windowsrpcapd的简单介绍

本文目录一览：

1、关于ARP上不去网的问题！
2、SVCHOST问题
3、Remote Packet Capture Protocol v.0 (experimental)是什么服务？
4、宏基4755g笔记本哪些启动项是可以取消的啊？我电脑开机速度很慢！谁能帮我一下！我开启项有21个！
5、找个局域网高手？

关于ARP上不去网的问题！

1.添加路由器

2.Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中：

所有的启动项目（包括注册表、启动文件夹、服务等）

浏览器加载项

正在运行的进程（包括进程模块信息）

文件关联

Winsock 提供者

Autorun.inf

HOSTS 文件

启动项目

注册表

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

ctfmon.exeC:\WINDOWS\system32\ctfmon.exe [(Verified)Microsoft Windows Publisher]

bgswitchC:\WINDOWS\system32\bgswitch.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]

load [N/A]

run [N/A]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

StormCodec_Helper"C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti []

RavTask"C:\Program Files\Rising\Rav\RavTask.exe" -system [Beijing Rising Technology Co., Ltd.]

RfwMain"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup [Beijing Rising Technology Co., Ltd.]-windowsrpcapd

SoundManSOUNDMAN.EXE [(Verified)Microsoft Windows Hardware Compatibility Publisher]

runeipD:\瑞星\runiep.exe [Beijing Rising Technology Co., Ltd.]

AntiARPStandaloneD:\ARP防御\AntiArp.exe []

NvCplDaemonRUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup [(Verified)Microsoft Windows Hardware Compatibility Publisher]-windowsrpcapd

nwiznwiz.exe /install []

NvMediaCenterRUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit [(Verified)Microsoft Windows Hardware Compatibility Publisher]-windowsrpcapd

IMJPMIG8.1; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 [N/A]

miniqqlive; "C:\Program Files\Tencent\QQLive\MiniQQLive.exe" [Tencent]

PHIME2002A; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName [(Verified)Microsoft Windows Publisher]-windowsrpcapd

PHIME2002ASync; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC [(Verified)Microsoft Windows Publisher]-windowsrpcapd

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

shellExplorer.exe [(Verified)Microsoft Windows Publisher]

UserinitC:\WINDOWS\system32\userinit.exe, [(Verified)Microsoft Windows Publisher]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

AppInit_DLLs [N/A]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

UIHostlogonui.exe [(Verified)Microsoft Windows Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WPDShServiceObjC:\WINDOWS\system32\WPDShServiceObj.dll [(Verified)Microsoft Windows Component Publisher]-windowsrpcapd

启动文件夹

[Adobe Gamma Loader]

C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Gamma Loader.lnk -- C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [Adobe Systems, Inc.]N-windowsrpcapd

==================================

服务

[Adobe LM Service / Adobe LM Service][Stopped/Manual Start]

"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"

[Human Interface Device Access / HidServ][Stopped/Disabled]

C:\WINDOWS\System32\svchost.exe -k netsvcs--%SystemRoot%\System32\hidserv.dllN/A

[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]

C:\WINDOWS\system32\nvsvc32.exeNVIDIA Corporation

[Rising Proxy Service / RfwProxySrv][Stopped/Manual Start]

c:\program files\rising\rfw\rfwproxy.exeBeijing Rising Technology Co., Ltd.

[Rising Personal Firewall Service / RfwService][Running/Auto Start]

c:\program files\rising\rfw\rfwsrv.exeBeijing Rising Technology Co., Ltd.

[Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start]

"C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini"N/A

[Rising Process Communication Center / RsCCenter][Running/Auto Start]

"C:\Program Files\Rising\Rav\CCenter.exe"Beijing Rising Technology Co., Ltd.

[Rising RealTime Monitor / RsRavMon][Running/Auto Start]

"C:\Program Files\Rising\Rav\Ravmond.exe"Beijing Rising Technology Co., Ltd.

[User Profile Hive Cleanup / UPHClean][Running/Auto Start]

C:\Program Files\UPHClean\uphclean.exeMicrosoft Corporation

==================================

驱动程序

[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc][Stopped/Manual Start]

system32\drivers\ac97intc.sysIntel Corporation

[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]

system32\drivers\ALCXWDM.SYSRealtek Semiconductor Corp.

[AntiARP NDIS Protocol Driver / AntiArpNdisProt][Running/Auto Start]

system32\DRIVERS\AntiArpNdisProt.sysWindows (R) 2000 DDK provider

[Rising TDI Base Driver / BaseTDI][Running/Auto Start]

System32\DRIVERS\BaseTDI.SYSBeijing Rising Technology Co., Ltd.

[CdaC15BA / CdaC15BA][Running/Auto Start]

\??\C:\WINDOWS\system32\drivers\CdaC15BA.SYSMacrovision Europe Ltd

[Creative SBLive! Gameport / ctljystk][Stopped/Manual Start]

system32\DRIVERS\ctljystk.sysCreative Technology Ltd.

[ExpScaner / ExpScaner][Running/Auto Start]

\??\C:\Program Files\Rising\Rav\ExpScan.sys

[HookCont / HookCont][Running/Auto Start]

\??\C:\Program Files\Rising\Rav\HOOKCONT.sysRising

[HookReg / HookReg][Running/Auto Start]

\??\C:\Program Files\Rising\Rav\HookReg.sys

[HookSys / HookSys][Running/Auto Start]

\??\C:\Program Files\Rising\Rav\HookSys.sysRising

[HookUrl / HookUrl][Running/Auto Start]

\??\C:\Program Files\Rising\Rfw\HookUrl.sysBeijing Rising Technology Co., Ltd.

[MEMSCAN / MEMSCAN][Running/Auto Start]

\??\C:\Program Files\Rising\Rav\MEMSCAN.sys瑞星软件有限公司

[mProcRs / mProcRs][Running/Auto Start]

\??\c:\program files\rising\rfw\mProcRs.sysBeijing Rising Technology Co., Ltd.

[NetGroup Packet Filter Driver / NPF][Stopped/Manual Start]

system32\drivers\npf.sysPolitecnico di Torino

[npkcrypt / npkcrypt][Running/Auto Start]

\??\F:\QQ\npkcrypt.sysINCA Internet Co., Ltd.

[nv / nv][Running/Manual Start]

system32\DRIVERS\nv4_mini.sysNVIDIA Corporation

[oreans32 / oreans32][Running/System Start]

\??\C:\WINDOWS\system32\drivers\oreans32.sysN/A

[Direct Parallel Link Driver / Ptilink][Running/Manual Start]

system32\DRIVERS\ptilink.sysParallel Technologies, Inc.

[RsAntiSpyware / RsAntiSpyware][Running/Boot Start]

\SystemRoot\system32\drivers\RsBoot.sysBeijing Rising

[RsFwDrv / RsFwDrv][Running/Auto Start]

\??\C:\Program Files\Rising\Rfw\RsFwDrv.sysBeijing Rising Technology Co., Ltd.

[RsNTGDI / RsNTGDI][Running/Boot Start]

\SystemRoot\system32\Drivers\RsNTGdi.sysBeijing Rising Technology Co., Ltd.

[RSPPSYS / RSPPSYS][Running/Auto Start]

\??\C:\Program Files\Rising\Rav\RSPPSYS.sysRising

[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]

system32\DRIVERS\RTL8139.SYSRealtek Semiconductor Corporation

[Secdrv / Secdrv][Stopped/Manual Start]

system32\DRIVERS\secdrv.sysN/A

[xAntiArpSpoof Service / xAntiArp][Running/Manual Start]

system32\DRIVERS\xAntiArp.sysWindows (R) 2000 DDK provider

==================================

浏览器加载项

[启动迅雷5]

{09BA8F6D-CB54-424B-839C-C2A6C8E6B436} D:\迅雷\Thunder.exe, Thunder Networking Technologies,LTD

[卡卡上网安全助手]

{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} C:\WINDOWS\system32\kakatool.dll, Beijing Rising Technology Co., Ltd.-windowsrpcapd

[Windows Media Player]

{22D6F312-B0F6-11D0-94AB-0080C74C7E95} C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation

[HTML Document]

{25336920-03F9-11CF-8FD0-00AA00686F13} %SystemRoot%\system32\mshtml.dll, N/A

[DHTML Edit Control Safe for Scripting for IE5]

{2D360201-FFF5-11D1-8D03-00A0C959BC0A} C:\WINDOWS\system32\dllcache\dhtmled.ocx, Microsoft Corporation-windowsrpcapd

[Shell Name Space]

{55136805-B2DE-11D1-B9F2-00A0C98BC547} %SystemRoot%\system32\shdocvw.dll, N/A

[Windows Media Player]

{6BF52A52-394A-11D3-B153-00C04F79FAA6} C:\WINDOWS\system32\wmp.dll, Microsoft Corporation

[Microsoft Web 浏览器]

{8856F961-340A-11D0-A96B-00C04FD705A2} C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation

[Thunder Browser Helper]

{889D2FEB-5411-4565-8998-1DD2C5261283} D:\迅雷\ComDlls\XunLeiBHO_007.dll, Thunder Networking Technologies,LTD-windowsrpcapd

[SearchAssistantOC]

{B45FF030-4447-11D2-85DE-00C04FA35C89} %SystemRoot%\system32\shdocvw.dll, N/A

[RDS.DataSpace]

{BD96C556-65A3-11D0-983A-00C04FC29E36} C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation-windowsrpcapd

[AUDIO__MP3 Moniker Class]

{CD3AFA76-B84F-48F0-9393-7EDC34128127} C:\WINDOWS\system32\wmp.dll, Microsoft Corporation

[AUDIO__X_MS_WMA Moniker Class]

{CD3AFA84-B84F-48F0-9393-7EDC34128127} C:\WINDOWS\system32\wmp.dll, Microsoft Corporation

[VIDEO__X_MS_WMV Moniker Class]

{CD3AFA94-B84F-48F0-9393-7EDC34128127} C:\WINDOWS\system32\wmp.dll, Microsoft Corporation

[RealPlayer G2 Control]

{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.

[Shockwave Flash Object]

{D27CDB6E-AE6D-11CF-96B8-444553540000} C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.-windowsrpcapd

[TencentVmpCtl Class]

{D9819BD5-422B-4281-8523-726466ED692B} C:\Program Files\Tencent\Viewpoint Media Player\AxMetaStream.dll, Viewpoint Corporation-windowsrpcapd

[卡卡上网安全助手]

{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} C:\WINDOWS\system32\kakatool.dll, Beijing Rising Technology Co., Ltd.-windowsrpcapd

正在运行的进程

[PID: 696][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]-windowsrpcapd

[PID: 752][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]-windowsrpcapd

[PID: 1360][C:\Program Files\Rising\Rav\Ravmond.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 43]-windowsrpcapd

[C:\Program Files\Rising\Rav\BWList.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 10]

[C:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]

[C:\Program Files\Rising\Rav\rfwctrl.dll] [Beijing Rising Technology Co., Ltd., 5, 0, 0, 11]

[C:\Program Files\Rising\Rav\RsPPsys.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3]

[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]

[C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 13]

[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]

[C:\Program Files\Rising\Rav\RsLog.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]

[C:\Program Files\Rising\Rav\HOOKSYS.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 0]

[C:\Program Files\Rising\Rav\Scanner.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 12]

[C:\Program Files\Rising\Rav\libload.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 16]

[C:\Program Files\Rising\Rav\VirusLib.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 10]

[C:\Program Files\Rising\Rav\regmon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6]

[C:\Program Files\Rising\Rav\psapi.dll] [Microsoft Corporation, 4.00]

[C:\Program Files\Rising\Rav\HookWeb.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 1]

[C:\Program Files\Rising\Rav\MemMon.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 12]

[C:\Program Files\Rising\Rav\expscan.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]

[C:\Program Files\Rising\Rav\mPorts.dll] [Beijing Rising Technology Co., Ltd., 4, 0, 0, 3]

[C:\Program Files\Rising\Rav\HookCont.dll] [Rising, 19, 0, 0, 0]

[C:\Program Files\Rising\Rav\SpamEng.dll] [, 18, 0, 0, 6]

[C:\Program Files\Rising\Rav\engine.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 27]

[C:\WINDOWS\system32\TcpIpDog0.dll] [N/A, ]

[C:\Program Files\Rising\Rav\PostTrt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 13]

[C:\Program Files\Rising\Rav\UnExe.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 10]

[C:\Program Files\Rising\Rav\ScanExec.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 16]

[C:\Program Files\Rising\Rav\ScanEx.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 47]

[C:\Program Files\Rising\Rav\ExtFile.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 25]

[C:\Program Files\Rising\Rav\NvFile.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 11]

[C:\Program Files\Rising\Rav\ScanMac.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 13]

[C:\Program Files\Rising\Rav\ScanSct.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 19]

[C:\Program Files\Rising\Rav\Unpacker.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 19]

[C:\Program Files\Rising\Rav\ScanPack.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 22]

[C:\Program Files\Rising\Rav\RsVM.dll] [, 19, 0, 0, 16]

[C:\Program Files\Rising\Rav\Uroutine.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 26]

[C:\Program Files\Rising\Rav\Uscript.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 18]

[C:\Program Files\Rising\Rav\ExtOLE.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 12]

[PID: 1252][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]-windowsrpcapd

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[C:\WINDOWS\system32\nvcpl.dll] [NVIDIA Corporation, 6.14.10.9371]

[C:\WINDOWS\system32\NVRSZHC.DLL] [NVIDIA Corporation, 6.14.10.9371]

[C:\WINDOWS\system32\nvapi.dll] [N/A, ]

[C:\WINDOWS\system32\nvshell.dll] [, ]

[C:\Program Files\WinRAR\rarext.dll] [N/A, ]

[C:\Program Files\MP3 Player Utilities 3.75\AMVConverter\AmvTransform.dll] [, 1, 0, 0, 1]

[C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]

[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]

[C:\WINDOWS\system32\NQWBX.IME] [念青：, 2.00.03.05]

[PID: 1324][C:\Program Files\Rising\Rav\RavTask.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 7]-windowsrpcapd

[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]

[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]

[C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 13]

[C:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[PID: 1372][C:\Program Files\Rising\Rfw\rfwmain.exe] [Beijing Rising Technology Co., Ltd., 5, 0, 0, 70]-windowsrpcapd

[C:\Program Files\Rising\Rfw\RsGuiLib.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 33]

[C:\Program Files\Rising\Rfw\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]

[C:\Program Files\Rising\Rfw\RfwCtrl.dll] [Beijing Rising Technology Co., Ltd., 5, 0, 0, 11]

[C:\Program Files\Rising\Rfw\RsXML.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 2]

[C:\Program Files\Rising\Rfw\PngDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[PID: 1400][C:\WINDOWS\SOUNDMAN.EXE] [Realtek Semiconductor Corp., 5.1.0.39]

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[PID: 1424][D:\瑞星\runiep.exe] [Beijing Rising Technology Co., Ltd., 1, 0, 1, 6]

[D:\瑞星\iep_ctrl.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 4]

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[PID: 1464][D:\ARP防御\AntiArp.exe] [, 4.0.0.1]

[D:\ARP防御\xantiarp.dll] [N/A, ]

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[C:\WINDOWS\system32\TcpIpDog0.dll] [N/A, ]

[PID: 1416][C:\Program Files\Rising\Rav\Ravmon.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 45]-windowsrpcapd

[C:\Program Files\Rising\Rav\RsGuiLib.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 33]

[C:\Program Files\Rising\Rav\BWList.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 10]

[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]

[C:\Program Files\Rising\Rav\CfgDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 13]

[C:\Program Files\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]

[C:\Program Files\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]

[C:\Program Files\Rising\Rav\RsXML.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 2]

[C:\Program Files\Rising\Rav\PngDll.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[PID: 1724][C:\WINDOWS\system32\RUNDLL32.EXE] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]-windowsrpcapd

[C:\WINDOWS\system32\NvMcTray.dll] [NVIDIA Corporation, 6.14.10.9371]

[C:\WINDOWS\system32\nvapi.dll] [N/A, ]

[C:\WINDOWS\system32\NVRSZHC.DLL] [NVIDIA Corporation, 6.14.10.9371]

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[PID: 1848][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]-windowsrpcapd

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[PID: 2636][D:\登陆系统\Dr.COM宽带认证客户端3.39\Dr.COM宽带认证客户端3.39\ishare_user.exe] [N/A, ]

[C:\WINDOWS\system32\TcpIpDog0.dll] [N/A, ]

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[PID: 920][C:\WINDOWS\漏洞扫描\sreng2\ABC.EXE] [Smallfrogs Studio, 2.4.12.806]

[D:\瑞星\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]

[C:\WINDOWS\system32\TcpIpDog0.dll] [N/A, ]

==================================

文件关联

.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

.EXE OK. ["%1" %*]

.COM OK. ["%1" %*]

.PIF OK. ["%1" %*]

.REG OK. [regedit.exe "%1"]

.BAT OK. ["%1" %*]

.SCR OK. ["%1" /S]

.CHM OK. ["C:\WINDOWS\hh.exe" %1]

.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]

.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]

.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]

.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]

.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]

.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================

Winsock 提供者

MSAFD Tcpip [TCP/IP]

C:\WINDOWS\system32\TcpIpDog0.dll(, N/A)

MSAFD Tcpip [UDP/IP]

C:\WINDOWS\system32\TcpIpDog0.dll(, N/A)

MSAFD Tcpip [RAW/IP]

C:\WINDOWS\system32\TcpIpDog0.dll(, N/A)

RSVP UDP Service Provider

C:\WINDOWS\system32\TcpIpDogR0.dll(, N/A)

RSVP TCP Service Provider

C:\WINDOWS\system32\TcpIpDogR0.dll(, N/A)

==================================

Autorun.inf

N/A

==================================

HOSTS 文件

127.0.0.1 localhost

==================================

API HOOK

N/A

windowsrpcapd的简单介绍

SVCHOST问题

vchost.exe是一个属于微软Windows操作系统的系统程序，用于执行DLL文件。这个程序对你系统的正常运行是非常重要的。注意：svchost.exe也有可能是W32.Welchia.Worm病毒，它利用WindowsLSASS漏洞，制造缓冲区溢出，导致你计算机关机。更多详细信息参考:，该进程的安全等级是建议立即删除。-windowsrpcapd

Svchost.exe,是系统必不可少的一个进程,很多服务都会多多少少用到它,但是我想大家也知道,由于它本身特殊性,高明的"黑客们"肯定是不会放过的,前段时间的Svchost.exe木马风波,大家应该是记忆犹新吧,而且现在还是有很多机器里都藏有此木马,因为它伪装和系统进程 Svchost.exe一样,所以很多人分不清,哪个是进程,哪个是木马……-windowsrpcapd

Remote Packet Capture Protocol v.0 (experimental)是什么服务？

服务项：Remote Packet Capture Protocol v.0 (experimental)

文件名：rpcapd.exe

描述：该服务名为rpcapd。WinPcap是基于32位Windows操作平台的、利用Open Source的数据包捕获器，用于分析网络的工作情况。它包括一个内核级的数据包过滤器，低级数据库链接文件packet.dll，和一个高级的独立系统链接库wpcap.dll（基于libpcap version 0.6.2）。-windowsrpcapd

主文件位置：%ProgramFiles%\WinPcap\rpcapd.exe。

宏基4755g笔记本哪些启动项是可以取消的啊？我电脑开机速度很慢！谁能帮我一下！我开启项有21个！

我的也是4755 每次开机30秒以内，建议用金山卫士+金山毒霸，很给力！

金山卫士性能体检开机性能报告

体检时间：2011-10-16 02:13:06

-------------------------------------------------------

开机性能极好，得分 98

上次开机用了24秒,系统启动较慢，加载了太多的驱动与服务

-------------------------------------------------------

检测开机启动项

共有 116 个开机项，开机项越少开机越快！

-------------------------------------------------------

检测开机时间分布

系统启动较慢，加载了太多的驱动与服务。

硬件启动： 6 秒，快速

系统启动： 10 秒，较慢（与驱动加载、系统服务启动等因素相关）

软件启动： 8 秒，极速

-------------------------------------------------------

检测各程序启动时间

共有 68 个程序启动，共用时18秒

软件服务-金山毒霸文件实时防毒服务(kxescore.exe):4.76秒

系统服务-Windows操作系统进程(svchost.exe):2.25秒

系统服务-微软客户端和服务端运行进程(csrss.exe):1.51秒

系统程序-Windows资源管理器(Explorer.EXE):1.11秒

系统服务-微软客户端和服务端运行进程(csrss.exe):1.02秒

系统服务-Windows操作系统的本地安全权限服务(lsass.exe):0.99秒

软件程序-金山卫士基础服务程序(KSafeSvc.exe):0.59秒

软件程序-金山急救箱扫描服务进程(ksmsvc.exe):0.57秒

软件程序-金山卫士实时保护模块(KSafeTray.exe):0.51秒

系统服务-Windows操作系统进程(svchost.exe):0.42秒

系统程序-NVIDIA显卡驱动帮助服务(nvvsvc.exe):0.37秒

系统服务-Windows操作系统进程(svchost.exe):0.30秒

系统服务-Windows操作系统进程(services.exe):0.24秒

系统程序-Windows外观特效相关程序(Dwm.exe):0.24秒

软件程序-pcee4.exe(pcee4.exe):0.23秒

系统服务-Windows操作系统进程(svchost.exe):0.22秒

软件程序-金山毒霸实时保护程序(kxetray.exe):0.22秒

系统程序-Windows NT登陆管理器(winlogon.exe):0.21秒

系统程序-Intel显示卡加速软件相关程序(igfxsrvc.exe):0.17秒

软件程序-宏碁笔记本电脑驱动相关进程(LManager.exe):0.16秒

软件程序-McSACore.exe(McSACore.exe):0.13秒

系统服务-Windows操作系统进程(svchost.exe):0.11秒

软件程序-Windows Live ID登录认证服务进程(WLIDSVC.EXE):0.10秒

软件程序-Intel 用户界面公共处理程序(igfxpers.exe):0.10秒

软件程序-Synaptics新思手写板驱动程序(SynTPEnh.exe):0.10秒

软件程序-Nvidia显卡程序(NvXDSync.exe):0.10秒

系统程序-Windows操作系统进程(wmiprvse.exe):0.10秒

软件程序-英特尔EvtEng相关模块(EvtEng.exe):0.09秒

系统程序-Windows 启动应用程序(wininit.exe):0.08秒

系统服务-Windows操作系统进程(svchost.exe):0.08秒

软件程序-宏碁电源管理程序托盘程序(ePowerTray.exe):0.08秒

系统服务-Windows打印机服务(spoolsv.exe):0.07秒

系统服务-Windows操作系统进程(svchost.exe):0.06秒

系统程序-Userinit 登录应用程序(userinit.exe):0.06秒

系统程序-Windows会话管理子系统(smss.exe):0.05秒

软件程序-LMutilps32.exe(LMutilps32.exe):0.04秒

系统程序-(taskeng.exe):0.04秒

软件程序-HD Audio后台的相关进程(RAVBg64.exe):0.04秒

软件程序-Launch Manager组件相关程序(LMworker.exe):0.04秒

系统服务-Windows操作系统进程(svchost.exe):0.04秒

软件程序-PanDhcpDns.exe(PanDhcpDns.exe):0.03秒

软件程序-宏碁备份管理程序相关进程(IScheduleSvc.exe):0.03秒

系统程序-Windows操作系统进程(wmiprvse.exe):0.03秒

软件程序-USB 3.0主机控制器驱动程序(nusb3mon.exe):0.03秒

系统程序-Windows 任务的主机进程(taskhost.exe):0.03秒

软件程序-英特尔睿频加速技术相关程序(TurboBoost.exe):0.03秒

系统程序-Windows 主进程 (Rundll32)(rundll32.exe):0.03秒

系统服务-Windows操作系统进程(lsm.exe):0.03秒

软件程序-宏碁笔记本电源管理软件(ePowerSvc.exe):0.02秒

软件程序-UpdaterService.exe(UpdaterService.exe):0.02秒

软件程序-华硕快捷键管理程序组件(MMDx64Fx.exe):0.01秒

软件程序-Acer Registration系列软件(GREGsvc.exe):0.01秒

软件程序-宏碁笔记本电源管理相关程序(ePowerEvent.exe):0.01秒

系统程序-(conhost.exe):0.01秒

系统程序-windows管理规范(wmi)相关程序(unsecapp.exe):0.01秒

软件程序-startdetect64.exe(startdetect64.exe):0.01秒

软件程序-Intel显卡控制器退出程序(igfxext.exe):0.01秒

系统程序-NVIDIA显卡驱动帮助服务(nvvsvc.exe):0.01秒

系统程序-windows管理规范(wmi)相关程序(unsecapp.exe):0.01秒

软件程序-rpcapd.exe(rpcapd.exe):0.01秒

软件程序-Adobe许可证相关进程(FNPLicensingService.exe):0.01秒

软件程序-宏碁电脑快捷键管理服务(dsiwmis.exe): 0.01秒

系统程序-(taskeng.exe): 0.01秒

系统程序-Windows 主进程 (Rundll32)(rundll32.exe): 0.01秒

软件程序-搜狗拼音输入法工具(SGTool.exe): 0.01秒

软件程序-Windows Live ID登录认证服务监视程序(WLIDSvcM.exe): 0.01秒

软件程序-Intel网络通讯软件相关程序(RegSrvc.exe): 0.01秒

软件程序-perfhost.exe(perfhost.exe): 0.01秒

-------------------------------------------------------

检测桌面图标

桌面共有17个图标，其中软件图标14个，文件图标2个，文件夹图标1个

-------------------------------------------------------

找个局域网高手？

查看下这些的项目对不对~~