经常上网断线，请帮忙察看，是否中病毒，木马。谢谢！ - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛经常上网断线，请帮忙察看，是否中病毒，木马。谢谢！

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

经常上网断线，请帮忙察看，是否中病毒，木马。谢谢！

hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:	发表于： 2007-10-01 14:08 \| 只看楼主短消息资料字号：小中大 1楼经常上网断线，请帮忙察看，是否中病毒，木马。谢谢！附件是卡卡诊断结果。附件: 文件名:7796212007101135707.txt 下载次数:160 文件类型:application/octet-stream 文件大小: 上传时间:2007-10-1 14:08:00 描述: 2007-10-02 21:02:22
hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:	分享到：

hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:	发表于： 2007-10-02 21:06 \| 只看楼主短消息资料字号：小中大 2楼瑞星卡卡电脑诊断日志 v1.30 (2007-10-1 13:42:2) 北京瑞星科技股份有限公司注释:[A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + 系统服务 + HKLM\System\CurrentControlSet\Services aspnet_state [A ] 1. c:\windows\microsoft.net\framework\v2.0.50727\aspnet_state.exe Microsoft Corporation Microsoft ASP.NET State Server .text,.data,.rsrc, Autodesk Licensing Service [A ] 2. c:\program files\common files\autodesk shared\service\adskscsrv.exe Autodesk System Level Service Utility .text,.rdata,.data,.rsrc, clr_optimization_v2.0.50727_32 [A ] 3. c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe Microsoft Corporation .NET Runtime Optimization Service .text,.data,.rsrc, ehRecvr [AM] 4. c:\windows\ehome\ehrecvr.exe Microsoft Corporation Media Center Receiver Service .text,.data,.rsrc, FontCache3.0.0.0 [A ] 5. c:\windows\microsoft.net\framework\v3.0\wpf\presentationfontcache.exe Microsoft Corporation Windows Presentation Foundation Font Cache Service .text,.rsrc,.reloc, idsvc [A ] 6. c:\windows\microsoft.net\framework\v3.0\windows communication foundation\infocard.exe Microsoft Corporation Windows CardSpace .text,.rdata,.data,.rsrc, MHN [A ] 7. c:\windows\system32\mhn.dll Microsoft Corporation Windows NT .text,.data,.rsrc,.reloc, NVSvc [AM] 8. c:\windows\system32\nvsvc32.exe NVIDIA Corporation NVIDIA Driver Helper Service, Version 162.30 .text,.rdata,.data,.rsrc, ose [AM] 9. c:\program files\common files\microsoft shared\source engine\ose.exe Microsoft Corporation Office Source Engine .text,.data,.rsrc, Pml Driver HPZ12 [A ] 10. c:\windows\system32\hpzipm12.exe HP PML Driver .text,.rdata,.data,.rsrc, RsCCenter [A ] 11. c:\program files\rising\rav\ccenter.exe Beijing Rising Technology Co., Ltd. CCenter .text,.rdata,.data,.rsrc, RsRavMon [A ] 12. c:\program files\rising\rav\ravmond.exe Beijing Rising Technology Co., Ltd. RavMond .text,.rdata,.data,.rsrc, usnjsvc [A ] 13. c:\program files\msn messenger\usnsvc.exe Microsoft Corporation Messenger Sharing USN Journal Reader Service .text,.data,.rsrc, WMPNetworkSvc [A ] 14. c:\program files\windows media player\wmpnetwk.exe Microsoft Corporation Windows Media Player 网络共享服务 .text,.data,.rsrc,.reloc, WudfSvc [A ] 15. c:\windows\system32\wudfsvc.dll Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Service .text,.data,.rsrc,.reloc,
hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:

hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:	发表于： 2007-10-02 21:09 \| 只看楼主短消息资料字号：小中大 3楼 + 内核驱动 + HKLM\System\CurrentControlSet\Services aracpi [A ] 16. c:\windows\system32\drivers\aracpi.sys Microsoft Corporation Microsoft AR ACPI Driver (Beta 2 Release 2) .text,.rdata,.data,INIT,.rsrc,.reloc, arhidfltr [A ] 17. c:\windows\system32\drivers\arhidfltr.sys Microsoft Corporation Microsoft AR HID Filter Driver (Beta 2 Release 2) .text,.rdata,.data,INIT,.rsrc,.reloc, arkbcfltr [A ] 18. c:\windows\system32\drivers\arkbcfltr.sys Microsoft Corporation Microsoft AR PS/2 Keyboard Filter Driver (Beta 2 Release 2) .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, armoucfltr [A ] 19. c:\windows\system32\drivers\armoucfltr.sys Microsoft Corporation Microsoft AR PS/2 Mouse Filter Driver (Beta 2 Release 2) .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, ARPolicy [A ] 20. c:\windows\system32\drivers\arpolicy.sys Microsoft Corporation Microsoft AR Policy Driver (Beta 2 Release 2) .text,.rdata,.data,INIT,.rsrc,.reloc, BaseTDI [A ] 21. c:\windows\system32\drivers\basetdi.sys Beijing Rising Technology Co., Ltd. basetdi .text,.rdata,.data,INIT,.rsrc,.reloc, bb-run [A ] 22. c:\windows\system32\drivers\bb-run.sys Promise Technology, Inc. Promise Disk Accelerator .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, CMB8100 [A ] 23. c:\windows\system32\drivers\certclient.dat .text,.rdata,.data,INIT,.reloc, CMBProtector [A ] 24. c:\windows\system32\drivers\cmbprotector.dat .text,.rdata,.data,INIT,.reloc, CnsStd [A ] 25. c:\windows\system32\drivers\cnsstd.sys 国风因特软件（北京）有限公司 .text,.rdata,.data,INIT,.rsrc,.reloc, ExpScaner [A ] 26. c:\program files\rising\rav\expscan.sys ExpScan.sys .text,.rdata,.data,INIT,.rsrc,.reloc, ft2kEnum [A ] 27. c:\windows\system32\drivers\ic2kenum.sys OEM Corporation ic2k Bus Enumerator .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, ftsata2 [A ] 28. c:\windows\system32\drivers\ftsata2.sys Promise Technology, Inc. Promise Driver for Windows Server 2003 .text,.rdata,.data,INIT,.rsrc,.reloc, GTVD500 [A ] 29. c:\windows\system32\drivers\gtvd500.sys Prolific Technology Inc. USB-to-Serial Cable Driver .text,.rdata,.data,INIT,.rsrc,.reloc, HDAudBus [A ] 30. c:\windows\system32\drivers\hdaudbus.sys Windows (R) Server 2003 DDK provider High Definition Audio Bus Driver v1.0a .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, HookCont [A ] 31. c:\program files\rising\rav\hookcont.sys Rising HookCont .text,.rdata,.data,INIT,.rsrc,.reloc, HookReg [A ] 32. c:\program files\rising\rav\hookreg.sys .text,.rdata,.data,INIT,.rsrc,.reloc, HookSys [A ] 33. c:\program files\rising\rav\hooksys.sys Rising Hooksys .text,.rdata,.data,INIT,.rsrc,.reloc, iaStor [A ] 34. c:\windows\system32\drivers\iastor.sys Intel Corporation Intel Matrix Storage Manager driver .text,.rdata,.data,INIT,.rsrc,.reloc, IntcAzAudAddService [A ] 35. c:\windows\system32\drivers\rtkhdaud.sys Realtek Semiconductor Corp. Realtek(r) High Definition Audio Function Driver .text,CODE,.rdata,.data,.data1,PAGE,INIT,.rsrc,.reloc, lgjfnap [A ] 36. c:\windows\system32\drivers\lgjfnap.sys 北京三七二一科技有限公司 sys 应用程序 .text,.rdata,.data,INIT,.rsrc,.reloc, MEMSCAN [A ] 37. c:\program files\rising\rav\memscan.sys Beijing Rising Technology Co., Ltd. MemScan Driver .text,.rdata,.data,INIT,.rsrc,.reloc, MHNDRV [A ] 38. c:\windows\system32\drivers\mhndrv.sys Microsoft Corporation Microsoft Multimedia Home Network (MHN) Support Driver .text,.rdata,.data,INIT,.rsrc,.reloc, Ps2 [A ] 39. c:\windows\system32\drivers\ps2.sys Hewlett-Packard Company PS2 SYS .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, PxHelp20 [A ] 40. c:\windows\system32\drivers\pxhelp20.sys Sonic Solutions Px Engine Device Driver for Windows 2000/XP .text,.rdata,.data,INIT,.rsrc,.reloc, QKeyService [A ] 41. c:\windows\system32\keycrypt.sys Tencent Technology (Shenzhen) Company Limited KeyCrypt Device Driver .text,.rdata,.data,.CRT,.STL,INIT,.rsrc,.reloc, R5BaseSmc [A ] 42. c:\windows\system32\drivers\smccard.sys OEM This is used by SRC 2000 Readers page,.text,init,.rdata,.data,INIT,.rsrc,.reloc, Reader_Device [A ] 43. c:\windows\system32\drivers\usbic2k.sys OEM This is used by SRC 2000 Readers page,.text,init,.rdata,.data,INIT,.rsrc,.reloc, RsAntiSpyware [A ] 44. c:\windows\system32\drivers\rsboot.sys Beijing Rising Technology Co., Ltd. Anti-RootKit Driver .text,.rdata,.data,INIT,.rsrc,.reloc, RsNTGDI [A ] 45. c:\windows\system32\drivers\rsntgdi.sys Beijing Rising Technology Co., Ltd. RsNTGDI .text,.rdata,INIT,.rsrc,.reloc, RSPPSYS [A ] 46. c:\program files\rising\rav\rsppsys.sys Rising RSPPSYS.SYS .text,.rdata,.data,INIT,.rsrc,.reloc, RTL8023xp [A ] 47. c:\windows\system32\drivers\rtnicxp.sys Realtek Semiconductor Corporation Realtek 10/100/1000 NDIS 5.1 Driver .