Need Help with Braviax [Archive] - Safer-Networking Forums

NC Bubba

2008-03-22, 22:11

I aquired the red x on my toolbar about two week ago. I was cruisung the internet and all of a sudden my computer rebooted. Once it came back up the little red x was present and it is telling me my machine is infected and that I should down load their antispyware program. I knew something was up and been trying to avoid clicking on. I have gone thru your Read Before Post list and have downloaded the programs but I am unable to start them (Spybot, HiJackThis). I was able to run Kaspersky, which I have attached the log. This virus has also appeared to have affected my Adobe Program and will not load my Acrotray. I had post this request in another forum a week ago, but not had any response as of this date. Any help in this matter would be greatly appreciated.

Unable to fit into one post. Will post second shortly.

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
March 22, 2008 3:14:56 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 22/03/2008
Kaspersky Anti-Virus database records: 591240
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: standard
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\
E:\
H:\

Scan Statistics:
Total number of scanned objects: 192290
Number of viruses found: 30
Number of infected objects: 146
Number of suspicious objects: 10
Duration of the scan process: 03:21:20

Infected Object Name / Virus Name / Last Action
C:\!KillBox\thhyzzoa.dll Infected: Trojan.Win32.Obfuscated.gx skipped
C:\!KillBox\winshow.exe Infected: Trojan.Win32.VB.cdm skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\10da5639bda4dcc5fc186164b1333d9f_9192d17a-9a72-4204-823a-85ab53b53cd0 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\5071873c498e86e0edc538b9fb76e5e6_9192d17a-9a72-4204-823a-85ab53b53cd0 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\64b1b31d79c1e34b3b4b345bc934b9a3_9192d17a-9a72-4204-823a-85ab53b53cd0 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\7755c174d12429e601bae505054e4470_9192d17a-9a72-4204-823a-85ab53b53cd0 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\83eb4887dba7035ec5d247e6960e9228_9192d17a-9a72-4204-823a-85ab53b53cd0 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\92dccd9a8e5a73963e4f274e0e41dd02_9192d17a-9a72-4204-823a-85ab53b53cd0 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\WebBuyingAssistant.zip/v1.8.6/wbuninst.exe Suspicious: Password-protected-EXE skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\WebBuyingAssistant.zip ZIP: suspicious - 1 skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Yazzle.zip/Yazzle1552OinUninstaller.exe Suspicious: Password-protected-EXE skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Yazzle.zip ZIP: suspicious - 1 skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Yazzle2.zip/Yazzle1552OinUninstaller.exe Suspicious: Password-protected-EXE skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Yazzle2.zip ZIP: suspicious - 1 skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Yazzle5.zip/Yazzle1552OinUninstaller.exe Suspicious: Password-protected-EXE skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Yazzle5.zip ZIP: suspicious - 1 skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\YazzleSudoku.zip/Yazzle1549OinUninstaller.exe Suspicious: Password-protected-EXE skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\YazzleSudoku.zip ZIP: suspicious - 1 skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\INDEX.DAT Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\TIMM\.housecall6.6\Quarantine\Dc1.BMP.bac_a01756 Infected: Trojan-PSW.Win32.OnLineGames.mk skipped
C:\Documents and Settings\TIMM\Application Data\Microsoft\Outlook\TimManning.srs Object is locked skipped
C:\Documents and Settings\TIMM\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\TIMM\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_59R.wmdb Object is locked skipped
C:\Documents and Settings\TIMM\Local Settings\Application Data\Microsoft\Outlook\outlook.ost Object is locked skipped
C:\Documents and Settings\TIMM\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\TIMM\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\TIMM\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\TIMM\Local Settings\History\History.IE5\MSHist012008032220080323\index.dat Object is locked skipped
C:\Documents and Settings\TIMM\Local Settings\Temp\ExchangePerflog_8484fa31be4563082555fd4c.dat Object is locked skipped
C:\Documents and Settings\TIMM\Local Settings\Temporary Internet Files\Content.IE5\C4H61Q6Y\Hotel[1].Byblos.3.part2.rar Object is locked skipped
C:\Documents and Settings\TIMM\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\TIMM\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\TIMM\ntuser.dat.LOG Object is locked skipped
C:\info.exe Infected: Trojan-Downloader.Win32.Tiny.aij skipped
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\master.mdf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\mastlog.ldf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\model.mdf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\modellog.ldf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\tempdb.mdf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\templog.ldf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\LOG\ERRORLOG Object is locked skipped
C:\Program Files\xInsIDE\xInsIDE.exe Infected: Trojan-Downloader.Win32.Adload.rk skipped
C:\QooBox\Quarantine\C\Program Files\Common Files\SSTEM3~1\smss.exe.vir Infected: Trojan-Downloader.Win32.PurityScan.fn skipped
C:\QooBox\Quarantine\C\Program Files\Common Files\Yazzle1281OinAdmin.exe.vir Infected: Trojan.Win32.Scapur.k skipped
C:\QooBox\Quarantine\C\Program Files\Temporary\InsiDERInst.exe.vir Infected: Trojan.Win32.Agent.ffe skipped
C:\QooBox\Quarantine\C\WINDOWS\b116.exe.vir Infected: Trojan-Downloader.Win32.Agent.ezc skipped
C:\QooBox\Quarantine\C\WINDOWS\b122.exe.vir Infected: Trojan-Downloader.Win32.Agent.hvj skipped
C:\QooBox\Quarantine\C\WINDOWS\b153.exe.vir Infected: Trojan-Downloader.Win32.Agent.jig skipped
C:\QooBox\Quarantine\C\WINDOWS\MBOLS~1\mshta.exe.vir Infected: Trojan-Downloader.Win32.PurityScan.fj skipped
C:\QooBox\Quarantine\C\WINDOWS\mrofinu1000106.exe.vir Infected: Trojan-Downloader.Win32.Agent.idv skipped
C:\QooBox\Quarantine\C\WINDOWS\mrofinu572.exe.vir Infected: Trojan-Downloader.Win32.Agent.iug skipped
C:\QooBox\Quarantine\C\WINDOWS\mrofinu72.exe.vir Infected: Trojan-Downloader.Win32.Agent.idv skipped
C:\QooBox\Quarantine\C\WINDOWS\SYSTEM32\000070.exe.vir/data0002 Infected: Trojan.Win32.Scapur.k skipped
C:\QooBox\Quarantine\C\WINDOWS\SYSTEM32\000070.exe.vir NSIS: infected - 1 skipped

NC Bubba

2008-03-22, 22:12

Second Half of Log

C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP13\A0003107.exe Infected: Trojan-Downloader.Win32.PurityScan.fn skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP13\A0003109.exe Infected: Trojan-Downloader.Win32.Agent.idv skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP13\A0003110.exe Infected: Trojan-Downloader.Win32.Agent.ezc skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP13\A0003111.exe Infected: Trojan-Downloader.Win32.Agent.hvj skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP13\A0003113.exe/data0002 Infected: Trojan.Win32.Scapur.k skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP13\A0003113.exe NSIS: infected - 1 skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP14\A0003208.exe Infected: Trojan-Downloader.Win32.VB.cge skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP16\A0003230.exe Infected: Trojan.Win32.Scapur.k skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP16\A0003231.exe Infected: Trojan-Downloader.Win32.VB.cgu skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP16\A0003232.exe Infected: Trojan-Downloader.Win32.Agent.idv skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP16\A0003233.exe Infected: Trojan-Downloader.Win32.Agent.iug skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP18\A0003290.exe Infected: Trojan-Downloader.Win32.VB.cgu skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP18\A0003291.exe Infected: Trojan.Win32.Scapur.k skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP18\A0003292.exe Infected: Trojan-Downloader.Win32.PurityScan.fj skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP18\A0003293.exe Infected: Trojan-Downloader.Win32.Agent.iug skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP19\A0004397.exe Infected: Trojan-Downloader.Win32.PurityScan.fj skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP19\A0004425.exe Infected: Trojan.Win32.Scapur.k skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP19\A0004426.exe Infected: Trojan-Downloader.Win32.Agent.idv skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP19\A0004427.exe Infected: Trojan-Downloader.Win32.Agent.iug skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP19\A0004527.exe Infected: Trojan-Downloader.Win32.VB.cgu skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP22\A0010639.exe Infected: Trojan.Win32.Agent.ffe skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP22\A0010640.exe Infected: Trojan-Downloader.Win32.PurityScan.fj skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP22\A0010642.exe Infected: Trojan.Win32.Scapur.k skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP22\A0010643.exe Infected: Trojan-Downloader.Win32.Agent.iug skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP22\A0010644.exe Infected: Trojan-Downloader.Win32.Agent.ezc skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP22\A0010645.exe Infected: Trojan-Downloader.Win32.Agent.jig skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP23\A0010730.exe Infected: Trojan-Downloader.Win32.Tiny.ads skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP30\A0011284.exe Infected: Trojan-Downloader.Win32.Adload.pr skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP42\A0014962.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP42\A0014995.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP42\A0014996.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP42\A0015003.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP42\A0015008.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP42\A0015009.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0015038.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0015039.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0015080.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0015087.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0015091.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0015092.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0015096.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0015097.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0015118.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0015119.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0016118.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\A0016119.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP43\snapshot\MFEX-1.DAT Infected: Trojan.Win32.Agent.dyu skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP44\A0016161.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP45\A0016341.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP47\A0016480.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP47\A0016481.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP47\A0016506.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP47\A0016538.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP47\A0016552.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP47\A0016574.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP48\A0016611.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP48\A0016612.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP48\A0016615.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP49\A0016654.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP49\A0016655.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP49\A0016676.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP49\A0016677.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP50\A0016728.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP50\A0016729.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP51\A0016759.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP51\A0016760.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0016807.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0016808.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0017807.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0017808.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0017810.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0017811.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0017813.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0017814.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0017901.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0017902.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0018908.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0018909.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0018920.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP52\A0018921.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP53\A0018964.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP53\A0018965.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP53\A0018975.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP53\A0018976.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP53\A0019975.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP53\A0019976.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP53\A0019997.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP53\A0019998.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP54\A0020063.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP54\A0020064.exe Infected: not-virus:Hoax.Win32.Renos.bcz skipped
C:\System Volume Information\_restore{CCA15F78-7193-4CA6-8115-2B570DD6546C}\RP54\change.log Object is locked skipped