收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 国内杀毒软件 请各位大虾看看我一个朋友的是不是有问题了?瑞星打不开 ...
返回列表 发新帖
查看: 2070|回复: 6
收起左侧

请各位大虾看看我一个朋友的是不是有问题了?瑞星打不开了。

 关闭 [复制链接]
tygcs
发表于 2007-9-6 22:00:04 | 显示全部楼层 |阅读模式
这个是SREngLOG扫描.的结果。大家帮我分析下。我一个朋友的瑞星监控被限制了。没法开启。
  1. 2007-09-06,20:46:15
  2. System Repair Engineer 2.5.16.900
  3. Smallfrogs (http://www.KZTechs.com)
  4. Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能
  5. 以下内容被选中:
  6.     所有的启动项目(包括注册表、启动文件夹、服务等)
  7.     浏览器加载项
  8.     正在运行的进程(包括进程模块信息)
  9.     文件关联
  10.     Winsock 提供者
  11.     Autorun.inf
  12.     HOSTS 文件
  13.     进程特权扫描

  15. 启动项目
  16. 注册表
  17. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  18.       [(Verified)Microsoft Windows Publisher]
  19.     <"C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background>  [N/A]
  20. [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
  21.     <>  [N/A]
  22. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  23.     <"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Windows Publisher]
  24.       [N/A]
  25.       [(Verified)Microsoft Windows Publisher]
  26.     <"C:\Program Files\Rising\Rav\RavTask.exe" -system>  [Beijing Rising Technology Co., Ltd.]
  27.       [N/A]
  28.     <"C:\Program Files\Rising\AntiSpyware\runiep.exe" /startup>  [Beijing Rising Technology Co., Ltd.]
  29.     <>  [N/A]
  30.       [lghosp]
  31. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
  32.     <"C:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE>  [Beijing Rising Technology Co., Ltd.]
  33. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  34.       [(Verified)Microsoft Windows Publisher]
  35.       [(Verified)Microsoft Windows Publisher]
  36. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
  37.     <>  [N/A]
  38. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  39.       [(Verified)Microsoft Windows Publisher]
  40. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
  41.     <%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [N/A]
  42. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
  43.     <%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [N/A]
  44. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
  45.     <%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [N/A]
  46. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
  47.     <"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [N/A]
  48. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
  49.       [(Verified)Microsoft Windows Publisher]
  50. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
  51.       [(Verified)Microsoft Windows Publisher]
  52. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
  53.       [(Verified)Microsoft Windows Publisher]
  54. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
  55.     <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [N/A]
  56. [HKEY_CURRENT_USER\Control Panel\Desktop]
  57.       [Microsoft Corp.                                                                                    ]
  58. ==================================
  59. 启动文件夹
  60. N/A
  61. ==================================
  62. 服务
  63. [Human Interface Device Access / HidServ][Stopped/Disabled]
  64.   %SystemRoot%\System32\hidserv.dll>
  65. [Rising Process Communication Center / RsCCenter][Running/Auto Start]
  66.   <"C:\Program Files\Rising\Rav\CCenter.exe">
  67. [Rising RealTime Monitor / RsRavMon][Running/Auto Start]
  68.   <"C:\Program Files\Rising\Rav\Ravmond.exe">
  69. [Windows Live Setup Service / WLSetupSvc][Stopped/Manual Start]
  70.   <"C:\Program Files\Windows Live\installer\WLSetupSvc.exe"><>
  71. ==================================
  72. 驱动程序
  73. [ADProt / ADProt][Stopped/System Start]
  74.   <\SystemRoot\system32\drivers\ADProt.sys>
  75. [Rising TDI Base Driver / BaseTDI][Running/Auto Start]
  76.   
  77. [C-Media WDM Audio Interface / cmuda][Running/Manual Start]
  78.   
  79. [dump_wmimmc / dump_wmimmc][Stopped/Manual Start]
  80.   <\??\C:\WINDOWS\system32\drivers\dump_wmimmc.sys>
  81. [ExpScaner / ExpScaner][Running/Auto Start]
  82.   <\??\C:\Program Files\Rising\Rav\ExpScan.sys><>
  83. [HookCont / HookCont][Running/Auto Start]
  84.   <\??\C:\Program Files\Rising\Rav\HOOKCONT.sys>
  85. [HookReg / HookReg][Running/Auto Start]
  86.   <\??\C:\Program Files\Rising\Rav\HookReg.sys><>
  87. [HookSys / HookSys][Running/Auto Start]
  88.   <\??\C:\Program Files\Rising\Rav\HookSys.sys>
  89. [MEMSCAN / MEMSCAN][Running/Auto Start]
  90.   <\??\C:\Program Files\Rising\Rav\MEMSCAN.sys>
  91. [npkcrypt / npkcrypt][Running/Auto Start]
  92.   <\??\D:\Tencent\QQ\npkcrypt.sys>
  93. [NPPTNT2 / NPPTNT2][Stopped/Manual Start]
  94.   <\??\C:\WINDOWS\system32\npptNT2.sys>
  95. [Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  96.   
  97. [RsAntiSpyware / RsAntiSpyware][Running/Boot Start]
  98.   <\SystemRoot\system32\drivers\RsBoot.sys>
  99. [RsNTGDI / RsNTGDI][Running/Boot Start]
  100.   <\SystemRoot\system32\Drivers\RsNTGdi.sys>
  101. [RSPPSYS / RSPPSYS][Running/Auto Start]
  102.   <\??\C:\Program Files\Rising\Rav\RSPPSYS.sys>
  103. [Realtek RTL8139/810X Family PCI Fast Ethernet NIC NT Driver / rtl8139][Running/Manual Start]
  104.   
  105. [Secdrv / Secdrv][Stopped/Manual Start]
  106.   
  107. [TCP/IP Protocol Driver / Tcpip][Running/System Start]
  108.   
  109. [viagfx / viagfx][Running/Manual Start]
  110.   
  111. [ViaIde / ViaIde][Running/Boot Start]
  112.   <\SystemRoot\system32\DRIVERS\viaide.sys>
  113. [World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
  114.   
  115. [VIMICRO USB PC Camera / ZSMC302][Stopped/Manual Start]
  116.   
  117. ==================================
  118. 浏览器加载项
  119. [@shdoclc.dll,-866]
  120.   {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
  121. [Windows Media Player]
  122.   {22D6F312-B0F6-11D0-94AB-0080C74C7E95}
  123. [HTML Document]
  124.   {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
  125. [DHTML Edit Control Safe for Scripting for IE5]
  126.   {2D360201-FFF5-11D1-8D03-00A0C959BC0A}
  127. [Windows Media Player]
  128.   {6BF52A52-394A-11D3-B153-00C04F79FAA6}
  129. [Microsoft Web 浏览器]
  130.   {8856F961-340A-11D0-A96B-00C04FD705A2}
  131. [SearchAssistantOC]
  132.   {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
  133. [RDS.DataSpace]
  134.   {BD96C556-65A3-11D0-983A-00C04FC29E36}
  135. [AUDIO__MP3 Moniker Class]
  136.   {CD3AFA76-B84F-48F0-9393-7EDC34128127}
  137. [AUDIO__X_MS_WMA Moniker Class]
  138.   {CD3AFA84-B84F-48F0-9393-7EDC34128127}
  139. [VIDEO__X_MS_ASF Moniker Class]
  140.   {CD3AFA8F-B84F-48F0-9393-7EDC34128127}
  141. [Shockwave Flash Object]
  142.   {D27CDB6E-AE6D-11CF-96B8-444553540000}
  143. [添加到QQ表情]
  144.   
  145. ==================================
  146. 正在运行的进程
  147. [PID: 420 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  148. [PID: 492 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  149. [PID: 524 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  150.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  151.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  152. [PID: 568 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  153.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  154. [PID: 580 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  155.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  156. [PID: 728 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  157.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  158. [PID: 772 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  159.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  160. [PID: 856 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  161.     [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  162. [PID: 908 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  163.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  164. [PID: 1032 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  165.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  166. [PID: 1280 / dycjwf][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2649 (xpsp.050406-1732)]
  167.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  168.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  169.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  170.     [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
  171.     [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
  172.     [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
  173. [PID: 1336 / SYSTEM][C:\Program Files\Rising\Rav\RavStub.exe]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 4]
  174.     [C:\Program Files\Rising\Rav\RsCommX.dll]  [rising, 18, 0, 0, 1]
  175.     [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
  176.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  177. [PID: 1380 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
  178.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  179.     [C:\WINDOWS\system32\CNMLM75.DLL]  [CANON INC., 1.90.2.20]
  180.     [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\CNMPD75.DLL]  [CANON INC., 1.90.2.20]
  181. [PID: 1664 / dycjwf][C:\WINDOWS\system32\RunDll32.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  182.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  183.     [C:\WINDOWS\system\cmicnfg.cpl]  [C-Media Corporation, 1, 0, 0, 35]
  184.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  185. [PID: 1692 / dycjwf][C:\Program Files\Rising\AntiSpyware\runiep.exe]  [Beijing Rising Technology Co., Ltd., 4.0.0.18]
  186.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  187.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  188. [PID: 1700 / dycjwf][C:\WINDOWS\system32\servicer.exe]  [lghosp, 2007.04.0018]
  189.     [C:\WINDOWS\system32\MSVBVM60.DLL]  [Microsoft Corporation, 6.00.9690]
  190.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  191.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  192. [PID: 1708 / dycjwf][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  193.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  194.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  195. [PID: 1920 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  196.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  197. [PID: 1196 / dycjwf][C:\WINDOWS\system32\wscntfy.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  198.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  199.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  200. [PID: 1420 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  201.     [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  202. [PID: 1884 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  203.     [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  204. [PID: 2108 / dycjwf][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
  205.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  206.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  207.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  208.     [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
  209.     [C:\WINDOWS\system32\macromed\flash\flash.ocx]  [Macromedia, Inc., 8,5,0,246]
  210.     [C:\WINDOWS\system32\WINWB86.IME]  [Microsoft Corporation, 4.00.950]
  211.     [C:\WINDOWS\system32\xpsp3res.dll]  [Microsoft Corporation, 5.1.2600.3157 (xpsp_sp2_gdr.070614-0013)]
  212.     [C:\WINDOWS\system32\msdmo.dll]  [, ]
  213.     [C:\WINDOWS\system32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]
  214. [PID: 2296 / dycjwf][D:\Tencent\QQ\QQ.exe]  [TENCENT, 7,0,365,1701]
  215.     [D:\Tencent\QQ\QQBaseClassInDll.dll]  [TENCENT, 7,0,365,1701]
  216.     [D:\Tencent\QQ\QQHelperDll.dll]  [TENCENT, 7,0,365,1701]
  217.     [D:\Tencent\QQ\BasicCtrlDll.dll]  [TENCENT, 7,0,365,1701]
  218.     [D:\Tencent\QQ\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
  219.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  220.     [D:\Tencent\QQ\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
  221.     [D:\Tencent\QQ\RICHED20.dll]  [Microsoft Corporation, 5.31.23.1218]
  222.     [D:\Tencent\QQ\QQAPI.dll]  [TENCENT, 7,0,365,1701]
  223.     [D:\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
  224.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  225.     [D:\Tencent\QQ\LoginCtrl.dll]  [TENCENT, 7,0,365,1701]
  226.     [D:\Tencent\QQ\LoginCtrlRes.dll]  [TENCENT, 7,0,365,1701]
  227.     [D:\Tencent\QQ\QQRes.dll]  [TENCENT, 7,0,365,1701]
  228.     [D:\Tencent\QQ\QQMainFrame.dll]  [N/A, ]
  229.     [D:\Tencent\QQ\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)]
  230.     [D:\Tencent\QQ\CQQApplication.dll]  [N/A, ]
  231.     [D:\Tencent\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
  232.     [D:\Tencent\QQ\NewSkin.dll]  [TENCENT, 7,0,365,1701]
  233.     [D:\Tencent\QQ\HostingMgr.dll]  [TENCENT, 7,0,365,1701]
  234.     [D:\Tencent\QQ\CameraDll.dll]  [TENCENT, 7,0,365,1701]
  235.     [D:\Tencent\QQ\MailSummary.dll]  [TENCENT, 7,0,365,1701]
  236.     [D:\Tencent\QQ\QQKnowledgeSearch.dll]  [TENCENT, 7,0,365,1701]
  237.     [D:\Tencent\QQ\QQAllInOne.dll]  [TENCENT, 7,0,365,1701]
  238.     [D:\Tencent\QQ\SCCore.dll]  [TENCENT, 1, 6, 0, 2]
  239.     [D:\Tencent\QQ\QQSpace.dll]  [TENCENT, 7,0,365,1701]
  240.     [D:\Tencent\QQ\vbscript.dll]  [Microsoft Corporation, 5.6.0.7426]
  241.     [C:\WINDOWS\system32\msdmo.dll]  [, ]
  242.     [D:\Tencent\QQ\QQGroupMng.dll]  [TENCENT, 7,0,365,1701]
  243.     [D:\Tencent\QQ\UserDefinedHead.dll]  [TENCENT, 7,0,365,1701]
  244.     [D:\Tencent\QQ\QQPlugin.dll]  [N/A, ]
  245.     [D:\Tencent\QQ\QQCustomFace.dll]  [N/A, ]
  246.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  247.     [D:\Tencent\QQ\QQPet.dll]  [TENCENT, 7,0,365,1701]
  248.     [C:\WINDOWS\system32\msadp32.acm]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  249.     [D:\Tencent\QQ\QQConfigPlugin.dll]  [TENCENT, 7,0,365,1701]
  250.     [D:\Tencent\QQ\QQAvatar.dll]  [N/A, ]
  251.     [D:\Tencent\QQ\ImageOle.dll]  [TENCENT, 7,0,365,1701]
  252.     [D:\Tencent\QQ\QQLiveQMng.dll]  [TENCENT, 7,0,365,1701]
  253.     [D:\Tencent\QQ\QRingMng.dll]  [N/A, ]
  254.     [D:\Tencent\QQ\QQMagicFace.dll]  [TENCENT, 7,0,365,1701]
  255.     [D:\Tencent\QQ\QQSceneMng.dll]  [N/A, ]
  256.     [C:\WINDOWS\system32\macromed\flash\flash.ocx]  [Macromedia, Inc., 8,5,0,246]
  257.     [D:\Tencent\QQ\LongConnection.dll]  [TENCENT, 7,0,365,1701]
  258.     [D:\Tencent\QQ\GroupConnection.dll]  [TENCENT, 7,0,365,1701]
  259.     [C:\WINDOWS\system32\WINWB86.IME]  [Microsoft Corporation, 4.00.950]
  260.     [D:\Tencent\QQ\PhoneAPI.dll]  [TENCENT, 7,0,365,1701]
  261.     [D:\Tencent\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
  262.     [D:\Tencent\QQ\BQQApplication.dll]  [N/A, ]
  263.     [D:\Tencent\QQ\QQSettingCtrl.dll]  [TENCENT, 7,0,365,1701]
  264.     [D:\Tencent\QQ\QQSysMsgMng.dll]  [N/A, ]
  265.     [D:\Tencent\QQ\CommercesMng.dll]  [TENCENT, 7,0,365,1701]
  266.     [D:\Tencent\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
  267.     [D:\Tencent\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 320]
  268.     [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
  269.     [D:\Tencent\QQ\QQZip.dll]  [TENCENT, 7,0,365,1701]
  270.     [D:\Tencent\QQ\DShared.dll]  [Tencent, 1, 6, 0, 2]
  271.     [D:\Tencent\QQ\AddrSearch.dll]  [腾讯科技(深圳)有限公司, 2, 1, 9, 95]
  272.     [D:\Tencent\QQ\QQFileTransfer.dll]  [TENCENT, 7,0,365,1701]
  273. [PID: 2320 / dycjwf][D:\Tencent\QQ\TIMPlatform.exe]  [TENCENT, 7,0,365,1701]
  274.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  275.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  276.     [D:\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
  277. [PID: 2976 / dycjwf][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
  278.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  279.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  280.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  281.     [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
  282. [PID: 3564 / dycjwf][C:\Program Files\WinRAR\WinRAR.exe]  [N/A, ]
  283.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  284.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  285. [PID: 2036 / dycjwf][C:\DOCUME~1\dycjwf\LOCALS~1\Temp\Rar$EX01.625\SREngPS.EXE]  [Smallfrogs Studio, 2.5.16.900]
  286.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  287.     [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
  288.     [C:\DOCUME~1\dycjwf\LOCALS~1\Temp\Rar$EX01.625\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
  289.     [C:\DOCUME~1\dycjwf\LOCALS~1\Temp\Rar$EX01.625\Plugins\NTFSTREAM.SRE]  [Smallfrogs Studio, 1, 0, 0, 5]
复制代码
回复

举报

tygcs
 楼主| 发表于 2007-9-6 22:00:48 | 显示全部楼层
  1. ==================================
  2. 文件关联
  3. .TXT  Error. [C:\WINDOWS\notepad.exe %1]
  4. .EXE  OK. ["%1" %*]
  5. .COM  OK. ["%1" %*]
  6. .PIF  OK. ["%1" %*]
  7. .REG  OK. [regedit.exe "%1"]
  8. .BAT  OK. ["%1" %*]
  9. .SCR  OK. ["%1" /S]
  10. .CHM  Error. ["hh.exe" %1]
  11. .HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
  12. .INI  Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
  13. .INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
  14. .VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  15. .JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  16. .LNK  OK. [{00021401-0000-0000-C000-000000000046}]
  17. ==================================
  18. Winsock 提供者
  19. N/A
  20. ==================================
  21. Autorun.inf
  22. N/A
  23. ==================================
  24. HOSTS 文件
  25. 127.0.0.1       localhost
  26. ==================================
  27. 进程特权扫描
  28. 特殊特权被允许: SeLoadDriverPrivilege [PID = 1692, C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE]
  29. 特殊特权被允许: SeLoadDriverPrivilege [PID = 1700, C:\WINDOWS\SYSTEM32\SERVICER.EXE]
  30. 特殊特权被允许: SeLoadDriverPrivilege [PID = 3564, C:\PROGRAM FILES\WINRAR\WINRAR.EXE]
  31. ==================================
  32. API HOOK
  33. N/A
  34. ==================================
  35. 隐藏进程
  36. N/A
  37. ==================================
复制代码
回复

举报

战神武之魂
发表于 2007-9-6 22:29:03 | 显示全部楼层
这是一个很简单的问题。先软件设置里启用一下,不行到控制面板里把RISING的服务开户成自动。
回复

举报

tygcs
 楼主| 发表于 2007-9-6 22:39:20 | 显示全部楼层
从上面看有没有毒啊? 软件设置启用不了。
回复

举报

shuipao
发表于 2007-9-6 22:51:45 | 显示全部楼层

回复 4楼 tygcs 的帖子

下载windows清理助手清理恶意软件
http://www.arswp.com/download/arswp2/arswp2.zip

日志不完整,建议安全模式下重新扫个.
C:\WINDOWS\SYSTEM32\SERVICER.EXE发到下面的网站测试一下.
http://scanner.virus.org//
http://virusscan.jotti.org/
http://www.virustotal.com/zh-cn/
回复

举报

tygcs
 楼主| 发表于 2007-9-6 22:55:07 | 显示全部楼层
多谢楼上的老兄。我到安全模式下再扫描后再贴上来。谢谢了哈。
回复

举报

kzy606727
发表于 2007-9-14 01:27:03 | 显示全部楼层
呵呵,路过,看看。
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-20 03:59 , Processed in 0.134093 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表