收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 软件区 解疑答难区 求救啊 等者呢!~~~
返回列表 发新帖
查看: 2083|回复: 2
收起左侧

[已解决] 求救啊 等者呢!~~~

 关闭 [复制链接]
jbz85
头像被屏蔽
发表于 2007-5-23 12:51:51 | 显示全部楼层 |阅读模式
  1. 2007-05-23,12:45:36
  2. System Repair Engineer 2.4.12.806
  3. Smallfrogs (http://www.KZTechs.com)
  4. Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能
  5. 以下内容被选中:
  6.     所有的启动项目(包括注册表、启动文件夹、服务等)
  7.     浏览器加载项
  8.     正在运行的进程(包括进程模块信息)
  9.     文件关联
  10.     Winsock 提供者
  11.     Autorun.inf
  12.     HOSTS 文件

  14. 启动项目
  15. 注册表
  16. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  17.     <NetKeeper2.5><F:\新建文件夹\ChinaNetSn\bin\NetKeeper.exe>  [XI AN XINLI SOFTWARE TECHNOLOGY CO.,LTD]
  18.     <tdidcde><C:\Program Files\Microsoft Office\tdidcde.exe>  []
  19.     <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [(Verified)"RealNetworks, Inc."]
  20.     <NvCplDaemon><; RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup>  [NVIDIA Corporation]
  21. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  22.     <shell><Explorer.exe>  [(Verified)Microsoft Windows Publisher]
  23.     <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
  24. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
  25.     <AppInit_DLLs><>  [N/A]
  26. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  27.     <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
  28. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
  29.     <MediaCheck><F:\酷热影音\Kuree\MService.dll>  []
  30. ==================================
  31. 启动文件夹
  32. N/A
  33. ==================================
  34. 服务
  35. [C-DillaCdaC11BA / C-DillaCdaC11BA][Running/Auto Start]
  36.   <C:\WINDOWS\system32\drivers\CDAC11BA.EXE><Macrovision>
  37. [Human Interface Device Access / HidServ][Stopped/Disabled]
  38.   <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
  39. [Fax 2Client / ms_2fax][Running/Auto Start]
  40.   <C:\WINDOWS\system32\dd4a1.exe><N/A>
  41. [NVIDIA Display Driver Service / NVSvc][Stopped/Manual Start]
  42.   <C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
  43. [Windows Media Connect Service / WMConnectCDS][Stopped/Manual Start]
  44.   <C:\Program Files\Windows Media Connect 2\wmccds.exe><Microsoft Corporation>
  45. [Windows Driver Foundation - User-mode Driver Framework / WudfSvc][Stopped/Manual Start]
  46.   <C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup-->%SystemRoot%\System32\WUDFSvc.dll><Microsoft Corporation>
  47. ==================================
  48. 驱动程序
  49. [ADI UAA Function Driver for High Definition Audio Service / ADIHdAudAddService][Running/Manual Start]
  50.   <system32\drivers\ADIHdAud.sys><Analog Devices, Inc.>
  51. [AEAudio Service / AEAudioService][Running/Manual Start]
  52.   <system32\drivers\AEAudio.sys><Andrea Electronics Corporation>
  53. [CdaC15BA / CdaC15BA][Running/Auto Start]
  54.   <\??\C:\WINDOWS\system32\drivers\CDAC15BA.SYS><Macrovision Europe Ltd>
  55. [Intel(R) PRO/1000 Network Connection Driver / E1000][Running/Manual Start]
  56.   <system32\DRIVERS\e1000325.sys><Intel Corporation>
  57. [EagleNT / EagleNT][Stopped/Manual Start]
  58.   <\??\C:\WINDOWS\system32\drivers\EagleNT.sys><N/A>
  59. [Microsoft UAA Function Driver for High Definition Audio Service / HdAudAddService][Stopped/Manual Start]
  60.   <system32\drivers\HdAudio.sys><Windows (R) Server 2003 DDK provider>
  61. [Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
  62.   <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
  63. [kjohki / kjohki][Stopped/Boot Start]
  64.   <\SystemRoot\\SystemRoot\System32\drivers\kjohki.sys><N/A>
  65. [Netgroup Packet Filter / NPF][Running/Manual Start]
  66.   <system32\DRIVERS\npf.sys><CACE Technologies>
  67. [nv / nv][Running/Manual Start]
  68.   <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
  69. [Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  70.   <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
  71. [Secdrv / Secdrv][Stopped/Manual Start]
  72.   <system32\DRIVERS\secdrv.sys><N/A>
  73. [SenFilt Service / SenFiltService][Running/Manual Start]
  74.   <system32\drivers\Senfilt.sys><Sensaura>
  75. [World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
  76.   <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
  77. [Windows Driver Foundation - User-mode Driver Framework Platform Driver / WudfPf][Stopped/Manual Start]
  78.   <system32\DRIVERS\WudfPf.sys><Microsoft Corporation>
  79. [Windows Driver Foundation - User-mode Driver Framework Reflector / WudfRd][Stopped/Manual Start]
  80.   <system32\DRIVERS\wudfrd.sys><Microsoft Corporation>
  81. [Driver for XLPPoEPC Device / XLPPoEPC][Running/Manual Start]
  82.   <system32\DRIVERS\XLPPoEPC.sys><西安信利软件系统公司>
  83. [10moons USB PC Camera (ZC0301PL) / ZSMC301b][Running/Manual Start]
  84.   <System32\Drivers\usbVM31b.sys><VM>
  85. ==================================
  86. 浏览器加载项
  87. [QQCycloneHelper Class]
  88.   {00000000-1297-4305-82F9-43058F20E8D2} <F:\QQDownload\QQIEHelper01.dll, 腾讯公司>
  89. [Thunder Browser Helper]
  90.   {00000000-1298-4305-82F9-43058F20E8D2} <F:\讯雷\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
  91. [ThunderAtOnce Class]
  92.   {01443AEC-0FD1-40fd-9C87-E93D1494C233} <F:\讯雷\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
  93. [ff Class]
  94.   {FAAAC0F6-94BE-4466-934B-7C53666A2F41} <C:\WINDOWS\system32\6dd1.dll, TODO: <公司名>>
  95. [启动迅雷5]
  96.   {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <F:\讯雷\Thunder.exe, Thunder Networking Technologies,LTD>
  97. [番茄花园]
  98.   {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://www.tomatolei.com, N/A>
  99. [QQ]
  100.   {c95fe080-8f5d-11d2-a20b-00aa003c157b} <F:\QQ\QQ.EXE, TENCENT>
  101. [QQCycloneHelper Class]
  102.   {00000000-1297-4305-82F9-43058F20E8D2} <F:\QQDownload\QQIEHelper01.dll, 腾讯公司>
  103. [Thunder Browser Helper]
  104.   {00000000-1298-4305-82F9-43058F20E8D2} <F:\讯雷\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
  105. [ThunderAtOnce Class]
  106.   {01443AEC-0FD1-40FD-9C87-E93D1494C233} <F:\讯雷\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
  107. [ActiveMovieControl Object]
  108.   {05589FA1-C356-11CE-BF01-00AA0055595A} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
  109. [Windows Media Player]
  110.   {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
  111. [Thunder Agent Class]
  112.   {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <F:\讯雷\ComDlls\ThunderAgent_Now.dll, Thunder Networking Technologies,LTD>
  113. [Shell Name Space]
  114.   {55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A>
  115. [WUWebControl Class]
  116.   {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
  117. [Windows Media Player]
  118.   {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  119. [Microsoft Web 浏览器]
  120.   {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
  121. [Thunder Browser Helper]
  122.   {889D2FEB-5411-4565-8998-1DD2C5261283} <F:\讯雷\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
  123. [Microsoft Scriptlet Component]
  124.   {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
  125. [SearchAssistantOC]
  126.   {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
  127. [RDS.DataSpace]
  128.   {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
  129. [VIDEO__X_MS_ASF Moniker Class]
  130.   {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  131. [RealPlayer G2 Control]
  132.   {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
  133. [Shockwave Flash Object]
  134.   {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
  135. [ff Class]
  136.   {FAAAC0F6-94BE-4466-934B-7C53666A2F41} <C:\WINDOWS\system32\6dd1.dll, TODO: <公司名>>
  137. [&使用超级旋风下载]
  138.   <F:\QQDownload\geturl.htm, N/A>
  139. [&使用超级旋风下载全部链接]
  140.   <F:\QQDownload\getAllurl.htm, N/A>
  141. [上传到QQ网络硬盘]
  142.   <F:\QQ\AddToNetDisk.htm, N/A>
  143. [使用迅雷下载]
  144.   <F:\讯雷\Program\geturl.htm, N/A>
  145. [使用迅雷下载全部链接]
  146.   <F:\讯雷\Program\getallurl.htm, N/A>
  147. [添加到QQ自定义面板]
  148.   <F:\QQ\AddPanel.htm, N/A>
  149. [添加到QQ表情]
  150.   <F:\QQ\AddEmotion.htm, N/A>
  151. [用QQ彩信发送该图片]
  152.   <F:\QQ\SendMMS.htm, N/A>
  153. ==================================
  154. 正在运行的进程
  155. [PID: 848][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  156. [PID: 916][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  157. [PID: 952][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  158.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  159. [PID: 1968][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
  160.     [C:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
  161.     [C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, 16.0.0.86]
  162.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  163.     [C:\WINDOWS\system32\nvcpl.dll]  [NVIDIA Corporation, 6.14.10.8185]
  164.     [C:\WINDOWS\system32\NVRSZHC.DLL]  [NVIDIA Corporation, 6.14.10.8185]
  165.     [C:\WINDOWS\system32\nvshell.dll]  [, ]
  166.     [C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5358.4827 (WMP_11.060509-2009)]
  167. [PID: 176][C:\Program Files\Microsoft Office\tdidcde.exe]  [N/A, ]
  168. [PID: 236][C:\Program Files\Common Files\Real\Update_OB\realsched.exe]  [RealNetworks, Inc., 0.1.0.3760]
  169. [PID: 312][F:\酷热影音\Kuree\kpupdate.exe]  [N/A, ]
  170. [PID: 1424][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
  171.     [C:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
  172.     [F:\QQDownload\QQIEHelper01.dll]  [腾讯公司, 1, 1, 0, 5]
  173.     [F:\讯雷\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 1, 4]
  174.     [F:\讯雷\Components\ResWorker\DsBho_00.dll]  [, 1, 0, 0, 2]
  175.     [F:\讯雷\Components\ResWorker\DataProcessor_00.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 4]
  176.     [F:\讯雷\ComDlls\TDAtOnce_Now.dll]  [Thunder Networking Technologies,LTD, 1.0.0.4]
  177.     [C:\WINDOWS\system32\6dd1.dll]  [TODO: <公司名>, 1.0.0.1]
  178.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  179.     [C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx]  [Adobe Systems, Inc., 9,0,16,0]
  180. [PID: 1376][F:\新建文件夹\ChinaNetSn\bin\NetKeeper.exe]  [XI AN XINLI SOFTWARE TECHNOLOGY CO.,LTD, 0, 0, 1, 6]
  181.     [F:\新建文件夹\ChinaNetSn\bin\detector.dll]  [西安信利软件系统有限公司, 1, 0, 0, 2]
  182.     [C:\WINDOWS\system32\wpcap.dll]  [CACE Technologies, 3, 1, 0, 27]
  183.     [C:\WINDOWS\system32\packet.dll]  [CACE Technologies, 3, 1, 0, 27]
  184.     [C:\WINDOWS\system32\WanPacket.dll]  [CACE Technologies, 3, 1, 0, 27]
  185.     [C:\WINDOWS\system32\XLPPoEPCIoctl.dll]  [N/A, ]
  186. [PID: 3700][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
  187.     [C:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
  188.     [F:\QQDownload\QQIEHelper01.dll]  [腾讯公司, 1, 1, 0, 5]
  189.     [F:\讯雷\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 1, 4]
  190.     [F:\讯雷\Components\ResWorker\DsBho_00.dll]  [, 1, 0, 0, 2]
  191.     [F:\讯雷\Components\ResWorker\DataProcessor_00.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 4]
  192.     [F:\讯雷\ComDlls\TDAtOnce_Now.dll]  [Thunder Networking Technologies,LTD, 1.0.0.4]
  193.     [C:\WINDOWS\system32\6dd1.dll]  [TODO: <公司名>, 1.0.0.1]
  194.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  195.     [C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5358.4827 (WMP_11.060509-2009)]
  196.     [C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx]  [Adobe Systems, Inc., 9,0,16,0]
  197. [PID: 356][C:\Documents and Settings\Administrator\桌面\SREng.EXE]  [Smallfrogs Studio, 2.4.12.806]
  198. ==================================
  199. 文件关联
  200. .TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
  201. .EXE  OK. ["%1" %*]
  202. .COM  OK. ["%1" %*]
  203. .PIF  OK. ["%1" %*]
  204. .REG  OK. [regedit.exe "%1"]
  205. .BAT  OK. ["%1" %*]
  206. .SCR  OK. ["%1" /S]
  207. .CHM  OK. ["C:\WINDOWS\hh.exe" %1]
  208. .HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
  209. .INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
  210. .INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
  211. .VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  212. .JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  213. .LNK  OK. [{00021401-0000-0000-C000-000000000046}]
  214. ==================================
  215. Winsock 提供者
  216. N/A
  217. ==================================
  218. Autorun.inf
  219. N/A
  220. ==================================
  221. HOSTS 文件
  222. 127.0.0.1       localhost
  223. ==================================
  224. API HOOK
  225. N/A
  226. ==================================
  227. 隐藏进程
  228. N/A
  229. ==================================
复制代码
各位帮忙看下 有什么问题  不开什么进程就有25左右!~~
还有用WINDOWS  清理助手清理系统后每打开一个文件就有如图所提示的!~~怎么也搞不掉  官方论坛现在还没人能解决关于这个的!~~

[ 本帖最后由 jbz85 于 2007-5-23 12:57 编辑 ]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

jbz85
头像被屏蔽
 楼主| 发表于 2007-5-23 12:59:41 | 显示全部楼层
在网上搜dd4al.exe搜不到!~~~
怎么办啊!~~
回复

举报

zhaonimm
发表于 2007-5-23 13:23:47 | 显示全部楼层
c:\windows\system32\6dd1.dll
c:\windows\system32\dd4a1.exe
c:\windows\\systemroot\system32\drivers\kjohki.sys
    启动项目 -- 服务 -- Win32服务应用程序之如下项删除:
[Fax 2Client / ms_2fax]    <C:\WINDOWS\system32\dd4a1.exe>

    启动项目 -- 服务-- 驱动程序之如下项删除:
[kjohki / kjohki]    <\SystemRoot\\SystemRoot\System32\drivers\kjohki.sys>
以上删除!并且取消自启动!你进程多试着优化一下服务 这样的帖子论坛不少 你找找看吧!!
tdidcde.exe 这个文件你用杀毒软件扫描下看看!!
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-11-25 14:35 , Processed in 0.135010 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表