Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Win32 TratBHO Trojan [RESOLVED]


  • This topic is locked This topic is locked

#1
welder572

welder572

    Member

  • Member
  • PipPip
  • 10 posts
Hi,

We have run the AVG anti-spyware. It did not remove the problem, and also did not produce a report. We also ran Super Anti-Spyware which created the following log....

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 02/11/2008 at 07:44 PM

Application Version : 3.9.1008

Core Rules Database Version : 3399
Trace Rules Database Version: 1391

Scan type : Complete Scan
Total Scan Time : 01:10:40

Memory items scanned : 428
Memory threats detected : 2
Registry items scanned : 5845
Registry threats detected : 10
File items scanned : 53284
File threats detected : 34

Adware.Vundo-Variant/PolyMorph-A
C:\WINDOWS\SYSTEM32\YAYXVUT.DLL
C:\WINDOWS\SYSTEM32\YAYXVUT.DLL
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C8CDF0B6-A3C3-4ABC-BBCA-EA772B562921}
HKCR\CLSID\{C8CDF0B6-A3C3-4ABC-BBCA-EA772B562921}
HKCR\CLSID\{C8CDF0B6-A3C3-4ABC-BBCA-EA772B562921}\InprocServer32
HKCR\CLSID\{C8CDF0B6-A3C3-4ABC-BBCA-EA772B562921}\InprocServer32#ThreadingModel
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks#{C8CDF0B6-A3C3-4ABC-BBCA-EA772B562921}
Software\Microsoft\Windows NT\CurrentVersion\WinLogon\Notify\yayxvut
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP586\A0223025.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP586\A0223035.DLL
C:\WINDOWS\SYSTEM32\CBXXUST.DLL
C:\WINDOWS\SYSTEM32\CBXXWXV.DLL
C:\WINDOWS\SYSTEM32\KHFFFFE.DLL
C:\WINDOWS\SYSTEM32\LJJKHII.DLL
C:\WINDOWS\SYSTEM32\LJJKJGE.DLL
C:\WINDOWS\SYSTEM32\NNNMNNM.DLL
C:\WINDOWS\SYSTEM32\QOMNNLJ.DLL
C:\WINDOWS\SYSTEM32\SSQNKJH.DLL
C:\WINDOWS\SYSTEM32\VTUUTQR.DLL
C:\WINDOWS\SYSTEM32\XXYAAXX.DLL

Adware.Vundo Variant
C:\WINDOWS\SYSTEM32\HGDBC.DLL
C:\WINDOWS\SYSTEM32\HGDBC.DLL
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1250569A-F900-4727-A41F-717639EFC6D8}
HKCR\CLSID\{1250569A-F900-4727-A41F-717639EFC6D8}
HKCR\CLSID\{1250569A-F900-4727-A41F-717639EFC6D8}\InprocServer32
HKCR\CLSID\{1250569A-F900-4727-A41F-717639EFC6D8}\InprocServer32#ThreadingModel

Adware.Tracking Cookie
C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
C:\Documents and Settings\Owner\Cookies\[email protected][2].txt
C:\Documents and Settings\Owner\Cookies\[email protected][2].txt
C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
C:\Documents and Settings\Owner\Cookies\[email protected][2].txt
C:\Documents and Settings\Owner\Cookies\[email protected][2].txt

BearShare File Sharing Client
F:\PROGRAM FILES\BEARSHARE\BEARSHARE.EXE
C:\DOCUMENTS AND SETTINGS\JOAN\DESKTOP\BEARSHARE.LNK
C:\DOCUMENTS AND SETTINGS\OWNER\DESKTOP\BEARSHARE.LNK
C:\PROGRAM FILES\BEARSHARE APPLICATIONS\BEARSHARE\BEARSHARE.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP580\A0221385.LNK

Adware.Vundo-Variant
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP586\A0223036.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP586\A0223158.DLL

Adware.Vundo Variant/Rel
C:\WINDOWS\SYSTEM32\CBDGH.INI

Adware.Vundo-Variant/Small-A
C:\WINDOWS\SYSTEM32\YFMDBKSD.DLL

Trace.Known Threat Sources
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\MHI94NGV\rd-fakeout2-720x300[1].gif


We could not run Panda Active Scan, our anti virus software said it had a worm in it.
Next we ran the Hijack This scan which produced the following log report....

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:13:23 PM, on 2/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Documents and Settings\Owner\Desktop\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Digital Media Reader\shwiconem.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE
C:\Program Files\BellSouth\AM\BellSouthAlertManager.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Support.com\bin\tgcmd.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\explorer.exe
C:\PROGRA~1\NETSCAPE\NETSCA~1\NETSCAPE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Mozilla Firefox\firefox.exe

R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - {0A94B116-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: BellSouth Toolbar - {4E7BD74F-2B8D-469E-8CBD-FD60BB9AAE2E} - C:\PROGRA~1\BLSTOO~1\BLSTOO~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\Support.com\BellSouth\hcenter.exe" /starthidden /tgcmdwrapper
O4 - HKLM\..\Run: [SunKistEM] C:\Program Files\Digital Media Reader\shwiconem.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Reminder] %WINDIR%\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Lexmark 2200 Series] "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun
O4 - HKLM\..\Run: [BellSouthAlertManager.exe] "C:\Program Files\BellSouth\AM\BellSouthAlertManager.exe" /AUTORUN
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\BitTorrent_DNA\dna.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
O4 - HKCU\..\Policies\Explorer\Run: [NTSpool] NTSpool.exe
O4 - HKCU\..\Policies\Explorer\Run: [Windows Printing Driver] WinSpooler.exe
O4 - HKCU\..\Policies\Explorer\Run: [WinUpdating] WinUpdating.exe
O4 - Global Startup: Microsoft Office Fast Start.lnk = C:\MSOffice\Office\FASTBOOT.EXE
O4 - Global Startup: Microsoft Office Find Fast Indexer.lnk = C:\MSOffice\Office\FINDFAST.EXE
O4 - Global Startup: Microsoft Office Shortcut Bar.lnk = C:\MSOffice\Office\MSOFFICE.EXE
O4 - Global Startup: ymetray.lnk = C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplane...C_2.3.6.108.cab
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.c.../acclaim_v4.cab
O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comne...login-devel.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} - http://static.zangoc...ece5b5b666353a7
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Documents and Settings\Owner\Desktop\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

--
End of file - 9021 bytes


Avast finds the Trojan, we hit the delete button, but the same pop-up ad keeps coming up. Any help would be appreciated.

Thanks,

Bryan
  • 0

Advertisements


#2
IndiGenus

IndiGenus

    Anti-Malware Buddha

  • Member
  • PipPipPipPip
  • 1,617 posts
Hi Bryan and welcome to the forums.

My name is Dave. I would be glad to take a look at your log and help you with solving any malware problems. HijackThis logs can sometimes take a while to research so please be patient and I'd be grateful if you would note the following:
  • I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for this issue on this machine.
  • Please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear.
  • It's often worth reading through these instructions and printing them for ease of reference.
  • If you don't know or understand something, please don't hesitate to say or ask!! It's better to be sure and safe than sorry.
  • Please reply to this thread. Do not start a new topic.
  • Make sure to make a backup of any data that you have created, such as documents, pictures, music, ect... before we begin the fix.
I need to check any posts to you with a teacher/expert first so please be patient as we go through this.
  • 0

#3
welder572

welder572

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
Thanks for the help. All files are backed up already, execpt for the meusic files, they are on a seperate hard drive.
  • 0

#4
IndiGenus

IndiGenus

    Anti-Malware Buddha

  • Member
  • PipPipPipPip
  • 1,617 posts
Hi,

You have several infections going on here.

First,
Please download SDFix and save it to your Desktop.

You should print out these instructions, or copy them to a NotePad file for reading while in Safe Mode, because you will not be able to connect to the Internet to read from this site.

Double click on SDFix.exe. It should automatically extract a folder called SDFix to your system drive (usually C:\). Please reboot your computer in Safe Mode by doing the following :
  • Restart your computer
  • After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
  • Instead of Windows loading as normal, a menu with options should appear;
  • Select the first option, to run Windows in Safe Mode, then press "Enter".
  • Choose your usual account.
  • Open the SDFix folder and double click on RunThis.bat to start the script.
  • Type Y and press Enter to begin the script.
  • It will start cleaning your PC and then prompt you to press any key to Reboot.
  • Press any key to restart the PC.
  • Your system will take longer than normal to restart as the fixtool will be removing files.
  • When the desktop loads the Fixtool will complete the removal and display Finished.
  • Press any key to end the script and to load your desktop icons.
  • A text file should automatically open, so please copy the contents and post them here.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Next,
Please download ComboFix by sUBs from HERE or HERE
  • You must download it to and run it from your Desktop
  • Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
  • Double click combofix.exe & follow the prompts.
  • When finished, it will produce a log. Please save that log to post in your next reply along with a fresh HJT log
  • Re-enable all the programs that were disabled during the running of ComboFix..

Note:
Do not mouse-click combofix's window while it is running. That may cause it to stall.

CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.

So, I need the following logs in your reply:SDFix log
Combofix log
HijackThis log


  • 0

#5
welder572

welder572

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
SDFix log


SDFix: Version 1.142

Run by Administrator on Thu 02/14/2008 at 05:27 PM

Microsoft Windows XP [Version 5.1.2600]

Running From: C:\SDFix

Safe Mode:
Checking Services:


Restoring Windows Registry Values
Restoring Windows Default Hosts File

Rebooting...


Normal Mode:
Checking Files:

Trojan Files Found:

C:\WINDOWS\system32\NTSpool.exe - Deleted
C:\WINDOWS\system32\WinPrint.exe - Deleted
C:\WINDOWS\system32\WinSpooler.exe - Deleted
C:\WINDOWS\system32\WinUpdating.exe - Deleted





Removing Temp Files...

ADS Check:



Final Check:

catchme 0.3.1344.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-14 17:40:35
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0


Remaining Services:
------------------



Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"="C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\\Program Files\\Xfire\\xfire.exe"="C:\\Program Files\\Xfire\\xfire.exe:*:Enabled:Xfire"
"C:\\Program Files\\AIM6\\aim6.exe"="C:\\Program Files\\AIM6\\aim6.exe:*:Enabled:aim6"
"C:\\WINDOWS\\system32\\LEXPPS.EXE"="C:\\WINDOWS\\system32\\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"
"C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"="C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe:*:Enabled:AOL Loader"
"C:\\Program Files\\Yahoo!\\Yahoo! Music Jukebox\\YahooMusicEngine.exe"="C:\\Program Files\\Yahoo!\\Yahoo! Music Jukebox\\YahooMusicEngine.exe:*:Enabled:Yahoo! Music Jukebox"
"C:\\Program Files\\Trillian\\trillian.exe"="C:\\Program Files\\Trillian\\trillian.exe:*:Enabled:Trillian"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

Remaining Files:
---------------

File Backups: - C:\SDFix\backups\backups.zip

Files with Hidden Attributes:

Mon 17 Dec 2007 31 A..H. --- "C:\WINDOWS\uccspecc.sys"
Wed 3 May 2006 163,328 A.SHR --- "C:\WINDOWS\system32\flvDX.dll"
Wed 21 Feb 2007 31,232 A.SHR --- "C:\WINDOWS\system32\msfDX.dll"
Mon 17 Dec 2007 27,648 A.SH. --- "C:\WINDOWS\system32\Smab0.dll"
Sun 1 Oct 2006 4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Sun 26 Jun 2005 616,448 ..SHR --- "C:\Program Files\eRightSoft\SUPER\cygwin1.dll"
Tue 21 Jun 2005 45,568 ..SHR --- "C:\Program Files\eRightSoft\SUPER\cygz.dll"
Fri 1 Feb 2008 72,704 ..SHR --- "C:\Program Files\eRightSoft\SUPER\Setup.exe"
Sun 6 May 2007 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Mon 13 Aug 2007 921,600 A..H. --- "C:\Documents and Settings\Christopher\Local Settings\Temporary Internet Files\ijjistarter2FxB.exe"
Thu 23 Aug 2007 921,600 A..H. --- "C:\Documents and Settings\Stephen\Local Settings\Temporary Internet Files\ijjistarter2FxB.exe"
Tue 4 Jun 2002 84,992 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\14_43260.dll"
Tue 4 Jun 2002 44,032 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\28_83260.dll"
Mon 9 Dec 2002 73,766 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\atrc3260.dll"
Mon 9 Dec 2002 65,575 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\cook3260.dll"
Sun 9 Jun 2002 36,864 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\ddnt3260.dll"
Tue 4 Jun 2002 20,480 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\dnet3260.dll"
Mon 9 Dec 2002 102,437 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\drv13260.dll"
Mon 9 Dec 2002 176,165 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\drv23260.dll"
Mon 9 Dec 2002 208,935 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\drv33260.dll"
Mon 9 Dec 2002 217,127 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\drv43260.dll"
Sun 9 Jun 2002 40,448 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\dspr3260.dll"
Sat 3 Nov 2001 225,280 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\ivvideo.dll"
Tue 10 Apr 2001 225,280 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\qtmlClient.dll"
Fri 20 Feb 2004 232,960 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\raac.dll"
Sun 9 Jun 2002 525,824 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\rnco3260.dll"
Mon 9 Dec 2002 245,805 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\rnlt3260.dll"
Mon 9 Dec 2002 45,093 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\rv103260.dll"
Mon 9 Dec 2002 98,341 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\rv203260.dll"
Mon 9 Dec 2002 94,247 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\rv303260.dll"
Mon 9 Dec 2002 90,151 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\rv403260.dll"
Mon 9 Dec 2002 102,439 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\sipr3260.dll"
Sun 9 Jun 2002 49,152 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\tokr3260.dll"

Finished!


ComboFix log

ComboFix 08-02-14.2 - Owner 2008-02-14 18:19:24.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.112 [GMT -6:00]
Running from: C:\Documents and Settings\Owner\Desktop\ComboFix.exe
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\system32\fccca.dll
C:\WINDOWS\system32\pmnopno.dll
C:\WINDOWS\system32\acccf.ini
C:\WINDOWS\system32\acccf.ini2
C:\WINDOWS\system32\cbdgh.ini2
C:\WINDOWS\system32\cfefe.ini
C:\WINDOWS\system32\cfefe.ini2
C:\WINDOWS\system32\fccca.dll
C:\WINDOWS\system32\isbqldnr.ini
C:\WINDOWS\system32\nnqss.ini
C:\WINDOWS\system32\nnqss.ini2
C:\WINDOWS\system32\pmnopno.dll
C:\WINDOWS\system32\rndlqbsi.dll
C:\WINDOWS\system32\ssqnolk.dll
C:\WINDOWS\system32\uwvucgxl.dll

.
((((((((((((((((((((((((( Files Created from 2008-01-15 to 2008-02-15 )))))))))))))))))))))))))))))))
.

2008-02-14 17:01 . 2008-02-14 17:01 <DIR> d-------- C:\WINDOWS\ERUNT
2008-02-11 20:11 . 2008-02-11 20:11 <DIR> d-------- C:\Program Files\Trend Micro
2008-02-11 20:03 . 2008-02-11 20:03 <DIR> d-------- C:\WINDOWS\system32\ActiveScan
2008-02-11 20:03 . 2008-02-11 20:05 30,590 --a------ C:\WINDOWS\system32\pavas.ico
2008-02-11 20:03 . 2008-02-11 20:05 2,550 --a------ C:\WINDOWS\system32\Uninstall.ico
2008-02-11 20:03 . 2008-02-11 20:05 1,406 --a------ C:\WINDOWS\system32\Help.ico
2008-02-10 11:46 . 2008-02-10 11:46 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Grisoft
2008-02-10 11:13 . 2008-02-10 11:13 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\Grisoft
2008-02-10 11:12 . 2008-02-10 11:12 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-02-10 11:12 . 2007-05-30 06:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-02-10 09:50 . 2008-02-10 09:50 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\SUPERAntiSpyware.com
2008-02-10 00:38 . 2008-02-10 00:38 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-02-10 00:37 . 2008-02-11 19:55 <DIR> d-------- C:\Program Files\SUPERAntiSpyware
2008-02-10 00:37 . 2008-02-10 00:37 <DIR> d-------- C:\Documents and Settings\Stephen\Application Data\SUPERAntiSpyware.com
2008-02-09 19:12 . 2004-08-04 13:00 388,608 --a------ C:\kmd.exe
2008-02-08 19:48 . 2008-02-10 11:02 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-07 19:02 . 2008-02-07 19:06 <DIR> d-------- C:\MINDCRIME_AT_THE_MOORE_PT1
2008-02-07 19:00 . 2008-02-07 19:00 <DIR> d-------- C:\Program Files\DVD Shrink
2008-02-07 19:00 . 2008-02-07 19:05 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\DVD Shrink
2008-02-05 17:16 . 2008-02-05 17:16 <DIR> d-------- C:\Documents and Settings\Stephen\Application Data\QQ Games
2008-02-04 15:12 . 2008-02-04 15:12 <DIR> d-------- C:\Program Files\BearShare Applications
2008-02-04 15:12 . 2008-02-04 15:24 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\BearShare
2008-02-04 15:12 . 2006-11-12 11:39 483,328 --a------ C:\WINDOWS\system32\actskn45.ocx
2008-02-01 22:10 . 2008-02-01 22:10 <DIR> d-------- C:\Program Files\AviSynth 2.5
2008-02-01 22:10 . 2004-02-22 10:11 719,872 --a------ C:\WINDOWS\system32\devil.dll
2008-02-01 22:10 . 2006-10-07 17:43 502,784 --a------ C:\WINDOWS\x2.64.exe
2008-02-01 22:10 . 2007-11-13 09:31 399,360 --a------ C:\WINDOWS\system32\Smab.dll
2008-02-01 22:10 . 2007-05-17 17:30 318,976 --a------ C:\WINDOWS\system32\avisynth.dll
2008-02-01 22:10 . 2005-02-28 13:16 240,128 --a------ C:\WINDOWS\system32\x.264.exe
2008-02-01 22:10 . 2006-04-12 09:47 217,073 --a------ C:\WINDOWS\meta4.exe
2008-02-01 22:10 . 2004-01-25 00:00 70,656 --a------ C:\WINDOWS\system32\yv12vfw.dll
2008-02-01 22:10 . 2004-01-25 00:00 70,656 --a------ C:\WINDOWS\system32\i420vfw.dll
2008-02-01 22:10 . 2006-04-05 08:09 66,560 --a------ C:\WINDOWS\MOTA113.exe
2008-02-01 22:10 . 2005-07-14 12:31 27,648 --a------ C:\WINDOWS\system32\AVSredirect.dll
2008-02-01 22:08 . 2008-02-01 22:08 <DIR> d-------- C:\Program Files\eRightSoft
2008-01-30 20:02 . 2008-01-30 20:02 54,608 --a------ C:\WINDOWS\system32\xfcodec.dll
2008-01-30 19:48 . 2003-07-13 02:49 89,184 --a------ C:\WINDOWS\system32\drivers\imagedrv.sys
2008-01-30 19:48 . 2003-07-13 02:49 57,344 --a------ C:\WINDOWS\system32\ImageDrive.cpl
2008-01-30 19:47 . 2008-01-30 19:47 <DIR> d-------- C:\Program Files\Ahead
2008-01-30 19:47 . 2003-07-13 02:49 569,344 --a------ C:\WINDOWS\system32\imagr5.dll
2008-01-30 19:47 . 2003-07-13 02:49 544,768 --a------ C:\WINDOWS\system32\imagx5.dll
2008-01-30 19:47 . 2003-07-13 02:49 283,920 --a------ C:\WINDOWS\system32\ImagXpr5.dll
2008-01-30 19:47 . 2003-07-13 02:49 155,648 --a------ C:\WINDOWS\system32\NeroCheck.exe
2008-01-30 19:47 . 2003-07-13 02:49 38,912 --a------ C:\WINDOWS\system32\picn20.dll
2008-01-27 17:18 . 2001-08-17 13:48 12,160 --a------ C:\WINDOWS\system32\drivers\mouhid.sys
2008-01-27 17:18 . 2001-08-17 13:48 12,160 --a--c--- C:\WINDOWS\system32\dllcache\mouhid.sys
2008-01-27 17:17 . 2004-08-04 00:56 21,504 --a------ C:\WINDOWS\system32\hidserv.dll
2008-01-27 17:17 . 2004-08-04 00:56 21,504 --a--c--- C:\WINDOWS\system32\dllcache\hidserv.dll
2008-01-27 14:20 . 2008-01-27 14:21 <DIR> d-------- C:\Program Files\UnrealTournament
2008-01-25 21:13 . 2008-02-07 18:56 <DIR> d-------- C:\BY_DAWNS_EARLY_LIGHT
2008-01-25 18:43 . 2008-02-14 16:40 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-01-25 18:43 . 2008-02-07 20:04 37,888 --a------ C:\WINDOWS\system32\rar.exe
2008-01-17 18:40 . 2008-02-02 00:18 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-01-17 18:40 . 2008-01-17 18:40 1,409 --a------ C:\WINDOWS\QTFont.for

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-10 17:02 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-02-10 08:02 --------- d-----w C:\Program Files\AIM6
2008-02-10 08:02 --------- d-----w C:\Documents and Settings\All Users\Application Data\Viewpoint
2008-02-08 01:59 --------- d-s---w C:\Program Files\Xfire
2008-02-07 22:51 --------- d-----w C:\Documents and Settings\Stephen\Application Data\Xfire
2008-02-02 20:48 --------- d-----w C:\Documents and Settings\Stephen\Application Data\ACD Systems
2008-01-31 01:47 --------- d-----w C:\Program Files\Common Files\Ahead
2008-01-26 01:16 --------- d-----w C:\Program Files\SlySoft
2008-01-19 23:08 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-15 23:27 --------- d-----w C:\Program Files\Electronic Arts
2008-01-13 18:51 --------- d-----w C:\Program Files\DVD Decrypter
2008-01-13 08:30 --------- d-----w C:\Documents and Settings\Stephen\Application Data\Azureus
2008-01-05 02:30 1,584,206 -c--a-w C:\WINDOWS\Recorder.reg
2008-01-02 21:44 --------- d-----w C:\Documents and Settings\Christopher\Application Data\Viewpoint
2008-01-02 01:17 --------- d-----w C:\Program Files\Trillian
2008-01-02 01:17 --------- d-----w C:\Documents and Settings\Owner\Application Data\BitTorrent DNA
2007-12-28 15:43 911,265 ----a-w C:\WINDOWS\Prison Tycoon 2 Uninstaller.exe
2007-12-28 15:40 --------- d-----w C:\Program Files\Prison Tycoon 2
2007-12-28 15:40 --------- d-----w C:\Program Files\Common Files\Thraex Software
2007-12-28 01:15 --------- d-----w C:\Program Files\Winamp
2007-12-28 01:15 --------- d-----w C:\Documents and Settings\Owner\Application Data\Winamp
2007-12-27 19:57 --------- d-----w C:\Program Files\Guild Wars
2007-12-27 19:13 --------- d-----w C:\Program Files\Datel
2007-12-24 05:44 --------- d-----w C:\Documents and Settings\All Users\Application Data\AOL
2007-12-19 00:33 --------- d-----w C:\Documents and Settings\Christopher\Application Data\QQ Games Plugin
2007-12-18 22:47 --------- d-----w C:\Program Files\BellSouth
2007-12-18 09:51 179,584 ----a-w C:\WINDOWS\system32\drivers\mrxdav.sys
2007-05-09 21:36 0 -c--a-w C:\Documents and Settings\Stephen\Application Data\wklnhst.dat
2006-10-08 19:57 774,144 -c--a-w C:\Program Files\RngInterstitial.dll
2006-05-03 10:06 163,328 --sha-r C:\WINDOWS\system32\flvDX.dll
2007-02-21 11:47 31,232 --sha-r C:\WINDOWS\system32\msfDX.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Yahoo! Pager"="C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.exe" [2007-03-27 14:22 4670968]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 13:00 15360]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-17 16:02 68856]
"igndlm.exe"="C:\Program Files\Download Manager\DLM.exe" [2007-03-05 15:57 1103480]
"Aim6"="C:\Program Files\AIM6\aim6.exe" [2008-01-03 10:15 50528]
"BitTorrent DNA"="C:\Program Files\BitTorrent_DNA\dna.exe" [ ]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" [ ]
"AnyDVD"="C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe" [2004-09-09 07:47 274432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-09-18 09:32 7204864]
"tgcmd"="C:\Program Files\Support.com\BellSouth\hcenter.exe" [2005-08-31 13:14 1277952]
"SunKistEM"="C:\Program Files\Digital Media Reader\shwiconem.exe" [2004-11-15 16:04 135168]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 00:11 132496]
"SoundMan"="SOUNDMAN.EXE" [2005-09-26 16:07 90112 C:\WINDOWS\soundman.exe]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 21:24 32768]
"Reminder"="%WINDIR%\Creator\Remind_XP.exe" [ ]
"Recguard"="%WINDIR%\SMINST\RECGUARD.EXE" [ ]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2006-12-05 17:40 282624]
"PinnacleDriverCheck"="C:\WINDOWS\system32\PSDrvCheck.exe" [2003-11-10 16:06 406016]
"nwiz"="nwiz.exe" [2005-09-18 09:32 1519616 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-09-18 09:32 86016]
"Lexmark 2200 Series"="C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe" [2004-02-13 07:08 57344]
"FaxCenterServer"="C:\Program Files\Lexmark Fax Solutions\fm3032.exe" [2004-02-04 15:33 294912]
"Camera Detector"="C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.exe" [2003-06-17 14:43 208896]
"BellSouthAlertManager.exe"="C:\Program Files\BellSouth\AM\BellSouthAlertManager.exe" [2007-01-28 11:14 2061816]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 07:00 79224]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 18:51 39792]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Microsoft Office Fast Start.lnk - C:\MSOffice\Office\FASTBOOT.EXE [1996-03-20 14848]
Microsoft Office Find Fast Indexer.lnk - C:\MSOffice\Office\FINDFAST.EXE [1996-03-19 23:00:00 86528]
Microsoft Office Shortcut Bar.lnk - C:\MSOffice\Office\MSOFFICE.EXE [1996-03-19 23:00:00 365056]
ymetray.lnk - C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe [2008-02-05 14:29:20 54512]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"AllowLegacyWebView"= 1 (0x1)
"AllowUnhashedWebView"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\run]
"NTSpool"= NTSpool.exe
"Windows Printing Driver"= WinSpooler.exe
"WinUpdating"= WinUpdating.exe