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, Secdrv [A ] 48. c:\windows\system32\drivers\secdrv.sys .text,.data,INIT,.reloc, SYMIDSCO [A ] 49. c:\progra~1\common~1\symant~1\symcdata\idsdefs\20050901.036\symidsco.sys TesSafe [A ] 50. c:\windows\system32\tessafe.sys .text,.rdata,.data,INIT,.reloc, token [A ] 51. c:\windows\system32\drivers\eps2kt1.sys USB Smart Card Driver .text,.rdata,.data,INIT,.rsrc,.reloc, WudfPf [A ] 52. c:\windows\system32\drivers\wudfpf.sys Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Platform Driver .text,.rdata,.data,PAGE,.edata,INIT,.rsrc,.reloc, WudfRd [A ] 53. c:\windows\system32\drivers\wudfrd.sys Microsoft Corporation Windows Driver Foundation - User-mode Driver Framework Reflector .text,.rdata,.data,PAGE,INIT,.rsrc,.reloc, ZSMC301b [A ] 54. c:\windows\system32\drivers\usbvm31b.sys VM Video streaming and Capture Device Driver .text,.data,PAGECONS,INIT,.rsrc,.reloc, + 文件系统驱动 + HKLM\System\CurrentControlSet\Services CnsMinKP [A ] 55. c:\windows\system32\drivers\cnsminkp.sys + 系统登陆自运行 + HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify WgaLogon [AM] 56. c:\windows\system32\wgalogon.dll Microsoft Corporation Windows 正版增值计划通知 .text,.data,.rsrc,.reloc, + HKCU\Control Panel\Desktop Scrnsave.exe [A ] 57. c:\program files\oberon media\insaniquarium deluxe\insaniquarium.scr .text,.rdata,.data,.rsrc,
hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:

hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:	发表于： 2007-10-02 21:10 \| 只看楼主短消息资料字号：小中大 4楼 + IE浏览器加载模块 + HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks {CFBFAE00-17A6-11D0-99CB-00C04FD64497} [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {00000AAA-A363-466E-BEF5-9BB68697AA7F} [A ] 59. c:\program files\thunder network\webthunder\webthunderbho_now.dll Thunder Networking Technologies,LTD XunLeiBHO .text,.rdata,.data,.rsrc,.reloc, + HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions Script [A ] 60. c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm Exec [A ] 61. c:\windows\network diagnostic\xpnetdiag.exe Microsoft Corporation Network Diagnostic for Windows XP .text,.data,.rsrc, Exec [A ] 62. c:\program files\messenger\msmsgs.exe Microsoft Corporation Windows Messenger .text,.data,.rsrc, + 资源管理器加载模块 + HKLM\SOFTWARE\Classes\PROTOCOLS\Filter application/octet-stream [A ] 63. c:\windows\system32\mscoree.dll Microsoft Corporation Microsoft .NET Runtime Execution Engine .text,.data,.rsrc,.reloc, application/x-complus [A ] 63. c:\windows\system32\mscoree.dll Microsoft Corporation Microsoft .NET Runtime Execution Engine .text,.data,.rsrc,.reloc, application/x-msdownload [A ] 63. c:\windows\system32\mscoree.dll Microsoft Corporation Microsoft .NET Runtime Execution Engine .text,.data,.rsrc,.reloc, text/xml [A ] 64. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll Microsoft Corporation Microsoft Office XML MIME Filter .text,.data,.rsrc,.reloc, + HKLM\SOFTWARE\Classes\PROTOCOLS\Handler livecall [A ] 65. c:\program files\msn messenger\msgrapp.8.1.0178.00.dll Microsoft Corporation MSN Messenger Protocol Handler .text,.data,.rsrc,.reloc, msnim [A ] 65. c:\program files\msn messenger\msgrapp.8.1.0178.00.dll Microsoft Corporation MSN Messenger Protocol Handler .text,.data,.rsrc,.reloc, mso-offdap [A ] 66. c:\program files\common files\microsoft shared\web components\10\owc10.dll Microsoft Corporation Microsoft Office XP Web Components .text,.data,.rtext,.bootdat,msoconst,Shared,.rsrc,.reloc, mso-offdap11 [A ] 67. c:\program files\common files\microsoft shared\web components\11\owc11.dll Microsoft Corporation Microsoft Office Web Components 2003 .text,.data,.rtext,Shared,.cdata,.rsrc,.reloc, + HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} [A ] 68. c:\windows\system32\ieudinit.exe Microsoft Corporation IE Per User Active Setup Uninstall Utility .text,.data,.rsrc,.reloc, {407408d4-94ed-4d86-ab69-a7f649d112ee} [A ] 69. c:\windows\inf\mcdftreg.inf + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved HyperTerminal Icon Ext [A ] 70. c:\windows\system32\hticons.dll Hilgraeve, Inc. HyperTerminal Applet Library .text,.data,.rsrc,.reloc, Fusion Cache [A ] 63. c:\windows\system32\mscoree.dll Microsoft Corporation Microsoft .NET Runtime Execution Engine .text,.data,.rsrc,.reloc, IE Search Band [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, Shell DocObject Viewer [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, InternetShortcut [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, Microsoft Url History Service [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, History [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, Temporary Internet Files [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, Temporary Internet Files [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, Microsoft Url Search Hook [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, The Internet [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, Internet Name Space [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, MediaCenter Property Page [A ] 71. c:\windows\arpower.dll Microsoft ARPower Dynamic Link Library COM .text,.data,.rsrc,.reloc, NvCpl DesktopContext Class [A ] 72. c:\windows\system32\nvcpl.dll NVIDIA Corporation NVIDIA Display Properties Extension .text,.rdata,.data,CONST,.rsrc,.reloc, Desktop Explorer [A ] 73. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, Desktop Explorer Menu [A ] 73. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, nView Desktop Context Menu [A ] 73. c:\windows\system32\nvshell.dll .text,.rdata,.data,.idata,.shared,.rsrc,.reloc, Shell Extensions for RealOne Player [A ] 74. c:\program files\real\realplayer\rpshell.dll RealNetworks, Inc. RealPlayer Shell Extensions .text,.rdata,.data,.rsrc,.reloc, ShellViewRTF [A ] 75. c:\windows\system32\shellvrtf.dll XSS ShellvRTF .text,.rdata,.data,.rsrc,.reloc, ShellLink for Application References [A ] 76. c:\windows\system32\dfshim.dll Microsoft Corporation Application Deployment Support Library .text,.data,.rsrc,.reloc, Shell Icon Handler for Application References [A ] 76. c:\windows\system32\dfshim.dll Microsoft Corporation Application Deployment Support Library .text,.data,.rsrc,.reloc, Microsoft.XPS.Shell.Metadata.1 [A ] 77. c:\windows\system32\xpsshhdr.dll Microsoft Corporation Package Document Shell Extension Handler .text,.data,.rsrc,.reloc, Microsoft.XPS.Shell.Thumbnail.1 [A ] 77. c:\windows\system32\xpsshhdr.dll Microsoft Corporation Package Document Shell Extension Handler .text,.data,.rsrc,.reloc, Messenger Sharing Folders [A ] 78. c:\program files\msn messenger\fsshext.8.1.0178.00.dll Microsoft Corporation Messenger File Sharing Shell Extensions .text,.data,.rsrc,.reloc, AutoCAD 数字签名图标覆盖处理程序 [AM] 79. c:\windows\system32\acsignicon.dll Autodesk AcSignIcon Module .text,.rdata,.data,.rsrc,.reloc, Autodesk Drawing Preview [A ] 80. c:\program files\common files\autodesk shared\thumbnail\acthumbnail16.dll Autodesk AcThumbnail Module .text,.rdata,.data,.rsrc,.reloc, IE Microsoft BrowserBand [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc,
hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:

hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:	发表于： 2007-10-02 21:11 \| 只看楼主短消息资料字号：小中大 5楼 IE Fade Task [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Menu Desk Bar [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE AutoComplete [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Navigation Bar [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Menu Site [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Menu Band [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Microsoft History AutoComplete List [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Tracking Shell Menu [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE IShellFolderBand [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE BandProxy [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE MRU AutoComplete List [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE RSS Feeder Folder [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Microsoft Shell Folder AutoComplete List [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Microsoft Multiple AutoComplete List Container [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, Microsoft Browser Architecture [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Shell Rebar BandSite [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Shell Band Site Menu [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, &Links [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Registry Tree Options Utility [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE User Assist [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, IE Custom MRU AutoCompleted List [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, Yahoo Trojan Cleanner [AM] 81. c:\program files\3721\ske\contmenu.dll UPX0,UPX1,.rsrc, Web Folders [A ] 82. c:\program files\common files\microsoft shared\web folders\msonsext.dll Microsoft Corporation Microsoft Web Folders .text,.data,.rsrc,.reloc, Microsoft Office Outlook Desktop Icon Handler [A ] 83. c:\program files\microsoft office\office11\mlshext.dll Microsoft Corporation Microsoft Shell Extension Library .text,.data,.cdata,.rsrc,.reloc, Microsoft Office Outlook Custom Icon Handler [A ] 84. c:\program files\microsoft office\office11\olkfstub.dll Microsoft Corporation Outlook Shell Hook for Start/Find .text,.data,.rsrc,.reloc, Microsoft Office HTML Icon Handler [A ] 85. c:\program files\microsoft office\office11\msohev.dll Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc,.reloc, WinRAR shell extension [AM] 86. c:\program files\winrar\rarext.dll .text,.data,.tls,.idata,.edata,.rsrc,.reloc, Portable Media Devices [A ] 87. c:\windows\system32\audiodev.dll Microsoft Corporation Portable Media Devices Shell Extension .text,.data,.rsrc,.reloc, Portable Devices [A ] 88. c:\windows\system32\wpdshext.dll Microsoft Corporation Portable Devices Shell Extension .text,.data,.rsrc,.reloc, Portable Devices Menu [A ] 88. c:\windows\system32\wpdshext.dll Microsoft Corporation Portable Devices Shell Extension .text,.data,.rsrc,.reloc, RISING [AM] 89. c:\windows\system32\ravext.dll Beijing Rising Technology Co., Ltd. Rising Shell Ext Module .text,.rdata,.data,.rsrc,.reloc, Play on my TV helper [A ] 72. c:\windows\system32\nvcpl.dll NVIDIA Corporation NVIDIA Display Properties Extension .text,.rdata,.data,CONST,.rsrc,.reloc, + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks {32CD708B-60A7-4C00-9377-D73EAA495F0F} [AM] 89. c:\windows\system32\ravext.dll Beijing Rising Technology Co., Ltd. Rising Shell Ext Module .text,.rdata,.data,.rsrc,.reloc,
hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:

hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:	发表于： 2007-10-02 21:12 \| 只看楼主短消息资料字号：小中大 6楼 + 用户登陆自运行项目 + HKLM\Software\Microsoft\Windows\CurrentVersion\Run runeip [AM] 90. c:\program files\rising\antispyware\runiep.exe Beijing Rising Technology Co., Ltd. Rising AntiSpyware Monitor .text,.rdata,.data,.rsrc, RavTask [A ] 91. c:\program files\rising\rav\ravtask.exe Beijing Rising Technology Co., Ltd. RavTimer .text,.rdata,.data,.rsrc, + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce KKDelay [A ] 92. c:\program files\rising\antispyware\runonce.exe Beijing Rising Technology Co., Ltd. RunOnce Application .text,.rdata,.data,.rsrc, + 开机执行 + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 93. c:\windows\system32\bsmain.exe Beijing Rising Technology Co., Ltd. BootScan .text,.data,.rsrc,.reloc, [A ] 94. c:\windows\system32\kknative.exe Beijing Rising Technology Co., Ltd. NativeAp .text,.data,.rsrc,.reloc, + 映像劫持 + HKCR\.exe exefile\启用/禁用数字签名图标\Command [A ] 95. c:\windows\system32\acsignopt.exe Autodesk AcSignOpt Module .text,.rdata,.data,.rsrc, + HKCR\.html htmlfile\Edit\Command [A ] 96. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc, htmlfile\Print\Command [A ] 96. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc, + HKCR\.htm htmlfile\Edit\Command [A ] 96. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc, htmlfile\Print\Command [A ] 96. c:\program files\microsoft office\office11\msohtmed.exe Microsoft Corporation Microsoft Office 2003 component .text,.data,.rsrc, + 打印机监控 + HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors HP Standard TCP/IP Port [AM] 97. c:\windows\system32\hptcpmon.dll Hewlett Packard Standard TCP/IP Port Monitor DLL .text,.rdata,.data,.rsrc,.reloc, LIDIL Language Monitor [AM] 98. c:\windows\system32\hpzll3xu.dll Hewlett-Packard Company LanguageMonitor .text,.data,.rsrc,.reloc, Microsoft Document Imaging Writer Monitor [AM] 99. c:\windows\system32\mdimon.dll Microsoft Corporation Microsoft? Document Imaging .text,.data,.rsrc,.reloc, + 其他自启动项目 + C:\Documents and Settings\Default User\「开始」菜单\程序\启动 Pin.lnk [A ] 100. c:\hp\bin\cloaker.exe Hewlett-Packard Co. Cloaker .text,.rdata,.data,.rsrc, + C:\Documents and Settings\Default User\「开始」菜单\程序\启动 Pin.lnk [A ] 100. c:\hp\bin\cloaker.exe Hewlett-Packard Co. Cloaker .text,.rdata,.data,.rsrc, + C:\WINDOWS\Tasks 查看 Windows Live Toolbar 更新.job [A ] 101. c:\program files\windows live toolbar\msntbup.exe Microsoft Corporation MSN Search Toolbar Scheduled Update Utility .text,.data,.rsrc, + 正在运行的进程 + 000001ec(492) smss.exe + 00000248(584) runiep.exe 00400000[00013000] [AM] 90. c:\program files\rising\antispyware\runiep.exe Beijing Rising Technology Co., Ltd. Rising AntiSpyware Monitor .text,.rdata,.data,.rsrc, 00C00000[0001B000] [ M] 102. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 10000000[00172000] [ M] 103. c:\windows\system32\nview.dll .text,.rdata,.data,.idata,.rsrc,.reloc, 00DF0000[00028000] [ M] 104. c:\windows\system32\nvwrszhc.dll NVIDIA Corporation NVIDIA nView Desktop and Window Manager .rsrc,.reloc, 58000000[0000E000] [ M] 105. c:\program files\3721\helper.dll 国风因特软件（北京）有限公司 helperup .text,.rdata,.data,.cnshelp,.rsrc,.reloc, + 0000025c(604) csrss.exe + 00000278(632) winlogon.exe 01F70000[0003B000] [AM] 56. c:\windows\system32\wgalogon.dll Microsoft Corporation Windows 正版增值计划通知 .text,.data,.rsrc,.reloc, + 000002a4(676) services.exe 47260000[0000F000] [ M] 106. c:\windows\apppatch\acadproc.dll Microsoft Corporation Windows Compatibility DLL .text,.data,.rsrc,.reloc, + 000002b0(688) lsass.exe + 00000358(856) svchost.exe + 000003ac(940) svchost.exe + 000003dc(988) ctfmon.exe 10000000[0001B000] [ M] 102. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, + 000003fc(1020) svchost.exe 00DB0000[00009000] [ M] 107. c:\windows\system32\normaliz.dll Microsoft Corporation Unicode Normalization DLL .text,.data,.rsrc,.reloc, 41D50000[00045000] [ M] 108. c:\windows\system32\iertutil.dll Microsoft Corporation Run time utility for Internet Explorer .text,.data,.rsrc,.reloc, 50E60000[0000C000] [ M] 109. c:\windows\system32\wups2.dll Microsoft Corporation Windows Update client proxy stub 2 .text,.orpc,.data,.rsrc,.reloc, + 00000428(1064) svchost.exe + 00000494(1172) svchost.exe 00780000[00009000] [ M] 107. c:\windows\system32\normaliz.dll Microsoft Corporation Unicode Normalization DLL .text,.data,.rsrc,.reloc, 41D50000[00045000] [ M] 108. c:\windows\system32\iertutil.dll Microsoft Corporation Run time utility for Internet Explorer .text,.data,.rsrc,.reloc, + 00000554(1364) spoolsv.exe 10000000[00028000] [AM] 97. c:\windows\system32\hptcpmon.dll Hewlett Packard Standard TCP/IP Port Monitor DLL .text,.rdata,.data,.rsrc,.reloc, 00A60000[00025000] [ M] 110. c:\windows\system32\hpzjrd01.dll Hewlett Packard HP Rediscovery Library .text,.rdata,.data,.rsrc,.reloc, 00BE0000[00033000] [ M] 111. c:\windows\system32\hptcpmui.dll Microsoft Corporation Standard TCP/IP Port Monitor UI DLL .text,.rdata,.data,.rsrc,.reloc, 00E70000[00014000] [ M] 112. c:\windows\system32\hptcpmib.dll Hewlett Packard Standard TCP/IP Port Monitor DLL .text,.rdata,.data,.rsrc,.reloc, 00EB0000[0000E000] [AM] 98. c:\windows\system32\hpzll3xu.dll Hewlett-Packard Company LanguageMonitor .text,.data,.rsrc,.reloc, 00EC0000[00008000] [AM] 99. c:\windows\system32\mdimon.dll Microsoft Corporation Microsoft? Document Imaging .text,.data,.rsrc,.reloc, 00F10000[00013000] [ M] 113. c:\windows\system32\spool\prtprocs\w32x86\hpzpp3xu.dll Hewlett-Packard Corporation .text,.data,.rsrc,.reloc, 00F30000[00008000] [ M] 114. c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll Microsoft Corporation Microsoft? Document Imaging .text,.data,.rsrc,.reloc, 00F40000[0000A000] [ M] 115. c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll Microsoft Corporation Print Filter Pipeline Proxy .text,.orpc,.data,.rsrc,.reloc,
hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:

hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:	发表于： 2007-10-02 21:13 \| 只看楼主短消息资料字号：小中大 7楼 + 00000588(1416) SCardSvr.exe + 000005c0(1472) RavStub.exe 00400000[00018000] [ M] 116. c:\program files\rising\rav\ravstub.exe Beijing Rising Technology Co., Ltd. Rising RavStub .text,.rdata,.data,.rsrc, 10000000[0001B000] [ M] 117. c:\program files\rising\rav\rscommx.dll rising RsCommX .text,.rdata,.data,.rsrc,.reloc, 23700000[0001A000] [ M] 118. c:\program files\rising\rav\rscommon.dll Beijing Rising Technology Co., Ltd. Rising Common Function Dynamic Link Library .text,.rdata,.data,.rsrc,.reloc, + 000006c8(1736) ehRecvr.exe 00400000[0003D000] [AM] 4. c:\windows\ehome\ehrecvr.exe Microsoft Corporation Media Center Receiver Service .text,.data,.rsrc, 46630000[00007000] [ M] 119. c:\windows\ehome\ehtrace.dll Microsoft Corporation Media Center Event Trace Module .text,.data,.rsrc,.reloc, + 000006d4(1748) dllhost.exe + 00000718(1816) ehSched.exe + 00000768(1896) nvsvc32.exe 00400000[0002B000] [AM] 8. c:\windows\system32\nvsvc32.exe NVIDIA Corporation NVIDIA Driver Helper Service, Version 162.30 .text,.rdata,.data,.rsrc, 009F0000[0005A000] [ M] 120. c:\windows\system32\nvapi.dll NVIDIA Corporation NVIDIA NVAPI Library, Version 162.30 .text,.rdata,.data,.idata,.rsrc,.reloc, + 00000794(1940) svchost.exe + 000007c8(1992) svchost.exe + 000007f8(2040) Explorer.EXE 00400000[00009000] [ M] 107. c:\windows\system32\normaliz.dll Microsoft Corporation Unicode Normalization DLL .text,.data,.rsrc,.reloc, 41D50000[00045000] [ M] 108. c:\windows\system32\iertutil.dll Microsoft Corporation Run time utility for Internet Explorer .text,.data,.rsrc,.reloc, 60560000[00033000] [AM] 79. c:\windows\system32\acsignicon.dll Autodesk AcSignIcon Module .text,.rdata,.data,.rsrc,.reloc, 10000000[0001B000] [AM] 89. c:\windows\system32\ravext.dll Beijing Rising Technology Co., Ltd. Rising Shell Ext Module .text,.rdata,.data,.rsrc,.reloc, 422B0000[005CB000] [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, 60610000[00061000] [ M] 121. c:\program files\common files\autodesk shared\acsigncore16.dll Autodesk AcSignCore Module .text,.orpc,.rdata,.data,.rsrc,.reloc, 013D0000[0001B000] [ M] 102. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 018B0000[00172000] [ M] 103. c:\windows\system32\nview.dll .text,.rdata,.data,.idata,.rsrc,.reloc, 01A30000[00028000] [ M] 104. c:\windows\system32\nvwrszhc.dll NVIDIA Corporation NVIDIA nView Desktop and Window Manager .rsrc,.reloc, 01890000[00007000] [ M] 122. c:\program files\3721\alrex.dll 国风因特软件（北京）有限公司 alrex .text,.rdata,.data,.rsrc,.reloc, 01C30000[0002C000] [AM] 86. c:\program files\winrar\rarext.dll .text,.data,.tls,.idata,.edata,.rsrc,.reloc, 02060000[00028000] [AM] 81. c:\program files\3721\ske\contmenu.dll UPX0,UPX1,.rsrc, 00CB0000[00015000] [ M] 123. c:\windows\system32\nvwddi.dll NVIDIA Corporation NVIDIA nView Display Driver Interface Lib, Version 162.30 .text,.rdata,.data,.shared,.rsrc,.reloc, + 0000087c(2172) alg.exe + 00000acc(2764) Ras.exe 00400000[00160000] [ M] 124. c:\program files\rising\antispyware\ras.exe Beijing Rising Technology Co., Ltd. Rising AntiSpyware .text,.rdata,.data,.rsrc, 00380000[00009000] [ M] 107. c:\windows\system32\normaliz.dll Microsoft Corporation Unicode Normalization DLL .text,.data,.rsrc,.reloc, 41D50000[00045000] [ M] 108. c:\windows\system32\iertutil.dll Microsoft Corporation Run time utility for Internet Explorer .text,.data,.rsrc,.reloc, 10000000[00013000] [ M] 125. c:\program files\rising\antispyware\topsoft.dll Beijing Rising Technology Co., Ltd. Rising AntiSpyware TopSoft .text,.rdata,.data,.rsrc,.reloc, 7C140000[00103000] [ M] 126. c:\program files\rising\antispyware\mfc71.dll Microsoft Corporation MFCDLL Shared Library - Retail Version .text,.data,.rsrc,.reloc, 7C340000[00056000] [ M] 127. c:\program files\rising\antispyware\msvcr71.dll Microsoft Corporation Microsoft? C Runtime Library .text,.rdata,.data,.rsrc,.reloc, 7C3A0000[0007B000] [ M] 128. c:\program files\rising\antispyware\msvcp71.dll Microsoft Corporation Microsoft? C++ Runtime Library .text,.rdata,.data,.rsrc,.reloc, 5D360000[0000A000] [ M] 129. c:\windows\system32\mfc71chs.dll Microsoft Corporation MFC Language Specific Resources .rsrc,.reloc, 00FF0000[00172000] [ M] 103. c:\windows\system32\nview.dll .text,.rdata,.data,.idata,.rsrc,.reloc, 01230000[00028000] [ M] 104. c:\windows\system32\nvwrszhc.dll NVIDIA Corporation NVIDIA nView Desktop and Window Manager .rsrc,.reloc, 012B0000[000BD000] [ M] 130. c:\program files\rising\antispyware\rasgui.dll Beijing Rising Technology Co., Ltd. RasGUI .text,.rdata,.data,.rsrc,.reloc, 01C20000[0001B000] [AM] 89. c:\windows\system32\ravext.dll Beijing Rising Technology Co., Ltd. Rising Shell Ext Module .text,.rdata,.data,.rsrc,.reloc, 01CA0000[0001B000] [ M] 102. c:\program files\rising\antispyware\ieprot.dll Beijing Rising Technology Co., Ltd. IE Protector .text,.rdata,.data,.rsrc,.reloc, 01F60000[0002F000] [ M] 131. c:\program files\rising\antispyware\engine.dll Beijing Rising Technology Co., Ltd. kaka engine .text,.rdata,.data,.rsrc,.reloc, 02090000[00012000] [ M] 132. c:\program files\rising\antispyware\zip.dll rising zip UPX0,UPX1,.rsrc, 60560000[00033000] [AM] 79. c:\windows\system32\acsignicon.dll Autodesk AcSignIcon Module .text,.rdata,.data,.rsrc,.reloc, 01A30000[00015000] [ M] 123. c:\windows\system32\nvwddi.dll NVIDIA Corporation NVIDIA nView Display Driver Interface Lib, Version 162.30 .text,.rdata,.data,.shared,.rsrc,.reloc, 422B0000[005CB000] [AM] 58. c:\windows\system32\ieframe.dll Microsoft Corporation Internet Explorer .text,.data,.rsrc,.reloc, + 00000f2c(3884) OSE.EXE 30000000[00017000] [AM] 9. c:\program files\common files\microsoft shared\source engine\ose.exe Microsoft Corporation Office Source Engine .text,.data,.rsrc,
hogoo 初生襁褓狮帖子:16 注册: 2006-11-05 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT