瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 【救命】~~~~~高手们救救小弟~~~

12   2  /  2  页   跳转

【救命】~~~~~高手们救救小弟~~~

收藏
lin4u
头像
初生襁褓狮
  • 帖子:170
  • 注册: 2006-01-10
  • 来自:
发表于: 2007-07-07 22:15 | 显示全部 短消息 资料
字号: 11楼

[C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\Program Files\Alwil Software\Avast4\ChineseS\Base.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\Program Files\Alwil Software\Avast4\ChineseS\Lang.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\WINDOWS\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\PROGRA~1\ALWILS~1\Avast4\AavmRpch.dll]  [ALWIL Software, 4, 7, 997, 0]
    [c:\program files\alwil software\avast4\ahruimai.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll]  [Codejock Software, 1, 9, 4, 0]
    [c:\program files\alwil software\avast4\ahruimes.dll]  [ALWIL Software, 4, 7, 997, 0]
    [c:\program files\alwil software\avast4\ahruins.dll]  [ALWIL Software, 4, 7, 997, 0]
    [c:\program files\alwil software\avast4\ahruiout.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\WINDOWS\system32\MAPI32.dll]  [Microsoft Corporation, 1.0.2536.0 (XPClient.010817-1148)]
    [c:\program files\alwil software\avast4\ahruip2p.dll]  [ALWIL Software, 4, 7, 997, 0]
    [c:\program files\alwil software\avast4\ahruistd.dll]  [ALWIL Software, 4, 7, 997, 0]
    [c:\program files\alwil software\avast4\ahruiws.dll]  [ALWIL Software, 4, 7, 997, 0]
    [C:\Program Files\Alwil Software\Avast4\AavmGuih.dll]  [ALWIL Software, 4, 7, 997, 0]
[PID: 660][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1800][C:\Program Files\Messenger\msmsgs.exe]  [Microsoft Corporation, 4.7.3001]
[PID: 2284][C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe]  [IVT Corporation, 1, 6, 1, 4]
    [C:\Program Files\IVT Corporation\BlueSoleil\btpcfg.dll]  [IVT Corporation, 1, 6, 1, 0]
gototop
 
lin4u
头像
初生襁褓狮
  • 帖子:170
  • 注册: 2006-01-10
  • 来自:
发表于: 2007-07-07 22:15 | 显示全部 短消息 资料
字号: 12楼

[C:\Program Files\IVT Corporation\BlueSoleil\setup.dll]  [IVT Corporation, 1, 4, 9, 4]
    [C:\Program Files\IVT Corporation\BlueSoleil\btwin.dll]  [, 1, 1, 0, 0]
    [C:\Program Files\IVT Corporation\BlueSoleil\versit.dll]  [Versit Consortium (Apple Computer, AT&T, IBM and Siemens), 1, 0, 0, 1]
    [C:\Program Files\IVT Corporation\BlueSoleil\hcicmd.dll]  [N/A, ]
    [C:\Program Files\IVT Corporation\BlueSoleil\btpres.dll]  [IVT Corporation, 1, 6, 2, 0]
    [C:\Program Files\IVT Corporation\BlueSoleil\Driver\USB\btcusb.dll]  [IVT Corporation, 1, 2, 1, 0]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\system32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]
    [C:\WINDOWS\system32\imaadp32.acm]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\msadp32.acm]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\msg711.acm]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\system32\msgsm32.acm]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\system32\tssoft32.acm]  [DSP GROUP, INC., 1.01]
    [C:\WINDOWS\system32\tsd32.dll]  [, ]
    [C:\WINDOWS\system32\msg723.acm]  [Microsoft Corporation, 4.4.3400]
    [C:\WINDOWS\system32\msaud32.acm]  [Microsoft Corporation, 8.00.00.4487]
    [C:\WINDOWS\system32\sl_anet.acm]  [Sipro Lab Telecom Inc., 3.02]
    [C:\WINDOWS\system32\iac25_32.ax]  [Intel Corporation, 2.05.53]
    [C:\WINDOWS\system32\vorbis.acm]  [HMS http://hp.vector.co.jp/authors/VA012897/, 0, 0, 3, 6]
[PID: 2472][C:\WINDOWS\System32\cmd.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 2504][C:\WINDOWS\system32\conime.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 2060][C:\Program Files\TTPlayer\TTPlayer.exe]  [Alen Soft, 4, 6, 7, 0]
    [C:\Program Files\TTPlayer\ttpcomm.dll]  [N/A, ]
    [C:\Program Files\TTPlayer\ttpres.dll]  [Alen Soft, 4, 6, 7, 0]
    [C:\Program Files\TTPlayer\msdmo.dll]  [Microsoft Corporation, 6.03.01.0400]
    [C:\Program Files\TTPlayer\mp3PRO.dll]  [Coding Technologies GmbH, 1, 1, 0, 0]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\Program Files\TTPlayer\AddIn\ttp_lrcsh.dll]  [N/A, ]
    [C:\Program Files\TTPlayer\AddIn\ttp_asf.dll]  [N/A, ]
    [C:\Program Files\TTPlayer\AddIn\ttp_aac.dll]  [N/A, ]
    [C:\Program Files\TTPlayer\AddIn\ttp_ac3dts.dll]  [N/A, ]
    [C:\Program Files\TTPlayer\wmadmod.dll]  [Microsoft Corporation, 10.00.00.3646]
[PID: 1304][C:\Program Files\Tencent\QQGame\QQGame.exe]  [深圳市腾讯计算机系统有限公司, 2, 0, 201, 13]
    [C:\Program Files\Tencent\QQGame\Common\Utility.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\HelpDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQGame\ResEx.dll]  [深圳市腾讯计算机系统有限公司, 0, 10, 0, 0]
    [C:\Program Files\Tencent\QQGame\factory.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\UIStyle.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\MainLogi.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Res\ErrorDes.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\Login.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\cximage.dll]  [Pizzolato Davide - www.xdp.it, 5, 9, 9, c]
    [C:\Program Files\Tencent\QQGame\UI\CommonUI.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQGame\UI\SocialUI.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Res\QGString.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\ComAsyn.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Storage\MiscStor.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\ChanAdd\DirChn.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\DlProxy.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Common\ProcMsg.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQGame\Logic\LaFDown.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\UI\MainUI.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQGame\Tenio\TenFact.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Tenio\TenHall.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Common\Compress.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\ProtHand\QQProt.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\ProtHand\BaseProt.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Socket\NetMod.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\GAvatar.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\python24.dll]  [Python Software Foundation, 2.4.1]
    [C:\Program Files\Tencent\QQGame\Logic\ScripEng.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\ItemShop.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\ShopMgr.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\MRoomMgr.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\QQAvDld.dll]  [N/A, ]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx]  [Macromedia, Inc., 8,0,24,0]
    [C:\Program Files\Tencent\QQGame\Logic\CAAddins\MGRoom.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\Scroll.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\ProtHand\ScatProt.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
    [C:\Program Files\Tencent\QQGame\RICHED20.dll]  [Microsoft Corporation, 5.31.23.1218]
    [C:\Program Files\Tencent\QQGame\Logic\CAAddins\GInterop.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Psapi.Dll]  [Microsoft Corporation, 4.00]
[PID: 3704][C:\Program Files\Tencent\QQGame\QQGameDl.exe]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Common\Utility.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\factory.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\UIStyle.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\DlImpl.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Logic\DlProxy.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Common\ProcMsg.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQGame\ProtHand\BaseProt.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQGame\Socket\NetMod.dll]  [N/A, ]
[PID: 1648][E:\sreng2\SREng.EXE]  [Smallfrogs Studio, 2.4.12.806]
[PID: 3564][C:\WINDOWS\system32\wuauclt.exe]  [Microsoft Corporation, 7.0.6000.374 (winmain(wmbla).070416-2057)]
    [C:\WINDOWS\system32\wups2.dll]  [Microsoft Corporation, 7.0.6000.374 (winmain(wmbla).070416-2057)]
gototop
 
lin4u
头像
初生襁褓狮
  • 帖子:170
  • 注册: 2006-01-10
  • 来自:
发表于: 2007-07-07 22:16 | 显示全部 短消息 资料
字号: 13楼

文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  Error. [AutoCADScriptFile]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
[C:\]
[AutoRun]
open=wscript.exe u.vbe
shell\open\Command=wscript.exe u.vbe
shell\explore\Command=wscript.exe u.vbe
shell\find\Command=wscript.exe u.vbe
[D:\]
[AutoRun]
open=wscript.exe u.vbe
shell\open\Command=wscript.exe u.vbe
shell\explore\Command=wscript.exe u.vbe
shell\find\Command=wscript.exe u.vbe
[E:\]
[AutoRun]
open=wscript.exe u.vbe
shell\open\Command=wscript.exe u.vbe
shell\explore\Command=wscript.exe u.vbe
shell\find\Command=wscript.exe u.vbe
[F:\]
[AutoRun]
open=wscript.exe u.vbe
shell\open\Command=wscript.exe u.vbe
shell\explore\Command=wscript.exe u.vbe
shell\find\Command=wscript.exe u.vbe

==================================
HOSTS 文件
127.0.0.1localhost
202.103.67.180auto.search.msn.com

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================


[/CODE]
gototop
 
<<上一主题|下一主题>>
12   2  /  2  页   跳转
页面顶部
Powered by Discuz!NT