瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 【求助】太大的问题,请各位高手进来看看,帮我一下。我快崩溃了。

12   2  /  2  页   跳转

【求助】太大的问题,请各位高手进来看看,帮我一下。我快崩溃了。

收藏
tongtree
头像
快乐黄口狮
  • 帖子:202
  • 注册: 2007-04-17
  • 来自:
发表于: 2007-05-16 11:37 | 只看楼主 短消息 资料
字号: 11楼

[C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 1564][C:\WINDOWS\system32\igfxpers.exe]  [Intel Corporation, 3.0.0.4396]
    [C:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 3.0.0.4396]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 1844][C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe]  [Analog Devices, Inc., 5, 0, 2, 2]
    [C:\Program Files\Analog Devices\SoundMAX\SMWDMIF.dll]  [Analog Devices, Inc., 5, 0, 3, 001]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 1852][C:\Program Files\Analog Devices\SoundMAX\Smax4.exe]  [Analog Devices, Inc., 5, 0, 2, 6]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 1892][C:\Herosoft\HeroV8\SYSEXPLR.EXE]  [N/A, N/A]
    [C:\Herosoft\HeroV8\AVCDROM.dll]  [N/A, N/A]
    [C:\Herosoft\HeroV8\CoolMenu.dll]  [N/A, N/A]
    [C:\Herosoft\HeroV8\Sys936.DLL]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 1720][C:\Program Files\Rising\Rav\RavTask.exe]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 7]
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
    [C:\Program Files\Rising\Rav\CfgDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 13]
    [C:\Program Files\Rising\Rav\RsCommX.dll]  [rising, 18, 0, 0, 1]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 1996][C:\Program Files\Rising\Rav\Ravmon.exe]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 36]
    [C:\Program Files\Rising\Rav\RsGuiLib.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 28]
    [C:\Program Files\Rising\Rav\BWList.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 10]
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
    [C:\Program Files\Rising\Rav\CfgDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 13]
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
    [C:\Program Files\Rising\Rav\RsCommX.dll]  [rising, 18, 0, 0, 1]
    [C:\Program Files\Rising\Rav\RsXML.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 2]
    [C:\Program Files\Rising\Rav\PngDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
    [C:\DOCUME~1\admin\LOCALS~1\Temp\upxdnd.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\mppds.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\winform.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\cmdbs.dll]  [N/A, N/A]
[PID: 1872][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 2228][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 328][C:\WINDOWS\system32\conime.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 2740][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 2748][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 1812][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 3632][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 1456][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 456][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 3596][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
    [C:\DOCUME~1\admin\LOCALS~1\Temp\upxdnd.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\mppds.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\winform.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\cmdbs.dll]  [N/A, N/A]
[PID: 2092][C:\WINDOWS\system32\MY.exe]  [N/A, N/A]
[PID: 2156][C:\WINDOWS\system32\MY.exe]  [N/A, N/A]
[PID: 2148][C:\WINDOWS\system32\MY.exe]  [N/A, N/A]
[PID: 3228][C:\WINDOWS\system32\MY.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
gototop
 
tongtree
头像
快乐黄口狮
  • 帖子:202
  • 注册: 2007-04-17
  • 来自:
发表于: 2007-05-16 11:37 | 只看楼主 短消息 资料
字号: 12楼

[C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 3612][C:\WINDOWS\system32\MY.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 1336][C:\WINDOWS\system32\drwtsn32.exe]  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 2352][C:\WINDOWS\system32\drwtsn32.exe]  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 900][C:\WINDOWS\system32\drwtsn32.exe]  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 2184][C:\WINDOWS\system32\drwtsn32.exe]  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 572][C:\WINDOWS\system32\drwtsn32.exe]  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 3492][C:\DOCUME~1\admin\LOCALS~1\Temp\svchost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\DOCUME~1\admin\LOCALS~1\Temp\packet.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\DOCUME~1\admin\LOCALS~1\Temp\WanPacket.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 3316][C:\WINDOWS\system32\conime.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 3204][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 3820][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 2868][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 2696][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 1312][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 3140][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 2452][C:\WINDOWS\system32\WOW.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\WOW.dat]  [N/A, N/A]
[PID: 732][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 1420][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 3276][C:\WINDOWS\system32\WOW.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\WOW.dat]  [N/A, N/A]
[PID: 2516][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 3692][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 3824][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 3016][C:\WINDOWS\system32\WOW.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\WOW.dat]  [N/A, N/A]
[PID: 2008][C:\WINDOWS\system32\WOW.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\WOW.dat]  [N/A, N/A]
[PID: 3984][C:\WINDOWS\system32\WOW.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\WOW.dat]  [N/A, N/A]
[PID: 144][C:\WINDOWS\system32\WOW.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\WOW.dat]  [N/A, N/A]
[PID: 2164][C:\WINDOWS\system32\WL.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\WL.dat]  [N/A, N/A]
[PID: 2772][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 460][C:\WINDOWS\system32\WL.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\WL.dat]  [N/A, N/A]
[PID: 3420][C:\WINDOWS\system32\WOW.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\WOW.dat]  [N/A, N/A]
[PID: 3040][C:\WINDOWS\system32\WL.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\WL.dat]  [N/A, N/A]
[PID: 3012][C:\WINDOWS\system32\WL.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\WL.dat]  [N/A, N/A]
[PID: 2860][C:\WINDOWS\system32\WL.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\WL.dat]  [N/A, N/A]
gototop
 
tongtree
头像
快乐黄口狮
  • 帖子:202
  • 注册: 2007-04-17
  • 来自:
发表于: 2007-05-16 11:37 | 只看楼主 短消息 资料
字号: 13楼

[PID: 4056][C:\WINDOWS\system32\WL.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\WL.dat]  [N/A, N/A]
[PID: 120][C:\WINDOWS\system32\WL.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\WL.dat]  [N/A, N/A]
[PID: 2572][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 2888][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 1324][C:\DOCUME~1\admin\LOCALS~1\Temp\upxdnd.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 1440][C:\DOCUME~1\admin\LOCALS~1\Temp\upxdnd.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 1488][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 2324][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 3660][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 6124][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 4352][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 3512][C:\WINDOWS\system32\WOW.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\WOW.dat]  [N/A, N/A]
[PID: 5700][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
[PID: 5936][C:\WINDOWS\system32\WOW.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\WOW.dat]  [N/A, N/A]
[PID: 6088][C:\WINDOWS\system32\WL.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\WL.dat]  [N/A, N/A]
[PID: 5956][C:\WINDOWS\system32\WL.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\WL.dat]  [N/A, N/A]
[PID: 2304][C:\WINDOWS\system32\dwwin.exe]  [Microsoft Corporation, 10.0.5815]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
    [C:\WINDOWS\system32\winform.dll]  [N/A, N/A]
    [C:\DOCUME~1\admin\LOCALS~1\Temp\upxdnd.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\mppds.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\cmdbs.dll]  [N/A, N/A]
[PID: 2836][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\RemoteDbg.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 3628][C:\WINDOWS\system32\drivers\scvhost.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\RemoteDbg.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\msdebug.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\PACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
    [C:\WINDOWS\system32\WANPACKET.DLL]  [CACE Technologies, 3, 1, 0, 27]
[PID: 5588][C:\IT_sreng2\SREng.EXE]  [Smallfrogs Studio, 2.3.13.690]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\RemoteDbg.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\msdebug.dll]  [N/A, N/A]
    [C:\Program Files\Rising\KakaToolBar\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8]
    [C:\WINDOWS\system32\winform.dll]  [N/A, N/A]
    [C:\DOCUME~1\admin\LOCALS~1\Temp\upxdnd.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\mppds.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\cmdbs.dll]  [N/A, N/A]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
API HOOK
N/A

==================================


[/CODE]
gototop
 
azhuo
头像
拙长孩提狮
  • 帖子:118
  • 注册: 2006-09-06
  • 来自:
发表于: 2007-05-16 11:53 | 短消息 资料
字号: 14楼

<svc><C:\DOCUME~1\admin\LOCALS~1\Temp\svchost.exe> [N/A]
<winform><C:\WINDOWS\winform.exe> [N/A]
<cmdbs><C:\WINDOWS\cmdbs.exe> [N/A]
<mppds><C:\WINDOWS\mppds.exe> [N/A]
<upxdnd><C:\DOCUME~1\admin\LOCALS~1\Temp\upxdnd.exe> [N/A]
<KVP><C:\WINDOWS\system32\drivers\svchost.exe> [N/A]
<{42A612A4-4334-4424-4234-42261A31A236}><C:\WINDOWS\system32\pdkpri.dll> [N/A](中个这个毒,你的每个盘符下应该有autorun.ini或者aotorun.inf文件,还有相关.exe文件)

Windows DHCP Service / WinDHCPsvc][Stopped/Auto Start]
<C:\WINDOWS\system32rundll32.exe windhcp.ocx,input><N/A>
[WinXP DHCP Service / WinXPDHCPsvc][Stopped/Auto Start]
<C:\WINDOWS\system32rundll32.exe xpdhcp.dll,input><N/A>
[Windows / WindowsDown000][Stopped/Auto Start]
<C:\WINDOWS\system32\000.exe><N/A>
[Win32 Debug Service / MSDebugsvc][Stopped/Auto Start]
<C:\WINDOWS\system32rundll32.exe msdebug.dll,input><N/A>
这些都是毒。
Remote Debug Service / RemoteDbg][Stopped/Auto Start]
<C:\WINDOWS\system32\rundll32.exe RemoteDbg.dll,input><Microsoft Corporation>(怀疑)
[C:\WINDOWS\system32\nwizqjsj.dll] [N/A, N/A](怀疑)

进入http://www.itrj.cn/downinfo/774.html用aotorun专杀杀一下。再恢复系统了。
gototop
 
火影忍者
头像
横据古稀狮
  • 帖子:7855
  • 注册: 2006-06-29
  • 来自:火星
发表于: 2007-05-16 14:50 | 短消息 资料
字号: 15楼

[Netgroup Packet Filter / NPF][Running/Manual Start]
<system32\DRIVERS\npf.sys><CACE Technologies>这个也删掉...
gototop
 
<<上一主题|下一主题>>
12   2  /  2  页   跳转
页面顶部
Powered by Discuz!NT