前些天得到轩辕小聪版主及zzq11211大侠的帮助,成功删除橙色病毒,并清理了一下机子,但是这两天在有时执行程序时,有时会有出错提示,好象是什么readme.ini之类的,刚才看了闪电风暴的置顶贴,请教闪电风暴大侠能给予指点。
这是用autoruns扫描的:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ RavMon RavMon Beijing Rising Technology Co., Ltd. c:\program files\rising\rav\ravmon.exe
+ RavTask RavTimer Beijing Rising Technology Co., Ltd. c:\program files\rising\rav\ravtask.exe
+ RfwMain Rising Personal FireWall Main Program Beijing Rising Technology Co., Ltd. c:\program files\rising\rfw\rfwmain.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
+ RavStub Rising RavStub Beijing Rising Technology Co., Ltd. c:\program files\rising\rav\ravstub.exe
HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components
+ 0 File not found:
About:Home
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ RISING Rising Shell Ext Module Beijing Rising Technology Co., Ltd. c:\windows\system32\ravext.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects
+ Google Toolbar Helper Google IE 客户端工具栏 Google Inc. c:\program files\google\googletoolbar2.dll
HKLM\Software\Microsoft\Internet Explorer\Toolbar
+ googletoolbar2.dll Google IE 客户端工具栏 Google Inc. c:\program files\google\googletoolbar2.dll
+ kakatool.dll Beijing Rising Technology Co., Ltd. c:\windows\system32\kakatool.dll
HKLM\Software\Microsoft\Internet Explorer\Extensions
+ 豪杰超级解霸V8 c:\herosoft\herov8\sthsdvd.exe
+ 腾讯QQ QQ TENCENT d:\qq2005\qq.exe
HKLM\System\CurrentControlSet\Services
+ Ati HotKey Poller ATI External Event Utility EXE Module ATI Technologies Inc. c:\windows\system32\ati2evxx.exe
+ ATI Smart ATI Smart c:\windows\system32\ati2sgag.exe
+ RfwService Rising Personal Firewall Service Beijing Rising Technology Co., Ltd. c:\program files\rising\rfw\rfwsrv.exe
+ RsCCenter CCenter Beijing Rising Technology Co., Ltd. c:\program files\rising\rav\ccenter.exe
+ RsRavMon RavMond Beijing Rising Technology Co., Ltd. c:\program files\rising\rav\ravmond.exe
HKLM\System\CurrentControlSet\Services
+ 9 c:\windows\system32\drivers\boot00.sys
+ 99 c:\windows\system32\drivers\boot00.sys
+ ALCXWDM Realtek AC'97 Audio Driver (WDM) Realtek Semiconductor Corp. c:\windows\system32\drivers\alcxwdm.sys
+ ati2mtag ATI Radeon WindowsNT Miniport Driver ATI Technologies Inc. c:\windows\system32\drivers\ati2mtag.sys
+ BaseTDI basetdi Beijing Rising Technology Co., Ltd. c:\windows\system32\drivers\basetdi.sys
+ ExpScaner ExpScan.sys c:\program files\rising\rav\expscan.sys
+ HookCont TDI HOOK Driver Rising tech Co. ltd c:\program files\rising\rav\hookcont.sys
+ HookReg c:\program files\rising\rav\hookreg.sys
+ HookSys Hooksys Rising c:\program files\rising\rav\hooksys.sys
+ HookUrl HookUrl Beijing Rising Technology Co., Ltd. c:\program files\rising\rfw\hookurl.sys
+ kmsinput c:\windows\system32\drivers\kmsinput.sys
+ MEMSCAN MemScan Driver 瑞星软件有限公司 c:\program files\rising\rav\memscan.sys
+ mProcRs Rising Personal FireWall mprocrs.sys Beijing Rising Technology Co., Ltd. c:\program files\rising\rfw\mprocrs.sys
+ npkcrypt File not found: D:\QQ2005\npkcrypt.sys
+ Ptilink Direct Parallel Link Driver Parallel Technologies, Inc. c:\windows\system32\drivers\ptilink.sys
+ RsFwDrv nt_fwdrv Beijing Rising Technology Co., Ltd. c:\program files\rising\rfw\rsfwdrv.sys
+ rtl8139 Realtek RTL8139 NDIS 5.0 Driver Realtek Semiconductor Corporation c:\windows\system32\drivers\rtl8139.sys
+ Secdrv SafeDisc driver c:\windows\system32\drivers\secdrv.sys
+ ZSMC301b Video streaming and Capture Device Driver VM c:\windows\system32\drivers\usbvm31b.sys
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
+ AtiExtEvent ATI External Event Utility DLL Module ATI Technologies Inc. c:\windows\system32\ati2evxx.dll
