完了完了，被黄色网站骚扰，全家人都没法上网了。（附日志） - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛完了完了，被黄色网站骚扰，全家人都没法上网了。（附日志）

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

完了完了，被黄色网站骚扰，全家人都没法上网了。（附日志）

sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:	发表于： 2007-03-31 20:38 \| 只看楼主短消息资料字号：小中大 1楼完了完了，被黄色网站骚扰，全家人都没法上网了。（附日志） IE总是自动弹出http://88.dymm8.net/和http://kk.vcd789.net/　黄色网站不信你试试，快给我想个办法吧？ [CODE] 2007-03-27,23:01:43 System Repair Engineer 2.4.12.806 Smallfrogs (http://www.KZTechs.com) Windows XP Professional Service Pack 1 (Build 2600) - 管理权限用户 - 完整功能以下内容被选中：所有的启动项目（包括注册表、启动文件夹、服务等）浏览器加载项正在运行的进程（包括进程模块信息）文件关联 Winsock 提供者 Autorun.inf HOSTS 文件启动项目注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] <ctfmon.exe><C:\WINDOWS\System32\ctfmon.exe> [(Verified)Microsoft Windows XP Publisher] <6vbebzsry287h><C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\rundl132.exe> [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] <333><C:\Syswm1h\svchost.exe> [] <66><C:\SysDayN6\svchost.exe> [] <tx><C:\SysTx1\svchost.exe> [] <4><C:\SysWsj6\svchost.exe> [] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] <load><> [N/A] <run><> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <RavTask><"e:\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.] <stup.exe><C:\PROGRA~1\TENCENT\Adplus\stup.exe> [Tencent] <WangWang><"F:\淘宝网\淘宝旺旺\WangWang.EXE"> [淘宝（中国）软件有限公司] <CertificateRegistration><SafeSignCertReg.exe> [A.E.T. Europe B.V.] <RegNetPass><C:\WINDOWS\System32\regcsp.exe> [] <gemstrmw><C:\WINDOWS\System32\gemstrmw.exe /r> [Gemplus] <jfproc><F:\魔兽世界\ppfilm\jfCacheMgr.exe> [N/A] <upxdnd><C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\upxdnd.exe> [] <winform><C:\WINDOWS\winform.exe> [] <mppds><C:\WINDOWS\mppds.exe> [] <realplayer><C:\Program Files\WindowsUpdate\6.exe> [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] <KKDelay><C:\Program Files\Rising\KakaToolBar\RunOnce.exe> [Beijing Rising Technology Co., Ltd.] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices] <SystemRunOn><C:\WINDOWS\system32\sysconfig.exe> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <shell><Explorer.exe wuaucll.exe> [] <Userinit><userinit.exe,> [(Verified)Microsoft Windows XP Publisher] <UIHost><logonui.exe> [(Verified)Microsoft Windows XP Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINDOWS\system32\RavExt.dll> [Beijing Rising Technology Co., Ltd.] <{754FB7D8-B8FE-4810-B363-A788CD060F1F}><C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys> [N/A] <{99F1D023-7CEB-4586-80F7-BB1A98DB7602}><C:\Program Files\Internet Explorer\IEXPLORE.Sys> [] <{FEB94F5A-69F3-4645-8C2B-9E71D270AF2E}><C:\Program Files\Internet Explorer\IEXPLORE.Dat> [] <{923509F1-45CB-4EC0-BDE0-1DED35B8FD60}><C:\Program Files\Internet Explorer\IEXPLORE.win> [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <ATIModeChange><; Ati2mdxx.exe> [ATI Technologies, Inc.] <Cmaudio><; RunDll32 cmicnfg.cpl,CMICtrlWnd> [N/A] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <ctfmon.exe><; C:\WINDOWS\System32\ctfmon.exe> [(Verified)Microsoft Windows XP Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <DSLAGENTEXE><; dslagent.exe> [N/A] <FixCamera><; C:\WINDOWS\FixCamera.exe> [N/A] <GSICONEXE><; gsicon.exe> [N/A] <IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Windows XP Publisher] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <MsnMsgr><; "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <PHIME2002A><; C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName> [(Verified)Microsoft Windows XP Publisher] <PHIME2002ASync><; C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Windows XP Publisher] <RfwMain><; "C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.] <runeip><; C:\Program Files\Rising\KakaToolBar\runiep.exe> [Beijing Rising Technology Co., Ltd.] <snp2std><; C:\WINDOWS\vsnp2std.exe> [Sonix] <SoundMan><; SOUNDMAN.EXE> [Realtek Semiconductor Corp.] <stup.exe><; C:\PROGRA~1\TENCENT\Adplus\stup.exe> [Tencent] <SystemRun><; http://www.sooe.cn> [N/A] <Thunder><; "E:\迅雷5\Thunder.exe" /s> [Thunder Networking Technologies,LTD] <TkBellExe><; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [N/A] 2007-04-01 11:51:01
sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:	分享到：

sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:	发表于： 2007-03-31 20:39 \| 只看楼主短消息资料字号：小中大 2楼 ================================== 启动文件夹 [QQ游戏启动加速程序] <C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\QQ游戏启动加速程序.lnk --> D:\Tencent\QQ2004\QQGame\Accel.exe [深圳市腾讯计算机系统有限公司]><N> ================================== 服务 [ASP.NET State Service / aspnet_state][Stopped/Manual Start] <C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation> [Canon Camera Access Library 8 / CCALib8][Running/Auto Start] <C:\Program Files\Canon\CAL\CALMAIN.exe><Canon Inc.> [Human Interface Device Access / HidServ][Stopped/Disabled] <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A> [Rising Proxy Service / RfwProxySrv][Stopped/Manual Start] <c:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.> [Rising Personal Firewall Service / RfwService][Running/Auto Start] <c:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.> [Rising Process Communication Center / RsCCenter][Running/Auto Start] <"e:\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.> [Rising RealTime Monitor / RsRavMon][Running/Auto Start] <"e:\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.> [Portable Media Serial Number Service / WmdmPmSN][Stopped/Manual Start] <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\System32\MsPMSNSv.dll><Microsoft Corporation> ================================== 驱动程序 [521015 / 521015][Running/Boot Start] <\SystemRoot\System32\drivers\521015.sys><N/A> [ADProt / ADProt][Stopped/Boot Start] <\SystemRoot\system32\drivers\ADProt.sys><N/A> [Service for WDM 3D Audio Driver / ALCXSENS][Running/Manual Start] <system32\drivers\ALCXSENS.SYS><Sensaura Ltd> [Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start] <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.> [ati2mtag / ati2mtag][Running/Manual Start] <System32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.> [Rising TDI Base Driver / BaseTDI][Running/Auto Start] <System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.> [basic2 / basic2][Running/Manual Start] <System32\DRIVERS\HSF_BSC2.sys><Conexant> [C-Media WDM Audio Interface / cmuda][Stopped/Manual Start] <system32\drivers\cmuda.sys><C-Media Inc> [ExpScaner / ExpScaner][Running/Auto Start] <\??\e:\Rising\Rav\ExpScan.sys><> [Fallback / Fallback][Running/Auto Start] <System32\DRIVERS\HSF_FALL.sys><Conexant> [Fsks / Fsks][Running/Auto Start] <System32\DRIVERS\HSF_FSKS.sys><Conexant> [usb Card Device / ft2kEnum][Running/Manual Start] <System32\DRIVERS\ic2kenum.sys><OEM Corporation> [USB Chip Holder Service / GDBaseSmc][Running/Manual Start] <System32\DRIVERS\Chip_smc.sys><OEM> [USB Chip Service / GD_USB][Stopped/Manual Start] <System32\DRIVERS\Chip_usb.sys><> [GKeyUSB / GKeyUSB][Stopped/Manual Start] <System32\Drivers\GKeyUSB.sys><Gemplus> [GOOD05 / GOOD05][Stopped/Manual Start] <\??\C:\WINDOWS\System32\k6vd8xk.sys><N/A> [HookCont / HookCont][Running/Auto Start] <\??\e:\Rising\Rav\HOOKCONT.sys><Rising> [HookReg / HookReg][Running/Auto Start] <\??\e:\Rising\Rav\HookReg.sys><> [HookSys / HookSys][Running/Auto Start] <\??\e:\Rising\Rav\HookSys.sys><Rising> [HookUrl / HookUrl][Running/Auto Start] <\??\C:\Program Files\Rising\Rfw\HookUrl.sys><Beijing Rising Technology Co., Ltd.> [hsf_msft / hsf_msft][Running/Manual Start] <System32\DRIVERS\HSF_MSFT.sys><Conexant> [K56 / K56][Running/Auto Start] <System32\DRIVERS\HSF_K56K.sys><Conexant> [kmsinput / kmsinput][Stopped/Manual Start] <\??\C:\WINDOWS\System32\drivers\kmsinput.sys><N/A> [MEMSCAN / MEMSCAN][Running/Auto Start] <\??\e:\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司> [mProcRs / mProcRs][Running/Auto Start] <\??\c:\program files\rising\rfw\mProcRs.sys><Beijing Rising Technology Co., Ltd.> [npkcrypt / npkcrypt][Running/Auto Start] <\??\D:\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.> [npkycryp / npkycryp][Stopped/Manual Start] <\??\D:\Tencent\QQ\npkycryp.sys><N/A> [Direct Parallel Link Driver / Ptilink][Running/Manual Start] <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.> [SmartCard Reader Device / Reader_Device][Running/Manual Start] <System32\DRIVERS\usbic2k.sys><OEM> [Rksample / Rksample][Running/Manual Start] <System32\DRIVERS\HSF_SAMP.sys><Conexant> [RsAntiSpyware / RsAntiSpyware][Running/Boot Start] <\SystemRoot\System32\drivers\RsBoot.sys><Beijing Rising> [RsFwDrv / RsFwDrv][Running/Auto Start] <\??\C:\Program Files\Rising\Rfw\RsFwDrv.sys><Beijing Rising Technology Co., Ltd.> [RsNTGDI / RsNTGDI][Running/Boot Start] <\SystemRoot\System32\Drivers\RsNTGdi.sys><Beijing Rising Technology Co., Ltd.> [RSPPSYS / RSPPSYS][Running/Auto Start] <\??\e:\Rising\Rav\RSPPSYS.sys><Rising> [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start] <System32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation> [Secdrv / Secdrv][Stopped/Manual Start] <System32\DRIVERS\secdrv.sys><N/A> [USB2.0 PC Camera (SNP2STD) / SNP2STD][Running/Manual Start] <System32\DRIVERS\snp2sxp.sys><> [SoftFax / SoftFax][Running/Auto Start] <System32\DRIVERS\HSF_FAXX.sys><Conexant> [Tones / Tones][Running/Auto Start] <System32\DRIVERS\HSF_TONE.sys><Conexant> [V124 / V124][Running/Auto Start] <System32\DRIVERS\HSF_V124.sys><Conexant> [World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start] <System32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation> [XPROTECTOR / XPROTECTOR][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\XPROTECTOR.SYS><N/A>
sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:

sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:	发表于： 2007-03-31 20:40 \| 只看楼主短消息资料字号：小中大 3楼 ================================== 浏览器加载项 [Tencent Browser Helper] {0C7C23EF-A848-485B-873C-0ED954731014} <C:\Program Files\TENCENT\Adplus\SSAddr1.dll, Tencent> [] {8298D101-F992-43B7-8ECA-5052D885B996} <C:\WINDOWS\system32\rs.bin, N/A> [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} <E:\迅雷5\ComDlls\XunLeiBHO_007.dll, Thunder Networking Technologies,LTD> [Windows Live Toolbar Helper] {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} <C:\Program Files\Windows Live Toolbar\msntb.dll, Microsoft Corporation> [启动迅雷5] {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <E:\迅雷5\Thunder.exe, Thunder Networking Technologies,LTD> [浩方对战平台] {0A155D3C-68E2-4215-A47A-E800A446447A} <F:\浩方对战平台\GameClient.exe, 上海浩方在线信息技术有限公司> [@shdoclc.dll,-866] {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A> [QQ] {c95fe080-8f5d-11d2-a20b-00aa003c157b} <D:\Tencent\QQ\QQ.EXE, TENCENT> [电台(&R)] {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\System32\msdxm.ocx, Microsoft Corporation> [Windows Live Toolbar] {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} <C:\Program Files\Windows Live Toolbar\msntb.dll, Microsoft Corporation> [卡卡上网安全助手] {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\System32\kakatool.dll, Beijing Rising Technology Co., Ltd.> [InfosecCertInstall Class] {0EB487C8-E9AC-43A6-8C4C-083999B0622F} <C:\WINDOWS\Downloaded Program Files\certInStall.dll, > [CEditCtrl Object] {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\System32\aliedit\AliEdit.dll, www.alipay.com> [RdxIE Class] {56336BCB-3D8A-11D6-A00B-0050DA18DE71} <C:\WINDOWS\Downloaded Program Files\RdxIE.dll, RealNetworks, Inc.> [VITEGPlayerCtrl Class] {62561858-71D1-11D4-B2EC-00105A8340B5} <C:\WINDOWS\DOWNLO~1\VTPlayer.dll, LONG-TRANS TECH. INC.> [InfoSecNetSign Class] {62B938C4-4190-4F37-8CF0-A92B0A91CC77} <C:\WINDOWS\DOWNLO~1\NetSign.dll, Infosec Technologies Co., Ltd.> [RewardNetwork Launcher Class] {7732E3A4-AB48-33A9-9AB8-443C710E09A3} <C:\WINDOWS\Downloaded Program Files\launcher5.dll, Datawave System Inc.> [AxSubmitControl Class] {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\DOWNLO~1\SUBMIT~1.DLL, > [iChatX Object] {C07405FD-84D1-4A25-94E8-68609EA8335B} <C:\WINDOWS\Downloaded Program Files\ichatx.dll, 深圳市东方博雅科技有限公司> [CSetLET Class] {C35D7AE1-0865-4A30-BF07-29FA29324155} <C:\WINDOWS\DOWNLO~1\GDSetLET.dll, > [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\System32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.> [Rising Web Scan Object] {E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <C:\WINDOWS\Downloaded Program Files\OL2005.dll, Beijing Rising Technology Co., Ltd.> [CPasswordEditCtrl Object] {E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\WINDOWS\System32\qqedit\qqedit.dll, 腾讯科技（深圳）有限公司> [WangWangObj Class] {6E213FC7-DD5A-4115-B7E6-D4C7838C361E} <F:\淘宝网\淘宝旺旺\WangWangX4.dll, 阿里软件（中国）有限公司> [&Windows Live Search] <res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm, N/A> [&使用迅雷下载] <E:\迅雷5\Program\GetUrl.htm, N/A> [&使用迅雷下载全部链接] <E:\迅雷5\Program\GetAllUrl.htm, N/A> [上传到QQ网络硬盘] <D:\Tencent\QQ\AddToNetDisk.htm, N/A> [在新的前台选项卡中打开] <res://C:\Program Files\Windows Live Toolbar\Components\zh-cn\msntabres.dll.mui/230?a544759635b44450832defa12deda187, N/A> [在新的后台选项卡中打开] <res://C:\Program Files\Windows Live Toolbar\Components\zh-cn\msntabres.dll.mui/229?a544759635b44450832defa12deda187, N/A> [添加到QQ自定义面板] <D:\Tencent\QQ\AddPanel.htm, N/A> [添加到QQ表情] <D:\Tencent\QQ\AddEmotion.htm, N/A> [用QQ彩信发送该图片] <D:\Tencent\QQ\SendMMS.htm, N/A>
sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:

sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:	发表于： 2007-03-31 20:42 \| 只看楼主短消息资料字号：小中大 4楼 ================================== 正在运行的进程 [PID: 480][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 552][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [PID: 576][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [C:\WINDOWS\System32\wdmaud.drv] [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)] [C:\WINDOWS\System32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [PID: 620][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [PID: 632][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 820][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [PID: 872][e:\Rising\Rav\CCenter.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3] [PID: 888][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [PID: 1036][e:\Rising\Rav\Ravmond.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 43] [e:\Rising\Rav\BWList.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 6] [e:\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1] [e:\Rising\Rav\rfwctrl.dll] [Beijing Rising Technology Co., Ltd., 5, 0, 0, 11] [e:\Rising\Rav\RsPPsys.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3] [e:\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2] [e:\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 13] [e:\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5] [e:\Rising\Rav\RsLog.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20] [e:\Rising\Rav\HOOKSYS.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 0] [e:\Rising\Rav\Scanner.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 12] [e:\Rising\Rav\libload.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 16] [e:\Rising\Rav\VirusLib.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 10] [e:\Rising\Rav\regmon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6] [e:\Rising\Rav\psapi.dll] [Microsoft Corporation, 4.00] [e:\Rising\Rav\HookWeb.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 1] [e:\Rising\Rav\MemMon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 12] [e:\Rising\Rav\expscan.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [e:\Rising\Rav\mPorts.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 3] [e:\Rising\Rav\HookCont.dll] [Rising, 19, 0, 0, 0] [e:\Rising\Rav\SpamEng.dll] [, 18, 0, 0, 6] [e:\Rising\Rav\engine.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 26] [e:\Rising\Rav\PostTrt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 8] [e:\Rising\Rav\UnExe.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 10] [e:\Rising\Rav\ScanExec.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 16] [e:\Rising\Rav\ScanEx.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 41] [e:\Rising\Rav\ExtFile.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 25] [e:\Rising\Rav\NvFile.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 11] [e:\Rising\Rav\ScanMac.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 13] [e:\Rising\Rav\ScanSct.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 19] [e:\Rising\Rav\Unpacker.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 19] [e:\Rising\Rav\ScanPack.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 20] [e:\Rising\Rav\RsVM.dll] [, 19, 0, 0, 15] [e:\Rising\Rav\Uroutine.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 23] [e:\Rising\Rav\Uscript.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 18] [e:\Rising\Rav\ExtOLE.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 12] [PID: 1632][C:\WINDOWS\Explorer.exe] [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920)] [C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 7] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.win] [N/A, ] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\upxdnd.dll] [N/A, ] [C:\WINDOWS\System32\winform.dll] [N/A, ] [C:\WINDOWS\System32\mppds.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rav20.dll] [N/A, ] [C:\WINDOWS\System32\wdmaud.drv] [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)] [C:\WINDOWS\System32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [C:\Program Files\TENCENT\Adplus\SSAddr1.dll] [Tencent, 4, 4, 2, 22] [C:\WINDOWS\system32\rs.bin] [N/A, ] [E:\迅雷5\ComDlls\XunLeiBHO_007.dll] [Thunder Networking Technologies,LTD, 5, 0, 1, 4] [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510] [C:\Program Files\WinRAR\rarext.dll] [N/A, ] [C:\WINDOWS\System32\Audiodev.dll] [Microsoft Corporation, 5.2.3790.3646 built by: DNSRV(bld4act)] [e:\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5] [PID: 1892][E:\Rising\Rav\RavTask.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 7] [E:\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5] [E:\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2] [E:\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 13] [E:\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [PID: 1928][F:\淘宝网\淘宝旺旺\WangWang.EXE] [淘宝（中国）软件有限公司, 1, 9, 6, 1221] [F:\淘宝网\淘宝旺旺\AliViewCtrl.dll] [vline, 1, 0, 0, 1] [F:\淘宝网\淘宝旺旺\VLNetwork.dll] [, 1, 0, 0, 6] [F:\淘宝网\淘宝旺旺\AliViewMedia.dll] [vline, 1, 0, 0, 1] [F:\淘宝网\淘宝旺旺\VideoCAP.dll] [, 1, 0, 0, 4] [F:\淘宝网\淘宝旺旺\VLAudio.dll] [, 1, 0, 0, 4] [F:\淘宝网\淘宝旺旺\JsmShow.dll] [, 1, 0, 0, 3] [F:\淘宝网\淘宝旺旺\ww_network.dll] [, 1, 0, 1, 18] [F:\淘宝网\淘宝旺旺\riched32.dll] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [F:\淘宝网\淘宝旺旺\RICHED20.dll] [Microsoft Corporation, 5.30.23.1221] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [F:\淘宝网\淘宝旺旺\Ali_Res.DLL] [N/A, ] [F:\淘宝网\淘宝旺旺\WangWangX4.dll] [阿里软件（中国）有限公司, 1, 0, 0, 1] [F:\淘宝网\淘宝旺旺\RichOne.dll] [淘宝(中国)软件有限公司, 1.0.0.1] [F:\淘宝网\淘宝旺旺\TBProgress.dll] [淘宝(中国)软件有限公司, 1.0.0.1] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [e:\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rav20.dll] [N/A, ]
sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:

sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:	发表于： 2007-03-31 20:43 \| 只看楼主短消息资料字号：小中大 5楼 [PID: 1944][C:\WINDOWS\System32\SafeSignCertReg.exe] [A.E.T. Europe B.V., 2.0.0.2] [PID: 2044][C:\Program Files\WindowsUpdate\6.exe] [N/A, ] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [PID: 160][C:\Syswm1h\svchost.exe] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [PID: 172][C:\SysDayN6\svchost.exe] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [PID: 152][C:\SysTx1\svchost.exe] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [PID: 228][C:\SysWsj6\svchost.exe] [N/A, ] [C:\SysWsj6\Ghook.dll] [N/A, ] [PID: 240][C:\WINDOWS\System32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [C:\SysWsj6\Ghook.dll] [N/A, ] [PID: 1992][C:\WINDOWS\wuaucll.exe] [N/A, ] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [PID: 280][C:\WINDOWS\System32\driver.exe] [N/A, ] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [PID: 3676][C:\WINDOWS\System32\conime.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [PID: 2288][C:\WINDOWS\System32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 2728][C:\WINDOWS\System32\conime.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 2812][C:\WINDOWS\System32\driver.exe] [N/A, ] [PID: 2836][C:\WINDOWS\wuaucll.exe] [N/A, ] [PID: 3068][C:\Program Files\Internet Explorer\IEXPLORE.EXE] [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920)] [C:\Program Files\Windows Live Toolbar\msntb.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\zh-cn\mtbres.dll.mui] [Microsoft Corporation, 03.00.0000.1398] [C:\Program Files\Windows Live Toolbar\mtbres.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\Tem.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\zh-cn\CMRes.dll.mui] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\CMRes.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\Components\RssFinderRes.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\zh-cn\msn_slrs.DLL.mui] [Microsoft Corporation, 03.00.0000.1398] [C:\Program Files\Windows Live Toolbar\msn_slrs.DLL] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\Components\rssFinder.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\TENCENT\Adplus\SSAddr1.dll] [Tencent, 4, 4, 2, 22] [C:\WINDOWS\system32\rs.bin] [N/A, ] [E:\迅雷5\ComDlls\XunLeiBHO_007.dll] [Thunder Networking Technologies,LTD, 5, 0, 1, 4] [C:\Program Files\Windows Live Toolbar\stmain.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\cm.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\msn_slps.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510] [e:\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [PID: 3920][C:\Program Files\Internet Explorer\IEXPLORE.EXE] [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920)] [C:\Program Files\Windows Live Toolbar\msntb.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\zh-cn\mtbres.dll.mui] [Microsoft Corporation, 03.00.0000.1398] [C:\Program Files\Windows Live Toolbar\mtbres.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\Tem.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\zh-cn\CMRes.dll.mui] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\CMRes.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\Components\RssFinderRes.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\zh-cn\msn_slrs.DLL.mui] [Microsoft Corporation, 03.00.0000.1398] [C:\Program Files\Windows Live Toolbar\msn_slrs.DLL] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\Components\rssFinder.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\TENCENT\Adplus\SSAddr1.dll] [Tencent, 4, 4, 2, 22] [C:\WINDOWS\system32\rs.bin] [N/A, ] [E:\迅雷5\ComDlls\XunLeiBHO_007.dll] [Thunder Networking Technologies,LTD, 5, 0, 1, 4] [C:\Program Files\Windows Live Toolbar\stmain.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\cm.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\msn_slps.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510] [e:\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [PID: 1504][C:\Program Files\Rising\KakaToolBar\Ras.exe] [Beijing Rising Technology Co., Ltd., 1, 0, 6, 1] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [C:\Program Files\Rising\KakaToolBar\RasGui.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 19] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rav20.dll] [N/A, ] [C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 7] [C:\Program Files\Internet Explorer\IEXPLORE.win] [N/A, ]
sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:

sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:	发表于： 2007-03-31 20:44 \| 只看楼主短消息资料字号：小中大 6楼 [PID: 2908][D:\Tencent\TT\TTraveler.exe] [腾讯公司, 3.2.200.275] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rav20.dll] [N/A, ] [D:\Tencent\TT\PersonalDesktop.dll] [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 4] [e:\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [C:\WINDOWS\System32\Macromed\Flash\Flash9b.ocx] [Adobe Systems, Inc., 9,0,28,0] [C:\WINDOWS\System32\wdmaud.drv] [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)] [C:\WINDOWS\System32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [PID: 1576][C:\Program Files\Internet Explorer\IEXPLORE.EXE] [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920)] [C:\Program Files\Windows Live Toolbar\msntb.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\zh-cn\mtbres.dll.mui] [Microsoft Corporation, 03.00.0000.1398] [C:\Program Files\Windows Live Toolbar\mtbres.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\Tem.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\zh-cn\CMRes.dll.mui] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\CMRes.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\Components\RssFinderRes.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\zh-cn\msn_slrs.DLL.mui] [Microsoft Corporation, 03.00.0000.1398] [C:\Program Files\Windows Live Toolbar\msn_slrs.DLL] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\Components\rssFinder.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\TENCENT\Adplus\SSAddr1.dll] [Tencent, 4, 4, 2, 22] [C:\WINDOWS\system32\rs.bin] [N/A, ] [E:\迅雷5\ComDlls\XunLeiBHO_007.dll] [Thunder Networking Technologies,LTD, 5, 0, 1, 4] [C:\Program Files\Windows Live Toolbar\stmain.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\cm.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\msn_slps.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510] [e:\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [PID: 500][E:\迅雷5\Program\Thunder5.exe] [Thunder Networking Technologies,LTD, 5, 5, 4, 266] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [E:\迅雷5\Program\TaskManager.dll] [Thunder Networking Technologies,LTD, 1, 0, 2, 14] [E:\迅雷5\Program\download_interface.dll] [Thunder Networking Technologies,LTD, 2, 12, 2, 44] [E:\迅雷5\Program\asyn_dns.dll] [Thunder Networking Technologies,LTD, 2, 12, 2, 44] [E:\迅雷5\Program\iTargetAD.dll] [Thunder Networking Technologies,LTD, 1, 0, 2, 13] [E:\迅雷5\Program\BHOStub.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 8] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [C:\WINDOWS\System32\Macromed\Flash\Flash9b.ocx] [Adobe Systems, Inc., 9,0,28,0] [C:\WINDOWS\System32\wdmaud.drv] [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)] [C:\WINDOWS\System32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rav20.dll] [N/A, ] [E:\迅雷5\Components\DiagnoseHelper\DiagnoseHelper.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 10] [E:\迅雷5\Components\PortVerify\PortVerify.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 1] [E:\迅雷5\Components\ExplorerHelper\ExplorerHelper.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 1] [E:\迅雷5\Components\DTAG\DTAG.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 1] [E:\迅雷5\Program\LiveUpdate.dll] [, 1, 0, 1, 17] [E:\迅雷5\Components\InMedia\iEmbedShell.dll] [　, 1, 0, 0, 15] [E:\迅雷5\Components\InMedia\iEmbed08.dll] [　, 3, 2, 0, 63] [E:\迅雷5\Components\Community\XLCommunity.dll] [Thunder Networking Technologies,LTD, 1, 0, 3, 14] [E:\迅雷5\Program\RegisterDll.dll] [Thunder Networking Technologies,LTD, 2, 2, 1, 43] [E:\迅雷5\Components\Search\XLSearch.dll] [Thunder Networking Technologies,LTD, 1, 0, 1, 6] [E:\迅雷5\Components\P4PClient\P4PClient.dll] [Thunder Networking Technologies,LTD, 1, 0, 2, 13] [E:\迅雷5\Components\VPSHELL\VPSHELL.dll] [, 1, 0, 0, 1] [E:\迅雷5\Components\VPSHELL\VideoPicture.dll] [XunLei, 1, 0, 0, 1] [E:\迅雷5\Program\msgmanage.dll] [Thunder Networking Technologies,LTD, 2, 0, 1, 38] [e:\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [E:\迅雷5\Plugins\BhoAdv\bho_adv.dll] [深圳市迅雷网络技术有限公司, 1.0.1.0] [E:\迅雷5\Components\InMedia\MediaAddin11.dll] [Thunder Networking Technologies,LTD, 3, 1, 0, 63] [C:\WINDOWS\System32\wmp.dll] [Microsoft Corporation, 9.00.00.2980] [C:\WINDOWS\System32\msdmo.dll] [, ] [PID: 1308][e:\Rising\Rav\RsAgent.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [e:\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [PID: 2456][C:\WINDOWS\msagent\AgentSvr.exe] [Microsoft Corporation, 2.00.0.3422] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [C:\WINDOWS\System32\wdmaud.drv] [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)] [C:\WINDOWS\System32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)] [PID: 3384][F:\新建文件夹 (2)\SREng.EXE] [Smallfrogs Studio, 2.4.12.806] [C:\Program Files\TENCENT\Adplus\Adplus1.dll] [Tencent, 4, 4, 2, 30] [C:\SysWsj6\Ghook.dll] [N/A, ] [C:\SysTx1\Ghook.dll] [N/A, ] [C:\SysDayN6\Ghook.dll] [N/A, ] [C:\Syswm1h\Ghook.dll] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Dat] [N/A, ] [C:\Program Files\Internet Explorer\IEXPLORE.Sys] [N/A, ] [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rav20.dll] [N/A, ] [C:\WINDOWS\System32\NpOpenStore.dll] [N/A, ] [C:\WINDOWS\System32\NPCard.dll] [N/A, ] [C:\WINDOWS\System32\RsaFun.dll] [N/A, ] [C:\WINDOWS\System32\GPKPCSC.dll] [N/A, ] [PID: 1608][C:\Program Files\Windows Live Toolbar\msn_sl.exe] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\MSN_SLrs.dll] [Microsoft Corporation, 03.00.0000.1615] [C:\Program Files\Windows Live Toolbar\msn_slps.dll] [Microsoft Corporation, 03.00.0000.1615] ================================== 文件关联 .TXT Error. [NOTEPAD.EXE %1] .EXE OK. ["%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM Error. [hh.exe %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI Error. [notepad.exe %1] .INF Error. [notepad.exe %1] .VBS Error. [wscript.exe "%1" %] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf [D:\] [AutoRun] open=driver.exe [E:\] [AutoRun] open=driver.exe [F:\] [AutoRun] open=driver.exe ================================== HOSTS 文件 127.0.0.1 localhost ================================== API HOOK N/A ================================== 隐藏进程 N/A ================================== [/CODE]
sxdtzgd 初生襁褓狮帖子:15 注册: 2007-03-27 来自:

超级游戏迷卡卡技术团队帖子:25779 注册: 2007-01-14 来自:	发表于： 2007-03-31 20:50 \| 短消息资料字号：小中大 7楼我的天那，威金啊！专杀伺候吧！还有木马群mppds。 <6vbebzsry287h><C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\rundl132.exe> [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] <333><C:\Syswm1h\svchost.exe> [] <66><C:\SysDayN6\svchost.exe> [] <tx><C:\SysTx1\svchost.exe> [] <4><C:\SysWsj6\svchost.exe> [] upxdnd><C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\upxdnd.exe> [] <winform><C:\WINDOWS\winform.exe> [] <mppds><C:\WINDOWS\mppds.exe> [] <realplayer><C:\Program Files\WindowsUpdate\6.exe> [] …………………………………… 还有很多，这些木马插入的进程实在太多了，我不想看了。到病毒区找一下相关帖子，找找办法吧。
超级游戏迷卡卡技术团队帖子:25779 注册: 2007-01-14 来自:

我无邪高贵耄耋狮帖子:20720 注册: 2004-06-10 来自:广西玉林	发表于： 2007-04-01 12:00 \| 短消息资料字号：小中大 8楼问题挺多的，不如重装系统吧。重装系统后，你一定要这样双击我的电脑，工具，文件夹选项，查看，单击选取"显示隐藏文件或文件夹"清除"隐藏受保护的操作系统文件（推荐）"复选框。在提示确定更改时，单击“是”，清除“隐藏已知文件类型的扩展名然后，不要双击其它分区，一定要右击选择“打开” 删除所有盘根目录下的 Autorun.inf driver.exe 注意，一定不要双击，以免激活病毒。
我无邪高贵耄耋狮帖子:20720 注册: 2004-06-10 来自:广西玉林

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT