瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 【求助】dgd4bs.exe和ccctvv1.exe,如何杀啊。。

12   1  /  2  页   跳转

【求助】dgd4bs.exe和ccctvv1.exe,如何杀啊。。

收藏
fly210
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-05-30
  • 来自:
发表于: 2007-05-30 20:16 | 只看楼主 短消息 资料
字号: 1楼

【求助】dgd4bs.exe和ccctvv1.exe,如何杀啊。。

dgd4bs.exe修改系统时间到2004年,另开放后门端口
ccctvv1.exe老是弹网页

我的系统是server 2003没有杀毒软件。。。卡卡干不掉它
因为里面还误中了“中文上网”那个破东西杀不掉,所以360也装不上。
郁闷死了 谁来帮我

日志

--------------
Logfile of Kaka v2. 0. 3. 0 Scan Module v1. 0. 6. 1
Scan saved at 19:52:41, on 2004-05-30
Platform: Advanced Server  (Build 3790)
MSIE: Internet Explorer v6.00  (6.00.3790.0 (srv03_rtm.030324-2048))


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page=
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=%SystemRoot%\system32\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page=http://ant.sina.union123.com/indax.html
R3 - URLSearchHook: (no name) - {A52CDDA7-0FFD-49F4-9C72-716C2A4390CE} - (no file)
F0 - system.ini: Shell=Explorer.exe netexe.exe
O1 - Hosts: 127.0.0.1      localhost
O2 - BHO: Cbho Object - {352E3B3A-CAB5-4DBC-B940-C7F84D0447D8} - C:\PROGRA~1\CNNIC\Cdn\cdndrag.dll
O2 - BHO: CdnForIE Class - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: WMHlprObj Class - {F5824EFB-728A-4726-A5A5-85A68B20EDC3} - C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll
O2 - BHO: TBSB04805 Class - {FA91DE7A-D85F-4F35-8204-4D7C957A154B} - C:\Program Files\工具栏(T)\UUPlayer.dll
O3 - Toolbar: @msdxmLC.dll,-1@2052,电台(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: 工具栏(T) - {42A2F05F-E171-4CEF-852F-02475F698C24} - C:\Program Files\工具栏(T)\UUPlayer.dll
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [CdnCtr] C:\Program Files\CNNIC\Cdn\cdnup.exe
O4 - HKLM\..\Run: [runeip] F:\Program Files\Rising\AntiSpyware\runiep.exe
O4 - HKLM\..\RunOnce: [KKDelay] F:\Program Files\Rising\AntiSpyware\RunOnce.exe
O4 - Startup: desktop.ini =
O4 - Global Startup: desktop.ini =
O4 - Global Startup: 服务管理器.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
O8 - Extra context menu item: 上传到QQ网络硬盘 - F:\软件\AddToNetDisk.htm
O8 - Extra context menu item: 使用网际快车下载 - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: 使用网际快车下载全部链接 - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: 添加到QQ自定义面板 - F:\软件\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - F:\软件\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - F:\软件\SendMMS.htm
O9 - Extra Button: 新浪UC - {2253922F-1B26-4C74-8B57-E3AEE748DBB8} - F:\Program Files\sina\UC\uc.exe
O9 - Extra Button: 工具栏(T) - {42A2F05F-E171-4CEF-852F-02475F698C24} - C:\Program Files\工具栏(T)\UUPlayer.dll
O9 - Extra 'Tools' menuitem: 工具栏(T) - {42A2F05F-E171-4CEF-852F-02475F698C24} - C:\Program Files\工具栏(T)\UUPlayer.dll
O9 - Extra Button: 中文上网 - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O9 - Extra 'Tools' menuitem: 中文上网 - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O9 - Extra Button: @shdoclc.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra Button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\qq\QQ.EXE (file missing)
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\qq\QQ.EXE (file missing)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O10 - Unknown file in Winsock LSP: C:\WINDOWS\system32\cdnns.dll
O11 - Options group: [CDNCLIENT]  中文上网
O14 - IERESET.INF: START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
O16 - DPF: {8686F2A6-DC01-4E8F-BDE3-DCC7DBBAD6AE} (163Uploader Control) - http://photo.163.com/163Uploader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5ADB111-EF03-4E38-8DFF-5CF7FC91A39A}: NameServer = 202.102.227.68,202.102.224.68
O18 - Filter : application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\mscoree.dll
O18 - Filter : application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\mscoree.dll
O18 - Filter : application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\mscoree.dll
O18 - Protocol: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll
O18 - Protocol: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ipp - (no CLSID) - (no file)
O18 - Protocol: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll
O18 - Protocol: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll
O18 - Protocol: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll
O18 - Protocol: msdaipp - (no CLSID) - (no file)
O18 - Protocol: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll
O18 - Protocol: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: vnd.ms.radio - {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\system32\msdxm.ocx
O18 - Protocol: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll
O23 - Service: Human Interface Device Access (HidServ) -  - C:\WINDOWS\system32\svchost.exe -k netsvcs
O23 - Service: Macromedia Licensing Service (Macromedia Licensing Service) -  - "C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"

最后编辑2007-06-01 20:47:02
分享到:
gototop
 
fly210
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-05-30
  • 来自:
发表于: 2007-05-31 09:59 | 只看楼主 短消息 资料
字号: 2楼

.............
gototop
 
湘m浪子
头像
自信弱冠狮
  • 帖子:307
  • 注册: 2007-04-08
  • 来自:
发表于: 2007-05-31 10:33 | 短消息 资料
字号: 3楼

这个不会看

引用高手的话

下载 System Repair Engineer,
http://www.kztechs.com/sreng/download.html
1 解压缩sreng2.zip
2 运行SREng.exe
3 智能扫描=》扫描=》保存报告
4 把日志中的报告完整拷贝贴上来,不要修改
友情提示:
扫描前关闭所有手工打开的软件和窗口,扫描后将日志发上来。但请不要用附件形式贴。
注意在没有进一步提示前,勿要胡乱修复,否则系统可能变的情况更糟。

如果发现SREng.exe运行无反应或者不能运行或者扫描出错,你可以将SREng.exe重命名为SREng.com(SREng.scr\SREng.bat\SREng.pif)或者abc.exe运行.
gototop
 
newcenturymoon
头像
社区嘉宾
  • 帖子:15158
  • 注册: 2005-08-03
  • 来自:
论坛8周年活动礼物幸运草
发表于: 2007-05-31 10:41 | 短消息 资料
字号: 4楼

dgd4bs.exe安全模式删除他
gototop
 
fly210
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-05-30
  • 来自:
发表于: 2007-05-31 19:40 | 只看楼主 短消息 资料
字号: 5楼

dgd4bs.exe跟ccctvv1.exe在安全模式下删掉启动后还有.
而且还会蓝屏?(0x0000008e (0xc0000005, 0x80589b63, 0xb9c97924, 0x00000000))

还有那个破中文上网,也弄不掉。
重贴遍日志,高手帮我。。。。
gototop
 
fly210
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-05-30
  • 来自:
发表于: 2007-05-31 19:44 | 只看楼主 短消息 资料
字号: 6楼

[CODE]

2007-05-31,19:20:40

System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)

Windows Server 2003 Enterprise Edition  (Build 3790) - 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Windows Publisher]
    <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [(Verified)Microsoft Windows Publisher]
    <CdnCtr><C:\Program Files\CNNIC\Cdn\cdnup.exe>  [CNNIC]
    <runeip><F:\Program Files\Rising\AntiSpyware\runiep.exe>  [Beijing Rising Technology Co., Ltd.]
    <System><C:\Program Files\Common Files\system\Updaterun.exe>  []
    <renewup><C:\Program Files\CNNIC\Cdn\cdnrenew.exe>  [CNNIC]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <9><C:\WINDOWS\system32\Ravdm.exe>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Publisher]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><%SystemRoot%\system32\logonui.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{A6011F8F-A7F8-49AA-9ADA-49127D43138F}><>  [N/A]
    <{754FB7D8-B8FE-4810-B363-A788CD060F1F}><>  [N/A]
    <{1496D5ED-7A09-46D0-8C92-B8E71A4304DF}><C:\WINDOWS\system32\msacn.dll>  []

==================================
启动文件夹
[服务管理器]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\服务管理器.lnk --> C:\PROGRA~1\MICROS~4\80\Tools\Binn\sqlmangr.exe [Microsoft Corporation]><N>

==================================
服务
[5D722C4 / 5D722C4][Stopped/Auto Start]
  <C:\WINDOWS\system32\EE128630.EXE -g><Microsoft Corporation>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[System Event Logger / iSPONER][Running/Auto Start]
  <C:\WINDOWS\SYSTEM32\RUNDLLFOROUR.EXE C:\WINDOWS\SYSTEM32\WBEM\JGUJW.DLL,Export 1087><Microsoft Corporation>
[kkdj3sdf3 / kkdj3sdf3][Stopped/Auto Start]
  <C:\WINDOWS\system32\kkdj3sdf3.exe -j><Microsoft Corporation>
[ks8j3jsisd / ks8j3jsisd][Stopped/Auto Start]
  <C:\WINDOWS\system32\ks8j3jsisd.exe -j><Microsoft Corporation>
[Macromedia Licensing Service / Macromedia Licensing Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><>
[Microsoft Search / MSSEARCH][Running/Auto Start]
  <"C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe"><Microsoft Corporation>
[MSSQLSERVER / MSSQLSERVER][Running/Auto Start]
  <C:\PROGRA~1\MICROS~4\MSSQL\binn\sqlservr.exe><Microsoft Corporation>
[MSSQLServerADHelper / MSSQLServerADHelper][Stopped/Manual Start]
  <C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe><Microsoft Corporation>
[Remote Registry Protect / Relations][Running/Auto Start]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\tyuij.dll><Microsoft Corporation>
[SQLSERVERAGENT / SQLSERVERAGENT][Stopped/Manual Start]
  <C:\PROGRA~1\MICROS~4\MSSQL\binn\sqlagent.exe><Microsoft Corporation>

==================================
驱动程序
[aajiiehf / aajiiehf][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\aajiiehf.sys><N/A>
[acajjdgi / acajjdgi][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\acajjdgi.sys><N/A>
[agegaade / agegaade][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\agegaade.sys><N/A>
[ahebdgdi / ahebdgdi][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ahebdgdi.sys><N/A>
[ajhchegd / ajhchegd][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ajhchegd.sys><N/A>
[ajhjadji / ajhjadji][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ajhjadji.sys><N/A>
[bbfjebbd / bbfjebbd][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\bbfjebbd.sys><N/A>
[bebhiaab / bebhiaab][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\bebhiaab.sys><N/A>
[bfdfhada / bfdfhada][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\bfdfhada.sys><N/A>
[bfhjhgfh / bfhjhgfh][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\bfhjhgfh.sys><N/A>
[bggideea / bggideea][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\bggideea.sys><N/A>
[bgjiajdi / bgjiajdi][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\bgjiajdi.sys><N/A>
[bjahhajf / bjahhajf][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\bjahhajf.sys><N/A>
[bjdecihh / bjdecihh][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\bjdecihh.sys><N/A>
[cdddejhc / cdddejhc][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\cdddejhc.sys><N/A>
[cdnprot / cdnprot][Running/Boot Start]
  <\SystemRoot\system32\drivers\cdnprot.sys><中国互联网络信息中心(CNNIC)>
[cdntran / cdntran][Running/Auto Start]
  <system32\drivers\cdntran.sys><CNNIC>
[ddbijhej / ddbijhej][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ddbijhej.sys><N/A>
[dhjgggab / dhjgggab][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\dhjgggab.sys><N/A>
[ecdfabhb / ecdfabhb][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ecdfabhb.sys><N/A>
[echeghgc / echeghgc][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\echeghgc.sys><N/A>
[eefedacf / eefedacf][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\eefedacf.sys><N/A>
[ehahcegi / ehahcegi][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ehahcegi.sys><N/A>
[ehaheiai / ehaheiai][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ehaheiai.sys><N/A>
[ehdbeifd / ehdbeifd][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ehdbeifd.sys><N/A>
[ehieajie / ehieajie][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ehieajie.sys><N/A>
[eiafjidi / eiafjidi][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\eiafjidi.sys><N/A>
[eibbgeaf / eibbgeaf][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\eibbgeaf.sys><N/A>
[eidhgdcd / eidhgdcd][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\eidhgdcd.sys><N/A>
[ejeghfji / ejeghfji][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ejeghfji.sys><N/A>
[fcafebfe / fcafebfe][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\fcafebfe.sys><N/A>
[fcbheibc / fcbheibc][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\fcbheibc.sys><N/A>
[fehicigi / fehicigi][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\fehicigi.sys><N/A>
[fgcaabhj / fgcaabhj][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\fgcaabhj.sys><N/A>
[fgfgcidj / fgfgcidj][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\fgfgcidj.sys><N/A>
[fhiehjcd / fhiehjcd][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\fhiehjcd.sys><N/A>
[fiafejgg / fiafejgg][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\fiafejgg.sys><N/A>
[gedbhcha / gedbhcha][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\gedbhcha.sys><N/A>
[gfjdfghj / gfjdfghj][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\gfjdfghj.sys><N/A>
[ggaecjfe / ggaecjfe][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ggaecjfe.sys><N/A>
[ghhaefhd / ghhaefhd][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ghhaefhd.sys><N/A>
[giefcjig / giefcjig][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\giefcjig.sys><N/A>
[hbjjafac / hbjjafac][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\hbjjafac.sys><N/A>
[Microsoft UAA Function Driver for High Definition Audio Service / HdAudAddService][Running/Manual Start]
  <system32\drivers\HdAudio.sys><Windows (R) Server 2003 DDK provider>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[hdjiajbi / hdjiajbi][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\hdjiajbi.sys><N/A>
[heicjdch / heicjdch][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\heicjdch.sys><N/A>
[hfhfhfdb / hfhfhfdb][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\hfhfhfdb.sys><N/A>
[hhggiiee / hhggiiee][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\hhggiiee.sys><N/A>
[hiiaggig / hiiaggig][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\hiiaggig.sys><N/A>
[icbgdcaf / icbgdcaf][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\icbgdcaf.sys><N/A>
[iejdcijd / iejdcijd][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\iejdcijd.sys><N/A>
[ifbeggjj / ifbeggjj][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ifbeggjj.sys><N/A>
[ifbgfdef / ifbgfdef][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ifbgfdef.sys><N/A>
[ifcadhfg / ifcadhfg][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\ifcadhfg.sys><N/A>
[IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start]
  <system32\DRIVERS\ipinip.sys><N/A>
[jagdifga / jagdifga][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\jagdifga.sys><N/A>
[jbfijadh / jbfijadh][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\jbfijadh.sys><N/A>
[jceeiiic / jceeiiic][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\jceeiiic.sys><N/A>
[jcgdihja / jcgdihja][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\jcgdihja.sys><N/A>
[jhicjbbi / jhicjbbi][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\jhicjbbi.sys><N/A>
[jifeiega / jifeiega][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\jifeiega.sys><N/A>
[jjaddbdg / jjaddbdg][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\jjaddbdg.sys><N/A>
[ATK0110 ACPI UTILITY / MTsensor][Running/Manual Start]
  <system32\DRIVERS\ASACPI.sys><>
[npkcrypt / npkcrypt][Stopped/Auto Start]
  <\??\C:\Program Files\Tencent\qq\npkcrypt.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsAntiSpyware / RsAntiSpyware][Running/Boot Start]
  <\SystemRoot\system32\drivers\RsBoot.sys><Beijing Rising>
[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]
  <system32\DRIVERS\Rtenicxp.sys><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><N/A>
gototop
 
fly210
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-05-30
  • 来自:
发表于: 2007-05-31 19:47 | 只看楼主 短消息 资料
字号: 7楼

==================================
浏览器加载项
[CAdLogic Object]
  {11F09AFD-75AD-4E51-AB43-E09E9351CE16} <C:\Program Files\Common Files\CPUSH\cpush.dll, >
[Cbho Object]
  {352E3B3A-CAB5-4DBC-B940-C7F84D0447D8} <C:\PROGRA~1\CNNIC\Cdn\cdndrag.dll, CNNIC>
[腾讯QQ]
  {54EBD53A-9BC1-480B-966A-843A333CA162} <C:\WINDOWS\QQIEHelper.dll, N/A>
[CdnForIE Class]
  {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[IeCatch2 Class]
  {A5366673-E8CA-11D3-9CD9-0090271D075B} <C:\PROGRA~1\FlashGet\jccatch.dll, Amaze Soft>
[WMHlprObj Class]
  {F5824EFB-728A-4726-A5A5-85A68B20EDC3} <C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll, CNNIC>
[TBSB04805 Class]
  {FA91DE7A-D85F-4F35-8204-4D7C957A154B} <C:\Program Files\工具栏(T)\UUPlayer.dll, >
[新浪UC]
  {2253922F-1B26-4C74-8B57-E3AEE748DBB8} <F:\Program Files\sina\UC\uc.exe, 北京新浪信息技术有限公司>
[工具栏(T)]
  {42A2F05F-E171-4CEF-852F-02475F698C24} <C:\Program Files\工具栏(T)\UUPlayer.dll, >
[CdnForIE Class]
  {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[@shdoclc.dll,-866]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <C:\Program Files\Tencent\qq\QQ.EXE, N/A>
[FlashGet]
  {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\PROGRA~1\FlashGet\flashget.exe, Amaze Soft>
[@msdxmLC.dll,-1@2052,电台(&R)]
  {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\system32\msdxm.ocx, Microsoft Corporation>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FlashGet\fgiebar.dll, Amaze Soft>
[工具栏(T)]
  {42A2F05F-E171-4CEF-852F-02475F698C24} <C:\Program Files\工具栏(T)\UUPlayer.dll, >
[163Uploader Control]
  {8686F2A6-DC01-4E8F-BDE3-DCC7DBBAD6AE} <C:\WINDOWS\system32\163UPL~1.OCX, N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9c.ocx, Adobe Systems, Inc.>
[上传到QQ网络硬盘]
  <F:\软件\AddToNetDisk.htm, N/A>
[使用网际快车下载]
  <C:\Program Files\FlashGet\jc_link.htm, N/A>
[使用网际快车下载全部链接]
  <C:\Program Files\FlashGet\jc_all.htm, N/A>
[添加到QQ自定义面板]
  <F:\软件\AddPanel.htm, N/A>
[添加到QQ表情]
  <F:\软件\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <F:\软件\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 436][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 484][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 508][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
    [C:\WINDOWS\system32\D7046CE.DLL]  [Microsoft Corporation, ]
    [C:\WINDOWS\system32\kkdj3sdf3.dll]  [Microsoft Corporation, ]
    [C:\WINDOWS\system32\df33sdg.dll]  [Microsoft Corporation, ]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 552][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 580][C:\WINDOWS\system32\savedump.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 588][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 748][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
[PID: 796][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 1028][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 1076][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 1092][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
    [c:\windows\system32\tyuij.dll]  [Microsoft Corporation, 5.1.2600.0]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
[PID: 1276][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
    [C:\WINDOWS\system32\spool\PRTPROCS\W32X86\vprproc.dll]  [Windows (R) 2000 DDK provider, 5.00.2195.1620]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
[PID: 1304][C:\WINDOWS\system32\msdtc.exe]  [Microsoft Corporation, 2001.12.4720.0 (srv03_rtm.030324-2048)]
[PID: 1556][C:\WINDOWS\SYSTEM32\RUNDLLFOROUR.EXE]  [Microsoft Corporation, 5.00.2134.1]
    [C:\WINDOWS\SYSTEM32\WBEM\JGUJW.DLL]  [Microsoft Corporation, 5, 1, 2600, 2709]
[PID: 1656][C:\PROGRA~1\MICROS~4\MSSQL\binn\sqlservr.exe]  [Microsoft Corporation, 2000.080.0760.00]
    [C:\PROGRA~1\MICROS~4\MSSQL\binn\OPENDS60.DLL]  [Microsoft Corporation, 2000.080.0194.00]
    [C:\PROGRA~1\MICROS~4\MSSQL\binn\UMS.DLL]  [Microsoft Corporation, 2000.080.0760.00]
    [C:\PROGRA~1\MICROS~4\MSSQL\binn\SQLSORT.DLL]  [Microsoft Corporation, 2000.080.0760.00]
    [C:\PROGRA~1\MICROS~4\MSSQL\binn\Resources\2052\sqlevn70.RLL]  [Microsoft Corporation, 2000.080.0760.00]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
    [C:\PROGRA~1\MICROS~4\MSSQL\binn\SSNETLIB.dll]  [Microsoft Corporation, 2000.080.0760.00]
    [C:\PROGRA~1\MICROS~4\MSSQL\binn\SSNMPN70.dll]  [Microsoft Corporation, 2000.080.0534.00]
    [C:\PROGRA~1\MICROS~4\MSSQL\binn\SSmsLPCn.dll]  [Microsoft Corporation, 2000.080.0760.00]
    [C:\PROGRA~1\MICROS~4\MSSQL\binn\SQLFTQRY.DLL]  [Microsoft Corporation, 2000.080.0760.00]
    [C:\Program Files\Common Files\System\Ole DB\sqloledb.dll]  [Microsoft Corporation, 2000.085.1022.00 (srv03_rtm.030324-2048)]
[PID: 1736][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 1820][C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe]  [Microsoft Corporation, 9.107.8320.0]
    [C:\Program Files\Common Files\System\MSSearch\Bin\mssws.dll]  [Microsoft Corporation, 9.107.8320.0]
    [C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\mssrch.dll]  [Microsoft Corporation, 9.107.8320.0]
    [C:\Program Files\Common Files\System\MSSearch\Bin\tquery.dll]  [Microsoft Corporation, 9.107.8320.0]
    [C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\propdefs.dll]  [Microsoft Corporation, 9.107.8320.0]
    [C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\srchidx.dll]  [Microsoft Corporation, 9.107.8320.0]
[PID: 2000][C:\WINDOWS\system32\Dfssvc.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 996][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.3790.0 (srv03_rtm.030324-2048)]
    [C:\WINDOWS\KB9269O6.log]  [N/A, ]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\WINDOWS\system32\wscsv.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\D7046CE.DLL]  [Microsoft Corporation, ]
    [C:\WINDOWS\system32\kkdj3sdf3.dll]  [Microsoft Corporation, ]
    [C:\WINDOWS\system32\df33sdg.dll]  [Microsoft Corporation, ]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 996][C:\WINDOWS\netdde32.exe]  [N/A, ]
[PID: 996][C:\WINDOWS\system32\netdde32.exe]  [N/A, ]
    [C:\WINDOWS\system32\msacn.dll]  [N/A, ]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
[PID: 1004][C:\Program Files\CNNIC\Cdn\cdnup.exe]  [CNNIC, 2, 5, 0, 8]
    [C:\Program Files\CNNIC\Cdn\cdnuplib.dll]  [CNNIC, 2, 5, 0, 11]
    [C:\Program Files\CNNIC\Cdn\cdnprh.dll]  [CNNIC, 2, 4, 0, 7]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdntdns.dll]  [CNNIC, 2, 2, 0, 3]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
[PID: 2228][C:\WINDOWS\system32\dgd4bs.exe]  [N/A, ]
    [C:\WINDOWS\system32\MSVBVM60.DLL]  [Microsoft Corporation, 6.00.9690]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
[PID: 2268][C:\WINDOWS\system32\dgd4bs.exe]  [N/A, ]
    [C:\WINDOWS\system32\MSVBVM60.DLL]  [Microsoft Corporation, 6.00.9690]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
    [C:\WINDOWS\system32\msacn.dll]  [N/A, ]
[PID: 2328][F:\Program Files\Rising\AntiSpyware\runiep.exe]  [Beijing Rising Technology Co., Ltd., 1, 0, 1, 6]
    [F:\Program Files\Rising\AntiSpyware\iep_ctrl.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 4]
gototop
 
fly210
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-05-30
  • 来自:
发表于: 2007-05-31 19:48 | 只看楼主 短消息 资料
字号: 8楼


  [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
[PID: 2336][C:\Program Files\Common Files\system\Updaterun.exe]  [N/A, ]
[PID: 2364][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
[PID: 2392][C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe]  [Microsoft Corporation, 2000.080.0760.00]
    [C:\WINDOWS\system32\SQLUNIRL.dll]  [Microsoft Corporation, 2000.080.0728.00]
    [C:\Program Files\Microsoft SQL Server\80\Tools\Binn\W95SCM.dll]  [Microsoft Corporation, 2000.080.0760.00]
    [C:\Program Files\Microsoft SQL Server\80\Tools\Binn\SQLSVC.dll]  [Microsoft Corporation, 2000.080.0760.00]
    [C:\WINDOWS\system32\odbcbcp.dll]  [Microsoft Corporation, 2000.085.1022.00 (srv03_rtm.030324-2048)]
    [C:\Program Files\Microsoft SQL Server\80\Tools\Binn\SQLRESLD.dll]  [Microsoft Corporation, 2000.080.0382.00]
    [C:\Program Files\Microsoft SQL Server\80\Tools\Binn\Resources\2052\SQLSVC.RLL]  [Microsoft Corporation, 2000.080.0194.00]
    [C:\Program Files\Microsoft SQL Server\80\Tools\Binn\Resources\2052\sqlmangr.RLL]  [Microsoft Corporation, 2000.080.0194.00]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
[PID: 2468][C:\WINDOWS\system32\ccctvv1.exe]  [N/A, ]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
[PID: 2624][C:\WINDOWS\system32\notepad.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
[PID: 2716][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.3790.0 (srv03_rtm.030324-2048)]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdnuplib.dll]  [CNNIC, 2, 5, 0, 11]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [C:\Program Files\工具栏(T)\UUPlayer.dll]  [, 3,5,0,0]
    [C:\Program Files\工具栏(T)\tbhelper.dll]  [, 3, 5, 0, 0]
    [C:\Program Files\Common Files\CPUSH\cpush.dll]  [, 1.0.3.6]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
    [C:\PROGRA~1\CNNIC\Cdn\cdndrag.dll]  [CNNIC, 1.0.0.7]
    [C:\WINDOWS\QQIEHelper.dll]  [N/A, ]
    [C:\PROGRA~1\FlashGet\jccatch.dll]  [Amaze Soft, 1, 1, 4, 0]
    [C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll]  [CNNIC, 1, 1, 0, 0]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
[PID: 2728][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.3790.0 (srv03_rtm.030324-2048)]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdnuplib.dll]  [CNNIC, 2, 5, 0, 11]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [C:\Program Files\工具栏(T)\UUPlayer.dll]  [, 3,5,0,0]
    [C:\Program Files\工具栏(T)\tbhelper.dll]  [, 3, 5, 0, 0]
    [C:\Program Files\Common Files\CPUSH\cpush.dll]  [, 1.0.3.6]
    [C:\PROGRA~1\CNNIC\Cdn\cdndrag.dll]  [CNNIC, 1.0.0.7]
    [C:\WINDOWS\QQIEHelper.dll]  [N/A, ]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
    [C:\PROGRA~1\FlashGet\jccatch.dll]  [Amaze Soft, 1, 1, 4, 0]
    [C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll]  [CNNIC, 1, 1, 0, 0]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
[PID: 2948][C:\WINDOWS\system32\wuauclt.exe]  [Microsoft Corporation, 5.4.3790.0 (srv03_rtm.030324-2048)]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
[PID: 3164][C:\Documents and Settings\Administrator\桌面\SREng.EXE]  [Smallfrogs Studio, 2.4.12.806]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
[PID: 3208][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.3790.0 (srv03_rtm.030324-2048)]
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 1, 0, 12]
    [C:\Program Files\CNNIC\Cdn\cdnuplib.dll]  [CNNIC, 2, 5, 0, 11]
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 5, 0, 0]
    [C:\Program Files\工具栏(T)\UUPlayer.dll]  [, 3,5,0,0]
    [C:\Program Files\工具栏(T)\tbhelper.dll]  [, 3, 5, 0, 0]
    [C:\Program Files\Common Files\CPUSH\cpush.dll]  [, 1.0.3.6]
    [C:\PROGRA~1\CNNIC\Cdn\cdndrag.dll]  [CNNIC, 1.0.0.7]
    [C:\WINDOWS\system32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
    [C:\WINDOWS\QQIEHelper.dll]  [N/A, ]
    [C:\PROGRA~1\FlashGet\jccatch.dll]  [Amaze Soft, 1, 1, 4, 0]
    [C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll]  [CNNIC, 1, 1, 0, 0]
    [F:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\hreax.dll]  [N/A, ]
    [C:\WINDOWS\system32\wtrmm.dll]  [N/A, ]
    [C:\WINDOWS\system32\wgptl.dll]  [N/A, ]
    [C:\WINDOWS\system32\fksdy.dll]  [N/A, ]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  Error. ["C:\Program Files\Macromedia\Dreamweaver MX 2004\Dreamweaver.exe" "%1"]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================


[/CODE]
gototop
 
只限捞仁客
头像
初生襁褓狮
  • 帖子:45
  • 注册: 2007-05-03
  • 来自:
发表于: 2007-05-31 20:01 | 短消息 资料
字号: 9楼

用魔法兔子.
gototop
 
fly210
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-05-30
  • 来自:
发表于: 2007-06-01 10:03 | 只看楼主 短消息 资料
字号: 10楼

不行,会蓝屏。。。。
gototop
 
<<上一主题|下一主题>>
12   1  /  2  页   跳转
页面顶部
Powered by Discuz!NT