rfgdhdfhd - 2009-3-28 13:42:00
我的电脑出了大问题
瑞星卡卡电脑诊断日志 v1.30 (2009-3-28 13:38:9) 北京瑞星信息技术有限公司
注释: [A]表示该文件存在自启动关联;
[M]表示该文件在内存中;
+ 注册表自运行项目
+ 系统服务
+ HKLM\System\CurrentControlSet\Services
AODService
[A ] 1. c:\program files\amd\overdrive\aodassist.exe
Ati HotKey Poller
[A ] 2. c:\windows\system32\ati2evxx.exe
Autodesk Licensing Service
[A ] 3. c:\program files\common files\autodesk shared\service\adskscsrv.exe
cFosSpeedS
[AM] 4. d:\dd\网络提速\spd.exe
HotspotShieldService
[AM] 5. c:\program files\hotspot shield\bin\openvpnas.exe
IDriverT
[A ] 6. c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe
JavaQuickStarterService
[AM] 7. c:\program files\java\jre6\bin\jqs.exe
[A ] 8. c:\program files\java\jre6\lib\deploy\jqs\jqs.conf
mysql
[AM] 9. d:\冒险岛私服\xkodinms\mysql5.2\bin\mysqld-nt.exe
npkcmsvc
[AM] 10. d:\冒险岛\冒险岛online\npkcmsvc.exe
ose
[A ] 11. c:\program files\common files\microsoft shared\source engine\ose.exe
Protectedstoerq
[AM] 12. c:\windows\system32\config\software6.dat
RavCCenter
[AM] 13. c:\program files\rising\rav\ccenter.exe
RavTask
[AM] 14. c:\program files\rising\rav\ravtask.exe
RsRavMon
[AM] 15. c:\program files\rising\rav\ravmond.exe
RsScanSrv
[AM] 16. c:\program files\rising\rav\scanfrm.exe
srol
[A ] 17. c:\program files\fuzos\mascev.exe
UMWdf
[AM] 18. c:\windows\system32\wdfmgr.exe
xkmysql
[AM] 9. d:\冒险岛私服\xkodinms\mysql5.2\bin\mysqld-nt.exe
+ 内核驱动
+ HKLM\System\CurrentControlSet\Services
360procmon
[A ] 19. d:\program files\360\360safe\safemon\360procmon.sys
AmdK8
[A ] 20. c:\windows\system32\drivers\amdk8.sys
AmdLLD
[A ] 21. c:\windows\system32\drivers\amdlld.sys
cFosSpeed
[A ] 22. c:\windows\system32\drivers\cfosspeed.sys
cpuz126
[A ] 23. c:\docume~1\admini~1\locals~1\temp\cpuz.sys
DKbFltr
[A ] 24. c:\windows\system32\drivers\dkbfltr.sys
ElbyCDIO
[A ] 25. c:\windows\system32\drivers\elbycdio.sys
EverestDriver
[A ] 26. c:\program files\everest\kerneld.wnt
HDAudBus
[A ] 27. c:\windows\system32\drivers\hdaudbus.sys
hookcont
[A ] 28. c:\windows\system32\drivers\hookcont.sys
hooksys
[A ] 29. c:\windows\system32\drivers\hooksys.sys
IntcAzAudAddService
[A ] 30. c:\windows\system32\drivers\rtkhdaud.sys
MXD
[A ] 31. c:\documents and settings\administrator\桌面\冒险追梦第1版\sww.sys
nocashio
[A ] 32. c:\windows\system32\drivers\nocashio.sys
npkcrypt
[A ] 33. d:\冒险岛\冒险岛online\npkcrypt.sys
ntiowp
[A ] 34. c:\windows\system32\drivers\ntiowp.sys
pmlxzjmd
[A ] 35. c:\windows\system32\drivers\pmlxzjmd.sys
QuakeDRV
[A ] 36. c:\windows\system32\drivers\quakedrv.sys
RRamdisk
[A ] 37. c:\windows\system32\drivers\rramdisk.sys
RsNTGDI
[A ] 38. c:\windows\system32\drivers\rsntgdi.sys
RTHDMIAzAudService
[A ] 39. c:\windows\system32\drivers\rthdmi.sys
RTLE8023xp
[A ] 40. c:\windows\system32\drivers\rtenicxp.sys
SafeBoxKrnl
[A ] 41. c:\windows\system32\drivers\safeboxkrnl.sys
Secdrv
[A ] 42. c:\windows\system32\drivers\secdrv.sys
sptd
[A ] 43. c:\windows\system32\drivers\sptd.sys
tapvpn
[A ] 44. c:\windows\system32\drivers\tapvpn.sys
VClone
[A ] 45. c:\windows\system32\drivers\vclone.sys
wmpobj
[A ] 46. c:\documents and settings\all users\application data\microsoft\media player\obj\wmpobj.sys
xgxpf
[A ] 47. c:\windows\system32\drivers\hiq.sys
+ 系统登陆自运行
+ HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
AtiExtEvent
[AM] 48. c:\windows\system32\ati2evxx.dll
logondll
[AM] 49. c:\windows\system32\fly702.dll
+ IE浏览器加载模块
+ HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
{c95a4e8e-816d-4655-8c79-d736da1adb6d}
[AM] 50. c:\program files\hotspot_shield\tbhot0.dll
{6C3797D2-3FEF-4cd4-B654-D3AE55B4128C}
[A ] 51. c:\program files\kingsoft\fastait 2009\addins\ieband.dll
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
{72BBBC08-F7E1-4434-A293-3A96DB488D4D}
[AM] 52. c:\program files\thunder network\thunder\comdlls\xunleibho13.dll
{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}
[AM] 53. c:\windows\system32\urlfilter.dll
+ HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions
Exec
[A ] 54. c:\program files\thunder network\thunder\thunder.exe
Exec
[A ] 55. c:\windows\network diagnostic\xpnetdiag.exe
+ 资源管理器加载模块
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Filter
text/xml
[AM] 56. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Handler
ic32pp
[A ] 57. c:\windows\wc98pp.dll
+ HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}
[A ] 58. c:\windows\system32\ieudinit.exe
+ HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers
{F9DB5320-233E-11D1-9F84-707F02C10627}
[AM] 59. c:\program files\common files\adobe\acrobat\activex\pdfshell.dll
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
HyperTerminal Icon Ext
[A ] 60. c:\windows\system32\hticons.dll
IE Search Band
[AM] 61. c:\windows\system32\ieframe.dll
IE AutoComplete
[AM] 61. c:\windows\system32\ieframe.dll
Shell DocObject Viewer
[AM] 61. c:\windows\system32\ieframe.dll
InternetShortcut
[AM] 61. c:\windows\system32\ieframe.dll
Microsoft Url History Service
[AM] 61. c:\windows\system32\ieframe.dll
History
[AM] 61. c:\windows\system32\ieframe.dll
Temporary Internet Files
[AM] 61. c:\windows\system32\ieframe.dll
Temporary Internet Files
[AM] 61. c:\windows\system32\ieframe.dll
Microsoft Url Search Hook
[AM] 61. c:\windows\system32\ieframe.dll
The Internet
[AM] 61. c:\windows\system32\ieframe.dll
Internet Name Space
[AM] 61. c:\windows\system32\ieframe.dll
WinRAR shell extension
[AM] 62. c:\program files\winrar\rarext.dll
Portable Media Devices
[AM] 63. c:\windows\system32\audiodev.dll
Portable Media Devices Menu
[AM] 63. c:\windows\system32\audiodev.dll
Web Folders
[A ] 64. c:\program files\common files\microsoft shared\web folders\msonsext.dll
Microsoft Office HTML Icon Handler
[AM] 65. c:\program files\microsoft office\office11\msohev.dll
EncryptFile
[AM] 66. c:\program files\wopti\woptiencryptmodule.dll
Extractor Shell Extension
[AM] 67. d:\桌面2\1\extractor\extractorext.dll
IE Microsoft BrowserBand
[AM] 61. c:\windows\system32\ieframe.dll
IE Fade Task
[AM] 61. c:\windows\system32\ieframe.dll
IE Menu Desk Bar
[AM] 61. c:\windows\system32\ieframe.dll
IE Navigation Bar
[AM] 61. c:\windows\system32\ieframe.dll
IE Menu Site
[AM] 61. c:\windows\system32\ieframe.dll
IE Menu Band
[AM] 61. c:\windows\system32\ieframe.dll
IE Microsoft History AutoComplete List
[AM] 61. c:\windows\system32\ieframe.dll
IE Tracking Shell Menu
[AM] 61. c:\windows\system32\ieframe.dll
IE IShellFolderBand
[AM] 61. c:\windows\system32\ieframe.dll
IE BandProxy
[AM] 61. c:\windows\system32\ieframe.dll
Microsoft Web Browser
[AM] 61. c:\windows\system32\ieframe.dll
IE MRU AutoComplete List
[AM] 61. c:\windows\system32\ieframe.dll
IE RSS Feeder Folder
[AM] 61. c:\windows\system32\ieframe.dll
IE Microsoft Shell Folder AutoComplete List
[AM] 61. c:\windows\system32\ieframe.dll
IE Microsoft Multiple AutoComplete List Container
[AM] 61. c:\windows\system32\ieframe.dll
IE Shell Rebar BandSite
[AM] 61. c:\windows\system32\ieframe.dll
IE Shell Band Site Menu
[AM] 61. c:\windows\system32\ieframe.dll
&Links
[AM] 61. c:\windows\system32\ieframe.dll
IE Registry Tree Options Utility
[AM] 61. c:\windows\system32\ieframe.dll
IE Custom MRU AutoCompleted List
[AM] 61. c:\windows\system32\ieframe.dll
VirtualCloneDrive
[A ] 68. c:\program files\elaborate bytes\virtualclonedrive\elbyvcdshell.dll
7-Zip Shell Extension
[AM] 69. c:\program files\7-zip\7-zip.dll
RISING
[AM] 70. c:\windows\system32\ravext.dll
+ 用户登陆自运行项目
+ HKLM\Software\Microsoft\Windows\CurrentVersion\Run
cFosSpeed
[AM] 71. d:\dd\网络提速\cfosspeed.exe
runeip
[AM] 72. c:\program files\rising\antispyware\rstray.exe
RavTray
[AM] 73. c:\program files\rising\rav\rstray.exe
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
KKDelay
[A ] 74. c:\program files\rising\antispyware\runonce.exe
+ 开机执行
+ HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order
BootExecute
[A ] 75. c:\windows\system32\bsmain.exe
[A ] 76. c:\windows\system32\kknative.exe
+ 映像劫持
+ HKCR\.html
htmlfile\Edit\Command
[A ] 77. c:\program files\microsoft office\office11\msohtmed.exe
htmlfile\Print\Command
[A ] 77. c:\program files\microsoft office\office11\msohtmed.exe
+ HKCR\.htm
htmlfile\Edit\Command
[A ] 77. c:\program files\microsoft office\office11\msohtmed.exe
htmlfile\Print\Command
[A ] 77. c:\program files\microsoft office\office11\msohtmed.exe
+ HKCR\.mp3
Audio.MP3\open\Command
[A ] 78. c:\program files\ttplayer\ttplayer.exe
Audio.MP3\PlayList\Command
[A ] 78. c:\program files\ttplayer\ttplayer.exe
+ 程序初始化和已知动态连接库
+ HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
AppInit_DLLs
[AM] 79. c:\windows\system32\kmon.dll
+ HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDLLs
comdlg32
[A ] 80. c:\documents and settings\administrator\桌面\comdlg32.dll
+ 其他自启动项目
+ C:\Documents and Settings\Administrator\「开始」菜单\程序\启动
百度Hi.lnk
[A ] 81. c:\program files\baidu\baidu hi\baiduhi.exe
+ C:\WINDOWS\Tasks
SogouImeMgr.job
[A ] 82. c:\program files\sogouinput\4.0.0.2088\pinyinrepair.exe
+ 正在运行的进程
+ 000000c0(192) spd.exe
00400000[00061000]
[AM] 4. d:\dd\网络提速\spd.exe
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
+ 000000e4(228) svchost.exe
+ 0000010c(268) RavTask.exe
00400000[00020000]
[AM] 14. c:\program files\rising\rav\ravtask.exe
10000000[00017000]
[ M] 84. c:\program files\rising\rav\rsconf.dll
003E0000[0000E000]
[ M] 85. c:\program files\rising\rav\rsappmgr.dll
00780000[00031000]
[ M] 86. c:\program files\rising\rav\cfgdll.dll
009D0000[00010000]
[ M] 87. c:\program files\rising\rav\proccomm.dll
7C340000[00056000]
[ M] 88. c:\windows\system32\msvcr71.dll
7C3A0000[0007B000]
[ M] 89. c:\windows\system32\msvcp71.dll
009F0000[00018000]
[ M] 90. c:\program files\rising\rav\rsstub.dll
00CE0000[00029000]
[ M] 91. c:\program files\rising\rav\rstask.dll
+ 0000015c(348) svchost.exe
00940000[0001F000]
[AM] 12. c:\windows\system32\config\software6.dat
00F10000[00030000]
[ M] 92. c:\windows\system32\config\msci06.exe
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
011B0000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
+ 00000160(352) svchost.exe
00710000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
+ 00000174(372) openvpnas.exe
00400000[00018000]
[AM] 5. c:\program files\hotspot shield\bin\openvpnas.exe
6B240000[0003C000]
[ M] 94. c:\program files\hotspot shield\bin\libcurl.dll
61D80000[00125000]
[ M] 95. c:\program files\hotspot shield\bin\libeay32.dll
6B080000[0003A000]
[ M] 96. c:\program files\hotspot shield\bin\libssl32.dll
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
+ 00000200(512) RavMonD.exe
00400000[00020000]
[AM] 15. c:\program files\rising\rav\ravmond.exe
10000000[00029000]
[ M] 97. c:\program files\rising\rav\combase.dll
7C3A0000[0007B000]
[ M] 89. c:\windows\system32\msvcp71.dll
7C340000[00056000]
[ M] 88. c:\windows\system32\msvcr71.dll
00A00000[00019000]
[ M] 98. c:\program files\rising\rav\moncomm.dll
00A20000[0001D000]
[ M] 99. c:\program files\rising\rav\monbase.dll
00A50000[00067000]
[ M] 100. c:\program files\rising\rav\rslog.dll
00AE0000[00018000]
[ M] 101. c:\program files\rising\rav\mondrv.dll
00B10000[00023000]
[ M] 102. c:\program files\rising\rav\defmon.dll
00B50000[00010000]
[ M] 103. c:\program files\rising\rav\moncom08.dll
00B70000[0006C000]
[ M] 104. c:\program files\rising\rav\monrule.dll
00C20000[00028000]
[ M] 105. c:\program files\rising\rav\filemon.dll
00C60000[0002B000]
[ M] 106. c:\program files\rising\rav\mailmon.dll
00CA0000[00012000]
[ M] 107. c:\program files\rising\rav\hookweb.dll
00D20000[00010000]
[ M] 87. c:\program files\rising\rav\proccomm.dll
01030000[0000E000]
[ M] 85. c:\program files\rising\rav\rsappmgr.dll
01050000[00031000]
[ M] 86. c:\program files\rising\rav\cfgdll.dll
01190000[0002D000]
[ M] 108. c:\program files\rising\rav\comx3.dll
011C0000[00019000]
[ M] 109. c:\program files\rising\rav\syslay.dll
01330000[00020000]
[ M] 110. c:\program files\rising\rav\hooksys.dll
01400000[0001F000]
[ M] 111. c:\program files\rising\rav\proccom.dll
01420000[00024000]