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

R2 Viewpoint Manager Service;Viewpoint Manager Service;"C:\Program Files\Viewpoint\Common\ViewpointService.exe" [2007-01-04 15:38]
S3 Boonty Games;Boonty Games;"C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe" [2007-09-01 10:11]
S3 iMSPCLOj;iMSPCLOj;C:\DOCUME~1\Stephen\LOCALS~1\Temp\iMSPCLOj.sys []

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{09826001-48e5-11da-bf8e-806d6172696f}]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1019e541-51ec-11da-9c61-806d6172696f}]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{815a0671-62bc-11da-b957-806d6172696f}]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-14 18:31:15
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Lexmark 2200 Series\lxbvbmon.exe
C:\Program Files\Support.com\bin\tgcmd.exe
.
**************************************************************************
.
Completion time: 2008-02-14 18:37:09 - machine was rebooted
ComboFix-quarantined-files.txt 2008-02-15 00:37:04
ComboFix2.txt 2008-02-10 01:38:01
.
2008-02-13 19:42:13 --- E O F ---


HijackThis log

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:40:58 PM, on 2/14/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Documents and Settings\Owner\Desktop\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Digital Media Reader\shwiconem.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe
C:\Program Files\Lexmark 2200 Series\lxbvbmon.exe
C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE
C:\Program Files\BellSouth\AM\BellSouthAlertManager.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Support.com\bin\tgcmd.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - {0A94B116-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Ask Search Assistant BHO - {0A94B111-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL
O2 - BHO: BellSouth Toolbar - {4E7BD74F-2B8D-469E-8CBD-FD60BB9AAE2E} - C:\PROGRA~1\BLSTOO~1\BLSTOO~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: BellSouth Toolbar - {4E7BD74F-2B8D-469E-8CBD-FD60BB9AAE2E} - C:\PROGRA~1\BLSTOO~1\BLSTOO~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\Support.com\BellSouth\hcenter.exe" /starthidden /tgcmdwrapper
O4 - HKLM\..\Run: [SunKistEM] C:\Program Files\Digital Media Reader\shwiconem.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Reminder] %WINDIR%\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Lexmark 2200 Series] "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun
O4 - HKLM\..\Run: [BellSouthAlertManager.exe] "C:\Program Files\BellSouth\AM\BellSouthAlertManager.exe" /AUTORUN
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\BitTorrent_DNA\dna.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
O4 - HKCU\..\Policies\Explorer\Run: [NTSpool] NTSpool.exe
O4 - HKCU\..\Policies\Explorer\Run: [Windows Printing Driver] WinSpooler.exe
O4 - HKCU\..\Policies\Explorer\Run: [WinUpdating] WinUpdating.exe
O4 - Global Startup: Microsoft Office Fast Start.lnk = C:\MSOffice\Office\FASTBOOT.EXE
O4 - Global Startup: Microsoft Office Find Fast Indexer.lnk = C:\MSOffice\Office\FINDFAST.EXE
O4 - Global Startup: Microsoft Office Shortcut Bar.lnk = C:\MSOffice\Office\MSOFFICE.EXE
O4 - Global Startup: ymetray.lnk = C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplane...C_2.3.6.108.cab
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.c.../acclaim_v4.cab
O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comne...login-devel.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} - http://static.zangoc...ece5b5b666353a7
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Documents and Settings\Owner\Desktop\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

--
End of file - 9733 bytes
  • 0

#6
IndiGenus

IndiGenus

    Anti-Malware Buddha

  • Member
  • PipPipPipPip
  • 1,617 posts
Hi,

Good job so far, let's continue.

1. Please open Notepad
  • Click Start , then Run
  • Type notepad .exe in the Run Box.

2. Now copy/paste the entire content of the codebox below into the Notepad window:

Registry::
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\run]
"NTSpool"=-
"Windows Printing Driver"=-
"WinUpdating"=-
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{09826001-48e5-11da-bf8e-806d6172696f}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1019e541-51ec-11da-9c61-806d6172696f}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{815a0671-62bc-11da-b957-806d6172696f}]


3. Save the above as CFScript.txt

4. Then drag the CFScript.txt into ComboFix.exe as depicted in the animation below. This will start ComboFix again.

Posted Image


5. After reboot, (in case it asks to reboot), please post the following reports/logs into your next reply:
  • Combofix.txt
  • A new HijackThis log.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Download Flash_Disinfector from here and save it to your desktop.
Doubleclick on Flash_Disinfector.exe to run it and follow the prompts.
Wait until it has finished scanning and then exit the program.
The utility may ask you to insert your flash drive and/or other removable drives. This may include your mobile phone.
Please do so and allow the utility to clean up those drives as well.

Reboot and post the following logs:
Combofix
HijackThis


  • 0

#7
welder572

welder572

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
ComboFix log

ComboFix 08-02-14.2 - Owner 2008-02-15 18:20:10.3 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.104 [GMT -6:00]
Running from: C:\Documents and Settings\Owner\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\Owner\Desktop\CFScript.txt
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((( Files Created from 2008-01-16 to 2008-02-16 )))))))))))))))))))))))))))))))
.

2008-02-14 17:01 . 2008-02-14 17:01 <DIR> d-------- C:\WINDOWS\ERUNT
2008-02-11 20:11 . 2008-02-11 20:11 <DIR> d-------- C:\Program Files\Trend Micro
2008-02-11 20:03 . 2008-02-11 20:03 <DIR> d-------- C:\WINDOWS\system32\ActiveScan
2008-02-11 20:03 . 2008-02-11 20:05 30,590 --a------ C:\WINDOWS\system32\pavas.ico
2008-02-11 20:03 . 2008-02-11 20:05 2,550 --a------ C:\WINDOWS\system32\Uninstall.ico
2008-02-11 20:03 . 2008-02-11 20:05 1,406 --a------ C:\WINDOWS\system32\Help.ico
2008-02-10 11:46 . 2008-02-10 11:46 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Grisoft
2008-02-10 11:13 . 2008-02-10 11:13 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\Grisoft
2008-02-10 11:12 . 2008-02-10 11:12 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-02-10 11:12 . 2007-05-30 06:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-02-10 09:50 . 2008-02-10 09:50 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\SUPERAntiSpyware.com
2008-02-10 00:38 . 2008-02-10 00:38 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-02-10 00:37 . 2008-02-11 19:55 <DIR> d-------- C:\Program Files\SUPERAntiSpyware
2008-02-10 00:37 . 2008-02-10 00:37 <DIR> d-------- C:\Documents and Settings\Stephen\Application Data\SUPERAntiSpyware.com
2008-02-09 19:12 . 2004-08-04 13:00 388,608 --a------ C:\kmd.exe
2008-02-08 19:48 . 2008-02-10 11:02 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-07 19:02 . 2008-02-07 19:06 <DIR> d-------- C:\MINDCRIME_AT_THE_MOORE_PT1
2008-02-07 19:00 . 2008-02-07 19:00 <DIR> d-------- C:\Program Files\DVD Shrink
2008-02-07 19:00 . 2008-02-07 19:05 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\DVD Shrink
2008-02-05 17:16 . 2008-02-05 17:16 <DIR> d-------- C:\Documents and Settings\Stephen\Application Data\QQ Games
2008-02-04 15:12 . 2008-02-04 15:12 <DIR> d-------- C:\Program Files\BearShare Applications
2008-02-04 15:12 . 2008-02-04 15:24 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\BearShare
2008-02-04 15:12 . 2006-11-12 11:39 483,328 --a------ C:\WINDOWS\system32\actskn45.ocx
2008-02-01 22:10 . 2008-02-01 22:10 <DIR> d-------- C:\Program Files\AviSynth 2.5
2008-02-01 22:10 . 2004-02-22 10:11 719,872 --a------ C:\WINDOWS\system32\devil.dll
2008-02-01 22:10 . 2006-10-07 17:43 502,784 --a------ C:\WINDOWS\x2.64.exe
2008-02-01 22:10 . 2007-11-13 09:31 399,360 --a------ C:\WINDOWS\system32\Smab.dll
2008-02-01 22:10 . 2007-05-17 17:30 318,976 --a------ C:\WINDOWS\system32\avisynth.dll
2008-02-01 22:10 . 2005-02-28 13:16 240,128 --a------ C:\WINDOWS\system32\x.264.exe
2008-02-01 22:10 . 2006-04-12 09:47 217,073 --a------ C:\WINDOWS\meta4.exe
2008-02-01 22:10 . 2004-01-25 00:00 70,656 --a------ C:\WINDOWS\system32\yv12vfw.dll
2008-02-01 22:10 . 2004-01-25 00:00 70,656 --a------ C:\WINDOWS\system32\i420vfw.dll
2008-02-01 22:10 . 2006-04-05 08:09 66,560 --a------ C:\WINDOWS\MOTA113.exe
2008-02-01 22:10 . 2005-07-14 12:31 27,648 --a------ C:\WINDOWS\system32\AVSredirect.dll
2008-02-01 22:08 . 2008-02-01 22:08 <DIR> d-------- C:\Program Files\eRightSoft
2008-01-30 20:02 . 2008-01-30 20:02 54,608 --a------ C:\WINDOWS\system32\xfcodec.dll
2008-01-30 19:48 . 2003-07-13 02:49 89,184 --a------ C:\WINDOWS\system32\drivers\imagedrv.sys
2008-01-30 19:48 . 2003-07-13 02:49 57,344 --a------ C:\WINDOWS\system32\ImageDrive.cpl
2008-01-30 19:47 . 2008-01-30 19:47 <DIR> d-------- C:\Program Files\Ahead
2008-01-30 19:47 . 2003-07-13 02:49 569,344 --a------ C:\WINDOWS\system32\imagr5.dll
2008-01-30 19:47 . 2003-07-13 02:49 544,768 --a------ C:\WINDOWS\system32\imagx5.dll
2008-01-30 19:47 . 2003-07-13 02:49 283,920 --a------ C:\WINDOWS\system32\ImagXpr5.dll
2008-01-30 19:47 . 2003-07-13 02:49 155,648 --a------ C:\WINDOWS\system32\NeroCheck.exe
2008-01-30 19:47 . 2003-07-13 02:49 38,912 --a------ C:\WINDOWS\system32\picn20.dll
2008-01-27 17:18 . 2001-08-17 13:48 12,160 --a------ C:\WINDOWS\system32\drivers\mouhid.sys
2008-01-27 17:18 . 2001-08-17 13:48 12,160 --a--c--- C:\WINDOWS\system32\dllcache\mouhid.sys
2008-01-27 17:17 . 2004-08-04 00:56 21,504 --a------ C:\WINDOWS\system32\hidserv.dll
2008-01-27 17:17 . 2004-08-04 00:56 21,504 --a--c--- C:\WINDOWS\system32\dllcache\hidserv.dll
2008-01-27 14:20 . 2008-01-27 14:21 <DIR> d-------- C:\Program Files\UnrealTournament
2008-01-25 21:13 . 2008-02-07 18:56 <DIR> d-------- C:\BY_DAWNS_EARLY_LIGHT
2008-01-25 18:43 . 2008-02-14 16:40 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-01-25 18:43 . 2008-02-07 20:04 37,888 --a------ C:\WINDOWS\system32\rar.exe
2008-01-17 18:40 . 2008-02-02 00:18 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-01-17 18:40 . 2008-01-17 18:40 1,409 --a------ C:\WINDOWS\QTFont.for

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-10 17:02 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-02-10 08:02 --------- d-----w C:\Program Files\AIM6
2008-02-10 08:02 --------- d-----w C:\Documents and Settings\All Users\Application Data\Viewpoint
2008-02-08 01:59 --------- d-s---w C:\Program Files\Xfire
2008-02-07 22:51 --------- d-----w C:\Documents and Settings\Stephen\Application Data\Xfire
2008-02-02 20:48 --------- d-----w C:\Documents and Settings\Stephen\Application Data\ACD Systems
2008-01-31 01:47 --------- d-----w C:\Program Files\Common Files\Ahead
2008-01-26 01:16 --------- d-----w C:\Program Files\SlySoft
2008-01-19 23:08 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-15 23:27 --------- d-----w C:\Program Files\Electronic Arts
2008-01-13 18:51 --------- d-----w C:\Program Files\DVD Decrypter
2008-01-13 08:30 --------- d-----w C:\Documents and Settings\Stephen\Application Data\Azureus
2008-01-05 02:30 1,584,206 -c--a-w C:\WINDOWS\Recorder.reg
2008-01-02 21:44 --------- d-----w C:\Documents and Settings\Christopher\Application Data\Viewpoint
2008-01-02 01:17 --------- d-----w C:\Program Files\Trillian
2008-01-02 01:17 --------- d-----w C:\Documents and Settings\Owner\Application Data\BitTorrent DNA
2007-12-28 15:43 911,265 ----a-w C:\WINDOWS\Prison Tycoon 2 Uninstaller.exe
2007-12-28 15:40 --------- d-----w C:\Program Files\Prison Tycoon 2
2007-12-28 15:40 --------- d-----w C:\Program Files\Common Files\Thraex Software
2007-12-28 01:15 --------- d-----w C:\Program Files\Winamp
2007-12-28 01:15 --------- d-----w C:\Documents and Settings\Owner\Application Data\Winamp
2007-12-27 19:57 --------- d-----w C:\Program Files\Guild Wars
2007-12-27 19:13 --------- d-----w C:\Program Files\Datel
2007-12-24 05:44 --------- d-----w C:\Documents and Settings\All Users\Application Data\AOL
2007-12-19 00:33 --------- d-----w C:\Documents and Settings\Christopher\Application Data\QQ Games Plugin
2007-12-18 22:47 --------- d-----w C:\Program Files\BellSouth
2007-12-18 09:51 179,584 ----a-w C:\WINDOWS\system32\drivers\mrxdav.sys
2007-12-17 13:43 27,648 --sha-w C:\WINDOWS\system32\Smab0.dll
2007-12-07 00:44 666,112 ----a-w C:\WINDOWS\system32\wininet.dll
2007-12-04 18:38 550,912 ----a-w C:\WINDOWS\system32\oleaut32.dll
2007-12-04 13:04 837,496 ----a-w C:\WINDOWS\system32\aswBoot.exe
2007-12-04 12:54 95,608 ----a-w C:\WINDOWS\system32\AVASTSS.scr
2007-05-09 21:36 0 -c--a-w C:\Documents and Settings\Stephen\Application Data\wklnhst.dat
2006-10-08 19:57 774,144 -c--a-w C:\Program Files\RngInterstitial.dll
2006-05-03 10:06 163,328 --sha-r C:\WINDOWS\system32\flvDX.dll
2007-02-21 11:47 31,232 --sha-r C:\WINDOWS\system32\msfDX.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Yahoo! Pager"="C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.exe" [2007-03-27 14:22 4670968]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 13:00 15360]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-17 16:02 68856]
"igndlm.exe"="C:\Program Files\Download Manager\DLM.exe" [2007-03-05 15:57 1103480]
"Aim6"="C:\Program Files\AIM6\aim6.exe" [2008-01-03 10:15 50528]
"BitTorrent DNA"="C:\Program Files\BitTorrent_DNA\dna.exe" [ ]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" [ ]
"AnyDVD"="C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe" [2004-09-09 07:47 274432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-09-18 09:32 7204864]
"tgcmd"="C:\Program Files\Support.com\BellSouth\hcenter.exe" [2005-08-31 13:14 1277952]
"SunKistEM"="C:\Program Files\Digital Media Reader\shwiconem.exe" [2004-11-15 16:04 135168]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 00:11 132496]
"SoundMan"="SOUNDMAN.EXE" [2005-09-26 16:07 90112 C:\WINDOWS\soundman.exe]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 21:24 32768]
"Reminder"="%WINDIR%\Creator\Remind_XP.exe" [ ]
"Recguard"="%WINDIR%\SMINST\RECGUARD.EXE" [ ]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2006-12-05 17:40 282624]
"PinnacleDriverCheck"="C:\WINDOWS\system32\PSDrvCheck.exe" [2003-11-10 16:06 406016]
"nwiz"="nwiz.exe" [2005-09-18 09:32 1519616 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-09-18 09:32 86016]
"Lexmark 2200 Series"="C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe" [2004-02-13 07:08 57344]
"FaxCenterServer"="C:\Program Files\Lexmark Fax Solutions\fm3032.exe" [2004-02-04 15:33 294912]
"Camera Detector"="C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.exe" [2003-06-17 14:43 208896]
"BellSouthAlertManager.exe"="C:\Program Files\BellSouth\AM\BellSouthAlertManager.exe" [2007-01-28 11:14 2061816]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 07:00 79224]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 18:51 39792]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Microsoft Office Fast Start.lnk - C:\MSOffice\Office\FASTBOOT.EXE [1996-03-20 14848]
Microsoft Office Find Fast Indexer.lnk - C:\MSOffice\Office\FINDFAST.EXE [1996-03-19 23:00:00 86528]
Microsoft Office Shortcut Bar.lnk - C:\MSOffice\Office\MSOFFICE.EXE [1996-03-19 23:00:00 365056]
ymetray.lnk - C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe [2008-02-05 14:29:20 54512]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"AllowLegacyWebView"= 1 (0x1)
"AllowUnhashedWebView"= 1 (0x1)

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

R2 Viewpoint Manager Service;Viewpoint Manager Service;"C:\Program Files\Viewpoint\Common\ViewpointService.exe" [2007-01-04 15:38]
S3 Boonty Games;Boonty Games;"C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe" [2007-09-01 10:11]
S3 iMSPCLOj;iMSPCLOj;C:\DOCUME~1\Stephen\LOCALS~1\Temp\iMSPCLOj.sys []

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-15 18:24:18
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-02-15 18:28:12
ComboFix-quarantined-files.txt 2008-02-16 00:28:01
ComboFix2.txt 2008-02-15 00:37:09
ComboFix3.txt 2008-02-10 01:38:01
.
2008-02-13 19:42:13 --- E O F ---


HijackThis log

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:33:17 PM, on 2/15/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Documents and Settings\Owner\Desktop\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Digital Media Reader\shwiconem.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE
C:\Program Files\BellSouth\AM\BellSouthAlertManager.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe
C:\Program Files\Support.com\bin\tgcmd.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - {0A94B116-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Ask Search Assistant BHO - {0A94B111-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL
O2 - BHO: BellSouth Toolbar - {4E7BD74F-2B8D-469E-8CBD-FD60BB9AAE2E} - C:\PROGRA~1\BLSTOO~1\BLSTOO~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: BellSouth Toolbar - {4E7BD74F-2B8D-469E-8CBD-FD60BB9AAE2E} - C:\PROGRA~1\BLSTOO~1\BLSTOO~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\Support.com\BellSouth\hcenter.exe" /starthidden /tgcmdwrapper
O4 - HKLM\..\Run: [SunKistEM] C:\Program Files\Digital Media Reader\shwiconem.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Reminder] %WINDIR%\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Lexmark 2200 Series] "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun
O4 - HKLM\..\Run: [BellSouthAlertManager.exe] "C:\Program Files\BellSouth\AM\BellSouthAlertManager.exe" /AUTORUN
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\BitTorrent_DNA\dna.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
O4 - Global Startup: Microsoft Office Fast Start.lnk = C:\MSOffice\Office\FASTBOOT.EXE
O4 - Global Startup: Microsoft Office Find Fast Indexer.lnk = C:\MSOffice\Office\FINDFAST.EXE
O4 - Global Startup: Microsoft Office Shortcut Bar.lnk = C:\MSOffice\Office\MSOFFICE.EXE
O4 - Global Startup: ymetray.lnk = C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplane...C_2.3.6.108.cab
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.c.../acclaim_v4.cab
O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comne...login-devel.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} - http://static.zangoc...ece5b5b666353a7
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Documents and Settings\Owner\Desktop\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

--
End of file - 9496 bytes
  • 0

#8
IndiGenus

IndiGenus

    Anti-Malware Buddha

  • Member
  • PipPipPipPip
  • 1,617 posts
Hi,

Looking better. Do you play Boonty Games or Boonty Box? Here is some info. on it.

Will not uninstall from Add/Remove programs. This is from their Privacy Policy. "We also may share payment information with third parties who provide payment services and share aggregate data regarding the type and number of videogames you download, your age, gender, occupation, education level, geographic location, computer equipment data and on-line and video game interests, activities and practices to game publishers. In addition, we share e-mail addresses with third party e-mail carriers who assist us in sending out our e-mails to many of our customers at the same time. Subsidiaries and controlled affiliates are not viewed as third parties for the purpose of data transfers, and hence personal information may be shared within those subsidiaries and affiliates without obtaining additional consent."


I would recommend you remove the service and delete the files.

Click Start->Run...
Enter the following commands one at a time into the window and click OK each time.

sc stop BOONTY
sc delete BOONTY


Run HijackThis. Hit None of the above, Click Do a System Scan Only. Put a Check in the box on the left side on these:

O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comne...login-devel.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} - http://static.zangoc...ece5b5b666353a7
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe

Then close all windows except HijackThis and press Fix checked.

Using Windows Exlorer delete the following folder:

C:\Program Files\Common Files\BOONTY Shared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Download the trial version of AVG Anti-Spyware from here and install it. When the program has been installed, and you click the Finish button, AVG Anti-Spyware will open.

If the program does not automatically update itself during installation, or you are unsure whether it has done so, please do the following:
  • Click the Update icon at the top and under Manual Update click the Start update button.
  • The program will either update or inform you that no update was available.
  • It is essential that you get the update - keep trying until successful. (Note: If you have problems getting the update, you can download an installer for the full database from here (save it on your desktop). Once you have downloaded the installer, make sure that AVG Anti-Spyware is closed and then double-click on avgas-signatures-full-current.exe to install the database).
Please set up the program as follows:
  • Click the Shield icon at the top and under Resident shield is... click active. This should now
    change to inactive.
  • Click the Update icon and untick the automatic update option.
  • Click on Scanner on the toolbar.
  • Click on the Settings tab.
  • Under How to act? - make sure that Quarantine is selected.
  • Under How to scan? - All checkboxes should be ticked.
  • Under Possibly unwanted software - All checkboxes should be ticked.
  • Under Reports - Select Do not automatically generate reports.
  • Under What to scan? - Select Scan every file.
Close all open windows.



Please download ATF Cleaner here by Atribune. This program is for XP and Windows 2000 only.
It does not require any installation and uses minimal system resources. It is set up to clean IE, FireFox and Opera, and detects the browsers you have and grays out the other(s).
  • Double-click ATF-Cleaner.exe to run the program.
  • Under Main choose: Select All
  • Recommend UNCHECKING COOKIES if you rely on system remembered passwords.
  • Click the Empty Selected button.

    If you use Firefox browser
  • Click Firefox at the top and choose: Select All EXCEPT FIREFOX SAVED PASSWORDS
  • Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.

    If you use Opera browser
  • Click Opera at the top and choose: Select All EXCEPT COOKIES AND SAVED PASSWORDS
  • Click the Empty Selected button.
  • NOTE: If you would like to keep your cookies and saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.


We Now Need To Boot Into Safemode Now

Restart your computer.
When the machine first starts again it will generally list some equipment that is installed in your machine,
amount of memory, hard drives installed etc (BOOT SCREEEN).
At this point you should gently tap the F8 key repeatedly until you are presented with a Options menu.
Select the option for Safe Mode using the arrow keys.
Then press enter on your keyboard to boot into Safe Mode.


Run AVG


  • Click on Scanner on the toolbar.
  • Click on Complete System Scan to start the scan process.
  • Let the program scan your computer.
  • When the scan has finished, follow the instructions below:
    • Make sure that Set all elements to: shows Quarantine
    • Important: Click on the Apply all Actions button This must done before saving the report
    • When the program has finished, it will display the message All actions have been applied.
    • Then click the Save Scan Report button.
    • Click the Save Report as button.
    • Save the report to your Desktop.
      Posted Image
  • Right-click the AVG Tray Icon and select Exit.
  • Now copy the report back to this topic.


Restart into normal mode and post the AVG Log and a new HJT Log. Also how are things now
  • 0

#9
welder572

welder572

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
ran the avg scan, saved the report to my desktop, and it did not show up on my desktop when i rebooted.


HijackThis Log

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:18:20 PM, on 2/16/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Documents and Settings\Owner\Desktop\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Digital Media Reader\shwiconem.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE
C:\Program Files\BellSouth\AM\BellSouthAlertManager.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Support.com\bin\tgcmd.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - {0A94B116-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Ask Search Assistant BHO - {0A94B111-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL
O2 - BHO: BellSouth Toolbar - {4E7BD74F-2B8D-469E-8CBD-FD60BB9AAE2E} - C:\PROGRA~1\BLSTOO~1\BLSTOO~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: BellSouth Toolbar - {4E7BD74F-2B8D-469E-8CBD-FD60BB9AAE2E} - C:\PROGRA~1\BLSTOO~1\BLSTOO~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\Support.com\BellSouth\hcenter.exe" /starthidden /tgcmdwrapper
O4 - HKLM\..\Run: [SunKistEM] C:\Program Files\Digital Media Reader\shwiconem.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Reminder] %WINDIR%\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Lexmark 2200 Series] "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun
O4 - HKLM\..\Run: [BellSouthAlertManager.exe] "C:\Program Files\BellSouth\AM\BellSouthAlertManager.exe" /AUTORUN
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\BitTorrent_DNA\dna.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
O4 - Global Startup: Microsoft Office Fast Start.lnk = C:\MSOffice\Office\FASTBOOT.EXE
O4 - Global Startup: Microsoft Office Find Fast Indexer.lnk = C:\MSOffice\Office\FINDFAST.EXE
O4 - Global Startup: Microsoft Office Shortcut Bar.lnk = C:\MSOffice\Office\MSOFFICE.EXE
O4 - Global Startup: ymetray.lnk = C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplane...C_2.3.6.108.cab
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.c.../acclaim_v4.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Documents and Settings\Owner\Desktop\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

--
End of file - 8911 bytes


Overall, the computer seems to be running faster than before starting this process, and our Avast! doesnt bring up the trojan found messages anymore.
  • 0

#10
IndiGenus

IndiGenus

    Anti-Malware Buddha

  • Member
  • PipPipPipPip
  • 1,617 posts
Hi,

Any chance you saved the AVG log somewhere else? Did it quarantine everything it found?

