天月来了、姑苏残月，请进，帮我看看日志文件 bbs.ikaka.com

【村长】 - 2007-5-12 11:46:00

========Content========
最近网络老是断线、重启，查了线路，好像没问题，是不是病毒做怪？帮我看看LOG日志：多谢了

日志：

[CODE]

2007-05-12,11:09:37

System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<H/PC Connection Agent><"E:\Microsoft ActiveSync\wcescomm.exe"> [Microsoft Corporation]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
<run><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<RavTask><"D:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<SKYNET Personal FireWall><D:\PROGRA~1\SKYNET\FIREWALL\pfw.exe> [天网]
<CnxDslTaskBar><"C:\Program Files\USB Modem\AccessRunner ADSL USB\CnxDslTb.exe" "USB Modem\AccessRunner ADSL USB"> [N/A]
<UUCallMini><"E:\Downloads\UUCall3.exe" -autorun> [UUCall Inc.]
<runeip><C:\Program Files\Rising\AntiSpyware\runiep.exe> [Beijing Rising Technology Co., Ltd.]
<AliTalk><; D:\PROGRA~1\阿里巴巴\贸易通\AliTalk.EXE -hideframe> [Alibaba]
<Cmaudio><; RunDll32 cmicnfg.cpl,CMICtrlWnd> [N/A]
<IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Windows Publisher]
<IMSCMig><; > [N/A]
<PHIME2002A><; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName> [(Verified)Microsoft Windows Publisher]
<PHIME2002ASync><; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Windows Publisher]
<RaidTool><; C:\Program Files\VIA\RAID\raid_tool.exe> [VIA Technologies]
<TkBellExe><; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [RealNetworks, Inc.]
<VTTimer><; VTTimer.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<VTTrayp><; VTtrayp.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]

==================================
启动文件夹
[迷你日历]
<C:\Documents and Settings\user\「开始」菜单\程序\启动\迷你日历.lnk --> D:\PROGRA~1\迷你日历\Calendar.exe [Small 工作室]><N>

==================================
服务
[DetectorSvc / DetectorSvc][Running/Auto Start]
<d:\Program Files\BenQ\PhotoFamily 3.0\DetectorSvc.exe><BENQ (IT) Co.,Ltd.>
[Messenger / Messenger][Stopped/Disabled]
<\SystemRoot\\SystemRoot\C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\msgsvc.dll><Microsoft Corporation>
[Rising Process Communication Center / RsCCenter][Running/Auto Start]
<"D:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon][Running/Auto Start]
<"D:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>

