这是我的扫描的结果，你哪位高手帮我指点指点啊（1） bbs.ikaka.com

李茗 - 2005-8-5 12:41:00

Lavasoft Ad-aware Personal Build 6.181
Logfile created on :2005年8月5日 12:21:45
Created with Ad-aware Personal, free for private use.
Using reference-file :01R298 20.04.2004
______________________________________________________

Reffile status:
=========================
Reference file loaded:
Reference Number : 01R298 20.04.2004
Internal build : 229
File location : C:\PROGRA~1\LAVASOFT\AD-AWA~1\reflist.ref
Total size : 1067557 Bytes
Signature data size : 1049356 Bytes
Reference data size : 18137 Bytes
Signatures total : 23569
Target categories : 10
Target families : 455

Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium IV
Memory available:22 %
Total physical memory:261616 kb
Available physical memory:56312 kb
Total page file size:633120 kb
Available on page file:392268 kb
Total virtual memory:2097024 kb
Available virtual memory:2052888 kb
OS:Windows 2000

Ad-aware Settings
=========================
Set : Activate in-depth scan (Recommended)
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file

Extended Ad-aware Settings
=========================
Set : Unload recognized processes during scanning
Set : Include basic Ad-aware settings in logfile
Set : Include additional Ad-aware settings in logfile
Set : Let windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Always back up reference file, before updating
Set : Play sound if scan produced a result

2005-8-5 12:21:45 - Scan started. (Smart mode)

Listing running processes


#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ThreadCreationTime : 2005-8-5 1:38:26
BasePriority : Normal

#:2 [csrss.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:30
BasePriority : Normal

#:3 [winlogon.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:32
BasePriority : High

#:4 [services.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:33
BasePriority : Normal
FileSize : 87 KB
FileVersion : 5.00.2195.6700
ProductVersion : 5.00.2195.6700
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
OriginalFilename : services.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 2003-6-18 20:05:04
Last accessed : 2005-8-4 16:00:00
Last modified : 2003-6-18 20:05:04

#:5 [lsass.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:33
BasePriority : Normal
FileSize : 32 KB
FileVersion : 5.00.2195.6902
ProductVersion : 5.00.2195.6902
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : LSA Executable and Server DLL (Export Version)
InternalName : lsasrv.dll and lsass.exe
OriginalFilename : lsasrv.dll and lsass.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 2003-6-18 20:05:04
Last accessed : 2005-8-4 16:00:00
Last modified : 2004-3-24 1:23:20

#:6 [ravmond.exe]
FilePath : C:\PROGRAM FILES\RISING\RAV\
ThreadCreationTime : 2005-8-5 1:38:35
BasePriority : Normal
FileSize : 244 KB
FileVersion : 17, 0, 1, 39
ProductVersion : 17, 0, 1, 39
Copyright : Copyright ? 2004
CompanyName : Beijing Rising Technology Co., Ltd.
FileDescription : RavMonD
InternalName : RavMonD
OriginalFilename : RavMonD.exe
ProductName : rising RavMonD
Created on : 2005-5-4 8:32:23
Last accessed : 2005-8-4 16:00:00
Last modified : 2005-5-4 8:31:28

#:7 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:37
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 2000-1-9 20:00:00
Last accessed : 2005-8-4 16:00:00
Last modified : 2000-1-9 20:00:00

#:8 [spoolsv.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:37
BasePriority : Normal
FileSize : 44 KB
FileVersion : 5.00.2195.6659
ProductVersion : 5.00.2195.6659
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolss.exe
OriginalFilename : spoolss.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 2005-5-4 6:07:09
Last accessed : 2005-8-4 16:00:00
Last modified : 2003-6-19 4:05:04

#:9 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:38
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 2000-1-9 20:00:00
Last accessed : 2005-8-4 16:00:00
Last modified : 2000-1-9 20:00:00

#:10 [nvsvc32.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:40
BasePriority : Normal
FileSize : 124 KB
FileVersion : 6.14.10.6681
ProductVersion : 6.14.10.6681
Copyright : (C) NVIDIA Corporation. All rights reserved.
CompanyName : NVIDIA Corporation
FileDescription : NVIDIA Driver Helper Service, Version 66.81
InternalName : NVSVC
OriginalFilename : nvsvc32.exe
ProductName : NVIDIA Driver Helper Service, Version 66.81
Created on : 2004-9-30 5:35:00
Last accessed : 2005-8-4 16:00:00
Last modified : 2004-9-30 5:35:00

#:11 [regsvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:41
BasePriority : Normal
FileSize : 66 KB
FileVersion : 5.00.2195.6701
ProductVersion : 5.00.2195.6701
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Remote Registry Service
InternalName : regsvc
OriginalFilename : REGSVC.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 2003-6-18 20:05:04
Last accessed : 2005-8-4 16:00:00
Last modified : 2003-6-18 20:05:04

李茗 - 2005-8-5 12:45:00

#:12 [ccenter.exe]
FilePath : C:\PROGRAM FILES\RISING\RAV\
ThreadCreationTime : 2005-8-5 1:38:45
BasePriority : Normal
FileSize : 96 KB
FileVersion : 17, 0, 0, 1
ProductVersion : 17, 0, 0, 1
Copyright : Copyright Rising 2002
CompanyName : rising
FileDescription : CCenter
InternalName : CCenter
OriginalFilename : CCenter.exe
ProductName : Rising CCenter
Created on : 2005-5-4 8:32:22
Last accessed : 2005-8-4 16:00:00
Last modified : 2005-5-4 8:31:28

#:13 [mstask.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:45
BasePriority : Normal
FileSize : 116 KB
FileVersion : 4.71.2195.6704
ProductVersion : 4.71.2195.6704
Copyright : Copyright (C) Microsoft Corp. 1997
CompanyName : Microsoft Corporation
FileDescription : Task Scheduler Engine
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Microsoft(R) Windows(R) Task Scheduler
Created on : 2005-5-4 6:15:37
Last accessed : 2005-8-4 16:00:00
Last modified : 2003-6-19 4:05:04

#:14 [winmgmt.exe]
FilePath : C:\WINNT\System32\WBEM\
ThreadCreationTime : 2005-8-5 1:38:48
BasePriority : Normal
FileSize : 192 KB
FileVersion : 1.50.1085.0100
ProductVersion : 1.50.1085.0100
Copyright : Copyright (C) Microsoft Corp. 1995-1999
CompanyName : Microsoft Corporation
FileDescription : Windows Management Instrumentation
InternalName : WINMGMT
ProductName : Windows Management Instrumentation
Created on : 2003-6-18 20:05:04
Last accessed : 2005-8-4 16:00:00
Last modified : 2003-6-18 20:05:04

#:15 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:38:48
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 2000-1-9 20:00:00
Last accessed : 2005-8-4 16:00:00
Last modified : 2000-1-9 20:00:00

#:16 [explorer.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 2005-8-5 1:39:09
BasePriority : Normal
FileSize : 237 KB
FileVersion : 5.00.3700.6690
ProductVersion : 5.00.3700.6690
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 2003-6-18 20:05:04
Last accessed : 2005-8-4 16:00:00
Last modified : 2003-6-18 20:05:04

#:17 [rundll32.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:39:20
BasePriority : Normal
FileSize : 9 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Run a DLL as an App
InternalName : rundll
OriginalFilename : RUNDLL.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 2000-1-9 20:00:00
Last accessed : 2005-8-4 16:00:00
Last modified : 2000-1-9 20:00:00

#:18 [assistse.exe]
FilePath : C:\PROGRA~1\3721\
ThreadCreationTime : 2005-8-5 1:39:20
BasePriority : Normal
FileSize : 64 KB
FileVersion : 1, 0, 1, 1001
ProductVersion : 1, 0, 1, 1001
Copyright : Copyright 3721.COM 2004
CompanyName : yahoo
FileDescription : AssistSetting
InternalName : AssistSetting
OriginalFilename : AssistSe.exe
ProductName : yahoo AssistSetting
Created on : 2005-5-4 8:48:37
Last accessed : 2005-8-4 16:00:00
Last modified : 2005-4-18 2:25:50

#:19 [360main.exe]
FilePath : C:\PROGRA~1\360so\
ThreadCreationTime : 2005-8-5 1:39:20
BasePriority : Normal
FileSize : 36 KB
FileVersion : 1, 0, 2, 1002
ProductVersion : 1, 0, 2, 1002
Copyright : Copyright ? 2005
CompanyName : 360so
FileDescription : 360Main
InternalName : 360Main
OriginalFilename : 360Main.exe
ProductName : 360so 360Main
Created on : 2005-8-4 23:47:34
Last accessed : 2005-8-4 16:00:00
Last modified : 2005-7-14 12:47:24

#:20 [conime.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 2005-8-5 1:39:21
BasePriority : Normal
FileSize : 25 KB
FileVersion : 5.00.2195.6655
ProductVersion : 5.00.2195.6655
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Console IME
InternalName : Console
OriginalFilename : CONIME.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 2003-6-18 20:05:04
Last accessed : 2005-8-4 16:00:00
Last modified : 2003-6-18 20:05:04

#:21 [iexplore.exe]
FilePath : C:\Program Files\Internet Explorer\
ThreadCreationTime : 2005-8-5 3:26:56
BasePriority : Normal
FileSize : 89 KB
FileVersion : 6.00.2600.0000
ProductVersion : 6.00.2600.0000
Copyright : (C) Microsoft Corporation. All rights reserved.
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
OriginalFilename : IEXPLORE.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 2001-9-4 5:04:24
Last accessed : 2005-8-4 16:00:00
Last modified : 2001-9-4 5:04:24

李茗 - 2005-8-5 12:45:00

#:22 [flashget.exe]
FilePath : C:\Program Files\FlashGet\
ThreadCreationTime : 2005-8-5 4:01:20
BasePriority : Normal
FileSize : 1448 KB
FileVersion : 1, 6, 5, 0
ProductVersion : 1, 6, 5, 0
Copyright : Copyright (C) 1999-2004 by Amaze Soft
CompanyName : Amaze Soft
FileDescription : FlashGet
InternalName : FlashGet
OriginalFilename : flashget.exe
ProductName : FlashGet
Created on : 2005-5-4 7:35:19
Last accessed : 2005-8-4 16:00:00
Last modified : 2004-9-1 4:22:28

#:23 [nettransport.exe]
FilePath : C:\Program Files\Xi\NetTransport 2\
ThreadCreationTime : 2005-8-5 4:01:24
BasePriority : Normal
FileSize : 348 KB
FileVersion : 1.90.267
ProductVersion : 1.90.267
Copyright : Copyright (C) 2001-2004 Xi
CompanyName : Xi
FileDescription : Net Transport Download Manager
InternalName : Net Transport
OriginalFilename : NetTransport.EXE
ProductName : Net Transport Download Manager
Created on : 2004-6-20 6:42:12
Last accessed : 2005-8-4 16:00:00
Last modified : 2004-6-20 6:42:12

#:24 [iexplore.exe]
FilePath : C:\Program Files\Internet Explorer\
ThreadCreationTime : 2005-8-5 4:13:06
BasePriority : Normal
FileSize : 89 KB
FileVersion : 6.00.2600.0000
ProductVersion : 6.00.2600.0000
Copyright : (C) Microsoft Corporation. All rights reserved.
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
OriginalFilename : IEXPLORE.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 2001-9-4 5:04:24
Last accessed : 2005-8-4 16:00:00
Last modified : 2001-9-4 5:04:24

#:25 [ad-aware.exe]
FilePath : C:\PROGRA~1\LAVASOFT\AD-AWA~1\
ThreadCreationTime : 2005-8-5 4:15:57
BasePriority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright ? Lavasoft Sweden
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 2005-8-5 4:15:50
Last accessed : 2005-8-4 16:00:00
Last modified : 2003-7-12 13:00:20

Memory scan result :

New objects : 0
Objects found so far: 0

Started registry scan


Alexa Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}

CnsMin Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\3721

CnsMin Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : Software\3721

CnsMin Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Internet Explorer\Extensions\{5D73EE86-05F1-49ed-B850-E423120EC338}

CnsMin Object recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "CnsMin"
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Value : CnsMin

Registry scan result :

New objects : 5
Objects found so far: 5

Started deep registry scan


Deep registry scan result :

New objects : 0
Objects found so far: 5



Tracking Cookie Object recognized!
Type : File
Data : administrator@3721[2].txt
Category : Data Miner
Comment :
Object : C:\Documents and Settings\Administrator\Cookies\

Created on : 2005-5-7 7:04:31
Last accessed : 2005-8-4 16:00:00
Last modified : 2005-5-7 7:04:32



Deep scanning and examining files (C:)


Scanning Hosts file(C:\WINNT\system32\drivers\etc\hosts)


Hosts file scan result:

1621 entries scanned.
New objects :0
Objects found so far: 6

Performing conditional scans..


Conditional scan result:

New objects : 0
Objects found so far: 6

12:22:50 Scan complete

Summary of this scan

Total scanning time :00:01:04:609
Objects scanned :39820
Objects identified :6
Objects ignored :0
New objects :6

李茗 - 2005-8-5 12:46:00

我也不知怎么搞的饿，就是这么长啊

魔法学徒 - 2005-8-5 13:03:00

您的电脑有什么问题吗？请先说明……

建议卸载360搜

瑞星卡卡安全论坛