瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 电脑开机后是将监控关掉,开启后总是监控到病毒

12   2  /  2  页   跳转

电脑开机后是将监控关掉,开启后总是监控到病毒

收藏
hlzz
头像
初生襁褓狮
  • 帖子:65
  • 注册: 2006-09-17
  • 来自:
发表于: 2007-06-07 21:53 | 只看楼主 短消息 资料
字号: 11楼

[c:\program files\ati technologies\ati.ace\cli.aspect.powerplay3.graphics.dashboard.dll] [ATI Technologies Inc., 1.2.2172.1976]
[c:\program files\ati technologies\ati.ace\cli.aspect.smartgart.graphics.dashboard.dll] [ATI Technologies Inc., 1.2.2172.1964]
[c:\program files\ati technologies\ati.ace\cli.aspect.vpurecover.graphics.dashboard.dll] [ATI Technologies Inc., 1.2.2172.1955]
[c:\program files\ati technologies\ati.ace\cli.aspect.workstationconfig.graphics.dashboard.dll] [ATI Technologies Inc., 1.2.2172.1951]
[c:\program files\ati technologies\ati.ace\cli.aspect.overdrive3.graphics.dashboard.dll] [ATI Technologies Inc., 1.2.2172.1983]
[c:\program files\ati technologies\ati.ace\cli.aspect.overdrive2.graphics.dashboard.dll] [ATI Technologies Inc., 1.2.2172.1987]
[c:\program files\ati technologies\ati.ace\cli.aspect.integratedumaframebuffer.graphics.dashboard.dll] [ATI Technologies Inc., 1.2.2172.1995]
[c:\program files\ati technologies\ati.ace\cli.aspect.multivpu2.graphics.dashboard.dll] [ATI Technologies Inc., 1.2.2172.1911]
[c:\program files\ati technologies\ati.ace\cli.aspect.multivpu.graphics.dashboard.dll] [ATI Technologies Inc., 1.2.2172.1941]
[c:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25456]
[c:\program files\ati technologies\ati.ace\cli.aspect.verylargedesktop.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25447]
[c:\program files\ati technologies\ati.ace\cli.aspect.displaysoptions.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25463]
[c:\program files\ati technologies\ati.ace\cli.aspect.devicecrt.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25463]
[c:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25444]
[c:\program files\ati technologies\ati.ace\cli.aspect.devicecrt2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25450]
[c:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25444]
[c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25468]
[c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25448]
[c:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25468]
[c:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25449]
[c:\program files\ati technologies\ati.ace\cli.aspect.customformats.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25444]
[c:\program files\ati technologies\ati.ace\cli.aspect.devicetv2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25465]
[c:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25468]
[c:\program files\ati technologies\ati.ace\cli.aspect.devicedfp.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25469]
[c:\program files\ati technologies\ati.ace\cli.aspect.devicedfp2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25465]
[c:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25457]
[c:\program files\ati technologies\ati.ace\cli.aspect.radeon3dlegacy.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25466]
[c:\program files\ati technologies\ati.ace\cli.aspect.displayscolour2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25458]
[c:\program files\ati technologies\ati.ace\cli.aspect.displayscolour.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25445]
[c:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25466]
[c:\program files\ati technologies\ati.ace\cli.aspect.videooverlay.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25449]
[c:\program files\ati technologies\ati.ace\cli.aspect.powerplay3.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25450]
[c:\program files\ati technologies\ati.ace\cli.aspect.smartgart.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25446]
[c:\program files\ati technologies\ati.ace\cli.aspect.vpurecover.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25447]
[c:\program files\ati technologies\ati.ace\cli.aspect.workstationconfig.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25447]
[c:\program files\ati technologies\ati.ace\cli.aspect.overdrive3.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25467]
[c:\program files\ati technologies\ati.ace\cli.aspect.overdrive2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25456]
[c:\program files\ati technologies\ati.ace\cli.aspect.integratedumaframebuffer.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25448]
[c:\program files\ati technologies\ati.ace\cli.aspect.multivpu2.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25458]
[c:\program files\ati technologies\ati.ace\cli.aspect.multivpu.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25464]
[D:\Program Files\Rising\KakaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[C:\WINDOWS\system32\zkjjx.dll] [N/A, N/A]
[C:\WINDOWS\system32\wfdrd.dll] [N/A, N/A]
[C:\WINDOWS\system32\hreax.dll] [N/A, N/A]
[C:\WINDOWS\system32\wtrmm.dll] [N/A, N/A]
[C:\WINDOWS\system32\wgptl.dll] [N/A, N/A]
[C:\WINDOWS\system32\fksdy.dll] [N/A, N/A]
[C:\WINDOWS\system32\msport.dll] [N/A, N/A]
[C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, N/A]
[PID: 1152][C:\Program Files\ATI Technologies\ATI.ACE\cli.exe] [ATI Technologies Inc., 1.11.0.0]
[C:\WINDOWS\system32\RemoteDbg.dll] [N/A, N/A]
[C:\WINDOWS\system32\windds32.dll] [N/A, N/A]
[C:\WINDOWS\system32\WMIApiSrv.dll] [N/A, N/A]
[C:\WINDOWS\system32\netsrvcs.dll] [N/A, N/A]
[c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_6f3ea8ce\mscorlib.dll] [N/A, N/A]
[C:\Program Files\TENCENT\Adplus\Adplus.dll] [Tencent, 4, 1, 6, 61]
[C:\Program Files\Internet Explorer\PLUGINS\System64.Sys] [N/A, N/A]
[c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_887e36e7\system.windows.forms.dll] [N/A, N/A]
[c:\program files\ati technologies\ati.ace\cli.implementation.dll] [ATI Technologies Inc., 1.2.2172.1893]
[c:\program files\ati technologies\ati.ace\log.foundation.dll] [ATI Technologies Inc., 1.2.2117.25442]
[c:\program files\ati technologies\ati.ace\cli.foundation.dll] [ATI Technologies Inc., 1.2.2117.25443]
[c:\program files\ati technologies\ati.ace\log.foundation.service.dll] [ATI Technologies Inc., 1.2.2172.2072]
[c:\program files\ati technologies\ati.ace\log.foundation.shared.dll] [ATI Technologies Inc., 1.2.2117.25464]
[c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_cbb7f06a\system.dll] [N/A, N/A]
[c:\program files\ati technologies\ati.ace\cli.foundation.xmanifestation.dll] [ATI Technologies Inc., 1.2.2172.2072]
[c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_3345b3e4\system.xml.dll] [N/A, N/A]
[c:\program files\ati technologies\ati.ace\cli.component.systemtray.dll] [ATI Technologies Inc., 1.2.2172.2048]
[c:\program files\ati technologies\ati.ace\cli.caste.graphics.shared.dll] [ATI Technologies Inc., 1.2.2117.25443]
[c:\program files\ati technologies\ati.ace\dem.graphics.displaysmanager.shared.dll] [ATI Technologies Inc., 1.2.2117.25443]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[c:\program files\ati technologies\ati.ace\cli.component.runtime.dll] [ATI Technologies Inc., 1.2.2172.2073]
[c:\program files\ati technologies\ati.ace\apm.foundation.dll] [ATI Technologies Inc., 1.2.2117.25457]
[c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_7678eb9c\system.drawing.dll] [N/A, N/A]
[c:\program files\ati technologies\ati.ace\zh-chs\cli.component.systemtray.resources.dll] [ATI Technologies Inc., 1.2.2172.2048]
[D:\Program Files\Rising\KakaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
gototop
 
hlzz
头像
初生襁褓狮
  • 帖子:65
  • 注册: 2006-09-17
  • 来自:
发表于: 2007-06-07 21:54 | 只看楼主 短消息 资料
字号: 12楼

[C:\WINDOWS\system32\zkjjx.dll] [N/A, N/A]
[C:\WINDOWS\system32\wfdrd.dll] [N/A, N/A]
[C:\WINDOWS\system32\hreax.dll] [N/A, N/A]
[C:\WINDOWS\system32\wtrmm.dll] [N/A, N/A]
[C:\WINDOWS\system32\wgptl.dll] [N/A, N/A]
[C:\WINDOWS\system32\fksdy.dll] [N/A, N/A]
[C:\WINDOWS\system32\msport.dll] [N/A, N/A]
[C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, N/A]
[PID: 2492][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2900.2096 (xpsp_sp2_rc1.040311-2315)]
[C:\WINDOWS\system32\RemoteDbg.dll] [N/A, N/A]
[C:\WINDOWS\system32\windds32.dll] [N/A, N/A]
[C:\WINDOWS\system32\WMIApiSrv.dll] [N/A, N/A]
[C:\WINDOWS\system32\netsrvcs.dll] [N/A, N/A]
[C:\Program Files\TENCENT\Adplus\Adplus.dll] [Tencent, 4, 1, 6, 61]
[C:\Program Files\TENCENT\Adplus\SSAddr.dll] [Tencent, 4, 1, 6, 61]
[C:\Program Files\Internet Explorer\PLUGINS\System64.Sys] [N/A, N/A]
[C:\WINDOWS\system32\AcSignIcon.dll] [Autodesk, 16.0.0.86]
[C:\WINDOWS\system32\KakaTool.dll] [Beijing Rising Technology Co., Ltd., 2, 0, 3, 0]
[D:\Program Files\FlashGet\jccatch.dll] [www.flashget.com, 1, 8, 1, 1006]
[D:\Program Files\FlashGet\getflash.dll] [www.flashget.com, 1, 8, 1, 1002]
[D:\Program Files\Rising\KakaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[C:\WINDOWS\system32\zkjjx.dll] [N/A, N/A]
[C:\WINDOWS\system32\wfdrd.dll] [N/A, N/A]
[C:\WINDOWS\system32\hreax.dll] [N/A, N/A]
[C:\WINDOWS\system32\wtrmm.dll] [N/A, N/A]
[C:\WINDOWS\system32\wgptl.dll] [N/A, N/A]
[C:\WINDOWS\system32\fksdy.dll] [N/A, N/A]
[C:\WINDOWS\system32\msport.dll] [N/A, N/A]
[C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, N/A]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[D:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\WINDOWS\system32\WinForm.dll] [N/A, N/A]
[C:\WINDOWS\system32\MsIMMs32.dll] [N/A, N/A]
[C:\WINDOWS\system32\upxdnd.dll] [N/A, N/A]
[C:\WINDOWS\system32\cmdbcs.dll] [N/A, N/A]
[C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,7,0]
[C:\WINDOWS\system32\spxjiq.dll] [N/A, N/A]
[C:\WINDOWS\system32\FREEWB.IME] [Delphi Fan Studio, 5.1]
[D:\Program Files\freewb\plugin\date.plg] [, 1, 0, 0, 1]
[PID: 2420][C:\WINDOWS\system32\conime.exe] [Microsoft Corporation, 5.1.2600.2096 (xpsp_sp2_rc1.040311-2315)]
[C:\WINDOWS\system32\msdebug.dll] [N/A, N/A]
[C:\WINDOWS\system32\RemoteDbg.dll] [N/A, N/A]
[C:\WINDOWS\system32\windds32.dll] [N/A, N/A]
[C:\WINDOWS\system32\windhcp.ocx] [N/A, N/A]
[C:\WINDOWS\system32\WMIApiSrv.dll] [N/A, N/A]
[C:\WINDOWS\system32\netsrvcs.dll] [N/A, N/A]
[C:\Program Files\TENCENT\Adplus\Adplus.dll] [Tencent, 4, 1, 6, 61]
[C:\Program Files\Internet Explorer\PLUGINS\System64.Sys] [N/A, N/A]
[D:\Program Files\Rising\KakaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, N/A]
[PID: 1856][D:\Program Files\Rising\Rav\RavStub.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 4]
[C:\WINDOWS\system32\msdebug.dll] [N/A, N/A]
[C:\WINDOWS\system32\RemoteDbg.dll] [N/A, N/A]
[C:\WINDOWS\system32\windds32.dll] [N/A, N/A]
[C:\WINDOWS\system32\windhcp.ocx] [N/A, N/A]
[C:\WINDOWS\system32\WMIApiSrv.dll] [N/A, N/A]
[C:\WINDOWS\system32\netsrvcs.dll] [N/A, N/A]
[D:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[PID: 3576][D:\Program Files\Rising\KakaToolBar\runiep.exe] [Beijing Rising Technology Co., Ltd., 1, 0, 1, 6]
[C:\WINDOWS\system32\RemoteDbg.dll] [N/A, N/A]
[C:\WINDOWS\system32\windds32.dll] [N/A, N/A]
[C:\WINDOWS\system32\WMIApiSrv.dll] [N/A, N/A]
[C:\WINDOWS\system32\netsrvcs.dll] [N/A, N/A]
[D:\Program Files\Rising\KakaToolBar\iep_ctrl.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 4]
[D:\Program Files\Rising\KakaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[C:\Program Files\TENCENT\Adplus\Adplus.dll] [Tencent, 4, 1, 6, 61]
[C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, N/A]
[D:\Program Files\Rising\orangeaug.com] [Beijing Rising Tech. Co., Ltd., 1, 4, 6, 5]
[C:\WINDOWS\system32\RemoteDbg.dll] [N/A, N/A]
[C:\WINDOWS\system32\windds32.dll] [N/A, N/A]
[C:\WINDOWS\system32\WMIApiSrv.dll] [N/A, N/A]
[C:\WINDOWS\system32\netsrvcs.dll] [N/A, N/A]
[C:\Program Files\TENCENT\Adplus\Adplus.dll] [Tencent, 4, 1, 6, 61]
[D:\Program Files\Rising\KakaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, N/A]
[C:\WINDOWS\system32\spxjiq.dll] [N/A, N/A]
[C:\WINDOWS\system32\upxdnd.dll] [N/A, N/A]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[D:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\Program Files\Internet Explorer\PLUGINS\System64.Sys] [N/A, N/A]
[C:\WINDOWS\system32\zkjjx.dll] [N/A, N/A]
[C:\WINDOWS\system32\wfdrd.dll] [N/A, N/A]
[C:\WINDOWS\system32\wgptl.dll] [N/A, N/A]
[C:\WINDOWS\system32\fksdy.dll] [N/A, N/A]
[C:\WINDOWS\system32\msport.dll] [N/A, N/A]
[C:\WINDOWS\system32\hreax.dll] [N/A, N/A]
[C:\WINDOWS\system32\wtrmm.dll] [N/A, N/A]
[PID: 3208][D:\Program Files\Rising\SREng.EXE] [Smallfrogs Studio, 2.3.13.690]
[C:\WINDOWS\system32\RemoteDbg.dll] [N/A, N/A]
[C:\WINDOWS\system32\windds32.dll] [N/A, N/A]
[C:\WINDOWS\system32\WMIApiSrv.dll] [N/A, N/A]
[C:\WINDOWS\system32\netsrvcs.dll] [N/A, N/A]
[C:\Program Files\TENCENT\Adplus\Adplus.dll] [Tencent, 4, 1, 6, 61]
[D:\Program Files\Rising\KakaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, N/A]
[C:\WINDOWS\system32\spxjiq.dll] [N/A, N/A]
[C:\WINDOWS\system32\upxdnd.dll] [N/A, N/A]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[C:\WINDOWS\system32\wgptl.dll] [N/A, N/A]
[C:\WINDOWS\system32\fksdy.dll] [N/A, N/A]
[C:\WINDOWS\system32\msport.dll] [N/A, N/A]
[C:\WINDOWS\system32\zkjjx.dll] [N/A, N/A]
[C:\Program Files\Internet Explorer\PLUGINS\System64.Sys] [N/A, N/A]
[C:\WINDOWS\system32\wfdrd.dll] [N/A, N/A]
[C:\WINDOWS\system32\hreax.dll] [N/A, N/A]
[C:\WINDOWS\system32\wtrmm.dll] [N/A, N/A]



--------------------------------------------------------------------------------
gototop
 
hlzz
头像
初生襁褓狮
  • 帖子:65
  • 注册: 2006-09-17
  • 来自:
发表于: 2007-06-07 21:54 | 只看楼主 短消息 资料
字号: 13楼

文件关联

.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]



--------------------------------------------------------------------------------



Winsock 提供者

N/A



--------------------------------------------------------------------------------



Autorun.inf

[E:\]
[AutoRun]
open=SysAuto.exe
shellexecute=SysAuto.exe
shell\打开(&O)\command=SysAuto.exe



--------------------------------------------------------------------------------



HOSTS 文件

N/A



--------------------------------------------------------------------------------



API HOOK

N/A
gototop
 
<<上一主题|下一主题>>
12   2  /  2  页   跳转
页面顶部
Powered by Discuz!NT