如何查杀压缩文件宏病毒查杀?
点击联系发帖人
时间:2014-11-13 11:23
1&&/&&1&&页
跳转 0 ? parseInt(this.value) : 1) + '.aspx';}else{window.location='showtopic.aspx?topicid=8440554&page=' + (parseInt(this.value) > 0 ? parseInt(this.value) : 1) ;}}"" size="4" maxlength="9"
class="colorblue2"/>页
电脑有病毒查杀后,有三个文件需要解压缩,不敢硬删!!怎么办??
快乐黄口狮
电脑有病毒查杀后,有三个文件需要解压缩,不敢硬删!!怎么办??
电脑有病毒查杀后,有三个文件需要解压缩,不敢硬删!!怎么办??下面是日志[用户系统信息]Mozilla/4.0 ( MSIE 6.0; Windows NT 5.1; SV1; TencentTraveler )
下载次数:288
文件类型:application/octet-stream
上传时间: 9:35:33
快乐黄口狮
[CODE],09:22:42System Repair Engineer 2.6.2.928Smallfrogs ()Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能以下内容被选中:& & 所有的启动项目(包括注册表、启动文件夹、服务等)& & 浏览器加载项& & 正在运行的进程(包括进程模块信息)& & 文件关联& & Winsock 提供者& & Autorun.inf& & HOSTS 文件& & 进程特权扫描启动项目注册表[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]& & &ctfmon.exe&&C:\WINDOWS\system32\ctfmon.exe&& [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]& & &RavTask&&"C:\Program Files\Rising\Rav\RavTask.exe" -system&& [(Verified)Beijing Rising Science and Technology Corporation Limited]& & &搜狐彩电网页版&&C:\Program Files\sohutv_web\SysTrayIcon.exe "C:\Program Files\sohutv_web" "bd9ad5e4e59447" "1.0.0.2" ""&& [File is missing]& & &NvCplDaemon&&RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup&& [(Verified)Microsoft Windows Hardware Compatibility Publisher][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]& & &shell&&Explorer.exe&& [(Verified)Microsoft Windows Publisher]& & &Userinit&&C:\WINDOWS\system32\userinit.exe,&& [(Verified)Microsoft Windows Publisher]& & &UIHost&&logonui.exe&& [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]& & &{32CD708B-60A7-4C00-9377-D73EAA495F0F}&&C:\WINDOWS\system32\RavExt.dll&& [(Verified)Beijing Rising Science and Technology Corporation Limited][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&{d38-484f-9b9e-dec}]& & &Internet Explorer&&%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE&& [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]& & &Outlook Express&&%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE&& [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09--FED}]& & &Themes Setup&&%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll&& [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]& & &Microsoft Outlook Express 6&&"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install&& [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]& & &NetMeeting 3.01&&rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT&& [(Verified)Microsoft Windows XP Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]& & &Microsoft Windows Media Player&&rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub&& [(Verified)Microsoft Windows Component Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{71-11d2-AF11-00C04FA35D02}]& & &通讯簿 6&&"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install&& [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Your Image File Name Here without a path]& & &IFEO[Your Image File Name Here without a path]&&ntsd -d&& [N/A][HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]& & &bgswitch&&; C:\WINDOWS\system32\bgswitch.exe&& [][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]& & &CNRN&&; C:\PROGRA~1\CNRN\RNMain.exe C:\PROGRA~1\CNRN\CNRN.dll,Rundll32&& [File is missing]& & &CNRNRNHelper.dll&&; C:\PROGRA~1\CNRN\RNMain.exe C:\PROGRA~1\CNRN\RNHelper.dll,Rundll32&& [File is missing]& & &IMJPMIG8.1&&; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32&& [(Verified)Microsoft Windows Publisher]& & &IMSCMig&&; C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload&& [(Verified)Microsoft Corporation]& & &KernelFaultCheck&&; %systemroot%\system32\dumprep 0 -k&& [File is missing]& & &NvCplDaemon&&; RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup&& [(Verified)Microsoft Windows Hardware Compatibility Publisher]& & &nwiz&&; nwiz.exe /installquiet /keeploaded /nodetect&& []& & &PHIME2002A&&; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName&& [(Verified)Microsoft Windows Publisher]& & &PHIME2002ASync&&; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC&& [(Verified)Microsoft Windows Component Publisher]& & &runeip&&; C:\Program Files\Rising\AntiSpyware\runiep.exe&& [Beijing Rising Technology Co., Ltd.]& & &SoundMan&&; SOUNDMAN.EXE&& [(Verified)Microsoft Windows Hardware Compatibility Publisher]& & &StateChange&&; C:\Program Files\lenovo\StateChange\QuakeII.exe&& [联想]& & &WebThunder&&; d:\Program Files\Thunder Network\WebThunder\WebThunder.exe&& [(Verified)ShenZhen Thunder Networking Technologies Ltd.]& & &搜狐彩电网页版&&; C:\Program Files\sohutv_web\SysTrayIcon.exe "C:\Program Files\sohutv_web" "bd9ad5e4e59447" "1.0.0.2" ""&& [File is missing]& & &联想标准功能键盘 Ver1.0.0.6&&; C:\Program Files\联想\联想标准功能键盘\SkDaemond.exe&& [联想]==================================启动文件夹N/A==================================服务[Contrl Center of Storm Media / ccosm][Running/Auto Start]& &d:\Program Files\StormII\stormliv.exe /asservice&&北京暴风网际科技有限公司&[Contrl Center of Storm Media / ccosm][Running/Auto Start]& &d:\Program Files\StormII\stormliv.exe /asservice&&北京暴风网际科技有限公司&[Human Interface Device Access / HidServ][Stopped/Disabled]& &C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&[Human Interface Device Access / HidServ][Stopped/Disabled]& &C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]& &C:\WINDOWS\system32\nvsvc32.exe&&NVIDIA Corporation&[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]& &C:\WINDOWS\system32\nvsvc32.exe&&NVIDIA Corporation&[Rising Process Communication Center / RsCCenter][Running/Auto Start]& &"C:\Program Files\Rising\Rav\CCenter.exe"&&Beijing Rising Technology Co., Ltd.&[Rising RealTime Monitor / RsRavMon][Stopped/Auto Start]& &"C:\PROGRAM FILES\RISING\RAV\Ravmond.exe"&&Beijing Rising Technology Co., Ltd.&[Rising Process Communication Center / RsCCenter][Running/Auto Start]& &"C:\Program Files\Rising\Rav\CCenter.exe"&&Beijing Rising Technology Co., Ltd.&[Rising RealTime Monitor / RsRavMon][Stopped/Auto Start]& &"C:\PROGRAM FILES\RISING\RAV\Ravmond.exe"&&Beijing Rising Technology Co., Ltd.&
快乐黄口狮
驱动程序[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]& &system32\drivers\ALCXWDM.SYS&&Realtek Semiconductor Corp.&[AMD Processor Driver / AmdK8][Running/System Start]& &system32\DRIVERS\AmdK8.sys&&Advanced Micro Devices&[CanIO / CanIO][Running/Auto Start]& &\??\C:\WINDOWS\System32\Drivers\CanIO.sys&&&[HookCont / HookCont][Running/System Start]& &\SystemRoot\system32\drivers\HookCont.sys&&Beijing Rising Technology Co., Ltd&[HookNtos / HookNtos][Running/System Start]& &\SystemRoot\system32\drivers\HookNtos.sys&&Beijing Rising Technology Co., Ltd&[HookReg / HookReg][Running/System Start]& &\SystemRoot\system32\drivers\HookReg.sys&&Beijing Rising Technology Co., Ltd&[HookSys / HookSys][Running/System Start]& &\SystemRoot\system32\drivers\HookSys.sys&&Beijing Rising Technology Co., Ltd&[nv / nv][Running/Manual Start]& &system32\DRIVERS\nv4_mini.sys&&NVIDIA Corporation&[PNDIO / PNDIO][Stopped/Manual Start]& &\??\C:\Program Files\lenovo\StateChange\pndio.sys&&N/A&[Direct Parallel Link Driver / Ptilink][Running/Manual Start]& &system32\DRIVERS\ptilink.sys&&Parallel Technologies, Inc.&[PxHelp20 / PxHelp20][Running/Boot Start]& &\SystemRoot\System32\Drivers\PxHelp20.sys&&Sonic Solutions&[RsAntiSpyware / RsAntiSpyware][Running/Boot Start]& &\SystemRoot\system32\drivers\RsBoot.sys&&Beijing Rising&[RsNTGDI / RsNTGDI][Running/Boot Start]& &\SystemRoot\system32\Drivers\RsNTGdi.sys&&Beijing Rising Technology Co., Ltd.&[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]& &system32\DRIVERS\Rtlnicxp.sys&&Realtek Semiconductor Corporation&[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Stopped/Manual Start]& &system32\DRIVERS\RTL8139.SYS&&Realtek Semiconductor Corporation&[Secdrv / Secdrv][Stopped/Manual Start]& &system32\DRIVERS\secdrv.sys&&Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.&[PS/2 Keyboard Filter Driver for WindowsXP / Skpskb][Running/Manual Start]& &system32\DRIVERS\Skpskb.sys&&Silitek Corp.&[FSE File System Filter Driver / xbpublic][Running/Boot Start]& &\SystemRoot\System32\drivers\xbpublic.sys&&Microsoft Corporation&[zp / zp][Stopped/Manual Start]& &\??\C:\WINDOWS\system32\drivers\zp.sys&&N/A&[1429968 / 1429968][Running/]& &2 - 系统找不到指定的文件。&&N/A&==================================浏览器加载项[WebThunder Browser Helper]& {00000AAA-A363-466E-BEF5-9BB68697AA7F} &d:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll, Thunder Networking Technologies,LTD&[BitComet Helper]& {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} &D:\Program Files\BitComet\tools\BitCometBHO_1.2.1.2.dll, BitComet&[Thunder5下载辅助]& {EA2FCCA9-F44F-43DD-D103C} &C:\WINDOWS\ThunderHelper.dll, Thunder Networking Technologies,LTD&[番茄花园]& {AC1--75DFA92FB32F} &, N/A&[信息检索(&R)]& {CC-41C8-B9BE-3C9C571A8263} &D:\PROGRA~1\OFFICE11\REFIEBAR.DLL, Microsoft Corporation&[PPLive]& {95B3F550-91C4-4627-BCC4-77} &d:\Program Files\PPLive\PPLive.exe, N/A&[启动WEB迅雷]& {962EFB8E--AC74-AAA4C759B9C6} &, N/A&[BitComet]& {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} &, N/A&[MMCPlayer Class]& {05C-48E5-8E26-EEB9} &C:\WINDOWS\Downloaded Program Files\MMCShell.dll,
Inc.&[WebThunder Browser Helper]& {00000AAA-A363-466E-BEF5-9BB68697AA7F} &d:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll, Thunder Networking Technologies,LTD&[WebThunder Class]& {03507A1A-E0C5-4404-AA26-2D} &, N/A&[DHTML Edit Control Safe for Scripting for IE5]& {2D360201-FFF5-11D1-8D03-00A0C959BC0A} &C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation&[BitComet Helper]& {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} &D:\Program Files\BitComet\tools\BitCometBHO_1.2.1.2.dll, BitComet&[Windows Media Player]& {6BF52A52-394A-11D3-B153-00C04F79FAA6} &C:\WINDOWS\system32\wmp.dll, Microsoft Corporation&[360SafeLive]& {C--D416CB8059E3} &D:\Program Files\360safe\live.dll, &[Microsoft Web 浏览器]& {A-11D0-A96B-00C04FD705A2} &C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation&[SearchAssistantOC]& {B45FF030--85DE-00C04FA35C89} &%SystemRoot%\system32\shdocvw.dll, N/A&[Shockwave Flash Object]& {D27CDB6E-AE6D-11CF-96B8-} &C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx, Adobe Systems, Inc.&[Thunder5下载辅助]& {EA2FCCA9-F44F-43DD-D103C} &C:\WINDOWS\ThunderHelper.dll, Thunder Networking Technologies,LTD&[&使用BitComet下载]& &res://D:\Program Files\BitComet\BitComet.exe/AddLink.htm, N/A&[&使用BitComet下载全部链接]& &res://D:\Program Files\BitComet\BitComet.exe/AddAllLink.htm, N/A&[&使用BitComet下载本页视频]& &res://D:\Program Files\BitComet\BitComet.exe/AddVideo.htm, N/A&[使用WEB迅雷下载]& &d:\Program Files\Thunder Network\WebThunder\GetUrl.htm, N/A&[使用WEB迅雷下载全部链接]& &d:\Program Files\Thunder Network\WebThunder\GetAllUrl.htm, N/A&[导出到 Microsoft Office Excel(&X)]& &res://D:\PROGRA~1\OFFICE11\EXCEL.EXE/3000, N/A&[添加到QQ表情]& &D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A&
快乐黄口狮
正在运行的进程[PID: 504 / SYSTEM][\SystemRoot\System32\smss.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 568 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 596 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]& & [C:\WINDOWS\system32\msacm32.drv]& [Microsoft Corporation, 5.1.2600.0 (xpclient.8)][PID: 640 / SYSTEM][C:\WINDOWS\system32\services.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 652 / SYSTEM][C:\WINDOWS\system32\lsass.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 804 / SYSTEM][C:\WINDOWS\system32\svchost.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 864 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 932 / SYSTEM][C:\Program Files\Rising\Rav\CCenter.exe]& [Beijing Rising Technology Co., Ltd., 20.0.0.28][PID: 948 / SYSTEM][C:\WINDOWS\System32\svchost.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 1012 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 1068 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 1460 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_gdr.9)]& & [C:\WINDOWS\system32\mdimon.dll]& [Microsoft Corporation, 11.3.1897.0]& & [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll]& [Microsoft Corporation, 11.3.1897.0][PID: 1772 / Administrator][C:\Program Files\Rising\Rav\RavTask.exe]& [Beijing Rising Technology Co., Ltd., 20.0.0.22]& & [C:\Program Files\Rising\Rav\ProcCom.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\Program Files\Rising\Rav\RsCommX2.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\Program Files\Rising\Rav\RSCOMMON.DLL]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]& & [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]& [Beijing Rising Technology Co., Ltd., 20.0.0.0]& & [C:\Program Files\Rising\Rav\CfgDll.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.16][PID: 1832 / SYSTEM][d:\Program Files\StormII\stormliv.exe]& [北京暴风网际科技有限公司, 3, 8, 3, 1]& & [d:\Program Files\StormII\MSVCP60.dll]& [Microsoft Corporation, 6.02.3104.0][PID: 2040 / SYSTEM][C:\WINDOWS\system32\nvsvc32.exe]& [NVIDIA Corporation, 6.14.10.8415][PID: 180 / Administrator][C:\WINDOWS\system32\ctfmon.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 532 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe]& [Microsoft Corporation, 5.2. built by: dnsrv(bld4act)][PID: 2160 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 3252 / SYSTEM][C:\PROGRAM FILES\RISING\RAV\ravmond.exe]& [Beijing Rising Technology Co., Ltd., 20.0.0.75]& & [C:\PROGRAM FILES\RISING\RAV\BWList.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.4]& & [C:\WINDOWS\system32\MFC71.DLL]& [Microsoft Corporation, 7.10.3077.0]& & [C:\WINDOWS\system32\MSVCR71.dll]& [Microsoft Corporation, 7.10.3052.4]& & [C:\WINDOWS\system32\MSVCP71.dll]& [Microsoft Corporation, 7.10.3077.0]& & [C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.0]& & [C:\PROGRAM FILES\RISING\RAV\CfgDll.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.16]& & [C:\PROGRAM FILES\RISING\RAV\RsLog.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.34]& & [C:\PROGRAM FILES\RISING\RAV\ProcCom.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\PROGRAM FILES\RISING\RAV\RsCommX2.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\PROGRAM FILES\RISING\RAV\MonRule.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.29]& & [C:\PROGRAM FILES\RISING\RAV\Hooksys.dll]& [Beijing Rising Technology Co., Ltd, 22, 0, 0, 9]& & [C:\PROGRAM FILES\RISING\RAV\HookReg.dll]& [Beijing Rising Technology Co., Ltd, 22, 0, 0, 4]& & [C:\PROGRAM FILES\RISING\RAV\HookNtos.dll]& [Beijing Rising Technology Co., Ltd, 22, 0, 0, 2]& & [C:\PROGRAM FILES\RISING\RAV\rswalmon.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 22]& & [C:\PROGRAM FILES\RISING\RAV\recomp.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 34]& & [C:\PROGRAM FILES\RISING\RAV\refs.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 15]& & [C:\PROGRAM FILES\RISING\RAV\ffr.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 10]& & [C:\Program Files\Rising\Rav\RsStore.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.8]& & [C:\PROGRAM FILES\RISING\RAV\HookCont.dll]& [Beijing Rising Technology Co., Ltd, 22, 0, 0, 1]& & [C:\Program Files\Rising\Rav\fakescan.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.13]& & [C:\Program Files\Rising\Rav\Scanner.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.36]& & [C:\PROGRAM FILES\RISING\RAV\viruslib.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 21]& & [C:\PROGRAM FILES\RISING\RAV\relibldr.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 13]& & [C:\PROGRAM FILES\RISING\RAV\HookWeb.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.2]& & [C:\PROGRAM FILES\RISING\RAV\nvfile.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]& & [C:\PROGRAM FILES\RISING\RAV\scanexec.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 15]& & [C:\PROGRAM FILES\RISING\RAV\unexe.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 4]& & [C:\PROGRAM FILES\RISING\RAV\scanex.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 55]& & [C:\PROGRAM FILES\RISING\RAV\pearc.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 5]& & [C:\PROGRAM FILES\RISING\RAV\extfile.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 29]& & [C:\PROGRAM FILES\RISING\RAV\scanpack.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 9]& & [C:\PROGRAM FILES\RISING\RAV\revm.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 8]& & [C:\PROGRAM FILES\RISING\RAV\urutils.dll]& [, 20, 0, 0, 4]& & [C:\PROGRAM FILES\RISING\RAV\ur000.dat]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]& & [C:\PROGRAM FILES\RISING\RAV\scriptci.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]& & [C:\PROGRAM FILES\RISING\RAV\uroutine.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 26]& & [C:\PROGRAM FILES\RISING\RAV\scansct.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 8]& & [C:\PROGRAM FILES\RISING\RAV\posttrt.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]& & [C:\PROGRAM FILES\RISING\RAV\ur001.dat]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3][PID: 3388 / SYSTEM][C:\PROGRAM FILES\RISING\RAV\RavStub.exe]& [Beijing Rising Technology Co., Ltd., 20.0.0.9]& & [C:\PROGRAM FILES\RISING\RAV\ProcCom.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\PROGRAM FILES\RISING\RAV\RsCommX2.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16][PID: 3440 / Administrator][C:\Program Files\Rising\Rav\RAVMON.EXE]& [Beijing Rising Technology Co., Ltd., 20.0.01.14]& & [C:\WINDOWS\system32\MFC71.DLL]& [Microsoft Corporation, 7.10.3077.0]& & [C:\WINDOWS\system32\MSVCR71.dll]& [Microsoft Corporation, 7.10.3052.4]& & [C:\WINDOWS\system32\MSVCP71.dll]& [Microsoft Corporation, 7.10.3077.0]& & [C:\Program Files\Rising\Rav\ProcCom.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\Program Files\Rising\Rav\RsCommX2.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\Program Files\Rising\Rav\RSCOMMON.DLL]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]& & [C:\Program Files\Rising\Rav\recomp.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 34]& & [C:\Program Files\Rising\Rav\refs.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 15]& & [C:\Program Files\Rising\Rav\viruslib.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 21]& & [C:\Program Files\Rising\Rav\relibldr.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 13]& & [C:\Program Files\Rising\Rav\RSAPPMGR.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.0]& & [C:\Program Files\Rising\Rav\CfgDll.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.16]& & [C:\Program Files\Rising\Rav\MonRule.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.29]& & [C:\Program Files\Rising\Rav\PngDll.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 4]& & [C:\Program Files\Rising\Rav\Rsguilib.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 88]& & [C:\Program Files\Rising\Rav\RsXML.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 0][PID: 3852 / Administrator][C:\Program Files\Rising\Rav\RsAgent.exe]& [Beijing Rising Technology Co., Ltd., 20.0.0.7]& & [C:\WINDOWS\system32\MFC71.DLL]& [Microsoft Corporation, 7.10.3077.0]& & [C:\WINDOWS\system32\MSVCR71.dll]& [Microsoft Corporation, 7.10.3052.4]& & [C:\WINDOWS\system32\MSVCP71.dll]& [Microsoft Corporation, 7.10.3077.0]& & [C:\Program Files\Rising\Rav\ProcCom.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\Program Files\Rising\Rav\RsCommX2.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19][PID: 3876 / Administrator][C:\WINDOWS\msagent\AgentSvr.exe]& [Microsoft Corporation, 2.00.0.3424]& & [C:\WINDOWS\system32\msacm32.drv]& [Microsoft Corporation, 5.1.2600.0 (xpclient.8)][PID: 1372 / Administrator][C:\WINDOWS\explorer.exe]& [Microsoft Corporation, 6.00. (xpsp_sp2_rtm.8)]& & [C:\WINDOWS\system32\msacm32.drv]& [Microsoft Corporation, 5.1.2600.0 (xpclient.8)]& & [C:\WINDOWS\system32\RavExt.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.17]& & [C:\Program Files\Rising\Rav\RSCOMMON.DLL]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]& & [C:\WINDOWS\system32\nvcpl.dll]& [NVIDIA Corporation, 6.14.10.8415]& & [C:\WINDOWS\system32\NVRSZHC.DLL]& [NVIDIA Corporation, 6.14.10.8415]& & [C:\WINDOWS\system32\nvshell.dll]& [, ]& & [C:\WINDOWS\system32\msdmo.dll]& [, ]& & [C:\Program Files\WinRAR\rarext.dll]& [N/A, ]& & [C:\WINDOWS\system32\l3codeca.acm]& [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]& & [d:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll]& [Thunder Networking Technologies,LTD, 5, 0, 8, 62]& & [D:\Program Files\OFFICE11\msohev.dll]& [Microsoft Corporation, 11.0.5510]& & [d:\PROGRA~1\Wopti\WOPTIE~1.DLL]& [共软网络, 1.0.8.103]& & [C:\Program Files\Rising\Rav\RavScrCh.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]& & [C:\WINDOWS\system32\msadp32.acm]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 216 / Administrator][D:\Program Files\Tencent\TT\TTraveler.exe]& [腾讯公司, 3, 3, 200, 290]& & [D:\Program Files\Tencent\TT\Plugins\QQFloatBar\QQFloatBar4TT2.dll]& [腾讯公司, 1, 1, 0, 5]& & [D:\Program Files\Tencent\TT\Plugins\TWeather\TWeather.dll]& [, 1, 0, 0, 3]& & [D:\Program Files\Tencent\TT\TTNetFavor.dll]& [N/A, ]
快乐黄口狮
[C:\Program Files\Rising\Rav\RavScrCh.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]& & [C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx]& [Adobe Systems, Inc., 9,0,115,0]& & [C:\WINDOWS\system32\msacm32.drv]& [Microsoft Corporation, 5.1.2600.0 (xpclient.8)]& & [C:\WINDOWS\system32\JPWB.IME]& [常诚研制, 4.00.950][PID: 1720 / Administrator][C:\Program Files\Internet Explorer\iexplore.exe]& [Microsoft Corporation, 6.00. (xpsp_sp2_rtm.8)]& & [d:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll]& [Thunder Networking Technologies,LTD, 5, 0, 8, 62]& & [D:\Program Files\BitComet\tools\BitCometBHO_1.2.1.2.dll]& [BitComet, ]& & [C:\WINDOWS\ThunderHelper.dll]& [Thunder Networking Technologies,LTD, 1.1.5.0]& & [D:\Program Files\OFFICE11\msohev.dll]& [Microsoft Corporation, 11.0.5510]& & [C:\Program Files\Rising\Rav\RavScrCh.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]& & [C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx]& [Adobe Systems, Inc., 9,0,115,0]& & [C:\WINDOWS\system32\msacm32.drv]& [Microsoft Corporation, 5.1.2600.0 (xpclient.8)]& & [C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL]& [Microsoft Corporation, 11.0.5510]& & [C:\WINDOWS\system32\JPWB.IME]& [常诚研制, 4.00.950]& & [C:\WINDOWS\system32\Audiodev.dll]& [Microsoft Corporation, 5.2. built by: dnsrv(bld4act)][PID: 2492 / Administrator][E:\sreng928\SREngPTS.EXE]& [Smallfrogs Studio, 2.6.2.928]==================================文件关联.TXT& Error. [C:\WINDOWS\notepad.exe %1].EXE& OK. ["%1" %*].COM& OK. ["%1" %*].PIF& OK. ["%1" %*].REG& OK. [regedit.exe "%1"].BAT& OK. ["%1" %*].SCR& OK. ["%1" /S].CHM& Error. ["hh.exe" %1].HLP& OK. [%SystemRoot%\System32\winhlp32.exe %1].INI& Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1].INF& OK. [%SystemRoot%\System32\NOTEPAD.EXE %1].VBS& OK. [%SystemRoot%\System32\WScript.exe "%1" %*].JS&
OK. [%SystemRoot%\System32\WScript.exe "%1" %*].LNK& OK. [{0-}]==================================Winsock 提供者N/A==================================Autorun.infN/A==================================HOSTS 文件127.0.0.1& & &
localhost127.0.0.1& yu.8s7.net127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& xxx.m111.biz127.0.0.1& 127.0.0.1& 127.0.0.1& xxx.vh7.biz127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& xxx.mmma.biz127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& down.18dd.net127.0.0.1& ==================================进程特权扫描特殊特权被允许: SeDebugPrivilege [PID = 216, D:\PROGRAM FILES\TENCENT\TT\TTRAVELER.EXE]特殊特权被允许: SeLoadDriverPrivilege [PID = 216, D:\PROGRAM FILES\TENCENT\TT\TTRAVELER.EXE]==================================API HOOKN/A==================================隐藏进程N/A
健康舞勺狮
关闭系统还原后杀毒 我的电脑--右键--属性--系统还原--在所有驱动器上关闭系统还原然后杀毒 然后下载WINDOWS清理助手 清理系统顺便问一下路过的高手 怎么会有俩这个服务[Human Interface Device Access / HidServ][Stopped/Disabled]&C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&[Human Interface Device Access / HidServ][Stopped/Disabled]&C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&今天不止一次看到了目前2.6版本的SRENG工具在服务上的扫描,就这样双显示。
卡卡技术团队
帖子:15158
[Human Interface Device Access / HidServ][Stopped/Disabled]&C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&[Human Interface Device Access / HidServ][Stopped/Disabled]&C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&不是病毒
威望:31228
初生襁褓狮
楼主关闭系统还原后再用杀软查杀一下!还有病毒的话请提供文件名和路径!
1&&/&&1&&页
跳转 0 ? parseInt(this.value) : 1) + '.aspx';}else{window.location='showtopic.aspx?topicid=8440554&page=' + (parseInt(this.value) > 0 ? parseInt(this.value) : 1) ;}}"" size="4" maxlength="9"
class="colorblue2"/>页
论坛跳转...
热点专题 &&瑞星杀毒软件V16+ && &&V16+新引擎测试专区 &&瑞星路由安全卫士 &&瑞星安全随身WiFi &&瑞星个人防火墙V16 && &&广告过滤 &&路由系统内核漏洞 &&瑞星5000万豪礼积分活动专区 && &&北方区 && &&华东区 && &&华南区 && &&木马入侵拦截有奖体验专区 && &&瑞星2009版查杀引擎测试 && &&瑞星2009测试版问题反馈 && && &&瑞星杀毒软件2009公测 && && &&瑞星个人防火墙2009公测 && && &&瑞星全功能安全软件2009公测瑞星产品求助区 &&瑞星手机安全助手 &&瑞星杀毒软件2011、瑞星全功能安全软件 && &&瑞星全功能安全软件 &&瑞星个人防火墙2011 &&企业级安全产品 && &&瑞星企业终端安全管理系统 &&卡卡上网安全助手 &&瑞星安全助手 &&瑞星安全浏览器 &&瑞星其他产品 && &&瑞星软件管家 && &&瑞星加密盘 && &&账号保险柜5.0 && &&瑞星专业数据恢复技术交流区 &&反病毒/反流氓软件论坛 && &&菜鸟学堂 && &&安全技术讨论 &&恶意网站交流 && &&每日网马播报 && &&瑞星云安全网站联盟专版 &&入侵防御(HIPS) &&可疑文件交流 &&系统软件 && &&防火墙自定义规则 &&硬件交流综合娱乐区 &&Rising茶馆 &&影音贴图 &&情感小屋 &&体坛风云 &&活动专区 && &&实习生专区 && && &&实习生交流区 && && && &&实习生签到区 && && &&实习生考核区 && &&“安全之狮”校园行活动专版 && &&历史活动 && && &&论坛9周年活动专区 && && &&关注灾情 同心抗灾 &&瑞星安全游戏 && &&战将风云 && &&飘渺西游 && &&傲视天地 && &&凡人修真 && &&华人德州扑克 && &&天地英雄 && &&一球成名 && &&星际世界 && &&武林英雄 && &&神仙道 && &&赢家竞技 && &&盛世三国 && &&龙将 && &&梦幻飞仙 && &&斗破苍穹 && &&热血海贼王 && &&三国演义 && &&开天辟地 && &&仙落凡尘 && &&秦美人 && &&大侠传 && &&烈火战神 && &&神将三国 && &&街机三国 && &&龙回三国 && &&武尊 && &&绝代双骄 && &&攻城掠地 && &&女神联盟 && &&最无极 && &&剑影 && &&仙侠道 && &&风云无双 && &&傲视九重天 && &&深渊 &&安全购物 && &&星迷论坛 && &&天天3·15本站站务区 &&站务 &&版主之家[限] && &&禁言禁访记录 &&待审核 &&瑞星客户俱乐部[限]}
跳转 0 ? parseInt(this.value) : 1) + '.aspx';}else{window.location='showtopic.aspx?topicid=8440554&page=' + (parseInt(this.value) > 0 ? parseInt(this.value) : 1) ;}}"" size="4" maxlength="9"
class="colorblue2"/>页
电脑有病毒查杀后,有三个文件需要解压缩,不敢硬删!!怎么办??
快乐黄口狮
电脑有病毒查杀后,有三个文件需要解压缩,不敢硬删!!怎么办??
电脑有病毒查杀后,有三个文件需要解压缩,不敢硬删!!怎么办??下面是日志[用户系统信息]Mozilla/4.0 ( MSIE 6.0; Windows NT 5.1; SV1; TencentTraveler )
下载次数:288
文件类型:application/octet-stream
上传时间: 9:35:33
快乐黄口狮
[CODE],09:22:42System Repair Engineer 2.6.2.928Smallfrogs ()Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能以下内容被选中:& & 所有的启动项目(包括注册表、启动文件夹、服务等)& & 浏览器加载项& & 正在运行的进程(包括进程模块信息)& & 文件关联& & Winsock 提供者& & Autorun.inf& & HOSTS 文件& & 进程特权扫描启动项目注册表[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]& & &ctfmon.exe&&C:\WINDOWS\system32\ctfmon.exe&& [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]& & &RavTask&&"C:\Program Files\Rising\Rav\RavTask.exe" -system&& [(Verified)Beijing Rising Science and Technology Corporation Limited]& & &搜狐彩电网页版&&C:\Program Files\sohutv_web\SysTrayIcon.exe "C:\Program Files\sohutv_web" "bd9ad5e4e59447" "1.0.0.2" ""&& [File is missing]& & &NvCplDaemon&&RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup&& [(Verified)Microsoft Windows Hardware Compatibility Publisher][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]& & &shell&&Explorer.exe&& [(Verified)Microsoft Windows Publisher]& & &Userinit&&C:\WINDOWS\system32\userinit.exe,&& [(Verified)Microsoft Windows Publisher]& & &UIHost&&logonui.exe&& [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]& & &{32CD708B-60A7-4C00-9377-D73EAA495F0F}&&C:\WINDOWS\system32\RavExt.dll&& [(Verified)Beijing Rising Science and Technology Corporation Limited][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&{d38-484f-9b9e-dec}]& & &Internet Explorer&&%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE&& [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]& & &Outlook Express&&%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE&& [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09--FED}]& & &Themes Setup&&%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll&& [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]& & &Microsoft Outlook Express 6&&"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install&& [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]& & &NetMeeting 3.01&&rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT&& [(Verified)Microsoft Windows XP Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]& & &Microsoft Windows Media Player&&rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub&& [(Verified)Microsoft Windows Component Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{71-11d2-AF11-00C04FA35D02}]& & &通讯簿 6&&"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install&& [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Your Image File Name Here without a path]& & &IFEO[Your Image File Name Here without a path]&&ntsd -d&& [N/A][HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]& & &bgswitch&&; C:\WINDOWS\system32\bgswitch.exe&& [][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]& & &CNRN&&; C:\PROGRA~1\CNRN\RNMain.exe C:\PROGRA~1\CNRN\CNRN.dll,Rundll32&& [File is missing]& & &CNRNRNHelper.dll&&; C:\PROGRA~1\CNRN\RNMain.exe C:\PROGRA~1\CNRN\RNHelper.dll,Rundll32&& [File is missing]& & &IMJPMIG8.1&&; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32&& [(Verified)Microsoft Windows Publisher]& & &IMSCMig&&; C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload&& [(Verified)Microsoft Corporation]& & &KernelFaultCheck&&; %systemroot%\system32\dumprep 0 -k&& [File is missing]& & &NvCplDaemon&&; RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup&& [(Verified)Microsoft Windows Hardware Compatibility Publisher]& & &nwiz&&; nwiz.exe /installquiet /keeploaded /nodetect&& []& & &PHIME2002A&&; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName&& [(Verified)Microsoft Windows Publisher]& & &PHIME2002ASync&&; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC&& [(Verified)Microsoft Windows Component Publisher]& & &runeip&&; C:\Program Files\Rising\AntiSpyware\runiep.exe&& [Beijing Rising Technology Co., Ltd.]& & &SoundMan&&; SOUNDMAN.EXE&& [(Verified)Microsoft Windows Hardware Compatibility Publisher]& & &StateChange&&; C:\Program Files\lenovo\StateChange\QuakeII.exe&& [联想]& & &WebThunder&&; d:\Program Files\Thunder Network\WebThunder\WebThunder.exe&& [(Verified)ShenZhen Thunder Networking Technologies Ltd.]& & &搜狐彩电网页版&&; C:\Program Files\sohutv_web\SysTrayIcon.exe "C:\Program Files\sohutv_web" "bd9ad5e4e59447" "1.0.0.2" ""&& [File is missing]& & &联想标准功能键盘 Ver1.0.0.6&&; C:\Program Files\联想\联想标准功能键盘\SkDaemond.exe&& [联想]==================================启动文件夹N/A==================================服务[Contrl Center of Storm Media / ccosm][Running/Auto Start]& &d:\Program Files\StormII\stormliv.exe /asservice&&北京暴风网际科技有限公司&[Contrl Center of Storm Media / ccosm][Running/Auto Start]& &d:\Program Files\StormII\stormliv.exe /asservice&&北京暴风网际科技有限公司&[Human Interface Device Access / HidServ][Stopped/Disabled]& &C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&[Human Interface Device Access / HidServ][Stopped/Disabled]& &C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]& &C:\WINDOWS\system32\nvsvc32.exe&&NVIDIA Corporation&[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]& &C:\WINDOWS\system32\nvsvc32.exe&&NVIDIA Corporation&[Rising Process Communication Center / RsCCenter][Running/Auto Start]& &"C:\Program Files\Rising\Rav\CCenter.exe"&&Beijing Rising Technology Co., Ltd.&[Rising RealTime Monitor / RsRavMon][Stopped/Auto Start]& &"C:\PROGRAM FILES\RISING\RAV\Ravmond.exe"&&Beijing Rising Technology Co., Ltd.&[Rising Process Communication Center / RsCCenter][Running/Auto Start]& &"C:\Program Files\Rising\Rav\CCenter.exe"&&Beijing Rising Technology Co., Ltd.&[Rising RealTime Monitor / RsRavMon][Stopped/Auto Start]& &"C:\PROGRAM FILES\RISING\RAV\Ravmond.exe"&&Beijing Rising Technology Co., Ltd.&
快乐黄口狮
驱动程序[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]& &system32\drivers\ALCXWDM.SYS&&Realtek Semiconductor Corp.&[AMD Processor Driver / AmdK8][Running/System Start]& &system32\DRIVERS\AmdK8.sys&&Advanced Micro Devices&[CanIO / CanIO][Running/Auto Start]& &\??\C:\WINDOWS\System32\Drivers\CanIO.sys&&&[HookCont / HookCont][Running/System Start]& &\SystemRoot\system32\drivers\HookCont.sys&&Beijing Rising Technology Co., Ltd&[HookNtos / HookNtos][Running/System Start]& &\SystemRoot\system32\drivers\HookNtos.sys&&Beijing Rising Technology Co., Ltd&[HookReg / HookReg][Running/System Start]& &\SystemRoot\system32\drivers\HookReg.sys&&Beijing Rising Technology Co., Ltd&[HookSys / HookSys][Running/System Start]& &\SystemRoot\system32\drivers\HookSys.sys&&Beijing Rising Technology Co., Ltd&[nv / nv][Running/Manual Start]& &system32\DRIVERS\nv4_mini.sys&&NVIDIA Corporation&[PNDIO / PNDIO][Stopped/Manual Start]& &\??\C:\Program Files\lenovo\StateChange\pndio.sys&&N/A&[Direct Parallel Link Driver / Ptilink][Running/Manual Start]& &system32\DRIVERS\ptilink.sys&&Parallel Technologies, Inc.&[PxHelp20 / PxHelp20][Running/Boot Start]& &\SystemRoot\System32\Drivers\PxHelp20.sys&&Sonic Solutions&[RsAntiSpyware / RsAntiSpyware][Running/Boot Start]& &\SystemRoot\system32\drivers\RsBoot.sys&&Beijing Rising&[RsNTGDI / RsNTGDI][Running/Boot Start]& &\SystemRoot\system32\Drivers\RsNTGdi.sys&&Beijing Rising Technology Co., Ltd.&[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]& &system32\DRIVERS\Rtlnicxp.sys&&Realtek Semiconductor Corporation&[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Stopped/Manual Start]& &system32\DRIVERS\RTL8139.SYS&&Realtek Semiconductor Corporation&[Secdrv / Secdrv][Stopped/Manual Start]& &system32\DRIVERS\secdrv.sys&&Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.&[PS/2 Keyboard Filter Driver for WindowsXP / Skpskb][Running/Manual Start]& &system32\DRIVERS\Skpskb.sys&&Silitek Corp.&[FSE File System Filter Driver / xbpublic][Running/Boot Start]& &\SystemRoot\System32\drivers\xbpublic.sys&&Microsoft Corporation&[zp / zp][Stopped/Manual Start]& &\??\C:\WINDOWS\system32\drivers\zp.sys&&N/A&[1429968 / 1429968][Running/]& &2 - 系统找不到指定的文件。&&N/A&==================================浏览器加载项[WebThunder Browser Helper]& {00000AAA-A363-466E-BEF5-9BB68697AA7F} &d:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll, Thunder Networking Technologies,LTD&[BitComet Helper]& {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} &D:\Program Files\BitComet\tools\BitCometBHO_1.2.1.2.dll, BitComet&[Thunder5下载辅助]& {EA2FCCA9-F44F-43DD-D103C} &C:\WINDOWS\ThunderHelper.dll, Thunder Networking Technologies,LTD&[番茄花园]& {AC1--75DFA92FB32F} &, N/A&[信息检索(&R)]& {CC-41C8-B9BE-3C9C571A8263} &D:\PROGRA~1\OFFICE11\REFIEBAR.DLL, Microsoft Corporation&[PPLive]& {95B3F550-91C4-4627-BCC4-77} &d:\Program Files\PPLive\PPLive.exe, N/A&[启动WEB迅雷]& {962EFB8E--AC74-AAA4C759B9C6} &, N/A&[BitComet]& {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} &, N/A&[MMCPlayer Class]& {05C-48E5-8E26-EEB9} &C:\WINDOWS\Downloaded Program Files\MMCShell.dll,
Inc.&[WebThunder Browser Helper]& {00000AAA-A363-466E-BEF5-9BB68697AA7F} &d:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll, Thunder Networking Technologies,LTD&[WebThunder Class]& {03507A1A-E0C5-4404-AA26-2D} &, N/A&[DHTML Edit Control Safe for Scripting for IE5]& {2D360201-FFF5-11D1-8D03-00A0C959BC0A} &C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation&[BitComet Helper]& {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} &D:\Program Files\BitComet\tools\BitCometBHO_1.2.1.2.dll, BitComet&[Windows Media Player]& {6BF52A52-394A-11D3-B153-00C04F79FAA6} &C:\WINDOWS\system32\wmp.dll, Microsoft Corporation&[360SafeLive]& {C--D416CB8059E3} &D:\Program Files\360safe\live.dll, &[Microsoft Web 浏览器]& {A-11D0-A96B-00C04FD705A2} &C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation&[SearchAssistantOC]& {B45FF030--85DE-00C04FA35C89} &%SystemRoot%\system32\shdocvw.dll, N/A&[Shockwave Flash Object]& {D27CDB6E-AE6D-11CF-96B8-} &C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx, Adobe Systems, Inc.&[Thunder5下载辅助]& {EA2FCCA9-F44F-43DD-D103C} &C:\WINDOWS\ThunderHelper.dll, Thunder Networking Technologies,LTD&[&使用BitComet下载]& &res://D:\Program Files\BitComet\BitComet.exe/AddLink.htm, N/A&[&使用BitComet下载全部链接]& &res://D:\Program Files\BitComet\BitComet.exe/AddAllLink.htm, N/A&[&使用BitComet下载本页视频]& &res://D:\Program Files\BitComet\BitComet.exe/AddVideo.htm, N/A&[使用WEB迅雷下载]& &d:\Program Files\Thunder Network\WebThunder\GetUrl.htm, N/A&[使用WEB迅雷下载全部链接]& &d:\Program Files\Thunder Network\WebThunder\GetAllUrl.htm, N/A&[导出到 Microsoft Office Excel(&X)]& &res://D:\PROGRA~1\OFFICE11\EXCEL.EXE/3000, N/A&[添加到QQ表情]& &D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A&
快乐黄口狮
正在运行的进程[PID: 504 / SYSTEM][\SystemRoot\System32\smss.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 568 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 596 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]& & [C:\WINDOWS\system32\msacm32.drv]& [Microsoft Corporation, 5.1.2600.0 (xpclient.8)][PID: 640 / SYSTEM][C:\WINDOWS\system32\services.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 652 / SYSTEM][C:\WINDOWS\system32\lsass.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 804 / SYSTEM][C:\WINDOWS\system32\svchost.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 864 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 932 / SYSTEM][C:\Program Files\Rising\Rav\CCenter.exe]& [Beijing Rising Technology Co., Ltd., 20.0.0.28][PID: 948 / SYSTEM][C:\WINDOWS\System32\svchost.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 1012 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 1068 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 1460 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_gdr.9)]& & [C:\WINDOWS\system32\mdimon.dll]& [Microsoft Corporation, 11.3.1897.0]& & [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll]& [Microsoft Corporation, 11.3.1897.0][PID: 1772 / Administrator][C:\Program Files\Rising\Rav\RavTask.exe]& [Beijing Rising Technology Co., Ltd., 20.0.0.22]& & [C:\Program Files\Rising\Rav\ProcCom.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\Program Files\Rising\Rav\RsCommX2.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\Program Files\Rising\Rav\RSCOMMON.DLL]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]& & [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]& [Beijing Rising Technology Co., Ltd., 20.0.0.0]& & [C:\Program Files\Rising\Rav\CfgDll.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.16][PID: 1832 / SYSTEM][d:\Program Files\StormII\stormliv.exe]& [北京暴风网际科技有限公司, 3, 8, 3, 1]& & [d:\Program Files\StormII\MSVCP60.dll]& [Microsoft Corporation, 6.02.3104.0][PID: 2040 / SYSTEM][C:\WINDOWS\system32\nvsvc32.exe]& [NVIDIA Corporation, 6.14.10.8415][PID: 180 / Administrator][C:\WINDOWS\system32\ctfmon.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 532 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe]& [Microsoft Corporation, 5.2. built by: dnsrv(bld4act)][PID: 2160 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 3252 / SYSTEM][C:\PROGRAM FILES\RISING\RAV\ravmond.exe]& [Beijing Rising Technology Co., Ltd., 20.0.0.75]& & [C:\PROGRAM FILES\RISING\RAV\BWList.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.4]& & [C:\WINDOWS\system32\MFC71.DLL]& [Microsoft Corporation, 7.10.3077.0]& & [C:\WINDOWS\system32\MSVCR71.dll]& [Microsoft Corporation, 7.10.3052.4]& & [C:\WINDOWS\system32\MSVCP71.dll]& [Microsoft Corporation, 7.10.3077.0]& & [C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.0]& & [C:\PROGRAM FILES\RISING\RAV\CfgDll.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.16]& & [C:\PROGRAM FILES\RISING\RAV\RsLog.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.34]& & [C:\PROGRAM FILES\RISING\RAV\ProcCom.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\PROGRAM FILES\RISING\RAV\RsCommX2.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\PROGRAM FILES\RISING\RAV\MonRule.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.29]& & [C:\PROGRAM FILES\RISING\RAV\Hooksys.dll]& [Beijing Rising Technology Co., Ltd, 22, 0, 0, 9]& & [C:\PROGRAM FILES\RISING\RAV\HookReg.dll]& [Beijing Rising Technology Co., Ltd, 22, 0, 0, 4]& & [C:\PROGRAM FILES\RISING\RAV\HookNtos.dll]& [Beijing Rising Technology Co., Ltd, 22, 0, 0, 2]& & [C:\PROGRAM FILES\RISING\RAV\rswalmon.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 22]& & [C:\PROGRAM FILES\RISING\RAV\recomp.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 34]& & [C:\PROGRAM FILES\RISING\RAV\refs.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 15]& & [C:\PROGRAM FILES\RISING\RAV\ffr.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 10]& & [C:\Program Files\Rising\Rav\RsStore.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.8]& & [C:\PROGRAM FILES\RISING\RAV\HookCont.dll]& [Beijing Rising Technology Co., Ltd, 22, 0, 0, 1]& & [C:\Program Files\Rising\Rav\fakescan.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.13]& & [C:\Program Files\Rising\Rav\Scanner.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.36]& & [C:\PROGRAM FILES\RISING\RAV\viruslib.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 21]& & [C:\PROGRAM FILES\RISING\RAV\relibldr.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 13]& & [C:\PROGRAM FILES\RISING\RAV\HookWeb.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.2]& & [C:\PROGRAM FILES\RISING\RAV\nvfile.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]& & [C:\PROGRAM FILES\RISING\RAV\scanexec.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 15]& & [C:\PROGRAM FILES\RISING\RAV\unexe.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 4]& & [C:\PROGRAM FILES\RISING\RAV\scanex.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 55]& & [C:\PROGRAM FILES\RISING\RAV\pearc.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 5]& & [C:\PROGRAM FILES\RISING\RAV\extfile.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 29]& & [C:\PROGRAM FILES\RISING\RAV\scanpack.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 9]& & [C:\PROGRAM FILES\RISING\RAV\revm.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 8]& & [C:\PROGRAM FILES\RISING\RAV\urutils.dll]& [, 20, 0, 0, 4]& & [C:\PROGRAM FILES\RISING\RAV\ur000.dat]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]& & [C:\PROGRAM FILES\RISING\RAV\scriptci.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]& & [C:\PROGRAM FILES\RISING\RAV\uroutine.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 26]& & [C:\PROGRAM FILES\RISING\RAV\scansct.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 8]& & [C:\PROGRAM FILES\RISING\RAV\posttrt.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]& & [C:\PROGRAM FILES\RISING\RAV\ur001.dat]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3][PID: 3388 / SYSTEM][C:\PROGRAM FILES\RISING\RAV\RavStub.exe]& [Beijing Rising Technology Co., Ltd., 20.0.0.9]& & [C:\PROGRAM FILES\RISING\RAV\ProcCom.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\PROGRAM FILES\RISING\RAV\RsCommX2.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16][PID: 3440 / Administrator][C:\Program Files\Rising\Rav\RAVMON.EXE]& [Beijing Rising Technology Co., Ltd., 20.0.01.14]& & [C:\WINDOWS\system32\MFC71.DLL]& [Microsoft Corporation, 7.10.3077.0]& & [C:\WINDOWS\system32\MSVCR71.dll]& [Microsoft Corporation, 7.10.3052.4]& & [C:\WINDOWS\system32\MSVCP71.dll]& [Microsoft Corporation, 7.10.3077.0]& & [C:\Program Files\Rising\Rav\ProcCom.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\Program Files\Rising\Rav\RsCommX2.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\Program Files\Rising\Rav\RSCOMMON.DLL]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]& & [C:\Program Files\Rising\Rav\recomp.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 34]& & [C:\Program Files\Rising\Rav\refs.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 15]& & [C:\Program Files\Rising\Rav\viruslib.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 21]& & [C:\Program Files\Rising\Rav\relibldr.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 13]& & [C:\Program Files\Rising\Rav\RSAPPMGR.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.0]& & [C:\Program Files\Rising\Rav\CfgDll.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.16]& & [C:\Program Files\Rising\Rav\MonRule.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.29]& & [C:\Program Files\Rising\Rav\PngDll.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 4]& & [C:\Program Files\Rising\Rav\Rsguilib.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 88]& & [C:\Program Files\Rising\Rav\RsXML.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 0][PID: 3852 / Administrator][C:\Program Files\Rising\Rav\RsAgent.exe]& [Beijing Rising Technology Co., Ltd., 20.0.0.7]& & [C:\WINDOWS\system32\MFC71.DLL]& [Microsoft Corporation, 7.10.3077.0]& & [C:\WINDOWS\system32\MSVCR71.dll]& [Microsoft Corporation, 7.10.3052.4]& & [C:\WINDOWS\system32\MSVCP71.dll]& [Microsoft Corporation, 7.10.3077.0]& & [C:\Program Files\Rising\Rav\ProcCom.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19]& & [C:\Program Files\Rising\Rav\RsCommX2.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 19][PID: 3876 / Administrator][C:\WINDOWS\msagent\AgentSvr.exe]& [Microsoft Corporation, 2.00.0.3424]& & [C:\WINDOWS\system32\msacm32.drv]& [Microsoft Corporation, 5.1.2600.0 (xpclient.8)][PID: 1372 / Administrator][C:\WINDOWS\explorer.exe]& [Microsoft Corporation, 6.00. (xpsp_sp2_rtm.8)]& & [C:\WINDOWS\system32\msacm32.drv]& [Microsoft Corporation, 5.1.2600.0 (xpclient.8)]& & [C:\WINDOWS\system32\RavExt.dll]& [Beijing Rising Technology Co., Ltd., 20.0.0.17]& & [C:\Program Files\Rising\Rav\RSCOMMON.DLL]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 16]& & [C:\WINDOWS\system32\nvcpl.dll]& [NVIDIA Corporation, 6.14.10.8415]& & [C:\WINDOWS\system32\NVRSZHC.DLL]& [NVIDIA Corporation, 6.14.10.8415]& & [C:\WINDOWS\system32\nvshell.dll]& [, ]& & [C:\WINDOWS\system32\msdmo.dll]& [, ]& & [C:\Program Files\WinRAR\rarext.dll]& [N/A, ]& & [C:\WINDOWS\system32\l3codeca.acm]& [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]& & [d:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll]& [Thunder Networking Technologies,LTD, 5, 0, 8, 62]& & [D:\Program Files\OFFICE11\msohev.dll]& [Microsoft Corporation, 11.0.5510]& & [d:\PROGRA~1\Wopti\WOPTIE~1.DLL]& [共软网络, 1.0.8.103]& & [C:\Program Files\Rising\Rav\RavScrCh.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]& & [C:\WINDOWS\system32\msadp32.acm]& [Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)][PID: 216 / Administrator][D:\Program Files\Tencent\TT\TTraveler.exe]& [腾讯公司, 3, 3, 200, 290]& & [D:\Program Files\Tencent\TT\Plugins\QQFloatBar\QQFloatBar4TT2.dll]& [腾讯公司, 1, 1, 0, 5]& & [D:\Program Files\Tencent\TT\Plugins\TWeather\TWeather.dll]& [, 1, 0, 0, 3]& & [D:\Program Files\Tencent\TT\TTNetFavor.dll]& [N/A, ]
快乐黄口狮
[C:\Program Files\Rising\Rav\RavScrCh.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]& & [C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx]& [Adobe Systems, Inc., 9,0,115,0]& & [C:\WINDOWS\system32\msacm32.drv]& [Microsoft Corporation, 5.1.2600.0 (xpclient.8)]& & [C:\WINDOWS\system32\JPWB.IME]& [常诚研制, 4.00.950][PID: 1720 / Administrator][C:\Program Files\Internet Explorer\iexplore.exe]& [Microsoft Corporation, 6.00. (xpsp_sp2_rtm.8)]& & [d:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll]& [Thunder Networking Technologies,LTD, 5, 0, 8, 62]& & [D:\Program Files\BitComet\tools\BitCometBHO_1.2.1.2.dll]& [BitComet, ]& & [C:\WINDOWS\ThunderHelper.dll]& [Thunder Networking Technologies,LTD, 1.1.5.0]& & [D:\Program Files\OFFICE11\msohev.dll]& [Microsoft Corporation, 11.0.5510]& & [C:\Program Files\Rising\Rav\RavScrCh.dll]& [Beijing Rising Technology Co., Ltd., 20, 0, 0, 3]& & [C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx]& [Adobe Systems, Inc., 9,0,115,0]& & [C:\WINDOWS\system32\msacm32.drv]& [Microsoft Corporation, 5.1.2600.0 (xpclient.8)]& & [C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL]& [Microsoft Corporation, 11.0.5510]& & [C:\WINDOWS\system32\JPWB.IME]& [常诚研制, 4.00.950]& & [C:\WINDOWS\system32\Audiodev.dll]& [Microsoft Corporation, 5.2. built by: dnsrv(bld4act)][PID: 2492 / Administrator][E:\sreng928\SREngPTS.EXE]& [Smallfrogs Studio, 2.6.2.928]==================================文件关联.TXT& Error. [C:\WINDOWS\notepad.exe %1].EXE& OK. ["%1" %*].COM& OK. ["%1" %*].PIF& OK. ["%1" %*].REG& OK. [regedit.exe "%1"].BAT& OK. ["%1" %*].SCR& OK. ["%1" /S].CHM& Error. ["hh.exe" %1].HLP& OK. [%SystemRoot%\System32\winhlp32.exe %1].INI& Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1].INF& OK. [%SystemRoot%\System32\NOTEPAD.EXE %1].VBS& OK. [%SystemRoot%\System32\WScript.exe "%1" %*].JS&
OK. [%SystemRoot%\System32\WScript.exe "%1" %*].LNK& OK. [{0-}]==================================Winsock 提供者N/A==================================Autorun.infN/A==================================HOSTS 文件127.0.0.1& & &
localhost127.0.0.1& yu.8s7.net127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& xxx.m111.biz127.0.0.1& 127.0.0.1& 127.0.0.1& xxx.vh7.biz127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& xxx.mmma.biz127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& 127.0.0.1& down.18dd.net127.0.0.1& ==================================进程特权扫描特殊特权被允许: SeDebugPrivilege [PID = 216, D:\PROGRAM FILES\TENCENT\TT\TTRAVELER.EXE]特殊特权被允许: SeLoadDriverPrivilege [PID = 216, D:\PROGRAM FILES\TENCENT\TT\TTRAVELER.EXE]==================================API HOOKN/A==================================隐藏进程N/A
健康舞勺狮
关闭系统还原后杀毒 我的电脑--右键--属性--系统还原--在所有驱动器上关闭系统还原然后杀毒 然后下载WINDOWS清理助手 清理系统顺便问一下路过的高手 怎么会有俩这个服务[Human Interface Device Access / HidServ][Stopped/Disabled]&C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&[Human Interface Device Access / HidServ][Stopped/Disabled]&C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&今天不止一次看到了目前2.6版本的SRENG工具在服务上的扫描,就这样双显示。
卡卡技术团队
帖子:15158
[Human Interface Device Access / HidServ][Stopped/Disabled]&C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&[Human Interface Device Access / HidServ][Stopped/Disabled]&C:\WINDOWS\System32\svchost.exe -k netsvcs--&%SystemRoot%\System32\hidserv.dll&&N/A&不是病毒
威望:31228
初生襁褓狮
楼主关闭系统还原后再用杀软查杀一下!还有病毒的话请提供文件名和路径!
1&&/&&1&&页
跳转 0 ? parseInt(this.value) : 1) + '.aspx';}else{window.location='showtopic.aspx?topicid=8440554&page=' + (parseInt(this.value) > 0 ? parseInt(this.value) : 1) ;}}"" size="4" maxlength="9"
class="colorblue2"/>页
论坛跳转...
热点专题 &&瑞星杀毒软件V16+ && &&V16+新引擎测试专区 &&瑞星路由安全卫士 &&瑞星安全随身WiFi &&瑞星个人防火墙V16 && &&广告过滤 &&路由系统内核漏洞 &&瑞星5000万豪礼积分活动专区 && &&北方区 && &&华东区 && &&华南区 && &&木马入侵拦截有奖体验专区 && &&瑞星2009版查杀引擎测试 && &&瑞星2009测试版问题反馈 && && &&瑞星杀毒软件2009公测 && && &&瑞星个人防火墙2009公测 && && &&瑞星全功能安全软件2009公测瑞星产品求助区 &&瑞星手机安全助手 &&瑞星杀毒软件2011、瑞星全功能安全软件 && &&瑞星全功能安全软件 &&瑞星个人防火墙2011 &&企业级安全产品 && &&瑞星企业终端安全管理系统 &&卡卡上网安全助手 &&瑞星安全助手 &&瑞星安全浏览器 &&瑞星其他产品 && &&瑞星软件管家 && &&瑞星加密盘 && &&账号保险柜5.0 && &&瑞星专业数据恢复技术交流区 &&反病毒/反流氓软件论坛 && &&菜鸟学堂 && &&安全技术讨论 &&恶意网站交流 && &&每日网马播报 && &&瑞星云安全网站联盟专版 &&入侵防御(HIPS) &&可疑文件交流 &&系统软件 && &&防火墙自定义规则 &&硬件交流综合娱乐区 &&Rising茶馆 &&影音贴图 &&情感小屋 &&体坛风云 &&活动专区 && &&实习生专区 && && &&实习生交流区 && && && &&实习生签到区 && && &&实习生考核区 && &&“安全之狮”校园行活动专版 && &&历史活动 && && &&论坛9周年活动专区 && && &&关注灾情 同心抗灾 &&瑞星安全游戏 && &&战将风云 && &&飘渺西游 && &&傲视天地 && &&凡人修真 && &&华人德州扑克 && &&天地英雄 && &&一球成名 && &&星际世界 && &&武林英雄 && &&神仙道 && &&赢家竞技 && &&盛世三国 && &&龙将 && &&梦幻飞仙 && &&斗破苍穹 && &&热血海贼王 && &&三国演义 && &&开天辟地 && &&仙落凡尘 && &&秦美人 && &&大侠传 && &&烈火战神 && &&神将三国 && &&街机三国 && &&龙回三国 && &&武尊 && &&绝代双骄 && &&攻城掠地 && &&女神联盟 && &&最无极 && &&剑影 && &&仙侠道 && &&风云无双 && &&傲视九重天 && &&深渊 &&安全购物 && &&星迷论坛 && &&天天3·15本站站务区 &&站务 &&版主之家[限] && &&禁言禁访记录 &&待审核 &&瑞星客户俱乐部[限]}
我要回帖
更多关于 宏病毒查杀 的文章
更多推荐
- ·商家如何登录美团商家入驻后台?
- ·美团店如何登录美团商家入驻后台
- ·京东道路救援24小时免费免费吗?
- ·万能五笔输入法手机版下载怎样打句子?
- ·怎么生个想生儿子有什么好办法吗啊,大家可以推荐嘛?
- ·微信添加表情能连续添加多少个新朋友?
- ·华北煤炭医学院 翻译闫菊
- ·综合治理可以挖取国家资源综合利用认定取消吗
- ·smartdriver游戏117题
- ·在windows 记事本7中记事本是一种
- ·防水纳米量子镀膜机手机镀膜机是真的吗
- ·安卓平板刷win8可以从电脑上装应用程序吗?就像安卓手机那样.
- ·百度网盘搜索引擎照片可以排序吗?网页版,谢谢
- ·php5.6安装图解怎么连接mssql2000,不要照搬网上的网上的你们能找到的我大部分都看过了,没有关于5.6和2000的
- ·五马力和千瓦换算转化成千瓦是多少
- ·华硕p7h55 m4k 怎么开
- ·这是她的家庭照片英文同义句的同义句
- ·2015注册物业管理师教材考试教材下载网址?具体地址是什么?
- ·关注 苗木合作社简介 贴吧
- ·如何查杀压缩文件宏病毒查杀?
- ·多宝6平台登录地址址
- ·我的商户已通过审核 在百度地图怎么添加商户上不显示
- ·如何打开对方摄像头发起手机微信视频接听后屏幕上出现摄像头图标是怎么回事
- ·覃艳娟姣的名字含义?
- ·拉牡蛎拉官网的官网是什么?可以直接买吗?
- ·菩优商城官网场上的都是正品吗???C2
- ·今天我想把我洗鞋店洗一双鞋多少钱埋土里去,然后我把鞋装到了一个黑袋子里,随后我左手拿的袋子右手拿着铲子,路上碰见
- ·谁能给我讲讲打篮球全场的怎么打,怎么站位,我们的站法是两个后卫站海耶斯罚球集锦线两边,两个站底角三分线进来一
- ·有事没有?我去滑冰掉了一小块肉,用创可贴贴着,发现好不了,重生之干脆你死吧就不贴了,现在变成这样…可难看…有大
- ·若点A(a,0)'B(a,0)间的点到直线距离公式是五,a=多少
- ·鸡蛋撞地球不碎的方案怎样能不碎?(高度扔)(头脑奥林……)
- ·运动会稿子50字宣传稿50字需要10篇 要自己写的
- ·请问中国飞人小苍一年赚多少少钱?
- ·nba 2k14的2k14键盘操作如何设置,
- ·运动眼镜腿太紧怎么调带着有点紧换一副大5mm的会好点吗
