瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 【求助】小弟一个病毒只要一打开IE它就复活了删了又来

1234   1  /  4  页   跳转

【求助】小弟一个病毒只要一打开IE它就复活了删了又来

收藏
NAODO
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-09-01
  • 来自:
发表于: 2006-09-02 17:15 | 显示全部 短消息 资料
字号: 1楼

【求助】小弟一个病毒只要一打开IE它就复活了删了又来

小弟一个病毒只要一打开IE它就复活了删了又来请问是不是鸽子啊请问要如何解决
最后编辑2006-09-02 20:00:15
分享到:
gototop
 
NAODO
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-09-01
  • 来自:
发表于: 2006-09-02 17:34 | 显示全部 短消息 资料
字号: 2楼

叫做:Trojan.VB.VHC
gototop
 
NAODO
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-09-01
  • 来自:
发表于: 2006-09-02 17:36 | 显示全部 短消息 资料
字号: 3楼

5555555555555555555555555555555

附件附件:

下载次数:293
文件类型:image/pjpeg
文件大小:
上传时间:2006-9-2 17:36:27
描述:
gototop
 
NAODO
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-09-01
  • 来自:
发表于: 2006-09-02 17:40 | 显示全部 短消息 资料
字号: 4楼

谁来救救我啊
gototop
 
NAODO
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-09-01
  • 来自:
发表于: 2006-09-02 17:52 | 显示全部 短消息 资料
字号: 5楼

还有

附件附件:

下载次数:215
文件类型:image/pjpeg
文件大小:
上传时间:2006-9-2 17:52:29
描述:
gototop
 
NAODO
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-09-01
  • 来自:
发表于: 2006-09-02 18:00 | 显示全部 短消息 资料
字号: 6楼

1

附件附件:

下载次数:240
文件类型:image/pjpeg
文件大小:
上传时间:2006-9-2 18:00:25
描述:
gototop
 
NAODO
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-09-01
  • 来自:
发表于: 2006-09-02 18:00 | 显示全部 短消息 资料
字号: 7楼

2

附件附件:

下载次数:185
文件类型:application/octet-stream
文件大小:
上传时间:2006-9-2 18:00:43
描述:
gototop
 
NAODO
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-09-01
  • 来自:
发表于: 2006-09-02 18:03 | 显示全部 短消息 资料
字号: 8楼

Logfile of Kaka v2. 0. 0. 9 Scan Module v2. 0. 0. 1
Scan saved at 17:33:11, on 2006-09-02
Platform: Microsoft Windows XP Professional Service Pack 2 (Build 2600)
MSIE: Internet Explorer v6.00 SP2; (6.00.2900.2180 (xpsp_sp2_rtm.040803-2158))


Running processes:
[SMSS.EXE]
CommandLine =

[CSRSS.EXE]
CommandLine = G:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16

[WINLOGON.EXE]
CommandLine = winlogon.exe

[SERVICES.EXE]
CommandLine = G:\WINDOWS\system32\services.exe

[LSASS.EXE]
CommandLine = G:\WINDOWS\system32\lsass.exe

[SVCHOST.EXE]
CommandLine = G:\WINDOWS\system32\svchost -k DcomLaunch

[SVCHOST.EXE]
CommandLine = G:\WINDOWS\system32\svchost -k rpcss

[CCenter.exe]
CommandLine = "G:\Program Files\Rising\Rav\CCenter.exe"

[SVCHOST.EXE]
CommandLine = G:\WINDOWS\System32\svchost.exe -k netsvcs

[SVCHOST.EXE]
CommandLine = G:\WINDOWS\system32\svchost.exe -k NetworkService

[SVCHOST.EXE]
CommandLine = G:\WINDOWS\system32\svchost.exe -k LocalService

[RavMonD.exe]
CommandLine = "G:\Program Files\Rising\Rav\Ravmond.exe"

[RFWSRV.EXE]
CommandLine = "g:\program files\rising\rfw\rfwsrv.exe"

[EXPLORER.EXE]
CommandLine = G:\WINDOWS\Explorer.EXE

[SPOOLSV.EXE]
CommandLine = G:\WINDOWS\system32\spoolsv.exe

[RavStub.exe]
CommandLine = "G:\Program Files\Rising\Rav\RavStub.exe" /RAVMOND

[DAEMON.EXE]
CommandLine = "G:\Program Files\DAEMON Tools\daemon.exe" -lang 1033

[RUNDLL32.EXE]
CommandLine = "G:\WINDOWS\system32\rundll32.exe" G:\PROGRA~1\NEWDOT~1\NEWDOT~1.DLL,NewDotNetStartup -s

[RavTask.exe]
CommandLine = "G:\PROGRAM FILES\RISING\RAV\RAVTASK.EXE" -SYSTEM

[RavMon.exe]
CommandLine = "G:\Program Files\Rising\Rav\Ravmon.exe" -SYSTEM

[CTFMON.EXE]
CommandLine = ctfmon.exe

[SOUNDMAN.EXE]
CommandLine = "G:\WINDOWS\SOUNDMAN.EXE"

[RUNDLL32.EXE]
CommandLine = "G:\WINDOWS\system32\RUNDLL32.EXE" G:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

[SVCHOST.EXE]
CommandLine = G:\WINDOWS\System32\svchost.exe -k AutoUpgrade

[SVCHOST.EXE]
CommandLine = G:\WINDOWS\System32\svchost.exe -k BITS32

[RUNDLL32.EXE]
CommandLine = G:\WINDOWS\system32\rundll32.exe G:\PROGRA~1\MMSASS~1\MMSSVER.DLL,Service

[nvsvc32.exe]
CommandLine = G:\WINDOWS\system32\nvsvc32.exe

[SVCHOST.EXE]
CommandLine = G:\WINDOWS\System32\svchost.exe -k RpcSs32

[RUNDLL32.EXE]
CommandLine = G:\WINDOWS\system32\rundll32.exe G:\WINDOWS\System32\STDSVER.DLL,Service

[wdfmgr.exe]
CommandLine = G:\WINDOWS\system32\wdfmgr.exe

[alg.exe]
CommandLine = G:\WINDOWS\System32\alg.exe

[Rav.exe]
CommandLine = "G:\Program Files\Rising\Rav\Rav.exe"

[iexplore.exe]
CommandLine = "G:\Program Files\Internet Explorer\iexplore.exe" -Embedding

[iexplore.exe]
CommandLine = "G:\Program Files\Internet Explorer\iexplore.exe" http://www.ikaka.com/

[Thunder.exe]
CommandLine = "G:\Program Files\Thunder Network\Thunder\Thunder.exe"

[RsLogVw.exe]
CommandLine = "G:\Program Files\Rising\Rav\RsLogVw.exe"

[SVCHOST.EXE]
CommandLine = G:\WINDOWS\system32\svchost.exe -k imgsvc

[KkScan.exe]
CommandLine = "G:\Program Files\Rising\KakaToolBar\KkScan.exe"
gototop
 
NAODO
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-09-01
  • 来自:
发表于: 2006-09-02 18:04 | 显示全部 短消息 资料
字号: 9楼

[KkScan.exe]
CommandLine = "G:\Program Files\Rising\KakaToolBar\KkScan.exe"

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=G:\WINDOWS\system32\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar=http://g.china.msn.com/0SESCCN/SAOS01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page=http://www.yahoo.com.cn
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://www.ali213.net/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=%SystemRoot%\system32\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page=http://www.yahoo.com.cn
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page=http://VeryCD.265.com
O1 - Hosts: 127.0.0.1      localhost
O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - G:\WINDOWS\system32\xunleibho_v14.dll
O2 - BHO: Shockwave Flash Object - {14A21378-5BB1-4BC4-95D5-5D3F51527F6F} - G:\WINDOWS\system32\dpvvox32.dll
O2 - BHO: MyIEHelper Class - {16B770A0-0E87-4278-B748-2460D64A8386} -  (file missing)
O2 - BHO: URLLink - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - G:\Program Files\NewDotNet\newdotnet7_22.dll
O2 - BHO: QQBrowserHelperObject Class - {54EBD53A-9BC1-480B-966A-843A333CA162} - h:\Program Files\Tencent\QQ\QQIEHelper.dll
O2 - BHO: google bar - {607E95A1-8F89-4343-B9BC-2EFC2B291BB4} - G:\WINDOWS\system32\googlebar.dll
O2 - BHO: DragSearch BHO - {62EED7C6-9F02-42f9-B634-98E2899E147B} - G:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL (file missing)
O2 - BHO: JMX.JmxCenter - {63859236-76BF-493C-A587-DF479EBA2D4B} - G:\WINDOWS\system32\EJMX.dll
O2 - BHO: Vision - {6671A431-5C3D-463d-A7CF-5587F9B7E191} - G:\PROGRA~1\MMSASS~1\mmsass~1.dll
O2 - BHO: stdup - {6A512BF7-EC78-4e8d-9841-6C02E8FA9838} - G:\WINDOWS\SYSTEM32\stdup.dll
O2 - BHO: BHOImp Class - {70AFF2CB-9DA2-499C-8D15-900729FCE83D} - G:\WINDOWS\system32\YHBO.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - G:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Yahoo Bar - {A697BC46-BC93-4833-93F5-1E365011E88A} - G:\WINDOWS\ODBINT.dll
O2 - BHO:  - {A9930D97-9CF0-42A0-A10D-4F28836579D5} - H:\PROGRA~1\KuGoo3\KUGOO3~1.OCX
O2 - BHO: CoTGT_BHO Class - {C333CF63-767F-4831-94AC-E683D962C63C} - G:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll
O3 - Toolbar: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - G:\WINDOWS\system32\KakaTool.dll
O4 - HKCU\..\Run: [ctfmon.exe] G:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [STYLEXP] G:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
O4 - HKCU\..\Run: [MsnMsgr] "G:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKLM\..\Run: [IMJPMIG8.1] "G:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] G:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] G:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [DAEMON Tools] "G:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE G:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [IMSCMIG40W] G:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40W\IMSCMIG.EXE /SetPreload /Log
O4 - HKLM\..\Run: [New.net Startup] rundll32 G:\PROGRA~1\NEWDOT~1\NEWDOT~1.DLL,NewDotNetStartup -s
O4 - HKLM\..\Run: [RfwMain] "G:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - HKLM\..\Run: [RavTask] "G:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [Knight V] ??
O4 - HKLM\..\Run: [StormCodec_Helper] "G:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE G:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - Startup: desktop.ini =
O4 - Startup: 腾讯QQ.LNK = H:\Program Files\Tencent\QQ\QQ.exe
O4 - Global Startup: desktop.ini =
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item:  >> 彩信发送 << - res://G:\PROGRA~1\MMSASS~1\Mmsass~1.dll/mms.htm
O8 - Extra context menu item: &使用迅雷下载 - G:\Program Files\Thunder Network\Thunder\geturl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - G:\Program Files\Thunder Network\Thunder\getallurl.htm
O8 - Extra context menu item: >>彩信发送<< - res://G:\PROGRA~1\MMSASS~1\mmsass~1.dll/mms.htm
O8 - Extra context menu item: 上传到QQ网络硬盘 - H:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 下载页面上的ED2(&K)链接 - h:\Program Files\eMule\ed2k.html
O8 - Extra context menu item: 使用KuGoo3下载(&K) - H:\Program Files\KuGoo3\KuGoo3DownX.htm
O8 - Extra context menu item: 易趣购物 - G:\Program Files\AD4All\link1\ebaylink.htm
O8 - Extra context menu item: 添加到QQ自定义面板 - H:\Program Files\Tencent\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - H:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - H:\Program Files\Tencent\QQ\SendMMS.htm
O9 - Extra Button: 浩方对战平台 - {0A155D3C-68E2-4215-A47A-E800A446447A} - C:\Program Files\浩方对战平台\GameClient.exe
O9 - Extra Button: 游一游 - {29269350-EC07-4274-821F-F2E0E2697149} - http://act.youyy.com/YoyyLink.html (file missing)
O9 - Extra Button: (no name) - {6671A433-5C3D-463d-A7CF-5587F9B7E191} - G:\PROGRA~1\MMSASS~1\mmsass~1.dll
O9 - Extra 'Tools' menuitem: 彩E精灵设置 - {6671A433-5C3D-463d-A7CF-5587F9B7E191} - G:\PROGRA~1\MMSASS~1\mmsass~1.dll
O9 - Extra Button: 酷热影音 - {7D73FF86-05F1-39ed-C850-
gototop
 
NAODO
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-09-01
  • 来自:
发表于: 2006-09-02 18:05 | 显示全部 短消息 资料
字号: 10楼

A423120EC338} - www.kuree.com/index.htm?id=00011001 (file missing)
O9 - Extra Button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - h:\Program Files\Tencent\QQ\QQ.EXE
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - h:\Program Files\Tencent\QQ\QQ.EXE
O9 - Extra Button: 易趣购物 - {DE60714-AC19-42e-86A-D70ABDF119A} - http://click2.ad4all.net/url2/urlmanage/url.asp?id=5 (file missing)
O9 - Extra 'Tools' menuitem: 易趣购物 - {DE60714-AC19-42e-86A-D70ABDF119A} - http://click2.ad4all.net/url2/urlmanage/url.asp?id=5 (file missing)
O9 - Extra Button: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - h:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - h:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - G:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - G:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: G:\Program Files\NewDotNet\newdotnet7_22.dll
O10 - Unknown file in Winsock LSP: G:\Program Files\NewDotNet\newdotnet6_38.dll
O10 - Unknown file in Winsock LSP: G:\Program Files\NewDotNet\newdotnet6_38.dll
O10 - Unknown file in Winsock LSP: G:\Program Files\NewDotNet\newdotnet6_38.dll
O10 - Unknown file in Winsock LSP: G:\Program Files\NewDotNet\newdotnet6_38.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
O16 - DPF: {7623BE59-D4CF-4379-ABC4-B39E11854D66} (MabinogiWebAvatarRenderer Class) - http://avatarluoqi.tiancity.com/Modules/mabiweb.cab
O16 - DPF: {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} (AxSubmitControl Class) - https://mybank.icbc.com.cn/icbc/perbank/AxSafeControls.cab
O16 - DPF: {BE20377D-3B83-4CD8-A5B2-00C3C67D518A} (SSOClientDaemon Class) - http://member.segame.com/common/SEGAme.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{351E1D51-6797-4225-A560-FFF35D97680A}: NameServer = 202.109.15.135 202.96.209.134
O18 - Protocol: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - G:\WINDOWS\system32\mshtml.dll
O18 - Protocol: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - G:\WINDOWS\system32\urlmon.dll
O18 - Protocol: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - G:\WINDOWS\system32\msvidctl.dll
O18 - Protocol: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - G:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - G:\WINDOWS\system32\urlmon.dll
O18 - Protocol: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - G:\WINDOWS\system32\urlmon.dll
O18 - Protocol: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - G:\WINDOWS\system32\urlmon.dll
O18 - Protocol: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - G:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ipp - (no CLSID) - (no file)
O18 - Protocol: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - G:\WINDOWS\system32\itss.dll
O18 - Protocol: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - G:\WINDOWS\system32\mshtml.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - G:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - G:\WINDOWS\system32\urlmon.dll
O18 - Protocol: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - G:\WINDOWS\system32\mshtml.dll
O18 - Protocol: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - G:\WINDOWS\system32\inetcomm.dll
O18 - Protocol: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - G:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - G:\WINDOWS\system32\itss.dll
O18 - Protocol: msdaipp - (no CLSID) - (no file)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - G:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - G:\WINDOWS\system32\mshtml.dll
O18 - Protocol: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - G:\WINDOWS\system32\mshtml.dll
O18 - Protocol: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - G:\WINDOWS\system32\msvidctl.dll
O18 - Protocol: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - G:\WINDOWS\system32\mshtml.dll
O18 - Protocol: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - G:\WINDOWS\system32\wiascr.dll
O21 - SSODL: SysTime - {724C75F1-B757-408D-A50A-4CF99DA35D73} - G:\PROGRA~1\WinKld\WinKld.dll
O21 - SSODL: webwork - {4C611512-2C1D-44b2-A044-872AD2AD5A61} - G:\WINDOWS\webwork\webwork.dll
O23 - Service: AutoUpgrade (AutoUpgrade) -  - G:\WINDOWS\system32\svchost.exe -k autoupgrade
O23 - Service: Background Intelligent Transfer Services (BITS32) -  - G:\WINDOWS\system32\svchost.exe -k bits32
O23 - Service: ClipBook (ClipSrv) -  - G:\WINDOWS\system32\svch0st.exe
O23 - Service: Human Interface Device Access (HidServ) -  - G:\WINDOWS\system32\svchost.exe -k netsvcs
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - "G:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"
O23 - Service: JMediaService (JMediaService) -  - G:\WINDOWS\system32\rundll32.exe g:\progra~1\mmsass~1\mmssver.dll,service
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - G:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Rising Proxy  Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - g:\program files\rising\rfw\rfwproxy.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - g:\program files\rising\rfw\rfwsrv.exe
O23 - Service: DNS SystemServices (RpcSs32) -  - G:\WINDOWS\system32\svchost.exe -k rpcss32
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - "G:\Program Files\Rising\Rav\CCenter.exe"
O23 - Service: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - "G:\Program Files\Rising\Rav\Ravmond.exe"
O23 - Service: StdService (StdService) -  - G:\WINDOWS\system32\rundll32.exe g:\windows\system32\stdsver.dll,service
O23 - Service: StyleXPService (StyleXPService) -  - "G:\Program Files\TGTSoft\StyleXP\StyleXPService.exe"
O23 - Service: User Privilege Service (usprserv) - Microsoft Corporation - G:\WINDOWS\system32\svchost.exe -k netsvcs
gototop
 
<<上一主题|下一主题>>
1234   1  /  4  页   跳转
页面顶部
Powered by Discuz!NT