Malwarebytes' Anti-Malware 1.11 Database version: 682 Scan type: Full Scan (C:\|) Objects scanned: 157090 Time elapsed: 40 minute(s), 36 second(s) Memory Processes Infected: 1 Memory Modules Infected: 4 Registry Keys Infected: 2 Registry Values Infected: 1 Registry Data Items Infected: 0 Folders Infected: 4 Files Infected: 117 Memory Processes Infected: C:\Program Files\WinReanimator\WinReanimator.exe (Rogue.WinReanimator) -> No action taken. Memory Modules Infected: c:\program files\winreanimator\winreanimator.dll (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\htmlayout.dll (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\pthreadVC2.dll (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\Microsoft.VC80.CRT\msvcr80.dll (Rogue.WinReanimator) -> No action taken. Registry Keys Infected: HKEY_LOCAL_MACHINE\SOFTWARE\WinReanimator (Rogue.WinReanimator) -> No action taken. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\asc3550p (Rootkit.Agent) -> No action taken. Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WinReanimator (Rogue.WinReanimator) -> No action taken. Registry Data Items Infected: (No malicious items detected) Folders Infected: C:\Program Files\WinReanimator (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\data (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\Microsoft.VC80.CRT (Rogue.WinReanimator) -> No action taken. C:\Documents and Settings\All Users\Start Menu\Programs\WinReanimator (Rogue.WinReanimator) -> No action taken. Files Infected: c:\program files\winreanimator\winreanimator.dll (Rogue.WinReanimator) -> No action taken. C:\!KillBox\cru629.dat (Trojan.FakeAlert) -> No action taken. C:\Documents and Settings\Owner.YOUR-AT5QGAAC3Z\Local Settings\Temporary Internet Files\Content.IE5\GHIJKLMN\Installer2[1].exe (Trojan.FakeAlert) -> No action taken. C:\Program Files\WinReanimator\install.exe (Trojan.FakeAlert) -> No action taken. C:\QooBox\Quarantine\C\WINDOWS\system32\wind32.exe.vir (Trojan.Downloader) -> No action taken. C:\QooBox\Quarantine\C\WINDOWS\system32\winivstr.exe.vir (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0000696.exe (Trojan.Downloader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0000709.exe (Trojan.Downloader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0000716.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0004770.scr (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005762.exe (Trojan.Peed) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005763.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005770.dll (Rogue.Multiple) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005771.dll (Rogue.Brave.Sentry) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005772.dll (Rogue.Multiple) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005774.dll (Adware.E404) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005776.exe (Trojan.DownLoader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005777.exe (Worm.Socks) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005778.exe (Trojan.DownLoader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005788.exe (Worm.Zhelatin) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005797.exe (Trojan.DownLoader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005799.exe (Worm.Socks) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005803.exe (Trojan.DownLoader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005812.exe (Worm.Zhelatin) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0005813.exe (Trojan.DownLoader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006795.exe (Worm.Socks) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006796.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006808.dll (Rogue.WinReanimator) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006906.dll (Trojan.Vundo) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006908.exe (Worm.Socks) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006909.exe (Trojan.Downloader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006910.exe (Trojan.Downloader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006911.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006912.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006913.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006915.dll (Trojan.Vundo) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006916.exe (Trojan.Downloader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006918.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006919.exe (Trojan.Pakes) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006920.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006921.exe (Trojan.Cryptic) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006922.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006923.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006924.exe (Trojan.Pakes) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006925.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006936.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006937.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006938.dll (Trojan.BHO) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006939.exe (Trojan.Vundo) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006940.dll (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006941.dll (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006942.dll (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006944.exe (BackDoor.Sdbot) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006945.exe (BackDoor.Sdbot) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006946.exe (Trojan.DownLoader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006947.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006948.exe (Trojan.DownLoader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006949.exe (Worm.Socks) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006950.exe (Worm.Socks) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006952.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006955.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006963.exe (Trojan.Peed) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006964.sys (Trojan.Srizbi) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006965.sys (Trojan.Srizbi) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006966.exe (Trojan.Clicker) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006967.exe (Trojan.BHO) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006968.exe (BackDoor.Bech) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006969.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0006970.exe (Trojan.Downloader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0007790.dll (Trojan.Vundo) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0007793.dll (Trojan.Vundo) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0007794.dll (Trojan.Vundo) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0007797.exe (Trojan.Agent) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0007798.dll (Trojan.Clicker) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0007799.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0007801.dll (Trojan.Vundo) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0007804.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0007805.dll (Trojan.BHO) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP5\A0007811.exe (Trojan.Peed) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0007879.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0007882.exe (Trojan.Downloader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0007932.exe (Trojan.Downloader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008369.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008373.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008374.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008375.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008376.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008424.exe (Trojan.Downloader) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008899.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008904.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008914.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008929.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008948.dll (Trojan.Vundo) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0008949.dll (Trojan.Vundo) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0009035.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0010048.exe (Trojan.FakeAlert) -> No action taken. C:\System Volume Information\_restore{7F7BE6F8-0D6A-488B-ABDC-75393719A72D}\RP6\A0010060.exe (Trojan.FakeAlert) -> No action taken. C:\WINDOWS\cru629.dat (Trojan.FakeAlert) -> No action taken. C:\WINDOWS\system32\cru629.dat (Trojan.FakeAlert) -> No action taken. C:\Program Files\WinReanimator\htmlayout.dll (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\pthreadVC2.dll (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\un.ico (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\unzip32.dll (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\WinReanimator.exe (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\data\daily.cvd (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\Microsoft.VC80.CRT\Microsoft.VC80.CRT.manifest (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\Microsoft.VC80.CRT\msvcm80.dll (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\Microsoft.VC80.CRT\msvcp80.dll (Rogue.WinReanimator) -> No action taken. C:\Program Files\WinReanimator\Microsoft.VC80.CRT\msvcr80.dll (Rogue.WinReanimator) -> No action taken. C:\Documents and Settings\All Users\Start Menu\Programs\WinReanimator\Uninstall.lnk (Rogue.WinReanimator) -> No action taken. C:\Documents and Settings\All Users\Start Menu\Programs\WinReanimator\WinReanimator.lnk (Rogue.WinReanimator) -> No action taken. C:\WINDOWS\system32\drivers\beep.sys (Fake.Beep.Sys) -> No action taken. C:\WINDOWS\system32\dllcache\beep.sys (Fake.Beep.Sys) -> No action taken. C:\WINDOWS\system32\univrs32.dat (Trojan.Agent) -> No action taken. C:\WINDOWS\braviax.exe (Trojan.Downloader) -> No action taken. C:\Documents and Settings\Owner.YOUR-AT5QGAAC3Z\delself.bat (Malware.Trace) -> No action taken. C:\Documents and Settings\All Users\Desktop\WinReanimator.lnk (Rogue.WinReanimator) -> No action taken.