瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 瑞星怎么开不起来,是不是被病毒强制关闭了

123   2  /  3  页   跳转

瑞星怎么开不起来,是不是被病毒强制关闭了

收藏
泉州市市长书记
头像
初生襁褓狮
  • 帖子:40
  • 注册: 2007-04-02
  • 来自:
发表于: 2007-12-08 18:39 | 只看楼主 短消息 资料
字号: 11楼

[C:\WINDOWS\system32\GDZYHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDHnXaI32.dll]  [N/A, ]
    [C:\PROGRA~1\TENCENT\SSPlus\SPlus1.dll]  [TENCENT, 5, 0, 1, 31]
    [C:\WINDOWS\system32\kawdcaz.dat]  [N/A, ]
    [c:\documents and settings\administrator\application data\ppstream\bin\1.0.0.2\vodrc.dll]  [ppstream.com, 1.0.0.2]
    [C:\Program Files\Tencent\QQDownload\xmain.dll]  [Tencent Technology (Shenzhen) Company Limited, 1, 6, 149, 149]
    [C:\WINDOWS\system32\qdshm.dll]  [N/A, ]
    [C:\WINDOWS\system32\GenProtect.dll]  [N/A, ]
    [C:\WINDOWS\system32\WinForm.dll]  [N/A, ]
    [C:\WINDOWS\system32\upxdnd.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQDownload\xcore.dll]  [Tencent Technology(Shenzhen) Company Limited, 2, 1, 101, 90]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\Program Files\Internet Explorer\PLUGINS\NvSys_55.Sys]  [N/A, ]
    [C:\WINDOWS\system32\avzxkmn.dll]  [N/A, ]
    [C:\WINDOWS\system32\avwghmn.dll]  [N/A, ]
    [C:\WINDOWS\system32\swjqbzc.dll]  [N/A, ]
    [C:\WINDOWS\system32\wszjczx.dll]  [N/A, ]
    [C:\WINDOWS\system32\sidjfzy.dll]  [N/A, ]
    [C:\WINDOWS\system32\kvdxjma.dll]  [N/A, ]
    [C:\WINDOWS\system32\rarjepi.dll]  [N/A, ]
    [C:\WINDOWS\system32\ratbnpi.dll]  [N/A, ]
    [C:\WINDOWS\system32\rsztmpm.dll]  [N/A, ]
[PID: 5372][C:\WINDOWS\system32\wuauclt.exe]  [Microsoft Corporation, 5.8.0.2469 built by: lab01_n(wmbla)]
    [C:\WINDOWS\system32\kvdxskma.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDDH3I32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDDJI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\addrTLhelp.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDMSI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDCQI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDWLI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDMOYI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDWDI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDQQHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDJZI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDQQSGI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDRXJHI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDGJI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDZYHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDHnXaI32.dll]  [N/A, ]
    [C:\PROGRA~1\TENCENT\SSPlus\SPlus1.dll]  [TENCENT, 5, 0, 1, 31]
    [C:\WINDOWS\system32\kawdcaz.dat]  [N/A, ]
    [C:\Program Files\Internet Explorer\PLUGINS\NvSys_55.Sys]  [N/A, ]
    [C:\WINDOWS\system32\qdshm.dll]  [N/A, ]
    [C:\WINDOWS\system32\GenProtect.dll]  [N/A, ]
    [C:\WINDOWS\system32\WinForm.dll]  [N/A, ]
    [C:\WINDOWS\system32\upxdnd.dll]  [N/A, ]
[PID: 4568][C:\WINDOWS\system32\conime.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\GDDH3I32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDDJI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\addrTLhelp.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDMSI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDCQI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDWLI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDMOYI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDWDI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDQQHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDJZI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDQQSGI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDRXJHI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDGJI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDZYHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDHnXaI32.dll]  [N/A, ]
    [C:\PROGRA~1\TENCENT\SSPlus\SPlus1.dll]  [TENCENT, 5, 0, 1, 31]
    [C:\WINDOWS\system32\kawdcaz.dat]  [N/A, ]
    [C:\Program Files\Internet Explorer\PLUGINS\NvSys_55.Sys]  [N/A, ]
    [C:\WINDOWS\system32\kvdxskma.dll]  [N/A, ]
    [C:\WINDOWS\system32\GenProtect.dll]  [N/A, ]
    [C:\WINDOWS\system32\WinForm.dll]  [N/A, ]
    [C:\WINDOWS\system32\upxdnd.dll]  [N/A, ]
[PID: 5200][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\kvdxskma.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDDH3I32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDDJI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\addrTLhelp.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDMSI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDCQI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDWLI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDMOYI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDWDI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDQQHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDJZI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDQQSGI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDRXJHI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDGJI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDZYHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDHnXaI32.dll]  [N/A, ]
    [C:\PROGRA~1\TENCENT\SSPlus\SPlus1.dll]  [TENCENT, 5, 0, 1, 31]
    [C:\Program Files\TENCENT\SSPlus\SAddr1.dll]  [Tencent, 5, 0, 2, 11]
    [C:\WINDOWS\system32\kawdcaz.dat]  [N/A, ]
    [C:\Program Files\Internet Explorer\PLUGINS\NvSys_55.Sys]  [N/A, ]
    [c:\documents and settings\administrator\application data\ppstream\bin\1.0.0.2\vodrc.dll]  [ppstream.com, 1.0.0.2]
    [C:\Program Files\Tencent\QQDownload\QQIEHelper02.dll]  [腾讯公司, 1, 1, 0, 5]
    [C:\WINDOWS\system32\GenProtect.dll]  [N/A, ]
    [C:\WINDOWS\system32\WinForm.dll]  [N/A, ]
    [C:\WINDOWS\system32\upxdnd.dll]  [N/A, ]
    [C:\WINDOWS\system32\rsztmpm.dll]  [N/A, ]
    [C:\WINDOWS\system32\ratbnpi.dll]  [N/A, ]
    [C:\WINDOWS\system32\wszjczx.dll]  [N/A, ]
    [C:\WINDOWS\system32\rarjepi.dll]  [N/A, ]
    [C:\WINDOWS\system32\kvdxjma.dll]  [N/A, ]
    [C:\WINDOWS\system32\sidjfzy.dll]  [N/A, ]
    [C:\WINDOWS\system32\avwghmn.dll]  [N/A, ]
    [C:\WINDOWS\system32\swjqbzc.dll]  [N/A, ]
    [C:\WINDOWS\system32\avzxkmn.dll]  [N/A, ]
    [C:\WINDOWS\system32\qdshm.dll]  [N/A, ]
    [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll]  [Microsoft Corporation, 11.0.5510]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9c.ocx]  [Adobe Systems, Inc., 9,0,45,0]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL]  [Microsoft Corporation, 11.0.5510]
    [C:\WINDOWS\system32\Audiodev.dll]  [Microsoft Corporation, 5.2.3790.3646 built by: DNSRV(bld4act)]
    [F:\新建文件夹\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]
    [C:\WINDOWS\system32\xpsp3res.dll]  [Microsoft Corporation, 5.1.2600.3157 (xpsp_sp2_gdr.070614-0013)]
[PID: 3032][C:\Program Files\Tencent\QQ\QQDoctor\QQDoctor.exe]  [Tencent, 1, 4, 9, 201]
    [C:\WINDOWS\system32\kvdxskma.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDDH3I32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDDJI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\addrTLhelp.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDMSI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDCQI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDWLI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDMOYI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDWDI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDQQHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDJZI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDQQSGI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDRXJHI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDGJI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDZYHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDHnXaI32.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQDownload\qqdownload.dll]  [Tencent Technology (Shenzhen) Company Limited, 1, 6, 140, 140]
    [C:\Program Files\Tencent\QQDownload\TNProxy.dll]  [Tencent Technology(Shenzhen) Company Limited, 2, 1, 101, 90]
    [C:\PROGRA~1\TENCENT\SSPlus\SPlus1.dll]  [TENCENT, 5, 0, 1, 31]
    [C:\WINDOWS\system32\kawdcaz.dat]  [N/A, ]
    [C:\Program Files\Internet Explorer\PLUGINS\NvSys_55.Sys]  [N/A, ]
    [C:\Program Files\Tencent\QQ\QQDoctor\zlib1.dll]  [, 1.2.3]
    [C:\WINDOWS\system32\qdshm.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQ\QQDoctor\TSELoder.DAT]  [Tencent, 2006, 11, 29, 8]
    [C:\Program Files\Tencent\QQ\QQDoctor\TSEngine.DAT]  [Tencent, 2007, 7, 4, 16]
    [C:\Program Files\Tencent\QQ\QQDoctor\TSECD.DAT]  [tencent, 2007, 2, 1, 3]
    [C:\Program Files\Tencent\QQ\QQDoctor\TSESC.DAT]  [Tencent, 2007, 4, 11, 2]
    [C:\Program Files\Tencent\QQ\QQDoctor\TSVulMdw.dat]  [TENCENT, 2007, 4, 26, 2]
    [C:\Program Files\Tencent\QQ\QQDoctor\TSVulChk.DAT]  [Tencent, 2007, 11, 14, 41]
    [C:\Program Files\Tencent\QQ\QQDoctor\SysRepair.dll]  [, 2006, 9, 30, 1]
    [C:\WINDOWS\system32\GenProtect.dll]  [N/A, ]
    [C:\WINDOWS\system32\WinForm.dll]  [N/A, ]
    [C:\WINDOWS\system32\upxdnd.dll]  [N/A, ]
    [C:\WINDOWS\system32\rsztmpm.dll]  [N/A, ]
    [C:\WINDOWS\system32\ratbnpi.dll]  [N/A, ]
    [C:\WINDOWS\system32\rarjepi.dll]  [N/A, ]
    [C:\WINDOWS\system32\kvdxjma.dll]  [N/A, ]
    [C:\WINDOWS\system32\sidjfzy.dll]  [N/A, ]
    [C:\WINDOWS\system32\wszjczx.dll]  [N/A, ]
    [C:\WINDOWS\system32\swjqbzc.dll]  [N/A, ]
    [C:\WINDOWS\system32\avwghmn.dll]  [N/A, ]
    [C:\WINDOWS\system32\avzxkmn.dll]  [N/A, ]
[PID: 1316][C:\Documents and Settings\Administrator\桌面\sreng3\SREngPS.EXE]  [Smallfrogs Studio, 2.5.16.900]
    [C:\WINDOWS\system32\avzxkmn.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDDH3I32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDDJI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\addrTLhelp.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDMSI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDCQI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDWLI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDMOYI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDWDI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDQQHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDJZI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDQQSGI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDRXJHI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDGJI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDZYHXI32.dll]  [N/A, ]
    [C:\WINDOWS\system32\GDHnXaI32.dll]  [N/A, ]
    [C:\PROGRA~1\TENCENT\SSPlus\SPlus1.dll]  [TENCENT, 5, 0, 1, 31]
    [C:\WINDOWS\system32\kawdcaz.dat]  [N/A, ]
    [C:\Program Files\Internet Explorer\PLUGINS\NvSys_55.Sys]  [N/A, ]
    [C:\WINDOWS\system32\kvdxskma.dll]  [N/A, ]
    [C:\WINDOWS\system32\GenProtect.dll]  [N/A, ]
    [C:\WINDOWS\system32\WinForm.dll]  [N/A, ]
    [C:\WINDOWS\system32\upxdnd.dll]  [N/A, ]
    [C:\WINDOWS\system32\avwghmn.dll]  [N/A, ]
    [C:\WINDOWS\system32\swjqbzc.dll]  [N/A, ]
    [C:\WINDOWS\system32\wszjczx.dll]  [N/A, ]
    [C:\WINDOWS\system32\sidjfzy.dll]  [N/A, ]
    [C:\WINDOWS\system32\kvdxjma.dll]  [N/A, ]
    [C:\WINDOWS\system32\rarjepi.dll]  [N/A, ]
    [C:\WINDOWS\system32\ratbnpi.dll]  [N/A, ]
    [C:\WINDOWS\system32\rsztmpm.dll]  [N/A, ]
    [C:\Documents and Settings\Administrator\桌面\sreng3\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
    [C:\WINDOWS\system32\qdshm.dll]  [N/A, ]
gototop
 
泉州市市长书记
头像
初生襁褓狮
  • 帖子:40
  • 注册: 2007-04-02
  • 来自:
发表于: 2007-12-08 18:40 | 只看楼主 短消息 资料
字号: 12楼

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
MSAPI Tcpip [TCP/IP]
    C:\WINDOWS\system32\qdshm.dll(, N/A)
MSAPI Tcpip [UDP/IP]
    C:\WINDOWS\system32\qdshm.dll(, N/A)

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
N/A

==================================
进程特权扫描
特殊特权被允许: SeSystemtimePrivilege [PID = 1904, C:\WINDOWS\SYSTEM32\SOUNDMAN.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 2116, C:\PROGRAM FILES\HANDWRITE\MYNEWRECOG.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 2116, C:\PROGRAM FILES\HANDWRITE\MYNEWRECOG.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 3048, C:\PROGRAM FILES\HANDWRITE\INSTALK\INSTALK.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3048, C:\PROGRAM FILES\HANDWRITE\INSTALK\INSTALK.EXE]
特殊特权被允许: SeDebugPrivilege [PID = 3100, C:\WINDOWS\SYSTEM32\SYSAVE.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3100, C:\WINDOWS\SYSTEM32\SYSAVE.EXE]

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================


[/CODE]
gototop
 
泉州市市长书记
头像
初生襁褓狮
  • 帖子:40
  • 注册: 2007-04-02
  • 来自:
发表于: 2007-12-08 18:40 | 只看楼主 短消息 资料
字号: 13楼

不知道怎么的,附件发不上来就只好 复制进来- -#~  望帮帮忙呀
gototop
 
泉州市市长书记
头像
初生襁褓狮
  • 帖子:40
  • 注册: 2007-04-02
  • 来自:
发表于: 2007-12-08 19:18 | 只看楼主 短消息 资料
字号: 14楼

谁帮帮我呀!
gototop
 
泉州市市长书记
头像
初生襁褓狮
  • 帖子:40
  • 注册: 2007-04-02
  • 来自:
发表于: 2007-12-08 19:25 | 只看楼主 短消息 资料
字号: 15楼

郁闷死了,难道下班了么- -#~ 谁帮偶呀 super man还没出先么- -3
gototop
 
sako
头像
社区嘉宾
  • 帖子:7496
  • 注册: 2007-10-16
  • 来自:遥远的地方
发表于: 2007-12-08 19:26 | 短消息 资料
字号: 16楼

自己用外挂还。。
gototop
 
泉州市市长书记
头像
初生襁褓狮
  • 帖子:40
  • 注册: 2007-04-02
  • 来自:
发表于: 2007-12-08 19:59 | 只看楼主 短消息 资料
字号: 17楼

帮帮忙啊- -#~
gototop
 
泉州市市长书记
头像
初生襁褓狮
  • 帖子:40
  • 注册: 2007-04-02
  • 来自:
发表于: 2007-12-08 20:11 | 只看楼主 短消息 资料
字号: 18楼

aaaaaaaaaaaaaaa
gototop
 
泉州市市长书记
头像
初生襁褓狮
  • 帖子:40
  • 注册: 2007-04-02
  • 来自:
发表于: 2007-12-08 20:30 | 只看楼主 短消息 资料
字号: 19楼

shui 2bang bang mang
gototop
 
泉州市市长书记
头像
初生襁褓狮
  • 帖子:40
  • 注册: 2007-04-02
  • 来自:
发表于: 2007-12-08 20:59 | 只看楼主 短消息 资料
字号: 20楼

谁帮帮我呀!
gototop
 
<<上一主题|下一主题>>
123   2  /  3  页   跳转
页面顶部
Powered by Discuz!NT