;*********************************************************************************************************************************************************************************** ANALYSIS: 2009-12-28 01:12:11 PROTECTIONS: 1 MALWARE: 12 SUSPECTS: 11 ;*********************************************************************************************************************************************************************************** PROTECTIONS Description Version Active Updated ;=================================================================================================================================================================================== ESET NOD32 Antivirus 3.0 3.0 Yes Yes ;=================================================================================================================================================================================== MALWARE Id Description Type Active Severity Disinfectable Disinfected Location ;=================================================================================================================================================================================== 00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No c:\documents and settings\ivar\cookies\ivar@doubleclick[2].txt 00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No c:\documents and settings\ivar\cookies\ivar@atdmt[2].txt 00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No c:\documents and settings\ivar\cookies\ivar@tradedoubler[1].txt 00145457 Cookie/FastClick TrackingCookie No 0 Yes No c:\documents and settings\ivar\cookies\ivar@fastclick[1].txt 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No c:\documents and settings\ivar\cookies\ivar@ad.yieldmanager[2].txt 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No c:\documents and settings\ivar\cookies\ivar@serving-sys[2].txt 00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No c:\documents and settings\ivar\cookies\ivar@bs.serving-sys[1].txt 00169190 Cookie/Advertising TrackingCookie No 0 Yes No c:\documents and settings\ivar\cookies\ivar@advertising[2].txt 00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No c:\documents and settings\ivar\cookies\ivar@bluestreak[1].txt 03074964 Trj/CI.A Virus/Trojan No 0 Yes No f:\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No f:\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh]\sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No f:\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No c:\documents and settings\ivar\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No c:\documents and settings\ivar\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No c:\documents and settings\ivar\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh]\sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No c:\documents and settings\ivar\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe 03074964 Trj/CI.A Virus/Trojan No 0 No No c:\documents and settings\ivar\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe] 03074964 Trj/CI.A Virus/Trojan No 0 No No c:\documents and settings\ivar\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe] 03074964 Trj/CI.A Virus/Trojan No 0 Yes No c:\recycler\s-1-5-21-789336058-879983540-1801674531-1003\dc7\anno crack with keys\anno crack with keys.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No c:\recycler\s-1-5-21-789336058-879983540-1801674531-1003\dc7\anno crack with keys.exe 03074964 Trj/CI.A Virus/Trojan No 0 No No c:\recycler\s-1-5-21-789336058-879983540-1801674531-1003\dc7\anno crack with keys.rar[anno crack with keys.exe] 03074964 Trj/CI.A Virus/Trojan No 0 Yes No e:\hovedmappe\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No e:\hovedmappe\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe 03074964 Trj/CI.A Virus/Trojan No 0 No No f:\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe] 03074964 Trj/CI.A Virus/Trojan No 0 Yes No e:\hovedmappe\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh]\sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No e:\hovedmappe\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No f:\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe 03074964 Trj/CI.A Virus/Trojan No 0 No No f:\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe] 03074964 Trj/CI.A Virus/Trojan No 0 No No e:\hovedmappe\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe] 03074964 Trj/CI.A Virus/Trojan No 0 No No e:\hovedmappe\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe] 03074964 Trj/CI.A Virus/Trojan No 0 Yes No e:\hovedmappe\programmer\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No e:\hovedmappe\programmer\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No f:\hdd1\ivar\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe 03074964 Trj/CI.A Virus/Trojan No 0 Yes No f:\hdd1\ivar\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe 03074964 Trj/CI.A Virus/Trojan No 0 No No e:\hovedmappe\programmer\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe] 03074964 Trj/CI.A Virus/Trojan No 0 No No e:\hovedmappe\programmer\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe] 03074964 Trj/CI.A Virus/Trojan No 0 No No f:\hdd1\ivar\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\activator_sony vegas pe 9.0b\activator.exe] 03074964 Trj/CI.A Virus/Trojan No 0 No No f:\hdd1\ivar\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\plugins\newblue fx\art effects.exe] 04199739 Generic Trojan Virus/Trojan No 0 Yes No e:\hovedmappe\spill\pc_far.cry.2 -.direct.play.-toed\ubisoft\far cry 2\fc2-winxp.exe 04414719 Trj/Downloader.MDW Virus/Trojan No 1 No No f:\hdd1\ivar\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe] 04414719 Trj/Downloader.MDW Virus/Trojan No 1 Yes No f:\hdd1\ivar\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe 04414719 Trj/Downloader.MDW Virus/Trojan No 1 No No e:\hovedmappe\programmer\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe] 04414719 Trj/Downloader.MDW Virus/Trojan No 1 Yes No e:\hovedmappe\programmer\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe 04414719 Trj/Downloader.MDW Virus/Trojan No 1 No No f:\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe] 04414719 Trj/Downloader.MDW Virus/Trojan No 1 Yes No f:\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe 04414719 Trj/Downloader.MDW Virus/Trojan No 1 No No e:\hovedmappe\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe] 04414719 Trj/Downloader.MDW Virus/Trojan No 1 Yes No e:\hovedmappe\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe 04414719 Trj/Downloader.MDW Virus/Trojan No 1 No No c:\documents and settings\ivar\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh].rar[sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe] 04414719 Trj/Downloader.MDW Virus/Trojan No 1 Yes No c:\documents and settings\ivar\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe 04414719 Trj/Downloader.MDW Virus/Trojan No 1 Yes No c:\documents and settings\ivar\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe 04414719 Trj/Downloader.MDW Virus/Trojan No 1 Yes No f:\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe 04414719 Trj/Downloader.MDW Virus/Trojan No 1 Yes No e:\hovedmappe\backup\hovedmaksin\mine dokumenter\div\downloads\sony vegas movie studio platinum 9.0b + plugins [rh]\svmspe_9.0b_[rh]\sony vegas movie studio platinum 9.0b\plugins\newblue fx\motion blends.exe ;=================================================================================================================================================================================== SUSPECTS Sent Location ;=================================================================================================================================================================================== No c:\program files\genie-soft\gbmpro8\gbm8.exe No c:\recycler\s-1-5-21-789336058-879983540-1801674531-1003\dc29.510\crack\gbm8.exe No e:\hovedmappe\programmer\[newtorrents.info]_futuremark.3dmark06.v1.0.2.winall.keygen.only.read-virility\keygen.exe No e:\hovedmappe\programmer\[newtorrents.info]_futuremark.3dmark06.v1.0.2.winall.keygen.only.read-virility\vrl3dm06\keygen.exe No e:\hovedmappe\programmer\[newtorrents.info]_futuremark.3dmark06.v1.0.2.winall.keygen.only.read-virility\vrl3dm06.zip[keygen.exe] No e:\hovedmappe\spill\gta san andreas\mods\sa-mp-0.2.2-r2.exe No f:\system volume information\_restore{ef8eb2f7-83ef-4468-a31d-55a952db7dfa}\rp227\a0080000.exe No f:\hdd1\ivar\downloads\[newtorrents.info]_futuremark.3dmark06.v1.0.2.winall.keygen.only.read-virility\keygen.exe No f:\hdd1\ivar\downloads\[newtorrents.info]_futuremark.3dmark06.v1.0.2.winall.keygen.only.read-virility\vrl3dm06.zip[keygen.exe] No f:\hdd1\ivar\downloads\[newtorrents.info]_futuremark.3dmark06.v1.0.2.winall.keygen.only.read-virility\vrl3dm06\keygen.exe No f:\hdd1\chillmaster sin\spill\gta san andreas\mods\sa-mp-0.2.2-r2.exe ;=================================================================================================================================================================================== VULNERABILITIES Id Severity Description ;=================================================================================================================================================================================== ;===================================================================================================================================================================================