【求助】文件夹被限制访问，注册表时刻被修改，病毒清不掉！！ - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛【求助】文件夹被限制访问，注册表时刻被修改，病毒清不掉！！

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

【求助】文件夹被限制访问，注册表时刻被修改，病毒清不掉！！

仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:	发表于： 2006-11-01 10:50 \| 只看楼主短消息资料字号：小中大 1楼【求助】文件夹被限制访问，注册表时刻被修改，病毒清不掉！！ Documents and Settings\Administrator.A-VFT6ETQ7HKBLF\Local Settings 下的\Temporary Internet Files被锁住了，附图。不能查看隐藏文件，修改注册表不隐藏文件夹的值后一会就又被改回去了电脑明显变慢！555555555 附件: 文件名:7710502006111104211.bmp 下载次数:449 文件类型:application/octet-stream 文件大小: 上传时间:2006-11-1 10:50:40 描述: 2006-11-01 17:54:43
仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:	分享到：

仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:	发表于： 2006-11-01 10:51 \| 只看楼主短消息资料字号：小中大 2楼启动项目注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] <ctfmon.exe><ctfmon.exe> [Microsoft Corporation] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <SoundMan><SOUNDMAN.EXE> [(Verified)Realtek Semiconductor Corp.] <HydarVisionDesktopManager><desk95.exe> [ATI Technologies Inc.] <wdfmgr32><F:\WINNT\system32\wdfmgr32.exe> [N/A] <RavTask><"F:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.] <RfwMain><"F:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <shell><Explorer.exe> [(Verified)Microsoft Corporation] <Userinit><userinit.exe> [(Verified)Microsoft Corporation] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] <AppInit_DLLs><> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><F:\WINNT\system32\RavExt.dll> [Beijing Rising Technology Co., Ltd.] <{msb87a87-A6FF-11E0-9A84-00C04FD8DBD8}><F:\WINNT\system32\h87a87bf.log> [N/A] <{msc68006-A6FF-11E0-9A84-00C04FD8DBD8}><F:\WINNT\system32\h68006ab.log> [N/A] <{C68006AB-A6FF-11E0-9A84-00C04FD8DBD8}><F:\WINNT\system32\h68006ab.log> [N/A] <{B87A87D8-A6FF-11E0-9A84-00C04FD8DBD8}><F:\WINNT\system32\h87a87d8.log> [N/A] <{208E2852-2852-08E6-5208-8528E85208E6}><F:\Program Files\Common Files\Microsoft Shared\MSINFO\285208E6.dll> [N/A] ================================== 启动文件夹 [汉王笔启动程序] <F:\Documents and Settings\All Users.WINNT\「开始」菜单\程序\启动\汉王笔启动程序.lnk --> C:\HW99\HWPEN\hwshell.exe [N/A]><N> ================================== 服务 [?DillaSrv / ?DillaSrv] <F:\WINNT\system32\DRIVERS\CDANTSRV.EXE><C-Dilla Ltd> [Logical Disk Manager Administrative Service / dmadmin] <F:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.> [PPPoE Service / PPPoEService] <F:\PROGRA~1\北京通信\宽带E~1\app\pppoeservice.exe><N/A> [Rising Proxy Service / RfwProxySrv] <f:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.> [Rising Personal Firewall Service / RfwService] <f:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.> [Rising Process Communication Center / RsCCenter] <"F:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.> [RsRavMon Service / RsRavMon] <"F:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.> ================================== 驱动程序 [C-Dilla / ?Dilla] <\??\F:\WINNT\system32\drivers\CDANT.SYS><C-Dilla Ltd> [Service for Realtek AC97 Audio (WDM) / ALCXWDM] <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.> [ati2mtag / ati2mtag] <System32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.> [Rising TDI Base Driver / BaseTDI] <System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.> [Cdr4_2K / Cdr4_2K] <F:\WINNT\SYSTEM32\DRIVERS\Cdr4_2K.SYS><Roxio> [Cdralw2k / Cdralw2k] <F:\WINNT\SYSTEM32\DRIVERS\Cdralw2k.SYS><Roxio> [dmboot / dmboot] <System32\drivers\dmboot.sys><VERITAS Software Corp.> [Logical Disk Manager Driver / dmio] <\SystemRoot\System32\drivers\dmio.sys><VERITAS Software Corp.> [dmload / dmload] <\SystemRoot\System32\drivers\dmload.sys><VERITAS Software Corp.> [ENIMSR / ENIMSR] <\??\F:\PROGRA~1\北京通信\宽带E~1\app\ENIMSR.SYS><Microsoft Corporation> [ExpScaner / ExpScaner] <\??\F:\Program Files\Rising\Rav\ExpScan.sys><> [VIA Rhine-Family Fast Ethernet Adapter Driver Service / FETND5BV] <system32\DRIVERS\fetnd5bv.sys><VIA Technologies, Inc.> [HookCont / HookCont] <\??\F:\Program Files\Rising\Rav\HOOKCONT.sys><Rising tech Co. ltd> [HookReg / HookReg] <\??\F:\Program Files\Rising\Rav\HookReg.sys><> [HookSys / HookSys] <\??\F:\Program Files\Rising\Rav\HookSys.sys><Rising> [HookUrl / HookUrl] <\??\F:\Program Files\Rising\Rfw\HookUrl.sys><Beijing Rising Technology Co., Ltd.> [HanWang Pen Class Driver / hwmclass] <system32\DRIVERS\hwmclass.sys><Windows (R) 2000 DDK provider> [%hwpen3.SvcDesc% / hwpen3] <system32\DRIVERS\hwpen3.sys><Windows (R) 2000 DDK provider> [IdeBusDr / IdeBusDr] <\SystemRoot\System32\DRIVERS\IdeBusDr.sys><Intel Corporation> [Intel(R) Ultra ATA Controller / IdeChnDr] <\SystemRoot\System32\DRIVERS\IdeChnDr.sys><Intel Corporation> [MEMSCAN / MEMSCAN] <\??\F:\Program Files\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司> [mProcRs / mProcRs] <\??\f:\program files\rising\rfw\mProcRs.sys><Beijing Rising Technology Co., Ltd.> [CNC Enternet P.P.P.o.E LAN Miniport Driver / NTSPPPOE] <system32\DRIVERS\ntspppoe.sys><Microsoft Corporation> [NTSTAP1 / NTSTAP1] <\??\F:\PROGRA~1\北京通信\宽带E~1\app\NTSTAP1.SYS><Network TeleSystems, Inc.> [Direct Parallel Link Driver / Ptilink] <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.> [RAWESR / RAWESR] <\??\F:\PROGRA~1\北京通信\宽带E~1\app\RAWESR.SYS><Microsoft Corporation> [RsFwDrv / RsFwDrv] <\??\F:\Program Files\Rising\Rfw\RsFwDrv.sys><Beijing Rising Technology Co., Ltd.> [Sony Memory Stick Driver(SONYPVM1) / SONYPVM1] <\SystemRoot\system32\DRIVERS\SONYPVM1.SYS><Sony Corporation> [Sony USB Filter Driver (SONYPVU1) / SONYPVU1] <system32\DRIVERS\SONYPVU1.SYS><Sony Corporation> [TAPBIND / TAPBIND] <\??\F:\PROGRA~1\北京通信\宽带E~1\app\TAPBIND1.SYS><Network TeleSystems, Inc.>
仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:

仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:	发表于： 2006-11-01 10:53 \| 只看楼主短消息资料字号：小中大 3楼浏览器加载项 [MemoryManager Class] {2CE7166E-8BBA-4E76-BA7E-02AB3C573011} <F:\WINNT\DOWNLO~1\cytdcli.dll, 北京创原天地科技有限公司> [QQBrowserHelperObject Class] {54EBD53A-9BC1-480B-966A-843A333CA162} <F:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司> [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} <F:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_002.dll, Thunder Networking Technologies,LTD> [启动迅雷] {0062C9BD-B349-40DE-91A0-755F37ACD559} <F:\Program Files\Thunder Network\Thunder\Thunder.exe, Thunder Networking Technologies,LTD> [新浪UC] {2253922F-1B26-4C74-8B57-E3AEE748DBB8} <F:\Program Files\sina\UC\uc.exe, 北京新浪信息技术有限公司> [信息检索(&R)] {92780B25-18CC-41C8-B9BE-3C9C571A8263} <F:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL, Microsoft Corporation> [@shdoclc.dll,-866] {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A> [QQ] {c95fe080-8f5d-11d2-a20b-00aa003c157b} <F:\Program Files\Tencent\QQ\QQ.EXE, TENCENT> [QQIEFloatBarCfgCmd Class] {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <F:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司> [电台(&R)] {8E718888-423F-11D2-876E-00A0C9082467} <F:\WINNT\system32\msdxm.ocx, Microsoft Corporation> [Edit Class] {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} <F:\WINNT\system32\CMBEdit.dll, > [AxInputControl Class] {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <F:\WINNT\DOWNLO~1\INPUTC~1.DLL, > [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <F:\WINNT\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.> [Cytd Encipherment Memory] {F381FC65-D92D-4410-B865-E4E9713994E8} <F:\WINNT\DOWNLO~1\cytdcli.dll, 北京创原天地科技有限公司> [&使用迅雷下载] <F:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm, N/A> [&使用迅雷下载全部链接] <F:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm, N/A> [上传到QQ网络硬盘] <F:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A> [导出到 Microsoft Office Excel(&X)] <res://F:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000, N/A> [添加到QQ自定义面板] <F:\Program Files\Tencent\QQ\AddPanel.htm, N/A> [添加到QQ表情] <F:\Program Files\Tencent\QQ\AddEmotion.htm, N/A> [用QQ彩信发送该图片] <F:\Program Files\Tencent\QQ\SendMMS.htm, N/A>
仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:

仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:	发表于： 2006-11-01 10:53 \| 只看楼主短消息资料字号：小中大 4楼正在运行的进程 [PID: 172][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.00.2195.6601] [PID: 196][\??\F:\WINNT\system32\csrss.exe] [Microsoft Corporation, 5.00.2195.6601] [PID: 216][\??\F:\WINNT\system32\winlogon.exe] [Microsoft Corporation, 5.00.2195.6714] [PID: 244][F:\WINNT\system32\services.exe] [Microsoft Corporation, 5.00.2195.6700] [F:\WINNT\system32\dmserver.dll] [VERITAS Software Corp., 2195.6605.297.3] [PID: 256][F:\WINNT\system32\lsass.exe] [Microsoft Corporation, 5.00.2195.6695] [PID: 416][f:\program files\rising\rfw\rfwsrv.exe] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 33] [f:\program files\rising\rfw\RfwRule.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 13] [f:\program files\rising\rfw\rfwlog.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 6] [f:\program files\rising\rfw\Rfwdrv.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 21] [f:\program files\rising\rfw\MonDrv.dll] [rs, 1, 0, 0, 4] [f:\program files\rising\rfw\ProcLib.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 9] [f:\program files\rising\rfw\mPorts.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 3] [PID: 432][F:\WINNT\system32\svchost.exe] [Microsoft Corporation, 5.00.2134.1] [PID: 460][F:\Program Files\Rising\Rav\CCenter.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3] [PID: 476][F:\Program Files\Rising\Rav\Ravmond.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 1, 35] [F:\Program Files\Rising\Rav\BWList.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 19] [F:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1] [F:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2] [F:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11] [F:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [F:\Program Files\Rising\Rav\RsLog.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20] [F:\Program Files\Rising\Rav\HOOKSYS.dll] [Beijing Rising Technology Co., Ltd., 18, 1, 0, 11] [F:\Program Files\Rising\Rav\Scanner.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 32] [F:\Program Files\Rising\Rav\libload.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 10] [F:\Program Files\Rising\Rav\VirusLib.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 12] [F:\Program Files\Rising\Rav\regmon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6] [F:\Program Files\Rising\Rav\HookWeb.dll] [rising, 18, 0, 0, 2] [F:\Program Files\Rising\Rav\MemMon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 12] [F:\Program Files\Rising\Rav\expscan.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [F:\Program Files\Rising\Rav\mPorts.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 3] [F:\Program Files\Rising\Rav\MailMon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5] [F:\Program Files\Rising\Rav\SpamEng.dll] [N/A, 18, 0, 0, 6] [F:\Program Files\Rising\Rav\engine.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 35] [F:\Program Files\Rising\Rav\PostTrt.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 18] [F:\Program Files\Rising\Rav\UnExe.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11] [F:\Program Files\Rising\Rav\ScanExec.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 15] [F:\Program Files\Rising\Rav\ScanEx.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 30] [F:\Program Files\Rising\Rav\RSUnpack.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 19] [F:\Program Files\Rising\Rav\ExtFile.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 24] [F:\Program Files\Rising\Rav\NvFile.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 7] [F:\Program Files\Rising\Rav\ScanMac.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 10] [F:\Program Files\Rising\Rav\ScanSct.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20] [F:\Program Files\Rising\Rav\Unpacker.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5] [F:\Program Files\Rising\Rav\ExtOLE.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6] [F:\Program Files\Rising\Rav\RsStore.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6] [F:\Program Files\Rising\Rav\ScanNet.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5] [F:\Program Files\Rising\Rav\ScanElf.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3] [PID: 564][F:\WINNT\system32\spoolsv.exe] [Microsoft Corporation, 5.00.2195.6659] [PID: 596][F:\WINNT\System32\msdtc.exe] [Microsoft Corporation, 1999.9.3421.3] [PID: 724][F:\WINNT\system32\DRIVERS\CDANTSRV.EXE] [C-Dilla Ltd, 3.13.000] [PID: 764][F:\WINNT\System32\svchost.exe] [Microsoft Corporation, 5.00.2134.1] [PID: 772][F:\Program Files\Rising\Rav\RavStub.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 16] [F:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1] [F:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [PID: 860][F:\WINNT\System32\llssrv.exe] [Microsoft Corporation, 5.00.2195.6697] [PID: 912][F:\PROGRA~1\北京通信\宽带E~1\app\pppoeservice.exe] [N/A, N/A] [PID: 968][F:\WINNT\system32\regsvc.exe] [Microsoft Corporation, 5.00.2195.6701] [PID: 980][F:\WINNT\system32\MSTask.exe] [Microsoft Corporation, 4.71.2195.6704] [PID: 1016][F:\WINNT\System32\WBEM\WinMgmt.exe] [Microsoft Corporation, 1.50.1085.0100] [PID: 1052][F:\WINNT\system32\svchost.exe] [Microsoft Corporation, 5.00.2134.1] [PID: 1108][F:\WINNT\system32\Dfssvc.exe] [Microsoft Corporation, 5.00.2195.6664] [PID: 1128][F:\WINNT\System32\inetsrv\inetinfo.exe] [Microsoft Corporation, 5.00.0984] [PID: 1304][F:\WINNT\System32\svchost.exe] [Microsoft Corporation, 5.00.2134.1] [F:\WINNT\system32\HANWANGP.IME] [HanWang Corporation, 4.00.950] [PID: 1412][F:\WINNT\Explorer.EXE] [Microsoft Corporation, 5.00.3700.6690] [F:\WINNT\system32\h68006ab.log] [N/A, N/A] [F:\WINNT\system32\h87a87d8.log] [N/A, N/A] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [F:\WINNT\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 21] [F:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_002.dll] [Thunder Networking Technologies,LTD, 5, 0, 0, 2] [F:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [F:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [PID: 1452][f:\program files\rising\rfw\RfwMain.exe] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 52] [f:\program files\rising\rfw\RsGuiLib.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 23] [f:\program files\rising\rfw\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [f:\program files\rising\rfw\PngDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [PID: 1284][F:\Program Files\Internet Explorer\IEXPLORE.EXE] [Microsoft Corporation, 6.00.2800.1106] [F:\Program Files\Common Files\Microsoft Shared\MSInfo\msc68006.dll] [N/A, N/A] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [PID: 1296][F:\WINNT\SOUNDMAN.EXE] [Realtek Semiconductor Corp., 5.1.0.36] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [PID: 1232][F:\WINNT\system32\desk95.exe] [ATI Technologies Inc., 2.50.00.0018] [F:\WINNT\system32\HydraHlp.dll] [ATI Technologies Inc., 2.50.00.0018] [F:\WINNT\system32\HydraZhs.dll] [N/A, N/A] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [PID: 1536][F:\Program Files\Rising\Rav\RavTask.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 22] [F:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [F:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2] [F:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11] [F:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [PID: 1576][F:\Program Files\Rising\Rav\Ravmon.exe] [Beijing Rising Technology Co., Ltd., 18, 0, 1, 33] [F:\Program Files\Rising\Rav\RsGuiLib.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 26] [F:\Program Files\Rising\Rav\BWList.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 19] [F:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2] [F:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11] [F:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [F:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1] [F:\Program Files\Rising\Rav\PngDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [PID: 1584][F:\WINNT\system32\ctfmon.exe] [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [PID: 1276][C:\HW99\HWPEN\hwshell.exe] [N/A, N/A] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A]
仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:

仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:	发表于： 2006-11-01 10:54 \| 只看楼主短消息资料字号：小中大 5楼 [PID: 1472][F:\PROGRA~1\北京通信\宽带E~1\app\EnterNet.exe] [N/A, N/A] [F:\PROGRA~1\北京通信\宽带E~1\app\PacketLog.dll] [Efficient Networks, Inc., 1, 5, 0, 21] [F:\PROGRA~1\北京通信\宽带E~1\app\DSLAPI32.dll] [Efficient Networks Inc., 1, 5, 0, 19] [F:\PROGRA~1\北京通信\宽带E~1\app\ResMsgCHS.dll] [Efficient Networks, Inc., 1, 5, 0, 18] [F:\PROGRA~1\北京通信\宽带E~1\app\ResCHS.dll] [Efficient Networks, Inc., 1, 5, 0, 18] [PID: 1624][F:\Program Files\Tencent\TT\TTraveler.exe] [腾讯公司, 3.1.0.261] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [F:\Program Files\Tencent\TT\PersonalDesktop.dll] [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 4] [F:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [F:\WINNT\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,16,0] [F:\WINNT\system32\h68006ab.log] [N/A, N/A] [F:\WINNT\system32\h87a87d8.log] [N/A, N/A] [PID: 1468][F:\Program Files\Tencent\TT\TCPlus.exe] [腾讯公司, 1, 0, 0, 5] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [F:\Program Files\Tencent\TT\QQDownload.dll] [Tencent Technology (Shenzhen) Company Limited, 1, 0, 101, 28] [F:\Program Files\Tencent\TT\TNProxy.dll] [Tencent Technology(Shenzhen) Company Limited, 2, 1, 101, 60] [PID: 1876][F:\Program Files\Thunder Network\Thunder\Program\Thunder5.exe] [Thunder Networking Technologies,LTD, 5.4.0.226] [F:\Program Files\Thunder Network\Thunder\Program\UpdateDownload.dll] [Thunder Networking Technologies,LTD, 1, 0, 1, 8] [F:\Program Files\Thunder Network\Thunder\Program\download_interface.dll] [Thunder Networking Technologies,LTD, 2, 0, 0, 1] [F:\Program Files\Thunder Network\Thunder\Program\stlport_vc646.dll] [STLport Consulting, Inc., 4.6.2003.1031] [F:\Program Files\Thunder Network\Thunder\Program\log4cplus.dll] [, 1, 0, 2, 1] [F:\Program Files\Thunder Network\Thunder\Program\asyn_dns.dll] [N/A, N/A] [F:\Program Files\Thunder Network\Thunder\Program\msgmanage.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 15] [F:\Program Files\Thunder Network\Thunder\Program\historyinfo_manage.dll] [Thunder Networking Technologies,LTD, 5, 2, 0, 148] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [F:\Program Files\Thunder Network\Thunder\Program\RegisterDll.dll] [Thunder Networking Technologies,LTD, 2, 1, 0, 18] [F:\Program Files\Thunder Network\Thunder\Program\FloatBar.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 2] [F:\Program Files\Thunder Network\Thunder\Components\InMedia\iEmbedShell.dll] [　, 1, 0, 0, 11] [F:\Program Files\Thunder Network\Thunder\Components\InMedia\iEmbed04.dll] [　, 2, 3, 0, 37] [F:\Program Files\Thunder Network\Thunder\Components\P4PClient\P4PClient.dll] [Thunder Networking Technologies,LTD, 1, 0, 4, 10] [F:\WINNT\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 21] [F:\WINNT\system32\h68006ab.log] [N/A, N/A] [F:\WINNT\system32\h87a87d8.log] [N/A, N/A] [F:\Program Files\Thunder Network\Thunder\Program\iTargetAd.dll] [Thunder Networking Technologies,LTD, 1, 0, 1, 59] [F:\WINNT\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,16,0] [F:\Program Files\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4] [PID: 448][C:\TDDownload\sreng2\SREng\SREng.exe] [Smallfrogs Studio, 2.2.6.605] [F:\WINNT\system32\Hook95.dll] [ATI Technologies Inc., 2.50.00.0018] [F:\Program Files\c68006ab\d3094b35.dll] [N/A, N/A] [F:\WINNT\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 21] [F:\WINNT\system32\h68006ab.log] [N/A, N/A] [F:\WINNT\system32\h87a87d8.log] [N/A, N/A] ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM Error. ["hh.exe" %1] .HLP Error. [winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ==================================
仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:

仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:	发表于： 2006-11-01 10:57 \| 只看楼主短消息资料字号：小中大 6楼被限制的文件夹里有这几个文件不能删除，而且把网址加到瑞星防火墙的黑名单里就不能上网了附件: 文件名:7710502006111104923.bmp 下载次数:429 文件类型:application/octet-stream 文件大小: 上传时间:2006-11-1 10:57:52 描述:
仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:

仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:	发表于： 2006-11-01 18:03 \| 只看楼主短消息资料字号：小中大 7楼总有后台运行 svchost.exe文件
仲夏之雪初生襁褓狮帖子:13 注册: 2006-10-20 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT