Page 6 of 11 FirstFirst ... 2345678910 ... LastLast
Results 51 to 60 of 102

Thread: Please Help! Virtumonde, MalwareAlarm (SecCenter), etc.

  1. #51
    Member
    Join Date
    Dec 2007
    Posts
    62

    Default

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 3:07:08 PM, on 12/28/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\WINDOWS\system32\DVDRAMSV.exe
    C:\Program Files\Visioneer\OneTouch 4.0\OtService.exe
    C:\WINDOWS\system32\svchost.exe
    c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
    C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
    C:\WINDOWS\AGRSMMSG.exe
    C:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exe
    C:\WINDOWS\system32\TPSMain.exe
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\system32\TPSBattM.exe
    C:\WINDOWS\system32\RunDLL32.exe
    C:\WINDOWS\system32\RAMASST.exe
    C:\Program Files\Red Chair Software\Anapod Explorer\anamgr.exe
    C:\Program Files\PdaNet for Windows Mobile\PdaNetPC.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Trend Micro\HijackThis\psywzrd.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
    O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
    O4 - HKLM\..\Run: [HPHmon04] C:\WINDOWS\system32\hphmon04.exe
    O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [OfotoNow USB Detection] C:\WINDOWS\system32\RunDLL32.exe C:\PROGRA~1\Ofoto\OfotoNow\OFUSBS.DLL,WatchForConnection OfotoNow
    O4 - Startup: Anapod Manager.lnk = C:\Program Files\Red Chair Software\Anapod Explorer\anamgr.exe
    O4 - Startup: PdaNet Desktop.lnk = C:\Program Files\PdaNet for Windows Mobile\PdaNetPC.exe
    O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe
    O4 - Global Startup: Wireless Sync Client.lnk = C:\Program Files\Wireless Sync\Client\ClientShell.exe
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - AutorunsDisabled - (no file)
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O14 - IERESET.INF: START_PAGE_URL=http://www.toshibadirect.com/dpdstart
    O16 - DPF: {08BEF711-06DA-48B2-9534-802ECAA2E4F9} (PlxInstall Class) - https://www.plaxo.com/down/latest/PlaxoInstall.cab
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english...an_unicode.cab
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/acti..._v1-0-3-36.cab
    O16 - DPF: {8AA1AE9E-9FB0-41B3-8911-89A1068A7FD1} (Installer Class) - https://www3.wirelesssync.vzw.com/en/SyncInstall.cab
    O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterfly.com/downloads/Uploader.cab
    O16 - DPF: {E473A65C-8087-49A3-AFFD-C5BC4A10669B} (Quantum Streaming IE Player Class) - http://mvnet.xlontech.net/qm/fox/061...ie06101001.cab
    O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
    O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: OneTouch 4.0 Monitor - Visioneer Inc. - C:\Program Files\Visioneer\OneTouch 4.0\OtService.exe
    O23 - Service: Pml Driver HPH11 - HP - C:\WINDOWS\system32\HPHipm11.exe
    O23 - Service: Swupdtmr - Unknown owner - c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
    O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe

    --
    End of file - 6226 bytes

  2. #52
    Security Expert: Emeritus
    Join Date
    Oct 2006
    Location
    Finland
    Posts
    29,374

    Default

    Hi

    That looks good

    Re-scan with kaspersky online scan.

    Post:

    - a fresh HijackThis log
    - kaspersky report
    Microsoft MVP Consumer Security 2008-2011

    Member of ASAP and UNITE since 2006

  3. #53
    Member
    Join Date
    Dec 2007
    Posts
    62

    Default

    Kaspersky still seems to be finding a lot of problems - hopefully there's an easy way to clean those up without messing anything up. The Kapsersky log is way too long to post (almost 93000 characters). Should I just attach it? Here's the HJT log:

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 1:06:39 PM, on 12/29/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\WINDOWS\system32\DVDRAMSV.exe
    C:\Program Files\Visioneer\OneTouch 4.0\OtService.exe
    C:\WINDOWS\system32\svchost.exe
    c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
    C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
    C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
    C:\WINDOWS\AGRSMMSG.exe
    C:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exe
    C:\WINDOWS\system32\TPSMain.exe
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\system32\TPSBattM.exe
    C:\WINDOWS\system32\RunDLL32.exe
    C:\WINDOWS\system32\RAMASST.exe
    C:\Program Files\Red Chair Software\Anapod Explorer\anamgr.exe
    C:\Program Files\PdaNet for Windows Mobile\PdaNetPC.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Trend Micro\HijackThis\psywzrd.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
    O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
    O4 - HKLM\..\Run: [HPHmon04] C:\WINDOWS\system32\hphmon04.exe
    O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [OfotoNow USB Detection] C:\WINDOWS\system32\RunDLL32.exe C:\PROGRA~1\Ofoto\OfotoNow\OFUSBS.DLL,WatchForConnection OfotoNow
    O4 - Startup: Anapod Manager.lnk = C:\Program Files\Red Chair Software\Anapod Explorer\anamgr.exe
    O4 - Startup: PdaNet Desktop.lnk = C:\Program Files\PdaNet for Windows Mobile\PdaNetPC.exe
    O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe
    O4 - Global Startup: Wireless Sync Client.lnk = C:\Program Files\Wireless Sync\Client\ClientShell.exe
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - AutorunsDisabled - (no file)
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O14 - IERESET.INF: START_PAGE_URL=http://www.toshibadirect.com/dpdstart
    O16 - DPF: {08BEF711-06DA-48B2-9534-802ECAA2E4F9} (PlxInstall Class) - https://www.plaxo.com/down/latest/PlaxoInstall.cab
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english...an_unicode.cab
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/acti..._v1-0-3-36.cab
    O16 - DPF: {8AA1AE9E-9FB0-41B3-8911-89A1068A7FD1} (Installer Class) - https://www3.wirelesssync.vzw.com/en/SyncInstall.cab
    O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterfly.com/downloads/Uploader.cab
    O16 - DPF: {E473A65C-8087-49A3-AFFD-C5BC4A10669B} (Quantum Streaming IE Player Class) - http://mvnet.xlontech.net/qm/fox/061...ie06101001.cab
    O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
    O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: OneTouch 4.0 Monitor - Visioneer Inc. - C:\Program Files\Visioneer\OneTouch 4.0\OtService.exe
    O23 - Service: Pml Driver HPH11 - HP - C:\WINDOWS\system32\HPHipm11.exe
    O23 - Service: Swupdtmr - Unknown owner - c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
    O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe

    --
    End of file - 6226 bytes

  4. #54
    Security Expert: Emeritus
    Join Date
    Oct 2006
    Location
    Finland
    Posts
    29,374

    Default

    Hi

    First you can try to edit out all lines with object locked skipped.

    If no, please attach it.
    Microsoft MVP Consumer Security 2008-2011

    Member of ASAP and UNITE since 2006

  5. #55
    Member
    Join Date
    Dec 2007
    Posts
    62

    Default

    Just to be clear, you want me to edit out lines that shows that the object is both locked AND skipped?

  6. #56
    Security Expert: Emeritus
    Join Date
    Oct 2006
    Location
    Finland
    Posts
    29,374

    Default

    Hi

    Exactly
    Microsoft MVP Consumer Security 2008-2011

    Member of ASAP and UNITE since 2006

  7. #57
    Member
    Join Date
    Dec 2007
    Posts
    62

    Default

    -------------------------------------------------------------------------------
    KASPERSKY ONLINE SCANNER REPORT
    Saturday, December 29, 2007 1:05:52 PM
    Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
    Kaspersky Online Scanner version: 5.0.98.0
    Kaspersky Anti-Virus database last update: 29/12/2007
    Kaspersky Anti-Virus database records: 499833
    -------------------------------------------------------------------------------

    Scan Settings:
    Scan using the following antivirus database: extended
    Scan Archives: true
    Scan Mail Bases: true

    Scan Target - My Computer:
    C:\
    D:\
    Z:\

    Scan Statistics:
    Total number of scanned objects: 74437
    Number of viruses found: 7
    Number of infected objects: 570
    Number of suspicious objects: 0
    Duration of the scan process: 02:26:19

    Infected Object Name / Virus Name / Last Action
    C:\Documents and Settings\Administrator\.housecall6.6\Quarantine\image5[1].gif.bac_a01008 Infected: Trojan-Downloader.Win32.Alphabet.gen skipped
    C:\Documents and Settings\Administrator\.housecall6.6\Quarantine\TMP129.tmp.bac_a01008 Infected: Trojan-Downloader.Win32.Alphabet.gen skipped
    C:\Documents and Settings\Administrator\.housecall6.6\Quarantine\TMP200B.tmp.bac_a01008 Infected: Trojan-Downloader.Win32.Alphabet.gen skipped
    C:\Documents and Settings\Administrator\.housecall6.6\Quarantine\TMP206F.tmp.bac_a01008 Infected: Trojan-Downloader.Win32.Alphabet.gen skipped
    C:\Documents and Settings\Administrator\.housecall6.6\Quarantine\TMP20D2.tmp.bac_a01008 Infected: Trojan-Downloader.Win32.Alphabet.gen skipped
    C:\Documents and Settings\Administrator\.housecall6.6\Quarantine\win1F8E.tmp .exe.bac_a01008 Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\Documents and Settings\Administrator\.housecall6.6\Quarantine\win1F8E.tmp .exe.bac_a01008 Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\Documents and Settings\Administrator\.housecall6.6\Quarantine\win1F8E.tmp.exe.bac_a01008 Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\Documents and Settings\Administrator\.housecall6.6\Quarantine\win206F.tmp.exe.bac_a01008 Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\Documents and Settings\****\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\cnte-dhncgts.jar-2df40f00-36d53853.zip/BnnnnBaa.class Infected: Trojan.Java.ClassLoader.as skipped
    C:\Documents and Settings\****\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\cnte-dhncgts.jar-2df40f00-36d53853.zip/VaannnaaBaa.class Infected: Trojan.Java.ClassLoader.as skipped
    C:\Documents and Settings\****\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\cnte-dhncgts.jar-2df40f00-36d53853.zip/Bnnnnn.class Infected: Trojan.Java.ClassLoader.as skipped
    C:\Documents and Settings\****\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\cnte-dhncgts.jar-2df40f00-36d53853.zip ZIP: infected - 3 skipped
    C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\Program Files\Messenger\msmsgs.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\Program Files\QuickTime\qttask.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Analog Devices\SoundMAX\Smax4 .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\Microsoft ActiveSync\wcescomm .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\Program Files\QuickTime\qttask .exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\WINDOWS\system32\dla\tfswctrl.exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\WINDOWS\system32\drvweg.dll.vir Infected: Trojan.Win32.Dialer.yz skipped
    C:\qoobox\Quarantine\C\WINDOWS\system32\ljjkjgf.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cln skipped
    C:\qoobox\Quarantine\C\WINDOWS\system32\OLD54.tmp.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\WINDOWS\system32\RCX8C.tmp.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\WINDOWS\system32\rqrpp.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.clc skipped
    Last edited by Shaba; 2008-01-23 at 11:03.

  8. #58
    Member
    Join Date
    Dec 2007
    Posts
    62

    Default

    C:\qoobox\Quarantine\C\WINDOWS\system32\rqrpp.exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\C\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\catchme2007-12-24_203800.27.zip/rqrpp.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.clc skipped
    C:\qoobox\Quarantine\catchme2007-12-24_203800.27.zip/xxyyvuv.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.cln skipped
    C:\qoobox\Quarantine\catchme2007-12-24_203800.27.zip ZIP: infected - 2 skipped
    C:\qoobox\Quarantine\catchme2007-12-27_154140.12.zip/rqrpp.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.clc skipped
    C:\qoobox\Quarantine\catchme2007-12-27_154140.12.zip ZIP: infected - 1 skipped
    C:\qoobox\Quarantine\catchme2007-12-28_105142.96.zip/rqrpp.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\qoobox\Quarantine\catchme2007-12-28_105142.96.zip ZIP: infected - 1 skipped
    C:\qoobox\Quarantine\catchme2007-12-28_125335.66.zip/rqrpp.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.clc skipped
    C:\qoobox\Quarantine\catchme2007-12-28_125335.66.zip ZIP: infected - 1 skipped
    C:\SDFix\backups_old1\backups.zip/backups/ctfmon.exe.tmp Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\SDFix\backups_old1\backups.zip/backups/spoolsv.exe Infected: Trojan-Downloader.Win32.Alphabet.gen skipped
    C:\SDFix\backups_old1\backups.zip ZIP: infected - 2 skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100169.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100170.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100171.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100172.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100176.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100177.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100178.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.clc skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100190.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100191.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100193.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100194.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100195.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100196.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100197.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100198.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100199.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100200.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100201.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100202.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100203.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100205.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100206.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100207.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100208.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100209.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100210.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100211.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100212.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100213.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100215.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100218.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100293.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100296.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100297.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100298.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100299.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100300.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100301.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100302.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100304.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100305.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100306.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100307.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100308.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100309.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100311.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100312.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100313.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100314.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100315.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped

  9. #59
    Member
    Join Date
    Dec 2007
    Posts
    62

    Default

    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100321.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.clc skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100328.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100329.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100330.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100331.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100333.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100334.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100335.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100336.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100337.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100338.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100339.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100340.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100342.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100343.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100345.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100346.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100347.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100348.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100349.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100351.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100353.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100355.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100360.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0100361.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101329.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101330.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101331.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101332.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101333.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101334.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101335.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101336.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101337.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101338.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101339.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101340.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101341.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101342.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101344.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101345.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101346.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101347.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101348.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101349.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101350.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101351.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101352.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1000\A0101353.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101408.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.clc skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101421.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101422.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101423.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101424.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101425.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101426.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101427.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101428.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101429.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101430.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101431.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101432.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101433.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101434.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101435.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101436.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101437.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101438.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101439.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101440.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101441.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101443.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1001\A0101445.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101519.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101520.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101522.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101523.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101524.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101525.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101526.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101527.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101528.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101529.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101531.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101576.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101577.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101578.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101579.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101580.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101581.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101582.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101583.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101585.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101586.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101596.rbf Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1002\A0101638.rbf Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped

  10. #60
    Member
    Join Date
    Dec 2007
    Posts
    62

    Default

    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1004\A0101741.rbf Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102430.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102431.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102433.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102434.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102435.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102436.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102437.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102438.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102439.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102440.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102441.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102442.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102443.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102444.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102445.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102446.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102447.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102448.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1005\A0102449.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1006\A0102486.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1007\A0102494.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1007\A0102498.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1008\A0102536.rbf Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1010\A0102824.rbf Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1010\A0102858.rbf Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1010\A0102964.rbf Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103565.rbf Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103619.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103621.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103622.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103623.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103624.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103625.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103626.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103627.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103628.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103629.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103630.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1011\A0103631.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1012\A0103650.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1012\A0103652.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1012\A0103653.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1012\A0103654.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1012\A0103656.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1012\A0103658.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1012\A0103659.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1012\A0103660.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1012\A0103661.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1013\A0103662.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1013\A0103664.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1013\A0103694.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1013\A0103695.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1013\A0103696.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1013\A0103697.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1014\A0103698.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1014\A0103732.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1014\A0103733.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1014\A0103734.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1014\A0103735.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1014\A0103736.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1016\A0103861.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1016\A0103862.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1016\A0103863.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1016\A0103864.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1016\A0103865.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1016\A0103871.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103880.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103885.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103887.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103888.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103889.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103893.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.clc skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103903.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103904.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103905.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103906.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1017\A0103907.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103927.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103929.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103930.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103931.EXE Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103932.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103933.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103953.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103954.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103955.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.cli skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103956.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.clc skipped
    C:\System Volume Information\_restore{145A78D9-30F3-4441-A76F-9F54405CDEA6}\RP1018\A0103957.exe Infected: Trojan-Downloader.Win32.Agent.gwe skipped

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •