[2.8.2.8.1115 - 2.8.42.8.1214] 2008-12-15 20:33 [Hack Software] C:\SYSTEM VOLUME INFORMATION\_RESTORE{7619898A-B5C3-490F-A9B0-454B4418678B}\RP120\A0014807.DLL C:\SYSTEM VOLUME INFORMATION\_RESTORE{7619898A-B5C3-490F-A9B0-454B4418678B}\RP120\A0014957.DLL C:\WINDOWS\SYSTEM32\867.DLL [2.8.2.8.1115 - 2.8.42.8.1214] 2008-12-15 20:33 [Trojan] C:\SYSTEM VOLUME INFORMATION\_RESTORE{7619898A-B5C3-490F-A9B0-454B4418678B}\RP120\A0014808.DLL C:\SYSTEM VOLUME INFORMATION\_RESTORE{7619898A-B5C3-490F-A9B0-454B4418678B}\RP120\A0014809.DLL [2.8.2.8.1115 - 2.8.42.8.1214] 2008-12-15 20:33 [3721Keyword] C:\WINDOWS\SYSTEM32\CNSBILL.VBR C:\WINDOWS\SYSTEM32\CNSDATA.VBR C:\WINDOWS\SYSTEM32\CNSGL.VBR C:\WINDOWS\SYSTEM32\CNSPJ.VBR C:\WINDOWS\SYSTEM32\CNSSYSTEM.VBR C:\WINDOWS\SYSTEM32\CNSXJ.VBR C:\WINDOWS\SYSTEM32\CNSYH.VBR [2.8.2.8.1115 - 2.8.42.8.1214] 2008-12-15 20:33 [Eyiruanjian Canliu] C:\WINDOWS\SYSTEM32\DRIVERS\10.TXT C:\WINDOWS\SYSTEM32\DRIVERS\11.TXT C:\WINDOWS\SYSTEM32\DRIVERS\12.TXT C:\WINDOWS\SYSTEM32\DRIVERS\13.TXT C:\WINDOWS\SYSTEM32\DRIVERS\14.TXT C:\WINDOWS\SYSTEM32\DRIVERS\15.TXT C:\WINDOWS\SYSTEM32\DRIVERS\16.TXT C:\WINDOWS\SYSTEM32\DRIVERS\17.TXT C:\WINDOWS\SYSTEM32\DRIVERS\18.TXT C:\WINDOWS\SYSTEM32\DRIVERS\19.TXT C:\WINDOWS\SYSTEM32\DRIVERS\20.TXT C:\WINDOWS\SYSTEM32\DRIVERS\21.TXT C:\WINDOWS\SYSTEM32\DRIVERS\22.TXT C:\WINDOWS\SYSTEM32\DRIVERS\23.TXT C:\WINDOWS\SYSTEM32\DRIVERS\24.TXT C:\WINDOWS\SYSTEM32\DRIVERS\25.TXT C:\WINDOWS\SYSTEM32\DRIVERS\26.TXT C:\WINDOWS\SYSTEM32\DRIVERS\27.TXT C:\WINDOWS\SYSTEM32\DRIVERS\28.TXT C:\WINDOWS\SYSTEM32\DRIVERS\29.TXT [2.8.2.8.1115 - 2.8.42.8.1214] 2008-12-15 20:33 [Risk.Ressdt.srv] C:\WINDOWS\SYSTEM32\DRIVERS\RESSDT.SYS [2.8.2.8.1115 - 2.8.42.8.1214] 2008-12-15 20:33 [Trojan.dwprssoz.kavshell] HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\ENUM\ROOT\LEGACY_RESSDT HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\RESSDT HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\ENUM\ROOT\LEGACY_RESSDT HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\RESSDT HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_RESSDT HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\RESSDT [2.8.2.8.1115 - 2.8.42.8.1214] 2008-12-15 20:33 [Trojan.ytewcxzsw.wrew2ds] C:\WINDOWS\SYSTEM32\KILLKB.DLL HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\ALIIMZ HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET003\SERVICES\ALIIMZ HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\ALIIMZ [2.8.2.8.1115 - 2.8.42.8.1214] 2008-12-15 20:33 [Unknown Trojan Horse/Virus] C:\1.EXE C:\AUTORUN.INF C:\WINDOWS\ALG.EXE D:\1.EXE D:\AUTORUN.INF E:\1.EXE E:\AUTORUN.INF [2.8.2.8.1115 - 2.8.42.8.1214] 2008-12-15 20:33 [Infected System File,Can not Delete!] System Important File,Can not delete,Try Replace:C:\WINDOWS\EXPLORER.EXE