【求助】几个瑞星杀了重启还有的病毒！跪求解决（带扫描日志） - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛【求助】几个瑞星杀了重启还有的病毒！跪求解决（带扫描日志）

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

12

1 / 2 页

跳转页

【求助】几个瑞星杀了重启还有的病毒！跪求解决（带扫描日志）

流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:	发表于： 2007-02-01 23:09 \| 只看楼主短消息资料字号：小中大 1楼【求助】几个瑞星杀了重启还有的病毒！跪求解决（带扫描日志） [CODE] 2007-01-29,02:47:30 System Repair Engineer 2.3.13.690 Smallfrogs (http://www.KZTechs.com) Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能以下内容被选中：所有的启动项目（包括注册表、启动文件夹、服务等）浏览器加载项正在运行的进程（包括进程模块信息）文件关联 Winsock 提供者 Autorun.inf HOSTS 文件启动项目注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Corporation] <MSMSGS><"C:\Program Files\Messenger\msmsgs.exe" /background> [(Verified) Microsoft Corporation] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Corporation] <SoundMAXPnP><C:\Program Files\Analog Devices\Core\smax4pnp.exe> [(Verified) Analog Devices, Inc.] <ccApp><"C:\Program Files\Common Files\Symantec Shared\ccApp.exe"> [(Verified)Symantec Corporation] <vptray><C:\PROGRA~1\SYMANT~1\VPTray.exe> [(Verified)Symantec Corporation] <QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Computer, Inc.] <AccChecker><"C:\AccChecker\AccChecker.EXE" -s> [] <360Safetray><D:\应用软件\杂项\新建文件夹 (2)\360safe\safemon\360Tray.exe /start> [奇虎网] <runeip><C:\Program Files\Rising\AntiSpyware\runiep.exe> [Beijing Rising Technology Co., Ltd.] <KernelFaultCheck><%systemroot%\system32\dumprep 0 -k> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <shell><Explorer.exe> [(Verified)Microsoft Corporation] <Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Corporation] <UIHost><logonui.exe> [(Verified)Microsoft Corporation] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] <WinlogonNotify: igfxcui><igfxdev.dll> [(Verified)Intel Corporation] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon] <WinlogonNotify: NavLogon><C:\WINDOWS\system32\NavLogon.dll> [(Verified) Symantec Corporation] ================================== 启动文件夹 [Microsoft Office] <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Microsoft Office.lnk --> C:\PROGRA~1\MICROS~2\Office10\OSA.EXE [Microsoft Corporation] ><N> ================================== 服务 [Symantec Event Manager / ccEvtMgr][Running/Auto Start] <"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation> [Symantec Password Validation / ccPwdSvc][Stopped/Manual Start] <"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"><Symantec Corporation> [Symantec Settings Manager / ccSetMgr][Running/Auto Start] <"C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"><Symantec Corporation> [Indexing Data / DATEING][Stopped/Auto Start] <C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32 \WBEM\SMTPCONFS.DLL,Export 1087><N/A> [Symantec AntiVirus Definition Watcher / DefWatch][Running/Auto Start] <"C:\Program Files\Symantec AntiVirus\DefWatch.exe"><Symantec Corporation> [Human Interface Device Access / HidServ][Stopped/Disabled] <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32 \hidserv.dll><N/A> [InstallDriver Table Manager / IDriverT][Stopped/Manual Start] <"C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32 \IDriverT.exe"><Macrovision Corporation> [Application Accelerator / License][Stopped/Auto Start] <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32 \jgtal.dll><N/A> [Windows NetWork Management / NvCore][Stopped/Auto Start] <C:\WINDOWS\system32\Rundll.exe><N/A> [SavRoam / SavRoam][Stopped/Manual Start] <"C:\Program Files\Symantec AntiVirus\SavRoam.exe"><symantec> [Symantec Network Drivers Service / SNDSrvc][Stopped/Manual Start] <"C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"><Symantec Corporation> [Symantec AntiVirus / Symantec AntiVirus][Running/Auto Start] <"C:\Program Files\Symantec AntiVirus\Rtvscan.exe"><Symantec Corporation> ================================== 驱动程序 [972062 / 972062][Running/Boot Start] <\SystemRoot\System32\drivers\972062.sys><N/A> [Broadcom NetXtreme 57xx Gigabit Controller / b57w2k][Running/Manual Start] <system32\DRIVERS\b57xp32.sys><Broadcom Corporation> [bbfjgjjj / bbfjgjjj][Stopped/Boot Start] <\SystemRoot\system32\drivers\bbfjgjjj.sys><N/A> [D-Link DFE-530TX PCI Fast Ethernet Adapter Driver Service / FETNDISB] [Running/Manual Start] <system32\DRIVERS\dlkfet5b.sys><D-Link> [fsyuuhiz / fsyuuhiz][Stopped/Boot Start] <\SystemRoot\System32\DRIVERS\fsyuuhiz.sys><N/A> [gtepms6 / gtepms66][Running/Boot Start] <\SystemRoot\System32\DRIVERS\gtepms66.sys><N/A> [hvga / hvgap][Running/Boot Start] <\SystemRoot\System32\DRIVERS\hvgap.sys><N/A> [ialm / ialm][Running/Manual Start] <system32\DRIVERS\ialmnt5.sys><Intel Corporation> [kmsinput / kmsinput][Stopped/Manual Start] <\??\C:\WINDOWS\system32\drivers\kmsinput.sys><N/A> [msqmx / msqmx][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\msqmx.sys><N/A> [NAVENG / NAVENG][Running/Manual Start] <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070124.024\naveng.sys><Symantec Corporation> [NAVEX15 / NAVEX15][Running/Manual Start] <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070124.024 \navex15.sys><Symantec Corporation> [npkcrypt / npkcrypt][Running/Auto Start] <\??\D:\应用软件\杂项\QQ\npkcrypt.sys><INCA Internet Co., Ltd.> [npkcusb / npkcusb][Running/Auto Start] <\??\C:\WINDOWS\system32\qqedit\npkcusb.sys><INCA Internet Co., Ltd.> [nv / nv][Stopped/Manual Start] <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation> [povrkboj / povrkboj][Running/Boot Start] <\SystemRoot\System32\DRIVERS\povrkboj.sys><Yahoo! China Corporation> [Direct Parallel Link Driver / Ptilink][Running/Manual Start] <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.> [RsAntiSpyware / RsAntiSpyware][Stopped/Disabled] <\SystemRoot\system32\drivers\RsBoot.sys><Beijing Rising> [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139] [Stopped/Manual Start] <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation> [SAVRT / SAVRT][Running/System Start] <\??\C:\Program Files\Symantec AntiVirus\savrt.sys><Symantec Corporation> [SAVRTPEL / SAVRTPEL][Running/Auto Start] <\??\C:\Program Files\Symantec AntiVirus\Savrtpel.sys><Symantec Corporation> [Secdrv / Secdrv][Stopped/Manual Start] <system32\DRIVERS\secdrv.sys><N/A> [senfilt / senfilt][Running/Manual Start] <system32\drivers\senfilt.sys><Creative Technology Ltd.> [smwdm / smwdm][Running/Manual Start] <system32\drivers\smwdm.sys><Analog Devices, Inc.> [Sony USB Filter Driver (SONYPVU1) / SONYPVU1][Stopped/Manual Start] <system32\DRIVERS\SONYPVU1.SYS><Sony Corporation> [SymEvent / SymEvent][Running/Manual Start] <\??\C:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation> [SYMREDRV / SYMREDRV][Running/Manual Start] <\SystemRoot\System32\Drivers\SYMREDRV.SYS><Symantec Corporation> [SYMTDI / SYMTDI][Running/System Start] <\SystemRoot\System32\Drivers\SYMTDI.SYS><Symantec Corporation> ================================== 2007-02-07 05:39:06
流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:	分享到：

流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:	发表于： 2007-02-01 23:10 \| 只看楼主短消息资料字号：小中大 2楼浏览器加载项 [BDCXFMCNUICQJ] {9B597943-DB8E-4551-9EC1-79EA2ACCE9A8} <C:\WINDOWS\system32\EOXMUSNCLSW.DLL, N/A> [NavigatMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <D:\应用软件\杂项\新建文件夹 (2) \360safe\safemon\safemon.dll, > [QQ] {c95fe080-8f5d-11d2-a20b-00aa003c157b} <D:\应用软件\杂项\QQ\QQ.EXE, TENCENT> [GUpdate Class] {3C38DEE8-BE1A-4DEC-B232-2C78706CC7EA} <C:\WINDOWS\Downloaded Program Files\gupdate.dll, N/A> [金山毒霸在线产品升级] {52DF16E3-6C4F-4B22-8BAF-09263E463B48} <C:\WINDOWS\system32 \kingsoft\KOS\KOSInit.ocx, 金山软件股份有限公司> [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32 \Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.> [CPasswordEditCtrl Object] {E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\WINDOWS\system32 \qqedit\qqedit.dll, 腾讯科技（深圳）有限公司> [Windows Media Player] {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation> [HTML Document] {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\Mshtml.dll, N/A> [Windows Media Player] {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation> [AxInputControl Class] {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\DOWNLO~1\INPUTC~1.DLL, > [Microsoft Web 浏览器] {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation> [AxSubmitControl Class] {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\DOWNLO~1\SUBMIT~1.DLL, > [BDCXFMCNUICQJ] {9B597943-DB8E-4551-9EC1-79EA2ACCE9A8} <C:\WINDOWS\system32\EOXMUSNCLSW.DLL, N/A> [Microsoft Scriptlet Component] {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\Mshtml.dll, Microsoft Corporation> [NavigatMon Class] {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <D:\应用软件\杂项\新建文件夹 (2) \360safe\safemon\safemon.dll, > [RDS.DataSpace] {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation> [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32 \Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.> [Rising Web Scan Object] {E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <C:\WINDOWS\Downloaded Program Files\OL2005.dll, Beijing Rising Technology Co., Ltd.> [上传到QQ网络硬盘] <D:\应用软件\杂项\QQ\AddToNetDisk.htm, N/A> [添加到QQ自定义面板] <D:\应用软件\杂项\QQ\AddPanel.htm, N/A> [添加到QQ表情] <D:\应用软件\杂项\QQ\AddEmotion.htm, N/A> [用QQ彩信发送该图片] <D:\应用软件\杂项\QQ\SendMMS.htm, N/A> ================================== 正在运行的进程 [PID: 1260][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1312][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1336][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\NavLogon.dll] [Symantec Corporation, 9.0.0.338] [PID: 1380][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1392][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1556][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1648][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1772][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\System32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1896][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 2000][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 180][C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe] [Symantec Corporation, 2.2.0.577] [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll] [Symantec Corporation, 2.2.0.577] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll] [Symantec Corporation, 2.2.0.577] [PID: 204][C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe] [Symantec Corporation, 2.2.0.577] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll] [Symantec Corporation, 2.2.0.577] [C:\PROGRA~1\COMMON~1\SYMANT~1\CCSETEVT.DLL] [Symantec Corporation, 2.2.0.577] [PID: 460][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\jDocPrc.dll] [N/A, N/A] [C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\rasddui.dll] [Microsoft Corporation, 4.00] [PID: 680][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\shell16.dll] [, 1, 0, 2005, 100] [C:\WINDOWS\system32\gvvzf.dll] [N/A, N/A] [C:\WINDOWS\system32\svohost.dll] [, 2, 0, 2006, 113] [C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8] [C:\Program Files\WinRAR\rarext.dll] [N/A, N/A] [C:\Program Files\Common Files\Symantec Shared\SSC\vpshell2.dll] [Symantec Corporation, 9.0.0.338] [D:\应用软件\杂项\新建文件夹 (2)\360safe\safemon\safemon.dll] [, 1, 0, 0, 1002] [PID: 868][C:\Program Files\Analog Devices\Core\smax4pnp.exe] [Analog Devices, Inc., 5, 2, 0, 5] [C:\Program Files\Analog Devices\Core\SMWDMIF.dll] [Analog Devices, Inc., 5, 2, 3, 000] [C:\WINDOWS\system32\EDCrypt.DLL] [Analog Devices Incorporated, 1.0.0.8] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8] [PID: 924][C:\Program Files\Common Files\Symantec Shared\ccApp.exe] [Symantec Corporation, 2.2.0.577] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll] [Symantec Corporation, 2.2.0.577] [C:\Program Files\Symantec\LiveUpdate\ProductRegCom.DLL] [Symantec Corporation, 2.0.39.0] [C:\Program Files\Symantec\LiveUpdate\LuComServerPS.DLL] [Symantec Corporation, 2.0.39.0] [C:\PROGRA~1\COMMON~1\SYMANT~1\CCALERT.DLL] [Symantec Corporation, 2.2.0.577] [C:\PROGRA~1\COMMON~1\SYMANT~1\CCEMLPXY.DLL] [Symantec Corporation, 2.2.0.577] [C:\WINDOWS\system32\SYMREDIR.dll] [Symantec Corporation, 5.3.0.46] [C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll] [Symantec Corporation, 2.2.0.577] [C:\Program Files\Symantec AntiVirus\SavEmail.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Common Files\Symantec Shared\ccProSub.dll] [Symantec Corporation, 2.2.0.577] [C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8] [PID: 964][C:\PROGRA~1\SYMANT~1\VPTray.exe] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL] [Symantec Corporation, 9.3.0.28] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Symantec AntiVirus\Cliscan.dll] [Symantec Corporation, 9.0.0.338] [C:\PROGRA~1\SYMANT~1\NAVNTUTL.DLL] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\Cliproxy.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8] [PID: 1280][C:\Program Files\Rising\AntiSpyware\runiep.exe] [Beijing Rising Technology Co., Ltd., 1, 0, 1, 6] [C:\Program Files\Rising\AntiSpyware\iep_ctrl.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 4] [C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1308][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8] [PID: 1600][C:\Program Files\Messenger\msmsgs.exe] [Microsoft Corporation, 4.7.3001]
流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:

流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:	发表于： 2007-02-01 23:11 \| 只看楼主短消息资料字号：小中大 3楼 [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8] [PID: 1704][C:\Program Files\Symantec AntiVirus\DefWatch.exe] [Symantec Corporation, 9.0.0.338] [PID: 1860][C:\Program Files\Symantec AntiVirus\Rtvscan.exe] [Symantec Corporation, 9.0.0.338] [C:\WINDOWS\system32\CBA.DLL] [Intel? Corporation, 6.12.0.112 E] [C:\WINDOWS\system32\MsgSys.dll] [Intel? Corporation, 6.12.0.112 E] [C:\WINDOWS\system32\NTS.dll] [Intel? Corporation, 6.12.0.112 E] [C:\WINDOWS\system32\PDS.DLL] [Intel? Corporation, 6.12.0.112 E] [C:\Program Files\Symantec AntiVirus\NAVLU.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\I2ldvp3.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\ecmldr32.DLL] [Symantec Corp., 1.1.0.3] [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL] [Symantec Corporation, 9.3.0.28] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Symantec AntiVirus\NAVNTUTL.DLL] [Symantec Corporation, 9.0.0.338] [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070124.024\ecmsvr32.dll] [Symantec Corporation, 71.1.0.11] [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070124.024\NAVEX32a.DLL] [Symantec Corporation, 20071.1.0.15] [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070124.024\NAVENG32.DLL] [Symantec Corporation, 20071.1.0.15] [C:\Program Files\Symantec AntiVirus\IMail.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\NotesExt.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\vpmsece.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Common Files\Symantec Shared\SSC\scandlgs.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\DecSDK.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2ID.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2ZIP.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2SS.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2GZIP.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2CAB.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2LHA.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2ARJ.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2TNEF.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2LZ.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2AMG.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2TAR.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2RTF.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2Text.dll] [Symantec Corporation, 3.02.11.32] [PID: 856][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)] [PID: 2288][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\System32\UxTheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 3460][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\shell16.dll] [, 1, 0, 2005, 100] [D:\应用软件\杂项\新建文件夹 (2)\360safe\safemon\safemon.dll] [, 1, 0, 0, 1002] [C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8] [C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx] [Adobe Systems, Inc., 9,0,28,0] [PID: 3140][C:\Program Files\WinRAR\WinRAR.exe] [N/A, N/A] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\shell16.dll] [, 1, 0, 2005, 100] [C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8] [PID: 3240][C:\DOCUME~1\xychen\LOCALS~1\Temp\Rar$EX00.015\SREng.EXE] [Smallfrogs Studio, 2.3.13.690] [C:\WINDOWS\system32\uxtheme.dll] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Rising\AntiSpyware\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 8] ================================== 文件关联 .TXT Error. [C:\WINDOWS\notepad.exe %1] .EXE OK. ["%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM Error. ["hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ================================== API HOOK N/A
流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:

流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:	发表于： 2007-02-01 23:15 \| 只看楼主短消息资料字号：小中大 4楼图上是瑞星杀出的几个病毒项，跪求解决啊！附件: 文件名:835044200721230553.bmp 下载次数:269 文件类型:application/octet-stream 文件大小: 上传时间:2007-2-1 23:15:10 描述:
流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:

水果硬糖初生襁褓狮帖子:109 注册: 2007-01-19 来自:	发表于： 2007-02-01 23:27 \| 短消息资料字号：小中大 5楼 <C:\WINDOWS\system32\NavLogon.d应该不是威金额... 按路径删 <"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"> <"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"> 这些进程有问题 [PID: 1260][\SystemRoot\System32\smss.exe] [C:\WINDOWS\system32\shell16.dll] 你扫日志时似乎开了太多进程..我已经眼花缭乱了,我就会着么些..希望能帮上你一点忙...
水果硬糖初生襁褓狮帖子:109 注册: 2007-01-19 来自:

水果硬糖初生襁褓狮帖子:109 注册: 2007-01-19 来自:	发表于： 2007-02-01 23:30 \| 短消息资料字号：小中大 6楼对了,去C盘WINDOWS\System32\drivers里面把所有的.exe文件都删了,一个也别留!
水果硬糖初生襁褓狮帖子:109 注册: 2007-01-19 来自:

newcenturymoon 社区嘉宾帖子:15158 注册: 2005-08-03 来自:	发表于： 2007-02-01 23:49 \| 短消息资料字号：小中大 7楼 ][\SystemRoot\System32\smss.exe] 汗正常的
newcenturymoon 社区嘉宾帖子:15158 注册: 2005-08-03 来自:

newcenturymoon 社区嘉宾帖子:15158 注册: 2005-08-03 来自:	发表于： 2007-02-01 23:50 \| 短消息资料字号：小中大 8楼 C:\WINDOWS\system32\Rundll.exe :\WINDOWS\system32\jgtal.dll C:\WINDOWS\SYSTEM32\WBEM\SMTPCONFS.DLL有问题
newcenturymoon 社区嘉宾帖子:15158 注册: 2005-08-03 来自:

流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:	发表于： 2007-02-04 20:51 \| 只看楼主短消息资料字号：小中大 9楼各为大虾。谁能告诉我个解决方法啊？
流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:

流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:	发表于： 2007-02-07 05:24 \| 只看楼主短消息资料字号：小中大 10楼各为大虾。谁能告诉我个解决方法啊？
流水菜鸟初生襁褓狮帖子:14 注册: 2007-02-01 来自:

<<上一主题|下一主题>>

12

1 / 2 页

跳转页

页面顶部

Powered by Discuz!NT