING\RFW\RFWPROXY.EXE
RfwService = D:\RISING\RISING\RFW\RFWSRV.EXE
RpcLocator = C:\WINDOWS\SYSTEM32\LOCATOR.EXE
RpcSs = C:\WINDOWS\SYSTEM32\SVCHOST -K RPCSS
RsCCenter = "D:\RISING\RISING\RAV\CCENTER.EXE"
RsRavMon = "D:\RISING\RISING\RAV\RAVMOND.EXE"
RSVP = C:\WINDOWS\SYSTEM32\RSVP.EXE
SamSs = C:\WINDOWS\SYSTEM32\LSASS.EXE
SCardSvr = C:\WINDOWS\SYSTEM32\SCARDSVR.EXE
Schedule = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
seclogon = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
SENS = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
SharedAccess = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
ShellHWDetection = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
Spooler = C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
srservice = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
SSDPSRV = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
stisvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K IMGSVC
SwPrv = C:\WINDOWS\SYSTEM32\DLLHOST.EXE /PROCESSID:{736153B1-B3B4-4FAF-B875-C5AA11CCFBF6}
SysmonLog = C:\WINDOWS\SYSTEM32\SMLOGSVC.EXE
TapiSrv = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
TermService = C:\WINDOWS\SYSTEM32\SVCHOST -K DCOMLAUNCH
Themes = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
TlntSvr = C:\WINDOWS\SYSTEM32\TLNTSVR.EXE
TrkWks = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
upnphost = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
UPS = C:\WINDOWS\SYSTEM32\UPS.EXE
VSS = C:\WINDOWS\SYSTEM32\VSSVC.EXE
W32Time = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
WebClient = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
winmgmt = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
WmdmPmSN = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
Wmi = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
WmiApSrv = C:\WINDOWS\SYSTEM32\WBEM\WMIAPSRV.EXE
WMPNetworkSvc = "C:\PROGRAM FILES\WINDOWS MEDIA PLAYER\WMPNETWK.EXE"
wscsvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
wuauserv = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
WudfSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K WUDFSERVICEGROUP
WZCSVC = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
xmlprov = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

文件驱动
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
FltMgr = C:\WINDOWS\SYSTEM32\DRIVERS\FLTMGR.SYS
MRxDAV = C:\WINDOWS\SYSTEM32\DRIVERS\MRXDAV.SYS
MRxSmb = C:\WINDOWS\SYSTEM32\DRIVERS\MRXSMB.SYS
NetBIOS = C:\WINDOWS\SYSTEM32\DRIVERS\NETBIOS.SYS
Rdbss = C:\WINDOWS\SYSTEM32\DRIVERS\RDBSS.SYS
sr = C:\WINDOWS\SYSTEM32\DRIVERS\SR.SYS
Srv = C:\WINDOWS\SYSTEM32\DRIVERS\SRV.SYS

系统驱动项
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
ac97intc = C:\WINDOWS\SYSTEM32\DRIVERS\AC97INTC.SYS
ACPI = C:\WINDOWS\SYSTEM32\DRIVERS\ACPI.SYS
