发表于: 2006-10-09 14:33 | 只看楼主 短消息 资料
字号: 1楼

病毒日志

浏览器加载项
[CdnForIE Class]
  {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <D:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[Vision]
  {6671A431-5C3D-463d-A7CF-5587F9B7E191} <D:\PROGRA~1\MMSASS~1\mmsass~1.dll, >
[Yahoo 3.5G电邮]
  {507F9113-CD77-4866-BA92-0E86DA3D0B97} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yahoomail, N/A>
[名品折扣]
  {59BC54A2-56B3-44a0-93E5-432D58746E26} <http://adtaobao.allyes.com/main/adfclick?db=adtaobao&bid=138,140,18&cid=816,8,1&sid=5042&show=ignore&url=http://www.taobao.com/vertical/mall/pro.php?allyesPara=816, N/A>
[CdnForIE Class]
  {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <D:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[雅虎助手]
  {5D73EE86-05F1-49ed-B850-E423120EC338} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yassist, N/A>
[雅虎WIDGET]
  {6354ABE6-05F1-49ed-B850-E423120EC338} <http://cn.widget.yahoo.com/index.htm?source=Cns, N/A>
[MMSAssistMenu]
  {6671A433-5C3D-463d-A7CF-5587F9B7E191} <D:\PROGRA~1\MMSASS~1\mmsass~1.dll, >
[情景聊天]
  {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yahoomsg, N/A>
[]
  {ECF2E268-F28C-48d2-9AB7-8F69C11CCB71} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=repair, N/A>
[]
  {FD00D911-7529-4084-9946-A29F1BDF4FE5} <http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=clean, N/A>
[金山毒霸在线产品升级]
  {52DF16E3-6C4F-4B22-8BAF-09263E463B48} <D:\PROGRA~1\KOS\KOSInit.ocx, 金山软件股份有限公司>
[>>彩信发送<<]
  <res://D:\PROGRA~1\MMSASS~1\mmsass~1.dll/mms.htm, N/A>
[添加到雅虎订阅(&Y)]
  <res://D:\Program Files\Yahoo!\Assistant\Assist\yrss.dll/YRSSMENUEXT, N/A>

==================================
正在运行的进程
[PID: 432][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 496][\??\D:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 520][\??\D:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [D:\WINDOWS\systemKey.DLL]  [N/A, N/A]
[PID: 564][D:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 576][D:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 752][D:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [D:\WINDOWS\System32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
    [D:\Program Files\Internet Explorer\PLUGINS\system2.sys]  [N/A, N/A]
    [D:\WINDOWS\systemKey.DLL]  [N/A, N/A]
    [D:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\34621005.dll]  [N/A, N/A]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\SysInfo.wmp]  [N/A, N/A]
[PID: 800][D:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [d:\windows\system32\acss.dll]  [LINKMEDIA Tech, 1, 5, 0, 4]
    [d:\windows\system32\nwsapagent.dll]  [LINKMEDIA Tech, 1, 5, 0, 4]
    [D:\WINDOWS\System32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
[PID: 896][D:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 924][D:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 968][D:\Program Files\Rising\Rav\CCenter.exe]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3]
[PID: 1348][D:\WINDOWS\system32\clipsvr.exe]  [Microsoft Corporation, 5, 2, 3790, 0]
[PID: 1384][D:\WINDOWS\System32\rundll32.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [D:\PROGRA~1\MMSASS~1\MMSSVER.DLL]  [, 1, 2, 0, 6]
    [D:\WINDOWS\systemKey.DLL]  [N/A, N/A]
[PID: 1416][D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  [Microsoft Corporation, 7.00.9466]
    [D:\WINDOWS\systemKey.DLL]  [N/A, N/A]
[PID: 1528][D:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [D:\PROGRA~1\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 0, 0, 6]
    [D:\PROGRA~1\MMSASS~1\mmsass~1.dll]  [, 1, 2, 0, 6]
    [D:\WINDOWS\System32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
    [D:\WINDOWS\System32\Macromed\Flash\Flash8b.ocx]  [Macromedia, Inc., 8,0,24,0]
    [D:\WINDOWS\systemKey.DLL]  [N/A, N/A]
    [c:\viDll.dll]  [N/A, N/A]
[PID: 1532][D:\WINDOWS\System32\nvsvc32.exe]  [NVIDIA Corporation, 6.14.10.4523]
    [D:\WINDOWS\systemKey.DLL]  [N/A, N/A]
[PID: 1568][D:\Program Files\Rising\Rav\RavService.exe]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 43]
    [D:\Program Files\Rising\Rav\DLCenter.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 27]
    [D:\Program Files\Rising\Rav\RsCommX.dll]  [rising, 18, 0, 0, 1]
    [D:\WINDOWS\System32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
[PID: 1828][D:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1972][D:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [D:\WINDOWS\systemKey.DLL]  [N/A, N/A]
[PID: 336][D:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [D:\Program Files\CNNIC\Cdn\cdndet.dll]  [CNNIC, 2, 4, 0, 3]
    [D:\Program Files\CNNIC\Cdn\imaoe.dll]  [CNNIC, 2, 2, 0, 1]
    [D:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 0, 0, 6]
    [D:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  [Yahoo! China, 3, 1, 1, 1017]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\SysInfo.wmp]  [N/A, N/A]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\34621005.dll]  [N/A, N/A]
    [D:\WINDOWS\System32\myztr.dll]  [N/A, N/A]
    [D:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [D:\WINDOWS\downlo~1\CnsMin.dll]  [北京三七二一科技有限公司, 1, 5, 3, 9]
    [D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  [Yahoo! China, 3, 0, 2, 1020]
    [D:\WINDOWS\systemKey.DLL]  [N/A, N/A]
    [D:\Program Files\Internet Explorer\PLUGINS\system2.sys]  [N/A, N/A]
    [D:\WINDOWS\System32\cdnns.dll]  [CNNIC, 2, 0, 0, 0]
    [D:\WINDOWS\System32\nmhxy.dll]  [N/A, N/A]
    [D:\WINDOWS\System32\mywow.dll]  [N/A, N/A]
    [D:\PROGRA~1\Yahoo!\ASSIST~1\assist\yclickon.dll]  [YAHOO Corporation Limited, 3, 0, 0, 1001]
最后编辑2006-10-09 14:33:37.763000000