【求助】 - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛【求助】

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

6 / 7 页

跳转页

【求助】

safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:	发表于： 2006-07-02 12:47 \| 只看楼主短消息资料字号：小中大 51楼 Logfile of Kaka v2. 0. 0. 9 Scan Module v2. 0. 0. 1 Scan saved at 12:37:47, on 2006-09-02 Platform: Microsoft Windows XP Professional Service Pack 2 (Build 2600) MSIE: Internet Explorer v6.00 SP2; (6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)) Running processes: [SMSS.EXE] CommandLine = [CSRSS.EXE] CommandLine = C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16 [WINLOGON.EXE] CommandLine = winlogon.exe [SERVICES.EXE] CommandLine = C:\WINDOWS\system32\services.exe [LSASS.EXE] CommandLine = C:\WINDOWS\system32\lsass.exe [SVCHOST.EXE] CommandLine = C:\WINDOWS\system32\svchost -k DcomLaunch [SVCHOST.EXE] CommandLine = C:\WINDOWS\system32\svchost -k rpcss [CCenter.exe] CommandLine = "C:\Program Files\Rising\Rav\CCenter.exe" [SVCHOST.EXE] CommandLine = C:\WINDOWS\System32\svchost.exe -k netsvcs [SVCHOST.EXE] CommandLine = C:\WINDOWS\system32\svchost.exe -k NetworkService [SVCHOST.EXE] CommandLine = C:\WINDOWS\system32\svchost.exe -k LocalService [RavMonD.exe] CommandLine = "C:\Program Files\Rising\Rav\Ravmond.exe" [rfwProxy.exe] CommandLine = f:\rising\rfw\rfwproxy.exe [rfwsrv.exe] CommandLine = f:\rising\rfw\rfwsrv.exe [EXPLORER.EXE] CommandLine = C:\WINDOWS\Explorer.EXE [RavStub.exe] CommandLine = "C:\Program Files\Rising\Rav\RavStub.exe" /RAVMOND [SPOOLSV.EXE] CommandLine = C:\WINDOWS\system32\spoolsv.exe [RFWMAIN.EXE] CommandLine = -StartUp [WDFMGR.EXE] CommandLine = C:\WINDOWS\system32\wdfmgr.exe [SOUNDMAN.EXE] CommandLine = "C:\WINDOWS\SOUNDMAN.EXE" [RavTask.exe] CommandLine = "C:\PROGRAM FILES\RISING\RAV\RAVTASK.EXE" -SYSTEM [RavMon.exe] CommandLine = "C:\Program Files\Rising\Rav\Ravmon.exe" -SYSTEM [pfw.exe] CommandLine = "F:\PROGRA~1\SKYNET\FIREWALL\pfw.exe" [jusched.exe] CommandLine = "C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe" [CTFMON.EXE] CommandLine = "C:\WINDOWS\system32\ctfmon.exe" [SRIECLI.EXE] CommandLine = "F:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE" /LOAD [Thunder.exe] CommandLine = "F:\迅雷5\Thunder.exe" /s [KAVPF.exe] CommandLine = "F:\Kaspersky Anti-Hacker\KAVPF.exe" /silence [WZQKPICK.EXE] CommandLine = "F:\WinZip\WZQKPICK.EXE" [Ymsgr_tray.exe] CommandLine = "F:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe" -ymsgr [alg.exe] CommandLine = C:\WINDOWS\System32\alg.exe [iexplore.exe] CommandLine = "C:\Program Files\Internet Explorer\iexplore.exe" [TTPlayer.exe] CommandLine = "F:\Program Files\TTPlayer\TTPlayer.exe" [SVCHOST.EXE] CommandLine = C:\WINDOWS\system32\svchost.exe -k imgsvc [KkScan.exe] CommandLine = "C:\Program Files\Rising\KakaToolBar\KkScan.exe" O1 - Hosts: 127.0.0.1 localhost O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v8.dll O2 - BHO: (file missing) O2 - BHO: 超级兔子上网精灵 - {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} - F:\PROGRA~1\SUPERR~1\MAGICSET\haokanbar.dll O2 - BHO: (file missing) O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - F:\PROGRA~1\FLASHGET\fgiebar.dll O3 - Toolbar: 超级兔子上网精灵 - {43869BB3-22FD-4F15-9B46-238106BA2F4E} - F:\PROGRA~1\SUPERR~1\MAGICSET\haokanbar.dll O3 - Toolbar: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\system32\KakaTool.dll O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Yahoo! Pager] "F:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet O4 - HKCU\..\Run: [Super Rabbit IEPro] F:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE /LOAD O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system O4 - HKLM\..\Run: [hxgame-update] C:\Program Files\hxupdate\hxgame-update.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [SKYNET Personal FireWall] F:\PROGRA~1\SKYNET\FIREWALL\pfw.exe O4 - HKLM\..\Run: [RfwMain] "F:\Rising\Rfw\rfwmain.exe" -Startup O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe O4 - HKLM\..\Run: [Thunder] "F:\迅雷5\ThunderShell.exe" /s O4 - HKLM\..\RunOnce: [RavStub] "C:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE O4 - Startup: desktop.ini = O4 - Startup: adsl.lnk = O4 - Global Startup: desktop.ini = O4 - Global Startup: 卡巴斯基反黑客.lnk = F:\Kaspersky Anti-Hacker\KAVPF.exe O4 - Global Startup: WinZip Quick Pick.lnk = F:\WinZip\WZQKPICK.EXE O8 - Extra context menu item: &使用迅雷下载 - F:\迅雷5\geturl.htm O8 - Extra context menu item: &使用迅雷下载全部链接 - F:\迅雷5\getallurl.htm O8 - Extra context menu item: 上传到QQ网络硬盘 - G:\新建文件夹\AddToNetDisk.htm O8 - Extra context menu item: 使用网际快车下载 - F:\Program Files\FLASHGET\jc_link.htm O8 - Extra context menu item: 使用网际快车下载全部链接 - F:\Program Files\FLASHGET\jc_all.htm O8 - Extra context menu item: 添加到QQ自定义面板 - G:\新建文件夹\AddPanel.htm O8 - Extra context menu item: 添加到QQ表情 - G:\新建文件夹\AddEmotion.htm O8 - Extra context menu item: 用QQ彩信发送该图片 - G:\新建文件夹\SendMMS.htm O9 - Extra Button: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - G:\新建文件夹\QQIEHelper.dll O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - G:\新建文件夹\QQIEHelper.dll O14 - IERESET.INF: START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome O16 - DPF: {3F618E1F-D981-4905-A757-4D237441B5B3} (GolfInstallCheck2 Class) - http://download.ourgame.com/GolfInstallCheck2.cab O16 - DPF: {BE9535B7-76FB-4572-AD20-B32BADB3643B} (TV Stream Source) - http://image2.sina.com.cn/cctv/Chaos203b.cab O16 - DPF: {E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} (Rising Web Scan Object) - http://download.rising.com.cn/register/pcver/autoupgradepad/pcver2006new/OL2006.cab O16 - DPF: {F138084D-84D7-48CD-BEA8-04772457516E} (VqqSpeedDlProxy Class) - http://218.85.138.27/vqqsdl1009.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{523EDB29-7DC8-4231-92EE-AA0BA82A8AEF}: NameServer = 202.102.154.3 61.233.154.33 O17 - HKLM\System\CCS\Services\Tcpip\..\{AC4A1CAA-002D-47AB-A397-2D51986EAC19}: NameServer = 219.150.32.132,61.233.154.33 O18 - Filter : application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\mscoree.dll O18 - Filter : application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\mscoree.dll O18 - Filter : application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\mscoree.dll O18 - Protocol: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll O18 - Protocol: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll O18 - Protocol: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll O18 - Protocol: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll O18 - Protocol: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll O18 - Protocol: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll O18 - Protocol: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll O18 - Protocol: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll O18 - Protocol: ipp - (no CLSID) - (no file) O18 - Protocol: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll O18 - Protocol: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll O18 - Protocol: koboo - {7DEE9D05-FA0A-4416-A6F3-6537D0EAB6A6} - C:\WINDOWS\system32\mbprot.dll O18 - Protocol: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll O18 - Protocol: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll O18 - Protocol: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll O18 - Protocol: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll O18 - Protocol: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll O18 - Protocol: msdaipp - (no CLSID) - (no file) O18 - Protocol: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll O18 - Protocol: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll O18 - Protocol: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll O18 - Protocol: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll O18 - Protocol: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll O23 - Service: Human Interface Device Access (HidServ) - - C:\WINDOWS\system32\svchost.exe -k netsvcs O23 - Service: Rising Proxy Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - f:\rising\rfw\rfwproxy.exe O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - f:\rising\rfw\rfwsrv.exe O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - "C:\Program Files\Rising\Rav\CCenter.exe" O23 - Service: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - "C:\Program Files\Rising\Rav\Ravmond.exe"
safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:

safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:	发表于： 2006-07-02 12:57 \| 只看楼主短消息资料字号：小中大 52楼 [SMSS.EXE] PID = 0x1d4 CommandLine = smss.exe 0x48580000 C:\WINDOWS\system32\smss.exe 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows NT Session Manager 2004-08-17 12:00:00 ntdll.dll 0x7c920000 C:\WINDOWS\system32\ntdll.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation NT Layer DLL 2004-08-17 12:00:00 [CSRSS.EXE] PID = 0x20c CommandLine = C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16 csrss.exe 0x4a680000 c:\windows\system32\csrss.exe 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Client Server Runtime Process 2004-08-17 12:00:00 ntdll.dll 0x7c920000 C:\WINDOWS\system32\ntdll.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation NT Layer DLL 2004-08-17 12:00:00 CSRSRV.dll 0x75aa0000 C:\WINDOWS\system32\csrsrv.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Client Server Runtime Process 2004-08-17 12:00:00 basesrv.dll 0x75ab0000 C:\WINDOWS\system32\basesrv.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows NT BASE API Server DLL 2004-08-17 12:00:00 winsrv.dll 0x764e0000 C:\WINDOWS\system32\winsrv.dll 5.1.2600.2751 (xpsp_sp2_gdr.050831-1520) Microsoft Corporation Windows Server DLL 2005-09-01 09:45:34 GDI32.dll 0x77ef0000 C:\WINDOWS\system32\gdi32.dll 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427) Microsoft Corporation GDI Client DLL
safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:

safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:	发表于： 2006-07-02 13:00 \| 只看楼主短消息资料字号：小中大 53楼 ntdll.dll 0x7c920000 C:\WINDOWS\system32\ntdll.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation NT Layer DLL 2004-08-17 12:00:00 CSRSRV.dll 0x75aa0000 C:\WINDOWS\system32\csrsrv.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Client Server Runtime Process 2004-08-17 12:00:00 basesrv.dll 0x75ab0000 C:\WINDOWS\system32\basesrv.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows NT BASE API Server DLL 2004-08-17 12:00:00 winsrv.dll 0x764e0000 C:\WINDOWS\system32\winsrv.dll 5.1.2600.2751 (xpsp_sp2_gdr.050831-1520) Microsoft Corporation Windows Server DLL 2005-09-01 09:45:34 GDI32.dll 0x77ef0000 C:\WINDOWS\system32\gdi32.dll 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427) Microsoft Corporation GDI Client DLL 2005-12-29 10:56:04 KERNEL32.dll 0x7c800000 C:\WINDOWS\system32\kernel32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows NT BASE API Client DLL 2004-08-17 12:00:00 USER32.dll 0x77d10000 C:\WINDOWS\system32\user32.dll 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519) Microsoft Corporation Windows XP USER API Client DLL 2005-03-03 02:10:06 LPK.DLL 0x62c20000 C:\WINDOWS\system32\lpk.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Language Pack 2004-08-17 12:00:00 USP10.dll 0x73fa0000 C:\WINDOWS\system32\usp10.dll 1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Uniscribe Unicode script processor 2004-08-17 12:00:00 msvcrt.dll 0x77be0000 C:\WINDOWS\system32\msvcrt.dll 7.0.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows NT CRT DLL 2004-08-17 12:00:00 ADVAPI32.dll 0x77da0000 C:\WINDOWS\system32\advapi32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Advanced Windows 32 Base API 2004-08-17 12:00:00 RPCRT4.dll 0x77e50000 C:\WINDOWS\system32\rpcrt4.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Remote Procedure Call Runtime 2004-08-17 12:00:00 sxs.dll 0x75e00000 C:\WINDOWS\system32\sxs.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Fusion 2.5 2004-08-17 12:00:00 Apphelp.dll 0x76d70000 C:\WINDOWS\system32\apphelp.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Application Compatibility Client Library 2004-08-17 12:00:00 VERSION.dll 0x77bd0000 C:\WINDOWS\system32\version.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Version Checking and File Installation Libraries 2004-08-17 12:00:00 [WINLOGON.EXE] PID = 0x224 CommandLine = winlogon.exe winlogon.exe 0x1000000 c:\windows\system32\winlogon.exe 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows NT Logon Application 2004-08-17 12:00:00 ntdll.dll 0x7c920000 C:\WINDOWS\system32\ntdll.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation NT Layer DLL 2004-08-17 12:00:00 kernel32.dll 0x7c800000 C:\WINDOWS\system32\kernel32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows NT BASE API Client DLL 2004-08-17 12:00:00
safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:

safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:	发表于： 2006-07-02 13:01 \| 只看楼主短消息资料字号：小中大 54楼 ADVAPI32.dll 0x77da0000 C:\WINDOWS\system32\advapi32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Advanced Windows 32 Base API 2004-08-17 12:00:00 RPCRT4.dll 0x77e50000 C:\WINDOWS\system32\rpcrt4.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Remote Procedure Call Runtime 2004-08-17 12:00:00 AUTHZ.dll 0x77fe0000 C:\WINDOWS\system32\authz.dll 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519) Microsoft Corporation Authorization Framework 2005-03-03 02:10:06 msvcrt.dll 0x77be0000 C:\WINDOWS\system32\msvcrt.dll 7.0.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows NT CRT DLL 2004-08-17 12:00:00 CRYPT32.dll 0x765e0000 C:\WINDOWS\system32\crypt32.dll 5.131.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Crypto API32 2004-08-17 12:00:00 USER32.dll 0x77d10000 C:\WINDOWS\system32\user32.dll 5.1.2600.2622 (xpsp_sp2_gdr.050301-1519) Microsoft Corporation Windows XP USER API Client DLL 2005-03-03 02:10:06 GDI32.dll 0x77ef0000 C:\WINDOWS\system32\gdi32.dll 5.1.2600.2818 (xpsp_sp2_gdr.051228-1427) Microsoft Corporation GDI Client DLL 2005-12-29 10:56:04 MSASN1.dll 0x76db0000 C:\WINDOWS\system32\msasn1.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation ASN.1 Runtime APIs 2004-08-17 12:00:00 NDdeApi.dll 0x758a0000 C:\WINDOWS\system32\nddeapi.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Network DDE Share Management APIs 2004-08-17 12:00:00 PROFMAP.dll 0x75890000 C:\WINDOWS\system32\profmap.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Userenv 2004-08-17 12:00:00 NETAPI32.dll 0x5fdd0000 C:\WINDOWS\system32\netapi32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Net Win32 API DLL 2004-08-17 12:00:00 USERENV.dll 0x759d0000 C:\WINDOWS\system32\userenv.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Userenv 2004-08-17 12:00:00 PSAPI.DLL 0x76bc0000 C:\WINDOWS\system32\psapi.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Process Status Helper 2004-08-17 12:00:00 REGAPI.dll 0x76b90000 C:\WINDOWS\system32\regapi.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Registry Configuration APIs 2004-08-17 12:00:00 Secur32.dll 0x77fc0000 C:\WINDOWS\system32\secur32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Security Support Provider Interface 2004-08-17 12:00:00 SETUPAPI.dll 0x76060000 C:\WINDOWS\system32\setupapi.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows Setup API 2004-08-17 12:00:00 VERSION.dll 0x77bd0000 C:\WINDOWS\system32\version.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Version Checking and File Installation Libraries 2004-08-17 12:00:00 WINSTA.dll 0x762d0000 C:\WINDOWS\system32\winsta.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Winstation Library 2004-08-17 12:00:00 WINTRUST.dll 0x76c00000 C:\WINDOWS\system32\wintrust.dll 5.131.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Microsoft Trust Verification APIs 2004-08-17 12:00:00 IMAGEHLP.dll 0x76c60000 C:\WINDOWS\system32\imagehlp.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows NT Image Helper 2004-08-17 12:00:00 WS2_32.dll 0x71a20000 C:\WINDOWS\system32\ws2_32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows Socket 2.0 32-Bit DLL 2004-08-17 12:00:00
safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:

safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:	发表于： 2006-07-02 13:01 \| 只看楼主短消息资料字号：小中大 55楼 WS2HELP.dll 0x71a10000 C:\WINDOWS\system32\ws2help.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows Socket 2.0 Helper for Windows NT 2004-08-17 12:00:00 IMM32.DLL 0x76300000 C:\WINDOWS\system32\imm32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows XP IMM32 API Client DLL 2004-08-17 12:00:00 LPK.DLL 0x62c20000 C:\WINDOWS\system32\lpk.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Language Pack 2004-08-17 12:00:00 USP10.dll 0x73fa0000 C:\WINDOWS\system32\usp10.dll 1.0420.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Uniscribe Unicode script processor 2004-08-17 12:00:00 MSGINA.dll 0x758d0000 C:\WINDOWS\system32\msgina.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows NT Logon GINA DLL 2004-08-17 12:00:00 SHELL32.dll 0x7d590000 C:\WINDOWS\system32\shell32.dll 6.00.2900.2869 (xpsp_sp2_gdr.060316-1512) Microsoft Corporation Windows Shell Common Dll 2006-03-17 12:04:42 SHLWAPI.dll 0x77f40000 C:\WINDOWS\system32\shlwapi.dll 6.00.2900.2861 (xpsp_sp2_gdr.060303-1517) Microsoft Corporation Shell Light-weight Utility Library 2006-03-04 11:35:02 COMCTL32.dll 0x5d170000 C:\WINDOWS\system32\comctl32.dll 5.82 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Common Controls Library 2004-08-17 12:00:00 ODBC32.dll 0x73540000 C:\WINDOWS\system32\odbc32.dll 3.525.1117.0 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Microsoft Data Access - ODBC Driver Manager 2004-08-17 12:00:00 comdlg32.dll 0x76320000 C:\WINDOWS\system32\comdlg32.dll 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Common Dialogs DLL 2004-08-17 12:00:00 comctl32.dll 0x77180000 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll 6.0 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation User Experience Controls Library 2004-08-17 20:00:00 odbcint.dll 0x20000000 C:\WINDOWS\system32\odbcint.dll 3.525.1117.0 built by: (_sqlbld) Microsoft Corporation Microsoft Data Access - ODBC Resources 2004-08-17 12:00:00 SHSVCS.dll 0x76e10000 C:\WINDOWS\system32\shsvcs.dll 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows Shell Services Dll 2004-08-17 12:00:00 sfc.dll 0x76b80000 C:\WINDOWS\system32\sfc.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows File Protection 2004-08-17 12:00:00 sfc_os.dll 0x76c30000 C:\WINDOWS\system32\sfc_os.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows 文件保护 2004-08-17 12:00:00 ole32.dll 0x76990000 C:\WINDOWS\system32\ole32.dll 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528) Microsoft Corporation Microsoft OLE for Windows 2005-07-26 12:39:50 Apphelp.dll 0x76d70000 C:\WINDOWS\system32\apphelp.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Application Compatibility Client Library 2004-08-17 12:00:00 msctfime.ime 0x73640000 C:\WINDOWS\system32\MSCTFIME.IME 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Microsoft Text Frame Work Service IME 2004-08-17 12:00:00 WINSCARD.DLL 0x72360000 C:\WINDOWS\system32\winscard.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Microsoft Smart Card API 2004-08-17 12:00:00 WTSAPI32.dll 0x76f20000 C:\WINDOWS\system32\wtsapi32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows Terminal Server SDK APIs 2004-08-17 12:00:00 sxs.dll 0x75e00000 C:\WINDOWS\system32\sxs.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Fusion 2.5 2004-08-17 12:00:00 uxtheme.dll 0x5adc0000 C:\WINDOWS\system32\uxtheme.dll 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Microsoft UxTheme Library 2004-08-17 12:00:00 WINMM.dll 0x76b10000 C:\WINDOWS\system32\winmm.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation MCI API DLL 2004-08-17 12:00:00 cscdll.dll 0x76570000 C:\WINDOWS\system32\cscdll.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Offline Network Agent 2004-08-17 12:00:00 WlNotify.dll 0x758b0000 C:\WINDOWS\system32\wlnotify.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Common DLL to receive Winlogon notifications 2004-08-17 12:00:00 WINSPOOL.DRV 0x72f70000 C:\WINDOWS\system32\winspool.drv 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Corporation Windows Spooler Driver 2004-08-17 12:00:00
safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:

safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:	发表于： 2006-07-02 13:05 \| 只看楼主短消息资料字号：小中大 56楼不发了,我头好晕,再说,快10000字的进程啥时能发完?
safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:

safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:	发表于： 2006-07-02 13:13 \| 只看楼主短消息资料字号：小中大 57楼我无邪，吃完饭了吗？快来帮我呀！
safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:

mjp3616 快乐黄口狮帖子:225 注册: 2006-02-04 来自:	发表于： 2006-07-02 13:22 \| 短消息资料字号：小中大 58楼楼主辛苦了,有一个hijackthis或者sreng日志足以,何苦呢!
mjp3616 快乐黄口狮帖子:225 注册: 2006-02-04 来自:

safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:	发表于： 2006-07-02 13:42 \| 只看楼主短消息资料字号：小中大 59楼怕有的软件识别不出来。比如有一次，电脑也中了病毒，我无xie说了几个有问题的条目，其中还说了：XXXXXXXXXXXXXX和XXXXXXXXXXXXXXXXXXXXX有问题，用HJ看不到，到XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX网站……
safhsdyhfgdsagyg 初生襁褓狮帖子:510 注册: 2005-12-31 来自:

我无邪高贵耄耋狮帖子:20720 注册: 2004-06-10 来自:广西玉林	发表于： 2006-07-02 13:50 \| 短消息资料字号：小中大 60楼 rhfi 看不出问题了。
我无邪高贵耄耋狮帖子:20720 注册: 2004-06-10 来自:广西玉林

<<上一主题|下一主题>>

6 / 7 页

跳转页

页面顶部

Powered by Discuz!NT