瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 求助!!我的机器在打开文件夹或我的电脑的时候自动打开一个网站!!

1   1  /  1  页   跳转

求助!!我的机器在打开文件夹或我的电脑的时候自动打开一个网站!!

收藏
training
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-06-28
  • 来自:
发表于: 2006-08-22 08:18 | 只看楼主 短消息 资料
字号: 1楼

求助!!我的机器在打开文件夹或我的电脑的时候自动打开一个网站!!

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [Microsoft Corporation]
    <VBuzzer Client><; C:\Program Files\vbuzzer\vbuzzer.exe>  [Softroute Corporation]
    <Super Rabbit IEPro><; C:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE /LOAD>  [Super Rabbit Soft]
    <MSMSGS><"C:\Program Files\Messenger\msmsgs.exe" /background>  [Microsoft Corporation]
    <VoipDiscount><; "C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe" -nosplash -minimized>  [VoipDiscount]
    <H/PC Connection Agent><"C:\Program Files\Microsoft ActiveSync\wcescomm.exe">  [Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  []
    <run><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [Microsoft Corporation]
    <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [Microsoft Corporation]
    <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [Microsoft Corporation]
    <PRONoMgr.exe><C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe>  [Intel(R) Corporation]
    <IgfxTray><C:\WINDOWS\system32\igfxtray.exe>  [Intel Corporation]
    <HotKeysCmds><C:\WINDOWS\system32\hkcmd.exe>  [Intel Corporation]
    <PCTVOICE><pctspk.exe>  []
    <IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>  [Microsoft Corporation]
    <RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system>  [Beijing Rising Technology Co., Ltd.]
    <BigDogPath><C:\WINDOWS\VM_STI.EXE VIMICRO USB PC Camera>  []
    <SKYNET Personal FireWall><C:\Program Files\SkyNet\FireWall\PFW.exe>  [广州众达天网技术有限公司]
    <THGuard><"C:\Program Files\TrojanHunter 4.5\THGuard.exe">  [Mischel Internet Security]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Sebring]
    <WinlogonNotify: Sebring><C:\WINDOWS\system32\LgNotify.dll>  [Intel Corporation]

==================================
启动文件夹
服务
[Intel NCS NetService / NetSvc]
  <C:\Program Files\Intel\NCS\Sync\NetSvc.exe><Intel(R) Corporation>
[RegSrvc / RegSrvc]
  <C:\WINDOWS\system32\RegSrvc.exe><Intel Corporation>
[Remote Packet Capture Protocol v.0 (experimental) / rpcapd]
  <"C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini"><N/A>
[Rising Process Communication Center / RsCCenter]
  <"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[RsRavMon Service / RsRavMon]
  <"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[Spectrum24 Event Monitor / S24EventMonitor]
  <C:\WINDOWS\system32\S24EvMon.exe><Intel Corporation>

==================================
浏览器加载项
[Shockwave Flash Object]
  {14A21378-5BB1-4BC4-95D5-5D3F51527F6F} <C:\WINDOWS\system32\smflash.ocx, Macromedia, Inc.>
[Create Mobile Favorite]
  {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} <C:\PROGRA~1\MICROS~3\INetRepl.dll, Microsoft Corporation>
[Create Mobile Favorite]
  {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} <C:\PROGRA~1\MICROS~3\INetRepl.dll, Microsoft Corporation>
[信息检索(&R)]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[FlashGet]
  {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\flashget.exe, Amaze Soft>
[QQIEFloatBarCfgCmd Class]
  {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <D:\back\qq2005\QQIEHelper.dll, N/A>
[Messenger]
  {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\fgiebar.dll, Amaze Soft>
[Netease Chat Control]
  {C37FBD87-3AA7-4640-9A8D-19AFC10B15B2} <C:\WINDOWS\DOWNLO~1\chat.ocx, Netease>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[ThunderIEHelper Class]
  {0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v4.dll, >
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Shockwave Flash Object]
  {14A21378-5BB1-4BC4-95D5-5D3F51527F6F} <C:\WINDOWS\system32\smflash.ocx, Macromedia, Inc.>
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <C:\PROGRA~1\SUPERR~1\MAGICSET\haokanbar.dll, Xiang Feng Technology>
[QQBrowserHelperObject Class]
  {54EBD53A-9BC1-480B-966A-843A333CA162} <D:\back\qq2005\QQIEHelper.dll, N/A>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Active Desktop Mover]
  {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[Microsoft Web 浏览器]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[IEHlprObj Class]
  {999ADFA2-8AD1-47FF-97FC-69FB847458F4} <C:\Progra~1\NetMeeting\nmview.dll, N/A>
[IeCatch2 Class]
  {A5366673-E8CA-11D3-9CD9-0090271D075B} <C:\PROGRA~1\FLASHGET\JCCATCH.DLL, Amaze Soft>
[DtopMFC Control]
  {A6EC76F1-9916-4793-85BA-899F6940D90C} <C:\WINDOWS\system32\ActiveThinkCentre.ocx, s>
[Google Toolbar Helper]
  {AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar1.dll, N/A>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[DtopMFC Control]
  {B9E3F918-328C-410A-B2E3-2ABF9E209974} <C:\WINDOWS\system32\ActiveThinkPad.ocx, s>
[Netease Chat Control]
  {C37FBD87-3AA7-4640-9A8D-19AFC10B15B2} <C:\WINDOWS\DOWNLO~1\chat.ocx, Netease>
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <%systemroot%\System32\rmoc3260.dll, N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\fgiebar.dll, Amaze Soft>
[上传到QQ网络硬盘]
  <D:\back\qq2005\AddToNetDisk.htm, N/A>
[使用网际快车下载]
  <C:\Program Files\FlashGet\jc_link.htm, N/A>
[使用网际快车下载全部链接]
  <C:\Program Files\FlashGet\jc_all.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
最后编辑2006-08-23 01:54:13
分享到:
gototop
 
training
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-06-28
  • 来自:
发表于: 2006-08-22 08:20 | 只看楼主 短消息 资料
字号: 2楼

正在运行的进程
[PID: 588][\SystemRoot\System32\smss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 644][\??\C:\WINDOWS\system32\csrss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 668][\??\C:\WINDOWS\system32\winlogon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\LgNotify.dll]  <Intel Corporation><4, 1, 0, 0>
[PID: 712][C:\WINDOWS\system32\services.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 724][C:\WINDOWS\system32\lsass.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
[PID: 868][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 936][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
[PID: 1024][C:\Program Files\Rising\Rav\CCenter.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 1040][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
[PID: 1124][C:\WINDOWS\system32\S24EvMon.exe]  <Intel Corporation ><4, 1, 0, 0>
[PID: 1144][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
[PID: 1228][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
[PID: 1260][C:\Program Files\Rising\Rav\Ravmond.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 1, 33>
    [C:\Program Files\Rising\Rav\BWList.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\RsLog.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
    [C:\Program Files\Rising\Rav\HOOKSYS.dll]  <Beijing Rising Technology Co., Ltd.><18, 1, 0, 11>
    [C:\Program Files\Rising\Rav\Scanner.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [C:\Program Files\Rising\Rav\libload.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\VirusLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12>
    [C:\Program Files\Rising\Rav\regmon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
    [C:\Program Files\Rising\Rav\HookWeb.dll]  <rising><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\MemMon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\Program Files\Rising\Rav\expscan.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\mPorts.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3>
    [C:\Program Files\Rising\Rav\MailMon.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [C:\Program Files\Rising\Rav\SpamEng.dll]  <N/A><18, 0, 0, 6>
    [C:\Program Files\Rising\Rav\engine.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
    [C:\Program Files\Rising\Rav\PostTrt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12>
    [C:\Program Files\Rising\Rav\UnExe.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\ScanExec.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\ScanEx.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 14>
    [C:\Program Files\Rising\Rav\NvFile.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
    [C:\Program Files\Rising\Rav\ScanMac.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
    [C:\Program Files\Rising\Rav\ScanSct.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18>
    [C:\Program Files\Rising\Rav\Unpacker.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
    [C:\Program Files\Rising\Rav\ExtOLE.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
gototop
 
training
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-06-28
  • 来自:
发表于: 2006-08-22 08:21 | 只看楼主 短消息 资料
字号: 3楼


