瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 难题捆扰请高手出山!!!~~~~~~~~~~~~【求助】

1234   2  /  4  页   跳转

难题捆扰请高手出山!!!~~~~~~~~~~~~【求助】

收藏
灰飞
头像
拙长孩提狮
  • 帖子:95
  • 注册: 2005-09-25
  • 来自:
发表于: 2007-05-12 20:59 | 只看楼主 短消息 资料
字号: 11楼

<system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver / RTLE8023xp][Running/Manual Start]
  <system32\DRIVERS\Rtenicxp.sys><Realtek Semiconductor Corporation>
[S150SX8 / S150SX8][Running/Boot Start]
  <\SystemRoot\System32\BIRD\S150sx8.sys><Promise Technology, Inc.>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><N/A>
[SenFilt Service / SenFiltService][Running/Manual Start]
  <system32\drivers\Senfilt.sys><Sensaura>
[StarForce Protection Helper Driver / sfhlp01][Running/Boot Start]
  <\SystemRoot\System32\drivers\sfhlp01.sys><Protection Technology>
[SI3112 / SI3112][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\SI3112.sys><Silicon Image, Inc.>
[SI3112R / SI3112R][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\SI3112r.sys><Silicon Image, Inc>
[SI3114 / SI3114][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\SI3114.sys><Silicon Image, Inc.>
[SI3114R / SI3114R][Stopped/Boot Start]
  <\SystemRoot\SYSTEM32\BIRD\SI3114R.sys><Silicon Image, Inc>
[SI3114R5 / SI3114R5][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\Si3114r5.sys><Silicon Image, Inc>
[SI3124 / SI3124][Stopped/Boot Start]
  <\SystemRoot\SYSTEM32\BIRD\SI3124.sys><Silicon Image, Inc.>
[SI3124R / SI3124R][Stopped/Boot Start]
  <\SystemRoot\SYSTEM32\BIRD\SI3124R.sys><Silicon Image, Inc>
[SI3124R5 / SI3124R5][Stopped/Boot Start]
  <\SystemRoot\SYSTEM32\BIRD\Si3124r5.sys><Silicon Image, Inc>
[SI3132 / SI3132][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\SI3132.sys><Silicon Image, Inc.>
[SI3132R5 / SI3132R5][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\Si3132r5.sys><Silicon Image, Inc>
[SIS AGP Bus Filter / sisagp][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>
[SISRAID / SISRAID][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\SiSRaid.sys><Silicon Integrated Systems>
[SISRAID2 / SISRAID2][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\SiSRaid2.sys><Silicon Integrated Systems Corp>
[SISRAID4 / SISRAID4][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\SiSRaid4.sys><Silicon Integrated Systems>
[SPTRAK / SPTRAK][Running/Boot Start]
  <\SystemRoot\System32\BIRD\sptrak.sys><Promise Technology, Inc.>
[ST8350 / ST8350][Running/Boot Start]
  <\SystemRoot\System32\BIRD\st8350.sys><Promise Technology, Inc.>
[SYMMPI / SYMMPI][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\symmpi.sys><LSI Logic>
[sym_hi / sym_hi][Running/Boot Start]
  <\SystemRoot\System32\BIRD\sym_hi.sys><LSI Logic>
[sym_u3 / sym_u3][Running/Boot Start]
  <\SystemRoot\System32\BIRD\sym_u3.sys><LSI Logic>
[TwoTrack Compatible Device / TwoTrack][Stopped/Manual Start]
  <System32\DRIVERS\TwoTrack.sys><IBM Corporation>
[ULSATA / ULSATA][Running/Boot Start]
  <\SystemRoot\System32\BIRD\ulsata.sys><Promise Technology, Inc.>
[ULSATA2 / ULSATA2][Running/Boot Start]
  <\SystemRoot\System32\BIRD\ulsata2.sys><Promise Technology, Inc.>
[ULTIMA / ULTIMA][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\Ultima.sys><Aralion INC.>
[ULTIMARX / ULTIMARX][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\UltimaRX.sys><Aralion INC.>
[ultra / ultra][Running/Boot Start]
  <\SystemRoot\System32\BIRD\ultra.sys><Promise Technology, Inc.>
[VCD VNC Virtual Network Adapter / vcddev][Running/Manual Start]
  <system32\DRIVERS\vcdvnic.sys><VNN B.J.>
[VIAMRAID / VIAMRAID][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\viamraid.sys><VIA Technologies inc,.ltd>
[vmscsi / vmscsi][Stopped/Boot Start]
  <\SystemRoot\System32\bird\vmscsi.sys><VMware, Inc.>
[W2KADV / W2KADV][Stopped/Boot Start]
  <\SystemRoot\System32\BIRD\w2kadv.sys><ConnectCom Solutions, Inc.>
[World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
  <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
[VIMICRO USB PC Camera (ZC030X) / ZSMC303][Running/Manual Start]
  <System32\Drivers\usbVM303.sys><VM>

==================================
浏览器加载项
[启动迅雷]
  {0062C9BD-B349-40DE-91A0-755F37ACD559} <C:\Program Files\Thunder Network\Thunder\Thunder.exe, Thunder Networking Technologies,LTD>
[浩方对战平台]
  {0A155D3C-68E2-4215-A47A-E800A446447A} <D:\浩方\安装于此\浩方对战平台\GameClient.exe, 上海浩方在线信息技术有限公司>
[Messenger]
  {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, >
[iTrusPTA Class]
  {1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\pta.dll, >
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\Mshtml.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[Microsoft Office Control]
  {4453D895-F2A1-4A38-A285-1EF9BD3F6D5D} <C:\PROGRA~1\MICROS~2\OFFICE11\AUTHZAX.DLL, Microsoft Corporation>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\aliedit.dll, >
[Application Class]
  {4A94D373-EA05-4259-AD4F-D02462838F6B} <C:\WINDOWS\system32\SIPComp.dll, >
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Active Desktop Mover]
  {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[Microsoft Web 浏览器]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\Mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[上传到QQ网络硬盘]
  <C:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
  <C:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <C:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 736][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 800][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 824][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\WgaLogon.dll]  [Microsoft Corporation, 1.7.0018.5]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 868][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 880][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1040][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1108][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1268][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 268][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
gototop
 
灰飞
头像
拙长孩提狮
  • 帖子:95
  • 注册: 2005-09-25
  • 来自:
发表于: 2007-05-12 21:00 | 只看楼主 短消息 资料
字号: 12楼

[C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\Program Files\Media Player Classic\Codecs\mmfinfo.dll]  [N/A, ]
    [C:\Program Files\Media Player Classic\Codecs\mkunicode.dll]  [N/A, ]
    [C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll]  [Nero AG, 1.1.1.1]
    [C:\Program Files\Common Files\Ahead\Lib\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MFC71CHS.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\nvcpl.dll]  [NVIDIA Corporation, 6.14.10.9147]
    [C:\WINDOWS\system32\NVRSZHC.DLL]  [NVIDIA Corporation, 6.14.10.9147]
    [C:\WINDOWS\system32\nvapi.dll]  [N/A, ]
    [C:\WINDOWS\system32\nvshell.dll]  [, ]
    [F:\coredraw\安装于此\PROGRAMS\CdrIco.DLL]  [Corel Corporation, 1.0.0.525]
    [F:\coredraw\安装于此\PROGRAMS\CRLUTL.dll]  [Corel Corporation, 1.0.0.525]
    [F:\coredraw\安装于此\PROGRAMS\CRLI18N.dll]  [Corel Corporation, 1.0.0.525]
    [C:\WINDOWS\system32\MFC71U.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Tencent\QQ\qdshm.dll]  [, 1, 0, 101, 20]
    [C:\Program Files\Tencent\QQ\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
    [F:\瑞星\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
    [C:\WINDOWS\system32\RhinoShExt.dll]  [Robert McNeel & Associates, 1, 0, 0, 1]
    [C:\WINDOWS\system32\icm32.dll]  [Microsoft Corporation, 5.1.2600.2709 (xpsp_sp2_gdr.050628-1518)]
    [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll]  [Microsoft Corporation, 11.0.5510]
[PID: 340][f:\瑞星\瑞星防火墙\rising\rfw\RfwMain.exe]  [Beijing Rising Technology Co., Ltd., 5, 0, 0, 70]
    [f:\瑞星\瑞星防火墙\rising\rfw\RsGuiLib.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 33]
    [f:\瑞星\瑞星防火墙\rising\rfw\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
    [f:\瑞星\瑞星防火墙\rising\rfw\RfwCtrl.dll]  [Beijing Rising Technology Co., Ltd., 5, 0, 0, 11]
    [f:\瑞星\瑞星防火墙\rising\rfw\RsXML.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 2]
    [f:\瑞星\瑞星防火墙\rising\rfw\PngDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 576][C:\Program Files\Analog Devices\Core\smax4pnp.exe]  [Analog Devices, Inc., 6, 0, 0, 20]
    [C:\Program Files\Analog Devices\Core\SMWDMIF.dll]  [Analog Devices, Inc., 6, 0, 4000, 014]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 596][C:\Program Files\Rising\AntiSpyware\runiep.exe]  [Beijing Rising Technology Co., Ltd., 1, 0, 1, 6]
    [C:\Program Files\Rising\AntiSpyware\iep_ctrl.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 4]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 1200][C:\Program Files\Common Files\Real\Update_OB\realsched.exe]  [RealNetworks, Inc., 0.1.0.3510]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 1532][C:\WINDOWS\VM303_STI.EXE]  [Vimicro, 3, 5, 930, 9]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [C:\WINDOWS\system32\VM303Prp.Ax]  [Vimicro, 3.5.1229. 11]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 468][E:\supcode_041610\CalSprite\CalSprite.exe]  [SnowFox Studio., 1.5.4.54]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 544][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
[PID: 2540][F:\Photoshop CS 8.1原厂简体中文版\安装于此\Photoshop.exe]  [Adobe Systems, Incorporated, 8.0.1 (8.0x125)]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\UID.mr.dll]  [Adobe Systems, Inc., 1, 1, 0, 0]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\AWSCommonUI.dll]  [Adobe Systems, Incorporated, 3.0.0.432]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\AWSSCL.dll]  [Adobe Systems, 4.0.0.34]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\WebAccessUtils.dll]  [Adobe Systems, Incorporated, 3.0.0.432]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\BIBUtils.dll]  [Adobe Systems Incorporated, 1.00.0]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\Photoshop.dll]  [, ]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\PSViews.dll]  [Adobe Systems, Incorporated, 8.0.1 (8.0x125)]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\PSArt.dll]  [Adobe Systems, Incorporated, 8.0.1 (8.0x125)]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\asn.er.dll]  [Adobe Systems Incorporated, 1.51x3, EndUser, Release]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\增效工具\扩展\FastCore.8BX]  [Adobe Systems, Incorporated, 8.0.1 (8.0x126)]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\PLUGIN.dll]  [Adobe Systems, Incorporated, 8.0.1 (8.0x125)]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\增效工具\扩展\MMXCore.8BX]  [Adobe Systems, Incorporated, 8.0.1 (8.0x126)]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\增效工具\扩展\多处理器扩展功能.8BX]  [Adobe Systems, Incorporated, 8.0.1 (8.0x126)]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\Required\ADMPlugin.apl]  [Adobe Systems Incorporated, 2.84pe69a 02.06.17-00:03:36h]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\Required\PNGIcons.apl]  [Adobe Systems Incorporated, 1.21x7 2001.12.14-1602h.21s]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\Required\ASDataStream.apl]  [Adobe Systems Incorporated, 1.02x7 02.02.15-01:45:06h]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\增效工具\解析程序\PDF 增效工具.8BI]  [Adobe Systems, Incorporated, 8.0.1 (8.0x126)]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\BIB.dll]  [Adobe Systems Incorporated, 1.1.16]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\JP2KLib.dll]  [Adobe systems Incorporated, 1.0.28706]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\增效工具\文件格式\Camera Raw.8BI]  [Adobe Systems Incorporated, 2.0]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\ACE.dll]  [Adobe Systems Incorporated, 2.05.16]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\AGM.dll]  [Adobe Systems Incorporated, 4.12.36]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\CoolType.dll]  [Adobe Systems Incorporated, 4.14.20]
    [C:\WINDOWS\system32\ATMLIB.dll]  [Adobe Systems, 5.1 Build 226]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\AWSCommonSymbols.dll]  [Adobe Systems, Incorporated, 3.0.0.432]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\ARM.dll]  [Adobe Systems, Incorporated, 3.0.0.432]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\shfolder.dll]  [Microsoft Corporation, 5.50.4027.300]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\FileInfo.dll]  [Adobe Systems, Incorporated, 3.0.0.432]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\增效工具\Adobe Photoshop Only\自动\脚本支持.8li]  [Adobe Systems Incorporated, 8.0]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\ExtendScriptIDE.dll]  [Adobe Systems, Incorporated, 3.2.21]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\ExtendScript.dll]  [Adobe Systems, Incorporated, 3.2.21]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\ScCore.dll]  [Adobe Systems, Incorporated, 3.2.21]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\MSVCP60.dll]  [Microsoft Corporation, 6.00.8972.0]
    [F:\Photoshop CS 8.1原厂简体中文版\安装于此\Tw10122.dat]  [Adobe Systems, Incorporated, 8.0.1 (8.0x125)]
    [C:\Program Files\Media Player Classic\Codecs\mmfinfo.dll]  [N/A, ]
    [C:\Program Files\Media Player Classic\Codecs\mkunicode.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQ\qdshm.dll]  [, 1, 0, 101, 20]
    [C:\Program Files\Tencent\QQ\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
    [F:\瑞星\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
    [C:\WINDOWS\system32\RhinoShExt.dll]  [Robert McNeel & Associates, 1, 0, 0, 1]
    [C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll]  [Nero AG, 1.1.1.1]
    [C:\Program Files\Common Files\Ahead\Lib\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
gototop
 
灰飞
头像
拙长孩提狮
  • 帖子:95
  • 注册: 2005-09-25
  • 来自:
发表于: 2007-05-12 21:00 | 只看楼主 短消息 资料
字号: 13楼

[C:\WINDOWS\system32\MFC71CHS.DLL]  [Microsoft Corporation, 7.10.3077.0]
[PID: 3128][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll]  [Microsoft Corporation, 11.0.5510]
    [C:\Program Files\Media Player Classic\Codecs\mmfinfo.dll]  [N/A, ]
    [C:\Program Files\Media Player Classic\Codecs\mkunicode.dll]  [N/A, ]
    [C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll]  [Nero AG, 1.1.1.1]
    [C:\Program Files\Common Files\Ahead\Lib\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MFC71CHS.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx]  [Adobe Systems, Inc., 9,0,28,0]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2548][F:\千千静听\TTPlayer.exe]  [Alen Soft, 4, 6, 9, 0]
    [F:\千千静听\ttpcomm.dll]  [N/A, ]
    [F:\千千静听\ttpres.dll]  [Alen Soft, 4, 6, 9, 0]
    [F:\千千静听\msdmo.dll]  [Microsoft Corporation, 6.03.01.0400]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [F:\千千静听\AddIn\ttp_asf.dll]  [N/A, ]
    [F:\千千静听\AddIn\ttp_aac.dll]  [N/A, ]
    [F:\千千静听\AddIn\ttp_ac3dts.dll]  [N/A, ]
    [F:\千千静听\wmadmod.dll]  [Microsoft Corporation, 10.00.00.3646]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [F:\千千静听\AddIn\ttp_lrcsh.dll]  [N/A, ]
[PID: 1248][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll]  [Microsoft Corporation, 11.0.5510]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx]  [Adobe Systems, Inc., 9,0,28,0]
    [C:\Program Files\Media Player Classic\Codecs\mmfinfo.dll]  [N/A, ]
    [C:\Program Files\Media Player Classic\Codecs\mkunicode.dll]  [N/A, ]
    [C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll]  [Nero AG, 1.1.1.1]
    [C:\Program Files\Common Files\Ahead\Lib\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MFC71CHS.DLL]  [Microsoft Corporation, 7.10.3077.0]
[PID: 3644][C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sreng2.zip 的临时目录 2\SREng.EXE]  [Smallfrogs Studio, 2.4.12.806]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

==================================
文件关联
.TXT  Error. [C:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. ["hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================


[/CODE]
gototop
 
灰飞
头像
拙长孩提狮
  • 帖子:95
  • 注册: 2005-09-25
  • 来自:
发表于: 2007-05-12 21:34 | 只看楼主 短消息 资料
字号: 14楼

我发了张更清楚点的图片上来

附件附件:

下载次数:256
文件类型:application/octet-stream
文件大小:
上传时间:2007-5-12 21:34:30
描述:
gototop
 
紫墨蓝尘
头像
初生襁褓狮
  • 帖子:476
  • 注册: 2006-10-12
  • 来自:
发表于: 2007-05-12 21:37 | 短消息 资料
字号: 15楼

服务删除
[Shensxvcioss / Shensxvcioss][Stopped/Manual Start]
<C:\WINDOWS\system32\drivers\MSfd1.sys><N/A>
驱动删除
[bhaagjah / bhaagjah][Stopped/Boot Start]
<\SystemRoot\system32\drivers\bhaagjah.sys><N/A>

然后在安全模式点击开始菜单--选择附件----系统工具---磁盘清理,选择一个盘,进入把勾都打上然后“确定”每个盘来一次,绝大部分的垃圾就清理了。然后点开始菜单-->运行-->打上mrt然后点“确定”然后下一步……
gototop
 
紫墨蓝尘
头像
初生襁褓狮
  • 帖子:476
  • 注册: 2006-10-12
  • 来自:
发表于: 2007-05-12 21:37 | 短消息 资料
字号: 16楼

PS 对应的文件也删除
gototop
 
灰飞
头像
拙长孩提狮
  • 帖子:95
  • 注册: 2005-09-25
  • 来自:
发表于: 2007-05-12 22:00 | 只看楼主 短消息 资料
字号: 17楼

紫墨蓝尘 向你请教
服务删除和驱动删除是通过什么手段去删,是直接找到文件目录删除还是通过HijackThis.rar删除!!能不能把删除步骤做详细解释,谢谢!!!!!~~~~~~~~~~
gototop
 
ADL
头像
社区嘉宾
  • 帖子:21666
  • 注册: 2001-06-22
  • 来自:江湖
发表于: 2007-05-12 22:08 | 短消息 资料
字号: 18楼

处理方法:1、按图设置
         
          2、设置编码还不行的话,请把你的主题改为系统windows默认的主题,使用标准外观!

附件附件:

下载次数:199
文件类型:image/pjpeg
文件大小:
上传时间:2007-5-12 22:08:02
描述:
gototop
 
UFO不幸外人
头像
特邀体验者
  • 帖子:2592
  • 注册: 2006-11-26
  • 来自:火星
发表于: 2007-05-12 22:13 | 短消息 资料
字号: 19楼

哈哈,还是ADL强,图片都上来了
gototop
 
灰飞
头像
拙长孩提狮
  • 帖子:95
  • 注册: 2005-09-25
  • 来自:
发表于: 2007-05-12 22:30 | 只看楼主 短消息 资料
字号: 20楼

我按照你的步骤做了,方框还是没变成字体!也把windows改为经典了也不行!!郁闷啊,还有其他方法吗
gototop
 
<<上一主题|下一主题>>
1234   2  /  4  页   跳转
页面顶部
Powered by Discuz!NT