==================================
驱动程序
[Rising TDI Base Driver / BaseTDI][Running/Auto Start]
<System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[C-Media WDM Audio Interface / cmuda][Running/Manual Start]
<system32\drivers\cmuda.sys><C-Media Inc>
[Conexant AccessRunner USB ADSL Adapter Filter Driver / CnxEtP][Running/Manual Start]
<system32\DRIVERS\CnxEtP.sys><Conexant Systems, Inc.>
[Conexant AccessRunner USB ADSL Interface Device Driver / CnxEtU][Running/Manual Start]
<system32\DRIVERS\CnxEtU.sys><Conexant Systems, Inc.>
[Conexant AccessRunner ADSL LAN Adapter Driver / CnxTgNL][Running/Manual Start]
<system32\DRIVERS\CnxTgNL.sys><Conexant Systems, Inc.>
[Conexant AccessRunner ADSL WAN PPPoE Adapter Driver / CnxTgNP][Stopped/Manual Start]
<system32\DRIVERS\CnxTgNP.sys><N/A>
[ExpScaner / ExpScaner][Running/Auto Start]
<\??\D:\Program Files\Rising\Rav\ExpScan.sys><>
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS][Stopped/Manual Start]
<system32\DRIVERS\fetnd5.sys><VIA Technologies, Inc.>
[VIA Rhine Family Fast Ethernet Adapter Driver Service / FETNDISB][Stopped/Manual Start]
<system32\DRIVERS\fetnd5b.sys><VIA Technologies, Inc.>
[gy2dyu22 / gy2dyu22][Running/Boot Start]
<\SystemRoot\system32\drivers\gy2dyu22.sys><N/A>
[HookCont / HookCont][Running/Auto Start]
<\??\D:\Program Files\Rising\Rav\HOOKCONT.sys><Rising>
[HookReg / HookReg][Running/Auto Start]
<\??\D:\Program Files\Rising\Rav\HookReg.sys><>
[HookSys / HookSys][Running/Auto Start]
<\??\D:\Program Files\Rising\Rav\HookSys.sys><Rising>
[MEMSCAN / MEMSCAN][Running/Auto Start]
<\??\D:\Program Files\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司>
[npkcrypt / npkcrypt][Running/Auto Start]
<\??\d:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[NTSIM / NTSIM][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\ntsim.sys><VIA Networking Technologies, Inc.>
[NextSensor Kernel I/O Driver / nxsIO32][Running/Auto Start]
<\??\C:\WINDOWS\System32\DRIVERS\nxsIO32.sys><>
[Padus ASPI Shell / pfc][Running/Manual Start]
<system32\drivers\pfc.sys><Padus, Inc.>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsAntiSpyware / RsAntiSpyware][Running/Boot Start]
<\SystemRoot\system32\drivers\RsBoot.sys><Beijing Rising>
[RsNTGDI / RsNTGDI][Running/Boot Start]
<\SystemRoot\system32\Drivers\RsNTGdi.sys><Beijing Rising Technology Co., Ltd.>
[RSPPSYS / RSPPSYS][Running/Auto Start]
<\??\D:\Program Files\Rising\Rav\RSPPSYS.sys><Rising>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><N/A>
[SKNFW / SKNFW][Running/System Start]
<\??\C:\WINDOWS\system32\Drivers\SKNFW.sys><N/A>
[VIA AGP Filter / viaagp1][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\viaagp1.sys><VIA Technologies, Inc.>
[viagfx / viagfx][Running/Manual Start]
<system32\DRIVERS\vtmini.sys><Copyright (C) VIA/S3 Graphics Co, Ltd.>
[ViaIde / ViaIde][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\viaide.sys><Microsoft Corporation>
[viamraid / viamraid][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\viamraid.sys><VIA Technologies inc,.ltd>
[WINIO / WINIO][Stopped/Manual Start]
<\??\g:\闪闪字\shan13.ex_\ape.sys><N/A>
[y61k4dw / y61k4dw][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\y61k4dw.sys><N/A>

【村长】 - 2007-5-12 11:47:00

==================================
浏览器加载项
[超级兔子上网精灵]
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <D:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[Create Mobile Favorite]
{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} <E:\MICROS~1\INetRepl.dll, Microsoft Corporation>
[Create Mobile Favorite]
{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} <E:\MICROS~1\INetRepl.dll, Microsoft Corporation>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <d:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[快车]
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <D:\FLASHGET\FlashGet.exe, FlashGet.com>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[超级兔子上网精灵]
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <D:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[超级兔子上网精灵]
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <D:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[WangWangObj Class]
{6E213FC7-DD5A-4115-B7E6-D4C7838C361E} <D:\Program Files\淘宝网\淘宝旺旺5\WangWangX4.dll, 阿里软件（中国）有限公司>
[超级兔子上网精灵]
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <D:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[&使用快车(FlashGet)下载]
<D:\FLASHGET\jc_link.htm, N/A>
[&使用快车(FlashGet)下载全部链接]
<D:\FLASHGET\jc_all.htm, N/A>
[&使用迅雷下载]
<, N/A>
[&使用迅雷下载全部链接]
<, N/A>
[上传到QQ网络硬盘]
<D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
<D:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
<D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<D:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 376][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 612][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 636][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2024][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[C:\Program Files\Resco\Pocket Encryption\RExpCtxU.dll] [, 1, 0, 0, 1]
[D:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[d:\Program Files\BenQ\PhotoFamily 3.0\MFC42.DLL] [Microsoft Corporation, 6.00.8665.0]
[D:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[D:\Program Files\shiqiang\wnwb\WNMKEY.DLL] [深圳世强软件开发部 www.wnwb.com , 2005, 7, 5, 1]
[C:\WINDOWS\system32\msadp32.acm] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[d:\Program Files\WinRAR\rarext.dll] [N/A, ]
[C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
[PID: 1596][D:\PROGRA~1\SKYNET\FIREWALL\pfw.exe] [天网, 2.7.3.1100]
[D:\PROGRA~1\SKYNET\FIREWALL\SKYMISC.DLL] [N/A, ]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 460][C:\Program Files\USB Modem\AccessRunner ADSL USB\CnxDslTb.exe] [Conexant Systems, Inc., 040.001.022.000]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 428][E:\Downloads\UUCall3.exe] [UUCall Inc., 3,1,3728,0]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[D:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\WINDOWS\system32\YLUSBTEL.dll] [, 2, 0, 0, 10]
[C:\Program Files\Common Files\Microsoft Shared\Ink\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[PID: 480][C:\Program Files\Rising\AntiSpyware\runiep.exe] [Beijing Rising Technology Co., Ltd., 1, 0, 1, 6]
[C:\Program Files\Rising\AntiSpyware\iep_ctrl.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 4]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 556][E:\Microsoft ActiveSync\wcescomm.exe] [Microsoft Corporation, 4.1.4841.0]
[C:\WINDOWS\system32\CEUTIL.dll] [Microsoft Corporation, 4.1.4841.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\RAPI.dll] [Microsoft Corporation, 4.1.4841.0]
[E:\Microsoft ActiveSync\TCP2UDP.dll] [Microsoft Corporation, 4.1.4841.0]
[E:\Microsoft ActiveSync\rapiproxystub.dll] [N/A, ]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[E:\Microsoft ActiveSync\dtptdns.dll] [Microsoft Corporation, 4.1.4841.0]
[PID: 1992][D:\Program Files\迷你日历\Calendar.exe] [Small 工作室, 2.8.1.0]
[D:\Program Files\迷你日历\Recall.dll] [N/A, ]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 2112][E:\MICROS~1\rapimgr.exe] [Microsoft Corporation, 4.1.4841.0]

【村长】 - 2007-5-12 11:47:00

[C:\WINDOWS\system32\CEUTIL.dll] [Microsoft Corporation, 4.1.4841.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[E:\MICROS~1\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[E:\Microsoft ActiveSync\rapiproxystub.dll] [N/A, ]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 3920][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 2016][D:\Program Files\淘宝网\淘宝旺旺\WangWang.exe] [淘宝（中国）软件有限公司, 1, 9, 6, 1221]
[D:\Program Files\淘宝网\淘宝旺旺\AliViewCtrl.dll] [vline, 1, 0, 0, 1]
[D:\Program Files\淘宝网\淘宝旺旺\VLNetwork.dll] [, 1, 0, 0, 6]
[D:\Program Files\淘宝网\淘宝旺旺\MFC42.DLL] [Microsoft Corporation, 6.02.4131.0]
[D:\Program Files\淘宝网\淘宝旺旺\MSVCP60.dll] [Microsoft Corporation, 6.02.3104.0]
[D:\Program Files\淘宝网\淘宝旺旺\AliViewMedia.dll] [vline, 1, 0, 0, 1]
[D:\Program Files\淘宝网\淘宝旺旺\VideoCAP.dll] [, 1, 0, 0, 4]
[D:\Program Files\淘宝网\淘宝旺旺\VLAudio.dll] [, 1, 0, 0, 4]
[D:\Program Files\淘宝网\淘宝旺旺\JsmShow.dll] [, 1, 0, 0, 3]
[D:\Program Files\淘宝网\淘宝旺旺\ww_network.dll] [, 1, 0, 1, 18]
[D:\Program Files\淘宝网\淘宝旺旺\riched32.dll] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[D:\Program Files\淘宝网\淘宝旺旺\RICHED20.dll] [Microsoft Corporation, 5.30.23.1221]
[D:\Program Files\淘宝网\淘宝旺旺\Ali_Res.DLL] [N/A, ]
[D:\Program Files\淘宝网\淘宝旺旺\WangWangX4.dll] [阿里软件（中国）有限公司, 1, 0, 0, 1]
[D:\Program Files\淘宝网\淘宝旺旺\RichOne.dll] [淘宝(中国)软件有限公司, 1.0.0.1]
[D:\Program Files\淘宝网\淘宝旺旺\TBProgress.dll] [淘宝(中国)软件有限公司, 1.0.0.1]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[D:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\Program Files\Common Files\Microsoft Shared\Ink\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[D:\Program Files\淘宝网\淘宝旺旺5\WangWangX4.dll] [阿里软件（中国）有限公司, 1, 0, 0, 1]
[C:\WINDOWS\system32\msadp32.acm] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[D:\Program Files\shiqiang\wnwb\WNMKEY.DLL] [深圳世强软件开发部 www.wnwb.com , 2005, 7, 5, 1]
[C:\WINDOWS\system32\WNWBIO.IME] [深圳世强软件开发部 www.wn51.com , 2007, 1, 31, 1]
[PID: 2084][D:\Program Files\淘宝网\淘宝旺旺5\WangWang.exe] [阿里巴巴软件（上海）有限公司, 5, 1, 0, 9]
[D:\Program Files\淘宝网\淘宝旺旺5\MFC80.DLL] [Microsoft Corporation, 8.00.50727.42]
[D:\Program Files\淘宝网\淘宝旺旺5\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.42]
[D:\Program Files\淘宝网\淘宝旺旺5\AliSkin.dll] [阿里巴巴软件（上海）有限公司, 1.0.0.1]
[D:\Program Files\淘宝网\淘宝旺旺5\zlib.dll] [, 1.2.3]
[D:\Program Files\淘宝网\淘宝旺旺5\Ali_Res.DLL] [N/A, ]
[D:\Program Files\淘宝网\淘宝旺旺5\WangWangX4.dll] [阿里软件（中国）有限公司, 1, 0, 0, 1]
[D:\Program Files\淘宝网\淘宝旺旺5\RICHED32.DLL] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[D:\Program Files\淘宝网\淘宝旺旺5\RICHED20.dll] [Microsoft Corporation, 5.30.23.1221]
[D:\Program Files\淘宝网\淘宝旺旺5\RichOne.dll] [阿里巴巴软件（上海）有限公司, 1.0.0.1]
[D:\Program Files\淘宝网\淘宝旺旺5\TBProgress.dll] [阿里巴巴软件（上海）有限公司, 1.0.0.1]
[D:\Program Files\淘宝网\淘宝旺旺5\MessageNotify.dll] [, 1, 0, 0, 1]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[D:\Program Files\淘宝网\淘宝旺旺5\ww_network.dll] [, 1, 0, 1, 23]
[C:\Program Files\Common Files\Microsoft Shared\Ink\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[D:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[D:\Program Files\淘宝网\淘宝旺旺5\AliViewMedia.dll] [阿里巴巴软件（上海）有限公司, 1, 0, 0, 2]
[D:\Program Files\淘宝网\淘宝旺旺5\VLNetwork.dll] [阿里巴巴软件（上海）有限公司, 1, 0, 0, 6]
[D:\Program Files\淘宝网\淘宝旺旺5\VideoCap.dll] [, 1, 0, 0, 4]
[D:\Program Files\淘宝网\淘宝旺旺5\VLAudio.dll] [阿里巴巴软件（上海）有限公司, 1, 0, 0, 5]
[D:\Program Files\淘宝网\淘宝旺旺5\JsmShow.dll] [阿里巴巴软件（上海）有限公司, 1, 0, 0, 4]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2508][D:\Program Files\shiqiang\wnwb\wnwb.exe] [深圳世强软件开发部 www.wn51.com , 2007, 3, 16, 1]
[D:\Program Files\shiqiang\wnwb\WNMKEY.DLL] [深圳世强软件开发部 www.wnwb.com , 2005, 7, 5, 1]
[D:\Program Files\shiqiang\wnwb\flyDll.dll] [N/A, ]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 2864][D:\Program Files\GreenBrowser\GreenBrowser.exe] [MoreQuick, 1, 0, 0, 0]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[C:\Program Files\Common Files\Microsoft Shared\Ink\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
[D:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx] [Adobe Systems, Inc., 9,0,28,0]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[D:\Program Files\shiqiang\wnwb\WNMKEY.DLL] [深圳世强软件开发部 www.wnwb.com , 2005, 7, 5, 1]
[PID: 2952][E:\hijackthis199_beta\SREng2\SREng.EXE] [Smallfrogs Studio, 2.4.12.806]
[C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS Error. ["d:\Program Files\Macromedia\Dreamweaver MX\Dreamweaver.exe" "%1"]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
N/A

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================

[/CODE]

瑞星卡卡安全论坛