MathiasN1 Skrevet 17. september 2008 Del Skrevet 17. september 2008 HJT logg Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:23:27, on 17.09.2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: E:\WINDOWS\System32\smss.exe E:\WINDOWS\system32\winlogon.exe E:\WINDOWS\system32\services.exe E:\WINDOWS\system32\lsass.exe E:\WINDOWS\system32\svchost.exe E:\WINDOWS\System32\svchost.exe E:\WINDOWS\system32\spoolsv.exe E:\WINDOWS\system32\igfxtray.exe E:\WINDOWS\system32\hkcmd.exe E:\WINDOWS\system32\igfxpers.exe E:\WINDOWS\RTHDCPL.EXE E:\Program Files\Java\jre1.5.0_03\bin\jusched.exe E:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe E:\WINDOWS\system32\ctfmon.exe E:\Program Files\Messenger\msmsgs.exe E:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe E:\WINDOWS\system32\svchost.exe E:\WINDOWS\explorer.exe E:\WINDOWS\system32\wuauclt.exe E:\WINDOWS\system32\imapi.exe E:\Program Files\internet explorer\iexplore.exe E:\Program Files\Common Files\Teleca Shared\Generic.exe E:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - e:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe O4 - HKLM\..\Run: [igfxtray] E:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] E:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] E:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [sunJavaUpdateSched] E:\Program Files\Java\jre1.5.0_03\bin\jusched.exe O4 - HKLM\..\Run: [sony Ericsson PC Suite] "E:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "E:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [swg] E:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user') O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\Program Files\Spybot - Search & Destroy\SDHelper.dll (file missing) O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\Program Files\Spybot - Search & Destroy\SDHelper.dll (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1179972632180 O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - E:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- End of file - 3972 bytes MBAM Malwarebytes' Anti-Malware 1.28 Database versjon: 1166 Windows 5.1.2600 Service Pack 2 17.09.2008 23:08:39 mbam-log-2008-09-17 (23-08-39).txt Skanntype: Rask Skann Objekter skannet: 38595 Tid tilbakelagt: 2 minute(s), 32 second(s) Minneprosesser infisert: 0 Minnemoduler infisert: 0 Registernøkler infisert: 106 Registerverdier infisert: 14 Registerfiler infisert: 3 Mapper infisert: 23 Filer infisert: 503 Minneprosesser infisert: (Ingen mistenkelige filer funnet) Minnemoduler infisert: (Ingen mistenkelige filer funnet) Registernøkler infisert: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{94bc3d1d-22e9-4744-8ed1-3e08a3b74078} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\gebrqolj (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{94bc3d1d-22e9-4744-8ed1-3e08a3b74078} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\cj.cjmgr (Trojan.BHO) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\cj.cjmgr.1 (Trojan.BHO) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\isecurity.mgr (Rouge.ISecurity) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\isecurity.mgr.1 (Rouge.ISecurity) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{06faccd2-c7bb-4612-88de-338120477578} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{0bc37c25-432c-4ec4-95b4-0f860c1bdfe3} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{18c0c3dc-9b12-45c8-8243-11a32babc050} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{20b5789d-76b8-41c3-92d2-72b322d0d81d} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{248c5ea6-af58-4a11-97a4-72b183232e58} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{2e8986d0-b571-4a3a-a831-0621cfcd7be1} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{30073d4c-957a-4a2b-8dc7-ff57ea3d3dfb} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{30576ee7-054c-4faf-801b-703845928839} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{48d78be5-cfb9-4b66-9ac4-96d4cf21de06} (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{59fe90af-3bf6-489b-9181-b1ee2a6ce64a} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{65f3c1a2-ec45-445f-b2e5-7fff05344ca0} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{78f4493f-42f4-4ef6-a417-042dd0a7e0af} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{818dd1ed-83b4-4ef0-99f9-e4a6d73e2456} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{853be7bd-f267-4750-b072-2b6b11d3d70c} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{8eb10171-6058-4822-baf3-3da829caca4e} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{91a4a1c5-7fe7-41f1-9d23-cee9d3064175} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{91bd0deb-7196-46b1-9cd0-c26b7b3ab72e} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{93c9f61d-51b6-47ee-8fe5-36185021222b} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{99bcd932-0d63-4f7e-8faa-dbd12b9f494c} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{9b99e76d-9081-41c2-ae6e-e43cf752ac71} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{9da1ffd9-3cd7-4cb5-8c0b-dcdea5663ae0} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{abe1716e-6f32-4d6f-8f3d-73425d396bdb} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{ae4a9ec4-1dfe-425f-8fc7-501fb6cbf132} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{c53fef45-3339-4d96-83c7-2f4bf389fa7b} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{cd0ab90e-4a7f-4f0e-9cfa-5cc428649265} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{e0271652-93b4-4bc5-afc7-fb41e0d5004c} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{e187f1a7-86bf-4df8-8d3c-33c1d1e50f3a} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{e98f32d4-89dd-4e7d-96b8-e1b8d1c22eb2} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{f3847cce-f74a-43ea-a323-3ac984c3443e} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{ffe3c26d-fa6d-4884-bd7a-bc1d778eee94} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{1e3a244c-c23e-4466-a18e-462b8b403c6a} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{2872e430-100f-4c61-8b13-885d7934b7ed} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{3f7adb0b-f165-46ce-99a8-8717b8d24e65} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{47060977-8089-40a2-8adb-3c003ca45c52} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{54dba498-4ead-4a89-88c0-ab0fb594c06c} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{564710b3-b836-4031-aab4-1c328ac6273c} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{5ad1882c-8fb8-4d4a-98c2-eeaef9a05b36} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{821f5a9a-6f3b-4f4f-9a8f-d45b74fe6ed5} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{a2c91d4b-b809-4390-a46a-c20195873f19} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{a2e131d2-c2c0-464f-8bff-804895ebd8fb} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{ab21e866-a2d7-41a6-89f4-97504cb6d0dd} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{ba1ae664-8ec3-442b-ad58-c7f827f3287d} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{bd24ccc3-103e-4415-9d37-d9b2a8fc530c} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{bde59ac3-5604-41e8-aace-ce6e76f74074} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{cccec30e-96fc-4f38-8eb1-77811eade88e} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{d87af8ed-e9c3-4fa3-b782-e0ad576037ce} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{df5aa3ff-2bf5-41e2-a4e9-433c59c87165} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{e1817abf-7416-4196-98ea-044ca8a60cb0} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{ef272ff8-bf30-4096-b7dc-0922e00286a3} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{f1213cef-baa8-497d-9f3a-e248db43e224} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{a8311e8f-e459-4d22-89b4-cb9dcf10a425} (Rouge.ISecurity) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{f2f2a4cb-daad-4d0c-bdfc-e945647202c2} (Trojan.BHO) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{f4aaeb6d-3735-45aa-a22b-924cc4882d9c} (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{74d46bba-5638-473a-83b6-97e7804a7411} (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{15651c7c-e812-44a2-a9ac-b467a2233e7d} (Adware.123Mania) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{622cc208-b014-4fe0-801b-874a5e5e403a} (Adware.123Mania) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9c5b2f29-1f46-4639-a6b4-828942301d3e} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ffff0001-0002-101a-a3c9-08002b2f49fb} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00000250-0320-4dd4-be4f-7566d2314352} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13197ace-6851-45c3-a7ff-c281324d5489} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4e1075f4-eec4-4a86-add7-cd5f52858c31} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4e7bd74f-2b8d-469e-92c6-ce7eb590a94d} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5929cd6e-2062-44a4-b2c5-2c7e78fbab38} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5dafd089-24b1-4c5e-bd42-8ca72550717b} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5fa6752a-c4a0-4222-88c2-928ae5ab4966} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8674aea0-9d3d-11d9-99dc-00600f9a01f1} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{965a592f-8efa-4250-8630-7960230792f1} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cf021f40-3e14-23a5-cba2-717765728274} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fc3a74e5-f281-4f10-ae1e-733078684f3c} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\winrpo32 (Dialer) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\iSecurity (Rouge.ISecurity) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Google Online Services (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DataDisp32 (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ntload (Trojan.Downloader) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WLCtrl32 (Trojan.Downloader) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\asc3550o (Rootkit.Agent) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\affri (Malware.Trace) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\affltid (Malware.Trace) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\wkey (Malware.Trace) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\mwc (Malware.Trace) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\MS Juan (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\affltid (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\affri (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\jkwslist (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\dslcnnct (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{b1d0888e-e3e1-4db0-9c98-55c6ffed434f} (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{3960d37f-1499-4cc9-b31d-1bf07a026687} (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{5db947fc-a4ac-48e2-a444-beda0c5f5e50} (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Juan (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\AppID\kiasys.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\kiasys.video (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\kprof (Rootkit.Poof) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSSMGR (Trojan.Downloader) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WinOpts (Trojan.Downloader) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\poof (Rootkit.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\partnershipreg (Trojan.Agent) -> Quarantined and deleted successfully. Registerverdier infisert: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\isecurity (Rouge.ISecurity) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\IEUpdate (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\autoload (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\autoload (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ntuser (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ntuser (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\iSecurity applet (Rouge.ISecurity) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\bm8bfc4caf (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\64f00ea8 (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\zip (Trojan.Clicker) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Settings\mu (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\braviax (Trojan.Downloader) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\ADP (Rogue.Multiple) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\General\wallpaper (Hijack.Desktop) -> Quarantined and deleted successfully. Registerfiler infisert: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SecurityProviders (Trojan.QHost) -> Data: wowfx.dll -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Schedule\ImagePath (Hijack.Service) -> Bad: (E:\WINDOWS\system32\drivers\spools.exe) Good: (%SystemRoot%\System32\svchost.exe -k netsvcs) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr (Hijack.TaskManager) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Mapper infisert: E:\Program Files\180searchassistant (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\180solutions (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\zango (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\seekmo (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\180search assistant (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\stc (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\Program Files\Sysmnt (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\FLEOK (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\Program Files\ISecurity (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\Program Files\ISecurity\Ultimate Cleaner (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\Program Files\ISecurity\Ultimate Defender (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro\Autorun (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro\Autorun\HKCURun (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro\Autorun\HKCURun\RunOnce (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro\Autorun\HKCURun\RunOnceEx (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro\Autorun\HKLMRun (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro\Autorun\HKLMRun\RunOnce (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro\Autorun\HKLMRun\RunOnceEx (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro\Autorun\StartMenuAllUsers (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro\Autorun\StartMenuCurrentUser (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\Application Data\Anti-Virus-Pro.com\AntiVirusPro\BrowserObjects (Rogue.AntiVirusPro) -> Quarantined and deleted successfully. Filer infisert: E:\WINDOWS\system32\geBrqolJ.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully. E:\WINDOWS\system32\drvnumr.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\univrs32.dat (Trojan.FakeAlert) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wscmp.dll (Trojan.Zlob) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wscmp.dll.tmp (Trojan.Zlob) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ygri474.exe (Trojan.BHO) -> Quarantined and deleted successfully. E:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\VPXKGK30\bho[1].exe (Trojan.BHO) -> Quarantined and deleted successfully. E:\Program Files\180searchassistant\saap.exe (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\180searchassistant\sac.exe (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\180solutions\sais.exe (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\zango\zango.exe (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\seekmo\seekmohook.dll (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\180search assistant\180sa.exe (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\180search assistant\sau.exe (Adware.180Solutions) -> Quarantined and deleted successfully. E:\Program Files\stc\csv5p070.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\Program Files\Sysmnt\Ssmgr.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\FLEOK\180ax.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\Program Files\ISecurity\iSecurity.dat (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\Program Files\ISecurity\syscleaner.bmp (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\Program Files\ISecurity\syscleanerinstalled.bmp (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\Program Files\ISecurity\systemdefender.bmp (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\Program Files\ISecurity\systemdefenderinstalled.bmp (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\Program Files\ISecurity\Thumbs.db (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\Program Files\ISecurity\winifixer.bmp (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\Program Files\ISecurity\winifixerinstalled.bmp (Rouge.ISecurity) -> Quarantined and deleted successfully. E:\WINDOWS\system32\winrpo32.dll (Dialer) -> Quarantined and deleted successfully. E:\WINDOWS\system32\sex1.ico (Malware.Trace) -> Quarantined and deleted successfully. E:\WINDOWS\system32\sex2.ico (Malware.Trace) -> Quarantined and deleted successfully. E:\WINDOWS\system32\mcrh.tmp (Malware.Trace) -> Quarantined and deleted successfully. E:\WINDOWS\default.htm (Trojan.Agent) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxywTLdE.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxywVlKE.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxywWpqP.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\avifile32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\avisynthex32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\aviwrap32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\bjam.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\bokja.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\browserad.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\cdsm32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\changeurl_30.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\didduid.ini (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\msa64chk.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\msapasrc.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\mspphe.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\123messenger.per (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\mssvr.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\ntnut.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\saiemod.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\salm.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\shdocpe.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\shdocpl.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\stcloader.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\swin32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\updatetc.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\voiceip.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\winsb.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\system32\MSIXU.DLL (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\system32\MSNSA32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ntnut32.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\system32\shdocpe.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\system32\SIPSPI32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\system32\WER8274.DLL (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\Installer\id53.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\180ax.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\2020search.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\2020search2.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\apphelp32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\asferror32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\asycfilt32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\athprxy32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\ati2dvaa32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\ati2dvag32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\audiosrv32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\autodisc32.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. E:\WINDOWS\licencia.txt (Malware.Trace) -> Quarantined and deleted successfully. E:\WINDOWS\telefonos.txt (Malware.Trace) -> Quarantined and deleted successfully. E:\WINDOWS\textos.txt (Malware.Trace) -> Quarantined and deleted successfully. E:\WINDOWS\system32\winfrun32.bin (Malware.Trace) -> Quarantined and deleted successfully. E:\Program Files\tmp156715.exe (Trojan.Alphabet) -> Quarantined and deleted successfully. E:\Program Files\tmp523873.exe (Trojan.Alphabet) -> Quarantined and deleted successfully. E:\WINDOWS\braviax.exe (Trojan.Downloader) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wowfx.dll (Trojan.QHost) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyawwxV.dll (Backdoor.Agent) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyawxxu.dll (Backdoor.Agent) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyaxUlK.dll (Backdoor.Agent) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnkHxuU.dll (Backdoor.Agent) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnkIaYP.dll (Backdoor.Agent) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnkIcya.dll (Backdoor.Agent) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnkKDts.dll (Backdoor.Agent) -> Quarantined and deleted successfully. E:\WINDOWS\pskt.ini (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqQhgeD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqQhggd.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqQjGay.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqQjGvs.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqQjJYs.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvSiiHb.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvSlkjH.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvSmlKD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvTmKBr.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvTmMeC.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvUKAtT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvULFUn.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvVLbBS.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvVNGWp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvVPfeF.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvVPgGY.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\tuvWqOIc.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMcbbCv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMcdBtS.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMcdDWm.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMcdEut.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMdAPge.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMdCtSI.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMdCtTJ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMdCvuV.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMeCrpm.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMeDUNg.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMeDWnm.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMeEUMg.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMeEWmL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMfddCu.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMfedAT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMfeedB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\qoMgeCSK.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXNDSmn.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXNDUKE.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXNFusT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXNHBRi.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXNHXPG.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXOGWpq.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXOIbcD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXOIbyv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXOIxuT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXOIyYr.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXPfEUm.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXPfGyx.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXPiHXN.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXPiIYp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXPjHXP.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXPjIyA.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXPjIyW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXQhEXN.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXQhHxX.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXQkjKE.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXRHayx.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXRIabY.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXRJASm.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXRJCvW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXRKApQ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\cbXRLcaa.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBqNhec.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBqPIcD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBqQIBU.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBrsSLE.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBrsTmN.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBspnOg.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBsspol.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBtSJdC.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBtTNGw.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBtUomk.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBuRIYp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBuTllL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBuTmKC.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBuUlKA.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBuUmLf.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\geBuVPfg.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkHAssp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkHWMDT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkHWNEt.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkHWQKa.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkIASji.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkICssS.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkICuVm.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkIXoNe.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkIYqpn.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkIYrSI.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkJdDVO.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkKbCut.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkLCtSI.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkLCurS.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkLDTmK.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\jkkLDVPi.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnkhfFv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnkiGvW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnkiJdA.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnkjKCr.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnkjKDs.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnkkliG.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnkkljj.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnlIyvw.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnmJASi.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnmLday.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnnkhIb.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnnkkIy.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnnmKeF.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnnmLBR.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnnmNgF.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnnonMc.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\opnomkHB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcAqOhh.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcAsrSi.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcAsssR.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcAstts.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcBQjGv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcBRiFY.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcBRlif.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcBRlml.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcBTJCT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcBTJCV.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcBTNDV.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcCSKAQ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcDuTNe.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcDwttR.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcYoLDU.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ddcYpoMC.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXNfDWP.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXNgeEW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXNhfcC.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXNhgfE.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRHaBRJ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRHwTMf.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRHwVoM.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRHyxyW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRIbcaw.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRIcayw.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRIcdBQ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRJBSJa.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRJCSKC.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRJDtTj.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRKBUnk.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRKCrSk.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRKDuRh.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRLcYOG.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\rqRLdAtq.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnliFvW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnljkLc.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnlkkiG.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnlmKEv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnmkHYQ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnmlLCR.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnmnlJY.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnmnopo.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnnKdaw.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnnNEwT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnnNFWq.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnnOghE.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\nnnoOeDw.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnkHASM.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnkHWmn.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnkHWnO.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnkJdbb.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnkLCVp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnkLDvU.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnkLEvU.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnlihIX.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnljHwv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnlkLDS.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnlmmND.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnmjIBR.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnmkjji.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnmlkHa.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnmmKca.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnmnMgd.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnnMdbB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnoNGyX.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnoPgfg.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnoPiJy.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\pmnoPjIy.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqNDUkk.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqNGaxW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqNGaxX.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqNHARJ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqNHARK.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqOIcCT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqPgdeF.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqQghfD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqQhHXo.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqQiGWM.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqQiJAP.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqQjgda.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\urqQklKe.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awtrPjhH.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awtrRKdB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awtrRLFY.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awtsPJCV.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awtsQKcc.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awtsQKeB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awtsSmkk.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awtsTLFu.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awtsTNda.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awttqqOG.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awttsRIy.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awturOIa.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\awtustss.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXOeBsR.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXOfefE.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXOgday.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXOgeEX.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXOghgh.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXOhFwW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXOiHbX.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXPFYSJ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXPFYSL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXPHwXo.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXPJAsT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXQGvtS.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXQGxVL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXRiffC.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXRigHW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXRihIy.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\byXRkLDu.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcAPJaW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcAQGVP.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcAQKDS.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcASjhH.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcATKET.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcATNFv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcBqpPF.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcBrOfF.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcBrQHW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcBsRhe.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcBttuu.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcBuuUM.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcCtqpM.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcCtuss.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcCtutu.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcDSLbB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcDTKed.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcDUoLB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcDVpmk.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcYQHBs.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcYQIyv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcYRJDS.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\efcYSmLB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGabAsT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGabYOi.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGawUkL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGawXpp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGaxvvu.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGvtQGv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGvtSjJ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGvuSjJ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGwTmno.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGwWMgf.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGxUNDU.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGxVLEx.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGxXpon.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGyvuSl.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGyvwwx.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGywWOF.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGyxVME.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGyxXnL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\hgGyywVN.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\iifcAPgg.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\iifcAQiF.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\iifcBtTJ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\iifeddAP.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\iifeeCTm.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\iifeeDtT.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\iifefDwv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\iiffDUoo.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\iiffGXqQ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\iifgDwWN.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\mlJCRiFW.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\mlJCSmKa.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\mlJCULfc.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\mlJDvTNh.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\mlJDvVpm.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\mlJDvWMe.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\mlJDwTkI.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\mlJYqNHB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\mlJYssQH.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyvsPhH.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyvsTkh.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyvuutU.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyvuvuv.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyxVoNG.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyxWNHb.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyxYqoo.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyxYqqR.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyyvTMD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\xxyyxxVL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayaApQi.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayaAtSi.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayaBRJY.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayaWOEX.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayaYomK.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayvSlMD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayvWnNg.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yaywuvSJ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yaywuvWO.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayxutsR.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayxuvWN.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayxvWQj.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayxyayx.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayyVllI.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayyXQgD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayyXRLD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayyYPhF.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\yayyYPif.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqNEuvw.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqNGVno.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqOFWnM.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqOFXnO.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqOHwXp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqPihFx.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqPiifD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqPiiiI.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqRIASi.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqRICsq.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqRJaaw.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ssqRJyYp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJBrQkL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJBsSMe.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJCssqo.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJCssrs.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJCstrP.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJCuRKB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJCuUkH.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJCuUoL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJCvTlM.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJDUkhf.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJDUnol.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJDVpQK.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJYPhHx.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\ljJYQGyX.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUkIBUk.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUkIYoM.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUkLFya.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUljHBS.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUlkHaX.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUlllIc.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUlmnnm.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUmjHWN.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUmkjKB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUmlkiJ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUnKArq.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUnLFXQ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUnMdEV.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\wvUnNedC.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\BM8bfc4caf.xml (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\BM8bfc4caf.txt (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccaBQGX.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccaBTmn.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccaWNdD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccaWQjJ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccaXPjh.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccaYrst.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccbCroM.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccbXoli.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccbXrPg.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccbYopp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccccAsQ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccccYsp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fcccyVmn.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fcccyXPG.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccdbBsR.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccdcBTm.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccdddDw.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccdebby.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccdefec.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccyvSIA.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccywtsp.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\fccywvUK.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfCsqno.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfCtutt.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfCuSih.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfDtUOE.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfDvsSL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfDwvSj.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfDwvVL.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfETjgd.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfEUnLf.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfEXooo.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfEXpqQ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfFULdB.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfFVLEw.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfFVMFU.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfFVNgD.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfFXnMc.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfFYPIa.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfFYPJC.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfGwXqP.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\khfGyxYQ.dll (Trojan.Vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUkhiHb.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUlLDTj.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUmJBSm.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUmJCSm.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUmKAQi.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUmLbca.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUmLdAT.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUmMdcy.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUmNFuS.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUnlIbC.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUnmNGY.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUnnnkK.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUnnomK.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUolMeE.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUomjKc.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\WINDOWS\system32\vtUooOHB.dll (Trojan.vundo) -> Quarantined and deleted successfully. E:\Documents and Settings\Tran\delself.bat (Malware.Trace) -> Quarantined and deleted successfully. E:\WINDOWS\system32\svchost.t__ (Heuristics.Reserved.Word.Exploit) -> Quarantined and deleted successfully. COMBOFIX logg ComboFix 08-09-16.05 - Tran 2008-09-17 23:15:08.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.720 [GMT -7:00] Running from: C:\Programfiler\Malwarebytes' Anti-Malware\ComboFix.exe * Created a new restore point . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . E:\Documents and Settings\All Users.\documents\settings E:\Documents and Settings\All Users.\documents\settings\config.ini E:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat E:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat E:\WINDOWS\Installer\{1cbfed27-ef56-4d77-b3b8-990ca6c5fc7d}\ServiceService.dll E:\WINDOWS\Installer\{64680ecd-a192-4f61-a38c-4408fcafc260}\SrvRunOnce.dll E:\WINDOWS\Installer\{ade271d8-3252-4fd2-a128-94ffb1308c74}\ServiceCheck.dll E:\WINDOWS\system32\alonqton.bmp E:\WINDOWS\system32\aluxkwem.ini E:\WINDOWS\system32\aluxkwem.ini2 E:\WINDOWS\system32\cbqpofmhsreh.bmp E:\WINDOWS\system32\dkrmdsfqhsril.bmp E:\WINDOWS\system32\itsralkj.bmp E:\WINDOWS\system32\kjlkTvut.ini E:\WINDOWS\system32\kjlkTvut.ini2 E:\WINDOWS\system32\kralcralcb.bmp E:\WINDOWS\system32\mnnWyyay.ini E:\WINDOWS\system32\mnnWyyay.ini2 E:\WINDOWS\system32\nilcjatkbidsr.bmp E:\WINDOWS\system32\tkfqpsnehgbil.bmp E:\WINDOWS\system32\winsrc.dll.tmp ----- BITS: Possible infected sites ----- http://mynudenetwork.com . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_ASC3550O -------\Legacy_GOOGLE_ONLINE_SERVICES -------\Legacy_grande48 -------\Legacy_NTLOAD -------\Legacy_poof -------\Service_yeTyezzd ((((((((((((((((((((((((( Files Created from 2008-08-18 to 2008-09-18 ))))))))))))))))))))))))))))))) . 2008-09-17 23:10 . 2008-09-17 23:10 <DIR> d-------- E:\WINDOWS\system32\LogFiles 2008-09-17 23:04 . 2008-09-17 23:04 <DIR> d-------- E:\Program Files\Malwarebytes' Anti-Malware 2008-09-17 23:04 . 2008-09-17 23:04 <DIR> d-------- E:\Documents and Settings\Tran\Application Data\Malwarebytes 2008-09-17 23:04 . 2008-09-17 23:04 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-09-17 23:04 . 2008-09-10 00:04 38,528 --a------ E:\WINDOWS\system32\drivers\mbamswissarmy.sys 2008-09-17 23:04 . 2008-09-10 00:03 17,200 --a------ E:\WINDOWS\system32\drivers\mbam.sys . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-09-18 05:55 --------- d-----w E:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="E:\WINDOWS\system32\ctfmon.exe" [2004-08-04 15360] "MSMSGS"="E:\Program Files\Messenger\msmsgs.exe" [2004-08-04 1667584] "swg"="E:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-05-24 68856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "igfxtray"="E:\WINDOWS\system32\igfxtray.exe" [2005-11-03 98304] "igfxhkcmd"="E:\WINDOWS\system32\hkcmd.exe" [2005-11-03 77824] "igfxpers"="E:\WINDOWS\system32\igfxpers.exe" [2005-11-03 118784] "SunJavaUpdateSched"="E:\Program Files\Java\jre1.5.0_03\bin\jusched.exe" [2005-04-13 36975] "Sony Ericsson PC Suite"="E:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2006-11-24 487424] "High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 E:\WINDOWS\system32\HdAShCut.exe] "RTHDCPL"="RTHDCPL.EXE" [2005-05-25 E:\WINDOWS\RTHDCPL.EXE] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="E:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 15360] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "RunNarrator"="Narrator.exe" [2004-08-04 E:\WINDOWS\system32\narrator.exe] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dkq41.sys] @="Driver" [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= S0 dkq41;dkq41;E:\WINDOWS\system32\Drivers\Dkq41.sys [ ] S3 se44bus;Sony Ericsson Device 068 driver (WDM);E:\WINDOWS\system32\DRIVERS\se44bus.sys [2006-11-30 61536] S3 se44mdfl;Sony Ericsson Device 068 USB WMC Modem Filter;E:\WINDOWS\system32\DRIVERS\se44mdfl.sys [2006-11-30 9360] S3 se44mdm;Sony Ericsson Device 068 USB WMC Modem Driver;E:\WINDOWS\system32\DRIVERS\se44mdm.sys [2006-11-30 97088] S3 se44mgmt;Sony Ericsson Device 068 USB WMC Device Management Drivers (WDM);E:\WINDOWS\system32\DRIVERS\se44mgmt.sys [2006-11-30 88624] S3 se44nd5;Sony Ericsson Device 068 USB Ethernet Emulation SEMC44 (NDIS);E:\WINDOWS\system32\DRIVERS\se44nd5.sys [2006-11-30 18704] S3 se44obex;Sony Ericsson Device 068 USB WMC OBEX Interface;E:\WINDOWS\system32\DRIVERS\se44obex.sys [2006-11-30 86432] S3 se44unic;Sony Ericsson Device 068 USB Ethernet Emulation SEMC44 (WDM);E:\WINDOWS\system32\DRIVERS\se44unic.sys [2006-11-30 90800] . - - - - ORPHANS REMOVED - - - - HKLM-Run-caefqeck - E:\WINDOWS\system32\caefqeck.exe HKLM-Run-akpsvgmj - E:\WINDOWS\system32\akpsvgmj.exe HKLM-Explorer_Run-7ww9302wrd - E:\WINDOWS\TEMP\win10.exe . ------- Supplementary Scan ------- . R0 -: HKCU-Main,Start Page = hxxp://www.google.com R0 -: HKLM-Main,Start Page = hxxp://www.google.com R1 -: HKCU-SearchURL,(Default) = hxxp://www.google.com/search?q=%s . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-09-17 23:17:26 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . ------------------------ Other Running Processes ------------------------ . E:\ComboFix\pv.cfexe . ************************************************************************** . Completion time: 2008-09-17 23:18:28 - machine was rebooted ComboFix-quarantined-files.txt 2008-09-18 06:18:25 Pre-Run: 25,365,065,728 bytes free Post-Run: 25,329,610,752 bytes free 121 Lenke til kommentar
norbat Skrevet 17. september 2008 Del Skrevet 17. september 2008 Ser bra ut dette Fjern combofix ved å skrive combofix /u i kjør-feltet (start->kjør). Dette vil også nullstille systemgjenopprettingen slik at du ikke blir infisert ved en evt. gjenoppretting senere. Gå til Windows Update og sjekk for oppdateringer (start->alle programmer->windows update) Lenke til kommentar
MathiasN1 Skrevet 18. september 2008 Forfatter Del Skrevet 18. september 2008 Ser bra ut dette Fjern combofix ved å skrive combofix /u i kjør-feltet (start->kjør). Dette vil også nullstille systemgjenopprettingen slik at du ikke blir infisert ved en evt. gjenoppretting senere. Gå til Windows Update og sjekk for oppdateringer (start->alle programmer->windows update) når jeg skriver combofix /u i kjører feltet kommer det opp en melding om at pc'n ikke finner combofix Lenke til kommentar
snippsat Skrevet 19. september 2008 Del Skrevet 19. september 2008 (endret) når jeg skriver combofix /u i kjører feltet kommer det opp en melding om at pc'n ikke finner combofix Det er fordi du ikke har fulgt instruksjonen. Du har lagdt den her. C:\Programfiler\Malwarebytes' Anti-Malware\ComboFix.exe Fra veiledning. Last deretter ned Combofix , legg det på skrivebordet. Det kan være greit og legg den på skrivebordet kjøre en runde. Etter det tar du combofix /u Endret 19. september 2008 av SNIPPSAT Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå