瑞星监控被禁用,小伞电脑开机是显示绿色的,几秒钟后就成了红伞,半分钟左右后变成黄伞,只有网页监控可用,试了很多方法了都不行,重装了瑞星还是这样,请高手帮忙解决,谢谢。
瑞星卡卡电脑诊断日志 v1.20 (2007-7-7 20:45:51) 北京瑞星科技股份有限公司
注释: [A]表示该文件存在自启动关联;
[M]表示该文件在内存中;
+ 注册表自运行项目
+ Win32 Services
+ HKLM\System\CurrentControlSet\Services
Adobe LM Service
[A ] 1. c:\program files\common files\adobe systems shared\service\adobelmsvc.exe
aspnet_state
[A ] 2. c:\windows\microsoft.net\framework\v1.1.4322\aspnet_state.exe
AVP
[A ] 3. d:\program files\kaspersky lab\kaspersky anti-virus 6.0\avp.exe
gusvc
[A ] 4. c:\program files\google\common\google updater\googleupdaterservice.exe
ose
[A ] 5. c:\program files\common files\microsoft shared\source engine\ose.exe
RfwProxySrv
[A ] 6. c:\program files\rising\rfw\rfwproxy.exe
RfwService
[A ] 7. c:\program files\rising\rfw\rfwsrv.exe
RichVideo
[AM] 8. c:\program files\cyberlink\shared files\richvideo.exe
RpcS
[AM] 9. c:\windows\system32\rpcs.exe
RsCCenter
[AM] 10. c:\program files\rising\rav\ccenter.exe
RsRavMon
[AM] 11. c:\program files\rising\rav\ravmond.exe
StarWindService
[AM] 12. d:\alcohol 120\starwind\starwindservice.exe
UleadBurningHelper
[AM] 13. c:\program files\common files\ulead systems\dvd\ulcdrsvr.exe
UMWdf
[AM] 14. c:\windows\system32\wdfmgr.exe
WMConnectCDS
[A ] 15. c:\program files\windows media connect 2\wmccds.exe
+ Kernel Drivers
+ HKLM\System\CurrentControlSet\Services
ALCXSENS
[A ] 16. c:\windows\system32\drivers\alcxsens.sys
ALCXWDM
[A ] 17. c:\windows\system32\drivers\alcxwdm.sys
arp8023
[A ] 18. c:\windows\system32\drivers\arp8023.sys
BaseTDI
[A ] 19. c:\windows\system32\drivers\basetdi.sys
BHDCKEY
[A ] 20. c:\windows\system32\drivers\usbdriver.sys
ExpScaner
[A ] 21. c:\program files\rising\rav\expscan.sys
HookCont
[A ] 22. c:\program files\rising\rav\hookcont.sys
HookReg
[A ] 23. c:\program files\rising\rav\hookreg.sys
HookSys
[A ] 24. c:\program files\rising\rav\hooksys.sys
HookUrl
[A ] 25. c:\program files\rising\rfw\hookurl.sys
kl1
[A ] 26. c:\windows\system32\drivers\kl1.sys
klif
[A ] 27. c:\windows\system32\drivers\klif.sys
MEMSCAN
[A ] 28. c:\program files\rising\rav\memscan.sys
nbfyy
[A ] 29. c:\windows\system32\drivers\nbfyy.sys
NPF
[A ] 30. c:\windows\system32\drivers\npf.sys
npkcrypt
[A ] 31. c:\windows\system32\qqedit\npkcrypt.sys
pfc
[A ] 32. c:\windows\system32\drivers\pfc.sys
RsAntiSpyware
[A ] 33. c:\windows\system32\drivers\rsboot.sys
RsFwDrv
[A ] 34. c:\program files\rising\rfw\rsfwdrv.sys
RsNTGDI
[A ] 35. c:\windows\system32\drivers\rsntgdi.sys
RSPPSYS
[A ] 36. c:\program files\rising\rav\rsppsys.sys
Secdrv
[A ] 37. c:\windows\system32\drivers\secdrv.sys
SNPSTD3
[A ] 38. c:\windows\system32\drivers\snpstd3.sys
sptd
[A ] 39. c:\windows\system32\drivers\sptd.sys
SVKP
[A ] 40. c:\windows\system32\svkp.sys
syswav
[A ] 41. c:\windows\system32\drivers\syswav.sys
TSP
[A ] 27. c:\windows\system32\drivers\klif.sys
usb2vcom
[A ] 42. c:\windows\system32\drivers\usb2vcom.sys
vaxscsi
[A ] 43. c:\windows\system32\drivers\vaxscsi.sys
+ Winlogon
+ HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
klogon
[AM] 44. c:\windows\system32\klogon.dll
+ Explorer
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Filter
application/octet-stream
[A ] 45. c:\windows\system32\mscoree.dll
application/x-complus
[A ] 45. c:\windows\system32\mscoree.dll
application/x-msdownload
[A ] 45. c:\windows\system32\mscoree.dll
text/xml
[A ] 46. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Handler
mso-offdap
[A ] 47. c:\program files\common files\microsoft shared\web components\10\owc10.dll
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
HyperTerminal Icon Ext
[A ] 48. c:\windows\system32\hticons.dll
Fusion Cache
[A ] 45. c:\windows\system32\mscoree.dll
WinRAR shell extension
[A ] 49. d:\winrar\rarext.dll
Microsoft Office HTML Icon Handler
[AM] 50. d:\microsoft office\office11\msohev.dll
Web Folders
[A ] 51. c:\program files\common files\microsoft shared\web folders\msonsext.dll
AlcoholShellEx
[A ] 52. d:\alcohol 120\axshlex.dll
RISING
[A ] 53. c:\windows\system32\ravext.dll
Web Anti-Virus statistics
[A ] 54. d:\program files\kaspersky lab\kaspersky anti-virus 6.0\scieplugin.dll
+ Logon
+ HKLM\Software\Microsoft\Windows\CurrentVersion\Run
BHDCRegC
[AM] 55. c:\windows\system32\bhdcregc.exe
RfwMain
[A ] 56. c:\program files\rising\rfw\rfwmain.exe
runeip
[AM] 57. d:\rising\rising\runiep.exe
RavTask
[AM] 58. c:\program files\rising\rav\ravtask.exe
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
KKDelay
[A ] 59. d:\rising\rising\runonce.exe
+ Boot Execute
+ HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order
BootExecute
[A ] 60. c:\windows\system32\bsmain.exe
[A ] 61. c:\windows\system32\kknative.exe
+ Image Hijacks
+ HKCR\.html
htmlfile\Edit\Command
[A ] 62. d:\microsoft office\office11\msohtmed.exe
htmlfile\Print\Command
[A ] 62. d:\microsoft office\office11\msohtmed.exe
+ HKCR\.htm
htmlfile\Edit\Command
[A ] 62. d:\microsoft office\office11\msohtmed.exe
htmlfile\Print\Command
[A ] 62. d:\microsoft office\office11\msohtmed.exe
+ 系统活动模块
+ 000000c8(200) IEXPLORE.EXE
00EB0000[00029200]
[ M] 63. c:\windows\system32\rpcs.dll
325C0000[00012000]
[AM] 50. d:\microsoft office\office11\msohev.dll
+ 000000f4(244) StarWindService.exe
00400000[00043000]
[AM] 12. d:\alcohol 120\starwind\starwindservice.exe
+ 00000120(288) svchost.exe
+ 00000130(304) ULCDRSvr.exe
00400000[0000E000]
[AM] 13. c:\program files\common files\ulead systems\dvd\ulcdrsvr.exe
+ 00000164(356) wdfmgr.exe
01000000[0000C000]
[AM] 14. c:\windows\system32\wdfmgr.exe
+ 0000018c(396) Ras.exe
00400000[00147000]
[ M] 64. d:\rising\rising\ras.exe
10000000[000A0000]
[ M] 65. d:\rising\rising\rasgui.dll
015C0000[0001B000]
[ M] 66. d:\rising\rising\ieprot.dll
01870000[0002F000]
[ M] 67. d:\rising\rising\engine.dll
019A0000[00012000]
[ M] 68. d:\rising\rising\zip.dll
72C80000[00008000]
[ M] 69. c:\windows\system32\msacm32.drv
+ 00000248(584) smss.exe
+ 0000027c(636) svchost.exe
+ 00000284(644) csrss.exe
+ 000002a0(672) winlogon.exe
10000000[00033000]
[AM] 44. c:\windows\system32\klogon.dll
72C80000[00008000]
[ M] 69. c:\windows\system32\msacm32.drv
+ 000002cc(716) services.exe
+ 000002d8(728) lsass.exe
+ 0000037c(892) svchost.exe
+ 000003b8(952) svchost.exe
+ 0000040c(1036) CCenter.exe
00400000[0001E000]
[AM] 10. c:\program files\rising\rav\ccenter.exe
+ 00000420(1056) svchost.exe
+ 00000450(1104) svchost.exe
+ 00000468(1128) Ravmond.exe
00400000[0004E000]
[AM] 11. c:\program files\rising\rav\ravmond.exe
10000000[0002E000]
[ M] 70. c:\program files\rising\rav\bwlist.dll
00730000[0001B000]
[ M] 71. c:\program files\rising\rav\rscommx.dll
00B60000[0000F000]
[ M] 72. c:\program files\rising\rav\rfwctrl.dll
00B70000[0000E000]
[ M] 73. c:\program files\rising\rav\rsappmgr.dll
08D90000[0002F000]
[ M] 74. c:\program files\rising\rav\cfgdll.dll
23700000[0001A000]
[ M] 75. c:\program files\rising\rav\rscommon.dll
09030000[0000B000]
[ M] 76. c:\program files\rising\rav\rslog.dll
09040000[00029000]
[ M] 77. c:\program files\rising\rav\scanner.dll
13100000[0002E000]
[ M] 78. c:\program files\rising\rav\libload.dll
091A0000[0002C000]
[ M] 79. c:\program files\rising\rav\viruslib.dll
09090000[0000D000]
[ M] 80. c:\program files\rising\rav\hookweb.dll
09420000[00085000]
[ M] 81. c:\program files\rising\rav\spameng.dll
094C0000[0003C000]
[ M] 82. c:\program files\rising\rav\engine.dll
+ 00000494(1172) wuauclt.exe
+ 00000568(1384) Explorer.EXE
10000000[00010000]
[ M] 83. c:\windows\system32\rsswz.dll
01830000[0001B000]
[ M] 66. d:\rising\rising\ieprot.dll
72C80000[00008000]
[ M] 69. c:\windows\system32\msacm32.drv
+ 00000574(1396) spoolsv.exe
+ 000005b0(1456) SCardSvr.exe
+ 00000680(1664) BHDCRegC.exe
00400000[0000C000]
[AM] 55. c:\windows\system32\bhdcregc.exe
73390000[00154000]
[ M] 84. c:\windows\system32\msvbvm60.dll
66630000[0001C000]
[ M] 85. c:\windows\system32\vb6chs.dll
10000000[0001B000]
[ M] 66. d:\rising\rising\ieprot.dll
+ 000006a4(1700) runiep.exe
00400000[0001C000]
[AM] 57. d:\rising\rising\runiep.exe
00BF0000[0001B000]
[ M] 66. d:\rising\rising\ieprot.dll
+ 000006ac(1708) RavTask.exe
00400000[0001F000]
[AM] 58. c:\program files\rising\rav\ravtask.exe
23700000[0001A000]
[ M] 75. c:\program files\rising\rav\rscommon.dll
10000000[0000E000]
[ M] 73. c:\program files\rising\rav\rsappmgr.dll
08A00000[0002F000]
[ M] 74. c:\program files\rising\rav\cfgdll.dll
08C90000[0001B000]
[ M] 71. c:\program files\rising\rav\rscommx.dll
08E40000[0001B000]
[ M] 66. d:\rising\rising\ieprot.dll
+ 000006ec(1772) ctfmon.exe
10000000[0001B000]
[ M] 66. d:\rising\rising\ieprot.dll
+ 000006f8(1784) RichVideo.exe
00400000[0002A000]
[AM] 8. c:\program files\cyberlink\shared files\richvideo.exe
+ 00000710(1808) RpcS.exe
00400000[0022D000]
[AM] 9. c:\windows\system32\rpcs.exe
+ 00000724(1828) Ravmon.exe
00400000[00099000]
[ M] 86. c:\program files\rising\rav\ravmon.exe
26600000[0007D000]
[ M] 87. c:\program files\rising\rav\rsguilib.dll
10000000[0002E000]
[ M] 70. c:\program files\rising\rav\bwlist.dll
003E0000[0000E000]
[ M] 73. c:\program files\rising\rav\rsappmgr.dll
08A10000[0002F000]
[ M] 74. c:\program files\rising\rav\cfgdll.dll
23700000[0001A000]
[ M] 75. c:\program files\rising\rav\rscommon.dll
08CB0000[0001B000]
[ M] 71. c:\program files\rising\rav\rscommx.dll
23800000[0001A000]
[ M] 88. c:\program files\rising\rav\rsxml.dll
23900000[00031000]
[ M] 89. c:\program files\rising\rav\pngdll.dll
099F0000[0001B000]
[ M] 66. d:\rising\rising\ieprot.dll
9.¼´ÐbR «bbs.ikaka.com�¾)�ùBy¼F
