还有,进来后,1按软件或游戏后,1秒后就自己关闭,瑞星也上不了.不知道为什么..请高手帮下日志在这. 注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><E:\WINDOWS\system32\ctfmon.exe> [Microsoft Corporation]
<RealUpdate><E:\Program Files\Common Files\update\update.exe> []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<YLive.exe><E:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe> [Yahoo! China]
<yassistse><"E:\PROGRA~1\Yahoo!\Assistant\yassistse.exe"> [Yahoo! China]
<SKYNET Personal FireWall><E:\PROGRA~1\SKYNET\FIREWALL\pfw.exe> [广州众达天网技术有限公司]
<TProgram><E:\WINDOWS\SMSS.EXE> [IvF90x1mONzuCDewVaSj]
<ToP><E:\WINDOWS\LSASS.exe> [KhxbGdQLTw6yEmjBZAtR]
<NTdhcp><E:\WINDOWS\system32\NTdhcp.exe> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe 1> []
<Userinit><E:\WINDOWS\system32\userinit.exe,> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{32CD708B-60A7-4C00-9377-D73EAA495F0F}><E:\WINDOWS\system32\RavExt.dll> [Beijing Rising Technology Co., Ltd.]
<{E568441B-9EF3-49F8-9A67-4141AC41ADD4}><E:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll> [Yahoo! China]
<{4BAB150F-DD97-476D-9C1E-41B6CDC0CA7A}><E:\PROGRA~1\Yahoo!\ASSIST~1\yclickon.dll> [YAHOO Corporation Limited]
<{E4C3C044-CE6A-4117-9D18-C1EBEC80D2C9}><E:\WINDOWS\system32\update3.dLL> []
正在运行的进程
[PID: 416][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 488][\??\E:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 520][\??\E:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 572][E:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 584][E:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 740][E:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 792][E:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 864][E:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 912][E:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1052][E:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1260][E:\WINDOWS\Explorer.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[E:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
[E:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll] <Yahoo! China><3, 1, 2, 1018>
[E:\PROGRA~1\Yahoo!\ASSIST~1\yclickon.dll] <YAHOO Corporation Limited><3, 0, 0, 1001>
[E:\WINDOWS\system32\update3.dLL] <N/A><N/A>
[E:\WINDOWS\system32\KB8964225.log] <N/A><N/A>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <Yahoo! China><3, 0, 2, 1020>
[E:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <yahoo! china><3, 2, 5, 1075>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll] <Yahoo! China><3, 0, 1, 1010>
[E:\WINDOWS\system32\xunleibho_v14.dll] <Thunder Networking Technologies,LTD><4, 6, 0, 62>
[E:\PROGRA~1\FLASHGET\jccatch.dll] <FlashGet><1, 1, 5, 0>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll] <Yahoo! China><3, 0, 2, 1004>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL] <yahoo! china><3, 0, 0, 1000>
[E:\Program Files\NetTransport\NXIEHelper.dll] <Xi><2.01.301>
[e:\program files\google\googletoolbar2.dll] <Google Inc.><3, 0, 131, 0>
[E:\PROGRA~1\YiSou\yisoub.dll] <><1, 2, 5, 1005>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yassist.dll] <Yahoo! China><3, 0, 7, 1012>
[C:\Program Files\rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[E:\WINDOWS\system32\Macromed\Flash\Flash8.ocx] <Macromedia, Inc.><8,0,22,0>
[E:\WINDOWS\system32\JPWB.IME] <常诚研制><4.00.950>
[E:\WINDOWS\system32\Q9XPGBFD.IME] <Q9 Techonology Holding Limited><1, 0, 0, 1>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Assist\ywiper.dll] <Yahoo! China><3, 0, 1, 1001>
[E:\Program Files\WinRAR\rarext.dll] <N/A><N/A>
[E:\PROGRA~1\3721\ske\contmenu.dll] <N/A><N/A>
[C:\Program Files\rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 1388][E:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
[PID: 1732][E:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe] <Yahoo! China><3, 1, 2, 1018>
[E:\WINDOWS\system32\KB8964225.log] <N/A><N/A>
[E:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll] <Yahoo! China><3, 1, 2, 1018>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <Yahoo! China><3, 0, 2, 1020>
[E:\WINDOWS\system32\update3.dLL] <N/A><N/A>
[E:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <yahoo! china><3, 2, 5, 1075>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll] <Yahoo! China><3, 0, 1, 1010>
[E:\PROGRA~1\Yahoo!\ASSIST~1\ynotifier.dll] <yahoo! china><3, 0, 0, 1000>
[PID: 1956][E:\WINDOWS\system32\wdfmgr.exe] <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)>
[PID: 376][E:\WINDOWS\SMSS.EXE] <IvF90x1mONzuCDewVaSj><0.00.0118>
[E:\WINDOWS\system32\KB8964225.log] <N/A><N/A>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <Yahoo! China><3, 0, 2, 1020>
[E:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll] <Yahoo! China><3, 1, 2, 1018>
[E:\WINDOWS\system32\update3.dLL] <N/A><N/A>
[PID: 480][E:\WINDOWS\LSASS.exe] <KhxbGdQLTw6yEmjBZAtR><0.00.0108>
[E:\WINDOWS\system32\KB8964225.log] <N/A><N/A>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <Yahoo! China><3, 0, 2, 1020>
[E:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll] <Yahoo! China><3, 1, 2, 1018>
[E:\WINDOWS\system32\update3.dLL] <N/A><N/A>
[PID: 496][E:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[E:\WINDOWS\system32\KB8964225.log] <N/A><N/A>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <Yahoo! China><3, 0, 2, 1020>
[E:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll] <Yahoo! China><3, 1, 2, 1018>
[E:\WINDOWS\system32\update3.dLL] <N/A><N/A>
[PID: 944][E:\Program Files\Common Files\update\update.exe] <N/A><N/A>
[E:\WINDOWS\system32\KB8964225.log] <N/A><N/A>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <Yahoo! China><3, 0, 2, 1020>
[E:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll] <Yahoo! China><3, 1, 2, 1018>
[E:\WINDOWS\system32\update3.dLL] <N/A><N/A>
[PID: 1588][E:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1864][E:\WINDOWS\system32\NTdHcP.exe] <N/A><N/A>
[E:\WINDOWS\system32\KB8964225.log] <N/A><N/A>
[E:\WINDOWS\system32\update3.dLL] <N/A><N/A>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <Yahoo! China><3, 0, 2, 1020>
[E:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll] <Yahoo! China><3, 1, 2, 1018>
[PID: 1928][E:\WINDOWS\system32\wuauclt.exe] <Microsoft Corporation><5.8.0.2469 built by: lab01_n(wmbla)>
[PID: 1132][E:\WINDOWS\system32\wuauclt.exe] <Microsoft Corporation><5.8.0.2469 built by: lab01_n(wmbla)>
[E:\WINDOWS\system32\KB8964225.log] <N/A><N/A>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <Yahoo! China><3, 0, 2, 1020>
[E:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll] <Yahoo! China><3, 1, 2, 1018>
[E:\WINDOWS\system32\update3.dLL] <N/A><N/A>
[C:\SREng2\SREng.com] <Smallfrogs Studio><2.0.21.505>
[E:\WINDOWS\system32\KB8964225.log] <N/A><N/A>
[E:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <Yahoo! China><3, 0, 2, 1020>
[E:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll] <Yahoo! China><3, 1, 2, 1018>
[E:\WINDOWS\system32\update3.dLL] <N/A><N/A>