杀不了的毒啊！win32.Agent.ri/hxv - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛杀不了的毒啊！win32.Agent.ri/hxv

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

12

1 / 2 页

跳转页

杀不了的毒啊！win32.Agent.ri/hxv

漂漂008 初生襁褓狮帖子:1 注册: 2007-07-09 来自:	发表于： 2007-07-09 14:34 \| 只看楼主短消息资料字号：小中大 1楼杀不了的毒啊！win32.Agent.ri/hxv 那位老大有杀这两个毒的方法,提示是重启删除，可是弄了几次就是不行啊，救命啊！ 2007-07-09 16:36:24
漂漂008 初生襁褓狮帖子:1 注册: 2007-07-09 来自:	分享到：

天上天下2007 初生襁褓狮帖子:44 注册: 2007-07-04 来自:	发表于： 2007-07-09 14:49 \| 短消息资料字号：小中大 2楼杀毒软件升级到最高版本了吗？
天上天下2007 初生襁褓狮帖子:44 注册: 2007-07-04 来自:

Leoooo 大版主帖子:2163 注册: 2007-06-05 来自:	发表于： 2007-07-09 15:08 \| 短消息资料字号：小中大 3楼 http://download.rising.com.cn/for_down/kakatool/kakasetupv4.exe下载卡卡上网安全助手4.0 1 运行瑞星卡卡上网安全助手 2 诊断求助=》电脑诊断日志 3 选择"忽略系统文件"、"文件详细信息"、"文件名相似分析"3个选项 4 开始扫描＝》导出信息，导成txt格式（也可以是htm格式方便自己看，不过论坛不能上传htm格式） 5 把日志中的报告完整拷贝贴上来，不要修改（一次发不完请分次发上来） 6 扫日志的时候尽量把不必要的软件关闭如QQ TM等 7 把扫描出来的可疑文件上传给瑞星http://up.rising.com.cn/webmail/uploadnew.htm
Leoooo 大版主帖子:2163 注册: 2007-06-05 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:36 \| 短消息资料字号：小中大 4楼 Adware.Win32.Agent.ce需要解压缩后杀毒2007-06-23 14:30手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad703.exe>>$COMMONFILES\CPUSH\cpush.tmp本机 Adware.Winsdup.d需要解压缩后杀毒2007-06-23 14:30手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad_2104.exe>>$TEMP\insshell.exe本机 Adware.Win32.Agent.ce需要解压缩后杀毒2007-06-23 14:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad703.exe>>$COMMONFILES\CPUSH\cpush.tmp本机 Adware.Winsdup.d需要解压缩后杀毒2007-06-23 14:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad_2104.exe>>$TEMP\insshell.exe本机 Adware.Win32.Agent.ce需要解压缩后杀毒2007-06-23 14:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad703.exe>>$COMMONFILES\CPUSH\cpush.tmp本机 Adware.Win32.Agent.ce需要解压缩后杀毒2007-06-23 14:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad703.exe>>$COMMONFILES\CPUSH\cpush.tmp本机 Adware.Win32.Agent.ce需要解压缩后杀毒2007-06-23 14:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad703.exe>>$COMMONFILES\CPUSH\cpush.tmp本机 Adware.Win32.Agent.ce需要解压缩后杀毒2007-06-23 14:35手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad703.exe>>$COMMONFILES\CPUSH\cpush.tmp本机 Adware.Win32.Agent.ce需要解压缩后杀毒2007-06-23 14:35手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad703.exe>>$COMMONFILES\CPUSH\cpush.tmp本机 Adware.Win32.Agent.ce删除成功2007-06-23 14:35手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad703.exe本机 Adware.Winsdup.d需要解压缩后杀毒2007-06-25 12:14定时扫描C:\Documents and Settings\Administrator\Local Settings\Tempad_2104.exe>>$TEMP\insshell.exe本机 Adware.Winsdup.d需要解压缩后杀毒2007-06-25 12:32手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad_2104.exe>>$TEMP\insshell.exe本机 Adware.Winsdup.d需要解压缩后杀毒2007-06-25 12:32手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad_2104.exe>>$TEMP\insshell.exe本机 Adware.Winsdup.d需要解压缩后杀毒2007-06-25 12:32手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad_2104.exe>>$TEMP\insshell.exe本机 Adware.Winsdup.d需要解压缩后杀毒2007-06-25 12:32手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad_2104.exe>>$TEMP\insshell.exe本机 Adware.Winsdup.d需要解压缩后杀毒2007-06-25 12:32手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad_2104.exe>>$TEMP\insshell.exe本机 Adware.Winsdup.d删除成功2007-06-25 12:33手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempad_2104.exe本机 Adware.Win32.Agent.cw删除成功2007-06-26 20:47手动扫描C:\WINDOWS\system32\wbemtfdly.dll本机 Trojan.Win32.Agent.hri删除成功2007-06-26 20:52手动扫描C:\WINDOWS\system320811.dlltmp本机 Adware.Win32.Agent.cv删除成功2007-06-26 20:52手动扫描C:\WINDOWS\system32jpddl.dll本机 Adware.Win32.Agent.cu删除成功2007-06-26 20:54手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml97.tmp本机 Trojan.DL.VBS.Agent.aa删除成功2007-06-26 20:55手动扫描C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\GZIJKL4Nnew09[1].htm本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-01 11:11手动扫描C:\WINDOWS\system32idexmw30.dll本机 Trojan.DL.Win32.Agent.wkq删除成功2007-07-01 11:13手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempbind_50050.exe本机
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:37 \| 短消息资料字号：小中大 5楼 Trojan.DL.Win32.Agent.wkq删除成功2007-07-01 11:13手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempmy_70008.exe本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 11:16手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 11:16手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\ser.exe本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:16手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml15.tmp本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 11:16手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 11:16手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp>>$TEMP\ser.exe本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:16手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlD.tmp本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:16手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml2A.tmp本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:16手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml1A.tmp本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:17手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml6.tmp本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:17手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml8.tmp本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:17手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml1C.tmp本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:17手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlAC.tmp本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:17手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml1E.tmp本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:17手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlB.tmp本机 Adware.Win32.Agent.npl删除成功2007-07-01 11:18手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml48.tmp本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-01 11:34手动扫描C:\WINDOWS\system32idexmw30.dll本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\ser.exe本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp>>$TEMP\ser.exe本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-01 11:34手动扫描C:\WINDOWS\system32idexmw30.dll本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\ser.exe本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp>>$TEMP\play.dll本机
