
[2.8.2.8.1115 - 2.8.35.8.1125]
2008-11-26 13:10
[cpush]
C:\PROGRAM FILES\COMMON FILES\PUSHWARE\UNINST.EXE

[2.8.2.8.1115 - 2.8.35.8.1125]
2008-11-26 13:10
[uusee]
HKEY_CLASSES_ROOT\ARMP.ARMPCTRL.1
HKEY_CLASSES_ROOT\CLSID\{70A2E5FE-981E-4518-83C7-9324DC957DA4}
HKEY_CLASSES_ROOT\CLSID\{77435D56-534E-46A8-B8DF-201A82DD3886}
HKEY_CLASSES_ROOT\CLSID\{8BBB5505-250D-486D-BB49-F74141880490}
HKEY_CLASSES_ROOT\CLSID\{A37BD130-3C8A-4950-9672-8636DE983871}
HKEY_CLASSES_ROOT\CLSID\{BB22E7B6-54E1-4C4D-ABF7-99193550A3F4}
HKEY_CLASSES_ROOT\CLSID\{CE8ED243-0078-41A2-B56C-EC9CF0E887C2}
HKEY_CLASSES_ROOT\CLSID\{D5CD69C4-F983-46E2-AF79-455E892729FA}
HKEY_CLASSES_ROOT\CLSID\{DC7094C6-8F61-42ED-AECE-63F5EEF647C5}
HKEY_CLASSES_ROOT\INTERFACE\{19D850BA-629D-4604-B0D2-259E812C7ACF}
HKEY_CLASSES_ROOT\INTERFACE\{308F2914-9768-402C-A974-79BD2D7D7F71}
HKEY_CLASSES_ROOT\INTERFACE\{66E3F94C-8C8D-4BEE-A254-E6B14B38F5E9}
HKEY_CLASSES_ROOT\INTERFACE\{7A8B28FF-7226-40F6-B1E4-DF95D7D2FA01}
HKEY_CLASSES_ROOT\TYPELIB\{310AAB21-342C-4C3F-BDF4-05E68B224974}
HKEY_CLASSES_ROOT\TYPELIB\{D6452F23-F10F-4EA3-B03F-56ACDCC3511C}
HKEY_CLASSES_ROOT\UPDATEC2.UPDATEC2CTRL.1
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\ARMP.ARMPCTRL.1
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{70A2E5FE-981E-4518-83C7-9324DC957DA4}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{77435D56-534E-46A8-B8DF-201A82DD3886}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{8BBB5505-250D-486D-BB49-F74141880490}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{A37BD130-3C8A-4950-9672-8636DE983871}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{BB22E7B6-54E1-4C4D-ABF7-99193550A3F4}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{CE8ED243-0078-41A2-B56C-EC9CF0E887C2}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{D5CD69C4-F983-46E2-AF79-455E892729FA}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{DC7094C6-8F61-42ED-AECE-63F5EEF647C5}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{19D850BA-629D-4604-B0D2-259E812C7ACF}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{308F2914-9768-402C-A974-79BD2D7D7F71}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{66E3F94C-8C8D-4BEE-A254-E6B14B38F5E9}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{7A8B28FF-7226-40F6-B1E4-DF95D7D2FA01}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{310AAB21-342C-4C3F-BDF4-05E68B224974}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{D6452F23-F10F-4EA3-B03F-56ACDCC3511C}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\UPDATEC2.UPDATEC2CTRL.1

[2.8.2.8.1115 - 2.8.35.8.1125]
2008-11-26 13:10
[ZCOM娱乐空间]
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP MANAGEMENT\ARPCACHE\ZCOM 杂志订阅器

[2.8.2.8.1115 - 2.8.35.8.1125]
2008-11-26 13:10
[Trojan.psw.avx]
C:\PROGRAM FILES\INTERNET EXPLORER\VNENT64.JMP
HKEY_CLASSES_ROOT\CLSID\{BA7EDF54-8408-4B21-B351-7B447B344BA4}
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{202AEF39-2BFA-4A5F-B526-390FDE0BC675}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{BA7EDF54-8408-4B21-B351-7B447B344BA4}

[2.8.2.8.1115 - 2.8.35.8.1125]
2008-11-26 13:10
[Eyiruanjian Canliu]
C:\WINDOWS\SYSTEM32\122B901E.CFG
C:\WINDOWS\SYSTEM32\16AF66EB.CFG
C:\WINDOWS\SYSTEM32\201476D0.CFG
C:\WINDOWS\SYSTEM32\2EF0D734.CFG
C:\WINDOWS\SYSTEM32\34A25F04.CFG
C:\WINDOWS\SYSTEM32\3B8DA919.CFG
C:\WINDOWS\SYSTEM32\4FBFD5A4.CFG
C:\WINDOWS\SYSTEM32\58FF3024.CFG
C:\WINDOWS\SYSTEM32\66AFCB56.CFG
C:\WINDOWS\SYSTEM32\6E3FCC92.CFG
C:\WINDOWS\SYSTEM32\8566F82E.CFG
C:\WINDOWS\SYSTEM32\9F684DE8.CFG
C:\WINDOWS\SYSTEM32\B3721C07.CFG
C:\WINDOWS\SYSTEM32\D7C79813.CFG
C:\WINDOWS\SYSTEM32\DA63E650.CFG
C:\WINDOWS\SYSTEM32\E4814792.CFG
C:\WINDOWS\SYSTEM32\KN.TXT

[2.8.2.8.1115 - 2.8.35.8.1125]
2008-11-26 13:10
[Trojan.ytewcxzsw.wrew2ds]
C:\WINDOWS\SYSTEM32\CMGOT.DLL
C:\WINDOWS\SYSTEM32\CMGOT.EXE
C:\WINDOWS\SYSTEM32\DRIVERS\ALIIMZ

[2.8.2.8.1115 - 2.8.35.8.1125]
2008-11-26 13:10
[TROJAN FILES 3]
HKEY_CLASSES_ROOT\CLSID\{2EF0D734-21FD-4225-A1A2-BCD296182AAF}
HKEY_CLASSES_ROOT\CLSID\{66AFCB56-FAA9-42D2-8C72-2767A46C7FA8}
HKEY_CLASSES_ROOT\CLSID\{DFEC5CB7-E2AA-4B0A-BEB3-D140E59ED53A}
HKEY_CLASSES_ROOT\CLSID\{E0D39066-96D7-4891-8527-488ADAFCD60F}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{2EF0D734-21FD-4225-A1A2-BCD296182AAF}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{66AFCB56-FAA9-42D2-8C72-2767A46C7FA8}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{DFEC5CB7-E2AA-4B0A-BEB3-D140E59ED53A}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{E0D39066-96D7-4891-8527-488ADAFCD60F}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\SHELLEXECUTEHOOKS\{66AFCB56-FAA9-42D2-8C72-2767A46C7FA8}

[2.8.2.8.1115 - 2.8.35.8.1125]
2008-11-26 13:10
[Trojan.mmhtml.error386]
HKEY_CLASSES_ROOT\CLSID\{16AF66EB-93C8-49F9-BB09-B4F87CEDCE46}
HKEY_CLASSES_ROOT\CLSID\{201476D0-2B18-462E-AB9F-3E2B0CC8732B}
HKEY_CLASSES_ROOT\CLSID\{3B8DA919-1139-4B10-AD8F-91E8FBCFD375}
HKEY_CLASSES_ROOT\CLSID\{4FBFD5A4-5FE8-4444-8BD9-FD0FAFA64F96}
HKEY_CLASSES_ROOT\CLSID\{A1A6BC2E-C6A1-43C1-8884-A31D772F42B8}
HKEY_CLASSES_ROOT\CLSID\{AD794E6B-90B7-4F9D-8FD6-0C16E3298FF2}
HKEY_CLASSES_ROOT\CLSID\{B8E83D3C-9466-4091-9AD1-1F89418A6EB7}
HKEY_CLASSES_ROOT\CLSID\{E1D19FCC-4777-4D71-B863-6A0A5B4E59BC}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{16AF66EB-93C8-49F9-BB09-B4F87CEDCE46}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{201476D0-2B18-462E-AB9F-3E2B0CC8732B}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{3B8DA919-1139-4B10-AD8F-91E8FBCFD375}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{4FBFD5A4-5FE8-4444-8BD9-FD0FAFA64F96}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{A1A6BC2E-C6A1-43C1-8884-A31D772F42B8}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{AD794E6B-90B7-4F9D-8FD6-0C16E3298FF2}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{B8E83D3C-9466-4091-9AD1-1F89418A6EB7}
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{E1D19FCC-4777-4D71-B863-6A0A5B4E59BC}

[2.8.2.8.1115 - 2.8.35.8.1125]
2008-11-26 13:10
[Maybe Useless object]
C:\PROGRAM FILES\COMMON FILES\PUSHWARE\CPUSH.DLL
C:\WINDOWS\SYSTEM32\19B5406.SYS
C:\WINDOWS\SYSTEM32\66AFCB56.DLL
C:\WINDOWS\SYSTEM32\ALULIN.EXE
C:\WINDOWS\SYSTEM32\CA99D57.SYS
C:\WINDOWS\SYSTEM32\SAFEMON0.SYS