中了毒,用瑞星总杀不掉,请高手帮忙看下日志 - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛中了毒,用瑞星总杀不掉,请高手帮忙看下日志

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

12

1 / 2 页

跳转页

中了毒,用瑞星总杀不掉,请高手帮忙看下日志

liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	发表于： 2008-01-18 16:45 \| 只看楼主短消息资料字号：小中大 1楼中了毒,用瑞星总杀不掉,请高手帮忙看下日志瑞星卡卡电脑诊断日志 v1.30 (2008-1-18 16:16:23) 北京瑞星科技股份有限公司注释: [A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + 系统服务 + HKLM\System\CurrentControlSet\Services aspnet_state [A ] 1. c:\windows\microsoft.net\framework\v2.0.50727\aspnet_state.exe Autodesk Licensing Service [A ] 2. c:\program files\common files\autodesk shared\service\adskscsrv.exe clr_optimization_v2.0.50727_32 [A ] 3. c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe RfwProxySrv [AM] 4. c:\program files\rising\rfw\rfwproxy.exe RfwService [AM] 5. c:\program files\rising\rfw\rfwsrv.exe RsCCenter [AM] 6. c:\program files\rising\rav\ccenter.exe RsRavMon [AM] 7. c:\program files\rising\rav\ravmond.exe UMWdf [AM] 8. c:\windows\system32\wdfmgr.exe [用户系统信息]Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727) 2008-01-18 19:57:45
liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	分享到：

liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	发表于： 2008-01-18 16:47 \| 只看楼主短消息资料字号：小中大 2楼 + 内核驱动 + HKLM\System\CurrentControlSet\Services 1653537 [A ] 9. c:\windows\system32\drivers\1653537.sys 25797815 [A ] 10. c:\windows\system32\drivers\25797815.sys ALCXWDM [A ] 11. c:\windows\system32\drivers\alcxwdm.sys BaseTDI [A ] 12. c:\windows\system32\drivers\basetdi.sys Cam5603C [A ] 13. c:\windows\system32\drivers\bs350u2.sys cdawdm [A ] 14. c:\windows\system32\drivers\cdawdm.sys DH [A ] 15. c:\windows\temp\tmp18f7.tmp GPKiller [A ] 16. c:\windows\system32\drivers\gpkiller.sys HOOKAPI [A ] 17. c:\program files\rising\rav\hookapi.sys HookCont [A ] 18. c:\windows\system32\drivers\hookcont.sys HookNtos [A ] 19. c:\windows\system32\drivers\hookntos.sys HookReg [A ] 20. c:\windows\system32\drivers\hookreg.sys HookSys [A ] 21. c:\windows\system32\drivers\hooksys.sys HookUrl [A ] 22. c:\program files\rising\rfw\hookurl.sys HSFHWICH [A ] 23. c:\windows\system32\drivers\hsfhwich.sys HSF_DP [A ] 24. c:\windows\system32\drivers\hsf_dp.sys ialm [A ] 25. c:\windows\system32\drivers\ialmnt5.sys kmsinput [A ] 26. c:\windows\system32\drivers\kmsinput.sys mdmxsdk [A ] 27. c:\windows\system32\drivers\mdmxsdk.sys MegaIDE [A ] 28. c:\windows\system32\drivers\megaide.sys MTsensor [A ] 29. c:\windows\system32\drivers\atkacpi.sys npkcrypt [A ] 30. c:\program files\tencent\qq\npkcrypt.sys npkycryp [A ] 31. c:\program files\tencent\qq\npkycryp.sys RfwBase [A ] 32. c:\windows\system32\drivers\rfwbase.sys RsAntiSpyware [A ] 33. c:\windows\system32\drivers\rsboot.sys RsFwDrv [A ] 34. c:\program files\rising\rfw\rsfwdrv.sys RsNTGDI [A ] 35. c:\windows\system32\drivers\rsntgdi.sys Secdrv [A ] 36. c:\windows\system32\drivers\secdrv.sys SmartCd [A ] 37. c:\windows\system32\drivers\smartcd.sys TDMD [A ] 38. c:\windows\system32\drivers\tdmd.sys winachsf [A ] 39. c:\windows\system32\drivers\hsf_cnxt.sys
liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:

liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	发表于： 2008-01-18 16:48 \| 只看楼主短消息资料字号：小中大 3楼 + IE浏览器加载模块 + HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} [A ] 40. c:\windows\system32\kakatool.dll + HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks {CFBFAE00-17A6-11D0-99CB-00C04FD64497} [AM] 41. c:\windows\system32\ieframe.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {01443AEC-0FD1-40fd-9C87-E93D1494C233} [A ] 42. c:\program files\thunder network\thunder\comdlls\tdatonce_now.dll {889D2FEB-5411-4565-8998-1DD2C5261283} [A ] 43. c:\program files\thunder network\thunder\comdlls\xunleibho_now.dll + HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions Exec [A ] 44. c:\program files\thunder network\thunder\thunder.exe Exec [A ] 45. c:\windows\network diagnostic\xpnetdiag.exe + 资源管理器加载模块 + HKLM\SOFTWARE\Classes\PROTOCOLS\Filter application/octet-stream [A ] 46. c:\windows\system32\mscoree.dll application/x-complus [A ] 46. c:\windows\system32\mscoree.dll application/x-msdownload [A ] 46. c:\windows\system32\mscoree.dll + HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} [A ] 47. c:\windows\system32\ieudinit.exe + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved HyperTerminal Icon Ext [A ] 48. c:\windows\system32\hticons.dll IE Search Band [AM] 41. c:\windows\system32\ieframe.dll Shell DocObject Viewer [AM] 41. c:\windows\system32\ieframe.dll InternetShortcut [AM] 41. c:\windows\system32\ieframe.dll Microsoft Url History Service [AM] 41. c:\windows\system32\ieframe.dll History [AM] 41. c:\windows\system32\ieframe.dll Temporary Internet Files [AM] 41. c:\windows\system32\ieframe.dll Temporary Internet Files [AM] 41. c:\windows\system32\ieframe.dll Microsoft Url Search Hook [AM] 41. c:\windows\system32\ieframe.dll The Internet [AM] 41. c:\windows\system32\ieframe.dll Internet Name Space [AM] 41. c:\windows\system32\ieframe.dll Microsoft Outlook Custom Icon Handler [A ] 49. c:\program files\microsoft office\office\olkfstub.dll Shell Extensions for RealOne Player [A ] 50. c:\program files\real\realplayer\rpshell.dll WinRAR shell extension [A ] 51. c:\program files\winrar\rarext.dll Portable Media Devices [A ] 52. c:\windows\system32\audiodev.dll Portable Media Devices Menu [A ] 52. c:\windows\system32\audiodev.dll Fusion Cache [A ] 46. c:\windows\system32\mscoree.dll ShellLink for Application References [A ] 53. c:\windows\system32\dfshim.dll Shell Icon Handler for Application References [A ] 53. c:\windows\system32\dfshim.dll
liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:

liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	发表于： 2008-01-18 16:49 \| 只看楼主短消息资料字号：小中大 4楼 AutoCAD 数字签名图标覆盖处理程序 [AM] 54. c:\windows\system32\acsignicon.dll Autodesk Drawing Preview [A ] 55. c:\program files\common files\autodesk shared\thumbnail\acthumbnail16.dll RISING [A ] 56. c:\windows\system32\ravext.dll IE Microsoft BrowserBand [AM] 41. c:\windows\system32\ieframe.dll IE Fade Task [AM] 41. c:\windows\system32\ieframe.dll IE Menu Desk Bar [AM] 41. c:\windows\system32\ieframe.dll IE AutoComplete [AM] 41. c:\windows\system32\ieframe.dll IE Navigation Bar [AM] 41. c:\windows\system32\ieframe.dll IE Menu Site [AM] 41. c:\windows\system32\ieframe.dll IE Menu Band [AM] 41. c:\windows\system32\ieframe.dll IE Microsoft History AutoComplete List [AM] 41. c:\windows\system32\ieframe.dll IE Tracking Shell Menu [AM] 41. c:\windows\system32\ieframe.dll IE IShellFolderBand [AM] 41. c:\windows\system32\ieframe.dll IE BandProxy [AM] 41. c:\windows\system32\ieframe.dll IE MRU AutoComplete List [AM] 41. c:\windows\system32\ieframe.dll IE RSS Feeder Folder [AM] 41. c:\windows\system32\ieframe.dll IE Microsoft Shell Folder AutoComplete List [AM] 41. c:\windows\system32\ieframe.dll IE Microsoft Multiple AutoComplete List Container [AM] 41. c:\windows\system32\ieframe.dll Microsoft Browser Architecture [AM] 41. c:\windows\system32\ieframe.dll IE Shell Rebar BandSite [AM] 41. c:\windows\system32\ieframe.dll IE Shell Band Site Menu [AM] 41. c:\windows\system32\ieframe.dll &Links [AM] 41. c:\windows\system32\ieframe.dll IE Registry Tree Options Utility [AM] 41. c:\windows\system32\ieframe.dll IE User Assist [AM] 41. c:\windows\system32\ieframe.dll IE Custom MRU AutoCompleted List [AM] 41. c:\windows\system32\ieframe.dll + 用户登陆自运行项目 + HKLM\Software\Microsoft\Windows\CurrentVersion\Run SoundMan [AM] 57. c:\windows\soundman.exe NeroFilterCheck [A ] 58. c:\windows\system32\nerocheck.exe IgfxTray [A ] 59. c:\windows\system32\igfxtray.exe HotKeysCmds [A ] 60. c:\windows\system32\hkcmd.exe HControl [A ] 61. c:\windows\atk0100\hcontrol.exe runeip [AM] 62. c:\program files\rising\antispyware\runiep.exe SunJavaUpdateSched [AM] 63. c:\program files\java\j2re1.4.2_04\bin\jusched.exe RavTask [AM] 64. c:\program files\rising\rav\ravtask.exe RfwMain [AM] 65. c:\program files\rising\rfw\rfwmain.exe
liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:

liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	发表于： 2008-01-18 16:51 \| 只看楼主短消息资料字号：小中大 5楼 + 开机执行 + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 66. c:\windows\system32\bsmain.exe + 映像劫持 + HKCR\Folder\shell Super Rabbit CDROM Eject [A ] 67. c:\program files\super rabbit\magicset\srcd2.exe + HKCR\.exe exefile\启用/禁用数字签名图标\Command [A ] 68. c:\windows\system32\acsignopt.exe + HKCR\.html htmlfile\Edit\Command [A ] 69. c:\program files\microsoft office\office\msohtmed.exe htmlfile\Print\Command [A ] 69. c:\program files\microsoft office\office\msohtmed.exe + HKCR\.htm htmlfile\Edit\Command [A ] 69. c:\program files\microsoft office\office\msohtmed.exe htmlfile\Print\Command [A ] 69. c:\program files\microsoft office\office\msohtmed.exe + 其他自启动项目 + C:\Documents and Settings\All Users\「开始」菜单\程序\启动 AutoCAD 启动加速器.lnk [A ] 70. c:\program files\common files\autodesk shared\acstart17.exe + 正在运行的进程 + 000001a8(424) Ras.exe 00400000[00170000] [ M] 71. c:\program files\rising\antispyware\ras.exe 00370000[00009000] [ M] 72. c:\windows\system32\normaliz.dll 41D50000[00045000] [ M] 73. c:\windows\system32\iertutil.dll 780C0000[00061000] [ M] 74. c:\program files\rising\antispyware\msvcp60.dll 10000000[00013000] [ M] 75. c:\program files\rising\antispyware\topsoft.dll 7C140000[00103000] [ M] 76. c:\program files\rising\antispyware\mfc71.dll 7C340000[00056000] [ M] 77. c:\program files\rising\antispyware\msvcr71.dll 7C3A0000[0007B000] [ M] 78. c:\program files\rising\antispyware\msvcp71.dll 00E60000[0001F000] [ M] 79. c:\program files\rising\rav\proccom.dll 00FF0000[00024000] [ M] 80. c:\program files\rising\rav\rscommx2.dll 01130000[000BD000] [ M] 81. c:\program files\rising\antispyware\rasgui.dll 73900000[0002D000] [ M] 82. c:\windows\system32\jpwb.ime 01100000[0001B000] [ M] 83. c:\program files\rising\antispyware\ieprot.dll 422B0000[005CD000] [AM] 41. c:\windows\system32\ieframe.dll + 000001e0(480) Explorer.EXE 00400000[00009000] [ M] 72. c:\windows\system32\normaliz.dll 41D50000[00045000] [ M] 73. c:\windows\system32\iertutil.dll 73900000[0002D000] [ M] 82. c:\windows\system32\jpwb.ime 60560000[00033000] [AM] 54. c:\windows\system32\acsignicon.dll 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 01B80000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 60610000[00061000] [ M] 86. c:\program files\common files\autodesk shared\acsigncore16.dll 422B0000[005CD000] [AM] 41. c:\windows\system32\ieframe.dll 00ED0000[0001B000] [ M] 83. c:\program files\rising\antispyware\ieprot.dll 22EC0000[0000D000] [ M] 87. c:\program files\thunder network\thunder\components\resworker\dsbho_00.dll 22E90000[0000D000] [ M] 88. c:\program files\thunder network\thunder\components\resworker\dataprocessor_00.dll 72C80000[00008000] [ M] 89. c:\windows\system32\msacm32.drv 23700000[00028000] [ M] 90. c:\program files\rising\rav\rscommon.dll + 00000204(516) smss.exe + 00000240(576) wdfmgr.exe 01000000[0000C000] [AM] 8. c:\windows\system32\wdfmgr.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 005F0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 00000254(596) csrss.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 034E0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 0000026c(620) winlogon.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00FD0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 73900000[0002D000] [ M] 82. c:\windows\system32\jpwb.ime 72C80000[00008000] [ M] 89. c:\windows\system32\msacm32.drv + 0000029c(668) services.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00D20000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 000002a8(680) lsass.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00D10000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 000002ac(684) RavMon.exe 00400000[00061000] [ M] 91. c:\program files\rising\rav\ravmon.exe
liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:

liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	发表于： 2008-01-18 16:52 \| 只看楼主短消息资料字号：小中大 6楼 7C140000[00103000] [ M] 92. c:\windows\system32\mfc71.dll 7C340000[00056000] [ M] 93. c:\windows\system32\msvcr71.dll 7C3A0000[0007B000] [ M] 94. c:\windows\system32\msvcp71.dll 10000000[0001F000] [ M] 79. c:\program files\rising\rav\proccom.dll 00B20000[00024000] [ M] 80. c:\program files\rising\rav\rscommx2.dll 23700000[00028000] [ M] 90. c:\program files\rising\rav\rscommon.dll 00D70000[00029000] [ M] 95. c:\program files\rising\rav\recomp.dll 00EB0000[00030000] [ M] 96. c:\program files\rising\rav\refs.dll 00EF0000[0002C000] [ M] 97. c:\program files\rising\rav\viruslib.dll 01030000[00027000] [ M] 98. c:\program files\rising\rav\relibldr.dll 010B0000[0000E000] [ M] 99. c:\program files\rising\rav\rsappmgr.dll 010D0000[00030000] [ M] 100. c:\program files\rising\rav\cfgdll.dll 01230000[00075000] [ M] 101. c:\program files\rising\rav\monrule.dll 23900000[00040000] [ M] 102. c:\program files\rising\rav\pngdll.dll 73900000[0002D000] [ M] 82. c:\windows\system32\jpwb.ime 26600000[000B5000] [ M] 103. c:\program files\rising\rav\rsguilib.dll 23800000[00018000] [ M] 104. c:\program files\rising\rav\rsxml.dll 02D30000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 02E70000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 02C30000[0001B000] [ M] 83. c:\program files\rising\antispyware\ieprot.dll + 00000324(804) RfwMain.exe 00400000[00091000] [AM] 65. c:\program files\rising\rfw\rfwmain.exe 7C140000[00103000] [ M] 92. c:\windows\system32\mfc71.dll 7C340000[00056000] [ M] 93. c:\windows\system32\msvcr71.dll 7C3A0000[0007B000] [ M] 94. c:\windows\system32\msvcp71.dll 26600000[000B5000] [ M] 105. c:\program files\rising\rfw\rsguilib.dll 10000000[0001F000] [ M] 106. c:\program files\rising\rfw\proccom.dll 00B50000[00024000] [ M] 107. c:\program files\rising\rfw\rscommx2.dll 00C90000[0000E000] [ M] 108. c:\program files\rising\rfw\rsappmgr.dll 00CB0000[00030000] [ M] 109. c:\program files\rising\rfw\cfgdll.dll 23700000[00028000] [ M] 110. c:\program files\rising\rfw\rscommon.dll 00EF0000[00014000] [ M] 111. c:\program files\rising\rfw\rfwctrl.dll 23800000[00018000] [ M] 112. c:\program files\rising\rfw\rsxml.dll 23900000[00040000] [ M] 113. c:\program files\rising\rfw\pngdll.dll 014E0000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 01620000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 013E0000[0000F000] [ M] 114. c:\program files\rising\rfw\rfwrule.dll 031E0000[0001B000] [ M] 83. c:\program files\rising\antispyware\ieprot.dll + 00000344(836) svchost.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00D10000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 00000370(880) svchost.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 009B0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 000003bc(956) CCenter.exe 00400000[00029000] [AM] 6. c:\program files\rising\rav\ccenter.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00AB0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll
liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:

liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	发表于： 2008-01-18 16:53 \| 只看楼主短消息资料字号：小中大 7楼 + 000003d0(976) svchost.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 008B0000[00009000] [ M] 72. c:\windows\system32\normaliz.dll 41D50000[00045000] [ M] 73. c:\windows\system32\iertutil.dll 00FA0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 50E60000[00007000] [ M] 115. c:\windows\system32\wups2.dll + 00000418(1048) svchost.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 007A0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 0000047c(1148) svchost.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00820000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 00880000[00009000] [ M] 72. c:\windows\system32\normaliz.dll 41D50000[00045000] [ M] 73. c:\windows\system32\iertutil.dll + 00000488(1160) Ravmond.exe 00400000[0006C000] [AM] 7. c:\program files\rising\rav\ravmond.exe 10000000[00042000] [ M] 116. c:\program files\rising\rav\bwlist.dll 7C140000[00103000] [ M] 92. c:\windows\system32\mfc71.dll 7C340000[00056000] [ M] 93. c:\windows\system32\msvcr71.dll 7C3A0000[0007B000] [ M] 94. c:\windows\system32\msvcp71.dll 00B20000[0000E000] [ M] 99. c:\program files\rising\rav\rsappmgr.dll 00B40000[00030000] [ M] 100. c:\program files\rising\rav\cfgdll.dll 00EE0000[00066000] [ M] 117. c:\program files\rising\rav\rslog.dll 00B90000[0001F000] [ M] 79. c:\program files\rising\rav\proccom.dll 01050000[00024000] [ M] 80. c:\program files\rising\rav\rscommx2.dll 00F50000[00075000] [ M] 101. c:\program files\rising\rav\monrule.dll 00FE0000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 01020000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 010F0000[00013000] [ M] 118. c:\program files\rising\rav\hooksys.dll 01150000[00013000] [ M] 119. c:\program files\rising\rav\hookreg.dll 013B0000[00013000] [ M] 120. c:\program files\rising\rav\hookntos.dll 01410000[0001C000] [ M] 121. c:\program files\rising\rav\rswalmon.dll 02240000[00029000] [ M] 95. c:\program files\rising\rav\recomp.dll 02280000[00030000] [ M] 96. c:\program files\rising\rav\refs.dll 022C0000[0001A000] [ M] 122. c:\program files\rising\rav\ffr.dll 024F0000[00020000] [ M] 123. c:\program files\rising\rav\rsstore.dll 02720000[00013000] [ M] 124. c:\program files\rising\rav\hookcont.dll 02750000[00027000] [ M] 125. c:\program files\rising\rav\fakescan.dll 02790000[00022000] [ M] 126. c:\program files\rising\rav\scanner.dll 028C0000[0002C000] [ M] 97. c:\program files\rising\rav\viruslib.dll 02A00000[00027000] [ M] 98. c:\program files\rising\rav\relibldr.dll 02E90000[0000D000] [ M] 127. c:\program files\rising\rav\hookweb.dll 03DE0000[00020000] [ M] 128. c:\program files\rising\rav\nvfile.dll 04070000[000DC000] [ M] 129. c:\program files\rising\rav\extfile.dll 04160000[00027000] [ M] 130. c:\program files\rising\rav\pearc.dll 13AB0000[00044000] [ M] 131. c:\program files\rising\rav\scanexec.dll 05300000[002DC000] [ M] 132. c:\program files\rising\rav\unexe.dll 057E0000[00052000] [ M] 133. c:\program files\rising\rav\scanex.dll 04610000[00035000] [ M] 134. c:\program files\rising\rav\scanpack.dll 04650000[000B4000] [ M] 135. c:\program files\rising\rav\revm.dll 04860000[0001C000] [ M] 136. c:\program files\rising\rav\urutils.dll 04880000[00011000] [ M] 137. c:\program files\rising\rav\ur000.dat 03D20000[00022000] [ M] 138. c:\program files\rising\rav\scansct.dll
liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:

liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	发表于： 2008-01-18 16:55 \| 只看楼主短消息资料字号：小中大 8楼 + 000004ac(1196) rfwsrv.exe 00400000[00036000] [AM] 5. c:\program files\rising\rfw\rfwsrv.exe 7C140000[00103000] [ M] 92. c:\windows\system32\mfc71.dll 7C340000[00056000] [ M] 93. c:\windows\system32\msvcr71.dll 7C3A0000[0007B000] [ M] 94. c:\windows\system32\msvcp71.dll 10000000[0001F000] [ M] 106. c:\program files\rising\rfw\proccom.dll 00770000[00024000] [ M] 107. c:\program files\rising\rfw\rscommx2.dll 009B0000[0000E000] [ M] 108. c:\program files\rising\rfw\rsappmgr.dll 009D0000[00030000] [ M] 109. c:\program files\rising\rfw\cfgdll.dll 00AE0000[0000F000] [ M] 114. c:\program files\rising\rfw\rfwrule.dll 00AF0000[0000C000] [ M] 139. c:\program files\rising\rfw\rfwlog.dll 00B00000[00018000] [ M] 140. c:\program files\rising\rfw\rfwdrv.dll 731B0000[0000A000] [ M] 141. c:\program files\rising\rfw\psapi.dll 00C20000[0000E000] [ M] 142. c:\program files\rising\rfw\ijt_ctrl.dll 00E60000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00FA0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 00D60000[00016000] [ M] 143. c:\program files\rising\rfw\unvdet.dll 00DB0000[00013000] [ M] 144. c:\program files\rising\rfw\mports.dll + 00000558(1368) rfwproxy.exe 00400000[00236000] [AM] 4. c:\program files\rising\rfw\rfwproxy.exe 7C140000[00103000] [ M] 92. c:\windows\system32\mfc71.dll 7C340000[00056000] [ M] 93. c:\windows\system32\msvcr71.dll 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 731B0000[0000A000] [ M] 141. c:\program files\rising\rfw\psapi.dll 00C90000[0001F000] [ M] 106. c:\program files\rising\rfw\proccom.dll 00CB0000[00024000] [ M] 107. c:\program files\rising\rfw\rscommx2.dll 00F00000[0000F000] [ M] 114. c:\program files\rising\rfw\rfwrule.dll 01230000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 01250000[00016000] [ M] 145. c:\program files\rising\rfw\monmid.dll + 000005e4(1508) rfwstub.exe 00400000[00017000] [ M] 146. c:\program files\rising\rfw\rfwstub.exe 7C3A0000[0007B000] [ M] 94. c:\windows\system32\msvcp71.dll 7C340000[00056000] [ M] 93. c:\windows\system32\msvcr71.dll 23700000[00028000] [ M] 110. c:\program files\rising\rfw\rscommon.dll 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00EE0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 000006d0(1744) RavStub.exe 00400000[00021000] [ M] 147. c:\program files\rising\rav\ravstub.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00650000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 00680000[0001F000] [ M] 79. c:\program files\rising\rav\proccom.dll 007C0000[00024000] [ M] 80. c:\program files\rising\rav\rscommx2.dll 23700000[00028000] [ M] 90. c:\program files\rising\rav\rscommon.dll + 00000780(1920) spoolsv.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00A60000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll
liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:

liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	发表于： 2008-01-18 16:55 \| 只看楼主短消息资料字号：小中大 9楼 + 000009bc(2492) wuauclt.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00C70000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 00000a00(2560) alg.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 006E0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 00000afc(2812) SOUNDMAN.EXE 00400000[00015000] [AM] 57. c:\windows\soundman.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00BB0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 73900000[0002D000] [ M] 82. c:\windows\system32\jpwb.ime 00F40000[0001B000] [ M] 83. c:\program files\rising\antispyware\ieprot.dll + 00000b64(2916) runiep.exe 00400000[00016000] [AM] 62. c:\program files\rising\antispyware\runiep.exe 73900000[0002D000] [ M] 82. c:\windows\system32\jpwb.ime 00D60000[0001B000] [ M] 83. c:\program files\rising\antispyware\ieprot.dll 41D50000[00045000] [ M] 73. c:\windows\system32\iertutil.dll + 00000b98(2968) jusched.exe 00400000[00008000] [AM] 63. c:\program files\java\j2re1.4.2_04\bin\jusched.exe 00380000[00009000] [ M] 72. c:\windows\system32\normaliz.dll 41D50000[00045000] [ M] 73. c:\windows\system32\iertutil.dll 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00B30000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 00000bb8(3000) RavTask.exe 00400000[00034000] [AM] 64. c:\program files\rising\rav\ravtask.exe 10000000[0001F000] [ M] 79. c:\program files\rising\rav\proccom.dll 00A30000[00024000] [ M] 80. c:\program files\rising\rav\rscommx2.dll 23700000[00028000] [ M] 90. c:\program files\rising\rav\rscommon.dll 00C90000[0000E000] [ M] 99. c:\program files\rising\rav\rsappmgr.dll 08CB0000[00030000] [ M] 100. c:\program files\rising\rav\cfgdll.dll 73900000[0002D000] [ M] 82. c:\windows\system32\jpwb.ime 09090000[0001B000] [ M] 83. c:\program files\rising\antispyware\ieprot.dll + 00000d88(3464) svchost.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 007E0000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll + 00000f78(3960) RsAgent.exe 00400000[00044000] [ M] 148. c:\program files\rising\rav\rsagent.exe 7C140000[00103000] [ M] 92. c:\windows\system32\mfc71.dll 7C340000[00056000] [ M] 93. c:\windows\system32\msvcr71.dll 7C3A0000[0007B000] [ M] 94. c:\windows\system32\msvcp71.dll 10000000[0001F000] [ M] 79. c:\program files\rising\rav\proccom.dll 00B50000[00024000] [ M] 80. c:\program files\rising\rav\rscommx2.dll 73900000[0002D000] [ M] 82. c:\windows\system32\jpwb.ime 010B0000[0001B000] [ M] 83. c:\program files\rising\antispyware\ieprot.dll + 00000f90(3984) AgentSvr.exe 10000000[00016000] [ M] 84. c:\program files\rising\rfw\ijt_base.dll 00870000[0000F000] [ M] 85. c:\program files\rising\rfw\olemon.dll 73900000[0002D000] [ M] 82. c:\windows\system32\jpwb.ime 00B20000[0001B000] [ M] 83. c:\program files\rising\antispyware\ieprot.dll 72C80000[00008000] [ M] 89. c:\windows\system32\msacm32.drv
liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:

liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:	发表于： 2008-01-18 16:58 \| 只看楼主短消息资料字号：小中大 10楼请各位高手帮忙看一下,谢谢了!
liping611699 初生襁褓狮帖子:24 注册: 2006-07-10 来自:

<<上一主题|下一主题>>

12

1 / 2 页

跳转页

页面顶部

Powered by Discuz!NT