[PID: 1596][C:\WINDOWS\system32\spoolsv.exe]  <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
    [C:\WINDOWS\system32\CNMLM2H.DLL]  <CANON INC.><1.50.2.6>
    [C:\WINDOWS\system32\hpdcmon.dll]  <Hewlett-Packard><03.40.00>
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\CNMPD2H.DLL]  <CANON INC.><1.50.2.6>
[PID: 1700][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1752][C:\WINDOWS\system32\RegSrvc.exe]  <Intel Corporation><4, 1, 0, 0>
[PID: 1772][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
[PID: 1808][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1864][C:\WINDOWS\system32\wdfmgr.exe]  <Microsoft Corporation><5.2.3790.1230 built by: DNSRV(bld4act)>
[PID: 2012][C:\Program Files\Rising\Rav\RavStub.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 344][C:\WINDOWS\System32\alg.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
[PID: 1444][C:\WINDOWS\system32\ZCfgSvc.exe]  <Intel Corporation><4, 1, 0, 53>
    [C:\WINDOWS\system32\PfMgrApi.dll]  <Intel Corporation><4, 1, 0, 0>
    [C:\WINDOWS\system32\PsRegApi.dll]  <Intel Corporation><4, 1, 0, 0>
    [C:\WINDOWS\system32\WConfig.DLL]  <Intel Corporation><4, 1, 0, 0>
    [C:\WINDOWS\system32\WiFiAdap.DLL]  <Intel Corporation><4, 1, 0, 0>
    [C:\WINDOWS\system32\C1XStngs.dll]  <><4, 1, 0, 1>
    [C:\Program Files\Intel\PROSet\CHS\ZcSvcCHS.dll]  <Intel Corporation><4, 1, 0, 53>
    [C:\Program Files\Intel\PROSet\CHS\PmApiCHS.dll]  <Intel Corporation><4, 1, 0, 0>
    [C:\WINDOWS\system32\S24MUDLL.dll]  <Intel Corporation><4, 1, 0, 0>
    [C:\Program Files\Intel\PROSet\CHS\C1XStCHS.dll]  <><4, 1, 0, 1>
[PID: 200][C:\WINDOWS\Explorer.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\WinRAR\rarext.dll]  <N/A><N/A>
    [C:\PROGRA~1\TROJAN~1.5\contmenu.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RavExt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
    [C:\WINDOWS\system32\smflash.ocx]  <Macromedia, Inc.><6.8.19.1>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  <Adobe Systems, Inc.><7.0.0.0>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\WINDOWS\system32\igfxpph.dll]  <Intel Corporation><3.0.0.2172>
    [C:\WINDOWS\system32\hccutils.DLL]  <Intel Corporation><3.0.0.2172>
[PID: 292][C:\WINDOWS\system32\1XConfig.exe]  <Intel><4, 1, 0, 3>
    [C:\WINDOWS\system32\IntelAE5.dll]  <Meetinghouse Data Communications><1, 5, 1, 90>
    [C:\WINDOWS\system32\SSLEAY32.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\LIBEAY32.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\PsRegApi.dll]  <Intel Corporation><4, 1, 0, 0>
[PID: 1836][C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe]  <Intel(R) Corporation><6.1.302.0>
    [C:\Program Files\Intel\NCS\PROSet\CHSPGUIR.dll]  <Intel(R) Corporation><6.1.302.0>
    [C:\WINDOWS\system32\Pn802_11.dll]  <Intel Corporation.><4, 1, 0, 0>