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:38 \| 短消息资料字号：小中大 6楼 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp>>$TEMP\ser.exe本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-01 11:34手动扫描C:\WINDOWS\system32idexmw30.dll本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\ser.exe本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp>>$TEMP\ser.exe本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-01 11:34手动扫描C:\WINDOWS\system32idexmw30.dll本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\ser.exe本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 11:34手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp>>$TEMP\ser.exe本机 Trojan.DL.Win32.Agent.wli删除成功2007-07-01 11:35手动扫描C:\Documents and Settings\Administrator\Local Settings\TempcmlE.tmp本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-01 14:22手动扫描C:\WINDOWS\system32idexmw30.dll本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-01 14:27手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-01 14:27手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\ser.exe本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-03 11:18定时扫描C:\WINDOWS\system32idexmw30.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-04 11:58定时扫描C:\WINDOWS\system32idexmw30.dll本机 Adware.Win32.Agent.npl需要解压缩后杀毒2007-07-04 12:02定时扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\play.dll本机 Trojan.DL.Win32.Agent.wli需要解压缩后杀毒2007-07-04 12:02定时扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp>>$TEMP\ser.exe本机 Adware.Win32.Agent.npl删除成功2007-07-04 12:26手动扫描C:\Documents and Settings\Administrator\Local Settings\Tempcml9.tmp本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-05 12:29快捷扫描C:\WINDOWS\system32idexmw30.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-05 12:29手动扫描C:\WINDOWS\system32idexmw30.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-05 12:29手动扫描C:\WINDOWS\system32idexmw30.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-05 12:29手动扫描C:\WINDOWS\system32idexmw30.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-06 11:17定时扫描C:\WINDOWS\system32idexmw30.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-07 19:57快捷扫描C:\WINDOWS\system32idexmw30.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-07 19:57手动扫描C:\WINDOWS\system32idexmw30.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-07 19:58手动扫描C:\WINDOWS\system32idexmw30.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-07 19:58手动扫描C:\WINDOWS\system32idexmw30.dll本机 Trojan.Win32.QHost.lt重新启动计算机后删除文件2007-07-07 20:04快捷扫描C:\WINDOWS\system3281ad1.exe本机 Trojan.Win32.Agent.ich删除成功2007-07-07 20:04快捷扫描C:\WINDOWS\system32cdnprh.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-07 20:05快捷扫描C:\WINDOWS\system32idexmw30.dll本机 Adware.Win32.AdPlayer.a删除成功2007-07-07 20:05快捷扫描C:\WINDOWS\system320811.dlltmp本机 Trojan.Win32.QHost.lt删除成功2007-07-07 20:06快捷扫描C:\WINDOWSdc3b1.txt本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-07 20:18快捷扫描C:\WINDOWS\system32idexmw30.dll本机 AdWare.Win32.Agent.npr重新启动计算机后删除文件2007-07-07 20:20手动扫描C:\WINDOWS\system32idexmw30.dll本机
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:39 \| 短消息资料字号：小中大 7楼瑞星卡卡电脑诊断日志 v1.20 (2007-7-9 16:22:38) 北京瑞星科技股份有限公司注释:[A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + Win32 Services + HKLM\System\CurrentControlSet\Services ms_2fax [AM] 1. c:\windows\system32\81ad1.exe .text,.rdata,.data,.rsrc, 6A 18 68 80 4A 41 00 E8 3C 19 00 00 BF 94 00 00 ose [A ] 2. c:\program files\common files\microsoft shared\source engine\ose.exe Microsoft Corporation Office Source Engine .text,.data,.rsrc, 6A 74 68 60 2E 00 30 E8 23 04 00 00 33 DB 89 5D P4P Service [AM] 3. c:\program files\common files\sogou pxp\p2psvr.exe Sohu.com Inc. Sogou P4P Service .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 58 F1 40 00 68 A0 C8 40 00 64 RfwProxySrv [A ] 4. c:\program files\rising\rfw\rfwproxy.exe Beijing Rising Technology Co., Ltd. Rising Personal Proxy Service .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 60 94 40 00 68 60 85 40 00 64 RfwService [A ] 5. c:\program files\rising\rfw\rfwsrv.exe Beijing Rising Technology Co., Ltd. Rising Personal FireWall Service .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 70 AC 41 00 68 80 94 41 00 64 RsCCenter [A ] 6. c:\program files\rising\rav\ccenter.exe Beijing Rising Technology Co., Ltd. CCenter .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 C8 26 41 00 68 D8 AB 40 00 64 RsRavMon [A ] 7. c:\program files\rising\rav\ravmond.exe Beijing Rising Technology Co., Ltd. RavMond .text,.rdata,.data,.rsrc, 55 8B EC 6A FF 68 F8 D7 42 00 68 C4 E4 41 00 64 UMWdf [A ] 8. c:\windows\system32\wdfmgr.exe Microsoft Corporation Windows User Mode Driver Manager .text,.data,.rsrc, 6A 28 68 30 26 00 01 E8 A5 01 00 00 66 81 3D 00 WalALET [A ] 9. c:\windows\system32\rundllforour.exe Microsoft Corporation Run a DLL as an App .text,.data,.rsrc, + Kernel Drivers + HKLM\System\CurrentControlSet\Services A320RAID [A ] 10. c:\windows\system32\drivers\a320raid.sys Adaptec, Inc. Adaptec HostRAID for Ultra320 SCSI .text,.rdata,.data,INIT,.rsrc,.reloc, 8B FF 55 8B EC A1 A4 A1 04 00 85 C0 B9 40 BB 00 acpidisk [A ] 11. c:\windows\system32\drivers\acpidisk.sys .text,.rdata,.data,INIT,.reloc, 55 8B EC 83 EC 1C 53 56 57 50 E8 0A 00 00 00 C7 ADPU320 [A ] 12. c:\windows\system32\drivers\adpu320.sys Adaptec, Inc. Adaptec Windows Ultra320 Driver .text,.rdata,.data,INIT,.rsrc,.reloc, 8B FF 55 8B EC A1 20 1D 03 00 85 C0 B9 40 BB 00 ahci8086 [A ] 13. c:\windows\system32\drivers\ahci8086.sys ATI Technologies Inc. ATI Technology AHCI Compatible Controller Driver for Windows family .text,.rdata,.data,INIT,.rsrc,.reloc, 8B FF 55 8B EC A1 2C D0 02 00 85 C0 B9 40 BB 00 ALCXWDM [A ] 14. c:\windows\system32\drivers\alcxwdm.sys Realtek Semiconductor Corp. Realtek AC'97 Audio Driver (WDM) .text,CODE,.rdata,.data,.data1,PAGE,INIT,.rsrc,.reloc, A1 A0 58 21 00 85 C0 B9 4E E6 40 BB 74 04 3B C1 AmdK8 [A ] 15. c:\windows\system32\drivers\amdk8.sys Advanced Micro Devices AMD Processor Driver .text,.rdata,.data,PAGE,PAGELK,INIT,.rsrc,.reloc, 8B FF 55 8B EC A1 B4 50 01 00 85 C0 B9 40 BB 00 BaseTDI [A ] 16. c:\windows\system32\drivers\basetdi.sys Beijing Rising Technology Co., Ltd. basetdi .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 14 53 56 57 E8 13 04 00 00 8B 35 cnprov [A ] 17. c:\windows\system32\drivers\cnprov.sys 中国互联网络信息中心(CNNIC) 国际化域名辅助模块
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:41 \| 短消息资料字号：小中大 8楼 .text,.data,INIT,.rsrc,.reloc, 55 8B EC A1 68 10 01 00 83 38 00 76 0A B8 01 00 CSB6IDE [A ] 18. c:\windows\system32\drivers\csb6ide.sys ServerWorks Corporation ServerWorks CSB6 PCI IDE Bus Driver .text,.rdata,INIT,.rsrc,.reloc, 68 54 04 00 00 68 BB 02 01 00 FF 74 24 10 FF 74 d347bus [A ] 19. c:\windows\system32\drivers\d347bus.sys PnP BIOS Extension .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 55 8D 6C 24 90 81 EC 3C 02 00 00 8B 45 78 53 56 d347prt [A ] 20. c:\windows\system32\drivers\d347prt.sys SCSI miniport .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 54 53 56 57 68 3C 0B 01 00 FF 15 drcovcx [A ] 21. c:\windows\system32\drivers\drcovcx.sys .text,.rdata,.data,INIT,.rsrc,.reloc, 56 57 E8 71 00 00 00 8B 74 24 0C FF 74 24 10 33 ExpScaner [A ] 22. c:\program files\rising\rav\expscan.sys ExpScan.sys .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 51 68 88 38 02 00 FF 15 70 1F 01 00 83 FASTTRAK [A ] 23. c:\windows\system32\drivers\fasttrak.sys Promise Technology, Inc. Promise FastTrak Series Driver for Win2000 .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 50 53 56 8B 75 08 57 FF 75 0C 89 FETNDISB [A ] 24. c:\windows\system32\drivers\fetnd5b.sys VIA Technologies, Inc. NDIS 5.0 miniport driver .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 60 53 56 57 33 DB 53 FF 75 0C 8D FTSATA2 [A ] 25. c:\windows\system32\drivers\ftsata2.sys Promise Technology, Inc. Promise Driver for Windows Server 2003 .text,.rdata,.data,INIT,.rsrc,.reloc, 8B FF 55 8B EC A1 74 90 03 00 85 C0 B9 40 BB 00 HookCont [A ] 26. c:\program files\rising\rav\hookcont.sys Rising HookCont .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 14 53 56 57 68 70 20 00 00 E8 F7 HookReg [A ] 27. c:\program files\rising\rav\hookreg.sys .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 64 56 57 C7 45 AC 00 00 00 00 B9 HookSys [A ] 28. c:\program files\rising\rav\hooksys.sys Rising Hooksys .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 14 53 56 57 E8 8A 08 00 00 68 FC HookUrl [A ] 29. c:\program files\rising\rfw\hookurl.sys Beijing Rising Technology Co., Ltd. HookUrl .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 10 53 56 8B 75 08 57 6A 1B B8 8C ialm [A ] 30. c:\windows\system32\drivers\ialmnt5.sys Intel Corporation Intel Graphics Miniport Driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 55 8B EC 83 EC 58 8B 45 08 A3 5C 30 13 10 68 78 IASTOR [A ] 31. c:\windows\system32\drivers\iastor.sys Intel Corporation Intel Matrix Storage Manager driver .text,.rdata,.data,INIT,.rsrc,.reloc, idexmw30 [A ] 32. c:\windows\system32\drivers\idexmw30.sys idnaux [A ] 33. c:\windows\system32\drivers\idnaux.sys 中国互联网络信息中心(CNNIC) 国际化域名支持模块 .text,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 14 53 56 33 DB 57 89 5D FC E8 31 ITERAID [A ] 34. c:\windows\system32\drivers\iteraid.sys Integrated Technology Express, Inc. ITE IT8212 ATA RAID SCSI miniport .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 54 53 56 57 6A 50 5E 56 8D 45 AC JRAID [A ] 35. c:\windows\system32\drivers\jraid.sys JMicron Technology Corp. JMicron JR036X RAID Driver .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 58 53 56 6A 50 5E 56 8D 45 A8 50 kjqhqam [A ] 36. c:\windows\system32\drivers\kjqhqam.sys M5228 [A ] 37. c:\windows\system32\drivers\m5228.sys ALi Corporation. M5228 ATA RAID Controller Driver .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 50 57 6A 14 59 33 C0 8D 7D B0 6A M5281 [A ] 38. c:\windows\system32\drivers\m5281.sys ALi Corporation ALi SATA RAID Controller Driver .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 50 56 57 6A 14 59 6A 04 33 C0 8D M5289 [A ] 39. c:\windows\system32\drivers\m5289.sys ULi Electronics Inc. ULi SATA RAID Controller Driver .text,.rdata,.data,INIT,.rsrc,.reloc, 8B FF 55 8B EC 83 EC 50 56 57 6A 14 59 6A 04 33 MEMSCAN [A ] 40. c:\program files\rising\rav\memscan.sys 瑞星软件有限公司 MemScan Driver .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 14 56 8B 35 DC 0C 01 00 57 8D 45 mProcRs [A ] 41. c:\program files\rising\rfw\mprocrs.sys Beijing Rising Technology Co., Ltd. Rising Personal FireWall mprocrs.sys .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 10 56 57 E8 29 02 00 00 85 C0 75 mxdispdr [A ] 42. c:\windows\system32\drivers\mxdispdr.sys .text,.rdata,.data,INIT,.reloc, 55 8B EC 81 EC 74 02 00 00 53 56 57 53 E8 08 00 npkcrypt [A ] 43. c:\program files\tencent\qq\npkcrypt.sys INCA Internet Co., Ltd. nProtect KeyCrypt Driver .text,.rdata,.data,INIT,.rsrc,.reloc,
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:42 \| 短消息资料字号：小中大 9楼 51 53 56 E8 6F 2C 00 00 A3 28 46 01 00 E8 EC 2B NVATABUS [A ] 44. c:\windows\system32\drivers\nvatabus.sys NVIDIA Corporation NVIDIA? nForce(TM) IDE Performance Driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 8B 54 24 04 85 D2 75 0E FF 74 24 08 E8 03 09 01 NVRAID [A ] 45. c:\windows\system32\drivers\nvraid.sys NVIDIA Corporation NVIDIA? nForce(TM) RAID Driver .text,.rdata,.data,PAGE,INIT,DUMPDATA,.rsrc,.reloc, 55 8D 6C 24 90 81 EC D4 00 00 00 56 8B 75 78 85 Proc [A ] 46. c:\windows\system32\drivers\proc.sys .text,.rdata,.data,INIT,.reloc, 55 8B EC 83 EC 0C 56 68 1A 10 01 00 8D 45 F4 33 QuakeDRV [A ] 47. c:\windows\system32\drivers\quakedrv.sys .text,.rdata,.data,INIT,.reloc, 55 8B EC 83 EC 50 53 8B 5D 0C 56 8B 73 04 57 6A R2A [A ] 48. c:\windows\system32a2.sys Refiroso [A ] 49. c:\windows\system32\drivers\refiroso.sys .text,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 14 83 65 FC 00 56 57 90 90 E8 35 RsAntiSpyware [A ] 50. c:\windows\system32\drivers\rsboot.sys Beijing Rising Technology Co., Ltd. Anti-RootKit Driver .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 20 53 56 33 F6 57 89 75 F4 60 8D RsFwDrv [A ] 51. c:\program files\rising\rfw\rsfwdrv.sys Beijing Rising Technology Co., Ltd. nt_fwdrv .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 14 53 56 57 E8 74 CA FF FF 84 C0 RsNTGDI [A ] 52. c:\windows\system32\drivers\rsntgdi.sys Beijing Rising Technology Co., Ltd. RsNTGDI .text,.rdata,INIT,.rsrc,.reloc, 55 8B EC 83 EC 10 56 8B 75 08 57 8B 3D 58 05 01 RSPPSYS [A ] 53. c:\program files\rising\rav\rsppsys.sys Rising RSPPSYS.SYS .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 14 53 6A 5C E8 EE FB FF FF 33 DB RTL8023xp [A ] 54. c:\windows\system32\drivers\rtnicxp.sys Realtek Semiconductor Corporation Realtek 10/100/1000 NDIS 5.1 Driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 8B FF 55 8B EC A1 E0 22 02 00 85 C0 B9 40 BB 00 Secdrv [A ] 55. c:\windows\system32\drivers\secdrv.sys Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K. Macrovision SECURITY Driver .text,.rdata,.data,INIT,.rsrc,.reloc,pnidata, 55 8B EC 83 EC 14 56 E8 BC EA FF FF 85 C0 75 3D sfcure01 [A ] 56. c:\windows\system32\drivers\sfcure01.sys .text,.data,.bss,.idata,.reloc, sfdrv01 [A ] 57. c:\windows\system32\drivers\sfdrv01.sys Protection Technology StarForce Protection Environment Driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 9C 8B 0C 24 81 34 24 00 00 20 00 9D 9C 58 3B C1 sfdrv01a [A ] 58. c:\windows\system32\drivers\sfdrv01a.sys Protection Technology (StarForce) FrontLine Environment Driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 9C 8B 0C 24 81 34 24 00 00 20 00 9D 9C 58 3B C1 sfhlp02 [A ] 59. c:\windows\system32\drivers\sfhlp02.sys Protection Technology (StarForce) FrontLine Helper Driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, sfsync02 [A ] 60. c:\windows\system32\drivers\sfsync02.sys Protection Technology StarForce Protection Synchronization Driver .text,.data,PAGE,INIT,.rsrc,.reloc, 9C 8B 0C 24 81 34 24 00 00 20 00 9D 9C 58 3B C1 sfsync04 [A ] 61. c:\windows\system32\drivers\sfsync04.sys Protection Technology (StarForce) FrontLine Synchronization Driver .text,.rdata,.data,.sfsign1,PAGE,PAGEI,.xinit,.rsrc,.xreloc, 9C 8B 0C 24 81 34 24 00 00 20 00 9D 9C 58 3B C1 SI3112R [A ] 62. c:\windows\system32\drivers\si3112r.sys Silicon Image, Inc Serial ATA RAID miniport driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 55 8B EC 83 EC 7C 83 4D FC FF 53 57 6A 15 59 33 SI3114R [A ] 63. c:\windows\system32\drivers\si3114r.sys Silicon Image, Inc SATARAID miniport driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 55 8B EC 83 EC 7C 83 4D FC FF 53 57 6A 15 59 33 SI3114R5
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:	发表于： 2007-07-09 16:42 \| 短消息资料字号：小中大 10楼 [A ] 64. c:\windows\system32\drivers\si3114r5.sys Silicon Image, Inc SATA SoftRAID 5 miniport driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, A1 D0 96 03 00 85 C0 B9 4E E6 40 BB 74 04 3B C1 SI3124 [A ] 65. c:\windows\system32\drivers\si3124.sys Silicon Image, Inc. Serial ATA miniport driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 55 8B EC 83 EC 5C 83 4D FC FF 53 57 6A 15 59 33 SI3124R [A ] 66. c:\windows\system32\drivers\si3124r.sys Silicon Image, Inc SATARAID miniport driver (PRE-RELEASE) .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 55 8B EC 83 EC 74 53 83 4D FC FF 56 57 6A 15 33 SI3124R5 [A ] 67. c:\windows\system32\drivers\si3124r5.sys Silicon Image, Inc SATA SoftRAID 5 miniport driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, A1 D0 A6 03 00 85 C0 B9 4E E6 40 BB 74 04 3B C1 SI3132 [A ] 68. c:\windows\system32\drivers\si3132.sys Silicon Image, Inc. Serial ATA miniport driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, 55 8B EC 83 EC 5C 83 4D FC FF 53 57 6A 15 59 33 SI3132R5 [A ] 69. c:\windows\system32\drivers\si3132r5.sys Silicon Image, Inc SATA SoftRAID 5 miniport driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, A1 D0 A6 03 00 85 C0 B9 4E E6 40 BB 74 04 3B C1 SISRAID2 [A ] 70. c:\windows\system32\drivers\sisraid2.sys Silicon Integrated Systems Corp SiS RAID Miniport Driver .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 5C 56 6A 50 5E 56 8D 45 A4 50 C6 SISRAID4 [A ] 71. c:\windows\system32\drivers\sisraid4.sys Silicon Integrated Systems SiS AHCI Miniport Driver .text,.rdata,.data,INIT,.rsrc,.reloc, 8B FF 55 8B EC A1 3C F0 01 00 85 C0 B9 40 BB 00 SNPSTD3 [A ] 72. c:\windows\system32\drivers\snpstd3.sys Sonix Co. Ltd. USB PC Camera driver .text,.rdata,.data,INIT,.rsrc,.reloc, 8B FF 55 8B EC A1 34 EC 26 00 85 C0 B9 40 BB 00 Sopawen [A ] 73. c:\windows\system32\drivers\sopawen.sys .text,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 0C 56 33 F6 89 75 FC 90 90 68 76 SYMMPI [A ] 74. c:\windows\system32\drivers\symmpi.sys LSI Logic LSI Logic Fusion-MPT MiniPort Driver (ScsiPort) .text,.rdata,.data,INIT,.rsrc,.reloc, 8B FF 55 8B EC 81 EC 80 00 00 00 53 8B 1D 10 70 ULSATA [A ] 75. c:\windows\system32\drivers\ulsata.sys Promise Technology, Inc. Promise Ultra/Sata Series Driver for Win2003 .text,.rdata,.data,INIT,.rsrc,.reloc, 8B FF 55 8B EC A1 80 60 02 00 85 C0 B9 4E E6 40 ULSATA2 [A ] 76. c:\windows\system32\drivers\ulsata2.sys Promise Technology, Inc. Promise SATAII150 Series Windows Drivers .text,.rdata,.data,INIT,.rsrc,.reloc, 8B FF 55 8B EC A1 B0 90 02 00 85 C0 B9 4E E6 40 VIAMRAID [A ] 77. c:\windows\system32\drivers\viamraid.sys VIA Technologies inc,.ltd VIA RAID DRIVER FOR WIN 2000/XP/2003IA32 .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 54 57 33 FF 39 7D 08 75 09 C6 05 vmmouse [A ] 78. c:\windows\system32\drivers\vmmouse.sys VMware, Inc. VMware Pointing Device Driver .text,.rdata,PAGE,INIT,.rsrc,.reloc, 55 8B EC 8B 4D 08 B8 00 03 01 00 89 41 38 89 41 vmscsi [A ] 79. c:\windows\system32\drivers\vmscsi.sys VMware, Inc. VMware SCSI Controller .text,.rdata,.data,INIT,.rsrc,.reloc, 55 8B EC 83 EC 5C 57 6A 14 59 33 C0 8D 7D A4 83 + File System Drivers + HKLM\System\CurrentControlSet\Services ADProt [A ] 80. c:\windows\system32\drivers\adprot.sys 腾讯科技（深圳）有限公司 .text,.rdata,.data,INIT,.rsrc,.reloc, A1 A8 AF 01 00 85 C0 B9 4E E6 40 BB 74 04 3B C1 CnsMinKP [A ] 81. c:\windows\system32\drivers\cnsminkp.sys 国风因特软件（北京）有限公司 CnsMinKPXP .text,.rdata,.data,INIT,.rsrc,.reloc, + Winlogon + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify igfxcui [A ] 82. c:\windows\system32\igfxdev.dll Intel Corporation igfxdev Module .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 + Internet Explorer + HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar {406F94F0-504F-4a40-8DFD-58B0666ABEBD} [A ] 83. c:\program files\yahoo!\assistant\assist\yasbar.dll Yahoo! ToolBar .text,.rdata,.data,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 {7A38130D-BEB7-4d60-BE7A-4C4AB6A85CD1} [A ] 84. c:\windows\vcbar11.dll VCBar Module .rdata,.data,.rsrc,.reloc, 6A 0C 68 C0 35 00 10 E8 34 DC FF FF 33 C0 40 89 {B580CF65-E151-49C3-B73F-70B13FCA8E86} [A ] 85. c:\program files\baidu\bar\baidubar.dll Baidu.com, Inc. BaiduBar Module .text,.rdata,.data,.idata,.SOBARSH,.rsrc,.reloc, 55 8B EC 53 8B 5D 08 56 8B 75 0C 57 8B 7D 10 85 + HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks {22F86F33-9CBB-49a8-BB12-CDBE51B4C294}
网上小绅初生襁褓狮帖子:20 注册: 2007-07-08 来自:

<<上一主题|下一主题>>

12

1 / 2 页

跳转页

页面顶部

Powered by Discuz!NT