[ M] 112. c:\program files\rising\rav\rscommx2.dll
01560000[00013000]
[ M] 113. c:\program files\rising\rav\hookcont.dll
015A0000[00067000]
[ M] 114. c:\program files\rising\rav\rsnetsvr.dll
01960000[00070000]
[ M] 115. c:\program files\rising\rav\bacore.dll
01AE0000[0003C000]
[ M] 116. c:\program files\rising\rav\recomp.dll
01B30000[00036000]
[ M] 117. c:\program files\rising\rav\refs.dll
01B80000[0002A000]
[ M] 118. c:\program files\rising\rav\rsstore.dll
01BC0000[0000D000]
[ M] 119. c:\program files\rising\rav\scanadd.dll
01BD0000[00026000]
[ M] 120. c:\program files\rising\rav\scanner.dll
01E10000[00030000]
[ M] 121. c:\program files\rising\rav\viruslib.dll
01F50000[00028000]
[ M] 122. c:\program files\rising\rav\relibldr.dll
03FD0000[00022000]
[ M] 123. c:\program files\rising\rav\ffr.dll
04110000[00021000]
[ M] 124. c:\program files\rising\rav\nvfile.dll
13AB0000[00045000]
[ M] 125. c:\program files\rising\rav\scanexec.dll
049B0000[002DD000]
[ M] 126. c:\program files\rising\rav\unexe.dll
04CA0000[000DB000]
[ M] 127. c:\program files\rising\rav\scanex.dll
05120000[000F7000]
[ M] 128. c:\program files\rising\rav\extfile.dll
054C0000[00029000]
[ M] 129. c:\program files\rising\rav\pearc.dll
05500000[00029000]
[ M] 130. c:\program files\rising\rav\scanpe.dll
07260000[0001B000]
[ M] 131. c:\program files\rising\rav\ur000.dat
07290000[00035000]
[ M] 132. c:\program files\rising\rav\urutils.dll
07AD0000[000B7000]
[ M] 133. c:\program files\rising\rav\revm.dll
05470000[00013000]
[ M] 134. c:\program files\rising\rav\ur025.dat
02810000[00023000]
[ M] 135. c:\program files\rising\rav\scansct.dll
02850000[00012000]
[ M] 136. c:\program files\rising\rav\ur001.dat
14210000[00039000]
[ M] 137. c:\program files\rising\rav\extmail.dll
028A0000[0003A000]
[ M] 138. c:\program files\rising\rav\scriptci.dll
01230000[0006C000]
[ M] 139. c:\program files\rising\rav\uroutine.dll
012C0000[0001D000]
[ M] 140. c:\program files\rising\rav\ur004.dat
用户系统信息:Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) )
rfgdhdfhd - 2009-3-28 13:42:00
012F0000[00015000]
[ M] 141. c:\program files\rising\rav\ur023.dat
077E0000[00087000]
[ M] 142. c:\program files\rising\rav\ur027.dat
07870000[00012000]
[ M] 143. c:\program files\rising\rav\ur024.dat
+ 00000274(628) spoolsv.exe
+ 0000037c(892) rsnetsvr.exe
00400000[00079000]
[ M] 144. c:\program files\rising\rav\rsnetsvr.exe
10000000[00035000]
[ M] 145. c:\program files\rising\rav\ncomm.dll
00390000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
003A0000[00019000]
[ M] 109. c:\program files\rising\rav\syslay.dll
00CF0000[0002D000]
[ M] 108. c:\program files\rising\rav\comx3.dll
00E60000[00010000]
[ M] 87. c:\program files\rising\rav\proccomm.dll
7C340000[00056000]
[ M] 88. c:\windows\system32\msvcr71.dll
7C3A0000[0007B000]
[ M] 89. c:\windows\system32\msvcp71.dll
+ 000003e0(992) ScanFrm.exe
00400000[0000B000]
[AM] 16. c:\program files\rising\rav\scanfrm.exe
7C3A0000[0007B000]
[ M] 89. c:\windows\system32\msvcp71.dll
7C340000[00056000]
[ M] 88. c:\windows\system32\msvcr71.dll
10000000[00029000]
[ M] 97. c:\program files\rising\rav\combase.dll
003E0000[00019000]
[ M] 98. c:\program files\rising\rav\moncomm.dll
00900000[0000A000]
[ M] 146. c:\program files\rising\rav\scansrvp.dll
00910000[00010000]
[ M] 87. c:\program files\rising\rav\proccomm.dll
00C20000[0000E000]
[ M] 147. c:\program files\rising\rav\scansrv.dll
01130000[0002D000]
[ M] 108. c:\program files\rising\rav\comx3.dll
01160000[00019000]
[ M] 109. c:\program files\rising\rav\syslay.dll
01640000[0000F000]
[ M] 148. c:\program files\rising\rav\scanravt.dll
01650000[00070000]
[ M] 149. c:\program files\rising\rav\scanbt.dll
016C0000[0000D000]
[ M] 150. c:\program files\rising\rav\scanstub.dll
016D0000[00067000]
[ M] 100. c:\program files\rising\rav\rslog.dll
01760000[0000D000]
[ M] 119. c:\program files\rising\rav\scanadd.dll
01770000[0000E000]
[ M] 85. c:\program files\rising\rav\rsappmgr.dll
01790000[00031000]
[ M] 86. c:\program files\rising\rav\cfgdll.dll
