高手帮帮忙！谢谢！ - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛高手帮帮忙！谢谢！

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

高手帮帮忙！谢谢！

dqaa 初生襁褓狮帖子:3 注册: 2007-10-08 来自:	发表于： 2007-10-08 18:54 \| 只看楼主短消息资料字号：小中大 1楼高手帮帮忙！谢谢！系统每天开机能用2～4小时不定，再开机就进不去系统了。第二天又好了（隔10小时左右），瑞星网上查毒又显示没有病毒，怎么回事，高手指点下，谢谢。 [用户系统信息]Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1) 2007-10-08 18:56:18.247000000
dqaa 初生襁褓狮帖子:3 注册: 2007-10-08 来自:	分享到：

dqaa 初生襁褓狮帖子:3 注册: 2007-10-08 来自:	发表于： 2007-10-08 18:55 \| 只看楼主短消息资料字号：小中大 2楼瑞星卡卡电脑诊断日志 v1.30 (2005-1-1 21:31:34) 北京瑞星科技股份有限公司注释: [A]表示该文件存在自启动关联; [M]表示该文件在内存中; + 注册表自运行项目 + 系统服务 + HKLM\System\CurrentControlSet\Services smService [AM] 1. c:\windows\system32\smservice.exe WMPNetworkSvc [A ] 2. c:\program files\windows media player\wmpnetwk.exe WudfSvc [A ] 3. c:\windows\system32\wudfsvc.dll + 内核驱动 + HKLM\System\CurrentControlSet\Services ALCXWDM [A ] 4. c:\windows\system32\drivers\alcxwdm.sys nvatabus [A ] 5. c:\windows\system32\drivers\nvatabus.sys nvcchflt [A ] 6. c:\windows\system32\drivers\nvcchflt.sys NVENETFD [A ] 7. c:\windows\system32\drivers\nvenetfd.sys nvnetbus [A ] 8. c:\windows\system32\drivers\nvnetbus.sys nvraid [A ] 9. c:\windows\system32\drivers\nvraid.sys RsAntiSpyware [A ] 10. c:\windows\system32\drivers\rsboot.sys Secdrv [A ] 11. c:\windows\system32\drivers\secdrv.sys WudfPf [A ] 12. c:\windows\system32\drivers\wudfpf.sys WudfRd [A ] 13. c:\windows\system32\drivers\wudfrd.sys + IE浏览器加载模块 + HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar {E0E899AB-F487-11D5-8D29-0050BA6940E3} [A ] 14. c:\program files\flashget\fgiebar.dll + HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks {CFBFAE00-17A6-11D0-99CB-00C04FD64497} [AM] 15. c:\windows\system32\ieframe.dll {F08555B0-9CC3-11D2-AA8E-000000000000} [AM] 16. c:\windows\system32\iebho.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} [AM] 17. c:\program files\flashget\jccatch.dll {F08555B0-9CC3-11D2-AA8E-000000000000} [AM] 16. c:\windows\system32\iebho.dll {F156768E-81EF-470C-9057-481BA8380DBA} [AM] 18. c:\program files\flashget\getflash.dll + HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions Exec [A ] 19. c:\program files\flashget\flashget.exe + 资源管理器加载模块 + HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} [A ] 20. c:\windows\system32\ieudinit.exe + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved HyperTerminal Icon Ext [A ] 21. c:\windows\system32\hticons.dll IE Search Band [AM] 15. c:\windows\system32\ieframe.dll Shell DocObject Viewer [AM] 15. c:\windows\system32\ieframe.dll InternetShortcut [AM] 15. c:\windows\system32\ieframe.dll Microsoft Url History Service [AM] 15. c:\windows\system32\ieframe.dll History [AM] 15. c:\windows\system32\ieframe.dll Temporary Internet Files [AM] 15. c:\windows\system32\ieframe.dll Temporary Internet Files [AM] 15. c:\windows\system32\ieframe.dll Microsoft Url Search Hook [AM] 15. c:\windows\system32\ieframe.dll The Internet [AM] 15. c:\windows\system32\ieframe.dll Internet Name Space [AM] 15. c:\windows\system32\ieframe.dll IE Microsoft BrowserBand [AM] 15. c:\windows\system32\ieframe.dll IE Fade Task [AM] 15. c:\windows\system32\ieframe.dll IE Menu Desk Bar [AM] 15. c:\windows\system32\ieframe.dll IE AutoComplete [AM] 15. c:\windows\system32\ieframe.dll IE Navigation Bar [AM] 15. c:\windows\system32\ieframe.dll IE Menu Site [AM] 15. c:\windows\system32\ieframe.dll IE Menu Band [AM] 15. c:\windows\system32\ieframe.dll IE Microsoft History AutoComplete List [AM] 15. c:\windows\system32\ieframe.dll IE Tracking Shell Menu [AM] 15. c:\windows\system32\ieframe.dll IE IShellFolderBand [AM] 15. c:\windows\system32\ieframe.dll IE BandProxy [AM] 15. c:\windows\system32\ieframe.dll IE MRU AutoComplete List [AM] 15. c:\windows\system32\ieframe.dll IE RSS Feeder Folder [AM] 15. c:\windows\system32\ieframe.dll IE Microsoft Shell Folder AutoComplete List [AM] 15. c:\windows\system32\ieframe.dll IE Microsoft Multiple AutoComplete List Container [AM] 15. c:\windows\system32\ieframe.dll Microsoft Browser Architecture [AM] 15. c:\windows\system32\ieframe.dll IE Shell Rebar BandSite [AM] 15. c:\windows\system32\ieframe.dll IE Shell Band Site Menu [AM] 15. c:\windows\system32\ieframe.dll &Links [AM] 15. c:\windows\system32\ieframe.dll IE Registry Tree Options Utility [AM] 15. c:\windows\system32\ieframe.dll IE User Assist [AM] 15. c:\windows\system32\ieframe.dll IE Custom MRU AutoCompleted List [AM] 15. c:\windows\system32\ieframe.dll Portable Media Devices [A ] 22. c:\windows\system32\audiodev.dll Portable Devices [A ] 23. c:\windows\system32\wpdshext.dll Portable Devices Menu [A ] 23. c:\windows\system32\wpdshext.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks {AC2DC2EF-5165-40A3-8CDF-41DCA1B0901A} [AM] 24. c:\windows\system32\shlhook.dll + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad WPDShServiceObj [AM] 25. c:\windows\system32\wpdshserviceobj.dll + 用户登陆自运行项目 + HKLM\Software\Microsoft\Windows\CurrentVersion\Run SoundMan [AM] 26. c:\windows\soundman.exe NVRaidService [AM] 27. c:\windows\system32\nvraidservice.exe runeip [AM] 28. c:\program files\rising\antispyware\runiep.exe + HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce KKDelay [A ] 29. c:\program files\rising\antispyware\runonce.exe
dqaa 初生襁褓狮帖子:3 注册: 2007-10-08 来自:

dqaa 初生襁褓狮帖子:3 注册: 2007-10-08 来自:	发表于： 2007-10-08 18:56 \| 只看楼主短消息资料字号：小中大 3楼 + 开机执行 + HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order BootExecute [A ] 30. c:\windows\system32\kknative.exe + 正在运行的进程 + 000000d0(208) Ras.exe 00400000[00160000] [ M] 31. c:\program files\rising\antispyware\ras.exe 00370000[00009000] [ M] 32. c:\windows\system32\normaliz.dll 5DCA0000[00045000] [ M] 33. c:\windows\system32\iertutil.dll 10000000[00013000] [ M] 34. c:\program files\rising\antispyware\topsoft.dll 7C140000[00103000] [ M] 35. c:\program files\rising\antispyware\mfc71.dll 7C340000[00056000] [ M] 36. c:\program files\rising\antispyware\msvcr71.dll 7C3A0000[0007B000] [ M] 37. c:\program files\rising\antispyware\msvcp71.dll 00F60000[00008000] [ M] 38. c:\program files\flashget\fgmgr.dll 58000000[0000E000] [ M] 39. c:\program files\3721\helper.dll 01220000[000BD000] [ M] 40. c:\program files\rising\antispyware\rasgui.dll 01A50000[00011000] [AM] 24. c:\windows\system32\shlhook.dll 01AC0000[0001B000] [ M] 41. c:\program files\rising\antispyware\ieprot.dll 7E1E0000[005C9000] [AM] 15. c:\windows\system32\ieframe.dll 023D0000[0002F000] [ M] 42. c:\program files\rising\antispyware\engine.dll 02500000[00012000] [ M] 43. c:\program files\rising\antispyware\zip.dll 61930000[0004A000] [ M] 44. c:\program files\internet explorer\ieproxy.dll + 00000174(372) GreenBrowser.exe 00400000[00125000] [ M] 45. c:\program files\greenbrowser\greenbrowser.exe 5DCA0000[00045000] [ M] 33. c:\windows\system32\iertutil.dll 00380000[00009000] [ M] 32. c:\windows\system32\normaliz.dll 58000000[0000E000] [ M] 39. c:\program files\3721\helper.dll 7E1E0000[005C9000] [AM] 15. c:\windows\system32\ieframe.dll 72C80000[00008000] [ M] 46. c:\windows\system32\msacm32.drv 10000000[00045000] [ M] 47. c:\windows\downloaded program files\ol2005.dll 13100000[0002E000] [ M] 48. c:\program files\rising\ravweb\libload.dll 02600000[0002C000] [ M] 49. c:\program files\rising\ravweb\viruslib.dll 02640000[0000E000] [ M] 50. c:\program files\rising\ravweb\rsappmgr.dll 02660000[0002F000] [ M] 51. c:\program files\rising\ravweb\cfgdll.dll 03B60000[00029000] [ M] 52. c:\program files\rising\ravweb\scanner.dll 03B90000[0002E000] [ M] 53. c:\program files\rising\ravweb\bwlist.dll 16000000[0003D000] [ M] 54. c:\program files\rising\ravweb\mvengine.dll 047C0000[0003C000] [ M] 55. c:\program files\rising\ravweb\engine.dll 13AB0000[00038000] [ M] 56. c:\program files\rising\ravweb\scanexec.dll 04800000[00055000] [ M] 57. c:\program files\rising\ravweb\unpacker.dll 04860000[002DC000] [ M] 58. c:\program files\rising\ravweb\unexe.dll 04B40000[0003C000] [ M] 59. c:\program files\rising\ravweb\scanex.dll 04C90000[000D6000] [ M] 60. c:\program files\rising\ravweb\extfile.dll 04D80000[0002B000] [ M] 61. c:\program files\rising\ravweb\posttrt.dll 13AF0000[00020000] [ M] 62. c:\program files\rising\ravweb\scanmac.dll 04E10000[00029000] [ M] 63. c:\program files\rising\ravweb\scansct.dll 05430000[0003A000] [ M] 64. c:\program files\rising\ravweb\scanpack.dll 0E270000[000B4000] [ M] 65. c:\program files\rising\ravweb\rsvm.dll 0E530000[000F8000] [ M] 66. c:\program files\rising\ravweb\uroutine.dll 0DAD0000[00063000] [ M] 67. c:\program files\rising\ravweb\uscript.dll 0FDF0000[0001C000] [ M] 68. c:\program files\rising\ravweb\nvfile.dll 0FFB0000[0003B000] [ M] 69. c:\program files\rising\ravweb\extole.dll 11E50000[00013000] [ M] 70. c:\program files\rising\ravweb\scannet.dll 12F40000[00010000] [AM] 17. c:\program files\flashget\jccatch.dll 12F50000[00008000] [ M] 38. c:\program files\flashget\fgmgr.dll 00CA0000[0001B000] [ M] 41. c:\program files\rising\antispyware\ieprot.dll + 00000190(400) smService.exe 00400000[000E8000] [AM] 1. c:\windows\system32\smservice.exe + 000001b0(432) IEXPLORE.EXE 5DCA0000[00045000] [ M] 33. c:\windows\system32\iertutil.dll 7E1E0000[005C9000] [AM] 15. c:\windows\system32\ieframe.dll 10000000[00008000] [ M] 38. c:\program files\flashget\fgmgr.dll 58000000[0000E000] [ M] 39. c:\program files\3721\helper.dll 00E60000[00007000] [ M] 71. c:\program files\3721\alrex.dll 00F40000[00009000] [ M] 32. c:\windows\system32\normaliz.dll 01040000[00026000] [ M] 72. c:\program files\3721\autolive.dll 01070000[0002D000] [ M] 73. c:\program files\3721\alliveex.dll 5DFF0000[0002F000] [ M] 74. c:\windows\system32\ieui.dll 47060000[00021000] [ M] 75. c:\windows\system32\xmllite.dll 61930000[0004A000] [ M] 44. c:\program files\internet explorer\ieproxy.dll 01C30000[0001B000] [ M] 41. c:\program files\rising\antispyware\ieprot.dll 01D90000[00010000] [AM] 17. c:\program files\flashget\jccatch.dll 01DA0000[0002B000] [AM] 16. c:\windows\system32\iebho.dll 01DF0000[0001F000] [AM] 18. c:\program files\flashget\getflash.dll 72EA0000[00060000] [ M] 76. c:\windows\system32\ieapfltr.dll 72C80000[00008000] [ M] 46. c:\windows\system32\msacm32.drv + 00000234(564) smss.exe + 00000268(616) csrss.exe + 00000280(640) winlogon.exe 72C80000[00008000] [ M] 46. c:\windows\system32\msacm32.drv + 000002b4(692) services.exe 47260000[0000F000] [ M] 77. c:\windows\apppatch\acadproc.dll + 000002c0(704) lsass.exe + 00000358(856) svchost.exe + 00000394(916) svchost.exe + 000003f4(1012) svchost.exe 01050000[00009000] [ M] 32. c:\windows\system32\normaliz.dll 5DCA0000[00045000] [ M] 33. c:\windows\system32\iertutil.dll + 00000424(1060) nvraidservice.exe 01000000[00018000] [AM] 27. c:\windows\system32\nvraidservice.exe 00970000[00004000] [ M] 78. c:\windows\system32\nvraidsvenu.dll 58000000[0000E000] [ M] 39. c:\program files\3721\helper.dll 10000000[0001B000] [ M] 41. c:\program files\rising\antispyware\ieprot.dll + 00000428(1064) svchost.exe + 00000440(1088) SOUNDMAN.EXE 00400000[00014000] [AM] 26. c:\windows\soundman.exe 10000000[0001B000] [ M] 41. c:\program files\rising\antispyware\ieprot.dll + 00000478(1144) rundll32.exe 58000000[0000E000] [ M] 39. c:\program files\3721\helper.dll 10000000[00026000] [ M] 72. c:\program files\3721\autolive.dll 5DCA0000[00045000] [ M] 33. c:\windows\system32\iertutil.dll 00A50000[00009000] [ M] 32. c:\windows\system32\normaliz.dll 00D20000[0002D000] [ M] 73. c:\program files\3721\alliveex.dll 00C70000[0001B000] [ M] 41. c:\program files\rising\antispyware\ieprot.dll 00D50000[00008000] [ M] 38. c:\program files\flashget\fgmgr.dll + 000004a0(1184) svchost.exe 00800000[00009000] [ M] 32. c:\windows\system32\normaliz.dll 5DCA0000[00045000] [ M] 33. c:\windows\system32\iertutil.dll + 000004bc(1212) ctfmon.exe 58000000[0000E000] [ M] 39. c:\program files\3721\helper.dll 10000000[0001B000] [ M] 41. c:\program files\rising\antispyware\ieprot.dll + 00000544(1348) spoolsv.exe + 000005b0(1456) wmiprvse.exe + 00000600(1536) Explorer.EXE 00400000[00009000] [ M] 32. c:\windows\system32\normaliz.dll 5DCA0000[00045000] [ M] 33. c:\windows\system32\iertutil.dll 7E1E0000[005C9000] [AM] 15. c:\windows\system32\ieframe.dll 58000000[0000E000] [ M] 39. c:\program files\3721\helper.dll 10000000[00065000] [ M] 79. c:\windows\system32\uptool.dll 01700000[00007000] [ M] 71. c:\program files\3721\alrex.dll 164A0000[00023000] [AM] 25. c:\windows\system32\wpdshserviceobj.dll 109C0000[0002C000] [ M] 80. c:\windows\system32\portabledevicetypes.dll 10930000[00049000] [ M] 81. c:\windows\system32\portabledeviceapi.dll 72C80000[00008000] [ M] 46. c:\windows\system32\msacm32.drv 011D0000[00008000] [ M] 38. c:\program files\flashget\fgmgr.dll 02570000[00026000] [ M] 72. c:\program files\3721\autolive.dll 02C20000[0002D000] [ M] 73. c:\program files\3721\alliveex.dll 02ED0000[0001B000] [ M] 41. c:\program files\rising\antispyware\ieprot.dll + 000006b0(1712) runiep.exe 00400000[00013000] [AM] 28. c:\program files\rising\antispyware\runiep.exe 10000000[00008000] [ M] 38. c:\program files\flashget\fgmgr.dll 58000000[0000E000] [ M] 39. c:\program files\3721\helper.dll 00D50000[0001B000] [ M] 41. c:\program files\rising\antispyware\ieprot.dll + 000006b8(1720) unsecapp.exe 58000000[0000E000] [ M] 39. c:\program files\3721\helper.dll + 000006dc(1756) alg.exe + 00000720(1824) conime.exe 10000000[0001B000] [ M] 41. c:\program files\rising\antispyware\ieprot.dll
dqaa 初生襁褓狮帖子:3 注册: 2007-10-08 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT