SOS!还没解决啊！扫描了附件来了 bbs.ikaka.com

JoeyLim - 2008-9-11 18:05:00

ge wei da ge , xiao di de dian nao da bu chu zi le !!!!!
zen me ban a?

yu yuan lan bu jian le !!!

SOS
根据天月的办法搞了下发现可以但是每次开机都要重新下载一遍而且当我把文件复制到那时候用搜索的却找不到这个文件？
用户系统信息：Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)

附件: SREngLOG.log

K歌 - 2008-9-11 18:16:00

打不出字了？重新安装输入法呗！

豪斯登堡新郎 - 2008-9-11 18:29:00

yu yan 不是 yu yuan

复制个正常的ctfmon.exe粘贴到c:\windows\system32\ 然后运行下看看

建议扫描个日志看看

JoeyLim - 2008-9-11 18:38:00

语言栏不见了
右击任务栏把语言栏勾起也没反映
在运行那搞也没反映

开机时候出现 :加载C/windows/system32/30AB71.dll 时出错1% 不是有效的win32应用程序

害我跑了一趟网吧各位这是什么原因啊该怎么办啊?

天月来了 - 2008-9-11 18:41:00

扫SRENG日志发这论坛来

下载最新版本的SRENG工具：http://www.kztechs.com/sreng/download.html

1 下载的是压缩包，必须解压缩后再运行。
2 运行SREng***.EXE
3 选择主界面左边的：智能扫描=》扫描=》保存报告
4 把报告保存后，将日志完整发这论坛来。不要有遗漏。

如果你那是XP sp2系统
就输入法不见，这里看看：
http://bbs.ikaka.com/showtopic-8419041.aspx

JoeyLim - 2008-9-11 18:58:00

扫SRENG日志发这论坛来
这个是什么?

JoeyLim - 2008-9-11 19:15:00

瑞星卡卡电脑诊断日志 v1.30 (2008-9-11 19:20:15) 北京瑞星信息技术有限公司

注释: [A]表示该文件存在自启动关联;
[M]表示该文件在内存中;

+ 注册表自运行项目
+ 系统服务
+ HKLM\System\CurrentControlSet\Services
AntiARPClientLoader
[AM] 1. c:\program files\彩影软件\arp防火墙单机版\antiarpclientloader.exe

EvtEng
[AM] 2. c:\program files\intel\wireless\bin\evteng.exe

NVSvc
[AM] 3. c:\windows\system32\nvsvc32.exe

ose
[A ] 4. c:\program files\common files\microsoft shared\source engine\ose.exe

RegSrvc
[AM] 5. c:\program files\intel\wireless\bin\regsrvc.exe

RsCCenter
[AM] 6. f:\新建文件夹 (4)\rising\rav\ccenter.exe

RsRavMon
[AM] 7. f:\新建文件夹 (4)\rising\rav\ravmond.exe

S24EventMonitor
[AM] 8. c:\program files\intel\wireless\bin\s24evmon.exe

UMWdf
[AM] 9. c:\windows\system32\wdfmgr.exe

+ 内核驱动
+ HKLM\System\CurrentControlSet\Services
00ad21f5
[A ] 10. c:\windows\system32\drivers\00ad21f5.sys

