超隐蔽木马 - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛超隐蔽木马

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

2 / 3 页

跳转页

超隐蔽木马

bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:	发表于： 2006-06-11 14:14 \| 显示全部短消息资料字号：小中大 11楼【回复“我无邪”的帖子】第4页Ltd.><18, 0, 0, 4> [PID: 232][C:\PROGRA~1\3721\assistse.exe] <N/A><N/A> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [C:\PROGRA~1\3721\shell\AsMenu.dll] <N/A><N/A> [C:\PROGRA~1\3721\Assist\assist.dll] <><2, 0, 3, 0> [C:\PROGRA~1\3721\shell\IEAngel.dll] <N/A><N/A> [C:\PROGRA~1\3721\shell\MenuInfo.dll] <N/A><N/A> [C:\PROGRA~1\3721\shell\assecblk.dll] <3721><1, 0, 0, 5> [c:\progra~1\3721\assist\adfilter.dll] < ><1, 0, 1, 6> [C:\PROGRA~1\3721\assist\optimum.dll] <N/A><N/A> [C:\PROGRA~1\3721\assist\repair.dll] <北京三七二一科技有限公司><1, 0, 4, 1001> [C:\PROGRA~1\3721\assist\asfsks.dll] <3721.com><2, 1, 1, 87> [PID: 244][C:\Herosoft\HeroV8\SysExplr.EXE] <N/A><N/A> [C:\Herosoft\HeroV8\HttpReq.dll] <N/A><N/A> [C:\Herosoft\HeroV8\CoolMenu.dll] <N/A><N/A> [C:\Herosoft\HeroV8\httphlp.dll] <N/A><N/A> [C:\Herosoft\HeroV8\AVCDROM.dll] <N/A><N/A> [C:\Herosoft\HeroV8\Sys936.DLL] <N/A><N/A> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 256][C:\Program Files\Rising\Rav\RavTask.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22> [C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 320][C:\Program Files\Rising\Rav\Ravmon.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 19> [C:\Program Files\Rising\Rav\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 24> [C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18> [C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10> [C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [C:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 364][C:\Program Files\Common Files\Real\Update_OB\realsched.exe] <RealNetworks, Inc.><0.1.0.3275> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 516][C:\WINDOWS\VM303_STI.EXE] <Vimicro><4, 3, 625, 61> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [C:\WINDOWS\system32\msdmo.dll] <N/A><N/A> [PID: 576][C:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 604][C:\Program Files\Messenger\msmsgs.exe] <Microsoft Corporation><4.7.3001> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 1148][C:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)> [PID: 1440][C:\Program Files\Internet Explorer\iexplore.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [C:\Program Files\3721\Assist\asbar.dll] <3721><1, 0, 0, 3> [C:\PROGRA~1\3721\Assist\TbWrap.dll] <3721><1, 0, 0, 2> [C:\PROGRA~1\3721\Assist\asnoad.dll] <><1, 0, 0, 1> [C:\PROGRA~1\3721\Assist\aswiper.dll] <3721><1, 0, 0, 1> [C:\PROGRA~1\3721\Assist\asiesec.dll] <3721><1, 0, 0, 1> [C:\Program Files\yisou\yisou.dll] <3721><1, 1, 1, 0> [C:\Program Files\Acrobatchs\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><7.0.0.2004121400> [C:\Program Files\Tencent\QQ\QQIEHelper.dll] <深圳市腾讯计算机系统有限公司><1, 1, 0, 5> [F:\软件\新建文件夹\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1> [C:\PROGRA~1\yisou\yisoub.dll] <><1, 1, 2, 3> [C:\WINDOWS\EagleFlt.dll] <N/A><N/A> [C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3> [C:\Program Files\3721\shell\assecblk.dll] <3721><1, 0, 0, 5> [C:\PROGRA~1\3721\assist\repair.dll] <北京三七二一科技有限公司><1, 0, 4, 1001> [C:\PROGRA~1\3721\assist\asfsks.dll] <3721.com><2, 1, 1, 87> [C:\PROGRA~1\3721\assist\optimum.dll] <N/A><N/A> [c:\progra~1\3721\assist\adfilter.dll] < ><1, 0, 1, 6> [C:\WINDOWS\system32\Macromed\Flash\flash.ocx] <Macromedia, Inc.><7,0,19,0> [PID: 4016][C:\Program Files\Rising\Rav\RsAgent.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [PID: 2948][C:\WINDOWS\msagent\AgentSvr.exe] <Microsoft Corporation><2.00.0.3422> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 3160][C:\Program Files\WinRAR\WinRAR.exe] <Alexander Roshal><3.41> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 2340][C:\DOCUME~1\lenovo\LOCALS~1\Temp\Rar$EX00.578\SREng2\SREng.exe] <Smallfrogs Studio><2.0.21.505> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 ==================================
bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:

bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:	发表于： 2006-06-11 14:14 \| 显示全部短消息资料字号：小中大 12楼【回复“我无邪”的帖子】第4页Ltd.><18, 0, 0, 4> [PID: 232][C:\PROGRA~1\3721\assistse.exe] <N/A><N/A> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [C:\PROGRA~1\3721\shell\AsMenu.dll] <N/A><N/A> [C:\PROGRA~1\3721\Assist\assist.dll] <><2, 0, 3, 0> [C:\PROGRA~1\3721\shell\IEAngel.dll] <N/A><N/A> [C:\PROGRA~1\3721\shell\MenuInfo.dll] <N/A><N/A> [C:\PROGRA~1\3721\shell\assecblk.dll] <3721><1, 0, 0, 5> [c:\progra~1\3721\assist\adfilter.dll] < ><1, 0, 1, 6> [C:\PROGRA~1\3721\assist\optimum.dll] <N/A><N/A> [C:\PROGRA~1\3721\assist\repair.dll] <北京三七二一科技有限公司><1, 0, 4, 1001> [C:\PROGRA~1\3721\assist\asfsks.dll] <3721.com><2, 1, 1, 87> [PID: 244][C:\Herosoft\HeroV8\SysExplr.EXE] <N/A><N/A> [C:\Herosoft\HeroV8\HttpReq.dll] <N/A><N/A> [C:\Herosoft\HeroV8\CoolMenu.dll] <N/A><N/A> [C:\Herosoft\HeroV8\httphlp.dll] <N/A><N/A> [C:\Herosoft\HeroV8\AVCDROM.dll] <N/A><N/A> [C:\Herosoft\HeroV8\Sys936.DLL] <N/A><N/A> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 256][C:\Program Files\Rising\Rav\RavTask.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22> [C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 320][C:\Program Files\Rising\Rav\Ravmon.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 19> [C:\Program Files\Rising\Rav\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 24> [C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18> [C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10> [C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [C:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 364][C:\Program Files\Common Files\Real\Update_OB\realsched.exe] <RealNetworks, Inc.><0.1.0.3275> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 516][C:\WINDOWS\VM303_STI.EXE] <Vimicro><4, 3, 625, 61> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [C:\WINDOWS\system32\msdmo.dll] <N/A><N/A> [PID: 576][C:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 604][C:\Program Files\Messenger\msmsgs.exe] <Microsoft Corporation><4.7.3001> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 1148][C:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)> [PID: 1440][C:\Program Files\Internet Explorer\iexplore.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [C:\Program Files\3721\Assist\asbar.dll] <3721><1, 0, 0, 3> [C:\PROGRA~1\3721\Assist\TbWrap.dll] <3721><1, 0, 0, 2> [C:\PROGRA~1\3721\Assist\asnoad.dll] <><1, 0, 0, 1> [C:\PROGRA~1\3721\Assist\aswiper.dll] <3721><1, 0, 0, 1> [C:\PROGRA~1\3721\Assist\asiesec.dll] <3721><1, 0, 0, 1> [C:\Program Files\yisou\yisou.dll] <3721><1, 1, 1, 0> [C:\Program Files\Acrobatchs\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><7.0.0.2004121400> [C:\Program Files\Tencent\QQ\QQIEHelper.dll] <深圳市腾讯计算机系统有限公司><1, 1, 0, 5> [F:\软件\新建文件夹\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1> [C:\PROGRA~1\yisou\yisoub.dll] <><1, 1, 2, 3> [C:\WINDOWS\EagleFlt.dll] <N/A><N/A> [C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3> [C:\Program Files\3721\shell\assecblk.dll] <3721><1, 0, 0, 5> [C:\PROGRA~1\3721\assist\repair.dll] <北京三七二一科技有限公司><1, 0, 4, 1001> [C:\PROGRA~1\3721\assist\asfsks.dll] <3721.com><2, 1, 1, 87> [C:\PROGRA~1\3721\assist\optimum.dll] <N/A><N/A> [c:\progra~1\3721\assist\adfilter.dll] < ><1, 0, 1, 6> [C:\WINDOWS\system32\Macromed\Flash\flash.ocx] <Macromedia, Inc.><7,0,19,0> [PID: 4016][C:\Program Files\Rising\Rav\RsAgent.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [PID: 2948][C:\WINDOWS\msagent\AgentSvr.exe] <Microsoft Corporation><2.00.0.3422> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 3160][C:\Program Files\WinRAR\WinRAR.exe] <Alexander Roshal><3.41> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> [PID: 2340][C:\DOCUME~1\lenovo\LOCALS~1\Temp\Rar$EX00.578\SREng2\SREng.exe] <Smallfrogs Studio><2.0.21.505> [C:\Program Files\Lenovo\网络爸爸\EagleH.dll] <N/A><N/A> ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 ==================================
bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:

bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:	发表于： 2006-06-11 14:16 \| 显示全部短消息资料字号：小中大 13楼【回复“abc555efg”的帖子】把首页设为空页
bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:

bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:	发表于： 2006-06-11 14:50 \| 显示全部短消息资料字号：小中大 14楼【回复“我无邪”的帖子】你不知道啊,我的电脑只要一设主页,就会弹出一个恶意网站,只要它一出来就有病毒而且是一下子就传开的啊.而且这网站的位置是在我的C盘里啊,难道这不是木马一类的吗?我已经找到了那位置可是它在一个重要文件里,不能打开也不能删,我用了20几种专杀没一样能查得出来的.所以我才来求你们这些高手帮的啊.求你帮帮我啊.
bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:

bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:	发表于： 2006-06-11 15:51 \| 显示全部短消息资料字号：小中大 15楼【回复“我无邪”的帖子】来啦完美卸载 - 系统检查检测报告! 建议:修复时请按照高手的反馈编号在修复工具中打勾进行修复. --------------------------系统环境------------------------- 检测日期: 2006-6-11 15:33 Windows: Microsoft Windows XP ServicePack: Service Pack 2 Update: 2600.xpsp_sp2_gdr.050301-1519 Internet Explorer: 6.0.2900.2180 -----------------------网络基础安全测试-------------------- 密码安全检测:已经设置了管理员密码,建议:将密码复杂度和长度提高! 网络漏洞检测:空连接检查安全! 服务名称是否运行描述 RemoteRegistry [已停止] [说明:这个服务可能被利用远程操作注册表] Windows Time [已停止] [说明:这个服务可能被黑客利用来启动木马] Telnet [已停止] [说明:这个服务可能被黑客登录到您计算机] Messenger [已停止] [说明:这个服务常被广告商用来发垃圾广告] Server [已停止] [说明:如果你的电脑不用局域网中,可以关闭] 建议在[控制面板]-[管理工具]-[服务]中,找到这些服务关闭并设置为[禁用]. -----------------------计算机网络端口---------------------- 协议端口号端口类型 TCP 135 微软DCE RPC end-point mapper服务 TCP 445 Microsoft-DS TCP 6059 未知类型 TCP 1029 未知类型 TCP 139 微软Netbios Name服务(用于文件及打印机共享) TCP 1253 未知类型 TCP 445 公共Internet文件系统(CIFS) TCP 500 Internet密钥交换 TCP 1041 未知类型 TCP 1046 未知类型 TCP 4500 sae-urn TCP 1900 未知类型 TCP 137 未知类型 TCP 138 未知类型 TCP 1900 未知类型 TCP 1900 未知类型 --------------------计算机系统组件体检---------------------- [编号:0] [名称:\SystemRoot\System32\smss.exe] [类型:运行进程] [内容:未知] [编号:1] [名称:\??\C:\WINDOWS\system32\winlogon.exe] [类型:运行进程] [内容:未知] [编号:2] [名称:C:\WINDOWS\system32\services.exe] [类型:运行进程] [内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.] [编号:3] [名称:C:\WINDOWS\system32\lsass.exe] [类型:运行进程] [内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.] [编号:4] [名称:C:\WINDOWS\system32\svchost.exe] [类型:运行进程] [内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.] [编号:5] [名称:C:\Program Files\Rising\Rav\CCenter.exe] [类型:运行进程] [内容:Rising Antivirus Software Copyright Rising 2002] [编号:6] [名称:C:\WINDOWS\System32\svchost.exe] [类型:运行进程] [内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.] [编号:7] [名称:C:\Program Files\Rising\Rav\Ravmond.exe] [类型:运行进程] [内容:Rising Antivirus Software Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:8] [名称:C:\WINDOWS\Explorer.EXE] [类型:运行进程] [内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.] [编号:9] [名称:C:\WINDOWS\system32\spoolsv.exe] [类型:运行进程] [内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.] [编号:10] [名称:C:\Program Files\Rising\Rav\RavStub.exe] [类型:运行进程] [内容:RavStub Application Copyright (c) 1998-2005 Rising Corp.] [编号:11] [名称:C:\Program Files\Lenovo\网络爸爸\EagleSvr.exe] [类型:运行进程] [内容: ] [编号:12] [名称:C:\PROGRA~1\3721\assistse.exe] [类型:运行进程] [内容:未知] [编号:13] [名称:C:\Herosoft\HeroV8\SysExplr.EXE] [类型:运行进程] [内容:未知] [编号:14] [名称:C:\Program Files\Rising\Rav\RavTask.exe] [类型:运行进程] [内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.] [编号:15] [名称:C:\Program Files\Rising\Rav\Ravmon.exe] [类型:运行进程] [内容:Rising Anti-Virus Monitor Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited]
bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:

bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:	发表于： 2006-06-11 15:53 \| 显示全部短消息资料字号：小中大 16楼【回复“我无邪”的帖子】第2页[编号:16] [名称:C:\WINDOWS\VM303_STI.EXE] [类型:运行进程] [内容:BIGDOG Copyright (C) 2004 Vimicro Corporation] [编号:17] [名称:C:\Program Files\Messenger\msmsgs.exe] [类型:运行进程] [内容:Messenger Copyright (c) Microsoft Corporation 2004] [编号:18] [名称:C:\WINDOWS\system32\svchost.exe] [类型:运行进程] [内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.] [编号:19] [名称:C:\WINDOWS\system32\ctfmon.exe] [类型:运行进程] [内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.] [编号:20] [名称:D:\新建文件夹 (2)\征途\data\zhengtu.dat] [类型:运行进程] [内容:《征途》客户端上海征途网络科技有限公司。版权所有 (C) 2004] [编号:21] [名称:D:\新建文件夹\完美卸载V2006\WmSysPro.exe] [类型:运行进程] [内容:系统保护+网络防火墙版权所有 (C)剑锋工作室] [编号:22] [名称:D:\新建文件夹\完美卸载V2006\syssec.exe] [类型:运行进程] [内容:完美卸载V2006-ChinaHijackThis 版权所有 (C) 2006] [编号:23] [分隔符:---------------------------------------------------------------------] [编号:24] [名称:C:\Program Files\Rising\Rav\BWList.dll] [类型:已加载DLL] [内容:BWList Dynamic Link Library Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:25] [名称:C:\Program Files\Rising\Rav\RsCommX.dll] [类型:已加载DLL] [内容:rising RsCommX Copyright ? 2002] [编号:26] [名称:C:\Program Files\Rising\Rav\RSAPPMGR.DLL] [类型:已加载DLL] [内容:Rising AntiVirus 2006 Copyright ? 2004 - 2005] [编号:27] [名称:C:\Program Files\Rising\Rav\CfgDll.dll] [类型:已加载DLL] [内容:Rising AntiVirus 2006 Copyright ? 2004 - 2006] [编号:28] [名称:C:\Program Files\Rising\Rav\RSCOMMON.DLL] [类型:已加载DLL] [内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.] [编号:29] [名称:C:\Program Files\Rising\Rav\RsLog.dll] [类型:已加载DLL] [内容:RsLog Dynamic Link Library Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:30] [名称:C:\Program Files\Rising\Rav\HOOKSYS.dll] [类型:已加载DLL] [内容:HOOKSYS Dynamic Link Library Copyright (C) 2005] [编号:31] [名称:C:\Program Files\Rising\Rav\Scanner.dll] [类型:已加载DLL] [内容:Rising RsScanner Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:32] [名称:C:\Program Files\Rising\Rav\libload.dll] [类型:已加载DLL] [内容:rising libload Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:33] [名称:C:\Program Files\Rising\Rav\VirusLib.dll] [类型:已加载DLL] [内容:Rising VirusLib Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited]
bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:

bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:	发表于： 2006-06-11 15:53 \| 显示全部短消息资料字号：小中大 17楼【回复“我无邪”的帖子】第3页[编号:34] [名称:C:\Program Files\Rising\Rav\HookWeb.dll] [类型:已加载DLL] [内容:rising HookWeb Copyright ? 2004] [编号:35] [名称:C:\Program Files\Rising\Rav\MemMon.dll] [类型:已加载DLL] [内容:北京瑞星 MemMon Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:36] [名称:C:\Program Files\Rising\Rav\MailMon.dll] [类型:已加载DLL] [内容:mailmon Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:37] [名称:C:\Program Files\Rising\Rav\SpamEng.dll] [类型:已加载DLL] [内容: SpamEng Dynamic Link Library Copyright (C) 2004] [编号:38] [名称:C:\Program Files\Rising\Rav\engine.dll] [类型:已加载DLL] [内容:rising engine Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:39] [名称:C:\Program Files\Rising\Rav\PostTrt.dll] [类型:已加载DLL] [内容:Rising PostTrt Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:40] [名称:C:\Program Files\Rising\Rav\UnExe.dll] [类型:已加载DLL] [内容:rising UnExe Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:41] [名称:C:\Program Files\Rising\Rav\ScanExec.dll] [类型:已加载DLL] [内容:rising ScanExec Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:42] [名称:C:\Program Files\Rising\Rav\ScanEx.dll] [类型:已加载DLL] [内容:Rising ScanEX Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:43] [名称:C:\Program Files\Rising\Rav\NvFile.dll] [类型:已加载DLL] [内容:rising NVFile Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:44] [名称:C:\Program Files\Rising\Rav\ScanMac.dll] [类型:已加载DLL] [内容:rising ScanMac Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:45] [名称:C:\Program Files\Rising\Rav\ScanSct.dll] [类型:已加载DLL] [内容:rising ScanSct Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:46] [名称:C:\Program Files\Rising\Rav\Unpacker.dll] [类型:已加载DLL] [内容:rising UnPacker Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:47] [名称:C:\Program Files\Rising\Rav\ExtOLE.dll] [类型:已加载DLL] [内容:rising ExtOLE Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [编号:48] [名称:C:\WINDOWS\system32\RavExt.dll] [类型:已加载DLL] [内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.] [编号:49] [名称:C:\Program Files\Lenovo\网络爸爸\EagleH.dll] [类型:已加载DLL] [内容:未知] [编号:50] [名称:C:\Program Files\Acrobatchs\ActiveX\PDFShell.dll] [类型:已加载DLL] [内容:Adobe PDF Shell Extension Copyright 2000-2004 Adobe Systems, Inc.] [编号:51] [名称:C:\Program Files\Acrobatchs\ActiveX\AcroIEHelper.dll] [类型:已加载DLL] [内容:AcroIEHelper Library Copyright 1984-2004 Adobe Systems Incorporated and its licensors. All rights reserved.] [编号:52] [名称:F:\软件\新建文件夹\ComDlls\XunLeiBHO_001.dll] [类型:已加载DLL] [内容:XunLeiBHO Module Copyright 2004-2006] [编号:53] [名称:C:\WINDOWS\EagleFlt.dll] [类型:已加载DLL] [内容:未知] [编号:54] [名称:C:\Program Files\WinRAR\rarext.dll] [类型:已加载DLL] [内容:未知] [编号:55] [名称:C:\WINDOWS\system32\Protect.sys] [类型:已加载DLL] [内容:未知] [编号:56] [名称:C:\Program Files\Lenovo\网络爸爸\eaglep.dll] [类型:已加载DLL] [内容:未知] [编号:57] [名称:C:\Program Files\Lenovo\网络爸爸\EglLogin.dll] [类型:已加载DLL] [内容:未知]
bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:

bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:	发表于： 2006-06-11 15:54 \| 显示全部短消息资料字号：小中大 18楼【回复“我无邪”的帖子】第4页[编号:58] [名称:C:\Program Files\Lenovo\网络爸爸\eagler.dll] [类型:已加载DLL] [内容:未知] [编号:59] [名称:C:\Program Files\Lenovo\网络爸爸\eaglek.dll] [类型:已加载DLL] [内容:未知] [编号:60] [名称:C:\Program Files\Lenovo\网络爸爸\eaglet.dll] [类型:已加载DLL] [内容:未知] [编号:61] [名称:C:\Program Files\Lenovo\网络爸爸\EagleC.dll] [类型:已加载DLL] [内容:未知] [编号:62] [名称:C:\Program Files\Lenovo\网络爸爸\workdll.dll] [类型:已加载DLL] [内容:未知] [编号:63] [名称:C:\PROGRA~1\3721\shell\AsMenu.dll] [类型:已加载DLL] [内容:未知] [编号:64] [名称:C:\PROGRA~1\3721\Assist\assist.dll] [类型:已加载DLL] [内容:Assist Module Copyright 2003] [编号:65] [名称:C:\PROGRA~1\3721\shell\IEAngel.dll] [类型:已加载DLL] [内容:未知] [编号:66] [名称:C:\PROGRA~1\3721\shell\MenuInfo.dll] [类型:已加载DLL] [内容:未知] [编号:67] [名称:C:\PROGRA~1\3721\shell\assecblk.dll] [类型:已加载DLL] [内容:3721 SecNotify Copyright (C) 2004] [编号:68] [名称:c:\progra~1\3721\assist\adfilter.dll] [类型:已加载DLL] [内容: adfilter Copyright ? 2004] [编号:69] [名称:C:\PROGRA~1\3721\assist\optimum.dll] [类型:已加载DLL] [内容:未知] [编号:70] [名称:C:\PROGRA~1\3721\assist\repair.dll] [类型:已加载DLL] [内容: repair Copyright (c) 2004] [编号:71] [名称:C:\PROGRA~1\3721\assist\asfsks.dll] [类型:已加载DLL] [内容:fsk Module Copyright 2004] [编号:72] [名称:C:\Herosoft\HeroV8\HttpReq.dll] [类型:已加载DLL] [内容:未知] [编号:73] [名称:C:\Herosoft\HeroV8\CoolMenu.dll] [类型:已加载DLL] [内容:未知] [编号:74] [名称:C:\Herosoft\HeroV8\httphlp.dll] [类型:已加载DLL] [内容:未知] [编号:75] [名称:C:\Herosoft\HeroV8\AVCDROM.dll] [类型:已加载DLL] [内容:未知] [编号:76] [名称:C:\Herosoft\HeroV8\Sys936.DLL] [类型:已加载DLL] [内容:未知] [编号:77] [名称:C:\Program Files\Rising\Rav\RsGuiLib.dll] [类型:已加载DLL] [内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.] [编号:78] [名称:C:\Program Files\Rising\Rav\PngDll.dll] [类型:已加载DLL] [内容:Rising Antivirus Software Copyright (c) 1998-2005 Rising Corp.] [编号:79] [名称:C:\WINDOWS\system32\msdmo.dll] [类型:已加载DLL] [内容:(null) (null)] [编号:80] [名称:D:\新建文件夹\完美卸载V2006\ScanEngine.dll] [类型:已加载DLL] [内容:ScanEngine 完美病毒引擎文件版权所有 (C) 2005]
bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:

bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:	发表于： 2006-06-11 15:55 \| 显示全部短消息资料字号：小中大 19楼【回复“我无邪”的帖子】第5页[编号:81] [分隔符:---------------------------------------------------------------------] [编号:82] [名称:EagleEye] [类型:开机启动] [内容:C:\Program Files\Lenovo\网络爸爸\EagleSvr.exe] [编号:83] [名称:assistse] [类型:开机启动] [内容:"C:\PROGRA~1\3721\assistse.exe"] [编号:84] [名称:SysExplr] [类型:开机启动] [内容:C:\Herosoft\HeroV8\SysExplr.EXE] [编号:85] [名称:RavTask] [类型:开机启动] [内容:"C:\Program Files\Rising\Rav\RavTask.exe" -system] [编号:86] [名称:TkBellExe] [类型:开机启动] [内容:; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot] [编号:87] [名称:BigDog303] [类型:开机启动] [内容:C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)] [编号:88] [名称:helper.dll] [类型:开机启动] [内容:; C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32] [编号:89] [名称:IMJPMIG8.1] [类型:开机启动] [内容:; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32] [编号:90] [名称:LHotkey] [类型:开机启动] [内容:; LHotkey.exe] [编号:91] [名称:MoveSearch] [类型:开机启动] [内容:; C:\Program Files\wsearch\Search.exe] [编号:92] [名称:PHIME2002A] [类型:开机启动] [内容:; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName] [编号:93] [名称:PHIME2002ASync] [类型:开机启动] [内容:; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC] [编号:94] [名称:RavMon] [类型:开机启动] [内容:; C:\PROGRA~1\RISING\RAV\RAVMON.EXE -SYSTEM] [编号:95] [名称:RavTimer] [类型:开机启动] [内容:; C:\PROGRA~1\RISING\RAV\RAVTIMER.EXE] [编号:96] [名称:SoundMan] [类型:开机启动] [内容:; SOUNDMAN.EXE] [编号:97] [名称:VTTimer] [类型:开机启动] [内容:; VTTimer.exe] [编号:98] [名称:VTTrayp] [类型:开机启动] [内容:; VTtrayp.exe] [编号:99] [名称:ctfmon.exe] [类型:开机启动] [内容:C:\WINDOWS\system32\ctfmon.exe] [编号:100] [名称:MSMSGS] [类型:开机启动] [内容:"C:\Program Files\Messenger\msmsgs.exe" /background] [编号:101] [名称:Study] [类型:开机启动] [内容:; C:\Program Files\Lenovo\联想100分学校\study.exe] [编号:102]
bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:

bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:	发表于： 2006-06-11 15:56 \| 显示全部短消息资料字号：小中大 20楼【回复“我无邪”的帖子】第6页啊[分隔符:---------------------------------------------------------------------] [编号:103] [名称:AFD] [类型:服务:未知] [内容:\SystemRoot\System32\drivers\afd.sys] [编号:104] [名称:Service for WDM 3D Audio Driver] [类型:服务:Copyright ? 2004 Sensaura Copyright ? 2004 Sensaura] [内容:C:\WINDOWS\system32\drivers\alcxsens.sys] [编号:105] [名称:Service for Realtek AC97 Audio (WDM)] [类型:服务:Windows (R) WDM driver for Realtek AC'97 Audio Copyright (c) Realtek Semiconductor Corp.1998-2004] [内容:C:\WINDOWS\system32\drivers\alcxwdm.sys] [编号:106] [名称:CALLKEY_IO] [类型:服务:未知] [内容:c:\program files\lenovo\智能维护3.0\callkey.sys] [编号:107] [名称:CnsMinKP] [类型:服务:Kernel Module Driver Copyright (c) 3721 Corporation.] [内容:C:\WINDOWS\system32\drivers\cnsminkp.sys] [编号:108] [名称:DCOM Server Process Launcher] [类型:服务:未知] [内容:C:\WINDOWS\system32\svchost ] [编号:109] [名称:ExpScaner] [类型:服务:ExpScan.sys Copyright (C) 2004 Rising] [内容:c:\program files\rising\rav\expscan.sys] [编号:110] [名称:VIA Rhine-Family Fast Ethernet Adapter Driver Service] [类型:服务:VIA Rhine Family Fast Ethernet Adapter VIA Technologies, Inc. ] [内容:C:\WINDOWS\system32\drivers\fetnd5bv.sys] [编号:111] [名称:VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver] [类型:服务:VIA PCI 10/100Mb Fast Ethernet Adapter VIA Technologies, Inc. ] [内容:C:\WINDOWS\system32\drivers\fetnd5.sys] [编号:112] [名称:HookCont] [类型:服务:TDIHOOK Driver for Windows NT Copyright ] [内容:c:\program files\rising\rav\hookcont.sys] [编号:113] [名称:HookSys] [类型:服务:Hooksys Copyright (C) 2004] [内容:c:\program files\rising\rav\hooksys.sys] [编号:114] [名称:MEMSCAN] [类型:服务:MemScan Drivers for Windows NT Copyright (C) RFW Corp. 2000-2002] [内容:c:\program files\rising\rav\memscan.sys] [编号:115] [名称:npkcrypt] [类型:服务:nProtect KeyCrypt Driver Copyright (C) INCA Internet. 2000-2005] [内容:c:\program files\tencent\qq\npkcrypt.sys] [编号:116] [名称:NTSIM] [类型:服务:Network Device Monitor Utility VIA Networking Technologies, Inc. ] [内容:c:\windows\system32\ntsim.sys] [编号:117] [名称:Remote Procedure Call (RPC)] [类型:服务:未知] [内容:C:\WINDOWS\system32\svchost ] [编号:118] [名称:Rising Process Communication Center] [类型:服务:Rising Antivirus Software Copyright Rising 2002] [内容:"C:\Program Files\Rising\Rav\CCenter.exe"] [编号:119] [名称:RsRavMon Service] [类型:服务:Rising Antivirus Software Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited] [内容:"C:\Program Files\Rising\Rav\Ravmond.exe"] [编号:120] [名称:Secdrv] [类型:服务:未知] [内容:C:\WINDOWS\system32\drivers\secdrv.sys] [编号:121] [名称:Terminal Services] [类型:服务:未知] [内容:C:\WINDOWS\system32\svchost ] [编号:122] [名称:viagfx] [类型:服务:UniChrome(Pro) IGP Driver Copyright (C) VIA Technologies, Inc. and S3 Graphics Co, Ltd. ? 2005] [内容:C:\WINDOWS\system32\drivers\vtmini.sys] [编号:123] [名称:WmNdisDrv] [类型:服务:未知] [内容:C:\WINDOWS\system32\drivers\wmndisdrv.sys] [编号:124] [名称:WmRegProDrv] [类型:服务:未知] [内容:C:\WINDOWS\system32\drivers\wmregprodrv.sys] [编号:125] [名称:海天地摄像头301PLH] [类型:服务: VM. 2005.] [内容:C:\WINDOWS\system32\drivers\usbvm303.sys]
bh89757 初生襁褓狮帖子:50 注册: 2006-06-10 来自:

<<上一主题|下一主题>>

2 / 3 页

跳转页

页面顶部

Powered by Discuz!NT