瑞星卡卡电脑诊断日志 v1.20 (2007-7-8 0:14:55) 北京瑞星科技股份有限公司
注释: [A]表示该文件存在自启动关联;
[M]表示该文件在内存中;
+ 注册表自运行项目
+ Win32 Services
+ HKLM\System\CurrentControlSet\Services
Adobe LM Service
[A ] 1. c:\program files\common files\adobe systems shared\service\adobelmsvc.exe
IDriverT
[A ] 2. c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe
ose
[AM] 3. c:\program files\common files\microsoft shared\source engine\ose.exe
RsCCenter
[A ] 4. d:\应用软件\瑞星2007完整版\rising\rav\ccenter.exe
RsRavMon
[A ] 5. d:\应用软件\瑞星2007完整版\rising\rav\ravmond.exe
WMPNetworkSvc
[A ] 6. c:\program files\windows media player\wmpnetwk.exe
WudfSvc
[A ] 7. c:\windows\system32\wudfsvc.dll
+ Kernel Drivers
+ HKLM\System\CurrentControlSet\Services
ALCXWDM
[A ] 8. c:\windows\system32\drivers\alcxwdm.sys
BaseTDI
[A ] 9. c:\windows\system32\drivers\basetdi.sys
ehgfecjh
[A ] 10. c:\windows\system32\drivers\ehgfecjh.sys
ExpScaner
[A ] 11. d:\应用软件\瑞星2007完整版\rising\rav\expscan.sys
HookCont
[A ] 12. d:\应用软件\瑞星2007完整版\rising\rav\hookcont.sys
HookReg
[A ] 13. d:\应用软件\瑞星2007完整版\rising\rav\hookreg.sys
HookSys
[A ] 14. d:\应用软件\瑞星2007完整版\rising\rav\hooksys.sys
ialm
[A ] 15. c:\windows\system32\drivers\ialmnt5.sys
IdeBusDr
[A ] 16. c:\windows\system32\drivers\idebusdr.sys
IdeChnDr
[A ] 17. c:\windows\system32\drivers\idechndr.sys
MEMSCAN
[A ] 18. d:\应用软件\瑞星2007完整版\rising\rav\memscan.sys
RsAntiSpyware
[A ] 19. c:\windows\system32\drivers\rsboot.sys
RsNTGDI
[A ] 20. c:\windows\system32\drivers\rsntgdi.sys
RSPPSYS
[A ] 21. d:\应用软件\瑞星2007完整版\rising\rav\rsppsys.sys
RTL8023xp
[A ] 22. c:\windows\system32\drivers\rtnicxp.sys
Secdrv
[A ] 23. c:\windows\system32\drivers\secdrv.sys
WudfPf
[A ] 24. c:\windows\system32\drivers\wudfpf.sys
WudfRd
[A ] 25. c:\windows\system32\drivers\wudfrd.sys
+ Winlogon
+ HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
igfxcui
[AM] 26. c:\windows\system32\igfxsrvc.dll
WgaLogon
[AM] 27. c:\windows\system32\wgalogon.dll
+ Internet Explorer
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects
{00000AAA-A363-466E-BEF5-9BB68697AA7F}
[A ] 28. d:\应用软件\web\webthunderbho_now.dll
{01443AEC-0FD1-40fd-9C87-E93D1494C233}
[A ] 29. d:\应用软件\迅雷\comdlls\tdatonce_now.dll
{889D2FEB-5411-4565-8998-1DD2C5261283}
[A ] 30. d:\应用软件\迅雷\comdlls\xunleibho_now.dll
+ HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions
Exec
[A ] 31. d:\应用软件\迅雷\thunder.exe
+ Explorer
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Filter
text/xml
[A ] 32. c:\program files\common files\microsoft shared\office11\msoxmlmf.dll
+ HKLM\SOFTWARE\Classes\PROTOCOLS\Handler
mso-offdap11
[A ] 33. c:\program files\common files\microsoft shared\web components\11\owc11.dll
+ HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}
[A ] 34. c:\windows\system32\ieudinit.exe
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
RISING
[AM] 35. c:\windows\system32\ravext.dll
+ Logon
+ HKLM\Software\Microsoft\Windows\CurrentVersion\Run
SoundMan
[AM] 36. c:\windows\soundman.exe
HotKeysCmds
[AM] 37. c:\windows\system32\hkcmd.exe
RavTask
[A ] 38. d:\应用软件\瑞星2007完整版\rising\rav\ravtask.exe
runeip
[AM] 39. d:\应用软件\瑞星2007完整版\卡卡助手\runiep.exe
+ HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
KKDelay
[A ] 40. d:\应用软件\瑞星2007完整版\卡卡助手\runonce.exe
+ Boot Execute
+ HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order
BootExecute
[A ] 41. c:\windows\system32\bsmain.exe
[A ] 42. c:\windows\system32\kknative.exe
+ Image Hijacks
+ HKCR\Folder\shell
Super Rabbit CDROM Eject
[A ] 43. d:\应用软件\magicset\srcd2.exe
+ HKCR\.html
htmlfile\Edit\Command
[A ] 44. d:\应用软件\microsoft office 2003\office11\msohtmed.exe
htmlfile\Print\Command
[A ] 44. d:\应用软件\microsoft office 2003\office11\msohtmed.exe
+ HKCR\.htm
htmlfile\Edit\Command
[A ] 44. d:\应用软件\microsoft office 2003\office11\msohtmed.exe
htmlfile\Print\Command
[A ] 44. d:\应用软件\microsoft office 2003\office11\msohtmed.exe
+ HKCR\.mp3
Audio.MP3\open\Command
[A ] 45. d:\应用软件\千千静听\ttplayer\ttplayer\ttplayer.exe
Audio.MP3\PlayList\Command
[A ] 45. d:\应用软件\千千静听\ttplayer\ttplayer\ttplayer.exe
+ Print Monitor
+ HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors
Microsoft Document Imaging Writer Monitor
[AM] 46. c:\windows\system32\mdimon.dll
+ 系统活动模块
+ 0000017c(380) ctfmon.exe
10000000[0001B000]
[ M] 47. d:\应用软件\瑞星2007完整版\卡卡助手\ieprot.dll
+ 000001ec(492) smss.exe
+ 00000224(548) csrss.exe
+ 0000023c(572) winlogon.exe
013B0000[0003B000]
[AM] 27. c:\windows\system32\wgalogon.dll
72C80000[00008000]
[ M] 48. c:\windows\system32\msacm32.drv
+ 00000268(616) services.exe
47260000[0000F000]
[ M] 49. c:\windows\apppatch\acadproc.dll
+ 00000274(628) lsass.exe
+ 00000310(784) svchost.exe
+ 0000034c(844) svchost.exe
+ 000003a0(928) svchost.exe
00BB0000[00009000]
[ M] 50. c:\windows\system32\normaliz.dll
41D50000[00045000]
[ M] 51. c:\windows\system32\iertutil.dll
+ 000003a8(936) alg.exe
+ 00000404(1028) svchost.exe
+ 00000428(1064) svchost.exe
00800000[00009000]
[ M] 50. c:\windows\system32\normaliz.dll
41D50000[00045000]
[ M] 51. c:\windows\system32\iertutil.dll
+ 00000540(1344) Explorer.EXE
00400000[00009000]
[ M] 50. c:\windows\system32\normaliz.dll
41D50000[00045000]
[ M] 51. c:\windows\system32\iertutil.dll
422B0000[005CB000]
[ M] 52. c:\windows\system32\ieframe.dll
72C80000[00008000]
[ M] 48. c:\windows\system32\msacm32.drv
10000000[0001B000]
[AM] 35. c:\windows\system32\ravext.dll
23700000[0001A000]
[ M] 53. d:\应用软件\瑞星2007完整版\rising\rav\rscommon.dll
02DB0000[00041200]
[ M] 54. c:\windows\system32\wbjju.ime
02F10000[0006FB0C]
[ M] 55. c:\windows\system32\wbcodeu.dll
02F80000[00047000]
[ M] 56. c:\windows\system32\wbjju.dll
15380000[0017E000]
[ M] 57. c:\windows\system32\wmvdecod.dll
0BEF0000[00037000]
[ M] 58. c:\windows\system32\mfplat.dll
01C40000[0001B000]
[ M] 47. d:\应用软件\瑞星2007完整版\卡卡助手\ieprot.dll
+ 000005b4(1460) spoolsv.exe
00AE0000[00008000]
[AM] 46. c:\windows\system32\mdimon.dll
00AF0000[00008000]
[ M] 59. c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll
+ 00000704(1796) conime.exe
10000000[0001B000]
[ M] 47. d:\应用软件\瑞星2007完整版\卡卡助手\ieprot.dll
+ 00000714(1812) snmp.exe
+ 000007f0(2032) SOUNDMAN.EXE
00400000[00015000]
[AM] 36. c:\windows\soundman.exe
10000000[0001B000]
[ M] 47. d:\应用软件\瑞星2007完整版\卡卡助手\ieprot.dll
+ 000007f8(2040) hkcmd.exe
00400000[00022000]
[AM] 37. c:\windows\system32\hkcmd.exe
10000000[0001E000]
[ M] 60. c:\windows\system32\hccutils.dll
00A70000[00024000]
[ M] 61. c:\windows\system32\igfxdev.dll
00B40000[00058000]
[AM] 26. c:\windows\system32\igfxsrvc.dll
00BC0000[00022000]
[ M] 62. c:\windows\system32\igfxhk.dll
00C00000[00024000]
[ M] 63. c:\windows\system32\igfxres.dll
00D50000[0001B000]
[ M] 47. d:\应用软件\瑞星2007完整版\卡卡助手\ieprot.dll
+ 00000ba4(2980) runiep.exe
00400000[00012000]
[AM] 39. d:\应用软件\瑞星2007完整版\卡卡助手\runiep.exe
00C50000[0001B000]
[ M] 47. d:\应用软件\瑞星2007完整版\卡卡助手\ieprot.dll
+ 00000eb8(3768) OSE.EXE
30000000[00017000]
[AM] 3. c:\program files\common files\microsoft shared\source engine\ose.exe
+ 00000ee0(3808) Ras.exe
00400000[0013D000]
[ M] 64. d:\应用软件\瑞星2007完整版\卡卡助手\ras.exe
00370000[00009000]
[ M] 50. c:\windows\system32\normaliz.dll
41D50000[00045000]
[ M] 51. c:\windows\system32\iertutil.dll
10000000[000A0000]
[ M] 65. d:\应用软件\瑞星2007完整版\卡卡助手\rasgui.dll
018B0000[00011000]
[ M] 66. c:\windows\system32\shlhook.dll
01930000[0001B000]
[ M] 47. d:\应用软件\瑞星2007完整版\卡卡助手\ieprot.dll
422B0000[005CB000]
[ M] 52. c:\windows\system32\ieframe.dll
025C0000[0002F000]
[ M] 67. d:\应用软件\瑞星2007完整版\卡卡助手\engine.dll
025F0000[00012000]
[ M] 68. d:\应用软件\瑞星2007完整版\卡卡助手\zip.dll
72C80000[00008000]
[ M] 48. c:\windows\system32\msacm32.drv
