
[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[7939/9505]
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{54EBD53A-9BC1-480B-966A-843A333CA162}

[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[G_Server]
C:\WINDOWS\MAYABABY

[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[Trojan]
C:\WINDOWS\VISTA\RUNSTATE\RUNSTATE.EXE

[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[Trojan.psw.avx]
HKEY_CLASSES_ROOT\CLSID\{41132075-71DD-4F45-8985-5EAD7426C81D}
HKEY_CLASSES_ROOT\TYPELIB\{C1E40277-027F-46E4-9BB5-88B6C8E71BA3}
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{41132075-71DD-4F45-8985-5EAD7426C81D}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{41132075-71DD-4F45-8985-5EAD7426C81D}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{C1E40277-027F-46E4-9BB5-88B6C8E71BA3}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{41132075-71DD-4F45-8985-5EAD7426C81D}

[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[Adware.yasl.luckyie]
HKEY_CLASSES_ROOT\IEHPR.INVOKE
HKEY_CLASSES_ROOT\IEHPR.INVOKE.1

[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[Trojan.ytewcxzsw.wrew2ds]
HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\ENUM\ROOT\LEGACY_WBWIN
HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\WBWIN
HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\ENUM\ROOT\LEGACY_WBWIN
HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\WBWIN
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_WBWIN
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WBWIN

[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[Trojan.DesktopWin]
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{0E0A0CA7-FB0E-44AB-AEBA-6025B0F530A0}

[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[Trojan.inityuser.go10]
C:\WINDOWS\SYSTEM32\MYWFHIT.INI

[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[Trojan.SysInfor.lsess]
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{001CF5E9-4000-4287-8E58-1770E7FB0B07}

[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[zzToolBar]
C:\PROGRAM FILES\ZZTOOLBAR\
C:\PROGRAM FILES\ZZTOOLBAR\IP.DAT
C:\PROGRAM FILES\ZZTOOLBAR\SEARCHENGINECONFIG
C:\PROGRAM FILES\ZZTOOLBAR\TOOLBAND.DLL
C:\PROGRAM FILES\ZZTOOLBAR\TOOLBAR_BHO.DLL
C:\PROGRAM FILES\ZZTOOLBAR\UISGRLFILE.DAT
C:\PROGRAM FILES\ZZTOOLBAR\URLCACHE.INI
HKEY_CLASSES_ROOT\CLSID\{0A1230F1-EB52-4CA3-9D34-DE2ABC2EED35}
HKEY_CLASSES_ROOT\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}
HKEY_CLASSES_ROOT\SEARCHBAR.SEARCHOBJ
HKEY_CLASSES_ROOT\SEARCHBAR.SEARCHOBJ.1
HKEY_CLASSES_ROOT\TOOLBAR_BHO.IETOOLBAR
HKEY_CLASSES_ROOT\TOOLBAR_BHO.IETOOLBAR.1
HKEY_CLASSES_ROOT\TYPELIB\{065683C4-C71A-47F1-830B-7D9309D3913D}
HKEY_CLASSES_ROOT\TYPELIB\{5297E901-1DF2-4A93-9874-A4F95FD58945}
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{0A1230F1-EB52-4CA3-9D34-DE2ABC2EED35}
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{489873CE-F3E1-44A3-8E89-04BE26BE4446}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{0A1230F1-EB52-4CA3-9D34-DE2ABC2EED35}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{065683C4-C71A-47F1-830B-7D9309D3913D}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{5297E901-1DF2-4A93-9874-A4F95FD58945}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\{0A1230F1-EB52-4CA3-9D34-DE2ABC2EED35}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{489873CE-F3E1-44A3-8E89-04BE26BE4446}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\网站排名工具条
HKEY_LOCAL_MACHINE\SOFTWARE\ZZTOOLBAR

[2.8.0.8.0728 - 2.8.1.8.0803]
2008-08-04 23:46
[Unknown Trojan Horse/Virus]
C:\WINDOWS\TASKS\E41AC.JOB
C:\WINDOWS\TASKS\E41B.JOB
C:\WINDOWS\TASKS\E41DC.JOB
C:\WINDOWS\TASKS\E41SC.JOB