向各位高手紧急求助！　119　！咱的瑞星也问题了！ - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛向各位高手紧急求助！　119　！咱的瑞星也问题了！

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

12

2 / 2 页

跳转页

向各位高手紧急求助！　119　！咱的瑞星也问题了！

老GG 初生襁褓狮帖子:11 注册: 2007-07-26 来自:	发表于： 2007-07-27 16:02 \| 只看楼主短消息资料字号：小中大 11楼 ========Content======== [C:\Program Files\360safe\safemon\safemon.dll] [, 3, 5, 0, 1001] [PID: 2868 / user][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\360safe\safemon\safemon.dll] [, 3, 5, 0, 1001] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scrchpg.dll] [Kaspersky Lab, 6.0.2.621] [C:\Program Files\Thunder\ComDlls\XunLeiBHO_002.dll] [Thunder Networking Technologies,LTD, 5, 0, 0, 2] [C:\PROGRA~1\FLASHGET\jccatch.dll] [Amaze Soft, 1, 1, 4, 0] [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510] [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll] [Kaspersky Lab, 6.0.2.621] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.42] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prremote.dll] [Kaspersky Lab, 6.0.2.621] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.42] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prloader.dll] [Kaspersky Lab, 6.0.2.621] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prkernel.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pxstub.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\tempfile.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\nfio.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\fsdrvplgn.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\basegui.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\thpimpl.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\FSSync.dll] [Kaspersky Lab, 6.0.5.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\winreg.ppl] [Kaspersky Lab, 6.0.2.621] [C:\Program Files\Thunder\ComDlls\ThunderAgent_003.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 10] [PID: 204 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 932 / user][C:\Program Files\Tencent\qq\QQ.exe] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQBaseClassInDll.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQHelperDll.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\BasicCtrlDll.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0] [C:\Program Files\360safe\safemon\safemon.dll] [, 3, 5, 0, 1001] [C:\Program Files\Tencent\qq\RICHED32.DLL] [Microsoft Corporation, 5.00.2134.1] [C:\Program Files\Tencent\qq\RICHED20.dll] [Microsoft Corporation, 5.31.23.1218] [C:\Program Files\Tencent\qq\QQAPI.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\QQ\TIMProxy.dll] [tencent, 0, 3, 2, 4] [C:\Program Files\Tencent\qq\LoginCtrl.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\LoginCtrlRes.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQRes.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQMainFrame.dll] [N/A, ] [C:\Program Files\Tencent\qq\gdiplus.dll] [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Tencent\qq\CQQApplication.dll] [N/A, ] [C:\Program Files\Tencent\qq\FlashAvatarDll.dll] [, 1, 4, 0, 1] [C:\Program Files\Tencent\qq\NewSkin.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\HostingMgr.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\CameraDll.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\MailSummary.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQKnowledgeSearch.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQAllInOne.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\SCCore.dll] [TENCENT, 1, 6, 0, 2] [C:\Program Files\Tencent\qq\QQSpace.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\vbscript.dll] [Microsoft Corporation, 5.6.0.7426] [C:\WINDOWS\system32\msdmo.dll] [, ] [C:\Program Files\Tencent\qq\QQGroupMng.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\UserDefinedHead.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQPlugin.dll] [N/A, ] [C:\Program Files\Tencent\qq\QQConfigPlugin.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQAvatar.dll] [N/A, ] [C:\Program Files\Tencent\qq\QQCustomFace.dll] [N/A, ] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scrchpg.dll] [Kaspersky Lab, 6.0.2.621] [C:\Program Files\Tencent\qq\QRingMng.dll] [N/A, ] [C:\Program Files\Tencent\qq\LongConnection.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\PhoneAPI.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\DialerAllinOne.dll] [tencent, 1, 4, 0, 0] [C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [C:\Program Files\Tencent\qq\QQPet.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQFileTransfer.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\OEMApplication.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll] [Kaspersky Lab, 6.0.2.621] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.42] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prremote.dll] [Kaspersky Lab, 6.0.2.621] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.42]
老GG 初生襁褓狮帖子:11 注册: 2007-07-26 来自:

老GG 初生襁褓狮帖子:11 注册: 2007-07-26 来自:	发表于： 2007-07-27 16:03 \| 只看楼主短消息资料字号：小中大 12楼 [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prloader.dll] [Kaspersky Lab, 6.0.2.621] [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prkernel.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pxstub.ppl] [Kaspersky Lab, 6.0.2.621] [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\tempfile.ppl] [Kaspersky Lab, 6.0.2.621] [C:\Program Files\Tencent\qq\BQQApplication.dll] [N/A, ] [C:\Program Files\Tencent\qq\CommercesMng.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\PersonalDesktop.dll] [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2] [C:\Program Files\Tencent\qq\QQAddr.dll] [深圳市腾讯计算机系统有限公司, 5, 0, 101, 320] [C:\Program Files\Tencent\qq\QQSceneMng.dll] [N/A, ] [C:\Program Files\Tencent\qq\AddrSearch.dll] [腾讯科技（深圳）有限公司, 2, 1, 9, 95] [C:\Program Files\Tencent\qq\QQSysMsgMng.dll] [N/A, ] [C:\WINDOWS\system32\msadp32.acm] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Tencent\qq\ImageOle.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQLiveQMng.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQMagicFace.dll] [TENCENT, 7,0,365,1701] [C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx] [Adobe Systems, Inc., 9,0,60,120] [C:\Program Files\Tencent\QQGame\GamePublic.dll] [N/A, ] [C:\Program Files\Tencent\QQGame\Common\Utility.dll] [N/A, ] [C:\Program Files\Tencent\QQGame\Factory.dll] [N/A, ] [C:\Program Files\Tencent\QQGame\Logic\UIStyle.dll] [N/A, ] [C:\Program Files\Tencent\QQGame\ProtHand\QQProt.dll] [N/A, ] [C:\Program Files\Tencent\QQGame\Socket\NetMod.dll] [N/A, ] [C:\Program Files\Tencent\qq\GroupConnection.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\QQZip.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\VqqModule.dll] [TENCENT, 7,0,365,1701] [C:\Program Files\Tencent\qq\VqqAllInOne.dll] [Tencent, 1, 6, 0, 2] [C:\Program Files\Tencent\qq\InPlus.dll] [Tencent, 1, 6, 0, 2] [C:\Program Files\Tencent\qq\tencent-proto1.dll] [tencent, 1, 6, 0, 2] [C:\Program Files\Tencent\qq\tencent-comlib.dll] [tencent, 1, 6, 0, 2] [C:\Program Files\Tencent\qq\tencent-proto2.dll] [tencent, 1, 6, 0, 2] [PID: 2892 / user][C:\Program Files\Tencent\QQ\TIMPlatform.exe] [TENCENT, 7,0,365,1701] [C:\Program Files\360safe\safemon\safemon.dll] [, 3, 5, 0, 1001] [C:\Program Files\Tencent\QQ\TIMProxy.dll] [tencent, 0, 3, 2, 4] [PID: 1028 / user][C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE] [Microsoft Corporation, 11.0.6359] [C:\Program Files\Common Files\Microsoft Shared\office11\mso.dll] [Microsoft Corporation, 11.0.6360] [C:\Program Files\360safe\safemon\safemon.dll] [, 3, 5, 0, 1001] [C:\Program Files\Common Files\Microsoft Shared\office11\riched20.dll] [Microsoft Corporation, 5.50.99.2009] [C:\PROGRA~1\MICROS~2\OFFICE11\ADDINS\SYMINPUT.DLL] [Microsoft Corporation, 1.02] [C:\WINDOWS\system32\MSVBVM60.DLL] [Microsoft Corporation, 6.00.9690] [C:\Program Files\Common Files\Microsoft Shared\PROOF\MSSPELL3.DLL] [Microsoft Corporation, 1.1.6215] [C:\Program Files\Common Files\Microsoft Shared\PROOF\1033\MSGR3EN.DLL] [Microsoft Corporation, 3.1.2303] [C:\Program Files\Microsoft Office\OFFICE11\msostyle.dll] [Microsoft Corporation, 11.0.5510] [C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_DU15CE.DLL] [SEIKO EPSON Corporation, 0.3.0.3] [C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_DMAI13.DLL] [SEIKO EPSON Corporation, 0. 3. 0. 16] [PID: 2312 / user][D:\我的文档\sreng2微机诊断软件_rar~\sreng2微机诊断软件\SREngPS.EXE] [Smallfrogs Studio, 2.5.16.900] [C:\Program Files\360safe\safemon\safemon.dll] [, 3, 5, 0, 1001] [D:\我的文档\sreng2微机诊断软件_rar~\sreng2微机诊断软件\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15] ================================== 文件关联 .TXT Error. [C:\WINDOWS\notepad.exe %1] .EXE OK. ["%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM Error. ["hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .LNK OK. [{00021401-0000-0000-C000-000000000046}]
老GG 初生襁褓狮帖子:11 注册: 2007-07-26 来自:

老GG 初生襁褓狮帖子:11 注册: 2007-07-26 来自:	发表于： 2007-07-27 16:03 \| 只看楼主短消息资料字号：小中大 13楼 Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ================================== 进程特权扫描特殊特权被允许： SeDebugPrivilege [PID = 1928, C:\PROGRAM FILES\360SAFE\SAFEMON\360TRAY.EXE] 特殊特权被允许： SeLoadDriverPrivilege [PID = 2644, C:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\REALSCHED.EXE] ================================== API HOOK RVA 错误： LoadLibraryA (危险等级: 高, 被下面模块所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 错误： LoadLibraryExA (危险等级: 高, 被下面模块所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 错误： LoadLibraryExW (危险等级: 高, 被下面模块所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 错误： LoadLibraryW (危险等级: 高, 被下面模块所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) RVA 错误： GetProcAddress (危险等级: 高, 被下面模块所HOOK: \??\C:\WINDOWS\system32\drivers\klif.sys) ================================== 隐藏进程 N/A ================================== [/CODE]
老GG 初生襁褓狮帖子:11 注册: 2007-07-26 来自:

开始的距离拙长孩提狮帖子:82 注册: 2007-07-27 来自:	发表于： 2007-07-27 21:09 \| 短消息资料字号：小中大 14楼表装咔吧,现在咔吧很烂,常误杀啊!
开始的距离拙长孩提狮帖子:82 注册: 2007-07-27 来自:

wbxhs 特邀体验者帖子:736 注册: 2007-02-13 来自:加勒比海	发表于： 2007-07-27 22:41 \| 短消息资料字号：小中大 15楼【回复“老GG”的帖子】日志像是没问题！修复一下文件关联（用扫描的那个软件！）
wbxhs 特邀体验者帖子:736 注册: 2007-02-13 来自:加勒比海

老GG 初生襁褓狮帖子:11 注册: 2007-07-26 来自:	发表于： 2007-07-30 10:26 \| 只看楼主短消息资料字号：小中大 16楼 wbxhs老兄: 谢谢你这样耐心、敬业！向您学习！致敬！　我也想能象你这样为大家服务，怎耐学业不精，只好待以后有点学有所长再说了。　我也知道，“表装咔吧,现在咔吧很烂,常误杀啊!”，但咱学业不精，遇到问题不能及时给人家解决，人家9图个方便、快捷。呵呵，所以啊，技术保障4最根本的，感谢各位高手援手相助！有问题我一定再向各位请教啊！　　wbxhs老兄，还有一问题向您请教，94我用该软件在我的机器上一打开9有一个对话框出来，警告我“发现一个隐藏进程”并让我“请使用智能扫描功能扫描你的系统并仔细分析扫描日志”，我该怎么做？扫描日志我知道，但扫出来后怎么用，怎么才知道有问题？有了问题怎么办？这4扫描出来的：　　“隐藏进程 [756] C:\Program Files\hxupdate\hxgame-update.exe” 　　这个对机器有影响没有？　　呵呵，4不4太菜鸟了！没办法！只好请老兄费心了！拜托了！　　上面说的那台机器，我感觉装不上好象4下载文件的问题，但不知道问题出在哪儿，只好再下几次试试，没办法，呵呵！
老GG 初生襁褓狮帖子:11 注册: 2007-07-26 来自:

<<上一主题|下一主题>>

12

2 / 2 页

跳转页

页面顶部

Powered by Discuz!NT