已经做好日志。请高手指点。
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ AVGCtrl File not found: ;
+ ccApp File not found: ;
+ IMJPMIG8.1 File not found: ;
+ IMSCMIG40W File not found: ;
+ IS CfgWiz File not found: C:\Program Files\Norton\cfgwiz.exe
+ NeroFilterCheck File not found: ;
+ POPO2004 File not found: ;
+ RavMon RavMon Rising realtime monitor Beijing Rising Technology Co., Ltd. c:\rising\rav\ravmon.exe
+ RavTimer RavTimer Beijing Rising Technology Co., Ltd. c:\rising\rav\ravtimer.exe
+ RavTray RavNet Tray Rising c:\rising\rav\ravtray.exe
+ RemoteControl File not found: ;
+ SKYNET Personal FireWall 天网防火墙个人版 天网 d:\tools\firewall\pfw.exe
+ SSC_UserPrompt File not found: ;
+ Super Rabbit SafeEdit File not found: ;
+ Super Rabbit SRRestore Super Rabbit System Restore Super Rabbit Soft d:\tools\magicset\srrest.exe
+ TkBellExe RealNetworks Scheduler RealNetworks, Inc. c:\program files\common files\real\update_ob\realsched.exe
+ yassistse File not found: ;
+ YLive.exe File not found: ;
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
+ DrvMon.exe File not found: ;
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ Display Panning CPL Extension File not found: deskpan.dll
+ HyperTerminal Icon Ext HyperTerminal Applet Library Hilgraeve, Inc. c:\windows\system32\hticons.dll
+ IE伴郎 5522 Soft c:\program files\netmeeting\callcont32.dll
+ JinfengEncrypt Context Menu 金锋文件加密器 Handler DLL 作者:周金峰 金锋软件 www.jinfengsoft.com c:\windows\system32\jfmenu.dll
+ JinfengEncrypt Copy Hook 金锋文件加密器 Handler DLL 作者:周金峰 金锋软件 www.jinfengsoft.com c:\windows\system32\jfcopy.dll
+ RISING Rising Shell Ext Module Beijing Rising Technology Co., Ltd. c:\windows\system32\ravext.dll
+ Shell Extensions for RealOne Player RealOne Player Shell 扩展 RealNetworks c:\program files\real\realone player\rpshellext.dll
+ WinRAR shell extension d:\tools\winrar\rarext.dll
+ Yahoo!Photo yPhtb Yahoo! China c:\program files\yahoo!\assistant\assist\yphtb.dll
+ 粉碎文件 Wiper 动态链接库 c:\program files\yahoo!\assistant\assist\ywiper.dll
HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ Web 文件夹 c:\program files\common files\microsoft shared\web folders\msonsext.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects
+ CNavExtBho Class Norton AntiVirusNAVShellExt Module Symantec Corporation c:\program files\norton\norton antivirus\navshext.dll
+ CNisExtBho Class NIS Shell Extension Symantec Corporation c:\program files\common files\symantec shared\adblocking\nisshext.dll
HKLM\Software\Microsoft\Internet Explorer\Toolbar
+ FlashGet Bar FlashGet IE Bar Amaze Soft d:\tools\flashget\flashget\fgiebar.dll
+ Norton AntiVirus Norton AntiVirusNAVShellExt Module Symantec Corporation c:\program files\norton\norton antivirus\navshext.dll
+ Norton Internet Security NIS Shell Extension Symantec Corporation c:\program files\common files\symantec shared\adblocking\nisshext.dll
+ 雅虎助手 ToolBar Yahoo! c:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Extensions
+ @shdoclc.dll,-864 c:\windows\web\related.htm
Task Scheduler
+ Symantec NetDetect.job Symantec NetDetect Symantec Corporation c:\program files\symantec\liveupdate\ndetect.exe
HKLM\System\CurrentControlSet\Services
+ ccEvtMgr Symantec Event Manager Symantec Corporation c:\program files\common files\symantec shared\ccevtmgr.exe
+ ccProxy Symantec Proxy Service Symantec Corporation c:\program files\common files\symantec shared\ccproxy.exe
+ ccSetMgr Symantec Settings Manager Symantec Corporation c:\program files\common files\symantec shared\ccsetmgr.exe
+ navapsvc 处理 Norton AntiVirus 自动防护事件。 File not found: C:\Program Files\Norton\Norton AntiVirus\navapsvc.exe
+ RavService 瑞星杀毒软件网络版客户端通讯代理 Beijing Rising Technology Co., Ltd. c:\rising\rav\ravservice.exe
+ RsCCenter 瑞星系统通讯中心 Beijing Rising Technology Co., Ltd. c:\rising\rav\ccenter.exe
+ RsRavMon RavMon Beijing Rising Technology Co., Ltd. c:\rising\rav\ravmond.exe
+ SBService Norton AntiVirus ScripBlocking Service Symantec Corporation c:\program files\common files\symantec shared\script blocking\sbserv.exe
+ WDelMgr20 c:\windows\system32\drivers\wdelmgr20.exe
HKLM\System\CurrentControlSet\Services
+ ac97intc Intel(r) Integrated Controller Hub Audio Driver Intel Corporation c:\windows\system32\drivers\ac97intc.sys
+ BaseTDI basetdi Rising c:\windows\system32\drivers\basetdi.sys
+ E100B NDIS 5 driver Intel Corporation c:\windows\system32\drivers\e100b325.sys
+ ExpScaner ExpScan.sys c:\rising\rav\expscan.sys
+ HookCont TDI HOOK Driver Rising tech Co. ltd c:\rising\rav\hookcont.sys
+ HookReg c:\rising\rav\hookreg.sys
+ hooksys 瑞星 c:\rising\rav\hooksys.sys
+ NAVENG AV Engine Symantec Corporation c:\program files\common files\symantec shared\virusdefs\20040811.020\naveng.sys
+ NAVEX15 AV Engine Symantec Corporation c:\program files\common files\symantec shared\virusdefs\20040811.020\navex15.sys
+ New0 c:\windows\system32\new.sys
+ nv NVIDIA Compatible Windows 2000 Miniport Driver, Version 29.58 NVIDIA Corporation c:\windows\system32\drivers\nv4_mini.sys
+ Ptilink Direct Parallel Link Driver Parallel Technologies, Inc. c:\windows\system32\drivers\ptilink.sys
+ SAVRT AutoProtect Symantec Corporation c:\program files\norton\norton antivirus\savrt.sys
+ SAVRTPEL SAVRTPEL Symantec Corporation c:\program files\norton\norton antivirus\savrtpel.sys
+ Secdrv SafeDisc driver c:\windows\system32\drivers\secdrv.sys
+ SKNFW c:\windows\system32\drivers\sknfw.sys
+ SPBBCDrv SPBBC Driver Symantec Corporation c:\program files\common files\symantec shared\spbbc\spbbcdrv.sys
+ SymEvent Symantec Event Library Symantec Corporation c:\program files\symantec\symevent.sys
+ symlcbrd Symantec Core Component Symantec Corporation c:\windows\system32\drivers\symlcbrd.sys
+ SYMTDI Network Dispatch Driver Symantec Corporation c:\windows\system32\drivers\symtdi.sys
HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors
+ hpZJLanguageMonitor HP1 Zenographics c:\windows\system32\zlmhp1.dll
