开头数字为7

O16 - DPF: {70522FA2-4656-11D5-B0E9-0050DAC24E8F}-
hoop://download.iwon.com/ct/pm3/iwonpm_8_1,0,2,5.cab  not-a-virus:AdvWare.Toolbar.MyWay.b
hoop://www.iwon.com/ct/pm2/iwonpm1,0,2,3.cab  not-a-virus:AdvWare.IWon

O16 - DPF: {7068D82B-D5EA-1ECF-6309-26374E626C93}-
hoop://69.50.188.54/1/gdnCN208.exe  Trojan.Win32.Dialer.ay

O16 - DPF: {706F3805-27D7-478D-80E5-E25D2BB030B3}-(VacPro.internazionale_ver3)
hoop://www.advnt01.com/dialer/internazionale_ver3.CAB TrojanClicker.Win32.Adpower.b

O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B}-(GSDACtl Class)
hoops://www.gamespyid.com/alaunch.cab  not-a-virus:RiskWare.Downloader.SpyGame
hoop://launch.gamespyarcade.com/software/launch/alaunch.cab  not-a-virus:RiskWare.Downloader.SpyGame

O16 - DPF: {712094AA-62D9-01BE-B407-697709135240}-
hoop://82.179.166.72/1/gdnUS208.exe  Trojan.Win32.Dialer.ay

O16 - DPF: {715B586F-8A7D-784C-1ECF-75631232B583}-
hoop://213.159.117.150/1/gdnUS14.exe  Trojan.Win32.Dialer.ay

O16 - DPF: {71926494-983B-17F3-1B61-65BE1593CCBF}-
hoop://213.159.117.150/1/gdnUS14.exe  Trojan.Win32.Dialer.ay

O16 - DPF: {73ED84D5-7AC8-9BE1-E696-6DD66CE722C0}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/022/kyqczoce.cab  Trojan.Win32.TalkStocks.a

O16 - DPF: {73F0FD85-BD47-4A95-86D1-DE38860462C1}-(PremiumHTML Class)
hoop://213.254.243.5/data/dialercab/IberoDialerHTML.cab  not-a-virus:PornWare.Dialer.IberoDial

O16 - DPF: {75D1F3B2-2A21-11D7-97B9-0010DC2A6243}-(SecureLogin.SecureControl)
hoop://secure2.comned.com/signuptemplates/ActiveSecurity.cab  VirTool.Win32.Collector

O16 - DPF: {75D79D57-B6BC-2CAE-90C0-29B25C15F014}-
hoop://82.179.166.72/1/gdnCN208.exe  Trojan.Win32.Dialer.ay

O16 - DPF: {78C53944-60C9-7F92-CD75-5AA57D10E0D0}-
hoop://82.179.166.72/1/gdnCN208.exe  Trojan.Win32.Dialer.ay

O16 - DPF: {79849612-A98F-45B8-95E9-4D13C7B6B35C}-(Loader2 Control)
hoop://static.topconverting.com/activex/loader2.ocx  Trojan-Downloader.Win32.Agent.ex
hoop://67.19.185.246/i/1/loader2.ocx  Trojan-Downloader.Win32.Agent.ex

O16 - DPF: {7A7FF9DC-69EA-425E-AA1F-ECCD44F58AFF}-
hoop://media.euniverse.com/cursorzone/files/pilgrimhat_setup_td035.cab
TrojanDownloader.Win32.Keenval 和 TrojanDownloader.Win32.Keenval.c

O16 - DPF: {7AFFC7A3-7E55-7463-6A7D-43A96A972CB7}-
hoop://213.159.117.150/1/gdnUS14.exe  Trojan.Win32.Dialer.ay

O16 - DPF: {7B6A80DC-F6C3-0864-35F3-34583AFD0D89}-
hoop://213.159.117.150/1/gdnUS14.exe  Trojan.Win32.Dialer.ay

O16 - DPF: {7D267CC5-37FC-7F71-A131-45B97A4F4BEA}-
hoop://82.179.166.72/1/gdnCN208.exe  Trojan.Win32.Dialer.ay

O16 - DPF: {7E6692C9-E45C-5347-35B0-2F5100570ECC}-
hoop://82.179.166.72/1/gdnUS208.exe  Trojan.Win32.Dialer.ay

O16 - DPF: {7EEA54BA-9308-26D0-BE93-BADD1B28DF1E}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/031/zkhtrzah.cab  Trojan.Win32.TalkStocks.a

开头数字为8

O16 - DPF: {823EA0D2-42C1-43C0-8F25-728CBC5E2195}-
hoop://media.euniverse.com/cursorzone/files/poo_setup_td035.cab TrojanDownloader.Win32.Keenval.c

O16 - DPF: {841A9192-5690-11D4-A258-0040954A01BE}-(DialXSCtl Object)
hoop://dialxs.nl/install/dialxs.ocx  not-a-virus:PornWare.Dialer.Generic
hoop://www.x0.nl/install2/dialxs.ocx  not-a-virus:PornWare.Dialer.DialXS.a

O16 - DPF: {8522F9B3-38C5-4AA4-AE40-7401F1BBC851}-
hoop://www.sizzlingcity.com/movies/acrobatic_sex.cab not-a-virus:PornWare.Dialer.Generic
hoop://www.40best.com/Free_Mp3search.exe  TrojanDownloader.Win32.Small.bp
hoop://www.musicmass.com/MP3_Plugin.exe  TrojanDownloader.Win32.Small.bp
hoop://2passwords.com/all_FREE_xxx.exe  not-a-virus:PornWare.Dialer.Generic
hoop://216.65.38.226/Download_Plugin.exe  TrojanDownloader.Win32.Swizzor.c
hoop://198.143.27.5/USA.cab  not-a-virus:PornWare.Dialer.Generic
hoop://www.hollywood-hoes.com/members/celebs-nude.cab  not-a-virus:PornWare.Dialer.AsianRaw.a
hoop://38.144.58.37/gb/xxx.cab  Trojan.Win32.Dialer.g
hoop://198.143.27.15/xxxsite/05274.cab  Trojan.Win32.Dialer.g
hoop://198.143.27.16/xxxpics.cab  Trojan.Win32.Dialer.g
hoop://mywebpage.netscape.com/fullalbumsplugin/full_albums.exe
TrojanDownloader.Win32.Swizzor.c
hoop://198.143.27.5/Japan.cab  not-a-virus:PornWare.Dialer.AsianRaw.k

O16 - DPF: {8522F9B3-38C5-4AA4-AE40-7401F1BBC898}-
hoop://www.kogalu.com/sou/xinternz/max.exe  TrojanDownloader.Win32.Sandesa.11

O16 - DPF: {855FB119-4791-423B-BC32-BA7E9F037BB1}-(DialerX Control)
hoop://www.sweet-honey.net/nb/DialerX.cab  virus:RiskWare.Dialer.Telemedia.b

O16 - DPF: {8522F9B3-38C5-4AA4-AE40-7401F1BBC899}-
hoop://www.kogalu.com/sou/xkana/sex.exe  Trojan.Win32.Dialer.af

O16 - DPF: {860489A4-76CF-496C-ACA6-534F391D5332}-(Helper Class)
hoop://www.commonname.com/english/toolbar/cnbabeb3.cab  not-a-virus:AdvWare.ToolBar.CommonName.a

O16 - DPF: {861FDA2A-2B57-4BDA-8B8B-305C9D5D8604}-(_Multimedia Player)
hoop://www.pussyharem.com/stream/mmp.cab  上报

O16 - DPF: {8699D723-6DC6-47D3-B55C-489BA006B917}-
hoop://tdmy.com/180/webinstaller.exe  TrojanDownloader.Win32.Swizzor.h

O16 - DPF: {86EEF11E-FF16-48CE-B1A2-474B663041A9}-
hoop://acces-direct.net/20222/adh1_sexarea.exe  not-a-virus:PornWare.Dialer.Generic

O16 - DPF: {8702D9E1-890B-4BF2-A233-FA44E582B2DE}-(Dialer_activex Control)
hoop://vad.mainentrypoint.com/dialer/bin/CE10000/TEST/dialer_activex.cab
TrojanDownloader.Win32.Small.nb

O16 - DPF: {87067F04-DE4C-4688-BC3C-4FCF39D609E7}-
hoop://download.websearch.com/Dnl/T_50020/QDow_AS2.cab  TrojanDownloader.Win32.QDown.l
hoop://download.websearch.com/Dnl/T_50138/QDow_AS2.cab  TrojanDownloader.Win32.QDown.l

O16 - DPF: {8721F16D-CBF8-4CE5-B924-18D64E12E77E}-(BDEInstallMan3 Class)
hoop://www.altnet.com/install/dman4.cab  not-a-virus:AdWare.Altnet.a

O16 - DPF: {87D1A6EF-8CBC-458A-84B5-0333562418CD}-
hoop://www.clicktracking.info/ctadl1.cab  TrojanDownloader.Win32.Small.ia

O16 - DPF: {886DDE35-E955-11D0-A707-000000521958}-
hoop://69.56.176.78/webplugin.cab  TrojanDownloader.Win32.OneClickNetSearch.e
（新版为TrojanDownloader.Win32.OneClickNetSearch.f）

O16 - DPF: {88C51E90-8E9C-4C96-8A45-574D88B63FAF}-(Matrix Class)
hoop://acceso.masminutos.com/aplicacion.cab  TrojanDownloader.Win32.Perfiler.b
hoop://acceso.masminutos.com/laaplicacion.cab  TrojanDownloader.Win32.Perfiler.b
(新版为TrojanDownloader.Win32.Perfiler.e)

O16 - DPF: {8B22270A-71D9-4AB9-B11A-2EA1E5292F42}-
hoop://www.fullmovies.nl/tools/videoplayer/player.cab  Trojan.Win32.Dialer.cp

O16 - DPF: {8C6C6922-6258-44AC-9912-53964AC55272}-(xload Class)
hoop://217.160.140.67/download/xloader8.cab  TrojanDownloader.Win32.Xatl.a
hoop://217.160.140.67/download/xloader10.cab  TrojanDownloader.Win32.Xatl.b

开头数字为9

O16 - DPF: {9076A11F-5EA6-4A67-BDE9-8D3C7C453DAC}-
hoop://www.fizzlewizzle.com/installfiles/powertools.cab  TrojanDownloader.Win32.VB.es
hoop://www.thecoolbar.com/installfiles/coolbar.cab  TrojanDownloader.Win32.VB.eu

O16 - DPF: {907CA0E5-CE84-11D6-9508-02608CDD2846}-(Squire Class)
hoop://update.searchsquire.com/SearchSquire33.CAB not-a-virus:AdvWare.SearchSquire

O16 - DPF: {912EE662-9BDF-DBCA-9FEC-CC133D477FFF}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/001/rnmrnkoe.cab Trojan.Win32.TalkStocks.a

O16 - DPF: {91413D86-9F27-402C-B5E3-DEBDD122C339}-
hoop://content.netvenda.com/sites/games-intl/at/games4.cab  Trojan.Win32.Dialui
[注：从games1.cab到games40.cab均是]

O16 - DPF: {91433D86-9F27-402C-B5E3-DEBDD122C339}-
hoop://www.netvenda.com/sites/games-intl/ca/games1.cab  Trojan.Win32.Dialui
hoop://www.netvenda.com/sites/games-intl/ca/games2.cab  Trojan.Win32.Dialui
hoop://www.netvenda.com/sites/games-intl/ca/games3.cab  Trojan.Win32.Dialui
hoop://www.netvenda.com/sites/games-intl/ca/games4.cab  Trojan.Win32.Dialui
hoop://www.netvenda.com/sites/games-intl/de/games4.cab  Trojan.Win32.Dialui
hoop://www.netvenda.com/sites/games-intl/pl/games4.cab  Trojan.Win32.Dialui
hoop://www.netvenda.com/sites/games-intl/cn/games2.cab  Trojan.Win32.Dialui

O16 - DPF: {922667B5-A367-4531-9F25-1C48F9B36593}-
hoop://media.euniverse.com/cursorzone/files/drumstick_setup_td035.cab
TrojanDownloader.Win32.Keenval 和 TrojanDownloader.Win32.Keenval.c

O16 - DPF: {92F02779-6D88-4958-8AD3-83C12D86ADC7}-
hoop://toolbar.searchit.com/searchit_toolbar.cab  not-a-virus:AdvWare.ToolBar.SearchIt.b

O16 - DPF: {9387B9E0-3DA2-436E-88E5-FA09AE3A48C0}-
hoop://www.lazychestnuts.net/0014/ph/pup.CAB  TrojanClicker.win32.VB.an

O16 - DPF: {940EC490-8C20-4360-A725-1F44984933DF}-(fairtale.Class1)
hoop://www.fairtale.com/dialer/fairtale.cab  Trojan.Win32.Dialer.cz

O16 - DPF: {946B0485-8F8C-4C35-A6E7-D2115E3B0B4F}-(HTMLAccess Class)
hoop://usa-download.nocreditcard.com/download/Object/DialerHTML/DHTMLAccess.cab
TrojanDownloader.Win32.Wintrim.p
hoop://fr4-download.nocreditcard.com/download/Object/DialerHTML/DHTMLAccessXP1040.cab

TrojanDownloader.Win32.Wintrim.bh
hoop://fr4-download.nocreditcard.com/download/Object/DialerHTML/DHTMLAccessXP1041.cab
TrojanDownloader.Win32.Wintrim.m
hoop://fr4-download.nocreditcard.com/download/Object/DialerHTML/DHTMLAccessXP1042.cab TrojanDownloader.Win32.Wintrim.g
hoop://fr4-download.nocreditcard.net/download/Object/DialerHTML/DHTMLAccessXP1042.cab
TrojanDownloader.Win32.Wintrim.bf
hoop://fr4-download.nocreditcard.com/download/Object/DialerHTML/DHTMLAccessXP1043.cab
TrojanDownloader.Win32.Wintrim.bf
hoop://fr4-download.nocreditcard.com/download/Object/DialerHTML/DHTMLAccessXP1044.cab
TrojanDownloader.Win32.Wintrim.m
hoop://fr4-download.nocreditcard.com/download/Object/DialerHTML/DHTMLAccess1043.cab TrojanDownloader.Win32.Wintrim.o
hoop://usa-download.nocreditcard.com/download/Object/DialerHTML/DHTMLAccess1040.cab TrojanDownloader.Win32.Wintrim.av
hoop://fr4-download.nocreditcard.com/download/Object/DialerHTML/DHTMLAccess1042.cab
TrojanDownloader.Win32.Wintrim.bw
hoop://usa-download.nocreditcard.com/download/Object/DialerHTML/DHTMLAccess1043.cab
TrojanDownloader.Win32.Wintrim.o

O16 - DPF: {94742E3F-D9A1-4780-9A87-2FFA43655DA2}-
hoop://akamai.downloadv3.com/binaries/DialHTML/EGDHTML_US_pack.cab
TrojanDownloader.Win32.Wintrim.y 和 not-a-virus:RiskWare.Dialer.E-Group.1025
hoop://fr4-scripts.downloadv3.com/binaries/DialHTML/EGDHTML_US_pack_XP.cab
not-a-virus:RiskWare.Dialer.E-Group.1025
hoop://akamai.downloadv3.com/binaries/DialHTML/EGDHTML_pack_XP.cab
not-a-virus:RiskWare.Dialer.E-Group.1027
not-a-virus:RiskWare.Dialer.E-Group.1025
hoop://fr4-scripts.downloadv3.com/binaries/DialHTML/EGDHTML_pack_XP.cab
not-a-virus:RiskWare.Dialer.E-Group.1027
not-a-virus:RiskWare.Dialer.E-Group.1025

O16 - DPF: {94F5DCB7-816C-4B94-A2C1-856C6E323C5B}-
hoop://akamai.downloadv3.com/binaries/LiveService/LiveService_4_EN_XP.cab
TrojanDownloader.Win32.Wintrim.bk

O16 - DPF: {970BF476-3CF2-4572-9EF9-4479E1591DB8}-(VacPro.belgio_ver3)
hoop://www.advnt01.com/dialer/belgio_ver3.CAB  TrojanClicker.Win32.Adpower.a

O16 - DPF: {9771C160-AD19-11D5-91BE-0048546CB511}-
hoop://www.escorcher.com/program3/download1.exe  TrojanDownloader.Win32.Small.rh

O16 - DPF: {986DDE35-E955-11D0-A707-000000521958}-
hoop://69.56.176.75/webplugin.cab TrojanDownloader.Win32.OneClickNetSearch.e
(新版为TrojanDownloader.Win32.OneClickNetSearch.f)

O16 - DPF: {99E79790-2B09-11D6-8C73-0800460222F0}-(DialerCon Class)
hoop://www.andlotsmore.com/plug/install.cab  TrojanDownloader.Win32.Small.qy

O16 - DPF: {9A578C98-3C2F-4630-890B-FC04196EF420}-
hoop://client.jogo.cn/cdnClient/cab/cdn.cab  not-a-virus:AdvWare.CdnAssist.a

O16 - DPF: {9B4AA442-9EBF-11D5-8C11-0050DA4957F5}-
hoop://www.fastmp3.nl/test/nl.exe  not-a-virus:PornWare.Dialer.Generic

O16 - DPF: {9C5B2F29-1F46-4639-A6B4-828942301D3E}-(HTML Class)
hoop://www.123mania.com/SIPSPI32.cab  not-a-virus:AdvWare.123Mania.c

O16 - DPF: {9C691A33-7DDA-4C2F-BE4C-C176083F35CF}-(brdg Class)
hoop://www2.flingstone.com/cab/2000XP/bridge.cab TrojanSpy.Win32.Briss.b
hoop://www2.flingstone.com/cab/2000XP/CDTInc/bridge.cab TrojanSpy.Win32.Briss.g
hoop://www2.flingstone.com/cab/2000XP/ClickYesToContinue/bridge.cab TrojanSpy.Win32.Briss.g
hoop://www2.flingstone.com/cab/98ME/CDTInc/bridge.cab TrojanSpy.Win32.Briss.h 和 TrojanSpy.Win32.Briss.e
hoop://www2.flingstone.com/cab/98ME/bridge.cab TrojanSpy.Win32.Briss.a 和 TrojanSpy.Win32.Briss.c
hoop://www2.flingstone.com/cab/2000XP/new/bridge.cab TrojanSpy.Win32.Briss.f
hoop://www2.flingstone.com/cab/2000XP/bridge-c1.cab TrojanSpy.Win32.Briss.d
hoop://www2.flingstone.com/cab/2000XP/bridge-c5.cab TrojanSpy.Win32.Briss.d
hoop://www2.flingstone.com/cab/2000XP/CDTInc/bridge-c1.cab TrojanSpy.Win32.Briss.g
hoop://www2.flingstone.com/cab/2000XP/CDTInc/bridge-c1.cab TrojanSpy.Win32.Briss.g
hoop://www2.flingstone.com/cab/2000XP/CDTInc/bridge-c17.cab  TrojanSpy.Win32.Briss.g
hoop://static.flingstone.com/cab/98ME/CDTInc/bridge-c17.cab
TrojanSpy.Win32.Briss.h\TrojanSpy.Win32.Briss.e\TrojanSpy.Win32.Briss.k

O16 - DPF: {9D0A9D98-5221-430A-A02D-76F0827C82D1}-(ADialer Class)
hoop://www.dialer-shop.com/im6/celebrita.cab  Trojan.Win32.Dialer.z

O16 - DPF: {9DBAFCCF-592F-FFFF-FFFF-00608CEC297B}-
hoop://freedownloads.screensavers4free.net/free/3006/freeinstall.exe  TrojanDownloader.Win32.Vivia.a
（新版本包括TrojanDownloader.Win32.Vivia.a和TrojanDownloader.Win32.Vivia.l）

O16 - DPF: {9DBAFCCF-592F-FFFF-FFFF-00608CEC297C}-
hoop://download.weatherbug.com/minibug/tricklers/AWS/minibuginstaller.cab
not-a-virus:AdWare.VirtualBouncer.e

O16 - DPF: {9E1089BC-1AE8-4685-8D77-6721E5C318A8}-
hoop://217.73.66.16/comload.dll  TrojanDownloader.Win32.Axload.c
（新版为TrojanDownloader.Win32.Axload.e）
hoop://217.73.66.1/del/loader.cab  TrojanDownloader.Win32.Small.aa
（新版为TrojanDownloader.Win32.Small.on）

O16 - DPF: {9EB320CE-BE1D-4304-A081-4B4665414BEF}-(MediaTicketsInstaller Control)
hoop://www.mt-download.com/MediaTicketsInstaller.cab  not-a-virus:AdvWare.MediaTickets.c

开头数字为A

O16 - DPF: {A02780C3-7F77-4E28-855B-28890F3CF37A}-
hoop://akamai.downloadv3.com/binaries/DialHTML/EGCOMLIB_1035_pack_XP.cab
not-a-virus:PornWare.Dialer.InstantAccess

O16 - DPF: {A0F0D762-D1DE-43AF-B70E-D87864743EB3}-(NSLiteUpdateCtrl Class)
hoop://217.145.76.16/nslite/nslite.cab TrojanDownloader.Win32.Agent.p

O16 - DPF: {A0FEEBD0-29C4-DD14-0F5F-B1EEEB6BCF52}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/016/gsqimkqo.cab Trojan.Win32.TalkStocks.a

O16 - DPF: {A16E6189-A1DD-4696-9806-0324C145D794}-
hoop://www.jraun.com/activex/src/KeyActivex.ocx  TrojanDownloader.Win32.samll.fi
hoop://www.jraun.com/activex/src/KeyActivexTest.ocx  TrojanDownloader.Win32.Small.gz

O16 - DPF: {A1ADB2CA-DCD7-4602-507F-44DFF2C2CBAA}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/338/bcmiivbj.cab  Trojan.Win32.TalkStocks.a

O16 - DPF: {A1DC3241-B122-195F-B21A-00}-
hoop://www.serialsite.com/serial.exe  TrojanDownloader.Win32.Small.bp

O16 - DPF: {A1DC3241-B122-195F-B21A-000000000000}-
hoop://dload.ipbill.com/del/240315.cab  TrojanDownloader.Win32.small.gc
hoop://www.xxx-porns.com/download/xxxporn.cab  not-a-virus:PornWare.Dialer.AdultBrowser
hoop://www.ultradownloads.com/games.exe  TrojanDownloader.Win32.Swizzor.c
hoop://mp3-downloads.net/newnapster.exe  TrojanDownloader.Win32.Small.bp

O16 - DPF: {A3852FBD-AC5C-88C0-3AEC-B8B0AD7EE3A9}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/348/rpuxgbdz.cab  Trojan.Win32.TalkStocks.a

O16 - DPF: {A45F39DC-3608-4237-8F0E-139F1BC49464}-
hoop://php.offshoreclicks.com/dialup_files/99950202.cab not-a-virus:PornWare.Dialer.Generic

hoop://php.offshoreclicks.com/dialup_files/99950811.cab not-a-virus:PornWare.Dialer.Generic
hoop://www.accessplugin.com/diallerfiles/015692.exe  not-a-virus:PornWare.Dialer.BTV

O16 - DPF: {A4A435CF-3583-11D4-91BD-0048546A1450}-
hoop://www.nocreditcard.com/ncc/hoopload.cab  not-a-virus:PornWare.Downloader.NoCredit

O16 - DPF: {A51DEDCD-20F7-11D4-98A5-00C0CA130748}-
hoop://exe.dialer.tintel.nl/tcw.cab  not-a-virus:PornWare.Dialer.TintDial

O16 - DPF: {A67BA5E3-5B79-11D6-A711-00C12601EA00}-
hoop://www.wenera.of.pl/hardcore/hardcore.exe  not-a-virus:PornWare.Dialer.Plsex

O16 - DPF: {A67BA5E3-5B79-11D6-A711-00C12601EADE}-
hoop://www.liveshow.pl/liveshow.exe  not-a-virus:PornWare.Dialer.Plsex
hoop://grom.free.s-ex.pl/sex.exe  not-a-virus:PornWare.Dialer.Plsex

O16 - DPF: {A7798D6C-C6B5-4F26-9363-F7CDBBFFA607}-(download Class)
hoop://www.gigex.com/ActiveX/vxpspeeddelivery.dll  not-a-virus:AdWare.SpeedDelivery.a

O16 - DPF: {ABD45F35-2E4C-44C0-A075-6EF1DE75398E}-
hoop://www.riversoftware.net/x0ff.cab  not-a-virus:AdvWare.RideMark.a

O16 - DPF: {AD688740-5246-40C3-AF27-090006046834}-
hoop://www.xpehbam.biz/5/load.exe  TrojanDownloader.Win32.Delf.ch

O16 - DPF: {AD7FAFB0-16D6-40C3-AF27-585D6E6453FD}-(loader Class)
hoop://dload.ipbill.com/del/loader.cab  TrojanDownloader.Win32.Small.aa
hoop://217.73.66.1/del/d_a_loader.cab  TrojanDownloader.Win32.Small.bw
hoop://66.230.143.209/loader/dploader.cab TrojanDownloader.Win32.Small.dg

O16 - DPF: {AE6CEFA8-1223-4337-8D94-977268FF9AA0}-(DownloadUL Class)
hoop://www2.skoobidoo.com/softwares//Download_2.cab  Trojan.Win32.TalkStocks.b
hoop://www2.skoobidoo.com/softwares//Download_UL.cab  Trojan.Win32.TalkStocks.b

开头数字为B

O16 - DPF: {B0623CBA-AD18-6EC6-595F-AC1172D25ACD}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/336/tpkeyhqb.cab  Trojan.Win32.TalkStocks.a

O16 - DPF: {B3A5878E-5B4C-4D12-9156-4D7FD8D0AF6C}-(Cltbuilder Class)
hoop://akamai.downloadv3.com/binaries/one2one/one2oneSvcEN.cab  TrojanDownloader.Win32.Wintrim.bj

O16 - DPF: {B3AA2F6B-6BAF-11D3-BA05-00C0F0322972}-
hoop://link.exxxit.com/pce3/download/Uncensored_Sex.exe  not-a-virus:AdvWare.GoHip

O16 - DPF: {B5638081-D53F-481E-85A9-E5DFD5BC8F5D}-
hoop://media.euniverse.com/cursorzone/files/flowgo_freddy_setup_td035.cab
TrojanDownloader.Win32.Keenval.c

O16 - DPF: {B67E0278-CD82-4CCA-AD9D-C1FBF538774A}-(XPink.XPinkCtl)
hoop://cc.st82.arena.ne.jp/secret/XPink.CAB  not-a-virus:PornWare.Dialer.Cutygirls.e
hoop://av.st44.arena.ne.jp/XPink.CAB  not-a-virus:PornWare.Dialer.Cutygirls.e

O16 - DPF: {B843DA96-2B2D-447E-90AB-B92929AA11AF}-(HTMLDialer Class)
hoop://usa-download.nocreditcard.com/download/Object/DialerHTML/EGHTMLDialer.cab
not-a-virus:PornWare.Tool.EghtmlDialer
hoop://usa-download.nocreditcard.com/download/Object/DialerHTML/EGHTMLDialerXP.cab
TrojanDownloader.Win32.Wintrim.n

O16 - DPF: {B8AB2281-447F-482B-86E9-1F0ED5973637}-
hoop://www.isurfplus.com/sure.cab  not-a-virus:AdvWare.Toolbar.Surebar

O16 - DPF: {B94B4225-E02E-4D3F-BADB-026F1E2F3AD7}-(HoopDownloader Control)
hoop://www.instantplugin.com/SexDownloader.cab  not-a-virus:PornWare.Downloader.HoopDown

O16 - DPF: {BB0578ED-E672-4697-9663-EC5A0460B949}-(SomaticCAB.Setup)
hoop://downloads.searchcentrix.com/install/weblz.CAB not-a-virus:AdvWare.SaveNow.f

O16 - DPF: {BD092CD7-AA66-4FF6-8CE1-D4E01489ED2B}-(VacPro.UserControl1)
hoop://www.7adpower.com/dialer/EMSAT.CAB  not-a-virus:PornWare.Dialer.Creazione.a

O16 - DPF: {BD11A280-2E73-11CF-B6CF-00AA00A74DAE}-
hoop://www.sexfiles.nu/newdial/cab15.cab  TrojanDownloader.Win32.VB.cp
hoop://www.sexfiles.nu/newdial/Info_sex4_nh.cab  Trojan.Win32.Dialer.t
另外，本项下类似file://C:\Info_sex4.cab的项目是在利用漏洞运行程序。

O16 - DPF: {BD11A280-2E73-11CF-B6CF-00AA00A74DAF}-
hoop://www.talkingbuddy.com/talkingbuddyinstall.exe  not-a-virus:AdWare.ToolBar.AmBar.2159
hoop://images.bonzi.com/freebuddy/wd/bbsetupkaa.exe  not-a-virus:AdWare.VirtualBouncer.e

O16 - DPF: {BD419ACD-B41C-49D9-8ADF-CCA159052515}-
hoop://traffichog.com/toolbar/bmeb.cab  not-a-virus:AdvWare.EZula.k
hoop://ads.adultcash.com/toolbar/bmeb.cab  not-a-virus:AdvWare.EZula.k

O16 - DPF: {BEC65CAF-8156-CFAD-DD7E-AD4D1E173FBB}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/005/ocgvprml.cab  Trojan.Win32.TalkStocks.a

开头数字为C

O16 - DPF: {C15B7EA2-A360-43E8-A591-5FAEDC7C4E1D}-
hoop://www.altnet.com/install/adm4.cab
not-a-virus:AdWare.Altnet.a 和 not-a-virus:AdWare.Altnet.b

O16 - DPF: {C1C2AC28-5E4B-4228-B7A0-05E986FFCE14}-(TIBSLoader Class)
hoop://directplugin.com/tl4000.dll  TrojanDownloader.Win32.Tibser.a
hoop://www.movie-browser.com/tl4000.dll  TrojanDownloader.Win32.Tibser.a
hoop://www.goinnow.com/tl4000.dll  TrojanDownloader.Win32.Tibser.a

O16 - DPF: {C2D116ED-2466-4909-A75C-F8030A39A77D}-
hoop://media.euniverse.com/cursorzone/files/angel_setup_td035.cab
TrojanDownloader.Win32.Keenval\TrojanDownloader.Win32.Keenval.b\TrojanDownloader.Win32.Keenval.c

O16 - DPF: {C3D96A02-EEA7-4264-98D7-D882A7338DE5}-
hoop://imgfarm.com/images/nocache/community/x8NotifierInitialSetup1.0.0.4.cab  TrojanDropper.Win32.FunWeb.b

O16 - DPF: {C3FDA8CE-9414-4E33-AC6B-4922922259A5}-
hoop://www.jambalala.com/movies2.exe  Trojan.Win32.StartPage.z
hoop://www.mtreexxx.net/cpd/cab/?wmid=403370&args=1+302993+the+cab TrojanDownloader.Win32.Dyfuca.bm

O16 - DPF: {C771B05E-E725-4516-97A5-4CE5EB163CFB}-
hoop://www.sado-x.com/acces/257/sado-x.exe  not-a-virus:PornWare.Glodial

O16 - DPF: {C7ABF7AE-67A7-495C-88E1-3D1B295E25F7}-(VacPro.usa_cic)
hoop://www.advnt01.com/dialer/usa_cic.CAB  TrojanClicker.Win32.Adpower.h

O16 - DPF: {C81B5180-AFD1-41A3-97E1-99E8D254DB98}-(CSS Web Installer Class)
hoop://61.156.7.37/cabs/cssweb.cab  not-a-virus:AdvWare.CSSWeb.a
hoop://flash.vg.no/codvg/cabs/cssweb.cab not-a-virus:AdWare.CSSWeb.b

O16 - DPF: {C94158E1-6151-4442-ABE6-FD53D6534EFB}-
hoop://searchfind.info/bar/win32.cab  not-a-virus:AdvWare.ToolBar.WinThirtyTwo.a

O16 - DPF: {CABF0009-90CF-467D-86A4-D54C5B7674EA}-
hoop://media.euniverse.com/cursorzone/files/mouse_setup_td035.cab  TrojanDownloader.Win32.Keenval.c

O16 - DPF: {CC110316-5BE7-4AAA-AEDD-1A5B147BE34C}-(MyWebOperator Class)
hoop://66.128.204.6/Loader.cab  TrojanDownloader.Win32.Small.gm
hoop://198.143.27.21/dialer_loader/uk.cab TrojanDownloader.Win32.Small.ft
hoop://198.143.27.21/dialer_loader/uk.cab  not-a-virus:PornWare.Dialer.WildFlicks
hoop://198.143.27.5/Loader.cab  TrojanDownloader.Win32.Small.ft

O16 - DPF: {CC6DBC0C-BF63-CD9E-F2F2-CCB5FBCA83ED}-
hoop://public.searchbarcash.com/cab/334/ccfzchgb.cab  Trojan.Win32.TalkStocks.a

O16 - DPF: {CCA6CE4C-2199-4A4F-9542-12E0163D6841}-(Dialer Class)
hoop://sessa.isprime.com:81/tel2net/CABEDialer.cab  Trojan.Win32.Dialer.fe

O16 - DPF: {CEFB7B49-9652-464F-8AFD-A577C0500F39}-(EGP2ECOM Class)
hoop://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_1006_1034_pack_XP.cab
not-a-virus:PornWare.Dialer.InstantAccess
hoop://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_pack_XP.cab not-a-virus:RiskWare.Dialer.E-Group.1025
hoop://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_pack.cab  Backdoor.Magicon.f
hoop://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_1011_EN.cab  Trojan.Win32.P2E.o
hoop://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_1011_EN_XP.cab  Trojan.Win32.P2E.x
hoop://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_1009_1035_pack.cab

not-a-virus:PornWare.Dialer.InstantAccess 和 Trojan.Win32.P2E.b
hoop://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_1009_1035_pack_XP.cab
not-a-virus:PornWare.Dialer.InstantAccess 和 Trojan.Win32.P2E.c
hoop://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_1004a_pack.cab
TrojanDownloader.Win32.Wintrim.y 和 Trojan.Win32.P2E.h
hoop://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_1004a_pack_XP.cab
not-a-virus:PornWare.Dialer.InstantAccess 和 Trojan.Win32.P2E.r

O16 - DPF: {CFC31C26-538C-42C3-B5EA-8ACCF825711F}-
hoop://media.euniverse.com/cursorzone/files/Monkey_setup_td035.cab
TrojanDownloader.Win32.Keenval.c

——精品！收藏了！不过市面上没有看见023方面的讲解，可能是因为是服务就忽略了。

开头数字为D

O16 - DPF: {D1222EBB-F86E-4D6C-826A-B342A3D36D99}-(VacPro.austria_ver3)
hoop://www.advnt01.com/dialer/austria_ver3.CAB  TrojanClicker.Win32.Adpower.i

O16 - DPF: {D14D6793-9B65-11D3-80B6-00500487BDBA}-(CSBHO Class)
hoop://files.cc.cometsystems.com/cc2/release/bin/plat-4-3-333-ccct.cab  not-a-virus:AdvWare.Comet

O16 - DPF: {D22AC3EF-B7D8-11D5-A281-005056BF0101}-(plug Class)
hoop://gxb.nastydollars.com/gxplugin/gxbplug.dll  not-a-virus:AdWare.GXB.a
hoop://www.gxplugin.com/loader/dll/gxbplug.dll  not-a-virus:AdWare.GXB.a

O16 - DPF: {D35A69A7-7A34-4C67-814A-3F508C0BF371}-(Inst Class)
hoop://toolbar.i-lookup.com/ineb.cab  not-a-virus:AdvWare.EZula.b

O16 - DPF: {D53B810F-6219-11D4-95B6-0040950375E7}-
hoop://alley.ten.com/sexconnection/gid/dialer_activex.cab  not-a-virus:PornWare.Dialer.Generic
hoop://vad.mainentrypoint.com/dialer/bin/CE11155/dialer_activex.cab  not-a-virus:PornWare.Dialer.Generic
hoop://preview.erosconnect.com/dialer/goin/1/dialer_activex.cab  not-a-virus:PornWare.Dialer.GoInDirect

O16 - DPF: {D61570B1-61E1-6851-CBF7-B7915CBDFA4E}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/002/zqonalph.cab  Trojan.Win32.TalkStocks.a

O16 - DPF: {D6862A22-1DD6-11D3-BB7C-444553540000}-(BHO.clsInetSpeak)
hoop://www.sexxx-direct.com/BHO.CAB  Trojan.Win32.Toras.b

O16 - DPF: {D7B3E460-9968-4191-BD6F-BEED1BC18482}-(Loader Class)
hoop://www.orbitexplorer.com/OELoader.cab  not-a-virus:AdvWare.Toolbar.OWS

O16 - DPF: {D879A0F1-2B3B-4409-8879-FAD6E49E1EA9}-
hoop://www.123mania.com/softhtml.cab  not-a-virus:AdvWare.123Mania.b

O16 - DPF: {DA9A0B1E-9B7B-11D3-B8A4-00C04F79641C}-(NSUpdateLiteCtrl Class)
hoop://204.177.92.201/quickdl/proclaim/NSupd9x.cab  TrojanDownloader.Win32.Dyfuca.bb
hoop://204.177.92.201/quickdl/action/NSupd9x.cab  TrojanDownloader.Win32.Dyfuca.bb
hoop://204.177.92.201/quickdl/proclaim2/NSupd9x.cab  TrojanDownloader.Win32.Dyfuca.bb

O16 - DPF: {DB893839-10F0-4AF9-92FA-B23528F530AF}-
hoop://205.177.28.163/access/download/1018835.exe  Trojan.Win32.Dialer.q
hoop://63.217.31.84/access/download/1014672.exe  Trojan.Win32.Dialer.q
hoop://deposito.hostance.net/dialer/1014041.exe  Trojan.Win32.Dialer.br
hoop://www.desktoplife.net/1014061.exe  Trojan.Win32.Dialer.bn
hoop://deposito.hostance.net/dialer/1025972.exe  Trojan.Win32.Diamin.gen

O16 - DPF: {DCF0768D-BA7A-101A-B57A-0000C0C3ED5F}-
hoop://203.199.200.61/ads/shareit/da/cab/SysUpd.CAB TrojanDownloader.Win32.Small.kt
hoop://203.199.200.61/ads/shareit/da/trans/SysUpd.CAB TrojanDownloader.Win32.Small.kt

O16 - DPF: {DDFFA75A-E81D-4454-89FC-B9FD0631E726}-
hoop://www.aimphuck.com/Imbum_bw.cab  not-a-virus:AdvWare.Look2Me.g
hoop://www.bundleware.com/activeX/DS3/DS3.cab  TrojanDownloader.Win32.Lookme.a
hoop://www.zestyfind.com/app/DS4/DS4.cab  TrojanDownloader.Win32.Lookme.a
hoop://www.bundleware.com/activeX/BM2/BM2.cab  TrojanDownloader.Win32.Lookme.a
hoop://www.zestyfind.com/app/AX/AX.cab  TrojanDownloader.Win32.Lookme.b

O16 - DPF: {DFABA77C-F8BB-4AB9-BED7-7D48AE103E24}-
hoop://www.myfreeicons.com/cabs/bs4-htgy.cab  not-a-virus:AdvWare.BookedSpace.d

开头数字为E

O16 - DPF: {E04A205E-577F-406C-BE79-64270E74DECE}-
hoop://www.cursorzone.com/cursors/Frog_setup_td035.cab  not-a-virus:AdvWare.IGetNet

O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C}-(GpcContainer Class)
hoops://trintech.webex.com/client/latest/webex/ieatgpc.cab  not-a-virus:AdvWare.WebEx
hoops://microsoft.china-webex.com/client/leverest/training/ieatgpc.cab  not-a-virus:AdvWare.WebEx

O16 - DPF: {E0B795B4-FD95-4ABD-A375-27962EFCE8CF}-(StarInstall Control)
hoop://install.serviceurl.de/StarInstall.ocx  not-a-virus:PornWare.Dialer.Star
hoop://www.stardialer.de/install/StarInstall.ocx  not-a-virus:PornWare.Dialer.Star
hoop://install.download-url.de/StarInstall.ocx  not-a-virus:PornWare.Dialer.Star

O16 - DPF: {E0CE16CB-741C-4B24-8D04-A817856E07F4}-(IObjSafety.DemoCtl)
hoop://cabs.roings.com/cabs/roing.cab  TrojanDownloader.Win32.VB.bo
hoop://cabs.roings.com/cabs/mp3.cab  TrojanDownloader.Win32.VB.db
hoop://cabs.roings.com/cabs/mmed.cab  TrojanDownloader.Win32.VB.db
hoop://cabs.media-motor.net/cabs/mmed.cab  TrojanDownloader.Win32.VB.ez

O16 - DPF: {E154BEBA-3CC0-2DB8-DBC7-06BB55D82A6B}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/033/eizclghe.cab Trojan.Win32.TalkStocks.a

O16 - DPF: {E28E4DF0-2BCA-4904-BCF9-A983E3A80A64}-(DialerX Control)
hoop://net.iii.tv/a001/DialerX.cab  not-a-virus:RiskWare.Dialer.Telemedia.a


O16 - DPF: {E2F2B9D0-96B9-4B25-B90C-636ECB207D18}-
hoop://www.whenusearch.com/WUInstSEWC.cab  not-a-virus:AdvWare.SaveNow.r
hoop://www.whenusearch.com/WUInstCSSF.cab  not-a-virus:AdvWare.SaveNow.r
（新版为not-a-virus:AdvWare.SaveNow.ab）
hoop://www.whenusearch.com/WUInstSECS.cab  not-a-virus:AdvWare.SaveNow.ab
hoop://spweb.whenu.com/WUInstSYNC.cab  not-a-virus:AdvWare.SaveNow.r

O16 - DPF: {E3F7205F-2AE0-4BF0-816B-2D24A5F20EC7}-(EGStripDownload Class)
hoop://usa-download.strip-player.com/download/stripplayer/bin/activestripsetup.cab
Trojan-Downloader.Win32.Wintrim.ck

O16 - DPF: {E62A47D8-74B1-4A93-963A-E5E43B7CC5C2}-
hoop://www.zuvio.com/UCSearch.CAB  TrojanDownloader.Win32.VB.dc

O16 - DPF: {E87EA803-2DBB-DE1A-511B-E2A48A8B86A0}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/023/phpwgjpp.cab  Trojan.Win32.TalkStocks.a

O16 - DPF: {E8EDB60C-951E-4130-93DC-FAF1AD25F8E7}-(MoneyTree Dialer)
hoop://xbs.mtreexxx.nl/mt/dialers/fc/UniDist.CAB  TrojanDownloader.Win32.Dyfuca.t
hoop://xbs.sea.mtree.com/mt/dialers/fc/UniDistIO.CAB TrojanDownloader.Win32.Dyfuca.u
hoop://cdn.climaxbucks.com/internet-optimizer/080703/UniDistIOcrack.CAB  TrojanDownloader.Win32.Dyfuca.aa
hoop://xbs.mtree.com/mt/dialers/fc/UniDist.CAB  TrojanDownloader.Win32.Dyfuca.bm
hoop://xbs.sea.mtree.com/mt/dialers/fc/UniDist.CAB  TrojanDownloader.Win32.Dyfuca.bm
hoop://xbscc1.mtree.com/mt/dialers/fc/UniDist.CAB  TrojanDownloader.Win32.Dyfuca.bm
hoop://xbs.climaxbucks.com/mt/dialers/fc/UniDist.CAB  TrojanDownloader.Win32.Dyfuca.as

O16 - DPF: {E9041F85-3C18-4A7E-A29D-E24F84B79BF1}-
hoop://64.7.220.98/downloads/UGO20.exe TrojanDownloader.Win32.Small.fe

O16 - DPF: {EB6AFDAB-E16D-430B-A5EE-0408A12289DC}-
hoop://download.fordaleltd.com/install/setup.cab  TrojanDownloader.Win32.Agent.t
hoop://download.mediacharger.com/movienetworks.cab  TrojanDownloader.Win32.Agent.r
hoop://download.mediacharger.com/swimsuitnetwork.cab  TrojanDownloader.Win32.Agent.r

O16 - DPF: {EBAF2F10-CED4-5EA8-83CE-7BAE4FAECDC8}-
hoop://public.searchbarcash.com/cab/354/jkagdquv.cab Trojan.Win32.TalkStocks.a

O16 - DPF: {ED3ADB6E-5AA9-41B0-9DDC-6F31A34552BE}-
hoop://www.fsc2k.com/install.exe  not-a-virus:RiskWare.Downloader.ScratchCards
hoop://www.free-scratch-cards.com/install.exe  not-a-virus:RiskWare.Downloader.ScratchCards

O16 - DPF: {EE776ADF-4F69-95A6-A5D0-ED1AA4F71BC1}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/020/skhjpndm.cab Trojan.Win32.TalkStocks.a

O16 - DPF: {EEECA057-AD0F-44A7-8BE5-8634CEDBDBD1}-
hoop://akamai.downloadv3.com/binaries/IA/netpe32_FR_XP.cab  TrojanDownloader.Win32.Wintrim.bb
hoop://akamai.downloadv3.com/binaries/IA/netpe32_EN_XP.cab  TrojanDownloader.Win32.Wintrim.bb

O16 - DPF: {EEF29D20-9A47-4657-ADF7-283EC2504001}-(iiittt Class)
hoop://toolbar2.globalwebsearch.com/winenc32.cab  TrojanSpy.Win32.Globar.c
新样本有Trojan-Spy.Win32.Globar.d、not-a-virus:AdWare.ToolBar.Ilookup.b等。

O16 - DPF: {EF86873F-04C2-4A95-A373-5703C08EFC7B}-(Installer Class)
hoop://www.xxxtoolbar.com/ist/softwares/v3.0/0006.cab  TrojanDownloader.Win32.IstBar.dw

O16 - DPF: {EFB22865-F3BC-4309-ADFA-C8E078A7F762}-(SysWebTelecomInt Class) - hoop://www.sponsoradulto.com/en/SysWebTelecom.cab  not-a-virus:AdvWare.ToolBar.SysWebTelecom
(同一样本，病毒库调整后报告Trojan.Win32.Dialer.fu)

开头数字为F

O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46}-(IMDownloader Class)
hoop://www2.incredimail.com/contents/setup/downloader/imloader.cab  not-a-virus:RiskWare.Downloader.ImLoader.b

O16 - DPF: {F08555B0-9CC3-11D2-AA8E-000000000000}-
hoop://www.pornmail.com/cglbar.cab  not-a-virus:AdvWare.Toolbar.LiveCam

O16 - DPF: {F08555B1-9CC3-11D2-AA8E-000000000000}-
hoop://www.freshgirls.com/download/freshgirls.cab  not-a-virus:PornWare.Downloader.FreshGirls

O16 - DPF: {F0AA2376-F073-4E57-86E8-0238F99087C7}-(AInst Class)
hoop://216.129.173.30/xxxnaughty/activeinstaller.dll  TrojanDownloader.Win32.IstBar.ar
hoop://cnt.rapidblaster.com/install/activeinstaller.dll  TrojanDownloader.Win32.IstBar.ar

O16 - DPF: {F1A51F21-59DF-4486-BA31-5B816DA481EB}-
hoop://www.fastseeker.com/toolbar/download/FastSeekerSetup2.cab  not-a-virus:AdvWare.ToolBar.FastSeeker

O16 - DPF: {F20AE630-6DE2-43CA-A988-7CD40C36EF0B}-
hoop://download.quicklaunch.com/quicklaunch154.cab
not-a-virus:AdvWare.Toolbar.Cash 和 TrojanDownloader.Win32.Braidupdate.b

O16 - DPF: {F5192746-22D6-41BD-9D2D-1E75D14FBD3C}- (ddm_download.ddm_control)
hoop://download.rfwnad.com/cab/crack.CAB  TrojanDownloader.Win32.Dia.a
hoop://download.rfwnad.com/cab/dlaccell.CAB  TrojanDownloader.Win32.Dia.a
hoop://216.65.38.226/crack.CAB  TrojanDownloader.Win32.Dia.a
hoop://download.rfwnad.com/cab/ieplugin.CAB  TrojanDownloader.Win32.Dia.a
hoop://download.rfwnad.com/cab/dlexe.CAB  TrojanDownloader.Win32.Dia.a
hoop://download.rfwnad.com/cab/download.CAB  TrojanDownloader.Win32.Dia.a

O16 - DPF: {F57D17AE-CE37-4BC8-B232-EA57747BE5E7}-
hoop://66.230.146.53/EPlugin.cab  not-a-virus:PornWare.Dialer.SexGate
hoop://66.230.146.53/EPlugin_NL.cab  not-a-virus:PornWare.Dialer.SexGate
hoop://66.230.146.53/EPlugin_AT.cab  not-a-virus:PornWare.Dialer.SexGate
hoop://66.230.146.53/EPlugin_0_DE2.cab  TrojanClicker.Win32.XLite.a
hoop://66.230.146.53/EPlugin_0_OTH.cab  TrojanClicker.Win32.XLite.a
hoop://66.230.146.53/EPlugin_0_GB.cab  TrojanClicker.Win32.XLite.a
hoop://66.230.146.53/EPlugin_GB.cab  TrojanClicker.Win32.XLite.a

O16 - DPF: {F6F8B94A-A2D8-EA2E-B262-27D241F5CDDA}-
hoop://public.searchbarcash.com/cab/360/wfqmejja.cab  Trojan.Win32.TalkStocks.a

O16 - DPF: {F7ADCFE3-AA28-F99E-E665-B13AC332D249}-
hoop://public.searchbarcash.com/cab/351/atrwzpca.cab  Trojan.Win32.TalkStocks.a

O16 - DPF: {FB2131ED-4534-45FB-B765-4800EFE34D4C}-
hoop://www.cursorzone.com/cursors/inlove_setup_td035.cab  not-a-virus:AdvWare.IGetNet

O16 - DPF: {FB408C5D-959A-E39A-306B-FADCC43FA011}-(DownloadUL Class)
hoop://public.searchbarcash.com/cab/021/lpggwedb.cab  Trojan.Win32.TalkStocks.a

O16 - DPF: {FC327B3F-377B-4CB7-8B61-27CD69816BC3}-
hoop://www.clock-sync.com/ClockSyncAutoSYNC9999.cab  not-a-virus:AdvWare.SaveNow.m
hoop://www.getweathercast.com/WeatherAutoCAST0010.cab  not-a-virus:AdvWare.SaveNow.ab


O16 - DPF: {FC3A74E5-F281-4F10-AE1E-733078684F3C}-
hoop://www.2020search.com/9891/toolbar/2020Search.cab  not-a-virus:AdvWare.ToolBar.2020Search.a

O16 - DPF: {FC87A650-207D-4392-A6A1-82ADBC56FA64}-(MultiDist)
hoop://xbs.climaxbucks.com/internet-optimizer/080703/MultiDist.CAB TrojanDownloader.dyfuca.x
hoop://xbs.mtree.com/mt/dialers/fc/MultiDistFC.CAB TrojanDownloader.dyfuca.o

O16 - DPF: {FDE6B956-B80A-4578-9A10-4C24609412F1}-
hoop://64.158.165.147/060570/de/fullgames/fullgames.exe  not-a-virus:RiskWare.Dialer.PlayGames

O16 - DPF: {FE1A240F-B247-4E06-A600-30E28F5AF3A0}-
hoop://toolbar2.i-lookup.com/toolbar2/windec32.cab  not-a-virus:AdvWare.EZula.b

O16 - DPF: {FF65677A-8977-48CA-916A-DFF81B037DF3}-(WMService Class)
hoop://download.overpro.com/WildApp.cab  not-a-virus:AdvWare.WinFetcher.d
（新版为not-a-virus:AdvWare.MetaDirect.b、not-a-virus:AdvWare.MetaDirect.c）

O16 - DPF: {FFA6CE4C-2199-4A4F-9542-12E0163D6841}-
hoop://sessa.isprime.com:8080/tel2net/CABDialer.cab  TrojanDownloader.Win32.Small.qz

O16 - DPF: {FFFF0003-0001-101A-A3C9-08002B23E0CC}-
hoop://direct.data-line.us/gba10.exe  not-a-virus:PornWare.Dialer.Juicy

O16 - DPF: {FFFF0003-0001-101A-A3C9-08002B23E0CD}-
hoop://direct.data-line.us/gba10.exe  not-a-virus:PornWare.Dialer.Juicy

O16 - DPF: {FFFF0003-0001-101A-A3C9-08002B2F49FB}-
hoop://stat.trafficadvance.net/dialer/304348.exe  trojan.win32.dialer.q
hoop://stat.trafficadvance.net/dialer/303470.exe  trojan.win32.dialer.q
hoop://deposito.hostance.net/dialer/610569.exe  Trojan.Win32.Dialer.q
hoop://www.sessounico.com/dialer/sex.exe  Trojan.Win32.Dialer.e
hoop://63.217.31.12/dial/FreeVideoDownload.exe  Trojan.Win32.Dialer.e
hoop://www.wowvirgins.com/xxx/ypp108bes1m_adult.exe  Trojan.Win32.Dialer.e
hoop://66.230.145.48/pornuk.exe  Trojan.Win32.Dialer.e

O16 - DPF: {FFFF0018-0001-101A-A3C9-08002B2F49FB}-
hoop://www.aste-giudiziarie-online.com/astem.exe  Trojan.Win32.Dialer.e