[2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Adware] C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\反间谍专家.LNK C:\PROGRAM FILES\3721\SKE\TROJANASSISTANT.EXE [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Trojan] C:\WINDOWS\SYSTEM32\YISHOU1.EXE [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [139LOVE] HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3E422F49-1566-40D3-B43D-077EF739AC32} [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Deskipn] HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{48E688C8-609F-4B08-944E-3C7FAB99CD08} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{F9AD9D67-EFA8-480E-8291-0163F3960DE7} [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [YisouToolbar] HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{115F6E46-FCBC-41ED-B3B5-3BDDD4AAB5E5} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{EF1D17A9-089F-40CC-8D64-7324CDEBA0DB} HKEY_CURRENT_USER\SOFTWARE\YISOU HKEY_CURRENT_USER\SOFTWARE\YISOU\SETTINGS [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [uusee] C:\DOCUMENTS AND SETTINGS\ALL USERS\「开始」菜单\UUSEE 网络电视.LNK C:\PROGRAM FILES\COMMON FILES\UUSEE C:\PROGRAM FILES\COMMON FILES\UUSEE\CHECK_CMD.EXE C:\PROGRAM FILES\COMMON FILES\UUSEE\COCODE.DLL C:\PROGRAM FILES\COMMON FILES\UUSEE\DOWNLOAD.DLL C:\PROGRAM FILES\COMMON FILES\UUSEE\IN_NET.DLL C:\PROGRAM FILES\COMMON FILES\UUSEE\MEDIACENTER.INI C:\PROGRAM FILES\COMMON FILES\UUSEE\MSH.DAT C:\PROGRAM FILES\COMMON FILES\UUSEE\OUT_MMSHTTP.DLL C:\PROGRAM FILES\COMMON FILES\UUSEE\RMSP011.AX C:\PROGRAM FILES\COMMON FILES\UUSEE\SEEPLAYER.OCX C:\PROGRAM FILES\COMMON FILES\UUSEE\TRAFFICLIGHT.DLL C:\PROGRAM FILES\COMMON FILES\UUSEE\UFDEMUX.AX C:\PROGRAM FILES\COMMON FILES\UUSEE\UFSOURCE.AX C:\PROGRAM FILES\COMMON FILES\UUSEE\UUPLAYER.EXE C:\PROGRAM FILES\COMMON FILES\UUSEE\UUPLAYER.OCX C:\PROGRAM FILES\COMMON FILES\UUSEE\UUPLAYER_2008_PATH.INI C:\PROGRAM FILES\COMMON FILES\UUSEE\UUSEEMEDIACENTER.DMP C:\PROGRAM FILES\COMMON FILES\UUSEE\UUSEEMEDIACENTER.DMZ C:\PROGRAM FILES\COMMON FILES\UUSEE\UUSEEMEDIACENTER.EXE C:\PROGRAM FILES\COMMON FILES\UUSEE\UUSEE_BASE_PATH.INI C:\PROGRAM FILES\COMMON FILES\UUSEE\UUSEE_BASE_UPDATE.INI C:\PROGRAM FILES\COMMON FILES\UUSEE\UUUPGRADE.EXE C:\PROGRAM FILES\COMMON FILES\UUSEE\UUUPGRADE.INI C:\PROGRAM FILES\COMMON FILES\UUSEE\UUUPGRADE.OCX C:\PROGRAM FILES\COMMON FILES\UUSEE\UUWEBPLAYER.OCX C:\PROGRAM FILES\COMMON FILES\UUSEE\VERMINI.INI C:\PROGRAM FILES\COMMON FILES\UUSEE\VERMINI_X.INI C:\PROGRAM FILES\COMMON FILES\UUSEE\VERMINI_X1.INI C:\PROGRAM FILES\COMMON FILES\UUSEE\VIDEOACCDLL.DLL HKEY_CLASSES_ROOT\CLSID\{28966B43-B5D0-4694-9E79-F5B4099F02D4} HKEY_CLASSES_ROOT\CLSID\{48CF8992-4161-49D6-9A9B-F1FDB3BAE74D} HKEY_CLASSES_ROOT\CLSID\{77910CD3-5447-4CCB-92DE-35BA8198BE81} HKEY_CLASSES_ROOT\CLSID\{F0E7BAF1-655E-4899-ACD4-10D055414CFB} HKEY_CLASSES_ROOT\INTERFACE\{03536919-5F7D-4506-80DF-144C74CB5B45} HKEY_CLASSES_ROOT\INTERFACE\{B9587E96-9349-4F58-A7D5-77E53811BDFD} HKEY_CLASSES_ROOT\INTERFACE\{E9475D64-4461-4A22-BD58-132AF1D7D565} HKEY_CLASSES_ROOT\INTERFACE\{F39804DC-F2B5-4E8B-92F1-45F7B5349C4C} HKEY_CLASSES_ROOT\MEDIA TYPE\EXTENSIONS\.UCF HKEY_CLASSES_ROOT\TYPELIB\{41E77C38-9383-404C-BC49-EDF2AEA4E163} HKEY_CLASSES_ROOT\TYPELIB\{BC85539C-48EA-4222-B6EE-8DA6897175DA} HKEY_CLASSES_ROOT\UUPLAYEROCX.UUPLAYEROCXCTRL.1 HKEY_CLASSES_ROOT\UUSEE HKEY_CLASSES_ROOT\UUUPGRADE.UUUPGRADECTRL.1 HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MENUEXT\使用UUSEE加速播放 HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MENUEXT\使用UUSEE下载 HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{28966B43-B5D0-4694-9E79-F5B4099F02D4} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{48CF8992-4161-49D6-9A9B-F1FDB3BAE74D} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{77910CD3-5447-4CCB-92DE-35BA8198BE81} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{F0E7BAF1-655E-4899-ACD4-10D055414CFB} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{03536919-5F7D-4506-80DF-144C74CB5B45} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{B9587E96-9349-4F58-A7D5-77E53811BDFD} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{E9475D64-4461-4A22-BD58-132AF1D7D565} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{F39804DC-F2B5-4E8B-92F1-45F7B5349C4C} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{41E77C38-9383-404C-BC49-EDF2AEA4E163} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{BC85539C-48EA-4222-B6EE-8DA6897175DA} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\UUPLAYEROCX.UUPLAYEROCXCTRL.1 HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\UUSEE HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\UUUPGRADE.UUUPGRADECTRL.1 HKEY_LOCAL_MACHINE\SOFTWARE\UUSEE HKEY_LOCAL_MACHINE\SOFTWARE\UUSEEUPDATE [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [SouHuToolbar] C:\WINDOWS\VCBAR.INF C:\WINDOWS\VCBAR11.DLL HKEY_CLASSES_ROOT\CLSID\{7A38130D-BEB7-4D60-BE7A-4C4AB6A85CD1} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{7A38130D-BEB7-4D60-BE7A-4C4AB6A85CD1} HKEY_CURRENT_USER\SOFTWARE\SOUHUU HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{7A38130D-BEB7-4D60-BE7A-4C4AB6A85CD1} [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Ebay Shop] HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BE9C13C3-9E46-4DB1-BC05-BD8DA44599F2} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\EBAYTOOLS [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [3721Keyword] C:\PROGRAM FILES\3721\ C:\PROGRAM FILES\3721\ALLIVEEX.DLL C:\PROGRAM FILES\3721\ALREX.DLL C:\PROGRAM FILES\3721\AUTOLIVE.DLL C:\PROGRAM FILES\3721\AUTOLIVE.INI C:\PROGRAM FILES\3721\AUTOLVSW.INI C:\PROGRAM FILES\3721\CNS01.DAT C:\PROGRAM FILES\3721\CNS03.DAT C:\PROGRAM FILES\3721\CNSM.DLL C:\PROGRAM FILES\3721\CNSMIN.DAT C:\PROGRAM FILES\3721\HELPER.DLL C:\PROGRAM FILES\3721\NOTIFIER.DLL C:\PROGRAM FILES\3721\WINDEX.DAT C:\PROGRAM FILES\3721\WINHEX.DAT C:\WINDOWS\DOWNLOADED PROGRAM FILES\3721\ C:\WINDOWS\DOWNLOADED PROGRAM FILES\3721\CNS02.DAT C:\WINDOWS\DOWNLOADED PROGRAM FILES\3721\CNSMIN.INF C:\WINDOWS\DOWNLOADED PROGRAM FILES\ASSIS.ICO C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNS02.DAT C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSDTU.DLL C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSHINT.CAB C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSHINT.DLL C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSHOOK.DLL C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSHOOK.DLL.1.LOG C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSHOOK.DLL.2.LOG C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSIO.DLL C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.INI C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINAL.CAB C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINCG.INI C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINDT.CAB C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINDT.DLL C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINEX.CAB C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINEX.DLL C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINEX.INI C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINHK.CAB C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINIO.CAB C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINIO.DLL C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINUP.CAB C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSPLUS.CAB C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSPLUS.DLL C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSUP.INI C:\WINDOWS\DOWNLOADED PROGRAM FILES\KEEPMAIN.DLL C:\WINDOWS\DOWNLOADED PROGRAM FILES\KEEPMAINM.CAB C:\WINDOWS\DOWNLOADED PROGRAM FILES\LISTINFO.DAT C:\WINDOWS\DOWNLOADED PROGRAM FILES\SMS.ICO C:\WINDOWS\DOWNLOADED PROGRAM FILES\TAOBAO.ICO C:\WINDOWS\DOWNLOADED PROGRAM FILES\WIDGET.ICO C:\WINDOWS\DOWNLOADED PROGRAM FILES\YAHOOMSG.ICO C:\WINDOWS\DOWNLOADED PROGRAM FILES\YMAIL.ICO C:\WINDOWS\SYSTEM32\CNS.DAT C:\WINDOWS\SYSTEM32\CNS.DLL C:\WINDOWS\SYSTEM32\CNS.EXE C:\WINDOWS\SYSTEM32\DRIVERS\CNSMINKP.SYS C:\WINDOWS\SYSTEM32\DRIVERS\MILANFM.SYS C:\WINDOWS\YCNS.DAT HKEY_CLASSES_ROOT\AUTOLIVE.LIVE HKEY_CLASSES_ROOT\AUTOLIVE.LIVE.1 HKEY_CLASSES_ROOT\CLSID\{1B0E7716-898E-48CC-9690-4E338E8DE1D3} HKEY_CLASSES_ROOT\CLSID\{7CA83CF1-3AEA-42D0-A4E3-1594FC6E48B2} HKEY_CLASSES_ROOT\CLSID\{ABEC6103-F6AC-43A3-834F-FB03FBA339A2} HKEY_CLASSES_ROOT\CLSID\{B83FC273-3522-4CC6-92EC-75CC86678DA4} HKEY_CLASSES_ROOT\CLSID\{D157330A-9EF3-49F8-9A67-4141AC41ADD4} HKEY_CLASSES_ROOT\CNSHELPER.CH HKEY_CLASSES_ROOT\CNSHELPER.CH.1 HKEY_CLASSES_ROOT\CNSMINHK.CNSHOOK HKEY_CLASSES_ROOT\CNSMINHK.CNSHOOK.1 HKEY_CLASSES_ROOT\INTERFACE\{1BB0ABBE-2D95-4847-B9D8-6F90DE3714C1} HKEY_CLASSES_ROOT\INTERFACE\{48E688C8-609F-4B08-944E-3C7FAB99CD08} HKEY_CLASSES_ROOT\INTERFACE\{DF692509-D9EF-48A0-9CD0-3AA5B81F6F68} HKEY_CLASSES_ROOT\TYPELIB\{19069804-2CF0-4357-B696-BA6E9AAD99EF} HKEY_CLASSES_ROOT\TYPELIB\{A5ADEAE7-A8B4-4F94-9128-BF8D8DB5E927} HKEY_CLASSES_ROOT\TYPELIB\{AAB6BCE3-1DF6-4930-9B14-9CA79DC8C267} HKEY_CLASSES_ROOT\TYPELIB\{F9AD9D67-EFA8-480E-8291-0163F3960DE7} HKEY_CURRENT_USER\SOFTWARE\3721 HKEY_CURRENT_USER\SOFTWARE\3721\CNSMIN HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSAUTOUPDATE HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSENABLE HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSHINT HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSLIST HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSMENU HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\CNSRESET HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{507F9113-CD77-4866-BA92-0E86DA3D0B97} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{59BC54A2-56B3-44A0-93E5-432D58746E26} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{5D73EE86-05F1-49ED-B850-E423120EC338} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{6354ABE6-05F1-49ED-B850-E423120EC338} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{7CA83CF1-3AEA-42D0-A4E3-1594FC6E48B2} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{B83FC273-3522-4CC6-92EC-75CC86678DA4} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{D157330A-9EF3-49F8-9A67-4141AC41ADD4} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{ECF2E268-F28C-48D2-9AB7-8F69C11CCB71} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{FD00D911-7529-4084-9946-A29F1BDF4FE5} HKEY_LOCAL_MACHINE\SOFTWARE\3721 HKEY_LOCAL_MACHINE\SOFTWARE\3721\CNSMIN HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{1B0E7716-898E-48CC-9690-4E338E8DE1D3} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{7CA83CF1-3AEA-42D0-A4E3-1594FC6E48B2} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{ABEC6103-F6AC-43A3-834F-FB03FBA339A2} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{B83FC273-3522-4CC6-92EC-75CC86678DA4} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{D157330A-9EF3-49F8-9A67-4141AC41ADD4} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{1BB0ABBE-2D95-4847-B9D8-6F90DE3714C1} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{DF692509-D9EF-48A0-9CD0-3AA5B81F6F68} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{19069804-2CF0-4357-B696-BA6E9AAD99EF} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{A5ADEAE7-A8B4-4F94-9128-BF8D8DB5E927} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\ADVANCEDOPTIONS\!CNS HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{507F9113-CD77-4866-BA92-0E86DA3D0B97} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{59BC54A2-56B3-44A0-93E5-432D58746E26} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{5D73EE86-05F1-49ED-B850-E423120EC338} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{6354ABE6-05F1-49ED-B850-E423120EC338} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{ECF2E268-F28C-48D2-9AB7-8F69C11CCB71} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{FD00D911-7529-4084-9946-A29F1BDF4FE5} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\CNSMIN HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\ENUM\ROOT\LEGACY_CNSMINKP HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\ENUM\ROOT\LEGACY_MILANFM HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\CNSMINKP HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\MILANFM HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET002\ENUM\ROOT\LEGACY_CNSMINKP HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET002\ENUM\ROOT\LEGACY_MILANFM HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET002\SERVICES\CNSMINKP HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET002\SERVICES\MILANFM HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_CNSMINKP HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_MILANFM HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\CNSMINKP HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\MILANFM [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Yahoo Toolbar] C:\WINDOWS\ASSIST.DAT HKEY_CLASSES_ROOT\ASSIST.EASYASSIST HKEY_CLASSES_ROOT\ASSIST.EASYASSIST.1 HKEY_CLASSES_ROOT\CLSID\{6A915D6B-B187-4724-B753-F338D8A157C2} HKEY_CLASSES_ROOT\CLSID\{D4A45C16-5E43-4769-AE49-A218036960BB} HKEY_CLASSES_ROOT\TOOLBAND.BANDBUTTON HKEY_CLASSES_ROOT\TOOLBAND.BANDBUTTON.1 HKEY_CLASSES_ROOT\YPAGETR.PAGETRANSLATE HKEY_CLASSES_ROOT\YPAGETR.PAGETRANSLATE.1 HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{BB936323-19FA-4521-BA29-ECA6A121BC78} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{33BBE430-0E42-4F12-B075-8D21ACB10DCB} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{38928D50-8A48-44C2-945F-D2F23F771410} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{406F94F0-504F-4A40-8DFD-58B0666ABEBD} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{57421194-58FB-49AE-9B4F-FD48869B9AD4} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{62EED7C6-9F02-42F9-B634-98E2899E147B} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{F166BC04-3C84-44CC-A6E9-2315EC4844B9} HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{FE3ECAE7-0A37-4506-8A7D-3CC9A04D2CA8} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{6A915D6B-B187-4724-B753-F338D8A157C2} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{D4A45C16-5E43-4769-AE49-A218036960BB} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CNSHELPER.CH HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CNSHELPER.CH.1 HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CNSMINHK.CNSHOOK HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CNSMINHK.CNSHOOK.1 HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{AAB6BCE3-1DF6-4930-9B14-9CA79DC8C267} HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\SHELL EXTENSIONS\APPROVED\{C14F7681-33D8-11D3-A09B-00500402F30B} [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Trojan.SysTdSvr] C:\WINDOWS\SYSTEM32\DRIVERS\CNSSTD.SYS HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\ENUM\ROOT\LEGACY_CNSSTD HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET002\ENUM\ROOT\LEGACY_CNSSTD HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET002\SERVICES\CNSSTD HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_CNSSTD HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\CNSSTD [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [ZCOM娱乐空间] C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\FAVORITES\电子杂志_ZCOM佐罗网.LNK C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\「开始」菜单\ZCOM 杂志订阅器.LNK HKEY_CLASSES_ROOT\APPID\ZCOMAGENT.DLL HKEY_CLASSES_ROOT\APPID\{28868241-4EA9-471B-AF71-C93DF62624B7} HKEY_CLASSES_ROOT\CLSID\{3A7698F3-1BCC-4838-B3BF-EF4E3C5E209A} HKEY_CLASSES_ROOT\INTERFACE\{CAB93621-E61A-4145-B241-D9DD63631A57} HKEY_CLASSES_ROOT\TYPELIB\{6038123F-BCC2-496E-8708-E15831D1FF9C} HKEY_CLASSES_ROOT\ZCOMAGENT.ZCOMACTIVEX