[2.7.0.8.0415 - 2.7.0.8.0415] 2008-05-14 21:47 [Ebay Shop] C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\易趣购物.LNK C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\易趣购物.LNK HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BE9C13C3-9E46-4DB1-BC05-BD8DA44599F2} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{BE9C13C3-9E46-4DB1-BC05-BD8DA44599F2} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\EBAYTOOLS [2.7.0.8.0415 - 2.7.0.8.0415] 2008-05-14 21:47 [3721Keyword] HKEY_CLASSES_ROOT\CLSID\{B83FC273-3522-4CC6-92EC-75CC86678DA4} HKEY_CLASSES_ROOT\CNSHELPER.CH HKEY_CLASSES_ROOT\CNSHELPER.CH.1 HKEY_CLASSES_ROOT\INTERFACE\{BE08F6BC-C3E6-4149-BEB1-CB449E1B372E} HKEY_CLASSES_ROOT\INTERFACE\{DF692509-D9EF-48A0-9CD0-3AA5B81F6F68} HKEY_CLASSES_ROOT\TYPELIB\{4158DB95-DE71-41FF-BEA1-2C3D1C679DF1} HKEY_CLASSES_ROOT\TYPELIB\{AAB6BCE3-1DF6-4930-9B14-9CA79DC8C267} HKEY_CURRENT_USER\SOFTWARE\3721 HKEY_CURRENT_USER\SOFTWARE\3721\CNSMIN HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSAUTOUPDATE HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSENABLE HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSHINT HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSLIST HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSMENU HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSRESET HKEY_LOCAL_MACHINE\SOFTWARE\3721 HKEY_LOCAL_MACHINE\SOFTWARE\3721\CNSMIN HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{B83FC273-3522-4CC6-92EC-75CC86678DA4} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{BE08F6BC-C3E6-4149-BEB1-CB449E1B372E} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{DF692509-D9EF-48A0-9CD0-3AA5B81F6F68} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{4158DB95-DE71-41FF-BEA1-2C3D1C679DF1} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\ADVANCEDOPTIONS\!CNS HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\CNSMIN [2.7.0.8.0415 - 2.7.0.8.0415] 2008-05-14 21:47 [Unknown Trojan Horse/Virus] G:\AUTORUN.INF [2.7.0.8.0415 - 2.7.0.8.0415] 2008-05-14 21:47 [Access deny Object] C:\WINDOWS\SYSTEM32\COM\CSRSS.EXE C:\WINDOWS\SYSTEM32\DRIVERS\POP.SYS [2.7.0.8.0415 - 2.7.0.8.0415] 2008-05-14 21:47 [Yahoo Toolbar] C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\雅虎助手 C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\雅虎助手\ C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\雅虎助手\IE修复专家.LNK C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\雅虎助手\插件管理专家.LNK C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\雅虎助手\恢复IE外观.LNK C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\雅虎助手\清理IE地址栏.LNK C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\雅虎助手\清理上网痕迹.LNK C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\雅虎助手\雅虎助手.LNK C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\雅虎助手\在线帮助.LNK C:\DOCUMENTS AND SETTINGS\ZHAOXUE\「开始」菜单\程序\雅虎助手\在线升级.LNK C:\PROGRAM FILES\YAHOO!\ASSISTANT\ HKEY_CLASSES_ROOT\CLSID\{406F94F0-504F-4A40-8DFD-58B0666ABEBD} HKEY_CLASSES_ROOT\CLSID\{57421194-58FB-49AE-9B4F-FD48869B9AD4} HKEY_CLASSES_ROOT\INTERFACE\{EE8CEED0-A4D5-41AF-B131-48B0A90004CA} HKEY_CLASSES_ROOT\TYPELIB\{9E9914ED-D40B-4B63-AC3B-A22AB9DE158F} HKEY_CLASSES_ROOT\YAHOOASSISTBAR.ASSISTBAROBJ HKEY_CLASSES_ROOT\YAHOOASSISTBAR.ASSISTBAROBJ.1 HKEY_CLASSES_ROOT\YALIVE.LIVE HKEY_CLASSES_ROOT\YALIVE.LIVE.1 HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MENUEXT\雅虎搜索 HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{406F94F0-504F-4A40-8DFD-58B0666ABEBD} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{406F94F0-504F-4A40-8DFD-58B0666ABEBD} HKEY_CURRENT_USER\SOFTWARE\YAHOO\ASSISTANT HKEY_CURRENT_USER\SOFTWARE\YAHOO\ASSISTANT\ASSIST HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{406F94F0-504F-4A40-8DFD-58B0666ABEBD} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{57421194-58FB-49AE-9B4F-FD48869B9AD4} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CNSHELPER.CH HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CNSHELPER.CH.1 HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{EE8CEED0-A4D5-41AF-B131-48B0A90004CA} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{9E9914ED-D40B-4B63-AC3B-A22AB9DE158F} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{AAB6BCE3-1DF6-4930-9B14-9CA79DC8C267} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\YALIVE.LIVE HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\YALIVE.LIVE.1 HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\{406F94F0-504F-4A40-8DFD-58B0666ABEBD} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{406F94F0-504F-4A40-8DFD-58B0666ABEBD} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{FE3ECAE7-0A37-4506-8A7D-3CC9A04D2CA8} HKEY_LOCAL_MACHINE\SOFTWARE\YAHOO\ASSISTANT HKEY_LOCAL_MACHINE\SOFTWARE\YAHOO\ASSISTANT\ASSIST HKEY_LOCAL_MACHINE\SOFTWARE\YAHOO\ASSISTANT\YALIVE