ADIHdAudAddService
[A ] 11. c:\windows\system32\drivers\adihdaud.sys

AegisP
[A ] 12. c:\windows\system32\drivers\aegisp.sys

AlcwNetDrv
[A ] 13. c:\windows\system32\drivers\alcwnetdrv.sys

AlcwWmDrv
[A ] 14. c:\windows\system32\drivers\alcwwmdrv.sys

alcxz
[A ] 15. c:\windows\system32\drivers\alcxz.sy

AntiArpNdisProt
[A ] 16. c:\windows\system32\drivers\antiarpndisprot.sys

fxcle
[A ] 17. c:\windows\system32\drivers\fxcle.sys

HdAudAddService
[A ] 18. c:\windows\system32\drivers\hdaudio.sys

HDAudBus
[A ] 19. c:\windows\system32\drivers\hdaudbus.sys

HookCont
[A ] 20. c:\windows\system32\drivers\hookcont.sys

HookNtos
[A ] 21. c:\windows\system32\drivers\hookntos.sys

HookReg
[A ] 22. c:\windows\system32\drivers\hookreg.sys

HookSys
[A ] 23. c:\windows\system32\drivers\hooksys.sys

MTsensor
[A ] 24. c:\windows\system32\drivers\atkacpi.sys

NPF
[A ] 25. c:\windows\system32\drivers\npf.sys

npkcrypt
[A ] 26. c:\windows\system32\npkcrypt.sys

npkycryp
[A ] 27. c:\windows\system32\npkycryp.sys

PnpWmkDrv
[A ] 28. c:\windows\system32\drivers\pnpwmkdrv.sys

RsNTGDI
[A ] 29. c:\windows\system32\drivers\rsntgdi.sys

RTL8023xp
[A ] 30. c:\windows\system32\drivers\rtenicxp.sys

RTLE8023xp
[A ] 30. c:\windows\system32\drivers\rtenicxp.sys

s24trans
[A ] 31. c:\windows\system32\drivers\s24trans.sys

SafeBoxKrnl
[A ] 32. c:\program files\360safebox\safeboxkrnl.sys

Secdrv
[A ] 33. c:\windows\system32\drivers\secdrv.sys

smserial
[A ] 34. c:\windows\system32\drivers\smserial.sys

TesSafe
[A ] 35. c:\windows\system32\tessafe.sys

tkv
[A ] 36. c:\windows\system32\drivers\tkv.sys

usbvm321
[A ] 37. c:\windows\system32\drivers\usbvm321.sys

w39n51
[A ] 38. c:\windows\system32\drivers\w39n51.sys

WmNdisDrv
[A ] 39. c:\windows\system32\drivers\wmndisdrv.sys

WmRegProDrv
[A ] 40. c:\windows\system32\drivers\wmregprodrv.sys

xAntiArp
[A ] 41. c:\windows\system32\drivers\xantiarp.sys

+ 系统登陆自运行
+ HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
WgaLogon
[AM] 42. c:\windows\system32\wgalogon.dll

+ IE浏览器加载模块
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
{01443AEC-0FD1-40fd-9C87-E93D1494C233}
[A ] 43. f:\thunder\comdlls\tdatonce_now.dll

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
[A ] 44. c:\program files\common files\adobe\acrobat\activex\acroiehelper.dll

{889D2FEB-5411-4565-8998-1DD2C5261283}
[AM] 45. f:\thunder\comdlls\xunleibho_now.dll

{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}
[A ] 46. c:\windows\system32\urlfilter.dll

{B69F34DD-F0F9-42DC-9EDD-957187DA688D}
[AM] 47. c:\program files\360safe\safemon\safemon.dll

+ HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions
Exec
[A ] 48. c:\program files\thunder network\thunder\thunder.exe

Exec
[A ] 49. c:\windows\network diagnostic\xpnetdiag.exe

+ 资源管理器加载模块
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Filter
text/xml
[A ] 50. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll

+ HKLM\SOFTWARE\Classes\PROTOCOLS\Handler
mso-offdap
[A ] 51. c:\program files\common files\microsoft shared\web components\10\owc10.dll

+ HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers
{F9DB5320-233E-11D1-9F84-707F02C10627}
[AM] 52. c:\program files\common files\adobe\acrobat\activex\pdfshell.dll

+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
HyperTerminal Icon Ext
[A ] 53. c:\windows\system32\hticons.dll

Portable Media Devices
[A ] 54. c:\windows\system32\audiodev.dll

Portable Media Devices Menu
[A ] 54. c:\windows\system32\audiodev.dll

WinRAR shell extension
[A ] 55. c:\program files\winrar\rarext.dll

Web Folders
[A ] 56. c:\program files\common files\microsoft shared\web folders\msonsext.dll

NvCpl DesktopContext Class
[AM] 57. c:\windows\system32\nvcpl.dll

Play on my TV helper
[AM] 57. c:\windows\system32\nvcpl.dll

Desktop Explorer
[AM] 58. c:\windows\system32\nvshell.dll

Desktop Explorer Menu
[AM] 58. c:\windows\system32\nvshell.dll

nView Desktop Context Menu
[AM] 58. c:\windows\system32\nvshell.dll

Microsoft Office HTML Icon Handler
[A ] 59. c:\program files\microsoft office\office11\msohev.dll

RISING
[A ] 60. c:\windows\system32\ravext.dll

Shell Extensions for RealOne Player
[A ] 61. d:\china mobile\rpshell.dll

+ 用户登陆自运行项目
+ HKCU\Software\Microsoft\Windows\CurrentVersion\Run
bgswitch
[A ] 62. c:\windows\system32\bgswitch.exe

OlympicExpress
[AM] 63. c:\program files\sogouinput\olympicnews.exe

+ HKLM\Software\Microsoft\Windows\CurrentVersion\Run
nwiz
[A ] 64. c:\windows\system32\nwiz.exe

HControl
[AM] 65. c:\windows\atk0100\hcontrol.exe

SMSERIAL
[AM] 66. c:\windows\sm56hlpr.exe

High Definition Audio 属性页快捷方式
[A ] 67. c:\windows\system32\hdashcut.exe

JoeyLim - 2008-9-11 19:16:00

Wireless Console 2
[A ] 68. c:\program files\wireless console 2\wcourier.exe

IntelZeroConfig
[AM] 69. c:\program files\intel\wireless\bin\zcfgsvc.exe

EOUApp
[AM] 70. c:\program files\intel\wireless\bin\eouwiz.exe

360Safebox
[A ] 71. c:\program files\360safebox\safeboxtray.exe

Adobe Reader Speed Launcher
[A ] 72. c:\program files\adobe\reader 8.0\reader\reader_sl.exe

StormCodec_Helper
[A ] 73. c:\program files\ringz studio\storm codec\stormset.exe

RavTask
[AM] 74. f:\新建文件夹 (4)\rising\rav\ravtask.exe

runeip
[AM] 75. c:\program files\rising\antispyware\rstray.exe

TkBellExe
[AM] 76. c:\program files\common files\real\update_ob\realsched.exe

+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
KKDelay
[A ] 77. c:\program files\rising\antispyware\runonce.exe

+ 开机执行
+ HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order
BootExecute
[A ] 78. c:\windows\system32\bsmain.exe

[A ] 79. c:\windows\system32\kknative.exe

+ 映像劫持
+ HKCR\.html
htmlfile\Edit\Command
[A ] 80. c:\program files\microsoft office\office11\msohtmed.exe

htmlfile\Print\Command
[A ] 80. c:\program files\microsoft office\office11\msohtmed.exe

+ HKCR\.htm
htmlfile\Edit\Command
[A ] 80. c:\program files\microsoft office\office11\msohtmed.exe

htmlfile\Print\Command
[A ] 80. c:\program files\microsoft office\office11\msohtmed.exe

+ 程序初始化和已知动态连接库
+ HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
AppInit_DLLs
[AM] 81. c:\windows\system32\kmon.dll

+ 正在运行的进程
+ 000000c8(200) svchost.exe

+ 00000104(260) ravmond.exe
00400000[00069000]
[AM] 7. f:\新建文件夹 (4)\rising\rav\ravmond.exe

10000000[00042000]
[ M] 82. f:\新建文件夹 (4)\rising\rav\bwlist.dll

7C140000[00103000]
[ M] 83. c:\windows\system32\mfc71.dll

7C340000[00056000]
[ M] 84. c:\windows\system32\msvcr71.dll

7C3A0000[0007B000]
[ M] 85. c:\windows\system32\msvcp71.dll

5D360000[0000A000]
[ M] 86. c:\windows\system32\mfc71chs.dll

00A30000[0000E000]
[ M] 87. f:\新建文件夹 (4)\rising\rav\rsappmgr.dll

00A50000[00030000]
[ M] 88. f:\新建文件夹 (4)\rising\rav\cfgdll.dll

00CC0000[00067000]
[ M] 89. f:\新建文件夹 (4)\rising\rav\rslog.dll

00D30000[0001F000]
[ M] 90. f:\新建文件夹 (4)\rising\rav\proccom.dll

00D50000[00024000]
[ M] 91. f:\新建文件夹 (4)\rising\rav\rscommx2.dll

00DE0000[00075000]
[ M] 92. f:\新建文件夹 (4)\rising\rav\monrule.dll

00E70000[00013000]
[ M] 93. f:\新建文件夹 (4)\rising\rav\hooksys.dll

00FD0000[00013000]
[ M] 94. f:\新建文件夹 (4)\rising\rav\hookreg.dll

01030000[00013000]
[ M] 95. f:\新建文件夹 (4)\rising\rav\hookntos.dll

01090000[0001D000]
[ M] 96. f:\新建文件夹 (4)\rising\rav\rswalmon.dll

01EC0000[00035000]
[ M] 97. f:\新建文件夹 (4)\rising\rav\recomp.dll

01F10000[00036000]
[ M] 98. f:\新建文件夹 (4)\rising\rav\refs.dll

01F60000[00023000]
[ M] 99. f:\新建文件夹 (4)\rising\rav\ffr.dll

01FA0000[00020000]
[ M] 100. f:\新建文件夹 (4)\rising\rav\rsstore.dll

01FD0000[00013000]
[ M] 101. f:\新建文件夹 (4)\rising\rav\hookcont.dll

02000000[00028000]
[ M] 102. f:\新建文件夹 (4)\rising\rav\fakescan.dll

02040000[00022000]
[ M] 103. f:\新建文件夹 (4)\rising\rav\scanner.dll

02680000[0002F000]
[ M] 104. f:\新建文件夹 (4)\rising\rav\viruslib.dll

027C0000[00028000]
[ M] 105. f:\新建文件夹 (4)\rising\rav\relibldr.dll

02CF0000[00012000]
[ M] 106. f:\新建文件夹 (4)\rising\rav\hookweb.dll

044F0000[00021000]
[ M] 107. f:\新建文件夹 (4)\rising\rav\nvfile.dll

13AB0000[0004A000]
[ M] 108. f:\新建文件夹 (4)\rising\rav\scanexec.dll

05DF0000[002DC000]
[ M] 109. f:\新建文件夹 (4)\rising\rav\unexe.dll

060E0000[000D4000]
[ M] 110. f:\新建文件夹 (4)\rising\rav\scanex.dll

06550000[00027000]
[ M] 111. f:\新建文件夹 (4)\rising\rav\pearc.dll

09B90000[000DC000]
[ M] 112. f:\新建文件夹 (4)\rising\rav\extfile.dll

03CB0000[00036000]
[ M] 113. f:\新建文件夹 (4)\rising\rav\scanpack.dll

04ED0000[000B7000]
[ M] 114. f:\新建文件夹 (4)\rising\rav\revm.dll

03D30000[00020000]
[ M] 115. f:\新建文件夹 (4)\rising\rav\urutils.dll

03D60000[00018000]
[ M] 116. f:\新建文件夹 (4)\rising\rav\ur000.dat

04E10000[00038000]
[ M] 117. f:\新建文件夹 (4)\rising\rav\scriptci.dll

04E60000[0001D000]
[ M] 118. f:\新建文件夹 (4)\rising\rav\ur001.dat

14210000[00038000]
[ M] 119. f:\新建文件夹 (4)\rising\rav\extmail.dll

04EA0000[00023000]
[ M] 120. f:\新建文件夹 (4)\rising\rav\scansct.dll

+ 0000020c(524) RavStub.exe
00400000[00021000]
[ M] 121. f:\新建文件夹 (4)\rising\rav\ravstub.exe

10000000[0001F000]
[ M] 90. f:\新建文件夹 (4)\rising\rav\proccom.dll

00620000[00024000]
[ M] 91. f:\新建文件夹 (4)\rising\rav\rscommx2.dll

23700000[00028000]
[ M] 122. f:\新建文件夹 (4)\rising\rav\rscommon.dll

+ 00000344(836) spoolsv.exe

+ 00000360(864) Explorer.EXE
60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

72C80000[00008000]
[ M] 123. c:\windows\system32\msacm32.drv

02020000[00031000]
[AM] 45. f:\thunder\comdlls\xunleibho_now.dll

031E0000[00029000]
[AM] 47. c:\program files\360safe\safemon\safemon.dll

01100000[0005B000]
[AM] 52. c:\program files\common files\adobe\acrobat\activex\pdfshell.dll

01160000[0004C000]
[ M] 124. c:\program files\common files\adobe\acrobat\activex\pdfshell.chs

03900000[00748000]
[AM] 57. c:\windows\system32\nvcpl.dll

00E00000[00036000]
[ M] 125. c:\windows\system32\nvrszhc.dll

011B0000[00073000]
[AM] 58. c:\windows\system32\nvshell.dll

01250000[00138000]
[ M] 126. c:\windows\system32\sogoupy.ime

01B70000[00042000]
[ M] 127. c:\program files\sogouinput\plugin\sgimeword.dll

36D30000[0001A000]
[ M] 128. c:\program files\microsoft office\office11\mcps.dll

+ 00000380(896) smss.exe

+ 000003c8(968) csrss.exe

+ 000003e0(992) winlogon.exe
01F70000[0003B000]
[AM] 42. c:\windows\system32\wgalogon.dll

72C80000[00008000]
[ M] 123. c:\windows\system32\msacm32.drv

+ 0000040c(1036) services.exe

+ 00000418(1048) lsass.exe

+ 000004b8(1208) svchost.exe

+ 00000508(1288) svchost.exe

+ 00000584(1412) CCenter.exe
00400000[0002A000]
[AM] 6. f:\新建文件夹 (4)\rising\rav\ccenter.exe

+ 00000598(1432) svchost.exe

+ 00000604(1540) AntiARPClientLoader.exe
00400000[0000B000]
[AM] 1. c:\program files\彩影软件\arp防火墙单机版\antiarpclientloader.exe

+ 0000062c(1580) nvsvc32.exe
00400000[00027000]
[AM] 3. c:\windows\system32\nvsvc32.exe

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

+ 00000640(1600) RegSrvc.exe
00400000[00038000]
[AM] 5. c:\program files\intel\wireless\bin\regsrvc.exe

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

+ 00000678(1656) svchost.exe

+ 00000694(1684) alg.exe
60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

+ 000006a8(1704) EvtEng.exe
00400000[0001E000]
[AM] 2. c:\program files\intel\wireless\bin\evteng.exe

50740000[00044000]
[ M] 129. c:\program files\intel\wireless\bin\psregapi.dll

50830000[0002A000]
[ M] 130. c:\program files\intel\wireless\bin\traceapi.dll

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

+ 000006fc(1788) S24EvMon.exe
00400000[00092000]
[AM] 8. c:\program files\intel\wireless\bin\s24evmon.exe

50830000[0002A000]
[ M] 130. c:\program files\intel\wireless\bin\traceapi.dll

50740000[00044000]
[ M] 129. c:\program files\intel\wireless\bin\psregapi.dll

50490000[000D9000]
[ M] 131. c:\program files\intel\wireless\bin\libeay32.dll

50320000[0000D000]
[ M] 132. c:\program files\intel\wireless\bin\intstngs.dll

50410000[00036000]
[ M] 133. c:\program files\intel\wireless\bin\iwmsprov.dll

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

+ 00000714(1812) ImeUtil.exe
00400000[00069000]
[ M] 134. c:\program files\sogouinput\imeutil.exe

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

10000000[0002E000]
[ M] 135. c:\program files\rising\antispyware\comx3.dll

00980000[00019000]
[ M] 136. c:\program files\rising\antispyware\syslay.dll

+ 00000730(1840) wdfmgr.exe
01000000[0000C000]
[AM] 9. c:\windows\system32\wdfmgr.exe

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

+ 00000768(1896) svchost.exe

+ 00000a04(2564) RUNDLL32.EXE
60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

10000000[00017000]
[ M] 137. c:\windows\system32\nvmctray.dll

00B40000[00036000]
[ M] 125. c:\windows\system32\nvrszhc.dll

+ 00000a0c(2572) HControl.exe
00400000[0001C000]
[AM] 65. c:\windows\atk0100\hcontrol.exe

10000000[0000E000]
[ M] 138. c:\windows\atk0100\cmssc.dll

00390000[0000C000]
[ M] 139. c:\windows\atk0100\inter_f2.dll

1C200000[00016000]
[ M] 140. c:\windows\atk0100\atkwlioc.dll

003A0000[0004B000]
[ M] 141. c:\windows\atk0100\sispkt.dll

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

50630000[00047000]
[ M] 142. c:\program files\intel\wireless\bin\murocapi.dll

50790000[00017000]
[ M] 143. c:\program files\intel\wireless\bin\s24mudll.dll

50740000[00044000]
[ M] 129. c:\program files\intel\wireless\bin\psregapi.dll

50830000[0002A000]
[ M] 130. c:\program files\intel\wireless\bin\traceapi.dll

50320000[0000D000]
[ M] 132. c:\program files\intel\wireless\bin\intstngs.dll

50490000[000D9000]
[ M] 131. c:\program files\intel\wireless\bin\libeay32.dll

72C80000[00008000]
[ M] 123. c:\windows\system32\msacm32.drv

+ 00000a14(2580) sm56hlpr.exe
00400000[00089000]
[AM] 66. c:\windows\sm56hlpr.exe

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

10000000[00011000]
[ M] 144. c:\windows\sm56eng.dll

00A80000[0000F000]
[ M] 145. c:\windows\sm56fra.dll

00A90000[00011000]
[ M] 146. c:\windows\sm56brz.dll

00AB0000[0000C000]
[ M] 147. c:\windows\sm56chs.dll

00BD0000[0000C000]
[ M] 148. c:\windows\sm56cht.dll

00BE0000[0000F000]
[ M] 149. c:\windows\sm56ger.dll

00BF0000[00011000]
[ M] 150. c:\windows\sm56itl.dll

00C10000[0000D000]
[ M] 151. c:\windows\sm56jpn.dll

00C20000[00011000]
[ M] 152. c:\windows\sm56spn.dll

+ 00000a98(2712) ZCfgSvc.exe
00400000[000A7000]
[AM] 69. c:\program files\intel\wireless\bin\zcfgsvc.exe

50680000[0009E000]
[ M] 153. c:\program files\intel\wireless\bin\pfmgrapi.dll

50830000[0002A000]
[ M] 130. c:\program files\intel\wireless\bin\traceapi.dll

50740000[00044000]
[ M] 129. c:\program files\intel\wireless\bin\psregapi.dll

502E0000[0003D000]
[ M] 154. c:\program files\intel\wireless\bin\dbengine.dll

50490000[000D9000]
[ M] 131. c:\program files\intel\wireless\bin\libeay32.dll

50320000[0000D000]
[ M] 132. c:\program files\intel\wireless\bin\intstngs.dll

50630000[00047000]
[ M] 142. c:\program files\intel\wireless\bin\murocapi.dll

50790000[00017000]
[ M] 143. c:\program files\intel\wireless\bin\s24mudll.dll

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

10000000[0000B000]
[ M] 155. c:\program files\intel\wireless\bin\zcsvcchs.dll

+ 00000b9c(2972) EOUWiz.exe
00400000[00090000]
[AM] 70. c:\program files\intel\wireless\bin\eouwiz.exe

50740000[00044000]
[ M] 129. c:\program files\intel\wireless\bin\psregapi.dll

50630000[00047000]
[ M] 142. c:\program files\intel\wireless\bin\murocapi.dll

50790000[00017000]
[ M] 143. c:\program files\intel\wireless\bin\s24mudll.dll

50830000[0002A000]
[ M] 130. c:\program files\intel\wireless\bin\traceapi.dll

50320000[0000D000]
[ M] 132. c:\program files\intel\wireless\bin\intstngs.dll

50490000[000D9000]
[ M] 131. c:\program files\intel\wireless\bin\libeay32.dll

50680000[0009E000]
[ M] 153. c:\program files\intel\wireless\bin\pfmgrapi.dll

502E0000[0003D000]
[ M] 154. c:\program files\intel\wireless\bin\dbengine.dll

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

10000000[0001B000]
[ M] 156. c:\program files\intel\wireless\bin\eouwzchs.dll

+ 00000c24(3108) ATKOSD.exe
00400000[00212000]
[ M] 157. c:\windows\atk0100\atkosd.exe

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

+ 00000c80(3200) knownsvr.exe
00400000[00072000]
[ M] 158. c:\program files\rising\antispyware\knownsvr.exe

10000000[0002F000]
[ M] 159. c:\program files\rising\antispyware\ncomm.dll

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

009A0000[0002E000]
[ M] 135. c:\program files\rising\antispyware\comx3.dll

009D0000[00019000]
[ M] 136. c:\program files\rising\antispyware\syslay.dll

+ 00000d7c(3452) RavTask.exe
00400000[00034000]
[AM] 74. f:\新建文件夹 (4)\rising\rav\ravtask.exe

10000000[0001F000]
[ M] 90. f:\新建文件夹 (4)\rising\rav\proccom.dll

00940000[00024000]
[ M] 91. f:\新建文件夹 (4)\rising\rav\rscommx2.dll

23700000[00028000]
[ M] 122. f:\新建文件夹 (4)\rising\rav\rscommon.dll

00BA0000[0000E000]
[ M] 87. f:\新建文件夹 (4)\rising\rav\rsappmgr.dll

08BC0000[00030000]
[ M] 88. f:\新建文件夹 (4)\rising\rav\cfgdll.dll

+ 00000dac(3500) Ravmon.exe
00400000[00067000]
[ M] 160. f:\新建文件夹 (4)\rising\rav\ravmon.exe

7C140000[00103000]
[ M] 83. c:\windows\system32\mfc71.dll

7C340000[00056000]
[ M] 84. c:\windows\system32\msvcr71.dll

7C3A0000[0007B000]
[ M] 85. c:\windows\system32\msvcp71.dll

5D360000[0000A000]
[ M] 86. c:\windows\system32\mfc71chs.dll

10000000[0001F000]
[ M] 90. f:\新建文件夹 (4)\rising\rav\proccom.dll

JoeyLim - 2008-9-11 19:16:00

00A30000[00024000]
[ M] 91. f:\新建文件夹 (4)\rising\rav\rscommx2.dll

23700000[00028000]
[ M] 122. f:\新建文件夹 (4)\rising\rav\rscommon.dll

00C80000[00035000]
[ M] 97. f:\新建文件夹 (4)\rising\rav\recomp.dll

00CD0000[00036000]
[ M] 98. f:\新建文件夹 (4)\rising\rav\refs.dll

00F30000[0002F000]
[ M] 104. f:\新建文件夹 (4)\rising\rav\viruslib.dll

01070000[00028000]
[ M] 105. f:\新建文件夹 (4)\rising\rav\relibldr.dll

010F0000[0000E000]
[ M] 87. f:\新建文件夹 (4)\rising\rav\rsappmgr.dll

01110000[00030000]
[ M] 88. f:\新建文件夹 (4)\rising\rav\cfgdll.dll

01270000[00075000]
[ M] 92. f:\新建文件夹 (4)\rising\rav\monrule.dll

23900000[00040000]
[ M] 161. f:\新建文件夹 (4)\rising\rav\pngdll.dll

26600000[000A8000]
[ M] 162. f:\新建文件夹 (4)\rising\rav\rsguilib.dll

23800000[00022000]
[ M] 163. f:\新建文件夹 (4)\rising\rav\rsxml.dll

+ 00000dd8(3544) rstray.exe
00400000[00023000]
[AM] 75. c:\program files\rising\antispyware\rstray.exe

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

10000000[0003C000]
[ M] 164. c:\program files\rising\antispyware\rsmginfo.dll

00AD0000[00029000]
[AM] 47. c:\program files\360safe\safemon\safemon.dll

23800000[00022000]
[ M] 165. c:\program files\rising\antispyware\rsxml.dll

7C3A0000[0007B000]
[ M] 166. c:\program files\rising\antispyware\msvcp71.dll

7C340000[00056000]
[ M] 167. c:\program files\rising\antispyware\msvcr71.dll

00B20000[00024000]
[ M] 168. c:\program files\rising\antispyware\comserv.dll

00B50000[00019000]
[ M] 136. c:\program files\rising\antispyware\syslay.dll

23700000[00026000]
[ M] 169. c:\program files\rising\antispyware\rscommon.dll

00B90000[0002E000]
[ M] 135. c:\program files\rising\antispyware\comx3.dll

23900000[00040000]
[ M] 170. c:\program files\rising\antispyware\pngdll.dll

00FA0000[0005C000]
[ M] 171. c:\program files\rising\antispyware\runiep.dll

01010000[0001F000]
[ M] 90. f:\新建文件夹 (4)\rising\rav\proccom.dll

01030000[00024000]
[ M] 91. f:\新建文件夹 (4)\rising\rav\rscommx2.dll

+ 00000e48(3656) realsched.exe
00400000[0002F000]
[AM] 76. c:\program files\common files\real\update_ob\realsched.exe

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

10000000[00029000]
[AM] 47. c:\program files\360safe\safemon\safemon.dll

+ 00000f18(3864) OlympicNews.exe
00400000[00068000]
[AM] 63. c:\program files\sogouinput\olympicnews.exe

60000000[00074000]
[AM] 81. c:\windows\system32\kmon.dll

65100000[00116000]
[ M] 172. c:\program files\sogouinput\pxpnet.dll

10000000[00029000]
[AM] 47. c:\program files\360safe\safemon\safemon.dll

+ 00000fe4(4068) ras.exe
00400000[0000B000]
[ M] 173. c:\program files\rising\antispyware\ras.exe

7C140000[00103000]
[ M] 174. c:\program files\rising\antispyware\mfc71.dll

7C340000[00056000]
[ M] 167. c:\program files\rising\antispyware\msvcr71.dll

5D360000[0000A000]
[ M] 86. c:\windows\system32\mfc71chs.dll

10000000[00047000]
[ M] 175. c:\program files\rising\antispyware\kakamgr.dll

7C3A0000[0007B000]
[ M] 166. c:\program files\rising\antispyware\msvcp71.dll

009D0000[00019000]
[ M] 136. c:\program files\rising\antispyware\syslay.dll

00A40000[0001F000]
[ M] 90. f:\新建文件夹 (4)\rising\rav\proccom.dll

00A60000[00024000]
[ M] 91. f:\新建文件夹 (4)\rising\rav\rscommx2.dll

00BB0000[0002E000]
[ M] 135. c:\program files\rising\antispyware\comx3.dll

00E20000[00058000]
[ M] 176. c:\program files\rising\antispyware\dbmgr.dll

23800000[00022000]
[ M] 165. c:\program files\rising\antispyware\rsxml.dll

00F80000[0002D000]
[ M] 177. c:\program files\rising\antispyware\pweb.dll

00FF0000[000C1000]
[ M] 178. c:\program files\rising\antispyware\pscan.dll

010C0000[0002F000]
[ M] 159. c:\program files\rising\antispyware\ncomm.dll

01110000[00070000]
[ M] 179. c:\program files\rising\antispyware\pset.dll

011A0000[0002A000]
[ M] 180. c:\program files\rising\antispyware\pdefend.dll

011D0000[000B6000]
[ M] 181. c:\program files\rising\antispyware\ptools.dll

01390000[0008C000]
[ M] 182. c:\program files\rising\antispyware\psysinfo.dll

23900000[00040000]
[ M] 170. c:\program files\rising\antispyware\pngdll.dll

03AD0000[00028000]
[ M] 183. f:\新建文件夹 (4)\rising\rav\ravscrch.dll

30000000[003AF000]
[ M] 184. c:\windows\system32\macromed\flash\flash9f.ocx

72C80000[00008000]
[ M] 123. c:\windows\system32\msacm32.drv

JoeyLim - 2008-9-11 19:18:00

zen me an zhuang ne?

JoeyLim - 2008-9-11 19:18:00

zen me fu zhi ne?

JoeyLim - 2008-9-11 19:25:00

引用:

原帖由 天月来了 于 2008-9-11 18:41:00 发表
扫SRENG日志发这论坛来

下载最新版本的SRENG工具：http://www.kztechs.com/sreng/download.html

1 下载的是压缩包，必须解压缩后再运行。
2 运行SREng***.EXE
3 选择主界面左边的：智能扫描=》扫描=》保存报告
4 把报告保存后，将日志完整发这论坛来。不要有遗漏。

如果你那是XP sp2

出现了谢谢你啊天月我是 SP2 的但是还有个问题我有 69个漏洞没办法补。。。。。。。

JoeyLim - 2008-9-12 18:33:00

语言栏是出现了但是却每次开机都要重新下载？？？？？
怎么回事？

非拉鐵非 - 2008-9-12 18:58:00

引用:

原帖由 JoeyLim 于 2008-9-12 18:33:00 发表
语言栏是出现了但是却每次开机都要重新下载？？？？？
怎么回事？

不是卡卡日志
上传System Repair Engineer扫描日志
下载地址http://www.kztechs.com/sreng/sreng2.zip
操作方法：
1、下载后解压缩，运行“SREngLdr.EXE”
2、如果无法打开请参考http://bbs.ikaka.com/showtopic-8442813.aspx#3637414
3、打开后依次点击【智能扫描】-【扫描】，耐心等待，扫描结束后点击【保存报告】
4、选择保存路径，文件名保持默认，直接点击【保存】
5、将日志文件SREngLOG.log作为附件上传到论坛，同时务必详细描述问题现象
如果有查杀不净的病毒务必提供病毒名和路径
注意：扫描前请尽量关闭QQ、游戏、下载工具、媒体播放器等应用程序

JoeyLim - 2008-9-12 19:18:00

有毒？还是这个扫描的带杀毒？怎么一扫描就发现这个病毒？RootKit.Win32.Hooker.a

扫描好慢啊还没好

JoeyLim - 2008-9-12 19:22:00

附件来了大哥们看看谢谢啦

附件: SREngLOG.log

JoeyLim - 2008-9-12 19:22:00

有人让我删了 3oAB71.dll 试试看？？？

超级游戏迷 - 2008-9-12 19:44:00

请将c:\windows\\system32\drivers\alcxz.syss这个文件用WINRAR压缩，上传压缩包……

JoeyLim - 2008-9-12 20:10:00

找不到这个文件。。。。

aaccbbdd - 2008-9-12 20:32:00

用WINRAR查看c:\windows\system32\drivers\文件夹

JoeyLim - 2008-9-12 20:38:00

引用:

原帖由 aaccbbdd 于 2008-9-12 20:32:00 发表
用WINRAR查看c:\windows\system32\drivers\文件夹

WINRAR 这个怎么用？在哪里？

JoeyLim - 2008-9-12 20:38:00

有人说把临时文件清空一下，方法：
开始--运行--%TEMP%，将这里的文件清空

可行不？

托莱多 - 2008-9-13 8:36:00

清空%temp%文件夹与楼主遇到的问题应该无关，不过清空这个文件夹应该没什么坏处。

瑞星卡卡安全论坛