瑞星卡卡安全论坛
xiaose998 - 2007-7-17 17:35:00
在E盘里有ImageGirls,F盘里是 Documents,链接到我的文档,删了老出现。
U盘里似乎还有 My folder 之类的。
请问这个是病毒吗?应该怎么处理?
谢谢
Leoooo - 2007-7-17 17:40:00
http://download.rising.com.cn/for_down/kakatool/kakasetupv4.exe下载卡卡上网安全助手4.0
1 运行瑞星卡卡上网安全助手
2 诊断求助=》电脑诊断日志
3
选择"文件详细信息"、"文件名相似分析"2个选项4 开始扫描=》导出信息,导成txt格式(也可以是htm格式方便自己看,不过论坛不能上传htm格式)
5 把日志中的报告完整拷贝贴上来(附件形式发上来也可以),不要修改(一次发不完请分次发上来)
6 扫日志的时候尽量把不必要的软件关闭 如QQ TM等
7 把扫描出来的可疑文件上传给瑞星
http://up.rising.com.cn/webmail/uploadnew.htm
望月吟23 - 2007-7-17 17:49:00
进安全模式删
xiaose998 - 2007-7-17 18:48:00
安全模式删不掉。
我把日志以附件形式传上来了。
附件:
9034012007717183754.txt
xiaose998 - 2007-7-17 18:52:00
瑞星卡卡电脑诊断日志 v1.30 (2007-7-17 18:27:26) 北京瑞星科技股份有限公司
注释:[A]表示该文件存在自启动关联;
[M]表示该文件在内存中;
+ 注册表自运行项目
+ 系统服务
+ HKLM\System\CurrentControlSet\Services
Ati HotKey Poller
[AM] 1. c:\windows\system32\ati2evxx.exe
ATI Technologies Inc.
ATI External Event Utility EXE Module
.text,.rdata,.data,.rsrc,
ATI Smart
[A ] 2. c:\windows\system32\ati2sgag.exe
ATI Smart
.text,.rdata,.data,.rsrc,
MsInfo
[A ] 3. c:\recycler\msinfo\msinfo.exe
MEW,�襲蹔�朐,
入口点在最后一个节;
ose
[A ] 4. c:\program files\common files\microsoft shared\source engine\ose.exe
Microsoft Corporation
Office Source Engine
.text,.data,.rsrc,
RfwProxySrv
[A ] 5. c:\program files\rising\rfw\rfwproxy.exe
Beijing Rising Technology Co., Ltd.
Rising Personal Proxy Service
.text,.rdata,.data,.rsrc,
RfwService
[A ] 6. c:\program files\rising\rfw\rfwsrv.exe
Beijing Rising Technology Co., Ltd.
Rising Personal FireWall Service
.text,.rdata,.data,.rsrc,
RsCCenter
[A ] 7. c:\program files\rising\rav\ccenter.exe
Beijing Rising Technology Co., Ltd.
CCenter
.text,.rdata,.data,.rsrc,
RsRavMon
[A ] 8. c:\program files\rising\rav\ravmond.exe
Beijing Rising Technology Co., Ltd.
RavMond
.text,.rdata,.data,.rsrc,
UMWdf
[AM] 9. c:\windows\system32\wdfmgr.exe
Microsoft Corporation
Windows User Mode Driver Manager
.text,.data,.rsrc,
+ 内核驱动
+ HKLM\System\CurrentControlSet\Services
BaseTDI
[A ] 10. c:\windows\system32\drivers\basetdi.sys
Beijing Rising Technology Co., Ltd.
basetdi
.text,.rdata,.data,INIT,.rsrc,.reloc,
ExpScaner
[A ] 11. c:\program files\rising\rav\expscan.sys
ExpScan.sys
.text,.rdata,.data,INIT,.rsrc,.reloc,
gwiopm
[A ] 12. d:\源程序\windows优化大师 6.5 build5.124 荒村听雨特别版\gwiopm.sys
HookCont
[A ] 13. c:\program files\rising\rav\hookcont.sys
Rising
HookCont
.text,.rdata,.data,INIT,.rsrc,.reloc,
HookReg
[A ] 14. c:\program files\rising\rav\hookreg.sys
.text,.rdata,.data,INIT,.rsrc,.reloc,
HookSys
[A ] 15. c:\program files\rising\rav\hooksys.sys
Rising
Hooksys
.text,.rdata,.data,INIT,.rsrc,.reloc,
HookUrl
[A ] 16. c:\program files\rising\rfw\hookurl.sys
Beijing Rising Technology Co., Ltd.
HookUrl
.text,.rdata,.data,INIT,.rsrc,.reloc,
kmsinput
[A ] 17. c:\windows\system32\drivers\kmsinput.sys
.text,.data,INIT,.reloc,
MEMSCAN
[A ] 18. c:\program files\rising\rav\memscan.sys
瑞星软件有限公司
MemScan Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
mProcRs
[A ] 19. c:\program files\rising\rfw\mprocrs.sys
Beijing Rising Technology Co., Ltd.
Rising Personal FireWall mprocrs.sys
.text,.rdata,.data,INIT,.rsrc,.reloc,
npkcrypt
[A ] 20. d:\源程序\qq2007\qq\npkcrypt.sys
INCA Internet Co., Ltd.
nProtect KeyCrypt Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
npkcusb
[A ] 21. d:\源程序\qq2007\qq\npkcusb.sys
INCA Internet Co., Ltd.
nProtect KeyCrypt Driver
.text,page,init,.rdata,.data,INIT,.rsrc,.reloc,
RsAntiSpyware
[A ] 22. c:\windows\system32\drivers\rsboot.sys
Beijing Rising Technology Co., Ltd.
Anti-RootKit Driver
.text,.rdata,.data,INIT,.rsrc,.reloc,
RsFwDrv
[A ] 23. c:\program files\rising\rfw\rsfwdrv.sys
Beijing Rising Technology Co., Ltd.
nt_fwdrv
.text,.rdata,.data,INIT,.rsrc,.reloc,
RsNTGDI
[A ] 24. c:\windows\system32\drivers\rsntgdi.sys
Beijing Rising Technology Co., Ltd.
RsNTGDI
.text,.rdata,INIT,.rsrc,.reloc,
RSPPSYS
[A ] 25. c:\program files\rising\rav\rsppsys.sys
Rising
RSPPSYS.SYS
.text,.rdata,.data,INIT,.rsrc,.reloc,
Secdrv
[A ] 26. c:\windows\system32\drivers\secdrv.sys
.text,.data,INIT,.reloc,
senfilt
[A ] 27. c:\windows\system32\drivers\senfilt.sys
Creative Technology Ltd.
Creative WDM Audio Driver
.text,page,init,.data,.CRT,init,INIT,.rsrc,.reloc,
smwdm
[A ] 28. c:\windows\system32\drivers\smwdm.sys
Analog Devices, Inc.
SoundMAX Integrated Digital Audio
.text,.rdata,.data,PAGE,INIT,.rsrc,.reloc,
sptd
[A ] 29. c:\windows\system32\drivers\sptd.sys
+ 系统登陆自运行
+ HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
System
[AM] 30. c:\documents and settings\localservice.nt authority\csrss.exe
MEW,�襲蹔�朐,
入口点在最后一个节;
+ IE浏览器加载模块
+ HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
{47833539-D0C5-4125-9FA8-0819E2EAAC93}
[A ] 31. c:\program files\adobe\acrobat 7.0\acrobat\acroiefavclient.dll
Adobe Systems Incorporated
Adobe IE plugin
.text,.rdata,.data,.rsrc,.reloc,
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
{0D42E1BD-09DD-4873-A826-9C7E793EB7B6}
[AM] 32. c:\program files\thunder network\thunder\components\resworker\dsiehelper.dll
Thunder Networking Technologies,LTD
DSIeHelper
.text,.rdata,.data,.rsrc,.reloc,
+ HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions
Exec
[A ] 33. c:\program files\thunder network\thunder\thunder.exe
Thunder Networking Technologies,LTD
.text,.rdata,.data,.rsrc,
+ HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars
{182EC0BE-5110-49C8-A062-BEB1D02A220B}
[A ] 31. c:\program files\adobe\acrobat 7.0\acrobat\acroiefavclient.dll
Adobe Systems Incorporated
Adobe IE plugin
.text,.rdata,.data,.rsrc,.reloc,
+ 资源管理器加载模块
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Filter
text/xml
[A ] 34. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll
Microsoft Corporation
Microsoft Office XML MIME Filter
.text,.data,.rsrc,.reloc,
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Handler
ic32pp
[A ] 35. c:\windows\wc98pp.dll
CODE,DATA,BSS,.idata,.edata,.reloc,.rsrc,
+ HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers
{F9DB5320-233E-11D1-9F84-707F02C10627}
[AM] 36. c:\program files\adobe\acrobat 7.0\activex\pdfshell.dll
Adobe Systems, Inc.
PDF Shell Extension
.text,.rdata,.data,.rsrc,.reloc,
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
HyperTerminal Icon Ext
[A ] 37. c:\windows\system32\hticons.dll
Hilgraeve, Inc.
HyperTerminal Applet Library
.text,.data,.rsrc,.reloc,
WinRAR shell extension
[A ] 38. c:\program files\winrar\rarext.dll
.text,.data,.tls,.idata,.edata,.rsrc,.reloc,
Adobe.Acrobat.ContextMenu
[A ] 39. c:\program files\adobe\acrobat 7.0\acrobat elements\contextmenu.dll
Adobe Systems Inc.
Adobe Acrobat Context Menu
.text,.rdata,.data,.rsrc,.reloc,
Web Folders
[A ] 40. c:\program files\common files\microsoft shared\web folders\msonsext.dll
Microsoft Corporation
Microsoft Web Folders
.text,.data,.rsrc,.reloc,
Microsoft Office Outlook Desktop Icon Handler
[A ] 41. c:\program files\microsoft office\office11\mlshext.dll
Microsoft Corporation
Microsoft Shell Extension Library
.text,.data,.rsrc,.reloc,
Microsoft Office Outlook Custom Icon Handler
[A ] 42. c:\program files\microsoft office\office11\olkfstub.dll
Microsoft Corporation
Outlook Shell Hook for Start/Find
.text,.data,.rsrc,.reloc,
xiaose998 - 2007-7-17 18:52:00
Microsoft Office HTML Icon Handler
[AM] 43. c:\program files\microsoft office\office11\msohev.dll
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,.reloc,
Portable Media Devices
[A ] 44. c:\windows\system32\audiodev.dll
Microsoft Corporation
便携媒体设备命令行解释器扩展
.text,.data,.rsrc,.reloc,
Portable Media Devices Menu
[A ] 44. c:\windows\system32\audiodev.dll
Microsoft Corporation
便携媒体设备命令行解释器扩展
.text,.data,.rsrc,.reloc,
RISING
[A ] 45. c:\windows\system32\ravext.dll
Beijing Rising Technology Co., Ltd.
Rising Shell Ext Module
.text,.rdata,.data,.rsrc,.reloc,
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
{AC2DC2EF-5165-40A3-8CDF-41DCA1B0901A}
[AM] 46. c:\windows\system32\shlhook.dll
Beijing Rising Technology Co., Ltd.
shlhook Module
.text,.rdata,.data,.rsrc,.reloc,
+ 用户登陆自运行项目
+ HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Userinit
[AM] 30. c:\documents and settings\localservice.nt authority\csrss.exe
MEW,�襲蹔�朐,
入口点在最后一个节;
+ HKLM\Software\Microsoft\Windows\CurrentVersion\Run
SoundMAXPnP
[AM] 47. c:\program files\analog devices\core\smax4pnp.exe
Analog Devices, Inc.
SMax4PNP MFC Application
.text,.rdata,.data,.rsrc,
ATIPTA
[A ] 48. c:\program files\ati technologies\ati control panel\atiptaxx.exe
ATI Technologies, Inc.
ATI Desktop Control Panel
.text,.rdata,.data,.rsrc,
NeroFilterCheck
[A ] 49. c:\windows\system32\nerocheck.exe
Ahead Software Gmbh
NeroCheck
.text,.rdata,.data,.rsrc,
StormCodec_Helper
[A ] 50. c:\program files\ringz studio\storm codec\stormset.exe
.text,.rdata,.data,.ndata,.rsrc,
RavTask
[A ] 51. c:\program files\rising\rav\ravtask.exe
Beijing Rising Technology Co., Ltd.
RavTimer
.text,.rdata,.data,.rsrc,
RfwMain
[AM] 52. c:\program files\rising\rfw\rfwmain.exe
Beijing Rising Technology Co., Ltd.
Rising Personal FireWall Main Program
.text,.rdata,.data,.rsrc,
OrderReminder
[AM] 53. c:\program files\hewlett-packard\orderreminder\orderreminder.exe
Hewlett-Packard
HP Cartridge Order Reminder
.text,.rdata,.data,.rsrc,
runeip
[AM] 54. c:\program files\rising\antispyware\runiep.exe
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware Monitor
.text,.rdata,.data,.rsrc,
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
RavStub
[AM] 55. c:\program files\rising\rav\ravstub.exe
Beijing Rising Technology Co., Ltd.
Rising RavStub
.text,.rdata,.data,.rsrc,
+ HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
[AM] 56. c:\recycler\lsass.exe
MEW,�襲蹔�朐,
入口点在最后一个节;
+ 开机执行
+ HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order
BootExecute
[A ] 57. c:\windows\system32\bsmain.exe
Beijing Rising Technology Co., Ltd.
BootScan
.text,.data,.rsrc,.reloc,
+ 映像劫持
+ HKCR\Folder\shell
Super Rabbit CDROM Eject
[A ] 58. c:\program files\super rabbit\magicset\srcd2.exe
Super Rabbit Software
UPX0,UPX1,.rsrc,
+ HKCR\.html
htmlfile\Edit\Command
[A ] 59. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
htmlfile\Print\Command
[A ] 59. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
+ HKCR\.htm
htmlfile\Edit\Command
[A ] 59. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
htmlfile\Print\Command
[A ] 59. c:\program files\microsoft office\office11\msohtmed.exe
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,
+ HKCR\.reg
regfile\open\Command
[A ] 60. c:\windows\system\regedit.exe
MEW,�襲蹔�朐,
入口点在最后一个节;
+ 打印机监控
+ HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors
Adobe PDF Port
[AM] 61. c:\windows\system32\adobepdf.dll
Adobe Systems Incorporated.
Acrobat ? PDF Port
.text,.data,.CRT,.rsrc,.reloc,
HPLJ1020LM
[AM] 62. c:\windows\system32\zlhp1020.dll
Zenographics, Inc.
Spooler Language Monitor for HP LaserJet Series 1020/2600
.text,.rdata,.data,.rsrc,.reloc,
+ 其他自启动项目
+ d:\autorun.inf
Open
[A ] 63. d:\autorun.exe
MEW,�襲蹔�朐,
入口点在最后一个节;
+ 正在运行的进程
+ 00000104(260) RfwMain.exe
00400000[00073000]
[AM] 52. c:\program files\rising\rfw\rfwmain.exe
Beijing Rising Technology Co., Ltd.
Rising Personal FireWall Main Program
.text,.rdata,.data,.rsrc,
26600000[0007D000]
[ M] 64. c:\program files\rising\rfw\rsguilib.dll
Beijing Rising Technology Co., Ltd.
Rising GUI Library Loader
.text,.rdata,.data,.rsrc,.reloc,
23700000[0001A000]
[ M] 65. c:\program files\rising\rfw\rscommon.dll
Beijing Rising Technology Co., Ltd.
Rising Common Function Dynamic Link Library
.text,.rdata,.data,.rsrc,.reloc,
10000000[0000F000]
[ M] 66. c:\program files\rising\rfw\rfwctrl.dll
Beijing Rising Technology Co., Ltd.
RfwCtrl DLL
.text,.rdata,.data,.rsrc,.reloc,
23800000[0001A000]
[ M] 67. c:\program files\rising\rfw\rsxml.dll
Beijing Rising Technology Co., Ltd.
RsXML
.text,.rdata,.data,.rsrc,.reloc,
23900000[00031000]
[ M] 68. c:\program files\rising\rfw\pngdll.dll
Beijing Rising Technology Co., Ltd.
Rising .Png File Loader Dynamic Link Library
.text,.rdata,.data,.rsrc,.reloc,
014F0000[0001B000]
[ M] 69. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
+ 000001bc(444) smss.exe
+ 00000238(568) smax4pnp.exe
00400000[00158000]
[AM] 47. c:\program files\analog devices\core\smax4pnp.exe
Analog Devices, Inc.
SMax4PNP MFC Application
.text,.rdata,.data,.rsrc,
10000000[00056000]
[ M] 70. c:\program files\analog devices\core\smwdmif.dll
Analog Devices, Inc.
SMWDM Interface DLL
.text,.rdata,.data,.idata,.rsrc,.reloc,
00380000[00050000]
[ M] 71. c:\windows\system32\edcrypt.dll
Analog Devices Incorporated
Config file processing library.
.text,.rdata,.data,.rsrc,.reloc,
72C80000[00008000]
[ M] 72. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
+ 000002a8(680) csrss.exe
+ 000002c4(708) winlogon.exe
72C80000[00008000]
[ M] 72. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
+ 000002d8(728) OrderReminder.exe
00400000[0001A000]
[AM] 53. c:\program files\hewlett-packard\orderreminder\orderreminder.exe
Hewlett-Packard
HP Cartridge Order Reminder
.text,.rdata,.data,.rsrc,
+ 000002f0(752) services.exe
+ 000002fc(764) lsass.exe
+ 00000304(772) csrss.exe
00400000[00041000]
[AM] 30. c:\documents and settings\localservice.nt authority\csrss.exe
MEW,�襲蹔�朐,
入口点在最后一个节;
xiaose998 - 2007-7-17 18:54:00
73390000[00154000]
[ M] 73. c:\windows\system32\msvbvm60.dll
Microsoft Corporation
Visual Basic Virtual Machine
.text,ENGINE,.data,.rsrc,.reloc,
66630000[0001C000]
[ M] 74. c:\windows\system32\vb6chs.dll
Microsoft Corporation
Visual Basic Environment International Resources
.rdata,.rsrc,.reloc,
+ 000003a0(928) Ati2evxx.exe
00400000[0005F000]
[AM] 1. c:\windows\system32\ati2evxx.exe
ATI Technologies Inc.
ATI External Event Utility EXE Module
.text,.rdata,.data,.rsrc,
003E0000[0000F000]
[ M] 75. c:\windows\system32\ati2edxx.dll
ATI Technologies, Inc.
ati2edxx
.text,.data,.SHAREDS,.rsrc,.reloc,
+ 000003ac(940) svchost.exe
+ 000003d8(984) lsass.exe
00400000[00041000]
[AM] 56. c:\recycler\lsass.exe
MEW,�襲蹔�朐,
入口点在最后一个节;
73390000[00154000]
[ M] 73. c:\windows\system32\msvbvm60.dll
Microsoft Corporation
Visual Basic Virtual Machine
.text,ENGINE,.data,.rsrc,.reloc,
66630000[0001C000]
[ M] 74. c:\windows\system32\vb6chs.dll
Microsoft Corporation
Visual Basic Environment International Resources
.rdata,.rsrc,.reloc,
10000000[0001B000]
[ M] 69. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
+ 000003fc(1020) svchost.exe
+ 00000424(1060) ctfmon.exe
10000000[0001B000]
[ M] 69. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
+ 00000478(1144) svchost.exe
+ 00000498(1176) winlogon.exe
00400000[00041000]
[ M] 76. c:\documents and settings\localservice.nt authority\winlogon.exe
MEW,�襲蹔�朐,
入口点在最后一个节;
73390000[00154000]
[ M] 73. c:\windows\system32\msvbvm60.dll
Microsoft Corporation
Visual Basic Virtual Machine
.text,ENGINE,.data,.rsrc,.reloc,
66630000[0001C000]
[ M] 74. c:\windows\system32\vb6chs.dll
Microsoft Corporation
Visual Basic Environment International Resources
.rdata,.rsrc,.reloc,
+ 000004a0(1184) svchost.exe
+ 000004d8(1240) svchost.exe
+ 0000054c(1356) conime.exe
+ 0000069c(1692) Explorer.EXE
72C80000[00008000]
[ M] 72. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
10000000[0001C000]
[AM] 36. c:\program files\adobe\acrobat 7.0\activex\pdfshell.dll
Adobe Systems, Inc.
PDF Shell Extension
.text,.rdata,.data,.rsrc,.reloc,
01AE0000[00009000]
[ M] 77. c:\program files\adobe\acrobat 7.0\activex\pdfshell.chs
Adobe Systems, Inc.
PDF Shell Extension
.rsrc,.reloc,
02990000[00016000]
[AM] 32. c:\program files\thunder network\thunder\components\resworker\dsiehelper.dll
Thunder Networking Technologies,LTD
DSIeHelper
.text,.rdata,.data,.rsrc,.reloc,
21FD0000[0001C000]
[ M] 78. c:\program files\thunder network\thunder\components\resworker\dataprocessor.dll
Thunder Networking Technologies,LTD
DataProcessor
.text,.rdata,.data,.rsrc,.reloc,
23700000[0001A000]
[ M] 79. c:\program files\rising\rav\rscommon.dll
Beijing Rising Technology Co., Ltd.
Rising Common Function Dynamic Link Library
.text,.rdata,.data,.rsrc,.reloc,
03590000[0004D000]
[ M] 80. c:\program files\adobe\acrobat 7.0\acrobat elements\contextmenu.chs
Adobe Systems Inc.
Adobe Acrobat Context Menu
.rsrc,.reloc,
032C0000[0001B000]
[ M] 69. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
+ 00000714(1812) spoolsv.exe
50400000[0000A000]
[AM] 61. c:\windows\system32\adobepdf.dll
Adobe Systems Incorporated.
Acrobat ? PDF Port
.text,.data,.CRT,.rsrc,.reloc,
7C340000[00056000]
[ M] 81. c:\windows\system32\msvcr71.dll
Microsoft Corporation
Microsoft? C Runtime Library
.text,.rdata,.data,.rsrc,.reloc,
10000000[0011F000]
[ M] 82. c:\program files\adobe\acrobat 7.0\distillr\adistres.chs
.rsrc,.reloc,
00E70000[0001B000]
[AM] 62. c:\windows\system32\zlhp1020.dll
Zenographics, Inc.
Spooler Language Monitor for HP LaserJet Series 1020/2600
.text,.rdata,.data,.rsrc,.reloc,
00A10000[00007000]
[ M] 83. c:\windows\system32\zlm.dll
Zenographics, Inc.
Zenographics Language Monitor support
.text,.rdata,.data,.rsrc,.reloc,
715E0000[0000D000]
[ M] 84. c:\windows\system32\spool\prtprocs\w32x86\imfprint.dll
Zenographics, Inc.
Intelligent MetaFile Print Processor
.text,.rdata,.data,.rsrc,.reloc,
71600000[00007000]
[ M] 85. c:\windows\system32\imf32.dll
Zenographics, Inc.
IMF32
.text,.rdata,.data,.rsrc,.reloc,
715D0000[00006000]
[ M] 86. c:\windows\system32\ztag32.dll
Zenographics, Inc.
ZTag
.text,.rdata,.data,.rsrc,.reloc,
71130000[00015000]
[ M] 87. c:\windows\system32\zspool.dll
Zenographics, Inc.
ZSpool
.text,.rdata,.data,.rsrc,.reloc,
+ 00000770(1904) wdfmgr.exe
01000000[0000C000]
[AM] 9. c:\windows\system32\wdfmgr.exe
Microsoft Corporation
Windows User Mode Driver Manager
.text,.data,.rsrc,
+ 000007d0(2000) RavStub.exe
00400000[00018000]
[AM] 55. c:\program files\rising\rav\ravstub.exe
Beijing Rising Technology Co., Ltd.
Rising RavStub
.text,.rdata,.data,.rsrc,
10000000[0001B000]
[ M] 88. c:\program files\rising\rav\rscommx.dll
rising
RsCommX
.text,.rdata,.data,.rsrc,.reloc,
23700000[0001A000]
[ M] 79. c:\program files\rising\rav\rscommon.dll
Beijing Rising Technology Co., Ltd.
Rising Common Function Dynamic Link Library
.text,.rdata,.data,.rsrc,.reloc,
+ 0000089c(2204) alg.exe
+ 00000b80(2944) iexplore.exe
10000000[00016000]
[AM] 32. c:\program files\thunder network\thunder\components\resworker\dsiehelper.dll
Thunder Networking Technologies,LTD
DSIeHelper
.text,.rdata,.data,.rsrc,.reloc,
21FD0000[0001C000]
[ M] 78. c:\program files\thunder network\thunder\components\resworker\dataprocessor.dll
Thunder Networking Technologies,LTD
DataProcessor
.text,.rdata,.data,.rsrc,.reloc,
325C0000[00012000]
[AM] 43. c:\program files\microsoft office\office11\msohev.dll
Microsoft Corporation
Microsoft Office 2003 component
.text,.data,.rsrc,.reloc,
011C0000[00019000]
[ M] 89. c:\program files\rising\rav\ravscrch.dll
Beijing Rising Technology Co., Ltd.
RavScrCh Module
.text,.rdata,.data,.rsrc,.reloc,
72C80000[00008000]
[ M] 72. c:\windows\system32\msacm32.drv
Microsoft Corporation
Microsoft Sound Mapper
.text,.data,.rsrc,.reloc,
00F60000[0001B000]
[ M] 69. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
+ 00000f1c(3868) runiep.exe
00400000[00012000]
[AM] 54. c:\program files\rising\antispyware\runiep.exe
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware Monitor
.text,.rdata,.data,.rsrc,
00C50000[0001B000]
[ M] 69. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
+ 00000f58(3928) Ras.exe
00400000[0013F000]
[ M] 90. c:\program files\rising\antispyware\ras.exe
Beijing Rising Technology Co., Ltd.
Rising AntiSpyware
.text,.rdata,.data,.rsrc,
10000000[000A3000]
[ M] 91. c:\program files\rising\antispyware\rasgui.dll
Beijing Rising Technology Co., Ltd.
RasGUI
.text,.rdata,.data,.rsrc,.reloc,
014D0000[00011000]
[AM] 46. c:\windows\system32\shlhook.dll
Beijing Rising Technology Co., Ltd.
shlhook Module
.text,.rdata,.data,.rsrc,.reloc,
01550000[0001B000]
[ M] 69. c:\program files\rising\antispyware\ieprot.dll
Beijing Rising Technology Co., Ltd.
IE Protector
.text,.rdata,.data,.rsrc,.reloc,
02FB0000[00019000]
[ M] 89. c:\program files\rising\rav\ravscrch.dll
Beijing Rising Technology Co., Ltd.
RavScrCh Module
.text,.rdata,.data,.rsrc,.reloc,
�火影忍者 - 2007-7-17 20:23:00
下载 System Repair Engineer,
http://www.kztechs.com/sreng/download.html
1 解压缩sreng2.zip
2 运行SREng.exe
3 智能扫描=》扫描=》保存报告
4 把日志中的报告完整拷贝贴上来,不要修改
日志一次发不完,请分次发上来
xiaose998 - 2007-7-21 11:24:00
能手动删除吗?
1
© 2000 - 2026 Rising Corp. Ltd.