瑞星,你何时才能让我真正的放心,不担心不会再被病毒入侵! bbs.ikaka.com

想一个人静静 - 2007-5-9 8:41:00

都不知道是怎么回事!
我这台电脑用了几年了,系统补丁每次出来都有打,
瑞星杀毒软件天天升级,防火墙能升就马上升级,
一般除了下点BT,在起点,17K,这些小说网上看看小说,
在玩玩网络游戏,都是正规网络游戏,不玩私服,
也没用过外挂,
下BT也看清楚了文件,只下视频格式文件,下载完还马上用瑞星扫描.
没想到...
这样的保护起来的电脑,
还会被人攻进来!!!
瑞星,,,
做为用户,我用瑞星已经有二年多了,
我还是头一次对瑞星失去信心!
每想到瑞星越变越差,,
在被攻过之后,中了病毒,
还杀不出来,
还要我自己去请别人手动过来清除.
我对电脑不是很懂,
只是想要一个保障,
你...瑞星...
现在好像给不了了...
国内,有很多人都在用国外的杀毒软件,
说什么好,怎么好,
做为一个国人,我很支持国内杀毒软件
我也相信它,
我用过很多杀毒软件,我还是相信瑞星用瑞星,
可是我这次再也相信不下去了...
连我这样用户还会被病毒所攻...
可想那些一般般的用户,会是怎么样的???

这是我第二次发贴,
我所发第二次,我还是想再给瑞星一次机会,
我不想用老外的软件,用在自己的电脑上,
做为中国人,我还是希望能用上中国人自己的软件,
希望瑞星以后不要让我失望,,.
多多加油,做的再好点!!!

以下是我的日记,,,
有二种软件扫描出来的,希望楼主或高手能帮我看看!!
我电脑应该怎么补救!!!!

想一个人静静 - 2007-5-9 8:46:00

Logfile of HijackThis v1.99.1
Scan saved at 伈メ痴ヤ瀦上午伈メ痴ヤ瀦上午8:11:27, on 2007-05-09
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
E:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
E:\Program Files\Rising\Rav\Ravmond.exe
e:\program files\rising\rfw\rfwsrv.exe
C:\WINDOWS\system32\spoolsv.exe
E:\Program Files\Rising\Rav\RavStub.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\Explorer.EXE
e:\program files\rising\rfw\RfwMain.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\EzButton\CplBCL50.EXE
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\system32\conime.exe
E:\Program Files\Rising\Rav\RavTask.exe
E:\Program Files\Rising\Rav\Ravmon.exe
C:\Program Files\Rising\KaKaToolBar\runiep.exe
E:\Program Files\SnowFox\DesktopSprite2\DesktopSprite.exe
C:\WINDOWS\system32\ctfmon.exe
E:\Program Files\BitSpirit\BitSpirit.exe
E:\Program Files\同花顺财通\LiveUpdate.exe
E:\Program Files\鱼鱼软件\鱼鱼桌面秀\XDeskShow2.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\notepad.exe
E:\Program Files\系统扫描工具\ha_hijackthis_1991\HijackThis.exe

R3 - Default URLSearchHook is missing
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [CplBCL50] C:\Program Files\EzButton\CplBCL50.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RfwMain] "E:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - HKLM\..\Run: [RavTask] "E:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [Super Rabbit SafeEdit] E:\Program Files\Super Rabbit\MagicSet\SRFC.EXE /Load
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Vistadrv] E:\我的电脑\带容量显示的硬盘图标\Vistadrive\vsdrv.exe
O4 - HKLM\..\Run: [VStart5.0] ; E:\Program Files\音速启动(Vstart)v5.0 Build 2005.10.25\VStart.exe
O4 - HKLM\..\Run: [runeip] C:\Program Files\Rising\KaKaToolBar\runiep.exe
O4 - HKCU\..\Run: [DesktopSprite] E:\Program Files\SnowFox\DesktopSprite2\DesktopSprite.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [XDeskShow2] E:\Program Files\鱼鱼软件\鱼鱼桌面秀\XDeskShow2.exe
O4 - Startup: HDDlife.lnk = ?
O4 - Startup: QQ游戏启动加速程序.lnk = D:\Program Files\QQGAME\Accel.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O11 - Options group: [INTERNATIONAL] International*
O15 - Trusted Zone: http://www.icbc.com.cn
O16 - DPF: {2354A44B-3CEB-4829-9940-545B03103538} (PowerPlr Control) - http://5151c.wz16300.com/plugin/PowerPlr3200.ocx
O16 - DPF: {3D8F74EE-8692-4F8F-B8D2-7522E732519E} (WebActivater Control) - http://game.qq.com/QQGame2.cab
O16 - DPF: {488A4255-3236-44B3-8F27-FA1AECAA8844} (EditCtrl Class) - https://img.alipay.com/download/1101/aliedit.cab
O16 - DPF: {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} (AxInputControl Class) - https://mybank.icbc.com.cn/icbc/perbank/AxSafeControls.cab
O16 - DPF: {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} (AxSubmitControl Class) - https://mybank.icbc.com.cn/icbc/perbank/AxSafeControls.cab
O16 - DPF: {E787FD25-8D7C-4693-AE67-9406BC6E22DF} (CPasswordEditCtrl Object) - https://password.qq.com/download/qqedit.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{43275FCB-37F2-44F6-9D4A-DF8CCDF130D5}: NameServer = 221.12.65.228 60.12.166.166
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WBSrv - E:\PROGRA~1\WINDOW~1\wbsrv.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Rising Proxy Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - e:\program files\rising\rfw\rfwproxy.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - e:\program files\rising\rfw\rfwsrv.exe
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - E:\Program Files\Rising\Rav\CCenter.exe
O23 - Service: Rising RealTime Monitor (RsRavMon) - Beijing Rising Technology Co., Ltd. - E:\Program Files\Rising\Rav\Ravmond.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe

想一个人静静 - 2007-5-9 8:47:00

2007-05-09,08:09:48

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<DesktopSprite><E:\Program Files\SnowFox\DesktopSprite2\DesktopSprite.exe> [N/A]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Corporation]
<XDeskShow2><E:\Program Files\鱼鱼软件\鱼鱼桌面秀\XDeskShow2.exe> [鱼鱼软件]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
<run><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Corporation]
<PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Corporation]
<Apoint><C:\Program Files\Apoint2K\Apoint.exe> [(Verified)Alps Electric Co., Ltd.]
<CplBCL50><C:\Program Files\EzButton\CplBCL50.EXE> [Dritek System Inc.]
<NeroFilterCheck><C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]
<RfwMain><"E:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.]
<RavTask><"E:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<Super Rabbit SafeEdit><E:\Program Files\Super Rabbit\MagicSet\SRFC.EXE /Load> [Super Rabbit Soft]
<KernelFaultCheck><%systemroot%\system32\dumprep 0 -k> [N/A]
<Vistadrv><E:\我的电脑\带容量显示的硬盘图标\Vistadrive\vsdrv.exe> [N/A]
<VStart5.0><; E:\Program Files\音速启动(Vstart)v5.0 Build 2005.10.25\VStart.exe> [3L软件工作室(3LSoft)]
<runeip><C:\Program Files\Rising\KaKaToolBar\runiep.exe> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Corporation]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><E:\我的电脑\登陆界面\我专用的登陆界面\CHENUDNG1.exe> [CHENUDNG]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WBSrv]
<WinlogonNotify: WBSrv><E:\PROGRA~1\WINDOW~1\wbsrv.dll> [Stardock]
[HKEY_CURRENT_USER\Control Panel\Desktop]
<SCRNSAVE.EXE><C:\windows\AQUAREAL.SCR> [N/A]

==================================
启动文件夹
[HDDlife]
<C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\HDDlife.lnk --> E:\PROGRA~1\硬盘检~1\HDDLIF~1.EXE [BinarySense, Ltd.]><H>
[QQ游戏启动加速程序]
<C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\QQ游戏启动加速程序.lnk --> D:\PROGRA~1\QQGAME\Accel.exe [深圳市腾讯计算机系统有限公司]><H>

==================================
服务
[Adobe LM Service / Adobe LM Service]
<"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><N/A>
[Macromedia Licensing Service / Macromedia Licensing Service]
<"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><N/A>
[Rising Proxy Service / RfwProxySrv]
<e:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
<e:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
<"E:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon]
<"E:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[SmartLinkService / SLService]
<slserv.exe><>
[StyleXPService / StyleXPService]
<"C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe"><>

==================================
驱动程序
[a347bus / a347bus]
<\SystemRoot\system32\DRIVERS\a347bus.sys><>
[a347scsi / a347scsi]
<\SystemRoot\System32\Drivers\a347scsi.sys><>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM]
<system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[Alps Pointing-device Filter Driver / ApfiltrService]
<system32\DRIVERS\Apfiltr.sys><Alps Electric Co., Ltd.>
[ASFWHide / ASFWHide]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ASFWHide><N/A>
[标准 IDE/ESDI 硬盘控制器 / atapi]
<\SystemRoot\system32\DRIVERS\atapi.sys><N/A>
[Rising TDI Base Driver / BaseTDI]
<System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[Dritek HotKey Keyboard Filter Driver / DKbFltr]
<System32\Drivers\DKbFltr.sys><Dritek System Inc.>
[DrvFltIp / DrvFltIp]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\DrvFltIp><N/A>
[EagleNT / EagleNT]
<\??\C:\windows\system32\drivers\EagleNT.sys><AhnLab, Inc.>
[ENE Cardbus Patch Driver / ENECBPTH]
<C:\WINDOWS\SYSTEM32\DRIVERS\ENECBPTH.SYS><EnE Technology Inc.>
[ExpScaner / ExpScaner]
<\??\E:\Program Files\Rising\Rav\ExpScan.sys><>
[HOOKAPI / HOOKAPI]
<\??\E:\PROGRAM FILES\RISING\RAV\HookApi.Sys><瑞星软件有限公司>
[HookCont / HookCont]
<\??\E:\Program Files\Rising\Rav\HOOKCONT.sys><Rising>
[HookReg / HookReg]
<\??\E:\Program Files\Rising\Rav\HookReg.sys><>
[HookSys / HookSys]
<\??\E:\Program Files\Rising\Rav\HookSys.sys><Rising>
[HookUrl / HookUrl]
<\??\E:\Program Files\Rising\Rfw\HookUrl.sys><Beijing Rising Technology Co., Ltd.>
[ialm / ialm]
<system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[kmsinput / kmsinput]
<\??\C:\WINDOWS\system32\drivers\kmsinput.sys><N/A>
[MEMSCAN / MEMSCAN]
<\??\E:\Program Files\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司>
[mProcRs / mProcRs]
<\??\e:\program files\rising\rfw\mProcRs.sys><Beijing Rising Technology Co., Ltd.>
[Mtlmnt5 / Mtlmnt5]
<system32\DRIVERS\Mtlmnt5.sys><>
[Mtlstrm / Mtlstrm]
<system32\DRIVERS\Mtlstrm.sys><>
[npkcrypt / npkcrypt]
<\??\E:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[npkcusb / npkcusb]
<\??\E:\Program Files\Tencent\QQ\npkcusb.sys><INCA Internet Co., Ltd.>
[NtMtlFax / NtMtlFax]
<system32\DRIVERS\NtMtlFax.sys><>
[Direct Parallel Link Driver / Ptilink]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsAntiSpyware / RsAntiSpyware]
<\SystemRoot\system32\drivers\RsBoot.sys><Beijing Rising>
[RsFwDrv / RsFwDrv]
<\??\E:\Program Files\Rising\Rfw\RsFwDrv.sys><Beijing Rising Technology Co., Ltd.>
[RsNTGDI / RsNTGDI]
<\SystemRoot\system32\Drivers\RsNTGdi.sys><Beijing Rising Technology Co., Ltd.>
[RSPPSYS / RSPPSYS]
<\??\E:\Program Files\Rising\Rav\RSPPSYS.sys><Rising>
[Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver / RTL8023]
<system32\DRIVERS\Rtlnic51.sys><Realtek Semiconductor Corporation>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139]
<system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv]
<system32\DRIVERS\secdrv.sys><N/A>
[SERIALOX / SERIALOX]
<system32\DRIVERS\SERIALOX.sys><OEM>
[SmartLink AMR_PCI Driver / Slntamr]
<system32\DRIVERS\slntamr.sys><>
[SlNtHal / SlNtHal]
<system32\DRIVERS\Slnthal.sys><>
[SlWdmSup / SlWdmSup]
<system32\DRIVERS\SlWdmSup.sys><Vireo Software>
[SMC IrCC Miniport Device Driver / SMCIRDA]
<system32\DRIVERS\smcirda.sys><SMC>
[StyleXPHelper / StyleXPHelper]
<\??\C:\Program Files\TGTSoft\StyleXP\StyleXPHelper.exe><Windows (R) 2000 DDK provider>
[SVKP / SVKP]
<\??\C:\windows\system32\SVKP.sys><AntiCracking>
[TCP/IP Protocol Driver / Tcpip]
<system32\DRIVERS\tcpip.sys><Microsoft Corporation>

想一个人静静 - 2007-5-9 8:48:00

==================================
浏览器加载项
[PowerPlr Control]
{2354A44B-3CEB-4829-9940-545B03103538} <C:\WINDOWS\DOWNLO~1\POWERP~1.OCX, Powerise Digital>
[WebActivater Control]
{3D8F74EE-8692-4F8F-B8D2-7522E732519E} <C:\WINDOWS\system32\WEBACT~1.OCX, QQ>
[EditCtrl Class]
{488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, >
[AxInputControl Class]
{73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\windows\system32\INPUTC~1.DLL, >
[AxSubmitControl Class]
{8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\windows\system32\SUBMIT~1.DLL, >
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\windows\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[CPasswordEditCtrl Object]
{E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\windows\system32\qqedit\qqedit.dll, 腾讯科技（深圳）有限公司>
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v13.dll, N/A>
[ActiveMovieControl Object]
{05589FA1-C356-11CE-BF01-00AA0055595A} <C:\windows\system32\wmpdxm.dll, Microsoft Corporation>
[PeerDraw Class]
{10072CEC-8CC1-11D1-986E-00A0C955B42E} <%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll, N/A>
[]
{105E4D0C-5E21-41ED-90F9-013EEF271BD6} <C:\WINDOWS\system32\widgetdownload.dll, 鱼鱼桌面秀widget插件下载工具>
[Fade]
{16B280C5-EE70-11D1-9066-00C04FD9189D} <C:\windows\system32\Dxtmsft.dll, Microsoft Corporation>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <C:\windows\system32\legitcheckcontrol.dll, 木蚂蚁社区>
[EWA Control]
{18226BF8-DC0B-4D81-80E9-A41AE37BB73A} <C:\PROGRA~1\COMMON~1\Synacast\SynaLive\SYNACA~1.OCX, Synacast>
[iTrusPTA Class]
{1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\pta.dll, >
[PowerList Control]
{20C2C286-BDE8-441B-B73D-AFA22D914DA5} <e:\PROGRA~1\PPStream\POWERL~1.OCX, PPStream.com>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\windows\system32\wmpdxm.dll, Microsoft Corporation>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <C:\windows\system32\mshtml.dll, Microsoft Corporation>
[XML DOM Document]
{2933BF90-7B36-11D2-B20E-00C04F983E60} <C:\windows\system32\msxml3.dll, Microsoft Corporation>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\windows\system32\dllcache\dhtmled.ocx, Microsoft Corporation>
[BitComet Helper]
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <E:\Program Files\BitComet\tools\BitCometBHO.dll, N/A>
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\windows\system32\msxml3.dll, Microsoft Corporation>
[EditCtrl Class]
{488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, >
[]
{4F07F79F-087F-42CF-8B36-7A88D06088E9} <C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL, Microsoft Corporation>
[HHCtrl Object]
{52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\windows\system32\hhctrl.ocx, Microsoft Corporation>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <e:\Program Files\Tencent\QQ\QQIEHelper.dll, N/A>
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\windows\system32\ieframe.dll, Microsoft Corporation>
[WUWebControl Class]
{6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\windows\system32\wmp.dll, Microsoft Corporation>
[WangWangObj Class]
{6E213FC7-DD5A-4115-B7E6-D4C7838C361E} <E:\Program Files\淘宝网\淘宝旺旺\WangWangX4.dll, 阿里软件（中国）有限公司>
[Active Desktop Mover]
{72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[AxInputControl Class]
{73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\windows\system32\INPUTC~1.DLL, >
[AquaRealOcx Control]
{7DB39A0D-580F-4BE9-9195-8BFCD226F6C2} <e:\Program Files\Formosoft\Aqua Real\AquaReal.ocx, formosoft>
[Microsoft Web Browser]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\windows\system32\ieframe.dll, Microsoft Corporation>
[XML DOM 文档 5.0]
{88D969E5-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, Microsoft Corporation>
[XML HTTP 5.0]
{88D969EA-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, Microsoft Corporation>
[AxSubmitControl Class]
{8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\windows\system32\SUBMIT~1.DLL, >
[Windows Live Sign-in Helper]
{9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, N/A>
[LiveMediaOcx Control]
{9242BB35-0DB0-43AC-8DFC-8EA07E63B92A} <E:\PROGRA~1\Tencent\QQLive\QQLive.ocx, Tencent>
[RMGetLicense Class]
{A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\windows\system32\msnetobj.dll, Microsoft Corporation>
[WebVGPlayer Class]
{AA899B43-24BD-4B6B-BBD0-45557D8D11E0} <C:\PROGRA~1\VIEWGOOD\WEBPLA~1\VGPlayer.dll, >
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[RDS.DataSpace]
{BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[QQPlayerSvr Proxy Control]
{CD108273-D434-43E6-AA90-1469F97EB398} <E:\Program Files\Tencent\QQ\QQPlayerProxy.dll, Tencent>
[AUDIO__MP3 Moniker Class]
{CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\windows\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class]
{CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\windows\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_WMV Moniker Class]
{CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\windows\system32\wmp.dll, Microsoft Corporation>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\windows\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[QuickTimeCheck Class]
{DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\WINDOWS\system32\QuickTimeCheck.ocx, Apple Computer, Inc.>
[CPasswordEditCtrl Object]
{E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\windows\system32\qqedit\qqedit.dll, 腾讯科技（深圳）有限公司>
[XML HTTP Request]
{ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\windows\system32\msxml3.dll, Microsoft Corporation>
[XML DOM Document 3.0]
{F5078F32-C551-11D3-89B9-0000F81FE221} <C:\windows\system32\msxml3.dll, Microsoft Corporation>
[XML HTTP 3.0]
{F5078F35-C551-11D3-89B9-0000F81FE221} <C:\windows\system32\msxml3.dll, Microsoft Corporation>
[XML DOM Document]
{F6D90F11-9C73-11D3-B32E-00C04F990BB4} <C:\windows\system32\msxml3.dll, Microsoft Corporation>
[XML HTTP]
{F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\windows\system32\msxml3.dll, Microsoft Corporation>

想一个人静静 - 2007-5-9 8:50:00

==================================
正在运行的进程
[PID: 508][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 584][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 608][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[E:\PROGRA~1\WINDOW~1\wbsrv.dll] [Stardock, 5, 0, 0, 1]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[PID: 652][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 664][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 816][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 860][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 984][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[PID: 1036][C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe] [, 0, 20, 0, 3000]
[PID: 1084][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1156][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1484][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[PID: 1588][E:\Program Files\Rising\Rav\RavStub.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 4]
[E:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[E:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[PID: 1696][C:\WINDOWS\system32\inetsrv\inetinfo.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1764][C:\WINDOWS\system32\slserv.exe] [ , 2.80.00(24Apr2000)]
[PID: 1792][C:\WINDOWS\System32\snmp.exe] [Microsoft Corporation, 5.1.2600.3038 (xpsp_sp2_gdr.061119-2303)]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[PID: 772][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[E:\Program Files\WINDOW~1\tray.dll] [N/A, N/A]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[E:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[C:\WINDOWS\system32\igfxpph.dll] [Intel Corporation, 3.0.0.2285]
[C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.2285]
[C:\WINDOWS\system32\igfxres.dll] [Intel Corporation, 3.0.0.2285]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.2285]
[C:\WINDOWS\system32\igfxdev.dll] [Intel Corporation, 3.0.0.2285]
[C:\WINDOWS\system32\icm32.dll] [Microsoft Corporation, 5.1.2600.2709 (xpsp_sp2_gdr.050628-1518)]
[C:\Program Files\WinRAR\rarext.dll] [N/A, N/A]
[e:\Program Files\UltraEdit\ue32ctmn.dll] [, 1, 0, 0, 1]
[C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
[C:\Program Files\GlobalSCAPE\CuteFTP ZH\Cuteshell.dll] [N/A, N/A]
[C:\WINDOWS\system32\igfxress.dll] [Intel Corporation, 3.0.0.2285]
[PID: 1348][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1688][e:\program files\rising\rfw\RfwMain.exe] [Beijing Rising Technology Co., Ltd., 5, 0, 0, 70]
[e:\program files\rising\rfw\RsGuiLib.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 33]
[e:\program files\rising\rfw\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[e:\program files\rising\rfw\RfwCtrl.dll] [Beijing Rising Technology Co., Ltd., 5, 0, 0, 11]
[e:\program files\rising\rfw\RsXML.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 2]
[e:\program files\rising\rfw\PngDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

想一个人静静 - 2007-5-9 8:51:00

[PID: 908][C:\Program Files\Apoint2K\Apoint.exe] [Alps Electric Co., Ltd., 5.3.10.166]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\WINDOWS\system32\VXDIF.DLL] [Alps Electric Co., Ltd., 6.0.2.65]
[C:\Program Files\Apoint2K\Apoint.DLL] [Alps Electric Co., Ltd., 5.3.203.165]
[C:\Program Files\Apoint2K\EzAuto.dll] [Alps Electric Co., Ltd., 4.5.1.83]
[C:\Program Files\Apoint2K\EzLaunch.DLL] [Alps Electric Co., Ltd., 4.5.0.47]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 916][C:\Program Files\EzButton\CplBCL50.EXE] [Dritek System Inc., 1.00]
[C:\Program Files\EzButton\SzUPFUtl.dll] [Dritek System Inc., 1.00]
[C:\Program Files\EzButton\OSDUtl.dll] [Dritek System Inc., 1.00]
[C:\Program Files\EzButton\RgnMaker.dll] [Dritek System Inc., 12.07.1999 ( VC60 )]
[C:\Program Files\EzButton\CDRomUtl.dll] [Dritek System Inc., 1.00]
[C:\Program Files\EzButton\MixerUtl.dll] [Dritek System Inc., 1.00]
[C:\Program Files\EzButton\ComFnUtl.dll] [Dritek System Inc., 1.00]
[C:\Program Files\EzButton\LgKCUtl.dll] [Dritek System Inc., 2, 0, 1, 1]
[C:\Program Files\EzButton\Wnd2File.dll] [Dritek System Inc., 3.00]
[C:\Program Files\EzButton\TkBarUtl.dll] [Dritek System Inc., 1.00]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 932][C:\Program Files\Apoint2K\Apntex.exe] [Alps Electric Co., Ltd., 5.0.1.15]
[C:\WINDOWS\system32\VXDIF.DLL] [Alps Electric Co., Ltd., 6.0.2.65]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 1104][C:\WINDOWS\system32\conime.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 2236][C:\Program Files\Rising\KaKaToolBar\runiep.exe] [Beijing Rising Technology Co., Ltd., 1, 0, 1, 6]
[C:\Program Files\Rising\KaKaToolBar\iep_ctrl.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 4]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[PID: 2260][E:\Program Files\SnowFox\DesktopSprite2\DesktopSprite.exe] [N/A, N/A]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 2312][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 2664][E:\Program Files\BitSpirit\BitSpirit.exe] [LANSPIRIT.NET, 3.2.2.215]
[E:\Program Files\BitSpirit\BSOPLIB.DLL] [N/A, 1, 0, 0, 3]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 3056][E:\Program Files\同花顺财通\LiveUpdate.exe] [上海核新软件技术有限公司, 2006, 11, 2, 0]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 3020][E:\Program Files\鱼鱼软件\鱼鱼桌面秀\XDeskShow2.exe] [鱼鱼软件, 2.0.2.425]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[E:\Program Files\鱼鱼软件\鱼鱼桌面秀\Res\dll\XDeskScripter.dll] [鱼鱼软件 cfishsoft, 2.1.0.0]
[E:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\Program Files\WinRAR\rarext.dll] [N/A, N/A]
[e:\Program Files\UltraEdit\ue32ctmn.dll] [, 1, 0, 0, 1]
[C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
[E:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[C:\Program Files\GlobalSCAPE\CuteFTP ZH\Cuteshell.dll] [N/A, N/A]
[PID: 2848][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 7.00.6000.16414 (vista_gdr.070108-1520)]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[E:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\windows\system32\Macromed\Flash\Flash9b.ocx] [Adobe Systems, Inc., 9,0,28,0]
[PID: 2816][E:\Program Files\系统扫描工具\SREng\SREng.exe] [Smallfrogs Studio, 2.2.6.605]
[E:\Program Files\WINDOW~1\wblind.dll] [Stardock Corporation, 5.01]
[E:\Program Files\WINDOW~1\wbhelp.dll] [Stardock.Net, Inc, 4.01]
[C:\Program Files\Rising\KaKaToolBar\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

==================================
文件关联
.TXT Error. [C:\WINDOWS\notepad.exe %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM Error. ["hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS Error. ["C:\Program Files\Macromedia\Dreamweaver MX\Dreamweaver.exe" "%1"]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1 localhost

==================================

瑞星卡卡安全论坛