aec = C:\WINDOWS\SYSTEM32\DRIVERS\AEC.SYS
AFD = C:\WINDOWS\SYSTEM32\DRIVERS\AFD.SYS
agp440 = C:\WINDOWS\SYSTEM32\DRIVERS\AGP440.SYS
AliIde = C:\WINDOWS\SYSTEM32\DRIVERS\ALIIDE.SYS
AmdK8 = C:\WINDOWS\SYSTEM32\DRIVERS\AMDK8.SYS
AsyncMac = C:\WINDOWS\SYSTEM32\DRIVERS\ASYNCMAC.SYS
atapi = C:\WINDOWS\SYSTEM32\DRIVERS\ATAPI.SYS
ati2mtag = C:\WINDOWS\SYSTEM32\DRIVERS\ATI2MTAG.SYS
Atmarpc = C:\WINDOWS\SYSTEM32\DRIVERS\ATMARPC.SYS
audstub = C:\WINDOWS\SYSTEM32\DRIVERS\AUDSTUB.SYS
CdaC15BA = C:\WINDOWS\SYSTEM32\DRIVERS\CDAC15BA.SYS
Cdrom = C:\WINDOWS\SYSTEM32\DRIVERS\CDROM.SYS
CmdIde = C:\WINDOWS\SYSTEM32\DRIVERS\CMDIDE.SYS
Disk = C:\WINDOWS\SYSTEM32\DRIVERS\DISK.SYS
dmboot = C:\WINDOWS\SYSTEM32\DRIVERS\DMBOOT.SYS
dmio = C:\WINDOWS\SYSTEM32\DRIVERS\DMIO.SYS
dmload = C:\WINDOWS\SYSTEM32\DRIVERS\DMLOAD.SYS
DMusic = C:\WINDOWS\SYSTEM32\DRIVERS\DMUSIC.SYS
drmkaud = C:\WINDOWS\SYSTEM32\DRIVERS\DRMKAUD.SYS
Fdc = C:\WINDOWS\SYSTEM32\DRIVERS\FDC.SYS
FETNDIS = C:\WINDOWS\SYSTEM32\DRIVERS\FETND5.SYS
Flpydisk = C:\WINDOWS\SYSTEM32\DRIVERS\FLPYDISK.SYS
FsVga = C:\WINDOWS\SYSTEM32\DRIVERS\FSVGA.SYS
Ftdisk = C:\WINDOWS\SYSTEM32\DRIVERS\FTDISK.SYS
gameenum = C:\WINDOWS\SYSTEM32\DRIVERS\GAMEENUM.SYS
Gpc = C:\WINDOWS\SYSTEM32\DRIVERS\MSGPC.SYS
HDAudBus = C:\WINDOWS\SYSTEM32\DRIVERS\HDAUDBUS.SYS
HidUsb = C:\WINDOWS\SYSTEM32\DRIVERS\HIDUSB.SYS
HookCont = C:\WINDOWS\SYSTEM32\DRIVERS\HOOKCONT.SYS
HookNtos = C:\WINDOWS\SYSTEM32\DRIVERS\HOOKNTOS.SYS
HookReg = C:\WINDOWS\SYSTEM32\DRIVERS\HOOKREG.SYS
HookSys = C:\WINDOWS\SYSTEM32\DRIVERS\HOOKSYS.SYS
HookUrl = D:\RISING\RISING\RFW\HOOKURL.SYS
HTTP = C:\WINDOWS\SYSTEM32\DRIVERS\HTTP.SYS
i8042prt = C:\WINDOWS\SYSTEM32\DRIVERS\I8042PRT.SYS
Imapi = C:\WINDOWS\SYSTEM32\DRIVERS\IMAPI.SYS
IntcAzAudAddService = C:\WINDOWS\SYSTEM32\DRIVERS\RTKHDAUD.SYS
IntelIde = C:\WINDOWS\SYSTEM32\DRIVERS\INTELIDE.SYS
Ip6Fw = C:\WINDOWS\SYSTEM32\DRIVERS\IP6FW.SYS
IpFilterDriver = C:\WINDOWS\SYSTEM32\DRIVERS\IPFLTDRV.SYS
IpInIp = C:\WINDOWS\SYSTEM32\DRIVERS\IPINIP.SYS
IpNat = C:\WINDOWS\SYSTEM32\DRIVERS\IPNAT.SYS
IPSec = C:\WINDOWS\SYSTEM32\DRIVERS\IPSEC.SYS
IRENUM = C:\WINDOWS\SYSTEM32\DRIVERS\IRENUM.SYS
isapnp = C:\WINDOWS\SYSTEM32\DRIVERS\ISAPNP.SYS
Kbdclass = C:\WINDOWS\SYSTEM32\DRIVERS\KBDCLASS.SYS
kbdhid = C:\WINDOWS\SYSTEM32\DRIVERS\KBDHID.SYS
kmixer = C:\WINDOWS\SYSTEM32\DRIVERS\KMIXER.SYS
Mouclass = C:\WINDOWS\SYSTEM32\DRIVERS\MOUCLASS.SYS
mouhid = C:\WINDOWS\SYSTEM32\DRIVERS\MOUHID.SYS
MSKSSRV = C:\WINDOWS\SYSTEM32\DRIVERS\MSKSSRV.SYS
MSPCLOCK = C:\WINDOWS\SYSTEM32\DRIVERS\MSPCLOCK.SYS
MSPQM = C:\WINDOWS\SYSTEM32\DRIVERS\MSPQM.SYS
mssmbios = C:\WINDOWS\SYSTEM32\DRIVERS\MSSMBIOS.SYS
ms_mpu401 = C:\WINDOWS\SYSTEM32\DRIVERS\MSMPU401.SYS
NdisTapi = C:\WINDOWS\SYSTEM32\DRIVERS\NDISTAPI.SYS
Ndisuio = C:\WINDOWS\SYSTEM32\DRIVERS\NDISUIO.SYS
NdisWan = C:\WINDOWS\SYSTEM32\DRIVERS\NDISWAN.SYS
NetBT = C:\WINDOWS\SYSTEM32\DRIVERS\NETBT.SYS
NPF = C:\WINDOWS\SYSTEM32\DRIVERS\NPF.SYS
npkcrypt = C:\WINDOWS\SYSTEM32\NPKCRYPT.SYS
npkcusb = C:\PROGRAM FILES\QQ2006\NPKCUSB.SYS
npkycryp = C:\WINDOWS\SYSTEM32\NPKYCRYP.SYS
nv = C:\WINDOWS\SYSTEM32\DRIVERS\NV4_MINI.SYS
NwlnkFlt = C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKFLT.SYS
NwlnkFwd = C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKFWD.SYS
P3 = C:\WINDOWS\SYSTEM32\DRIVERS\P3.SYS
Parport = C:\WINDOWS\SYSTEM32\DRIVERS\PARPORT.SYS
PCI = C:\WINDOWS\SYSTEM32\DRIVERS\PCI.SYS
PCIIde = C:\WINDOWS\SYSTEM32\DRIVERS\PCIIDE.SYS
PptpMiniport = C:\WINDOWS\SYSTEM32\DRIVERS\RASPPTP.SYS
Processor = C:\WINDOWS\SYSTEM32\DRIVERS\PROCESSR.SYS
PSched = C:\WINDOWS\SYSTEM32\DRIVERS\PSCHED.SYS
Ptilink = C:\WINDOWS\SYSTEM32\DRIVERS\PTILINK.SYS
RasAcd = C:\WINDOWS\SYSTEM32\DRIVERS\RASACD.SYS
Rasl2tp = C:\WINDOWS\SYSTEM32\DRIVERS\RASL2TP.SYS
RasPppoe = C:\WINDOWS\SYSTEM32\DRIVERS\RASPPPOE.SYS
Raspti = C:\WINDOWS\SYSTEM32\DRIVERS\RASPTI.SYS
RDPCDD = C:\WINDOWS\SYSTEM32\DRIVERS\RDPCDD.SYS
rdpdr = C:\WINDOWS\SYSTEM32\DRIVERS\RDPDR.SYS
redbook = C:\WINDOWS\SYSTEM32\DRIVERS\REDBOOK.SYS
RfwBase = C:\WINDOWS\SYSTEM32\DRIVERS\RFWBASE.SYS
RsAntiSpyware = C:\WINDOWS\SYSTEM32\DRIVERS\RSBOOT.SYS
RsFwDrv = D:\RISING\RISING\RFW\RSFWDRV.SYS
RsNTGDI = C:\WINDOWS\SYSTEM32\DRIVERS\RSNTGDI.SYS
RTL8023xp = C:\WINDOWS\SYSTEM32\DRIVERS\RTENICXP.SYS
SafeBoxKrnl = C:\PROGRAM FILES\360SAFEBOX\SAFEBOXKRNL.SYS
Secdrv = C:\WINDOWS\SYSTEM32\DRIVERS\SECDRV.SYS
serenum = C:\WINDOWS\SYSTEM32\DRIVERS\SERENUM.SYS
Serial = C:\WINDOWS\SYSTEM32\DRIVERS\SERIAL.SYS
sermouse = C:\WINDOWS\SYSTEM32\DRIVERS\SERMOUSE.SYS
splitter = C:\WINDOWS\SYSTEM32\DRIVERS\SPLITTER.SYS
swenum = C:\WINDOWS\SYSTEM32\DRIVERS\SWENUM.SYS
swmidi = C:\WINDOWS\SYSTEM32\DRIVERS\SWMIDI.SYS
sysaudio = C:\WINDOWS\SYSTEM32\DRIVERS\SYSAUDIO.SYS
Tcpip = C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS
TermDD = C:\WINDOWS\SYSTEM32\DRIVERS\TERMDD.SYS
TesSafe = C:\WINDOWS\SYSTEM32\TESSAFE.SYS
Update = C:\WINDOWS\SYSTEM32\DRIVERS\UPDATE.SYS
usbccgp = C:\WINDOWS\SYSTEM32\DRIVERS\USBCCGP.SYS
usbehci = C:\WINDOWS\SYSTEM32\DRIVERS\USBEHCI.SYS
usbhub = C:\WINDOWS\SYSTEM32\DRIVERS\USBHUB.SYS
USBOHCI = C:\WINDOWS\SYSTEM32\DRIVERS\USBOHCI.SYS
USBSTOR = C:\WINDOWS\SYSTEM32\DRIVERS\USBSTOR.SYS
usbuhci = C:\WINDOWS\SYSTEM32\DRIVERS\USBUHCI.SYS
VgaSave = C:\WINDOWS\SYSTEM32\DRIVERS\VGA.SYS
Wanarp = C:\WINDOWS\SYSTEM32\DRIVERS\WANARP.SYS
wdmaud = C:\WINDOWS\SYSTEM32\DRIVERS\WDMAUD.SYS
WudfPf = C:\WINDOWS\SYSTEM32\DRIVERS\WUDFPF.SYS
WudfRd = C:\WINDOWS\SYSTEM32\DRIVERS\WUDFRD.SYS
疯狂小龙 - 2008-5-17 18:58:00
哪位大虾能看出原因?
今天发现多出一个
tmp30.exe
那是什么程序
长三角人力资源 - 2008-5-17 19:10:00
该用户帖子内容已被屏蔽
人民万岁 - 2008-5-17 22:33:00
可以先下一个AV终结者之类的专杀先试试。
1
查看完整版本: 我的瑞星监控被关闭
© 2000 - 2024 Rising Corp. Ltd.