Let's get one more scan here. Kaspersky won't fix anything but it is very thorough and we can remove anything it finds manually.

Please do an online scan with Kaspersky WebScanner

You need to use Internet Explorer for this scan.

Click on Kaspersky Online Scanner and click Accept

You will be prompted to install an ActiveX component from Kaspersky, Click Yes.
  • The program will launch and then begin downloading the latest definition files:
  • Once the files have been downloaded click on NEXT
  • Now click on Scan Settings
  • In the scan settings make that the following are selected:
    • Scan using the following Anti-Virus database:
    Extended (if available otherwise Standard)
    • Scan Options:
    Scan Archives
    Scan Mail Bases
  • Click OK
  • Now under select a target to scan:Select My Computer
  • This will program will start and scan your system.
  • The scan will take a while so be patient and let it run.
  • Once the scan is complete it will display if your system has been infected.
    • Now click on the Save as Text button:
  • Save the file to your desktop.
  • Copy and paste that information in your next post.

  • 0

Advertisements


#11
welder572

welder572

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
searched everywhere for the avg log, still couldnt find it. Ran Kaspersky scan and have this report:

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Sunday, February 17, 2008 5:20:10 PM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 17/02/2008
Kaspersky Anti-Virus database records: 570131
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
C:\
D:\
E:\
F:\
G:\
H:\
I:\
J:\
K:\

Scan Statistics:
Total number of scanned objects: 156319
Number of viruses found: 12
Number of infected objects: 673
Number of suspicious objects: 2
Duration of the scan process: 02:11:21

