瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 帮忙看看啊~~Trojan.PSW.OnlineGames.aye

1   1  /  1  页   跳转

帮忙看看啊~~Trojan.PSW.OnlineGames.aye

收藏
没事逛逛呀
头像
初生襁褓狮
  • 帖子:38
  • 注册: 2006-03-13
  • 来自:
发表于: 2007-05-02 12:15 | 显示全部 短消息 资料
字号: 1楼

帮忙看看啊~~Trojan.PSW.OnlineGames.aye

[Main]
Program=超 级 兔 子 IE 修 复 专 家
Version=V7.98
WindowsVersion=Windows XP
IEVersion=6.0.2900.2180
WinDir=C:\WINDOWS\
WinSystemDir=C:\WINDOWS\system32\
USERPROFILE=C:\Documents and Settings\ChenXiang
Admin=1
Detail=1
Date=2005-05-02
Time=11:59:25
Code=,
CDCode=,
Reg=0

[Soft]
Max=0

[IE]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\Main
1_Name=Window Title
1_Value=
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\Main
2_Name=Local Page
2_Value=C:\WINDOWS\system32\blank.htm
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\Main
3_Name=Search Page
3_Value=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
4_HKey=HKEY_CURRENT_USER
4_Key=Software\Microsoft\Internet Explorer\Main
4_Name=Start Page
4_Value=about:blank
5_HKey=HKEY_CURRENT_USER
5_Key=Software\Microsoft\Internet Explorer\Main
5_Name=Default_page_url
5_Value=
6_HKey=HKEY_CURRENT_USER
6_Key=Software\Microsoft\Internet Explorer\Main
6_Name=First Home Page
6_Value=
7_HKey=HKEY_LOCAL_MACHINE
7_Key=Software\Microsoft\Internet Explorer\Main
7_Name=Search Page
7_Value=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
8_HKey=HKEY_LOCAL_MACHINE
8_Key=Software\Microsoft\Internet Explorer\Main
8_Name=Start Page
8_Value=about:blank
9_HKey=HKEY_LOCAL_MACHINE
9_Key=Software\Microsoft\Internet Explorer\Main
9_Name=Default_page_url
9_Value=http://www.microsoft.com/windows/ie_intl/cn/start/
10_HKey=HKEY_LOCAL_MACHINE
10_Key=Software\Microsoft\Internet Explorer\Main
10_Name=First Home Page
10_Value=
11_HKey=HKEY_LOCAL_MACHINE
11_Key=Software\Microsoft\Internet Explorer\Main
11_Name=Search Page
11_Value=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
12_HKey=HKEY_LOCAL_MACHINE
12_Key=Software\Microsoft\Internet Explorer\Main
12_Name=Start Page
12_Value=about:blank
Max=12

[IE2]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
1_Name={01E04581-4EEE-11D0-BFE9-00AA005B4383}
1_FileName=%SystemRoot%\system32\browseui.dll
1_FileSize=1016832
1_FileDate=2004-8-4 8:52:08
1_FileVersion=6.0.2900.2180
1_FileCompanyName=Microsoft Corporation
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
2_Name={0E5CBF21-D15F-11D0-8301-00AA005B4383}
2_FileName=%SystemRoot%\system32\SHELL32.dll
2_FileSize=8241664
2_FileDate=2004-8-4 8:52:24
2_FileVersion=6.0.2900.2180
2_FileCompanyName=Microsoft Corporation
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser
3_Name={01E04581-4EEE-11D0-BFE9-00AA005B4383}
3_FileName=%SystemRoot%\system32\browseui.dll
3_FileSize=1016832
3_FileDate=2004-8-4 8:52:08
3_FileVersion=6.0.2900.2180
3_FileCompanyName=Microsoft Corporation
Max=3

[IE3]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\MenuExt\上传到QQ网络硬盘
1_FileName=D:\Tencent\QQ\AddToNetDisk.htm
1_FileSize=534
1_FileDate=2007-2-2 19:04:24
1_FileVersion=
1_FileCompanyName=
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\MenuExt\使用迅雷下载
2_FileName=D:\系统工具\迅雷\Program\geturl.htm
2_FileSize=3946
2_FileDate=2007-2-28 14:59:14
2_FileVersion=
2_FileCompanyName=
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\MenuExt\使用迅雷下载全部链接
3_FileName=D:\系统工具\迅雷\Program\getallurl.htm
3_FileSize=1673
3_FileDate=2007-2-10 14:41:30
3_FileVersion=
3_FileCompanyName=
4_HKey=HKEY_CURRENT_USER
4_Key=Software\Microsoft\Internet Explorer\MenuExt\添加到QQ自定义面板
4_FileName=D:\Tencent\QQ\AddPanel.htm
4_FileSize=1815
4_FileDate=2007-2-2 19:04:24
4_FileVersion=
4_FileCompanyName=
5_HKey=HKEY_CURRENT_USER
5_Key=Software\Microsoft\Internet Explorer\MenuExt\添加到QQ表情
5_FileName=D:\Tencent\QQ\AddEmotion.htm
5_FileSize=534
5_FileDate=2007-2-2 19:04:24
5_FileVersion=
5_FileCompanyName=
6_HKey=HKEY_CURRENT_USER
6_Key=Software\Microsoft\Internet Explorer\MenuExt\用QQ彩信发送该图片
6_FileName=D:\Tencent\QQ\SendMMS.htm
6_FileSize=519
6_FileDate=2007-2-2 19:04:36
6_FileVersion=
6_FileCompanyName=
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}
7_Clsid={1FBA04EE-3024-11D2-8F1F-0000F87ABD16}
7_ButtonText=启动迅雷5
7_MenuText=启动迅雷5
7_FileName=
7_FileVersion=
7_FileCompanyName=
8_HKey=HKEY_LOCAL_MACHINE
8_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157b}
8_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
8_ButtonText=QQ
8_MenuText=腾讯QQ
8_FileName=
8_FileVersion=
8_FileCompanyName=
9_HKey=HKEY_LOCAL_MACHINE
9_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{FB5F1910-F110-11d2-BB9E-00C04F795683}
9_Clsid={1FBA04EE-3024-11D2-8F1F-0000F87ABD16}
9_ButtonText=Messenger
9_MenuText=Windows Messenger
9_FileName=
9_FileVersion=
9_FileCompanyName=
10_HKey=HKEY_CURRENT_USER
10_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping
10_Clsid=
10_ButtonText=
10_MenuText=
10_FileName=
10_FileVersion=
10_FileCompanyName=
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0D42E1BD-09DD-4873-A826-9C7E793EB7B6}
最后编辑2007-05-02 12:08:46
分享到:
gototop
 
没事逛逛呀
头像
初生襁褓狮
  • 帖子:38
  • 注册: 2006-03-13
  • 来自:
发表于: 2007-05-02 12:16 | 显示全部 短消息 资料
字号: 2楼

11_Clsid=IeHelper Class
11_FileName=D:\系统工具\迅雷\Components\ResWorker\DSIeHelper.dll
11_FileSize=91864
11_FileDate=2007-4-12 14:05:36
11_FileVersion=1.0.0.2
11_FileCompanyName=Thunder Networking Technologies,LTD
12_HKey=HKEY_LOCAL_MACHINE
12_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{889D2FEB-5411-4565-8998-1DD2C5261283}
12_Clsid=Thunder Browser Helper
12_FileName=D:\系统工具\迅雷\ComDlls\xunleiBHO_Now.dll
12_FileSize=97544
12_FileDate=2007-4-6 14:59:34
12_FileVersion=5.0.2.17
12_FileCompanyName=Thunder Networking Technologies,LTD
13_HKey=HKEY_LOCAL_MACHINE
13_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\{05C1004E-2596-48E5-8E26-39362985EEB9}
13_Download=http://p3p.sogou.com/MMCShell.cab
13_FileName=C:\WINDOWS\Downloaded Program Files\MMCShell.inf
13_FileSize=227
13_FileDate=2007-4-18 10:40:16
13_FileVersion=
13_FileCompanyName=
14_HKey=HKEY_LOCAL_MACHINE
14_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}
14_Download=http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
14_FileName=C:\WINDOWS\Downloaded Program Files\swflash.inf
14_FileSize=5085
14_FileDate=2007-3-26 16:46:42
14_FileVersion=
14_FileCompanyName=
15_HKey=HKEY_LOCAL_MACHINE
15_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\{EC53936E-6D4A-4307-9092-A2FC48EAFC56}
15_Download=http://service.qq.com/web800.exe
15_FileName=
15_FileVersion=
15_FileCompanyName=
16_HKey=HKEY_LOCAL_MACHINE
16_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{02D27962-1F32-46AD-BD23-EB4CE6C822B0}
16_NameServer=
16_Clsid=
16_FileName=
16_FileVersion=
16_FileCompanyName=
17_HKey=HKEY_LOCAL_MACHINE
17_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{18DD8D54-C48C-439A-B331-94DD3381CE0C}
17_NameServer=
17_Clsid=
17_FileName=
17_FileVersion=
17_FileCompanyName=
18_HKey=HKEY_LOCAL_MACHINE
18_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{23C3A875-D716-42E1-A868-F6F0FCAA3EF1}
18_NameServer=
18_Clsid=
18_FileName=
18_FileVersion=
18_FileCompanyName=
19_HKey=HKEY_LOCAL_MACHINE
19_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{3CCC682F-D704-4953-B9D5-92DF1A75F146}
19_NameServer=
19_Clsid=
19_FileName=
19_FileVersion=
19_FileCompanyName=
20_HKey=HKEY_LOCAL_MACHINE
20_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B1227CDE-AE15-4256-B4FA-FBDEE02F83F6}
20_NameServer=
20_Clsid=
20_FileName=
20_FileVersion=
20_FileCompanyName=
21_HKey=HKEY_LOCAL_MACHINE
21_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B649431C-93F5-4181-B6A3-89DC424C82E9}
21_NameServer=
21_Clsid=
21_FileName=
21_FileVersion=
21_FileCompanyName=
22_HKey=HKEY_LOCAL_MACHINE
22_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{D26ECBD8-90AB-4208-994B-23ED1DC9396D}
22_NameServer=202.103.225.68 202.103.224.68
22_Clsid=
22_FileName=
22_FileVersion=
22_FileCompanyName=
23_HKey=HKEY_LOCAL_MACHINE
23_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{FC2C1306-A790-4E2A-B23C-BD7589C225BD}
23_NameServer=
23_Clsid=
23_FileName=
23_FileVersion=
23_FileCompanyName=
Max=23

[Link]
1_HKey=HKEY_CLASSES_ROOT
1_Key=.exe
1_Name=
1_Value=exefile
1_HKeyLink=HKEY_CLASSES_ROOT
1_KeyLink=exefile\shell\open\command
1_NameLink=
1_ValueLink="%1" %*
2_HKey=HKEY_CLASSES_ROOT
2_Key=.com
2_Name=
2_Value=comfile
2_HKeyLink=HKEY_CLASSES_ROOT
2_KeyLink=comfile\shell\open\command
2_NameLink=
2_ValueLink="%1" %*
3_HKey=HKEY_CLASSES_ROOT
3_Key=.lnk
3_Name=
3_Value=lnkfile
3_HKeyLink=HKEY_CLASSES_ROOT
3_KeyLink=lnkfile\CLSID
3_NameLink=
3_ValueLink={00021401-0000-0000-C000-000000000046}
4_HKey=HKEY_CLASSES_ROOT
4_Key=.txt
4_Name=
4_Value=txtfile
4_HKeyLink=HKEY_CLASSES_ROOT
4_KeyLink=txtfile\shell\open\command
4_NameLink=
4_ValueLink=%SystemRoot%\system32\NOTEPAD.EXE %1
4_FileSizeLink=66560
4_FileDateLink=2004-8-4 8:52:36
4_FileVersionLink=5.1.2600.2180
4_FileCompanyNameLink=Microsoft Corporation
5_HKey=HKEY_CLASSES_ROOT
5_Key=.htm
5_Name=
gototop
 
没事逛逛呀
头像
初生襁褓狮
  • 帖子:38
  • 注册: 2006-03-13
  • 来自:
发表于: 2007-05-02 12:16 | 显示全部 短消息 资料
字号: 3楼

5_Value=htmlfile
5_HKeyLink=HKEY_CLASSES_ROOT
5_KeyLink=htmlfile\shell\open\command
5_NameLink=
5_ValueLink="C:\Program Files\Internet Explorer\iexplore.exe" -nohome
5_FileSizeLink=93184
5_FileDateLink=2004-8-4 8:52:32
5_FileVersionLink=6.0.2900.2180
5_FileCompanyNameLink=Microsoft Corporation
6_HKey=HKEY_CLASSES_ROOT
6_Key=.html
6_Name=
6_Value=htmlfile
6_HKeyLink=HKEY_CLASSES_ROOT
6_KeyLink=htmlfile\shell\open\command
6_NameLink=
6_ValueLink="C:\Program Files\Internet Explorer\iexplore.exe" -nohome
6_FileSizeLink=93184
6_FileDateLink=2004-8-4 8:52:32
6_FileVersionLink=6.0.2900.2180
6_FileCompanyNameLink=Microsoft Corporation
7_HKey=HKEY_CLASSES_ROOT
7_Key=.url
7_Name=
7_Value=InternetShortcut
7_HKeyLink=HKEY_CLASSES_ROOT
7_KeyLink=InternetShortcut\shell\open\command
7_NameLink=
7_ValueLink=rundll32.exe shdocvw.dll,OpenURL %l
8_HKey=HKEY_CLASSES_ROOT
8_Key=PROTOCOLS\Filter\text/html
8_Name=CLSID
8_Value=
9_HKey=HKEY_CLASSES_ROOT
9_Key=PROTOCOLS\Filter\text/plain
9_Name=CLSID
9_Value=
10_HKey=HKEY_LOCAL_MACHINE
10_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
10_Name=
10_Value=http://
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes
11_Name=www
11_Value=http://
Max=11

[Notify]
Max=0

[Shdoclc]
1_FileSize=498176
1_FileDate=2004-8-4 8:51:40
1_FileVersion=6.0.2900.2180
1_FileCompanyName=Microsoft Corporation
Max=1

[AppInit_DLLs]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
1_Name=AppInit_DLLs
1_Value=
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
2_Name=Userinit
2_Value=C:\WINDOWS\system32\userinit.exe,
2_FileSize=23552
2_FileDate=2004-8-4 8:52:38
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
3_Name=Shell
3_Value=Explorer.exe
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
4_Name=System
3_Value=
Max=4

[WinSock2NameSpace]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001
1_Name=DisplayString
1_Value=Tcpip
1_Enabled=1
1_LibraryPath=%SystemRoot%\System32\mswsock.dll
1_FileSize=240640
1_FileDate=2004-8-4 8:52:20
1_FileVersion=5.1.2600.2180
1_FileCompanyName=Microsoft Corporation
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002
2_Name=DisplayString
2_Value=NTDS
2_Enabled=1
2_LibraryPath=%SystemRoot%\System32\winrnr.dll
2_FileSize=16896
2_FileDate=2004-8-4 8:52:28
2_FileVersion=5.1.2600.2180
2_FileCompanyName=Microsoft Corporation
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003
3_Name=DisplayString
3_Value=网络位置知晓 (NLA) 名称空间
3_Enabled=1
3_LibraryPath=%SystemRoot%\System32\mswsock.dll
3_FileSize=240640
3_FileDate=2004-8-4 8:52:20
3_FileVersion=5.1.2600.2180
3_FileCompanyName=Microsoft Corporation
Max=3

[WinSock2Protocol]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001
1_Name=PackedCatalogItem
1_FileName=%SystemRoot%\system32\mswsock.dll
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002
2_Name=PackedCatalogItem
2_FileName=%SystemRoot%\system32\mswsock.dll
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003
3_Name=PackedCatalogItem
3_FileName=%SystemRoot%\system32\mswsock.dll
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004
4_Name=PackedCatalogItem
4_FileName=%SystemRoot%\system32\mswsock.dll
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005
5_Name=PackedCatalogItem
5_FileName=%SystemRoot%\system32\rsvpsp.dll
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006
6_Name=PackedCatalogItem
6_FileName=%SystemRoot%\system32\rsvpsp.dll
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007
7_Name=PackedCatalogItem
7_FileName=%SystemRoot%\system32\mswsock.dll
8_HKey=HKEY_LOCAL_MACHINE
gototop
 
没事逛逛呀
头像
初生襁褓狮
  • 帖子:38
  • 注册: 2006-03-13
  • 来自:
发表于: 2007-05-02 12:17 | 显示全部 短消息 资料
字号: 4楼

8_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008
8_Name=PackedCatalogItem
8_FileName=%SystemRoot%\system32\mswsock.dll
9_HKey=HKEY_LOCAL_MACHINE
9_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009
9_Name=PackedCatalogItem
9_FileName=%SystemRoot%\system32\mswsock.dll
10_HKey=HKEY_LOCAL_MACHINE
10_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010
10_Name=PackedCatalogItem
10_FileName=%SystemRoot%\system32\mswsock.dll
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011
11_Name=PackedCatalogItem
11_FileName=%SystemRoot%\system32\mswsock.dll
12_HKey=HKEY_LOCAL_MACHINE
12_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012
12_Name=PackedCatalogItem
12_FileName=%SystemRoot%\system32\mswsock.dll
13_HKey=HKEY_LOCAL_MACHINE
13_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000013
13_Name=PackedCatalogItem
13_FileName=%SystemRoot%\system32\mswsock.dll
14_HKey=HKEY_LOCAL_MACHINE
14_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000014
14_Name=PackedCatalogItem
14_FileName=%SystemRoot%\system32\mswsock.dll
15_HKey=HKEY_LOCAL_MACHINE
15_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000015
15_Name=PackedCatalogItem
15_FileName=%SystemRoot%\system32\mswsock.dll
16_HKey=HKEY_LOCAL_MACHINE
16_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000016
16_Name=PackedCatalogItem
16_FileName=%SystemRoot%\system32\mswsock.dll
17_HKey=HKEY_LOCAL_MACHINE
17_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000017
17_Name=PackedCatalogItem
17_FileName=%SystemRoot%\system32\mswsock.dll
18_HKey=HKEY_LOCAL_MACHINE
18_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000018
18_Name=PackedCatalogItem
18_FileName=%SystemRoot%\system32\mswsock.dll
19_HKey=HKEY_LOCAL_MACHINE
19_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000019
19_Name=PackedCatalogItem
19_FileName=%SystemRoot%\system32\mswsock.dll
20_HKey=HKEY_LOCAL_MACHINE
20_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000020
20_Name=PackedCatalogItem
20_FileName=%SystemRoot%\system32\mswsock.dll
21_HKey=HKEY_LOCAL_MACHINE
21_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000021
21_Name=PackedCatalogItem
21_FileName=%SystemRoot%\system32\mswsock.dll
22_HKey=HKEY_LOCAL_MACHINE
22_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000022
22_Name=PackedCatalogItem
22_FileName=%SystemRoot%\system32\mswsock.dll
Max=22

[WinSock2Winsock]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=System\CurrentControlSet\Services\Winsock2\Winsock
1_Name=PathName
1_Value=
1_Found=0
Max=1

[WOW]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Control\WOW
1_Name=cmdline
1_Value=%SystemRoot%\system32\ntvdm.exe -o
1_Filename=C:\WINDOWS\SYSTEM32\NTVDM.EXE
1_FileSize=417280
1_FileDate=2004-8-4 8:52:36
1_FileVersion=5.1.2600.2180
1_FileCompanyName=Microsoft Corporation
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Control\WOW
2_Name=wowcmdline
2_Value=%SystemRoot%\system32\ntvdm.exe -a %SystemRoot%\system32\krnl386
2_Filename=C:\WINDOWS\SYSTEM32\NTVDM.EXE
2_FileSize=417280
2_FileDate=2004-8-4 8:52:36
2_FileVersion=5.1.2600.2180
2_FileCompanyName=Microsoft Corporation
Max=2

[ShellExecuteHooks]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
1_Name={AEB6717E-7E19-11d0-97EE-00C04FD91972}
1_ClsidName=URL 执行挂钩
1_FileName=C:\WINDOWS\system32\shell32.dll
1_FileSize=8241664
1_FileDate=2004-8-4 8:52:24
Max=1

[ShellServiceObjectDelayLoad]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
1_Name=PostBootReminder
1_Value={7849596a-48ea-486e-8937-a2a3009f31a9}
1_ClsidName=PostBootReminder 对象
1_FileName=%SystemRoot%\system32\SHELL32.dll
1_FileSize=8241664
1_FileDate=2004-8-4 8:52:24
1_FileVersion=6.0.2900.2180
1_FileCompanyName=Microsoft Corporation
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
2_Name=CDBurn
2_Value={fbeb8a05-beee-4442-804e-409d6c4515e9}
2_ClsidName=烧 CD 的 ShellFolder
2_FileName=%SystemRoot%\system32\SHELL32.dll
gototop
 
没事逛逛呀
头像
初生襁褓狮
  • 帖子:38
  • 注册: 2006-03-13
  • 来自:
发表于: 2007-05-02 12:17 | 显示全部 短消息 资料
字号: 5楼

2_FileSize=8241664
2_FileDate=2004-8-4 8:52:24
2_FileVersion=6.0.2900.2180
2_FileCompanyName=Microsoft Corporation
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
3_Name=WebCheck
3_Value={E6FB5E20-DE35-11CF-9C87-00AA005127ED}
3_ClsidName=WebCheck
3_FileName=%SystemRoot%\system32\webcheck.dll
3_FileSize=265728
3_FileDate=2004-8-4 8:52:28
3_FileVersion=6.0.2900.2180
3_FileCompanyName=Microsoft Corporation
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
4_Name=SysTray
4_Value={35CEC8A3-2BE6-11D2-8773-92E220524153}
4_ClsidName=SysTray
4_FileName=C:\WINDOWS\system32\stobject.dll
4_FileSize=121344
4_FileDate=2004-8-4 8:52:26
4_FileVersion=5.1.2600.2180
4_FileCompanyName=Microsoft Corporation
Max=4

[SharedTaskScheduler]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
1_Name={438755C2-A8BA-11D1-B96B-00A0C90312E1}
1_Value=Browseui 预加载程序
1_FileName=%SystemRoot%\system32\browseui.dll
1_FileSize=1016832
1_FileDate=2004-8-4 8:52:08
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
2_Name={8C7461EF-2B13-11d2-BE35-3078302C2030}
2_Value=组件类别缓存程序
2_FileName=%SystemRoot%\system32\browseui.dll
2_FileSize=1016832
2_FileDate=2004-8-4 8:52:08
Max=2

[ProtocolDefaults]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
1_Name=http
1_Value=3
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
2_Name=https
2_Value=3
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
3_Name=ftp
3_Value=3
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
4_Name=file
4_Value=3
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
5_Name=@ivt
5_Value=1
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
6_Name=shell
6_Value=0
Max=6

[BootExecute]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Control\Session Manager
1_Name=BootExecute
1_Value=autocheck autochk *
Max=1

[Startup]
Max=0

[AutoRun]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=Software\Microsoft\Windows\CurrentVersion\Run
1_Name=High Definition Audio 属性页快捷方式
1_Value=hdashcut.exe
1_FileSize=61952
1_FileDate=2005-1-7 17:07:16
1_FileVersion=5.10.1.5013
1_FileCompanyName=Windows (R) Server 2003 DDK provider
2_HKey=HKEY_LOCAL_MACHINE
2_Key=Software\Microsoft\Windows\CurrentVersion\Run
2_Name=Power_Gear
2_Value=c:\program files\asus\power4 gear\batterylife.exe 1
2_FileSize=86016
2_FileDate=2006-3-6 17:13:56
2_FileVersion=1043.6.15.116
2_FileCompanyName=ASUSTeK Computer Inc.
3_HKey=HKEY_LOCAL_MACHINE
3_Key=Software\Microsoft\Windows\CurrentVersion\Run
3_Name=HControl
3_Value=c:\windows\atk0100\hcontrol.exe
3_FileSize=110592
3_FileDate=2006-4-17 17:24:30
3_FileVersion=1043.2.15.58
3_FileCompanyName=ATK0100
4_HKey=HKEY_LOCAL_MACHINE
4_Key=Software\Microsoft\Windows\CurrentVersion\Run
4_Name=ACMON
4_Value=c:\program files\asus\splendid\acmon.exe
4_FileSize=17920
4_FileDate=2006-2-21 19:36:52
4_FileVersion=1.0.4.221
4_FileCompanyName=ATK
5_HKey=HKEY_LOCAL_MACHINE
5_Key=Software\Microsoft\Windows\CurrentVersion\Run
5_Name=RfwMain
5_Value="c:\program files\rising\rfw\rfwmain.exe" -startup
5_FileSize=454656
5_FileDate=2007-4-29 15:20:39
5_FileVersion=5.0.0.70
5_FileCompanyName=Beijing Rising Technology Co., Ltd.
6_HKey=HKEY_LOCAL_MACHINE
6_Key=Software\Microsoft\Windows\CurrentVersion\Run
6_Name=RavTask
6_Value="c:\program files\rising\rav\ravtask.exe" -system
6_FileSize=118784
6_FileDate=2007-4-29 15:35:18
6_FileVersion=19.0.0.7
6_FileCompanyName=Beijing Rising Technology Co., Ltd.
7_HKey=HKEY_LOCAL_MACHINE
7_Key=Software\Microsoft\Windows\CurrentVersion\Run
7_Name=NvCplDaemon
7_Value=rundll32.exe c:\windows\system32\nvcpl.dll,nvstartup
7_FileSize=7561216
7_FileDate=2006-3-17 13:16:00
7_FileVersion=6.14.10.8426
7_FileCompanyName=NVIDIA Corporation
8_HKey=HKEY_LOCAL_MACHINE
8_Key=Software\Microsoft\Windows\CurrentVersion\Run
8_Name=mppds
8_Value=c:\windows\mppds.exe
8_FileSize=19456
8_FileDate=2005-5-2 11:46:41
8_FileVersion=
8_FileCompanyName=
9_HKey=HKEY_LOCAL_MACHINE
9_Key=Software\Microsoft\Windows\CurrentVersion\Run
9_Name=winform
9_Value=c:\windows\winform.exe
9_FileSize=18432
9_FileDate=2005-5-2 11:46:42
9_FileVersion=
9_FileCompanyName=
10_HKey=HKEY_LOCAL_MACHINE
10_Key=Software\Microsoft\Windows\CurrentVersion\Run
10_Name=cmdbs
10_Value=c:\windows\cmdbs.exe
10_FileSize=17920
10_FileDate=2005-5-2 11:46:46
10_FileVersion=
10_FileCompanyName=
11_HKey=HKEY_LOCAL_MACHINE
11_Key=Software\Microsoft\Windows\CurrentVersion\Run
11_Name=upxdnd
11_Value=c:\docume~1\chenxi~1\locals~1\temp\upxdnd.exe
11_FileSize=17920
11_FileDate=2005-5-2 11:46:47
11_FileVersion=
11_FileCompanyName=
12_HKey=HKEY_LOCAL_MACHINE
12_Key=Software\Microsoft\Windows\CurrentVersion\Run
12_Name=msccrt
12_Value=c:\windows\msccrt.exe
12_FileSize=17408
12_FileDate=2005-5-2 11:46:48
12_FileVersion=
12_FileCompanyName=
13_HKey=HKEY_LOCAL_MACHINE
13_Key=Software\Microsoft\Windows\CurrentVersion\Run
13_Name=ronney
13_Value=c:\windows\ronney.exe /i
13_FileSize=17920
13_FileDate=2005-5-2 11:46:50
13_FileVersion=
13_FileCompanyName=
14_HKey=HKEY_LOCAL_MACHINE
14_Key=Software\Microsoft\Windows NT\CurrentVersion\Windows
14_Name=load
14_Value=
15_HKey=HKEY_CURRENT_USER
15_Key=Software\Microsoft\Windows\CurrentVersion\Run
15_Name=ctfmon.exe
gototop
 
没事逛逛呀
头像
初生襁褓狮
  • 帖子:38
  • 注册: 2006-03-13
  • 来自:
发表于: 2007-05-02 12:18 | 显示全部 短消息 资料
字号: 6楼

5_Value=c:\windows\system32\ctfmon.exe
15_FileSize=15360
15_FileDate=2004-8-4 8:52:30
15_FileVersion=5.1.2600.2180
15_FileCompanyName=Microsoft Corporation
16_HKey=HKEY_CURRENT_USER
16_Key=Software\Microsoft\Windows NT\CurrentVersion\Windows
16_Name=load
16_Value=
Max=16

[ModuleUsage]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MMCShell.dll
1_Name=.Owner
1_Value={05C1004E-2596-48E5-8E26-39362985EEB9}
1_Clsid=MMCPlayer Class
1_FileName=C:\WINDOWS\Downloaded Program Files\MMCShell.dll
1_FileSize=292948
1_FileDate=2007-4-18 16:28:44
1_FileVersion=2.0.0.93
1_FileCompanyName=Sohu.com Inc.
Max=1

[Process]
1_FileName=C:\WINDOWS\SYSTEM32\SMSS.EXE
1_FileSize=50688
1_FileDate=2004-8-4 8:52:38
1_FileVersion=5.1.2600.2180
1_FileCompanyName=Microsoft Corporation
2_FileName=C:\WINDOWS\SYSTEM32\WINLOGON.EXE
2_FileSize=487424
2_FileDate=2004-8-4 8:52:38
2_FileVersion=5.1.2600.2180
2_FileCompanyName=Microsoft Corporation
3_FileName=C:\WINDOWS\SYSTEM32\SERVICES.EXE
3_FileSize=108032
3_FileDate=2004-8-4 8:52:38
3_FileVersion=5.1.2600.2180
3_FileCompanyName=Microsoft Corporation
4_FileName=C:\WINDOWS\SYSTEM32\LSASS.EXE
4_FileSize=13312
4_FileDate=2004-8-4 8:52:32
4_FileVersion=5.1.2600.2180
4_FileCompanyName=Microsoft Corporation
5_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
5_FileSize=14336
5_FileDate=2004-8-4 8:52:38
5_FileVersion=5.1.2600.2180
5_FileCompanyName=Microsoft Corporation
6_FileName=C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
6_FileSize=110592
6_FileDate=2007-4-29 15:35:18
6_FileVersion=18.0.0.3
6_FileCompanyName=Beijing Rising Technology Co., Ltd.
7_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
7_FileSize=14336
7_FileDate=2004-8-4 8:52:38
7_FileVersion=5.1.2600.2180
7_FileCompanyName=Microsoft Corporation
8_FileName=C:\PROGRAM FILES\RISING\RAV\RAVMOND.EXE
8_FileSize=278528
8_FileDate=2007-4-29 15:35:13
8_FileVersion=19.0.0.49
8_FileCompanyName=Beijing Rising Technology Co., Ltd.
9_FileName=C:\PROGRAM FILES\RISING\RFW\RFWSRV.EXE
9_FileSize=151552
9_FileDate=2007-4-29 15:20:39
9_FileVersion=5.0.0.34
9_FileCompanyName=Beijing Rising Technology Co., Ltd.
10_FileName=C:\WINDOWS\EXPLORER.EXE
10_FileSize=976896
10_FileDate=2004-8-4 8:52:32
10_FileVersion=6.0.2900.2180
10_FileCompanyName=Microsoft Corporation
11_FileName=C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
11_FileSize=57856
11_FileDate=2004-8-4 8:52:38
11_FileVersion=5.1.2600.2180
11_FileCompanyName=Microsoft Corporation
12_FileName=C:\PROGRAM FILES\ASUS\POWER4 GEAR\BATTERYLIFE.EXE
12_FileSize=86016
12_FileDate=2006-3-6 17:13:56
12_FileVersion=1043.6.15.116
12_FileCompanyName=ASUSTeK Computer Inc.
13_FileName=C:\WINDOWS\ATK0100\HCONTROL.EXE
13_FileSize=110592
13_FileDate=2006-4-17 17:24:30
13_FileVersion=1043.2.15.58
13_FileCompanyName=ATK0100
14_FileName=C:\PROGRAM FILES\ASUS\SPLENDID\ACMON.EXE
14_FileSize=17920
14_FileDate=2006-2-21 19:36:52
14_FileVersion=1.0.4.221
14_FileCompanyName=ATK
15_FileName=C:\PROGRAM FILES\RISING\RFW\RFWMAIN.EXE
15_FileSize=454656
15_FileDate=2007-4-29 15:20:39
15_FileVersion=5.0.0.70
15_FileCompanyName=Beijing Rising Technology Co., Ltd.
16_FileName=C:\PROGRAM FILES\RISING\RAV\RAVTASK.EXE
16_FileSize=118784
16_FileDate=2007-4-29 15:35:18
16_FileVersion=19.0.0.7
16_FileCompanyName=Beijing Rising Technology Co., Ltd.
17_FileName=C:\PROGRAM FILES\RISING\RAV\RAVMON.EXE
17_FileSize=622592
17_FileDate=2007-4-29 15:35:13
17_FileVersion=19.0.0.45
17_FileCompanyName=Beijing Rising Technology Co., Ltd.
18_FileName=C:\WINDOWS\SYSTEM32\CTFMON.EXE
18_FileSize=15360
18_FileDate=2004-8-4 8:52:30
18_FileVersion=5.1.2600.2180
18_FileCompanyName=Microsoft Corporation
19_FileName=C:\WINDOWS\SYSTEM32\ACENGSVR.EXE
19_FileSize=155648
19_FileDate=2005-7-6 15:43:42
19_FileVersion=1.0.0.4
19_FileCompanyName=ASUSTeK
20_FileName=C:\WINDOWS\SYSTEM32\NVSVC32.EXE
20_FileSize=143426
20_FileDate=2006-3-17 13:16:00
20_FileVersion=6.14.10.8426
20_FileCompanyName=NVIDIA Corporation
21_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
21_FileSize=14336
21_FileDate=2004-8-4 8:52:38
21_FileVersion=5.1.2600.2180
21_FileCompanyName=Microsoft Corporation
22_FileName=C:\WINDOWS\ATK0100\ATKOSD.EXE
22_FileSize=2170880
22_FileDate=2006-4-1 16:37:00
22_FileVersion=1043.2.15.57
22_FileCompanyName=ATK0100
23_FileName=D:\TENCENT\QQ\QQ.EXE
23_FileSize=1585152
23_FileDate=2007-2-2 19:00:12
23_FileVersion=0.0.0.0
23_FileCompanyName=TENCENT
24_FileName=D:\TENCENT\QQ\TIMPLATFORM.EXE
24_FileSize=69632
24_FileDate=2007-2-2 16:41:00
24_FileVersion=0.3.1.8
24_FileCompanyName=tencent
25_FileName=C:\WINDOWS\RONNEY.EXE
25_FileSize=17920
25_FileDate=2005-5-2 11:46:50
25_FileVersion=
25_FileCompanyName=
26_FileName=D:\系统工具\迅雷\PROGRAM\THUNDER5.EXE
26_FileSize=1617920
26_FileDate=2007-4-18 16:55:20
26_FileVersion=5.6.1.292
26_FileCompanyName=Thunder Networking Technologies,LTD
27_FileName=C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
27_FileSize=93184
27_FileDate=2004-8-4 8:52:32
27_FileVersion=6.0.2900.2180
27_FileCompanyName=Microsoft Corporation
28_FileName=C:\PROGRAM FILES\SUPER RABBIT\MAGICSET\SRIEH.EXE
28_FileSize=794112
28_FileDate=2007-3-22 22:41:42
28_FileVersion=7.98.0.0
28_FileCompanyName=Super Rabbit Soft
29_FileName=[SYSTEM PROCESS]
30_FileName=C:\WINDOWS\system32\CSRSS.EXE
30_FileSize=6144
30_FileDate=2004-8-4 8:52:30
30_FileVersion=5.1.2600.2180
30_FileCompanyName=Microsoft Corporation
31_FileName=C:\WINDOWS\system32\WDFMGR.EXE
31_FileSize=38912
31_FileDate=2005-1-28 1:36:00
31_FileVersion=5.2.3790.1230
31_FileCompanyName=Microsoft Corporation
32_FileName=C:\WINDOWS\system32\ALG.EXE
32_FileSize=44544
32_FileDate=2004-8-4 8:52:30
32_FileVersion=5.1.2600.2180
32_FileCompanyName=Microsoft Corporation
Max=32

[Hosts]
HostsFile=C:\WINDOWS\system32\Drivers\Etc\Hosts
1_Host=127.0.0.1      localhost
Max=1

[Service]
1_ServiceName=727369E8
1_DisplayName=727369E8
1_Description=727369E8
1_Status=停止
1_StartType=自动
1_ServiceDll=
1_ImagePath=C:\WINDOWS\SYSTEM32\727369E8.EXE -K

2_ServiceName=Irmon
2_DisplayName=Infrared Monitor
2_Description=支持安装在这台计算机上的红外设备并且检测在有效范围内的其它红外设备。
2_Status=已启动
2_StartType=自动
gototop
 
没事逛逛呀
头像
初生襁褓狮
  • 帖子:38
  • 注册: 2006-03-13
  • 来自:
发表于: 2007-05-02 12:18 | 显示全部 短消息 资料
字号: 7楼

2_ServiceDll=C:\WINDOWS\SYSTEM32\IRMON.DLL
2_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

3_ServiceName=RfwProxySrv
3_DisplayName=Rising Proxy  Service
3_Description=Rising Personal Proxy Service
3_Status=停止
3_StartType=手动
3_ServiceDll=
3_ImagePath=C:\PROGRAM FILES\RISING\RFW\RFWPROXY.EXE

4_ServiceName=RfwService
4_DisplayName=Rising Personal Firewall Service
4_Description=Rising Personal Firewall Service
4_Status=已启动
4_StartType=自动
4_ServiceDll=
4_ImagePath=C:\PROGRAM FILES\RISING\RFW\RFWSRV.EXE

5_ServiceName=RsCCenter
5_DisplayName=Rising Process Communication Center
5_Description=
5_Status=已启动
5_StartType=自动
5_ServiceDll=
5_ImagePath="C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE"

6_ServiceName=RsRavMon
6_DisplayName=Rising RealTime Monitor
6_Description=
6_Status=已启动
6_StartType=自动
6_ServiceDll=
6_ImagePath="C:\PROGRAM FILES\RISING\RAV\RAVMOND.EXE"

7_ServiceName=ServiceLayer
7_DisplayName=ServiceLayer
7_Description=
7_Status=停止
7_StartType=手动
7_ServiceDll=
7_ImagePath="C:\PROGRAM FILES\PC CONNECTIVITY SOLUTION\SERVICELAYER.EXE"

Max=7

[Driver]
1_ServiceName=Arp1394
1_DisplayName=1394 ARP 客户端协议
1_Description=1394 ARP 客户端协议
1_ServiceDll=
1_ImagePath=SYSTEM32\DRIVERS\ARP1394.SYS
2_ServiceName=BaseTDI
2_DisplayName=Rising TDI Base Driver
2_Description=
2_ServiceDll=
2_ImagePath=SYSTEM32\DRIVERS\BASETDI.SYS
3_ServiceName=CmBatt
3_DisplayName=Microsoft AC Adapter Driver
3_Description=
3_ServiceDll=
3_ImagePath=SYSTEM32\DRIVERS\CMBATT.SYS
4_ServiceName=ExpScaner
4_DisplayName=ExpScaner
4_Description=
4_ServiceDll=
4_ImagePath=C:\PROGRAM FILES\RISING\RAV\EXPSCAN.SYS
5_ServiceName=HdAudAddService
5_DisplayName=Microsoft 用于 High Definition Audio 服务的 UAA 功能驱动程序
5_Description=
5_ServiceDll=
5_ImagePath=SYSTEM32\DRIVERS\HDAUDIO.SYS
6_ServiceName=HookCont
6_DisplayName=HookCont
6_Description=
6_ServiceDll=
6_ImagePath=C:\PROGRAM FILES\RISING\RAV\HOOKCONT.SYS
7_ServiceName=HookReg
7_DisplayName=HookReg
7_Description=
7_ServiceDll=
7_ImagePath=C:\PROGRAM FILES\RISING\RAV\HOOKREG.SYS
8_ServiceName=HookSys
8_DisplayName=HookSys
8_Description=
8_ServiceDll=
8_ImagePath=C:\PROGRAM FILES\RISING\RAV\HOOKSYS.SYS
9_ServiceName=HookUrl
9_DisplayName=HookUrl
9_Description=
9_ServiceDll=
9_ImagePath=C:\PROGRAM FILES\RISING\RFW\HOOKURL.SYS
10_ServiceName=irda
10_DisplayName=IrDA Protocol
10_Description=IrDA Protocol
10_ServiceDll=
10_ImagePath=SYSTEM32\DRIVERS\IRDA.SYS
11_ServiceName=MEMSCAN
11_DisplayName=MEMSCAN
11_Description=
11_ServiceDll=
11_ImagePath=C:\PROGRAM FILES\RISING\RAV\MEMSCAN.SYS
12_ServiceName=mProcRs
12_DisplayName=mProcRs
12_Description=
12_ServiceDll=
12_ImagePath=C:\PROGRAM FILES\RISING\RFW\MPROCRS.SYS
13_ServiceName=NIC1394
13_DisplayName=1394 网络驱动程序
13_Description=
13_ServiceDll=
13_ImagePath=SYSTEM32\DRIVERS\NIC1394.SYS
14_ServiceName=nmwcd
14_DisplayName=Nokia USB Phone Parent
14_Description=
14_ServiceDll=
14_ImagePath=SYSTEM32\DRIVERS\NMWCD.SYS
15_ServiceName=nmwcdc
15_DisplayName=Nokia USB Generic
15_Description=
15_ServiceDll=
15_ImagePath=SYSTEM32\DRIVERS\NMWCDC.SYS
16_ServiceName=nmwcdcj
16_DisplayName=Nokia USB Port
16_Description=
16_ServiceDll=
16_ImagePath=SYSTEM32\DRIVERS\NMWCDCJ.SYS
17_ServiceName=nmwcdcm
17_DisplayName=Nokia USB Modem
17_Description=
17_ServiceDll=
17_ImagePath=SYSTEM32\DRIVERS\NMWCDCM.SYS
18_ServiceName=Rasirda
18_DisplayName=WAN Miniport (IrDA)
18_Description=WAN Miniport (IrDA)
18_ServiceDll=
18_ImagePath=SYSTEM32\DRIVERS\RASIRDA.SYS
19_ServiceName=rimmptsk
19_DisplayName=
19_Description=
19_ServiceDll=
19_ImagePath=SYSTEM32\DRIVERS\RIMMPTSK.SYS
20_ServiceName=rimsptsk
20_DisplayName=
20_Description=
20_ServiceDll=
20_ImagePath=SYSTEM32\DRIVERS\RIMSPTSK.SYS
21_ServiceName=rismxdp
21_DisplayName=Ricoh xD-Picture Card Driver
21_Description=
21_ServiceDll=
21_ImagePath=SYSTEM32\DRIVERS\RIXDPTSK.SYS
22_ServiceName=RsFwDrv
22_DisplayName=RsFwDrv
22_Description=
22_ServiceDll=
22_ImagePath=C:\PROGRAM FILES\RISING\RFW\RSFWDRV.SYS
23_ServiceName=RsNTGDI
23_DisplayName=RsNTGDI
23_Description=
23_ServiceDll=
23_ImagePath=SYSTEM32\DRIVERS\RSNTGDI.SYS
24_ServiceName=RSPPSYS
24_DisplayName=RSPPSYS
24_Description=
24_ServiceDll=
24_ImagePath=C:\PROGRAM FILES\RISING\RAV\RSPPSYS.SYS
25_ServiceName=RTL8023xp
25_DisplayName=Realtek 10/100/1000 NIC Family all in one NDIS XP Driver
25_Description=
25_ServiceDll=
25_ImagePath=SYSTEM32\DRIVERS\RTENICXP.SYS
26_ServiceName=sdbus
26_DisplayName=
26_Description=
26_ServiceDll=
26_ImagePath=SYSTEM32\DRIVERS\SDBUS.SYS
27_ServiceName=SMCIRDA
27_DisplayName=SMC IrCC Miniport Device Driver
27_Description=
27_ServiceDll=
27_ImagePath=SYSTEM32\DRIVERS\SMCIRDA.SYS
28_ServiceName=smserial
28_DisplayName=
28_Description=
28_ServiceDll=
28_ImagePath=SYSTEM32\DRIVERS\SMSERIAL.SYS
29_ServiceName=SNP2STD
29_DisplayName=USB2.0 PC Camera (SNP2STD)
29_Description=
29_ServiceDll=
29_ImagePath=SYSTEM32\DRIVERS\SNP2SXP.SYS
30_ServiceName=SynTP
30_DisplayName=Synaptics TouchPad Driver
30_Description=
30_ServiceDll=
30_ImagePath=SYSTEM32\DRIVERS\SYNTP.SYS
31_ServiceName=w39n51
31_DisplayName=Intel(R) PRO/Wireless 3945ABG Adapter Driver
31_Description=
31_ServiceDll=
31_ImagePath=SYSTEM32\DRIVERS\W39N51.SYS
Max=31

[END]
Max=1
gototop
 
没事逛逛呀
头像
初生襁褓狮
  • 帖子:38
  • 注册: 2006-03-13
  • 来自:
发表于: 2007-05-02 12:18 | 显示全部 短消息 资料
字号: 8楼

2_ServiceDll=C:\WINDOWS\SYSTEM32\IRMON.DLL
2_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

3_ServiceName=RfwProxySrv
3_DisplayName=Rising Proxy  Service
3_Description=Rising Personal Proxy Service
3_Status=停止
3_StartType=手动
3_ServiceDll=
3_ImagePath=C:\PROGRAM FILES\RISING\RFW\RFWPROXY.EXE

4_ServiceName=RfwService
4_DisplayName=Rising Personal Firewall Service
4_Description=Rising Personal Firewall Service
4_Status=已启动
4_StartType=自动
4_ServiceDll=
4_ImagePath=C:\PROGRAM FILES\RISING\RFW\RFWSRV.EXE

5_ServiceName=RsCCenter
5_DisplayName=Rising Process Communication Center
5_Description=
5_Status=已启动
5_StartType=自动
5_ServiceDll=
5_ImagePath="C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE"

6_ServiceName=RsRavMon
6_DisplayName=Rising RealTime Monitor
6_Description=
6_Status=已启动
6_StartType=自动
6_ServiceDll=
6_ImagePath="C:\PROGRAM FILES\RISING\RAV\RAVMOND.EXE"

7_ServiceName=ServiceLayer
7_DisplayName=ServiceLayer
7_Description=
7_Status=停止
7_StartType=手动
7_ServiceDll=
7_ImagePath="C:\PROGRAM FILES\PC CONNECTIVITY SOLUTION\SERVICELAYER.EXE"

Max=7

[Driver]
1_ServiceName=Arp1394
1_DisplayName=1394 ARP 客户端协议
1_Description=1394 ARP 客户端协议
1_ServiceDll=
1_ImagePath=SYSTEM32\DRIVERS\ARP1394.SYS
2_ServiceName=BaseTDI
2_DisplayName=Rising TDI Base Driver
2_Description=
2_ServiceDll=
2_ImagePath=SYSTEM32\DRIVERS\BASETDI.SYS
3_ServiceName=CmBatt
3_DisplayName=Microsoft AC Adapter Driver
3_Description=
3_ServiceDll=
3_ImagePath=SYSTEM32\DRIVERS\CMBATT.SYS
4_ServiceName=ExpScaner
4_DisplayName=ExpScaner
4_Description=
4_ServiceDll=
4_ImagePath=C:\PROGRAM FILES\RISING\RAV\EXPSCAN.SYS
5_ServiceName=HdAudAddService
5_DisplayName=Microsoft 用于 High Definition Audio 服务的 UAA 功能驱动程序
5_Description=
5_ServiceDll=
5_ImagePath=SYSTEM32\DRIVERS\HDAUDIO.SYS
6_ServiceName=HookCont
6_DisplayName=HookCont
6_Description=
6_ServiceDll=
6_ImagePath=C:\PROGRAM FILES\RISING\RAV\HOOKCONT.SYS
7_ServiceName=HookReg
7_DisplayName=HookReg
7_Description=
7_ServiceDll=
7_ImagePath=C:\PROGRAM FILES\RISING\RAV\HOOKREG.SYS
8_ServiceName=HookSys
8_DisplayName=HookSys
8_Description=
8_ServiceDll=
8_ImagePath=C:\PROGRAM FILES\RISING\RAV\HOOKSYS.SYS
9_ServiceName=HookUrl
9_DisplayName=HookUrl
9_Description=
9_ServiceDll=
9_ImagePath=C:\PROGRAM FILES\RISING\RFW\HOOKURL.SYS
10_ServiceName=irda
10_DisplayName=IrDA Protocol
10_Description=IrDA Protocol
10_ServiceDll=
10_ImagePath=SYSTEM32\DRIVERS\IRDA.SYS
11_ServiceName=MEMSCAN
11_DisplayName=MEMSCAN
11_Description=
11_ServiceDll=
11_ImagePath=C:\PROGRAM FILES\RISING\RAV\MEMSCAN.SYS
12_ServiceName=mProcRs
12_DisplayName=mProcRs
12_Description=
12_ServiceDll=
12_ImagePath=C:\PROGRAM FILES\RISING\RFW\MPROCRS.SYS
13_ServiceName=NIC1394
13_DisplayName=1394 网络驱动程序
13_Description=
13_ServiceDll=
13_ImagePath=SYSTEM32\DRIVERS\NIC1394.SYS
14_ServiceName=nmwcd
14_DisplayName=Nokia USB Phone Parent
14_Description=
14_ServiceDll=
14_ImagePath=SYSTEM32\DRIVERS\NMWCD.SYS
15_ServiceName=nmwcdc
15_DisplayName=Nokia USB Generic
15_Description=
15_ServiceDll=
15_ImagePath=SYSTEM32\DRIVERS\NMWCDC.SYS
16_ServiceName=nmwcdcj
16_DisplayName=Nokia USB Port
16_Description=
16_ServiceDll=
16_ImagePath=SYSTEM32\DRIVERS\NMWCDCJ.SYS
17_ServiceName=nmwcdcm
17_DisplayName=Nokia USB Modem
17_Description=
17_ServiceDll=
17_ImagePath=SYSTEM32\DRIVERS\NMWCDCM.SYS
18_ServiceName=Rasirda
18_DisplayName=WAN Miniport (IrDA)
18_Description=WAN Miniport (IrDA)
18_ServiceDll=
18_ImagePath=SYSTEM32\DRIVERS\RASIRDA.SYS
19_ServiceName=rimmptsk
19_DisplayName=
19_Description=
19_ServiceDll=
19_ImagePath=SYSTEM32\DRIVERS\RIMMPTSK.SYS
20_ServiceName=rimsptsk
20_DisplayName=
20_Description=
20_ServiceDll=
20_ImagePath=SYSTEM32\DRIVERS\RIMSPTSK.SYS
21_ServiceName=rismxdp
21_DisplayName=Ricoh xD-Picture Card Driver
21_Description=
21_ServiceDll=
21_ImagePath=SYSTEM32\DRIVERS\RIXDPTSK.SYS
22_ServiceName=RsFwDrv
22_DisplayName=RsFwDrv
22_Description=
22_ServiceDll=
22_ImagePath=C:\PROGRAM FILES\RISING\RFW\RSFWDRV.SYS
23_ServiceName=RsNTGDI
23_DisplayName=RsNTGDI
23_Description=
23_ServiceDll=
23_ImagePath=SYSTEM32\DRIVERS\RSNTGDI.SYS
24_ServiceName=RSPPSYS
24_DisplayName=RSPPSYS
24_Description=
24_ServiceDll=
24_ImagePath=C:\PROGRAM FILES\RISING\RAV\RSPPSYS.SYS
25_ServiceName=RTL8023xp
25_DisplayName=Realtek 10/100/1000 NIC Family all in one NDIS XP Driver
25_Description=
25_ServiceDll=
25_ImagePath=SYSTEM32\DRIVERS\RTENICXP.SYS
26_ServiceName=sdbus
26_DisplayName=
26_Description=
26_ServiceDll=
26_ImagePath=SYSTEM32\DRIVERS\SDBUS.SYS
27_ServiceName=SMCIRDA
27_DisplayName=SMC IrCC Miniport Device Driver
27_Description=
27_ServiceDll=
27_ImagePath=SYSTEM32\DRIVERS\SMCIRDA.SYS
28_ServiceName=smserial
28_DisplayName=
28_Description=
28_ServiceDll=
28_ImagePath=SYSTEM32\DRIVERS\SMSERIAL.SYS
29_ServiceName=SNP2STD
29_DisplayName=USB2.0 PC Camera (SNP2STD)
29_Description=
29_ServiceDll=
29_ImagePath=SYSTEM32\DRIVERS\SNP2SXP.SYS
30_ServiceName=SynTP
30_DisplayName=Synaptics TouchPad Driver
30_Description=
30_ServiceDll=
30_ImagePath=SYSTEM32\DRIVERS\SYNTP.SYS
31_ServiceName=w39n51
31_DisplayName=Intel(R) PRO/Wireless 3945ABG Adapter Driver
31_Description=
31_ServiceDll=
31_ImagePath=SYSTEM32\DRIVERS\W39N51.SYS
Max=31

[END]
Max=1
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT