请教各位前辈

这是我的诊断报告，请帮忙分析一下 各位高手： 非常感谢您留心我这份系统诊断报告，小菜鸟十万火急等待您的帮助！ 该诊断报告由360安全卫士提供 http://www.360safe.com 诊断时间: 2007-11-08 20:16:45 诊断平台: Microsoft Windows XP Service Pack 2 IE版本: Internet Explorer V6.0.2900.2180 Build:62900.2180 计算机物理内存:759.48MB - 当前可用内存:533.23MB [color=sienna]100 - 未知 - Process: rfwsrv.exe [Rising Personal FireWall Service] - f:risingrfwrfwsrv.exe[/color] [color=sienna]100 - 未知 - Process: RavMonD.exe [Rising Realtime Moniter] - F:PROGRAM FILESRISINGRAVRavmond.exe[/color] [color=sienna]100 - 未知 - Process: rfwProxy.exe [Rising Personal Proxy Service] - f:risingrfwrfwproxy.exe[/color] [color=sienna]100 - 未知 - Process: rfwstub.exe [Rising Personal FireWall Service Rfwstub ] - f:risingrfwrfwstub.exe[/color] [color=sienna]100 - 未知 - Process: RavStub.exe [Rising RavStub] - F:PROGRAM FILESRISINGRAVRavStub.exe[/color] [color=sienna]100 - 未知 - Process: guard.exe [ewido anti-spyware guard] - D:ADSL超频奇兵 V4.7木马清除ewido anti-spyware 4.0guard.exe[/color] [color=sienna]100 - 未知 - Process: rfwmain.exe [Rising Personal FireWall Main Program] - f:risingrfwRfwMain.exe[/color] [color=sienna]100 - 未知 - Process: RavTask.exe [RavTimer] - F:Program FilesRisingRavRavTask.exe[/color] [color=sienna]100 - 未知 - Process: racer.exe [Racer] - C:Program Filesracer-ccn-racerpc-bjracer.exe[/color] [color=sienna]100 - 未知 - Process: RavMon.exe [Rising realtime monitor shell] - F:Program FilesRisingRavRavmon.exe[/color] [color=sienna]100 - 未知 - Process: rundll32.exe [Pppoe DLL] - C:WINDOWSsystem32rundll32.exe C:PROGRA~1RACER-~1pppoe.dll,AccessGetDwConnectionStatus2[/color] [color=sienna]100 - 未知 - Process: NMIndexingService.exe [Nero Home] - C:Program FilesCommon FilesAheadLibNMIndexingService.exe[/color] [color=sienna]R0 - 未知 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page=http://www.hao123.com/[/color] [color=sienna]O2 - 未知 - BHO: (ThunderAtOnce Class) - [迅雷浏览器高级特性支持模块] - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - D:迅雷ComDllsTDAtOnce_Now.dll[/color] [color=sienna]O8 - 未知 - Extra context menu item: 使用迅雷下载 - D:迅雷Programgeturl.htm[/color] [color=sienna]O8 - 未知 - Extra context menu item: 使用迅雷下载全部链接 - D:迅雷Programgetallurl.htm[/color] [color=sienna][color=sienna]O23 - 未知 - Service: ewido anti-spyware 4.0 guard [ewido anti-spyware 4.0 guard] - D:ADSL超频奇兵 V4.7木马清除ewido anti-spyware 4.0guard.exe - (running)[/color][/color] [color=sienna][color=sienna]O23 - 未知 - Service: NMIndexingService [NMIndexingService] - "C:Program FilesCommon FilesAheadLibNMIndexingService.exe" - (running)[/color][/color] [color=sienna][color=sienna]O23 - 未知 - Service: RfwProxySrv [Rising Personal Proxy Service] - f:risingrfwrfwproxy.exe - (running)[/color][/color] [color=sienna][color=sienna]O23 - 未知 - Service: RfwService [Rising Personal Firewall Service] - f:risingrfwrfwsrv.exe - (running)[/color][/color] [color=sienna][color=sienna]O23 - 未知 - Service: RsCCenter [Rising Process Communication Center] - "F:Program FilesRisingRavCCenter.exe" - (running)[/color][/color] [color=sienna][color=sienna]O23 - 未知 - Service: RsRavMon [Rising RealTime Monitor] - "F:PROGRAM FILESRISINGRAVRavmond.exe" - (running)[/color][/color] ======================================= 100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量，ms-dos驱动名称类似lpt1以及com，调用win32壳子系统和运行在windows登陆过程。] - C:WINDOWSSystem32smss.exe 100 - 安全 - Process: csrss.exe [客户端服务子系统，用以控制windows图形相关子系统。] - C:WINDOWSsystem32csrss.exe ObjectDirectory=Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base 100 - 安全 - Process: WINLOGON.EXE [windows nt用户登陆程序。] - C:WINDOWSsystem32winlogon.exe 100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:WINDOWSsystem32services.exe 100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:WINDOWSsystem32lsass.exe 100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:WINDOWSsystem32svchost -k DcomLaunch 100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:WINDOWSsystem32svchost -k rpcss 100 - 安全 - Process: CCenter.exe [瑞星杀毒软件控制台相关程序。] - F:Program FilesRisingRavCCenter.exe 100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:WINDOWSSystem32svchost.exe -k netsvcs 100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:WINDOWSsystem32svchost.exe -k NetworkService 100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:WINDOWSsystem32svchost.exe -k LocalService 100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序，用以打印机就绪。] - C:WINDOWSsystem32spoolsv.exe 100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:WINDOWSsystem32svchost.exe -k imgsvc 100 - 安全 - Process: alg.exe [这是一个应用层网关服务用于网络共享。] - C:WINDOWSSystem32alg.exe 100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell，包括开始菜单、任务栏，桌面和文件管理。] - C:WINDOWSExplorer.EXE 100 - 安全 - Process: runiep.exe [卡卡上网安全助手IE防漏墙相关程序。] - C:Program FilesRisingAntiSpywareruniep.exe 100 - 安全 - Process: issch.exe [installshield software 公司出品的相关软件更新程序。] - C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe 100 - 安全 - Process: ctfmon.exe [office xp输入法图标。] - C:WINDOWSsystem32ctfmon.exe 100 - 安全 - Process: conime.exe [console ime ime输入法控制台软件。] - C:WINDOWSsystem32conime.exe 100 - 安全 - Process: 360tray.exe [360安全卫士实时监控程序。] - C:Program Files360safesafemon360tray.exe 100 - 安全 - Process: 360Safe.exe [360安全卫士相关程序。] - C:Program Files360safe360Safe.exe R1 - 安全 - HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page=C:WINDOWSsystem32blank.htm O2 - 安全 - BHO: (Thunder Browser Helper) - [迅雷附带下载监视器相关文件。] - {889D2FEB-5411-4565-8998-1DD2C5261283} - D:迅雷ComDllsxunleiBHO_Now.dll O3 - 安全 - Toolbar: (卡卡上网安全助手) - [卡卡安全助手工具条软件相关程序。] - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:WINDOWSsystem32kakatool.dll O4 - 安全 - HKLM..Run: [RavTask] [瑞星杀毒软件的任务计划程序。] "F:Program FilesRisingRavRavTask.exe" -system O4 - 安全 - HKLM..Run: [racer] [网通客户端相关程序。] C:Program Filesracer-ccn-racerpc-bjracer.exe O4 - 安全 - HKLM..Run: [runeip] [卡卡上网安全助手相关程序。] "C:Program FilesRisingAntiSpywareruniep.exe" /startup O4 - 安全 - HKLM..Run: [StormCodec_Helper] [是暴风影音的插件。] "C:Program FilesRingz StudioStorm CodecStormSet.exe" /S /opti O4 - 安全 - HKCU..Run: [ctfmon.exe] [office xp输入法图标。] C:WINDOWSsystem32ctfmon.exe O8 - 安全 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000 O16 - 安全 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Flash播放器) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab O18 - 安全 - Protocol: OFFICE 相关 - {807553E5-5146-11D5-A672-00B0D022E945} - C:Program FilesCommon FilesMicrosoft SharedOFFICE11MSOXMLMF.DLL [color=slategray]O23 - 安全 - Service: Macromedia Licensing Service [是macromedia公司网页三剑客软件的注册程序。] - "C:Program FilesCommon FilesMacromedia SharedServiceMacromedia Licensing.exe" - (not running)[/color] [color=slategray]O23 - 安全 - Service: NBService [刻录软件包Nero内置的备份工具nero backitup相关服务。] - C:Program FilesNeroNero 7Nero BackItUpNBService.exe - (not running)[/color] ======================================= O31 - 未知 - Folder Menu: 无效的CLSID：?{7D4D6379-F301-4311-BEBA-E26EB0561882} - - - - - 0 - O31 - 未知 - SODL: 无效的CLSID：?{AAA288BA-9A4C-45B0-95D7-94D524869DB5} - - - - - 0 - O31 - 未知 - SEApproved: {42071714-76d4-11d1-8b24-00a0c9068ff3} - deskpan.dll - - - - 0 - O31 - 未知 - SEApproved: 无效的CLSID：Shell extensions for file compression - - - - - 0 - O31 - 未知 - SEApproved: 无效的CLSID：加密上下文菜单 - - - - - 0 - O31 - 未知 - SEApproved: {0DF44EAA-FF21-4412-828E-260A8728E7F1} - - - - - 0 - O31 - 未知 - SEApproved: {00E7B358-F65B-4dcf-83DF-CD026B94BFD4} - - - - - 0 - O31 - 未知 - SEApproved: {7A9D77BD-5403-11d2-8785-2E0420524153} - - - - - 0 - O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:Program FilesWinRARrarext.dll - - - - 125440 - 41bb01bd6b374ce13c98493ab4c1ad66 O31 - 未知 - SEApproved: {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} - C:Program FilesRealRealPlayerrpshell.dll - RealNetworks, Inc. - RealPlayer Shell Extensions - 1.0.1.2237 - 49198 - d6315dc9fcc6c62fd54e02f0907030e3 O31 - 未知 - SEApproved: 无效的CLSID：CorelDRAW Shell Extension Component - - - - - 0 - O31 - 未知 - Directory Menu: {8934FCEF-F5B8-468f-951F-78A921CD3920} - D:ADSL超频奇兵 V4.7木马清除ewido anti-spyware 4.0context.dll - Anti-Malware Development a.s. - Context-Menu (Shell Extension) - 4.0.0.172 - 94208 - 1bb3bd0ef15e385716027bac1eb1b888 O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:Program FilesWinRARrarext.dll - - - - 125440 - 41bb01bd6b374ce13c98493ab4c1ad66 O31 - 未知 - BootExecute: bsmain - - - - 0 - O31 - 未知 - LSA: Security Packages - sv1_0.dll - - - - 0 - O31 - 未知 - LSA: Security Packages - channel.dll - - - - 0 - ======================================= [color=sienna]O40 - winlogon.exe - - D:ADSL超频奇兵 V4.7SogouInputPluginSgImeWord.dll - test1 Module - 5e436ce471d514705c364732ec605526[/color] [color=sienna]O40 - Explorer.EXE - - D:ADSL超频奇兵 V4.7SogouInputPluginSgImeWord.dll - test1 Module - 5e436ce471d514705c364732ec605526[/color] [color=sienna]O40 - Explorer.EXE - Microsoft Corporation - C:Program FilesCommon FilesAheadLibMSVCR71.dll - Microsoft? C Runtime Library - 86f1895ae8c5e8b17d99ece768a70732[/color] [color=sienna]O40 - Explorer.EXE - Microsoft Corporation - C:Program FilesCommon FilesAheadLibMFC71U.DLL - MFCDLL Shared Library - Retail Version - 7b93c623333f121dc9e689ccb1b7a733[/color] [color=sienna]O40 - Explorer.EXE - Microsoft Corporation - C:Program FilesCommon FilesAheadLibMSVCP71.dll - Microsoft? C++ Runtime Library - 561fa2abb31dfa8fab762145f81667c2[/color] [color=sienna]O40 - Explorer.EXE - Microsoft Corporation - C:WINDOWSsystem32MFC71CHS.DLL - MFC Language Specific Resources - ecfff2dffbb1cae3a00cb2ab9bff8cef[/color] [color=sienna]O40 - Explorer.EXE - Beijing Rising Technology Co., Ltd. - C:Program FilesRisingAntiSpywareieprot.dll - IE Protector - c03fc56e7d933a2478f65ddb371353bb[/color] [color=sienna]O40 - rundll32.exe - 北京润汇科技有限公司 - C:PROGRA~1RACER-~1pppoe.dll - Pppoe DLL - ea79ad33f1a371e9ea32061fb491fd8c[/color] [color=sienna]O40 - rundll32.exe - - D:ADSL超频奇兵 V4.7SogouInputPluginSgImeWord.dll - test1 Module - 5e436ce471d514705c364732ec605526[/color] [color=sienna]O40 - rundll32.exe - Beijing Rising Technology Co., Ltd. - C:Program FilesRisingAntiSpywareieprot.dll - IE Protector - c03fc56e7d933a2478f65ddb371353bb[/color] ======================================= [color=sienna]O41 - CnxEtP - AccessRunner USB ADSL Modem/enumerator - C:WINDOWSsystem32driversCnxEtP.sys - (running) - AccessRunner USB ADSL Modem/enumerator - Conexant Systems, Inc. - 834785fe705bdef23c7416660d42eafe[/color] [color=sienna]O41 - CnxEtU - AccessRunner USB ADSL Modem loader/driver - C:WINDOWSsystem32driversCnxEtU.sys - (running) - AccessRunner USB ADSL Modem loader/driver - Conexant Systems, Inc. - a102262ca24be7072ad2da3480c1e3fb[/color] [color=sienna]O41 - CnxTgNP - AccessRunner PPPoE NDIS WAN Driver - C:WINDOWSsystem32driversCnxTgNP.sys - (running) - AccessRunner PPPoE NDIS WAN Driver - Conexant Systems, Inc. - 857cc6d0e2c23a391471b86ce8eef03c[/color] [color=sienna]O41 - npkcrypt - nProtect KeyCrypt Driver - D:Program FilesQQ2007npkcrypt.sys - (running) - nProtect KeyCrypt Driver - INCA Internet Co., Ltd. - 8bcb281a2540e7aff0cd00f9878fe21f[/color] [color=sienna]O41 - RsAntiSpyware - Anti-RootKit Driver - C:WINDOWSsystem32driversRsBoot.sys - (running) - Anti-RootKit Driver - Beijing Rising Technology Co., Ltd. - f9edc97f228c046832a24b5a76017912[/color] [color=slategray]O41 - NPF - npf - C:WINDOWSsystem32driversnpf.sys - (not running) - npf - CACE Technologies - 2c19036687354db0ed375040afa0d735[/color] ======================================= 360Safe.exe=3.6.4.3003 AntiAdwa.dll=3.6.3.1001 AntiEng.dll=3.6.4.1001 AntiActi.dll=2.0.0.3000 CleanHis.dll=3.0.2.1000 live.dll=1.0.1.1021 ======================================= 操作历史报告： ----------修复IE浏览器操作历史---------- 2007-11-08 20:09 R0 - 危险 - IE首页 - HKCUSoftwareMicrosoftInternet ExplorerMain ======================================= 360安全卫士，彻底查杀各种流氓软件,全面保护系统安全,并赠送正版卡巴斯基7.0 最新免费下载：http://www.360safe.com

对 楼主 liu88ge 说：
＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝＝
倒塌 这排版是相当的乱了啊

有ie插件清理了就好了

还有啊 个人认为那个ADSL超频的软件不管用吧？


你说呢