风云小站|Connecting Lives With Infinite New Discoveries » 求助专区 » 瑞星怎么杀不了这个毒呢

瑞星怎么杀不了这个毒呢

回复发帖
收藏上一主题下一主题
xiaoxiangmm 新手上路
楼主 2007-10-11 10:48
私信 引用 编辑

瑞星怎么杀不了这个毒呢


瑞星怎么杀不了这个毒呢,谁能告诉我怎样才能彻底杀毒呢?
怎样安全模式杀毒呀,我不会.
[ 此贴被xiaoxiangmm在2007-10-12 15:07重新编辑 ]
月老 荣誉会员
#1 2007-10-11 10:56
私信 引用 编辑

手动找到删除!!
虽然我已英年早肥,但我仍然很穷!!!黄鱼党|月老
欢迎大家光临我爱天使技术论坛!
magic1 F.Y.C成员
#4 2007-10-11 14:48
私信 引用 编辑

下载SREng  扫描一个log贴上来,,扫描时请尽量关闭其他手动打开的程序

解压sreng2.zip-->运行SREngPS.exe-->智能扫描-->勾选‘检查进程模块的数字签名’-->扫描-->保存报告

把报告(SREngLOG.log)完整贴上来  注意不要作任何改动!!      [全选(Ctrl+a)-->***(Ctrl+c)-->粘贴(Ctrl+v)]
WwW.XPi386.Com.CN
zxt_f 资深会员
#6 2007-10-11 15:24
私信 引用 编辑

还是卡巴管用!狠!连系统的都杀! 呵呵
最近评分记录:
  • 风云币:-3(水蜜桃) 请注意版规,求助区禁止 ..
    • 逆水行舟,不进则退!
    xiaoxiangmm 新手上路
    #7 2007-10-11 15:46
    私信 引用 编辑

    未知家族病毒分析
    扫描结果:
    无可疑文件


    系统活动进程
    C:\WINDOWS\SYSTEM32\SMSS.EXE
    C:\WINDOWS\SYSTEM32\CSRSS.EXE
    C:\WINDOWS\SYSTEM32\WINLOGON.EXE
    C:\WINDOWS\SYSTEM32\WGALOGON.DLL
    C:\WINDOWS\SYSTEM32\MSACM32.DRV

    C:\WINDOWS\SYSTEM32\SERVICES.EXE
    C:\WINDOWS\APPPATCH\ACADPROC.DLL

    C:\WINDOWS\SYSTEM32\LSASS.EXE
    C:\WINDOWS\SYSTEM32\SVCHOST.EXE
    C:\WINDOWS\SYSTEM32\SVCHOST.EXE
    C:\WINDOWS\SYSTEM32\SVCHOST.EXE
    C:\WINDOWS\SYSTEM32\WUPS2.DLL

    C:\WINDOWS\SYSTEM32\SVCHOST.EXE
    C:\WINDOWS\SYSTEM32\SVCHOST.EXE
    C:\WINDOWS\SYSTEM32\ALG.EXE
    C:\WINDOWS\EXPLORER.EXE
    C:\WINDOWS\SYSTEM32\RAVEXT.DLL
    C:\WINDOWS\SYSTEM32\SHLHOOK.DLL
    C:\PROGRAM FILES\RISING\ANTISPYWARE\IEPROT.DLL
    C:\WINDOWS\SYSTEM32\WPDSHSERVICEOBJ.DLL
    C:\WINDOWS\SYSTEM32\PORTABLEDEVICETYPES.DLL
    C:\WINDOWS\SYSTEM32\PORTABLEDEVICEAPI.DLL
    C:\WINDOWS\SYSTEM32\MSACM32.DRV
    C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL
    C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\COMDLLS\TDATONCE_NOW.DLL
    C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\COMDLLS\XUNLEIBHO_NOW.DLL
    C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\COMPONENTS\RESWORKER\DSBHO_01.DLL
    C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\COMPONENTS\RESWORKER\DATAPROCESSOR_01.DLL
    C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE11\MSOHEV.DLL

    C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
    C:\PROGRAM FILES\RISING\RFW\RFWMAIN.EXE
    C:\PROGRAM FILES\RISING\RFW\RSGUILIB.DLL
    C:\PROGRAM FILES\RISING\RFW\RSCOMMON.DLL
    C:\PROGRAM FILES\RISING\RFW\RFWCTRL.DLL
    C:\PROGRAM FILES\RISING\RFW\RSXML.DLL
    C:\PROGRAM FILES\RISING\RFW\PNGDLL.DLL
    C:\PROGRAM FILES\RISING\ANTISPYWARE\IEPROT.DLL
    C:\PROGRAM FILES\RISING\RFW\PSAPI.DLL

    C:\RUIER\WIN32\PPHIDPAD.EXE
    C:\PROGRAM FILES\RISING\ANTISPYWARE\IEPROT.DLL

    C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE
    C:\PROGRAM FILES\RISING\ANTISPYWARE\IEPROT.DLL

    C:\WINDOWS\SYSTEM32\CTFMON.EXE
    C:\PROGRAM FILES\RISING\ANTISPYWARE\IEPROT.DLL

    C:\WINDOWS\MSAGENT\AGENTSVR.EXE
    C:\PROGRAM FILES\RISING\ANTISPYWARE\IEPROT.DLL
    C:\WINDOWS\SYSTEM32\MSACM32.DRV

    E:\软件\TT\TTRAVELER.EXE
    E:\软件\TT\PLUGINS\QQFLOATBAR\QQFLOATBAR4TT2.DLL
    E:\软件\TT\PLUGINS\TWEATHER\TWEATHER.DLL
    C:\PROGRAM FILES\RISING\ANTISPYWARE\IEPROT.DLL
    C:\PROGRAM FILES\RISING\RAV\RAVSCRCH.DLL
    E:\软件\TT\TTNETFAVOR.DLL
    C:\WINDOWS\SYSTEM32\MSACM32.DRV

    E:\瑞星\RSDETECT.EXE
    C:\PROGRAM FILES\RISING\ANTISPYWARE\IEPROT.DLL


    普通自启动项
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    RavTask = "C:\PROGRAM FILES\RISING\RAV\RAVTASK.EXE" -SYSTEM
    RfwMain = "C:\PROGRAM FILES\RISING\RFW\RFWMAIN.EXE" -STARTUP
    Pphidpad = C:\RUIER\WIN32\PPHIDPAD.EXE
    ExFilter = RUNDLL32.EXE "C:\PROGRA~1\CNNIC\CDN\CDNSPIE.DLL,EXECFILTER SOLO"
    runeip = "C:\PROGRAM FILES\RISING\ANTISPYWARE\RUNIEP.EXE" /STARTUP

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
    RavStub = "C:\PROGRAM FILES\RISING\RAV\RAVSTUB.EXE" /RUNONCE

    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    ctfmon.exe = C:\WINDOWS\SYSTEM32\CTFMON.EXE


    AppInit_DLLs
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
    AppInit_DLLs =


    系统文件关联
    .exe ==> exefile = "%1" %*
    .com ==> comfile = "%1" %*
    .cmd ==> cmdfile = "%1" %*
    .bat ==> batfile = "%1" %*
    .txt ==> txtfile = C:\WINDOWS\notepad.exe %1
    .scr ==> scrfile = "%1" /S
    .reg ==> regfile = regedit.exe "%1"
    .doc ==> Word.Document.8 = "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE" /n /dde

    其它启动项
    WIN.INI
    无信息

    SYSTEM.INI
    SHELL = Explorer.exe


    Winlogon 启动项
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
    crypt32chain = CRYPT32.DLL
    cryptnet = CRYPTNET.DLL
    cscdll = CSCDLL.DLL
    ScCertProp = WLNOTIFY.DLL
    Schedule = WLNOTIFY.DLL
    sclgntfy = SCLGNTFY.DLL
    SensLogn = WLNOTIFY.DLL
    termsrv = WLNOTIFY.DLL
    WgaLogon = WGALOGON.DLL
    wlballoon = WLNOTIFY.DLL

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
    Userinit = USERINIT.EXE,
    shell = EXPLORER.EXE


    IE - BHO
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
    {01443AEC-0FD1-40fd-9C87-E93D1494C233} = C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll
    {2F364305-AA45-47B5-9F9D-39A8B94E7EF7} = C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll
    {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} = NULL
    {F156768E-81EF-470C-9057-481BA8380DBA} = NULL


    Winsock SPI
    MSAFD Tcpip [TCP/IP] = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD Tcpip [UDP/IP] = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD Tcpip [RAW/IP] = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    RSVP UDP Service Provider = C:\WINDOWS\SYSTEM32\RSVPSP.DLL
    RSVP TCP Service Provider = C:\WINDOWS\SYSTEM32\RSVPSP.DLL
    MSAFD NetBIOS [\Device\NetBT_Tcpip_{7C1235A1-DD39-48EE-8D53-C97B890D012F}] SEQPACKET 0 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD NetBIOS [\Device\NetBT_Tcpip_{7C1235A1-DD39-48EE-8D53-C97B890D012F}] DATAGRAM 0 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD NetBIOS [\Device\NetBT_Tcpip_{FCD4B0C8-53FA-44D6-A408-6C7060274ED9}] SEQPACKET 1 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD NetBIOS [\Device\NetBT_Tcpip_{FCD4B0C8-53FA-44D6-A408-6C7060274ED9}] DATAGRAM 1 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD NetBIOS [\Device\NetBT_Tcpip_{980B5A24-5754-498C-AE73-EBFAA6E25AE8}] SEQPACKET 2 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD NetBIOS [\Device\NetBT_Tcpip_{980B5A24-5754-498C-AE73-EBFAA6E25AE8}] DATAGRAM 2 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD NetBIOS [\Device\NetBT_Tcpip_{E83949DC-95F3-40DD-8D19-A582B7C04E76}] SEQPACKET 3 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD NetBIOS [\Device\NetBT_Tcpip_{E83949DC-95F3-40DD-8D19-A582B7C04E76}] DATAGRAM 3 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD NetBIOS [\Device\NetBT_Tcpip_{535B9E7D-6160-4FDD-879C-09BEBE079432}] SEQPACKET 4 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL
    MSAFD NetBIOS [\Device\NetBT_Tcpip_{535B9E7D-6160-4FDD-879C-09BEBE079432}] DATAGRAM 4 = C:\WINDOWS\SYSTEM32\MSWSOCK.DLL

    系统服务项
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
    Adobe LM Service = "C:\PROGRAM FILES\COMMON FILES\ADOBE SYSTEMS SHARED\SERVICE\ADOBELMSVC.EXE"
    Alerter = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
    ALG = C:\WINDOWS\SYSTEM32\ALG.EXE
    AppMgmt = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    AudioSrv = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    BITS = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    Browser = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    BUZOR = C:\WINDOWS\SYSTEM32\RUNDLLFOROUR.EXE C:\WINDOWS\SYSTEM32\WBEM\PLOYF.DLL,EXPORT 1087
    CiSvc = C:\WINDOWS\SYSTEM32\CISVC.EXE
    ClipSrv = C:\WINDOWS\SYSTEM32\CLIPSRV.EXE
    COMSysApp = C:\WINDOWS\SYSTEM32\DLLHOST.EXE /PROCESSID:{02D4B3F1-FD88-11D1-960D-00805FC79235}
    CryptSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    DcomLaunch = C:\WINDOWS\SYSTEM32\SVCHOST -K DCOMLAUNCH
    Dhcp = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    dmadmin = C:\WINDOWS\SYSTEM32\DMADMIN.EXE /COM
    dmserver = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    Dnscache = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETWORKSERVICE
    ERSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    Eventlog = C:\WINDOWS\SYSTEM32\SERVICES.EXE
    EventSystem = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    FastUserSwitchingCompatibility = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    helpsvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    HidServ = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    HTTPFilter = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K HTTPFILTER
    ImapiService = C:\WINDOWS\SYSTEM32\IMAPI.EXE
    Indtry = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    lanmanserver = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    lanmanworkstation = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    LmHosts = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
    Messenger = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    mnmsrvc = C:\WINDOWS\SYSTEM32\MNMSRVC.EXE
    MSDTC = C:\WINDOWS\SYSTEM32\MSDTC.EXE
    MSIServer = C:\WINDOWS\SYSTEM32\MSIEXEC.EXE /V
    NetDDE = C:\WINDOWS\SYSTEM32\NETDDE.EXE
    NetDDEdsdm = C:\WINDOWS\SYSTEM32\NETDDE.EXE
    Netlogon = C:\WINDOWS\SYSTEM32\LSASS.EXE
    Netman = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    Nla = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    NtLmSsp = C:\WINDOWS\SYSTEM32\LSASS.EXE
    NtmsSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    ose = "C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\SOURCE ENGINE\OSE.EXE"
    PlugPlay = C:\WINDOWS\SYSTEM32\SERVICES.EXE
    PolicyAgent = C:\WINDOWS\SYSTEM32\LSASS.EXE
    ProtectedStorage = C:\WINDOWS\SYSTEM32\LSASS.EXE
    RasAuto = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    RasMan = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    RDSessMgr = C:\WINDOWS\SYSTEM32\SESSMGR.EXE
    RemoteAccess = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    RemoteRegistry = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
    RfwProxySrv = C:\PROGRAM FILES\RISING\RFW\RFWPROXY.EXE
    RfwService = C:\PROGRAM FILES\RISING\RFW\RFWSRV.EXE
    RpcLocator = C:\WINDOWS\SYSTEM32\LOCATOR.EXE
    RpcSs = C:\WINDOWS\SYSTEM32\SVCHOST -K RPCSS
    RsCCenter = "C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE"
    RsRavMon = "C:\PROGRAM FILES\RISING\RAV\RAVMOND.EXE"
    RSVP = C:\WINDOWS\SYSTEM32\RSVP.EXE
    SamSs = C:\WINDOWS\SYSTEM32\LSASS.EXE
    SCardSvr = C:\WINDOWS\SYSTEM32\SCARDSVR.EXE
    Schedule = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    seclogon = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    SENS = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    SharedAccess = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    ShellHWDetection = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    Spooler = C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
    srservice = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    SSDPSRV = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
    stisvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K IMGSVC
    SwPrv = C:\WINDOWS\SYSTEM32\DLLHOST.EXE /PROCESSID:{736153B1-B3B4-4FAF-B875-C5AA11CCFBF6}
    SysmonLog = C:\WINDOWS\SYSTEM32\SMLOGSVC.EXE
    TapiSrv = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    TermService = C:\WINDOWS\SYSTEM32\SVCHOST -K DCOMLAUNCH
    Themes = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    TlntSvr = C:\WINDOWS\SYSTEM32\TLNTSVR.EXE
    TrkWks = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    upnphost = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
    UPS = C:\WINDOWS\SYSTEM32\UPS.EXE
    usprserv = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    VSS = C:\WINDOWS\SYSTEM32\VSSVC.EXE
    W32Time = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    WebClient = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K LOCALSERVICE
    winmgmt = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    WmdmPmSN = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    Wmi = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    WmiApSrv = C:\WINDOWS\SYSTEM32\WBEM\WMIAPSRV.EXE
    WMPNetworkSvc = "C:\PROGRAM FILES\WINDOWS MEDIA PLAYER\WMPNETWK.EXE"
    wscsvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    wuauserv = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    WudfSvc = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K WUDFSERVICEGROUP
    WZCSVC = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS
    xmlprov = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS


    文件驱动
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
    FltMgr = C:\WINDOWS\SYSTEM32\DRIVERS\FLTMGR.SYS
    MRxDAV = C:\WINDOWS\SYSTEM32\DRIVERS\MRXDAV.SYS
    MRxSmb = C:\WINDOWS\SYSTEM32\DRIVERS\MRXSMB.SYS
    NetBIOS = C:\WINDOWS\SYSTEM32\DRIVERS\NETBIOS.SYS
    Rdbss = C:\WINDOWS\SYSTEM32\DRIVERS\RDBSS.SYS
    sr = C:\WINDOWS\SYSTEM32\DRIVERS\SR.SYS
    Srv = C:\WINDOWS\SYSTEM32\DRIVERS\SRV.SYS


    系统驱动项
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
    ac97intc = C:\WINDOWS\SYSTEM32\DRIVERS\AC97INTC.SYS
    ACPI = C:\WINDOWS\SYSTEM32\DRIVERS\ACPI.SYS
    aec = C:\WINDOWS\SYSTEM32\DRIVERS\AEC.SYS
    AFD = C:\WINDOWS\SYSTEM32\DRIVERS\AFD.SYS
    agp440 = C:\WINDOWS\SYSTEM32\DRIVERS\AGP440.SYS
    ALCXWDM = C:\WINDOWS\SYSTEM32\DRIVERS\ALCXWDM.SYS
    AliIde = C:\WINDOWS\SYSTEM32\DRIVERS\ALIIDE.SYS
    AmdK8 = C:\WINDOWS\SYSTEM32\DRIVERS\AMDK8.SYS
    AsyncMac = C:\WINDOWS\SYSTEM32\DRIVERS\ASYNCMAC.SYS
    atapi = C:\WINDOWS\SYSTEM32\DRIVERS\ATAPI.SYS
    ati2mtag = C:\WINDOWS\SYSTEM32\DRIVERS\ATI2MTAG.SYS
    Atmarpc = C:\WINDOWS\SYSTEM32\DRIVERS\ATMARPC.SYS
    audstub = C:\WINDOWS\SYSTEM32\DRIVERS\AUDSTUB.SYS
    BaseTDI = C:\WINDOWS\SYSTEM32\DRIVERS\BASETDI.SYS
    Cdrom = C:\WINDOWS\SYSTEM32\DRIVERS\CDROM.SYS
    CmdIde = C:\WINDOWS\SYSTEM32\DRIVERS\CMDIDE.SYS
    cmuda = C:\WINDOWS\SYSTEM32\DRIVERS\CMUDA.SYS
    Disk = C:\WINDOWS\SYSTEM32\DRIVERS\DISK.SYS
    dmboot = C:\WINDOWS\SYSTEM32\DRIVERS\DMBOOT.SYS
    dmio = C:\WINDOWS\SYSTEM32\DRIVERS\DMIO.SYS
    dmload = C:\WINDOWS\SYSTEM32\DRIVERS\DMLOAD.SYS
    DMusic = C:\WINDOWS\SYSTEM32\DRIVERS\DMUSIC.SYS
    drmkaud = C:\WINDOWS\SYSTEM32\DRIVERS\DRMKAUD.SYS
    ExpScaner = C:\PROGRAM FILES\RISING\RAV\EXPSCAN.SYS
    Fdc = C:\WINDOWS\SYSTEM32\DRIVERS\FDC.SYS
    FETNDIS = C:\WINDOWS\SYSTEM32\DRIVERS\FETND5.SYS
    Flpydisk = C:\WINDOWS\SYSTEM32\DRIVERS\FLPYDISK.SYS
    FsVga = C:\WINDOWS\SYSTEM32\DRIVERS\FSVGA.SYS
    Ftdisk = C:\WINDOWS\SYSTEM32\DRIVERS\FTDISK.SYS
    gameenum = C:\WINDOWS\SYSTEM32\DRIVERS\GAMEENUM.SYS
    Gpc = C:\WINDOWS\SYSTEM32\DRIVERS\MSGPC.SYS
    HidUsb = C:\WINDOWS\SYSTEM32\DRIVERS\HIDUSB.SYS
    HOOKAPI = C:\PROGRAM FILES\RISING\RAV\HOOKAPI.SYS
    HookCont = C:\PROGRAM FILES\RISING\RAV\HOOKCONT.SYS
    HookReg = C:\PROGRAM FILES\RISING\RAV\HOOKREG.SYS
    HookSys = C:\PROGRAM FILES\RISING\RAV\HOOKSYS.SYS
    HookUrl = C:\PROGRAM FILES\RISING\RFW\HOOKURL.SYS
    HSFHWBS2 = C:\WINDOWS\SYSTEM32\DRIVERS\HSFBS2S2.SYS
    HSF_DP = C:\WINDOWS\SYSTEM32\DRIVERS\HSFDPSP2.SYS
    HTTP = C:\WINDOWS\SYSTEM32\DRIVERS\HTTP.SYS
    i8042prt = C:\WINDOWS\SYSTEM32\DRIVERS\I8042PRT.SYS
    Imapi = C:\WINDOWS\SYSTEM32\DRIVERS\IMAPI.SYS
    IntelIde = C:\WINDOWS\SYSTEM32\DRIVERS\INTELIDE.SYS
    intelppm = C:\WINDOWS\SYSTEM32\DRIVERS\INTELPPM.SYS
    Ip6Fw = C:\WINDOWS\SYSTEM32\DRIVERS\IP6FW.SYS
    IpFilterDriver = C:\WINDOWS\SYSTEM32\DRIVERS\IPFLTDRV.SYS
    IpInIp = C:\WINDOWS\SYSTEM32\DRIVERS\IPINIP.SYS
    IpNat = C:\WINDOWS\SYSTEM32\DRIVERS\IPNAT.SYS
    IPSec = C:\WINDOWS\SYSTEM32\DRIVERS\IPSEC.SYS
    IRENUM = C:\WINDOWS\SYSTEM32\DRIVERS\IRENUM.SYS
    isapnp = C:\WINDOWS\SYSTEM32\DRIVERS\ISAPNP.SYS
    Kbdclass = C:\WINDOWS\SYSTEM32\DRIVERS\KBDCLASS.SYS
    kbdhid = C:\WINDOWS\SYSTEM32\DRIVERS\KBDHID.SYS
    kmixer = C:\WINDOWS\SYSTEM32\DRIVERS\KMIXER.SYS
    mdmxsdk = C:\WINDOWS\SYSTEM32\DRIVERS\MDMXSDK.SYS
    MEMSCAN = C:\PROGRAM FILES\RISING\RAV\MEMSCAN.SYS
    Mouclass = C:\WINDOWS\SYSTEM32\DRIVERS\MOUCLASS.SYS
    mouhid = C:\WINDOWS\SYSTEM32\DRIVERS\MOUHID.SYS
    mProcRs = C:\PROGRAM FILES\RISING\RFW\MPROCRS.SYS
    MSKSSRV = C:\WINDOWS\SYSTEM32\DRIVERS\MSKSSRV.SYS
    MSPCLOCK = C:\WINDOWS\SYSTEM32\DRIVERS\MSPCLOCK.SYS
    MSPQM = C:\WINDOWS\SYSTEM32\DRIVERS\MSPQM.SYS
    mssmbios = C:\WINDOWS\SYSTEM32\DRIVERS\MSSMBIOS.SYS
    ms_mpu401 = C:\WINDOWS\SYSTEM32\DRIVERS\MSMPU401.SYS
    NdisTapi = C:\WINDOWS\SYSTEM32\DRIVERS\NDISTAPI.SYS
    Ndisuio = C:\WINDOWS\SYSTEM32\DRIVERS\NDISUIO.SYS
    NdisWan = C:\WINDOWS\SYSTEM32\DRIVERS\NDISWAN.SYS
    NetBT = C:\WINDOWS\SYSTEM32\DRIVERS\NETBT.SYS
    npkcrypt = D:\QQ2007\NPKCRYPT.SYS
    NPPTNT2 = C:\WINDOWS\SYSTEM32\NPPTNT2.SYS
    nv = C:\WINDOWS\SYSTEM32\DRIVERS\NV4_MINI.SYS
    NwlnkFlt = C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKFLT.SYS
    NwlnkFwd = C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKFWD.SYS
    P3 = C:\WINDOWS\SYSTEM32\DRIVERS\P3.SYS
    Parport = C:\WINDOWS\SYSTEM32\DRIVERS\PARPORT.SYS
    PCI = C:\WINDOWS\SYSTEM32\DRIVERS\PCI.SYS
    PCIIde = C:\WINDOWS\SYSTEM32\DRIVERS\PCIIDE.SYS
    PptpMiniport = C:\WINDOWS\SYSTEM32\DRIVERS\RASPPTP.SYS
    prodrv06 = C:\WINDOWS\SYSTEM32\DRIVERS\PRODRV06.SYS
    prohlp02 = C:\WINDOWS\SYSTEM32\DRIVERS\PROHLP02.SYS
    prosync1 = C:\WINDOWS\SYSTEM32\DRIVERS\PROSYNC1.SYS
    PSched = C:\WINDOWS\SYSTEM32\DRIVERS\PSCHED.SYS
    Ptilink = C:\WINDOWS\SYSTEM32\DRIVERS\PTILINK.SYS
    RasAcd = C:\WINDOWS\SYSTEM32\DRIVERS\RASACD.SYS
    Rasl2tp = C:\WINDOWS\SYSTEM32\DRIVERS\RASL2TP.SYS
    RasPppoe = C:\WINDOWS\SYSTEM32\DRIVERS\RASPPPOE.SYS
    Raspti = C:\WINDOWS\SYSTEM32\DRIVERS\RASPTI.SYS
    RDPCDD = C:\WINDOWS\SYSTEM32\DRIVERS\RDPCDD.SYS
    rdpdr = C:\WINDOWS\SYSTEM32\DRIVERS\RDPDR.SYS
    redbook = C:\WINDOWS\SYSTEM32\DRIVERS\REDBOOK.SYS
    RsAntiSpyware = C:\WINDOWS\SYSTEM32\DRIVERS\RSBOOT.SYS
    RsFwDrv = C:\PROGRAM FILES\RISING\RFW\RSFWDRV.SYS
    RsNTGDI = C:\WINDOWS\SYSTEM32\DRIVERS\RSNTGDI.SYS
    RSPPSYS = C:\PROGRAM FILES\RISING\RAV\RSPPSYS.SYS
    RTL8023xp = C:\WINDOWS\SYSTEM32\DRIVERS\RTNICXP.SYS
    Secdrv = C:\WINDOWS\SYSTEM32\DRIVERS\SECDRV.SYS
    serenum = C:\WINDOWS\SYSTEM32\DRIVERS\SERENUM.SYS
    Serial = C:\WINDOWS\SYSTEM32\DRIVERS\SERIAL.SYS
    sermouse = C:\WINDOWS\SYSTEM32\DRIVERS\SERMOUSE.SYS
    sfhlp01 = C:\WINDOWS\SYSTEM32\DRIVERS\SFHLP01.SYS
    sisagp = C:\WINDOWS\SYSTEM32\DRIVERS\SISAGP.SYS
    splitter = C:\WINDOWS\SYSTEM32\DRIVERS\SPLITTER.SYS
    sptd = C:\WINDOWS\SYSTEM32\DRIVERS\SPTD.SYS
    swenum = C:\WINDOWS\SYSTEM32\DRIVERS\SWENUM.SYS
    swmidi = C:\WINDOWS\SYSTEM32\DRIVERS\SWMIDI.SYS
    sysaudio = C:\WINDOWS\SYSTEM32\DRIVERS\SYSAUDIO.SYS
    Tcpip = C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS
    TermDD = C:\WINDOWS\SYSTEM32\DRIVERS\TERMDD.SYS
    TesSafe = C:\WINDOWS\SYSTEM32\TESSAFE.SYS
    Update = C:\WINDOWS\SYSTEM32\DRIVERS\UPDATE.SYS
    usbccgp = C:\WINDOWS\SYSTEM32\DRIVERS\USBCCGP.SYS
    usbehci = C:\WINDOWS\SYSTEM32\DRIVERS\USBEHCI.SYS
    usbhub = C:\WINDOWS\SYSTEM32\DRIVERS\USBHUB.SYS
    USBOHCI = C:\WINDOWS\SYSTEM32\DRIVERS\USBOHCI.SYS
    USBSTOR = C:\WINDOWS\SYSTEM32\DRIVERS\USBSTOR.SYS
    usbuhci = C:\WINDOWS\SYSTEM32\DRIVERS\USBUHCI.SYS
    vdymo = C:\WINDOWS\SYSTEM32\DRIVERS\VDYMO.SYS
    VgaSave = C:\WINDOWS\SYSTEM32\DRIVERS\VGA.SYS
    Wanarp = C:\WINDOWS\SYSTEM32\DRIVERS\WANARP.SYS
    wdmaud = C:\WINDOWS\SYSTEM32\DRIVERS\WDMAUD.SYS
    winachsf = C:\WINDOWS\SYSTEM32\DRIVERS\HSFCXTS2.SYS
    WudfPf = C:\WINDOWS\SYSTEM32\DRIVERS\WUDFPF.SYS
    WudfRd = C:\WINDOWS\SYSTEM32\DRIVERS\WUDFRD.SYS
    afeidiguo 资深会员
    #12 2007-10-14 14:50
    私信 引用 编辑

    手动杀吧,找到它的路径,实在不行,就换杀毒软件吧
    我的左手是往事,右手是时间。我的右手握住左手时是记忆,我的左手挣开右手时是忘却
    回复发帖