日志搞下来了,如下:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ ccproc卡盟网络娱乐平台(http://www.kamun.com)杭州灵性寰宇c:\program files\kamun\kamun.exe
+ TkBellExeRealNetworks SchedulerRealNetworks, Inc.c:\program files\common files\real\update_ob\realsched.exe
+ vptraySymantec AntiVirusSymantec Corporationc:\program files\symantec_client_security\symantec antivirus\vptray.exe
+ WinDLL (jbi32.dll)c:\winnt\system32\jbi32.dll
+ yassistseAssistSettingYahoo!c:\program files\yahoo!\assistant\yassistse.exe
+ YLive.exeYLive c:\program files\yahoo!\assistant\ylive.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
+ byxyx.dllc:\winnt\system32\byxyx.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ Display Panning CPL ExtensionFile not found: deskpan.dll
+ gktext.dllc:\winnt\system32\gktext.dll
+ HyperTerminal Icon ExtHyperTerminal Applet LibraryHilgraeve, Inc.c:\winnt\system32\hticons.dll
+ LDVP Shell ExtensionsSymantec AntiVirusSymantec Corporationc:\program files\common files\symantec shared\ssc\vpshell2.dll
+ PicaViewPicaView 系统扩展 DLLACD Systems, Ltd.c:\program files\acdsee\picaview.dll
+ Shell Extensions for RealOne PlayerRealPlayer Shell ExtensionsRealNetworks, Inc.c:\program files\real\realplayer\rpshell.dll
+ WinRAR shell extensionc:\program files\winrar\rarext.dll
+ xoob2res.dllFile not found: C:\WINNT\system32\xoob2res.dll
+ Yahoo!PhotoyPhtbYahoo! Chinac:\program files\yahoo!\assistant\assist\yphtb.dll
+ 粉碎文件Wiper 动态链接库c:\program files\yahoo!\assistant\assist\ywiper.dll
HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ Web 文件夹c:\program files\common files\microsoft shared\web folders\msonsext.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects
+ ATLDistrib
Objectc:\winnt\system32\byvst.dll
+ {EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D}c:\winnt\system32\byxyx.dll
HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks
+ coolbarToolBarYahoo!c:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Toolbar
+ 雅虎助手ToolBarYahoo!c:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Extensions
+ @shdoclc.dll,-864c:\winnt\web\related.htm
+ 腾讯QQQQTENCENTc:\program files\tencent\qq\qq.exe
HKLM\System\CurrentControlSet\Services
+ cmdServicec:\winnt\d2hn\command.exe
+ DefWatchVirus Definition DaemonSymantec Corporationc:\program files\symantec_client_security\symantec antivirus\defwatch.exe
+ Network Monitorc:\program files\network monitor\netmon.exe
+ Norton AntiVirus Server为 Symantec Client Security 提供实时病毒扫描、报告和管理功能。Symantec Corporationc:\program files\symantec_client_security\symantec antivirus\rtvscan.exe
HKLM\System\CurrentControlSet\Services
+ dmioNT Disk Manager I/O DriverVERITAS Software Corp.c:\winnt\system32\drivers\dmio.sys
+ dmloadNT Disk Manager Startup DriverVERITAS Software Corp.c:\winnt\system32\drivers\dmload.sys
+ FETNDISBNDIS 5.0 miniport driverD-Link c:\winnt\system32\drivers\dlkfet5b.sys
+ i81xMiniport Driver for Intel(R) 810 Chipset Graphics DriverIntel Corporationc:\winnt\system32\drivers\i81xnt5.sys
+ NAVAPAutoProtectSymantec Corporationc:\program files\symantec_client_security\symantec antivirus\navap.sys
+ NAVAPELNAVAPELSymantec Corporationc:\program files\symantec_client_security\symantec antivirus\navapel.sys
+ NAVENGAV EngineSymantec Corporationc:\program files\common files\symantec shared\virusdefs\20060111.038\naveng.sys
+ NAVEX15AV EngineSymantec Corporationc:\program files\common files\symantec shared\virusdefs\20060111.038\navex15.sys
+ npkcryptnProtect KeyCrypt DriverINCA Internet Co., Ltd.c:\program files\tencent\qq\npkcrypt.sys
+ PtilinkDirect Parallel Link DriverParallel Technologies, Inc.c:\winnt\system32\drivers\ptilink.sys
+ SymEventSymantec Event LibrarySymantec Corporationc:\program files\symantec\symevent.sys
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
+ BITSc:\winnt\system32\g8040idqe80e0.dll
+ byvstc:\winnt\system32\byvst.dll
+ byxyxc:\winnt\system32\byxyx.dll
+ NavLogonc:\winnt\system32\navlogon.dll