018D0000[00026000]
[ M] 120. c:\program files\rising\rav\scanner.dll
01900000[0003C000]
[ M] 116. c:\program files\rising\rav\recomp.dll
01950000[00036000]
[ M] 117. c:\program files\rising\rav\refs.dll
01BB0000[00030000]
[ M] 121. c:\program files\rising\rav\viruslib.dll
01CF0000[00028000]
[ M] 122. c:\program files\rising\rav\relibldr.dll
02220000[00022000]
[ M] 123. c:\program files\rising\rav\ffr.dll
02260000[00021000]
[ M] 124. c:\program files\rising\rav\nvfile.dll
13AB0000[00045000]
[ M] 125. c:\program files\rising\rav\scanexec.dll
02B00000[002DD000]
[ M] 126. c:\program files\rising\rav\unexe.dll
02DF0000[000DB000]
[ M] 127. c:\program files\rising\rav\scanex.dll
03170000[000F7000]
[ M] 128. c:\program files\rising\rav\extfile.dll
0BDC0000[00023000]
[ M] 135. c:\program files\rising\rav\scansct.dll
0BFF0000[00029000]
[ M] 129. c:\program files\rising\rav\pearc.dll
0C860000[00029000]
[ M] 130. c:\program files\rising\rav\scanpe.dll
0E5C0000[0001B000]
[ M] 131. c:\program files\rising\rav\ur000.dat
0E5F0000[00035000]
[ M] 132. c:\program files\rising\rav\urutils.dll
0E970000[000B7000]
[ M] 133. c:\program files\rising\rav\revm.dll
14210000[00039000]
[ M] 137. c:\program files\rising\rav\extmail.dll
0EB60000[0002A000]
[ M] 118. c:\program files\rising\rav\rsstore.dll
0FF40000[00045000]
[ M] 151. c:\program files\rising\rav\posttrt.dll
0F530000[00045000]
[ M] 152. c:\program files\rising\rav\extole.dll
0F5A0000[00012000]
[ M] 136. c:\program files\rising\rav\ur001.dat
11950000[0003A000]
[ M] 138. c:\program files\rising\rav\scriptci.dll
120A0000[0006C000]
[ M] 139. c:\program files\rising\rav\uroutine.dll
0FFD0000[00013000]
[ M] 134. c:\program files\rising\rav\ur025.dat
12F60000[00015000]
[ M] 141. c:\program files\rising\rav\ur023.dat
12EC0000[00012000]
[ M] 143. c:\program files\rising\rav\ur024.dat
+ 00000414(1044) mysqld-nt.exe
00400000[004F9000]
[AM] 9. d:\冒险岛私服\xkodinms\mysql5.2\bin\mysqld-nt.exe
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
01410000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
+ 000004bc(1212) Explorer.EXE
00400000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
01650000[00B72000]
[AM] 61. c:\windows\system32\ieframe.dll
72C80000[00008000]
[ M] 155. c:\windows\system32\msacm32.drv
028F0000[0004C000]
[ M] 156. c:\program files\common files\adobe\acrobat\activex\pdfshell.chs
325C0000[00012000]
[AM] 65. c:\program files\microsoft office\office11\msohev.dll
044C0000[0005B000]
[AM] 59. c:\program files\common files\adobe\acrobat\activex\pdfshell.dll
03E30000[0000D000]
[ M] 157. c:\windows\system32\feiplug.dll
04060000[00008000]
[ M] 158. c:\windows\system32\feimain.dll
04560000[00018000]
[ M] 159. c:\windows\system32\flymain702.dll
04B70000[0002E000]
[AM] 62. c:\program files\winrar\rarext.dll
04BA0000[00024000]
[AM] 70. c:\windows\system32\ravext.dll
045A0000[00017000]
[ M] 160. c:\program files\kingsoft\knightv\tools\kvd\kscdrush.dll
04CD0000[0002F000]
[AM] 67. d:\桌面2\1\extractor\extractorext.dll
05610000[000B9000]
[AM] 66. c:\program files\wopti\woptiencryptmodule.dll
04E00000[00014000]
[AM] 69. c:\program files\7-zip\7-zip.dll
057D0000[00024000]
[ M] 161. c:\windows\system32\restoratorcontextmenu.dll
096C0000[0007A000]
[AM] 63. c:\windows\system32\audiodev.dll
10000000[0002A000]
[ M] 162. c:\windows\system32\com\1.2.8\wndhook.dll
+ 00000524(1316) smss.exe
+ 00000538(1336) jqs.exe
00400000[00024000]
[AM] 7. c:\program files\java\jre6\bin\jqs.exe
7C340000[00056000]
[ M] 163. c:\program files\java\jre6\bin\msvcr71.dll
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
006D0000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
4B4F0000[00006000]
[ M] 164. c:\windows\system32\odbcbcp.dll
+ 00000570(1392) csrss.exe
+ 00000590(1424) winlogon.exe
10000000[00021000]
[AM] 48. c:\windows\system32\ati2evxx.dll
01410000[00018000]
[AM] 49. c:\windows\system32\fly702.dll
00FF0000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
72C80000[00008000]
[ M] 155. c:\windows\system32\msacm32.drv
02650000[00B72000]
[AM] 61. c:\windows\system32\ieframe.dll
01910000[0005E000]
[ M] 165. c:\windows\system32\htmlpeek.dll
01FB0000[0002A000]
[ M] 162. c:\windows\system32\com\1.2.8\wndhook.dll
+ 000005bc(1468) services.exe
46040000[0000F000]
[ M] 166. c:\windows\apppatch\acadproc.dll
+ 000005c8(1480) lsass.exe
+ 0000067c(1660) svchost.exe
+ 000006d4(1748) svchost.exe
+ 00000720(1824) cFosSpeed.exe
00400000[000DB000]
[AM] 71. d:\dd\网络提速\cfosspeed.exe
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
10000000[0002A000]
[ M] 162. c:\windows\system32\com\1.2.8\wndhook.dll
013D0000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
+ 00000728(1832) rstray.exe
00400000[00023000]
[AM] 72. c:\program files\rising\antispyware\rstray.exe
10000000[00044000]
[ M] 167. c:\program files\rising\antispyware\rsmginfo.dll
00910000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
23800000[00022000]
[ M] 168. c:\program files\rising\antispyware\rsxml.dll
7C3A0000[0007B000]
[ M] 169. c:\program files\rising\antispyware\msvcp71.dll
7C340000[00056000]
[ M] 170. c:\program files\rising\antispyware\msvcr71.dll
00CE0000[00024000]
[ M] 171. c:\program files\rising\antispyware\comserv.dll
00D10000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
23700000[00026000]
[ M] 172. c:\program files\rising\antispyware\rscommon.dll
00D50000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
23900000[00040000]
[ M] 173. c:\program files\rising\antispyware\pngdll.dll
01120000[00068000]
[ M] 174. c:\program files\rising\antispyware\runiep.dll
010C0000[00034000]
[ M] 175. c:\program files\rising\antispyware\ncomm.dll
01190000[0001F000]
[ M] 111. c:\program files\rising\rav\proccom.dll
011B0000[00024000]
[ M] 176. c:\program files\rising\antispyware\rscommx2.dll
+ 0000073c(1852) RsTray.exe
00400000[00023000]
[AM] 73. c:\program files\rising\rav\rstray.exe
10000000[00023000]
[ M] 177. c:\program files\rising\rav\comserv.dll
7C3A0000[0007B000]
[ M] 89. c:\windows\system32\msvcp71.dll
7C340000[00056000]
[ M] 88. c:\windows\system32\msvcr71.dll
23700000[00023000]
[ M] 178. c:\program files\rising\rav\rslang.dll
00990000[0002D000]
[ M] 108. c:\program files\rising\rav\comx3.dll
009C0000[00019000]
[ M] 109. c:\program files\rising\rav\syslay.dll
23800000[00025000]
[ M] 179. c:\program files\rising\rav\rsxml.dll
00C10000[00010000]
[ M] 87. c:\program files\rising\rav\proccomm.dll
00E20000[00013000]
[ M] 180. c:\program files\rising\rav\monstate.dll
00E50000[0000B000]
[ M] 181. c:\program files\rising\rav\scanevnt.dll
26600000[000C3000]
[ M] 182. c:\program files\rising\rav\rsguilib.dll
7C140000[00103000]
[ M] 183. c:\windows\system32\mfc71.dll
00FA0000[00017000]
[ M] 84. c:\program files\rising\rav\rsconf.dll
00FD0000[0000E000]
[ M] 85. c:\program files\rising\rav\rsappmgr.dll
00FF0000[00031000]
[ M] 86. c:\program files\rising\rav\cfgdll.dll
01130000[00030000]
[ M] 184. c:\program files\rising\rav\rspalvd.dll
33000000[00025000]
[ M] 185. c:\program files\rising\rav\ravbintl.dll
01180000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
013E0000[0006C000]
[ M] 186. c:\program files\rising\rav\mruleui.dll
01460000[0006B000]
[ M] 187. c:\program files\rising\rav\montray.dll
23900000[00040000]
[ M] 188. c:\program files\rising\rav\pngdll.dll
34500000[00020000]
[ M] 189. c:\program files\rising\rav\ravitray.dll
01B30000[00059000]
[ M] 190. c:\program files\rising\rav\scanprxy.dll
01B90000[00044000]
[ M] 191. c:\program files\rising\rav\rsmginfo.dll
+ 00000770(1904) ctfmon.exe
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
+ 000007a4(1956) CCENTER.EXE
00400000[0001B000]
[AM] 13. c:\program files\rising\rav\ccenter.exe
10000000[00029000]
[ M] 97. c:\program files\rising\rav\combase.dll
rfgdhdfhd - 2009-3-28 13:43:00
00680000[00027000]
[ M] 192. c:\program files\rising\rav\cnt09.dll
009C0000[0001D000]
[ M] 193. c:\program files\rising\rav\cnt08.dll
+ 000007ac(1964) svchost.exe
01A30000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
+ 000007d8(2008) npkcmsvc.exe
00400000[00014000]
[AM] 10. d:\冒险岛\冒险岛online\npkcmsvc.exe
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
003E0000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
+ 00000810(2064) wdfmgr.exe
01000000[0000C000]
[AM] 18. c:\windows\system32\wdfmgr.exe
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
00580000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
+ 00000990(2448) lavfs.exe
00400000[00103000]
[ M] 194. c:\program files\fuzos\lavfs.exe
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
00A80000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
00D80000[00B72000]
[AM] 61. c:\windows\system32\ieframe.dll
01C90000[000C2000]
[ M] 195. c:\program files\fuzos\homeos\qaivs.dll
01D60000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
01ED0000[000D1000]
[ M] 196. c:\program files\fuzos\homeos\qatis.dll
01A80000[0002A000]
[ M] 162. c:\windows\system32\com\1.2.8\wndhook.dll
+ 00000c00(3072) alg.exe
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
00710000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
+ 00001134(4404) IEXPLORE.EXE
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
00740000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
009C0000[00B72000]
[AM] 61. c:\windows\system32\ieframe.dll
02460000[00043000]
[ M] 197. c:\program files\internet explorer\ieproxy.dll
025C0000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
030C0000[0009D000]
[AM] 52. c:\program files\thunder network\thunder\comdlls\xunleibho13.dll
03170000[00018000]
[AM] 53. c:\windows\system32\urlfilter.dll
031A0000[00011000]
[ M] 198. c:\program files\rising\antispyware\urlrule.dll
04270000[0000F000]
[ M] 199. c:\windows\system32\privacie.dll
47060000[00021000]
[ M] 200. c:\windows\system32\xmllite.dll
04290000[00017000]
[ M] 201. c:\program files\rising\rav\ravscrch.dll
7C3A0000[0007B000]
[ M] 89. c:\windows\system32\msvcp71.dll
7C340000[00056000]
[ M] 88. c:\windows\system32\msvcr71.dll
046C0000[00488000]
[ M] 202. c:\windows\system32\macromed\flash\flash10b.ocx
72C80000[00008000]
[ M] 155. c:\windows\system32\msacm32.drv
+ 000011a0(4512) joey_pc_cn.exe
00400000[0065D660]
[ M] 203. d:\power of chaos joey the passion\joey_pc_cn.exe
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
003E0000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
72C80000[00008000]
[ M] 155. c:\windows\system32\msacm32.drv
04320000[0002A000]
[ M] 162. c:\windows\system32\com\1.2.8\wndhook.dll
04350000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
+ 00001270(4720) IEXPLORE.EXE
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
00740000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
009C0000[00B72000]
[AM] 61. c:\windows\system32\ieframe.dll
02530000[0002F000]
[ M] 204. c:\windows\system32\ieui.dll
47060000[00021000]
[ M] 200. c:\windows\system32\xmllite.dll
02F80000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
03BD0000[00043000]
[ M] 197. c:\program files\internet explorer\ieproxy.dll
+ 000012e8(4840) IEXPLORE.EXE
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
009C0000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
00C40000[00B72000]
[AM] 61. c:\windows\system32\ieframe.dll
01990000[0002A000]
[ M] 162. c:\windows\system32\com\1.2.8\wndhook.dll
019C0000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
02700000[0002F000]
[ M] 204. c:\windows\system32\ieui.dll
47060000[00021000]
[ M] 200. c:\windows\system32\xmllite.dll
044C0000[00043000]
[ M] 197. c:\program files\internet explorer\ieproxy.dll
04730000[00092000]
[ M] 205. c:\windows\system32\msfeeds.dll
+ 00001464(5220) IEXPLORE.EXE
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
009C0000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
00C40000[00B72000]
[AM] 61. c:\windows\system32\ieframe.dll
02020000[0002A000]
[ M] 162. c:\windows\system32\com\1.2.8\wndhook.dll
02050000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
02810000[00043000]
[ M] 197. c:\program files\internet explorer\ieproxy.dll
036C0000[001D2000]
[AM] 50. c:\program files\hotspot_shield\tbhot0.dll
04040000[0000D000]
[AM] 56. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll
04260000[0009D000]
[AM] 52. c:\program files\thunder network\thunder\comdlls\xunleibho13.dll
04750000[00018000]
[AM] 53. c:\windows\system32\urlfilter.dll
04450000[00011000]
[ M] 198. c:\program files\rising\antispyware\urlrule.dll
72EA0000[0006F000]
[ M] 206. c:\windows\system32\ieapfltr.dll
05B90000[0005C000]
[ M] 207. c:\program files\conduit\community alerts\alert.dll
+ 00001808(6152) IEXPLORE.EXE
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
10000000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
00740000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
009C0000[00B72000]
[AM] 61. c:\windows\system32\ieframe.dll
02460000[00043000]
[ M] 197. c:\program files\internet explorer\ieproxy.dll
025C0000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
03300000[0009D000]
[AM] 52. c:\program files\thunder network\thunder\comdlls\xunleibho13.dll
033B0000[00018000]
[AM] 53. c:\windows\system32\urlfilter.dll
033E0000[00011000]
[ M] 198. c:\program files\rising\antispyware\urlrule.dll
+ 00001cc0(7360) knownsvr.exe
00400000[00072000]
[ M] 208. c:\program files\rising\antispyware\knownsvr.exe
10000000[00034000]
[ M] 175. c:\program files\rising\antispyware\ncomm.dll
00390000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
00BD0000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
00C00000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
+ 00001d20(7456) ras.exe
00400000[0000B000]
[ M] 209. c:\program files\rising\antispyware\ras.exe
7C140000[00103000]
[ M] 210. c:\program files\rising\antispyware\mfc71.dll
7C340000[00056000]
[ M] 170. c:\program files\rising\antispyware\msvcr71.dll
60000000[00074000]
[AM] 79. c:\windows\system32\kmon.dll
5DCA0000[001B5000]
[ M] 83. c:\windows\system32\iertutil.dll
10000000[0002A000]
[ M] 162. c:\windows\system32\com\1.2.8\wndhook.dll
00A90000[00009000]
[ M] 93. c:\windows\system32\normaliz.dll
780C0000[00061000]
[ M] 211. c:\program files\rising\antispyware\msvcp60.dll
00CF0000[00047000]
[ M] 212. c:\program files\rising\antispyware\kakamgr.dll
7C3A0000[0007B000]
[ M] 169. c:\program files\rising\antispyware\msvcp71.dll
00D40000[00019000]
[ M] 154. c:\program files\rising\antispyware\syslay.dll
00D70000[0001F000]
[ M] 111. c:\program files\rising\rav\proccom.dll
00D90000[00024000]
[ M] 176. c:\program files\rising\antispyware\rscommx2.dll
00EE0000[0002D000]
[ M] 153. c:\program files\rising\antispyware\comx3.dll
01050000[00058000]
[ M] 213. c:\program files\rising\antispyware\dbmgr.dll
23800000[00022000]
[ M] 168. c:\program files\rising\antispyware\rsxml.dll
011B0000[0002D000]
[ M] 214. c:\program files\rising\antispyware\pweb.dll
01220000[000C1000]
[ M] 215. c:\program files\rising\antispyware\pscan.dll
012F0000[00034000]
[ M] 175. c:\program files\rising\antispyware\ncomm.dll
01350000[00070000]
[ M] 216. c:\program files\rising\antispyware\pset.dll
013C0000[0002A000]
[ M] 217. c:\program files\rising\antispyware\pdefend.dll
013F0000[000B6000]
[ M] 218. c:\program files\rising\antispyware\ptools.dll
014B0000[0008D000]
[ M] 219. c:\program files\rising\antispyware\psysinfo.dll
01670000[00B72000]
[AM] 61. c:\windows\system32\ieframe.dll
23900000[00040000]
[ M] 173. c:\program files\rising\antispyware\pngdll.dll
03E20000[00017000]
[ M] 201. c:\program files\rising\rav\ravscrch.dll
04900000[00488000]
[ M] 202. c:\windows\system32\macromed\flash\flash10b.ocx
72C80000[00008000]
[ M] 155. c:\windows\system32\msacm32.drv
badboyhhz - 2009-3-28 13:51:00
扫描日志来看看吧。
用SRENG工具扫描系统日志发这论坛来
下载SRENG工具:
http://bbs.ikaka.com/attachment.aspx?attachmentid=462487操作方法可以看贴:
http://bbs.ikaka.com/showtopic-8545446.aspx建议日志文件以附件形式发来
点击我这贴右下角的“引用”或最右下角的那个较大的“回复”然后就应该知道怎么发了。
请不要开新贴发日志,就原贴接贴发日志即可。
© 2000 - 2025 Rising Corp. Ltd.