HKEY_CLASSES_ROOT\ZCOMAGENT.ZCOMACTIVEX.1 HKEY_CURRENT_USER\SOFTWARE\ZCOM HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\ZCOMAGENT.DLL HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\{28868241-4EA9-471B-AF71-C93DF62624B7} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{3A7698F3-1BCC-4838-B3BF-EF4E3C5E209A} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\INTERFACE\{CAB93621-E61A-4145-B241-D9DD63631A57} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{6038123F-BCC2-496E-8708-E15831D1FF9C} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\ZCOMAGENT.ZCOMACTIVEX HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\ZCOMAGENT.ZCOMACTIVEX.1 HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{4045D313-1D5E-4FE4-93A0-A34630B6A00B} [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Trojan.psw.avx] C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\~40BFCE.~~~ C:\WINDOWS\SYSTEM32\CSRSS.DLL C:\WINDOWS\TEMP\A.BAT C:\WINDOWS\TEMP\B.BAT C:\WINDOWS\TEMP\~0541E2.~~~ C:\WINDOWS\TEMP\~057864.~~~ C:\WINDOWS\TEMP\~05D2B9.~~~ C:\WINDOWS\TEMP\~06F81E.~~~ C:\WINDOWS\TEMP\~079374.~~~ C:\WINDOWS\TEMP\~0B5E37.~~~ C:\WINDOWS\TEMP\~410CF4.~~~ HKEY_CLASSES_ROOT\CLSID\{08223B03-1B38-4A33-A83A-A4D3CC1D6E4E} HKEY_CLASSES_ROOT\CLSID\{BA7EDF54-8408-4B21-B351-7B447B344BA4} HKEY_CLASSES_ROOT\CLSID\{E4814792-EFA3-4C20-93D0-8B130A59F9A8} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{08223B03-1B38-4A33-A83A-A4D3CC1D6E4E} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{BA7EDF54-8408-4B21-B351-7B447B344BA4} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{E4814792-EFA3-4C20-93D0-8B130A59F9A8} [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Fake IE HomePage] HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE\COMMAND\\REG_SZ01"%PROGRAMFILES%\INTERNET EXPLORER\IEXPLORE.EXE" [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [VIKA唯刊] HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Eyiruanjian Canliu] C:\WINDOWS\SYSTEM32\SELUR.ENC [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Trojan.xpserve.lsoss] C:\DOCUMENTS AND SETTINGS\ALL USERS\JJDF32.INI C:\DOCUMENTS AND SETTINGS\ALL USERS\JJJYDF16.INI [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Trojan.ytewcxzsw.wrew2ds] C:\WINDOWS\SYSTEM32\08223B03.CFG HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\ALIIMZ HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET002\SERVICES\ALIIMZ HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\ALIIMZ [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Trojan.bndmss.wmel32] HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\HBKERNEL32 HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET002\SERVICES\HBKERNEL32 HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\HBKERNEL32 [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Trojan.upnpsrv] HKEY_CLASSES_ROOT\CLSID\{122B901E-493F-4AD9-BC69-7DE8C3E52FCC} HKEY_CLASSES_ROOT\CLSID\{DA63E650-537C-4042-87BB-9D19D844680B} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{122B901E-493F-4AD9-BC69-7DE8C3E52FCC} HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{DA63E650-537C-4042-87BB-9D19D844680B} [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Unknown Trojan Horse/Virus] C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\25.TMP.BAT C:\WINDOWS\SYSTEM32\E1384213.DLL [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Maybe Useless object] C:\WINDOWS\SYSTEM32\DRIVERS\HBKERNEL32.SYS C:\WINDOWS\SYSTEM32\INTERNE.EXE C:\WINDOWS\SYSTEM32\NHMXAJKL.DLL C:\WINDOWS\SYSTEM32\YTEWCXZSW.DLL [2.8.2.8.1115 - 2.8.30.8.1115] 2008-12-13 21:22 [Infected System File,Can not Delete!] System Important File,Can not delete,Try Replace:C:\WINDOWS\SYSTEM32\MMC.EXE System Important File,Can not delete,Try Replace:C:\WINDOWS\SYSTEM32\RPCSS.DLL