    [C:\WINDOWS\system32\PfMgrApi.dll]  <Intel Corporation><4, 1, 0, 0>
    [C:\WINDOWS\system32\PsRegApi.dll]  <Intel Corporation><4, 1, 0, 0>
    [C:\WINDOWS\system32\WConfig.DLL]  <Intel Corporation><4, 1, 0, 0>
    [C:\WINDOWS\system32\WiFiAdap.DLL]  <Intel Corporation><4, 1, 0, 0>
    [C:\Program Files\Intel\PROSet\CHS\PNC11CHS.dll]  <Intel Corporation.><4, 1, 0, 0>
    [C:\WINDOWS\system32\S24MUDLL.dll]  <Intel Corporation><4, 1, 0, 0>
    [C:\Program Files\Intel\PROSet\CHS\PmApiCHS.dll]  <Intel Corporation><4, 1, 0, 0>
    [C:\Program Files\Intel\NCS\PROSet\8023\PNC802_3.dll]  <Intel(R) Corporation><6.1.303.0>
    [C:\Program Files\Intel\NCS\PROSet\8023\CHSPCMRs.dll]  <Intel(R) Corporation><6.1.303.0>
[PID: 516][C:\WINDOWS\system32\hkcmd.exe]  <Intel Corporation><3.0.0.2172>
    [C:\WINDOWS\system32\hccutils.DLL]  <Intel Corporation><3.0.0.2172>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.2172>
    [C:\WINDOWS\system32\igfxsrvc.dll]  <Intel Corporation><3.0.0.2172>
    [C:\WINDOWS\system32\igfxres.dll]  <Intel Corporation><3.0.0.2172>
    [C:\WINDOWS\system32\igfxhk.dll]  <Intel Corporation><3.0.0.2172>
[PID: 608][C:\WINDOWS\system32\pctspk.exe]  <><1, 0, 0, 1>
[PID: 1072][C:\Program Files\Rising\Rav\RavTask.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
[PID: 1820][C:\WINDOWS\VM_STI.EXE]  <BIGDOG><4, 2, 610, 4>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
[PID: 1276][C:\Program Files\Rising\Rav\Ravmon.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 1, 32>
    [C:\Program Files\Rising\Rav\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 24>
    [C:\Program Files\Rising\Rav\BWList.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 2060][C:\Program Files\SkyNet\FireWall\PFW.exe]  <广州众达天网技术有限公司><2.7.7.1004>
    [C:\Program Files\SkyNet\FireWall\SKYMISC.DLL]  <N/A><N/A>
    [C:\Program Files\SkyNet\FireWall\COMPRESSWRAP.DLL]  <N/A><N/A>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
[PID: 2092][C:\Program Files\TrojanHunter 4.5\THGuard.exe]  <Mischel Internet Security><4.5.0.275>
    [C:\Program Files\TrojanHunter 4.5\unrar.dll]  <N/A><N/A>
    [C:\Program Files\TrojanHunter 4.5\UNZDLL.DLL]  <><1.7.0.4>
[PID: 2124][C:\WINDOWS\system32\ctfmon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2200][C:\Program Files\Messenger\msmsgs.exe]  <Microsoft Corporation><4.7.3001>
[PID: 2248][C:\Program Files\Microsoft ActiveSync\wcescomm.exe]  <Microsoft Corporation><4.2.4855.0>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
    [C:\Program Files\Microsoft ActiveSync\rapiproxystub.dll]  <N/A><N/A>
[PID: 2420][C:\PROGRA~1\MICROS~3\rapimgr.exe]  <Microsoft Corporation><4.2.4855.0>
    [C:\Program Files\Microsoft ActiveSync\rapiproxystub.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
[PID: 3060][D:\back\qq2005\QQ.exe]  <TENCENT><0, 0, 0, 0>
gototop
 
training
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-06-28
  • 来自:
发表于: 2006-08-22 08:21 | 只看楼主 短消息 资料
字号: 4楼

[D:\back\qq2005\CoralAssist.DLL]  <Coral Team><4.5.0 build 20060515>
    [D:\back\qq2005\CoralQQ.DLL]  <Coral Team><4.5.1 Build 20060620>
    [D:\back\qq2005\ipsearcher.dll]  <N/A><1.0.0.4>
    [D:\back\qq2005\QQBaseClassInDll.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\QQHelperDll.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\BasicCtrlDll.dll]  <Tencent><5, 0, 200, 160>
    [D:\back\qq2005\QQAPI.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\TIMProxy.dll]  <tencent><0, 3, 2, 4>
    [D:\back\qq2005\LoginCtrl.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\npkcntc.dll]  <INCA Internet Co., Ltd.><2006, 3, 2, 1>
    [D:\back\qq2005\npkpdb.dll]  <INCA Internet Co., Ltd.><2003, 10, 1, 1>
    [D:\back\qq2005\QQRes.dll]  <tencent><1, 0, 0, 1>
    [D:\back\qq2005\QQMainFrame.dll]  <N/A><N/A>
    [D:\back\qq2005\CQQApplication.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
    [D:\back\qq2005\NewSkin.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\HostingMgr.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\CameraDll.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\MailSummary.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\QQSpace.dll]  <><1, 0, 0, 1>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
    [D:\back\qq2005\QQGroupMng.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\GroupLive.dll]  <N/A><N/A>
    [D:\back\qq2005\LongConnection.dll]  <tencent><5, 0, 200, 160>
    [D:\back\qq2005\UserDefinedHead.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\QQPlugin.dll]  <N/A><N/A>
    [D:\back\qq2005\QQConfigPlugin.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\QRingMng.dll]  <N/A><N/A>
    [D:\back\qq2005\PhoneAPI.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\DialerAllinOne.dll]  <tencent><1, 4, 0, 0>
    [D:\back\qq2005\QQAvatar.dll]  <N/A><N/A>
    [D:\back\qq2005\FlashAvatarDll.dll]  <><1, 4, 0, 1>
    [D:\back\qq2005\QQPet.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\QQSysMsgMng.dll]  <N/A><N/A>
    [D:\back\qq2005\QQAllInOne.dll]  <N/A><N/A>
    [D:\back\qq2005\SCCore.dll]  <N/A><N/A>
    [D:\back\qq2005\QQCustomFace.dll]  <N/A><N/A>
    [D:\back\qq2005\BQQApplication.dll]  <N/A><N/A>
    [D:\back\qq2005\QQPhoneHelper.dll]  <腾讯科技(深圳)有限公司><2, 0, 6, 60>
    [D:\back\qq2005\CommercesMng.dll]  <><1, 0, 0, 1>
    [D:\back\qq2005\PersonalDesktop.dll]  <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 2>
    [D:\back\qq2005\QQUdpGetFileLib.dll]  <tencent><0, 2, 2, 3>
    [D:\back\qq2005\QQAddr.dll]  <深圳市腾讯计算机系统有限公司><5, 0, 101, 200>
    [D:\back\qq2005\QQSceneMng.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx]  <Macromedia, Inc.><8,0,24,0>
[PID: 3216][D:\back\qq2005\TIMPlatform.exe]  <tencent><0, 3, 1, 8>
    [D:\back\qq2005\TIMProxy.dll]  <tencent><0, 3, 2, 4>
[PID: 3452][C:\Program Files\Maxthon\max.exe]  <Maxthon International Ltd.><1, 5, 3, 18>
    [C:\Program Files\Maxthon\maxzlib.dll]  < ><1, 0, 0, 2>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
    [C:\Program Files\Maxthon\Services\RealTime\real_time.dll]  <><1, 0, 0, 1>
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx]  <Macromedia, Inc.><8,0,24,0>
[PID: 2052][C:\WINDOWS\system32\cmd.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2736][C:\WINDOWS\system32\conime.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2756][C:\Program Files\Rising\Rav\Rav.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 75>
    [C:\Program Files\Rising\Rav\PlugIn\RsPgScan.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 17>
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\RavUI.Dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 61>
    [C:\Program Files\Rising\Rav\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 24>
    [C:\Program Files\Rising\Rav\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Rising\Rav\Scanner.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [C:\Program Files\Rising\Rav\BWList.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [C:\Program Files\Rising\Rav\RavUIMsg.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 25>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 3148][D:\sreng2\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>
    [C:\WINDOWS\system32\dcsws2.dll]  <DiamondCS><2.110>
gototop
 
training
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-06-28
  • 来自:
发表于: 2006-08-22 08:22 | 只看楼主 短消息 资料
字号: 5楼


==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================
gototop
 
training
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-06-28
  • 来自:
发表于: 2006-08-23 02:02 | 只看楼主 短消息 资料
字号: 6楼

up!!!!!!!!!!!
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT