www.dngz.net
[Office_Anywhere / Office_Anywhere] <"d:\MYOA\bin\apache.exe" -k runservice><Apache Software Foundation> [SQLSERVERAGENT / SQLSERVERAGENT] <C:\PROGRA~1\MICROS~1\MSSQL\binn\sqlagent.exe><Microsoft Corporation> ================================== 驱动程序 [AMON / AMON] <\?\C:\WINDOWS\system32\drivers\amon.sys><Eset> [ADMtek AN983/AN985/ADM951X 10/100Mbps Fast Ethernet Adapter / AN983] <system32\DRIVERS\AN983.sys><ADMtek Incorporated.> [Microsoft 用于 High Definition Audio 服务的 UAA 功能驱动程序 / HdAudAddService] <system32\drivers\HdAudio.sys><Windows (R) Server 2003 DDK provider> [Microsoft UAA Bus Driver for High Definition Audio / HDAudBus] <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider> [IP in IP Tunnel Driver / IpInIp] <system32\DRIVERS\ipinip.sys><N/A> [NTSIM / NTSIM] <\?\C:\WINDOWS\system32\ntsim.sys><VIA Networking Technologies, Inc.> [Direct Parallel Link Driver / Ptilink] <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.> [Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp] <system32\DRIVERS\Rtenicxp.sys><Realtek Semiconductor Corporation> [Secdrv / Secdrv] <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.> [VIA USB Host Controller Lower Filter / vulfnths] <\SystemRoot\System32\Drivers\vulfnth.sys><VIA Technologies, Inc.> [VIA USB Roothub Lower Filter / vulfntrs] <\SystemRoot\System32\Drivers\vulfntr.sys><VIA Technologies, Inc.> ================================== 浏览器加载项 [SSVHelper Class] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.> (www.dngz.net)为您排除一切电脑故障 [Java Plug-in] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.> [WUWebControl Class] {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation> [MUWebControl Class] {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, Microsoft Corporation> [Java Plug-in] {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.> [Java Plug-in] {CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.> [Java Plug-in] {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.> [Java Plug-in 1.5.0_06] {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll, Sun Microsystems, Inc.> [Rising Web Scan Object] {E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <C:\WINDOWS\DOWNLO~1\OL2005.dll, Beijing Rising Technology Co., Ltd.> [XML DOM Document] {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, N/A> [WUWebControl Class] {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation> [MUWebControl Class] {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, Microsoft Corporation> [SSVHelper Class] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.> [Rising Web Scan Object] {E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <C:\WINDOWS\DOWNLO~1\OL2005.dll, Beijing Rising Technology Co., Ltd.> [XML HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\system32\msxml3.dll, N/A> ================================== ~ 正在运行的进程 [PID: 388][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [PID: 436][\?\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)] [PID: 460][\?\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [PID: 504][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [PID: 516][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 680][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [PID: 760][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 920][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 932][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 1056][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 1080][C:\WINDOWS\system32\msdtc.exe] [Microsoft Corporation, 2001.12.4720.1830 (srv03_sp1_rtm.050324-1447)] [PID: 1308][C:\WINDOWS\system32\inetsrv\inetinfo.exe] [Microsoft Corporation, 6.0.3790.1830 (srv03_sp1_rtm.050324-1447)] www.dngz.net [PID: 1440][d:\MYOA\MeChat\MeChat.exe] [N/A, N/A] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 1612][D:\MYOA\mysql\bin\mysqld-nt.exe] [N/A, N/A] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 1624][C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe] [N/A, N/A] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 1648][C:\Program Files\Eset\nod32krn.exe] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\nod32krr.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\ps_amon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_amon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\ps_dmon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_dmon.dll] [N/A, N/A] [C:\Program Files\Eset\ps_emon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_emon.dll] [N/A, N/A] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [C:\Program Files\Eset\ps_mirr.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_mirr.dll] [N/A, N/A] [C:\Program Files\Eset\ps_nod32.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_nod32.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\ps_upd.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_upd.dll] [N/A, N/A] [PID: 1668][d:\MYOA\bin\apache.exe] [Apache Software Foundation, 2.0.54] [d:\MYOA\bin\libapr.dll] [Apache Software Foundation, 0.0.0.0] [d:\MYOA\bin\libaprutil.dll] [Apache Software Foundation, 0.0.0.0] [d:\MYOA\bin\libapriconv.dll] [Apache Software Foundation, 0.0.0.0] (www.dngz.net) [d:\MYOA\bin\libhttpd.dll] [Apache Software Foundation, 2.0.54] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [D:\MYOA\modules\mod_access.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_actions.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_alias.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_asis.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_auth.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_autoindex.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_dir.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_env.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_include.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_log_config.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_mime.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_negotiation.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_setenvif.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_cgi.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_isapi.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\bin\sapi\php4apache2.dll] [N/A, N/A] [d:\MYOA\bin\php4ts.dll] [The PHP Group, 4.3.10.10] [D:\MYOA\bin\sapi\mod_jk2.dll] [N/A, N/A] [D:\MYOA\bin\mmcache.dll] [N/A, N/A] [D:\MYOA\bin\ZendOptimizer.dll] [N/A, N/A] [d:\MYOA\bin\php_gd2.dll] [N/A, N/A] [PID: 1860][d:\MYOA\IMA\IMAServer.exe] [N/A, N/A] [d:\MYOA\IMA\crypt.dll] [N/A, N/A] [d:\MYOA\IMA\CC3260MT.DLL] [Borland Corporation, 0.0.0.0 (informal build)] 欢迎来到(www.dngz.net) [d:\MYOA\IMA\libmysql.dll] [N/A, N/A] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 196][C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe] [Microsoft Corporation, 9.107.5512.0] [PID: 332][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [PID: 280][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 1028][D:\MYOA\bin\apache.exe] [Apache Software Foundation, 2.0.54] [D:\MYOA\bin\libapr.dll] [Apache Software Foundation, 0.0.0.0] [D:\MYOA\bin\libaprutil.dll] [Apache Software Foundation, 0.0.0.0] [D:\MYOA\bin\libapriconv.dll] [Apache Software Foundation, 0.0.0.0] [D:\MYOA\bin\libhttpd.dll] [Apache Software Foundation, 2.0.54] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [D:\MYOA\modules\mod_access.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_actions.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_alias.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_asis.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_auth.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_autoindex.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_dir.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_env.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_include.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_log_config.so] [Apache Software Foundation, 2.0.54] , [D:\MYOA\modules\mod_mime.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_negotiation.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_setenvif.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_cgi.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\modules\mod_isapi.so] [Apache Software Foundation, 2.0.54] [D:\MYOA\bin\sapi\php4apache2.dll] [N/A, N/A] [D:\MYOA\bin\php4ts.dll] [The PHP Group, 4.3.10.10] [D:\MYOA\bin\sapi\mod_jk2.dll] [N/A, N/A] [D:\MYOA\bin\mmcache.dll] [N/A, N/A] [D:\MYOA\bin\ZendOptimizer.dll] [N/A, N/A] [D:\MYOA\bin\php_gd2.dll] [N/A, N/A] [PID: 2836][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [PID: 2960][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 3164][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.3790.1830 (srv03_sp1_rtm.050324-1447)] [C:\Program Files\WinRAR\rarext.dll] [N/A, N/A] [C:\Program Files\Eset\nodshex.dll] [N/A, N/A] [C:\Program Files\EditPlus 2\eppshell.dll] [N/A, N/A] [PID: 3276][C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe] [Sun Microsystems, Inc., 5.0.60.5] [PID: 3284][C:\Program Files\Eset\nod32kui.exe] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\nod32rui.dll] [N/A, N/A] [C:\Program Files\Eset\pu_amon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_amon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pu_dmon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_dmon.dll] [N/A, N/A] [C:\Program Files\Eset\pu_emon.dll] [Eset , 2, 51, 22 ] . [C:\Program Files\Eset\pr_emon.dll] [N/A, N/A] [C:\Program Files\Eset\pu_imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [C:\Program Files\Eset\pu_mirr.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_mirr.dll] [N/A, N/A] [C:\Program Files\Eset\pu_nod32.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_nod32.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pu_upd.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_upd.dll] [N/A, N/A] [PID: 3296][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [PID: 3304][C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe] [Microsoft Corporation, 2000.080.0194.00] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] [PID: 3312][D:\MYOA\bin\monitor.exe] [Software Foundation, 2.0.45] [PID: 3376][C:\WINDOWS\system32\conime.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [PID: 3460][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [PID: 4008][C:\WINDOWS\system32\wbem\wmiprvse.exe] [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)] [PID: 3928][C:\Documents and Settings\Administrator\桌面\LeeTools\SREng\SREng.exe] [Smallfrogs Studio, 2.2.6.605] [C:\WINDOWS\system32\imon.dll] [Eset , 2, 51, 22 ] [C:\Program Files\Eset\pr_imon.dll] [N/A, N/A] ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1](www.dngz.net)
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 NOD32 protected [MSAFD Tcpip [TCP/IP]] C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support) NOD32 protected [MSAFD Tcpip [UDP/IP]] C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support) NOD32 protected [MSAFD Tcpip [RAW/IP]] C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support) NOD32 protected [RSVP UDP Service Provider] C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support) NOD32 protected [RSVP TCP Service Provider] C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support) NOD32 C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support) ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ==================================日志也没什么特别的; 关于nod32,个人感觉比较一般,所以还是用你的卡巴得了(没见着啊)
版主都记得我乐感动ing 那个服务器没显示器!所以就是咔吧杀出毒没人知道,所以就用那个乐 不知道还有没有更好用的 最好时能全自动的
保存病毒文件:没试过,应该在杀毒里可以设置一下,发现病毒后隔离,然后在到隔离区中找; 全自动的?这应该是杀软的一个基本条件吧;家里用的mcafee10.0,前几天刚给人家装个8.0i,感觉8.0i的设置项目要比10.0的详细些,而且不用邮箱注册就能升级:lol 其实卡巴6还是很不错滴,前些日子单位卡巴不能用后就改装个F-secure,不过是英文的,感觉还可以,就是进程多些
哈哈 我也太粗心了!没有仔细看卡巴的设置选项,,,失误失误啊:$ 欢迎来到(www.dngz.net) 不过还是要谢谢可爱的猫咪:P
呵呵 我是新手 我知道了
呵呵 我是新手 我知道了