[日志3]

正在运行的进程
[PID: 496][\SystemRoot\System32\smss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 560][\??\C:\WINDOWS\system32\csrss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 592][\??\C:\WINDOWS\system32\winlogon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 640][C:\WINDOWS\system32\services.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 652][C:\WINDOWS\system32\lsass.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 800][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 860][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 964][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1072][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1148][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1340][C:\WINDOWS\Explorer.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\WinRAR\rarext.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RavExt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]  <N/A><N/A>
    [D:\ActiveX\PDFShell.CHS]  <Adobe Systems, Inc.><7.0.0.0>
    [D:\ActiveX\PDFShell.dll]  <Adobe Systems, Inc.><7.0.0.0>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
[PID: 1372][g:\program files\rising\rfw\rfwsrv.exe]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 32>
    [g:\program files\rising\rfw\RfwRule.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 13>
    [g:\program files\rising\rfw\rfwlog.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6>
    [g:\program files\rising\rfw\Rfwdrv.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 21>
    [g:\program files\rising\rfw\MonDrv.dll]  <rs><1, 0, 0, 4>
    [g:\program files\rising\rfw\ProcLib.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9>
[PID: 1708][g:\program files\rising\rfw\RfwMain.exe]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 51>
    [g:\program files\rising\rfw\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23>
    [g:\program files\rising\rfw\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [g:\program files\rising\rfw\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 1908][C:\WINDOWS\System32\cisvc.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1952][C:\WINDOWS\System32\nvsvc32.exe]  <NVIDIA Corporation><6.14.01.4303>
[PID: 1980][C:\WINDOWS\System32\snmp.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1232][C:\WINDOWS\System32\alg.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 940][C:\windows\system\hpsysdrv.exe]  <Hewlett-Packard Company><1, 7, 0, 0>
[PID: 2012][C:\HP\KBD\KBD.EXE]  <Hewlett-Packard Company><1.0.2.0>
    [C:\HP\KBD\led.dll]  <Hewlett-Packard Company><1.0.2.0>
    [C:\HP\KBD\USB.dll]  <Hewlett-Packard Company><1.0.2.0>
    [C:\HP\KBD\ps2.dll]  <Hewlett-Packard Company><1.0.2.0>
    [C:\HP\KBD\msg.dll]  <Hewlett-Packard Company><1.0.2.0>
    [C:\HP\KBD\osd.dll]  <Hewlett-Packard Company><1.0.2.1>
    [C:\HP\KBD\sct.dll]  <Hewlett-Packard Company><1.0.2.1>
    [C:\HP\KBD\onl.dll]  <Hewlett-Packard Company><1.0.2.0>
    [C:\HP\KBD\aol.dll]  <Hewlett-Packard Company><1.0.2.0>
    [C:\HP\KBD\url.dll]  <Hewlett-Packard Company><1.0.2.0>
    [C:\HP\KBD\cfg.dll]  <Hewlett-Packard Company><1.0.2.1>
    [C:\HP\KBD\MSIKBDIF.DLL]  <Hewlett-Packard Company><1.0.2.0>

[日志4]

[PID: 2220][G:\Program Files\Rising\Rav\RavTask.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
    [G:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [G:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [G:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [G:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
[PID: 2236][G:\Program Files\Rising\Rav\Ravmon.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 1, 30>
    [G:\Program Files\Rising\Rav\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 24>
    [G:\Program Files\Rising\Rav\BWList.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [G:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [G:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [G:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [G:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [G:\Program Files\Rising\Rav\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 2448][C:\Program Files\ICQLite\ICQLite.exe]  <ICQ Ltd.><20, 52, 2573, 0>
    [C:\Program Files\ICQLite\ICQRT.dll]  <N/A><N/A>
    [C:\Program Files\ICQLite\LiteSkinUtils.dll]  <><1, 0, 0, 1>
    [C:\Program Files\ICQLite\ICQLSRP.dll]  <ICQ Ltd><20, 52, 2573, 0>
    [C:\Program Files\ICQLite\EmoExtractAsset.dll]  <N/A><N/A>
    [C:\Program Files\ICQLite\LiteRes.dll]  <ICQ Ltd.><20, 52, 2573, 0>
    [C:\Program Files\ICQLite\MISB.dll]  <><20, 52, 2573, 0>
    [C:\Program Files\ICQLite\actskin4.ocx]  <><4, 3, 0, 0>
    [C:\Program Files\ICQLite\LiteUtil.dll]  <ICQ Ltd.><20, 52, 2573, 0>
    [C:\WINDOWS\System32\Macromed\Flash\Flash8b.ocx]  <Macromedia, Inc.><8,0,24,0>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
[PID: 2496][C:\Program Files\DAEMON Tools\daemon.exe]  <DT Soft Ltd.><4.03.0.0>
    [C:\Program Files\DAEMON Tools\daemon.dll]  <DT Soft Ltd.><4.03.0.0>
    [C:\Program Files\DAEMON Tools\PFCTOC.DLL]  <Padus(R), Inc.><1, 0, 0, 12>
    [C:\Program Files\DAEMON Tools\Plugins\Images\bw5mount.dll]  <N/A><1.0.6.0>
    [C:\Program Files\DAEMON Tools\Plugins\Images\ccdmount.dll]  <GENERIC><1.10.0.0>
    [C:\Program Files\DAEMON Tools\Plugins\Images\mdsmount.dll]  <GENERIC><1.12.0.0>
    [C:\Program Files\DAEMON Tools\Plugins\Images\nrgmount.dll]  <GENERIC><1.11.0.0>
    [C:\Program Files\DAEMON Tools\Plugins\Images\pdimount.dll]  <GENERIC><1.01.0.0>
[PID: 2512][C:\WINDOWS\system32\ctfmon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2516][C:\WINDOWS\wt\updater\wcmdmgr.exe]  <WildTangent, Inc.><1.6.0.37>
[PID: 2528][C:\Program Files\MSN Messenger\msnmsgr.exe]  <Microsoft Corporation><7.5.0324>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
    [C:\WINDOWS\System32\Macromed\Flash\Flash8b.ocx]  <Macromedia, Inc.><8,0,24,0>
[PID: 2544][C:\Program Files\Messenger\MSMSGS.EXE]  <Microsoft Corporation><4.7.3001>
[PID: 2556][C:\Program Files\eMule\emule.exe]  <http://www.emule.org.cn><0.47.0>
    [C:\Program Files\eMule\VNNClientS.Dll]  <VNN><3.0.22.1>
    [C:\Program Files\eMule\ZipLib.dll]  <VNN><1.0.0.1>
    [C:\Program Files\eMule\vdevstate.dll]  <N/A><N/A>
    [C:\Program Files\eMule\lang\zh_CN.dll]  <http://www.emule-project.net><0.47.0>
[PID: 2680][C:\Program Files\Kingsoft\PowerWord 2005\XDICT.EXE]  <Kingsoft Co, Ltd.><8, 5, 0, 0>
    [C:\Program Files\Kingsoft\PowerWord 2005\DicMngr.dll]  <Kingsoft><1, 0, 0, 0>
    [C:\Program Files\Kingsoft\PowerWord 2005\doshow.dll]  <N/A><N/A>
    [C:\Program Files\Kingsoft\PowerWord 2005\ITextOut.dll]  <Kingsoft><1, 1, 0, 0>
    [C:\Program Files\Kingsoft\PowerWord 2005\KPic10.dll]  <N/A><N/A>
    [C:\Program Files\Kingsoft\PowerWord 2005\ijl11.dll]  <Intel Corporation><1.1.2>
    [C:\Program Files\Kingsoft\PowerWord 2005\NormGrab.DLL]  <Kingsoft Co, Ltd.><6, 0, 0, 0>
    [C:\Program Files\Kingsoft\PowerWord 2005\toTTSEngine50.dll]  <Kingsoft Corporation><1, 0, 0, 1>
    [C:\Program Files\Kingsoft\PowerWord 2005\xfile.dll]  <N/A><N/A>
    [C:\Program Files\Kingsoft\PowerWord 2005\DBCore10.dll]  <Kingsoft  Corp.><1, 0, 0, 0>
    [C:\Program Files\Kingsoft\PowerWord 2005\XdictGrb.dll]  <Kingsoft Co, Ltd.><8, 5, 0, 0>
    [C:\WINDOWS\system32\PNEN3230.DLL]  <Progressive Networks, Inc.><3.0.0.76>
    [C:\WINDOWS\system32\pncrt.dll]  <Real Networks, Inc><6.0.0.0>

[日志5]

[PID: 3928][C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE]  <Microsoft Corporation><11.0.5604>
    [G:\Program Files\Rising\Rav\RsPlugIn.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
    [G:\Program Files\Rising\Rav\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 24>
    [D:\PDFMaker\Office\PDFMOfficeAddin.dll]  <Adobe Systems Incorporated><7.0.8.0>
    [D:\PDFMaker\Office\PDFMOfficeAddin.CHS]  <Adobe Systems Incorporated><7.0.7.0>
    [G:\Program Files\Rising\Rav\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 2720][C:\Program Files\Windows Media Player\wmplayer.exe]  <Microsoft Corporation><9.00.00.3250>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
    [C:\WINDOWS\System32\l3codeca.acm]  <Fraunhofer Institut Integrierte Schaltungen IIS><1, 9, 0, 0305>
    [C:\WINDOWS\wt\webdriver\wtwmplug.ax]  <N/A><N/A>
    [C:\WINDOWS\wt\webdriver\sound.dll]  <N/A><N/A>
    [C:\WINDOWS\wt\webdriver\WDENGINE.dll]  <N/A><N/A>
[PID: 4032][G:\Program Files\Rising\Rav\CCenter.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 3124][G:\Program Files\Rising\Rav\Ravmond.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 1, 29>
    [G:\Program Files\Rising\Rav\BWList.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [G:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [G:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [G:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [G:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [G:\Program Files\Rising\Rav\RsLog.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
    [G:\Program Files\Rising\Rav\HOOKSYS.dll]  <Rising><18, 1, 0, 9>
    [G:\Program Files\Rising\Rav\Scanner.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [G:\Program Files\Rising\Rav\libload.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [G:\Program Files\Rising\Rav\VirusLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [G:\Program Files\Rising\Rav\regmon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
    [G:\Program Files\Rising\Rav\HookWeb.dll]  <rising><18, 0, 0, 2>
    [G:\Program Files\Rising\Rav\MemMon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
    [G:\Program Files\Rising\Rav\expscan.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [G:\Program Files\Rising\Rav\mPorts.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3>
    [G:\Program Files\Rising\Rav\MailMon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [G:\Program Files\Rising\Rav\SpamEng.dll]  <N/A><18, 0, 0, 6>
    [G:\Program Files\Rising\Rav\engine.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [G:\Program Files\Rising\Rav\PostTrt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
    [G:\Program Files\Rising\Rav\UnExe.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [G:\Program Files\Rising\Rav\ScanExec.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [G:\Program Files\Rising\Rav\ScanEx.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12>
    [G:\Program Files\Rising\Rav\NvFile.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
    [G:\Program Files\Rising\Rav\ScanMac.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
    [G:\Program Files\Rising\Rav\ScanSct.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18>
    [G:\Program Files\Rising\Rav\Unpacker.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
    [G:\Program Files\Rising\Rav\ExtOLE.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[PID: 888][G:\Program Files\Rising\Rav\RavStub.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
    [G:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [G:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 376][C:\WINDOWS\system32\cidaemon.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
[PID: 2936][C:\WINDOWS\system32\conime.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2204][C:\WINDOWS\system32\spoolsv.exe]  <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
    [C:\WINDOWS\system32\AdobePDF.dll]  <Adobe Systems Incorporated.><7.0.0.00>
    [D:\Distillr\AdistRes.CHS]  <N/A><N/A>
[PID: 2208][C:\Program Files\Super Rabbit\MagicSet\iehelp.exe]  <Super Rabbit Soft><7.80>
[PID: 2280][C:\Program Files\Super Rabbit\MagicSet\magicset.exe]  <Super Rabbit Soft><7.80>
[PID: 2612][C:\WINDOWS\System32\msiexec.exe]  <Microsoft Corporation><3.1.4000.1823>
[PID: 976][C:\Program Files\Internet Explorer\iexplore.exe]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll]  <Xiang Feng Technology><2, 2, 0, 1612>
    [C:\WINDOWS\System32\Macromed\Flash\Flash8b.ocx]  <Macromedia, Inc.><8,0,24,0>
[PID: 1500][C:\Documents and Settings\所有者\桌面\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>
[PID: 4088][C:\WINDOWS\system32\wuauclt.exe]  <Microsoft Corporation><5.8.0.2469 built by: lab01_n(wmbla)>

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  Error. [C:\WINDOWS\winhlp32.exe %1]
.INI  Error. [C:\WINDOWS\NOTEPAD.EXE %1]
.INF  Error. [C:\WINDOWS\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

打开System Repair Engineer(就是你扫日志的软件)，使用“系统修复，文件关联"修复所有文件关联
日志没发现病毒

好家伙  日至真多...

C:\WINDOWS\system32\ps2.exe是惠普多媒体键盘相关程序，用于配置扩展键。
兔子网站上写的,应该没什么问题

还有楼主问一下你电脑的虚拟内存设置的多少?能告诉我一下吗?

这样,楼主你关闭所有应用程序硬盘灯还是会狂闪吗?
拼命读硬盘时你的机子很慢,那时你看过CPU占用率多少?
你升级到最新的病毒库用瑞星全盘再扫一次,看有没有发现

在拼命读硬盘时你的机子很慢,CPU占用率多少?
你有没有试过关闭所有应用程序那时硬盘还狂读吗?
建议你升级到最新的瑞星全盘扫一次看有没有发现

【回复“翹翹鈑oоО”的帖子】

谢谢你的回复~

我的内存是256MB，虚拟内存512M，应该不会有什么问题吧？