Infected Object Name / Virus Name / Last Action
C:\autorun.inf\lpt3.This folder was created by Flash_Disinfector Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\d90bc52ff7b19732831ff5ed5e0c68a1_bf6084eb-2d42-4f0d-b2e5-c66ed0ed5218 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\WhenUWeatherCast1.zip/Uninst.exe Suspicious: Password-protected-EXE skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\WhenUWeatherCast1.zip ZIP: suspicious - 1 skipped
C:\Documents and Settings\All Users\Application Data\Support.com\Profiles\Owner\triggers.log Object is locked skipped
C:\Documents and Settings\Joan\Application Data\Netscape\NSB\Profiles\dnyc1yl6\TempScanDir\rzhsr875.exe Infected: not-a-virus:Downloader.Win32.ImLoader.c skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\Application Data\BellSouth\AM\client_gateway.log Object is locked skipped
C:\Documents and Settings\Owner\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Desktop\mirc63.exe/stream/data0001/stream/data0014 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Documents and Settings\Owner\Desktop\mirc63.exe/stream/data0001/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Documents and Settings\Owner\Desktop\mirc63.exe/stream/data0001 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Documents and Settings\Owner\Desktop\mirc63.exe/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Documents and Settings\Owner\Desktop\mirc63.exe NSIS: infected - 4 skipped
C:\Documents and Settings\Owner\Desktop\SmitfraudFix.exe/data.rar/SmitfraudFix/Reboot.exe Infected: not-a-virus:RiskTool.Win32.Reboot.f skipped
C:\Documents and Settings\Owner\Desktop\SmitfraudFix.exe/data.rar Infected: not-a-virus:RiskTool.Win32.Reboot.f skipped
C:\Documents and Settings\Owner\Desktop\SmitfraudFix.exe RarSFX: infected - 2 skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Owner\ntuser.dat.LOG Object is locked skipped
C:\My Downloads\321 XviD Converter 1.2.4.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\321 XviD Converter 1.2.4.rar CAB: infected - 1 skipped
C:\My Downloads\3D Studio Max 9 + Tutorials and Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\3D Studio Max 9 + Tutorials and Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\3D Studio Max 9 Last Version Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\3D Studio Max 9 Last Version Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\ACDSee 9 build 108 Vista Compatible.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ACDSee 9 build 108 Vista Compatible.rar CAB: infected - 1 skipped
C:\My Downloads\Acronis Disk Director Server 10.0.2169 Keygen Working.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Acronis Disk Director Server 10.0.2169 Keygen Working.rar CAB: infected - 1 skipped
C:\My Downloads\Acronis Disk Director Server 10.0.2169.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Acronis Disk Director Server 10.0.2169.rar CAB: infected - 1 skipped
C:\My Downloads\Acronis True Image 11 Build 8053 Home.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Acronis True Image 11 Build 8053 Home.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Acrobat 8 Professional Incl keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Acrobat 8 Professional Incl keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Acrobat Professional 8.1 - Latest Version.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Acrobat Professional 8.1 - Latest Version.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Acrobat Professional 8.1 Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Acrobat Professional 8.1 Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Creative Suite 3.01 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Creative Suite 3.01 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe CS3 Master Collection Corporate Final + Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe CS3 Master Collection Corporate Final + Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe CS3 Master Collection Corporate ISO. Works!.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe CS3 Master Collection Corporate ISO. Works!.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe CS3 Master Collection Full Version + Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe CS3 Master Collection Full Version + Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Illustrator CS3 with plugins (Thinstalled) (Portable).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Illustrator CS3 with plugins (Thinstalled) (Portable).rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop CS3 Extended + Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop CS3 Extended + Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop CS3 Extended Version Full + Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop CS3 Extended Version Full + Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop CS3 Key generator.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop CS3 Key generator.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop CS3 Lite KEYGEN.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop CS3 Lite KEYGEN.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop CS3 Plugins Collection.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop CS3 Plugins Collection.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop CS3 v10.0 Extended Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop CS3 v10.0 Extended Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop CS3 with Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop CS3 with Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop Elements v6.0 (Full Version with Keygen).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop Elements v6.0 (Full Version with Keygen).rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop Elements v6.0a Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop Elements v6.0a Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop Lightroom 1.3.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop Lightroom 1.3.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Photoshop Lightroom 1.4 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Photoshop Lightroom 1.4 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Premiere CS3 Pro Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Premiere CS3 Pro Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe Premiere Pro CS3 Multi-language Incl Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe Premiere Pro CS3 Multi-language Incl Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe.Audition.v3.WinAll.Cracked-NoPE.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe.Audition.v3.WinAll.Cracked-NoPE.rar CAB: infected - 1 skipped
C:\My Downloads\Adobe.Dreamweaver CS3 9.0.0.3453 Latest Patched-RETAiL.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Adobe.Dreamweaver CS3 9.0.0.3453 Latest Patched-RETAiL.rar CAB: infected - 1 skipped
C:\My Downloads\Advanced System Optimizer 2.20.4.747 Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Advanced System Optimizer 2.20.4.747 Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Advanced Uninstaller Pro 8.54 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Advanced Uninstaller Pro 8.54 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Advanced Uninstaller Professional 8.5.2 + Working KEY.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Advanced Uninstaller Professional 8.5.2 + Working KEY.rar CAB: infected - 1 skipped
C:\My Downloads\Alcohol 120 1.9.7.6022 with KeyMaker v3.6 (BetaMaster-24.Dec.2007).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Alcohol 120 1.9.7.6022 with KeyMaker v3.6 (BetaMaster-24.Dec.2007).rar CAB: infected - 1 skipped
C:\My Downloads\Alcohol 120 v.1.9.7 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Alcohol 120 v.1.9.7 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Alcohol 120% 1.9.6.4719 Activation Key + Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Alcohol 120% 1.9.6.4719 Activation Key + Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Alive YouTube Video Converter 1.2.7.0.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Alive YouTube Video Converter 1.2.7.0.rar CAB: infected - 1 skipped
C:\My Downloads\All Antivirus Keygen Pack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\All Antivirus Keygen Pack.rar CAB: infected - 1 skipped
C:\My Downloads\ALL.Adobe.Products.Keygens.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ALL.Adobe.Products.Keygens.rar CAB: infected - 1 skipped
C:\My Downloads\All.MicroSoft.Products.Keygens.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\All.MicroSoft.Products.Keygens.rar CAB: infected - 1 skipped
C:\My Downloads\Allok 3GP PSP MP4 iPod Video Converter 2.7.2 working Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Allok 3GP PSP MP4 iPod Video Converter 2.7.2 working Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\All_ADOBE_Products_Cracks+Keygens_2008-ReLEASE.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\All_ADOBE_Products_Cracks+Keygens_2008-ReLEASE.rar CAB: infected - 1 skipped
C:\My Downloads\Anti Hacker Expert 2008 working License Key + Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Anti Hacker Expert 2008 working License Key + Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Any DVD Converter Professional 3.5.2.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Any DVD Converter Professional 3.5.2.rar CAB: infected - 1 skipped
C:\My Downloads\AnyDVD & AnyDVD HD 6.3.0.0 - Final.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AnyDVD & AnyDVD HD 6.3.0.0 - Final.rar CAB: infected - 1 skipped
C:\My Downloads\AnyDVD & AnyDVD HD 6.4 Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AnyDVD & AnyDVD HD 6.4 Crack.rar CAB: infected - 1 skipped
C:\My Downloads\AnyDVD 6.3.0.6 + Activation Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AnyDVD 6.3.0.6 + Activation Key.rar CAB: infected - 1 skipped
C:\My Downloads\Apollo No1 DVD Ripper 6.2.4.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Apollo No1 DVD Ripper 6.2.4.rar CAB: infected - 1 skipped
C:\My Downloads\Ashampoo Office 2008 3.01 + KEY.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Ashampoo Office 2008 3.01 + KEY.rar CAB: infected - 1 skipped
C:\My Downloads\Atomix Virtual DJ Professional 5.0 rev6.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Atomix Virtual DJ Professional 5.0 rev6.rar CAB: infected - 1 skipped
C:\My Downloads\Autodata v3.18 2 CDs Full Release.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Autodata v3.18 2 CDs Full Release.rar CAB: infected - 1 skipped
C:\My Downloads\Autodesk 3DS MAX 2008 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Autodesk 3DS MAX 2008 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Autodesk AutoCAD 2008 Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Autodesk AutoCAD 2008 Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Autodesk AutoCAD Architecture Version 2008(Full Version with Key).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Autodesk AutoCAD Architecture Version 2008(Full Version with Key).rar CAB: infected - 1 skipped
C:\My Downloads\Autodesk AutoCAD Architecture Version 2008.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Autodesk AutoCAD Architecture Version 2008.rar CAB: infected - 1 skipped
C:\My Downloads\Autodesk Inventor Suite 2008 (Full Version with Crack).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Autodesk Inventor Suite 2008 (Full Version with Crack).rar CAB: infected - 1 skipped
C:\My Downloads\Autodesk Inventor Suite 2008 Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Autodesk Inventor Suite 2008 Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Avast Antivirus Pro 4.7.1098 Licensed till 2009.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Avast Antivirus Pro 4.7.1098 Licensed till 2009.rar CAB: infected - 1 skipped
C:\My Downloads\Avast Antivirus Pro 4.7.1098 working Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Avast Antivirus Pro 4.7.1098 working Key.rar CAB: infected - 1 skipped
C:\My Downloads\AVG 7.5 Internet Security & Firewall.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AVG 7.5 Internet Security & Firewall.rar CAB: infected - 1 skipped
C:\My Downloads\AVG Anti-Spyware Plus 7.5.1.43.3339 con el key funcionante.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AVG Anti-Spyware Plus 7.5.1.43.3339 con el key funcionante.rar CAB: infected - 1 skipped
C:\My Downloads\AVG Anti-Spyware Plus 7.5.1.43.3339 Patched Multilingual-ReL.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AVG Anti-Spyware Plus 7.5.1.43.3339 Patched Multilingual-ReL.rar CAB: infected - 1 skipped
C:\My Downloads\AVG Anti-Virus Professional Edition Latest v7.5.516 + Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AVG Anti-Virus Professional Edition Latest v7.5.516 + Key.rar CAB: infected - 1 skipped
C:\My Downloads\AVG Antivirus Latest Version 7.5 Pro.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AVG Antivirus Latest Version 7.5 Pro.rar CAB: infected - 1 skipped
C:\My Downloads\BayGenie eBay Auction Sniper Pro Edition 3.13.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\BayGenie eBay Auction Sniper Pro Edition 3.13.rar CAB: infected - 1 skipped
C:\My Downloads\BIG CODEC Pack colleci˛n by MustaX.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\BIG CODEC Pack colleci˛n by MustaX.rar CAB: infected - 1 skipped
C:\My Downloads\BitDefender Antivirus 10 LAST Working Crack + Updates.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\BitDefender Antivirus 10 LAST Working Crack + Updates.rar CAB: infected - 1 skipped
C:\My Downloads\BitDefender Antivirus 2008 Patcheado ESP-ITA-ENG.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\BitDefender Antivirus 2008 Patcheado ESP-ITA-ENG.rar CAB: infected - 1 skipped
C:\My Downloads\Bitdefender AntiVirus 32bit 2008 patcheado + license key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Bitdefender AntiVirus 32bit 2008 patcheado + license key.rar CAB: infected - 1 skipped
C:\My Downloads\Black XP 5.1 DVD Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Black XP 5.1 DVD Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\BLACK XP 6.0.0.16 ULTMATE DREAM PACK.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\BLACK XP 6.0.0.16 ULTMATE DREAM PACK.rar CAB: infected - 1 skipped
C:\My Downloads\BSPlayer Pro 2.23.953 (player de DivX-XviD-MKV-RM-AVI-MPEG-MPG).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\BSPlayer Pro 2.23.953 (player de DivX-XviD-MKV-RM-AVI-MPEG-MPG).rar CAB: infected - 1 skipped
C:\My Downloads\Computer FiX VoL1 [App][MULTI5].rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Computer FiX VoL1 [App][MULTI5].rar CAB: infected - 1 skipped
C:\My Downloads\Convert DAA (PowerISO) or UIF (MagicISO) to ISO.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Convert DAA (PowerISO) or UIF (MagicISO) to ISO.rar CAB: infected - 1 skipped
C:\My Downloads\Convert.all.DivX.in.DVD.patched.+guides.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Convert.all.DivX.in.DVD.patched.+guides.rar CAB: infected - 1 skipped
C:\My Downloads\Convert.all.MP3.in.WAV.and.create.CD-Musical.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Convert.all.MP3.in.WAV.and.create.CD-Musical.rar CAB: infected - 1 skipped
C:\My Downloads\Convert.All.your.AVI-MPEG-RM-RMVB-MKV-DIVX-XVID.in.DVD.for.home.theatre.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Convert.All.your.AVI-MPEG-RM-RMVB-MKV-DIVX-XVID.in.DVD.for.home.theatre.rar CAB: infected - 1 skipped
C:\My Downloads\ConvertXtoDVD 2.2.3.258f And Keygen (25th October 2007).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ConvertXtoDVD 2.2.3.258f And Keygen (25th October 2007).rar CAB: infected - 1 skipped
C:\My Downloads\ConvertXtoDVD 2.2.3.258g And Keygen (20th November 2007).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ConvertXtoDVD 2.2.3.258g And Keygen (20th November 2007).rar CAB: infected - 1 skipped
C:\My Downloads\ConvertXtoDVD 2.2.3.3 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ConvertXtoDVD 2.2.3.3 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Cool Youtube Downloader Full.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Cool Youtube Downloader Full.rar CAB: infected - 1 skipped
C:\My Downloads\Cute FTP Pro 8.0.7 Patched-Multilingual.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Cute FTP Pro 8.0.7 Patched-Multilingual.rar CAB: infected - 1 skipped
C:\My Downloads\CyberLink MakeDVD 2.0.0.2026.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\CyberLink MakeDVD 2.0.0.2026.rar CAB: infected - 1 skipped
C:\My Downloads\CyberLink PowerDVD 7.3.3516 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\CyberLink PowerDVD 7.3.3516 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Daemon Tools Pro 4.16.0218 Patched.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Daemon Tools Pro 4.16.0218 Patched.rar CAB: infected - 1 skipped
C:\My Downloads\Daemon tools pro Advanced 4.10.218.0.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Daemon tools pro Advanced 4.10.218.0.rar CAB: infected - 1 skipped
C:\My Downloads\DAEMON Tools Pro Advanced v4.10.0218 And Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DAEMON Tools Pro Advanced v4.10.0218 And Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Daemon Tools Pro Basic 4.11.0220 Serial.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Daemon Tools Pro Basic 4.11.0220 Serial.rar CAB: infected - 1 skipped
C:\My Downloads\DivX Bundle 6.9 Professional + Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DivX Bundle 6.9 Professional + Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\DivX Professional 6.8.0.30 con el media player actualizado col Coded.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DivX Professional 6.8.0.30 con el media player actualizado col Coded.rar CAB: infected - 1 skipped
C:\My Downloads\DivX-XviD Multi Converter 1.9 [Converte.movies.en.el.fomrat.de.tu.selci˛n].rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DivX-XviD Multi Converter 1.9 [Converte.movies.en.el.fomrat.de.tu.selci˛n].rar CAB: infected - 1 skipped
C:\My Downloads\Download Accelerator Plus Premium 8.6.1.4.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Download Accelerator Plus Premium 8.6.1.4.rar CAB: infected - 1 skipped
C:\My Downloads\Dr. Hardware 2008 9.0.0e.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Dr. Hardware 2008 9.0.0e.rar CAB: infected - 1 skipped
C:\My Downloads\Dr.Web Anti-virus with AntiSpam 4.44.11120 (vers˛n mui complete).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Dr.Web Anti-virus with AntiSpam 4.44.11120 (vers˛n mui complete).rar CAB: infected - 1 skipped
C:\My Downloads\Driver Magic Pro 1.1.3 (update win drivers).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Driver Magic Pro 1.1.3 (update win drivers).rar CAB: infected - 1 skipped
C:\My Downloads\DVDFab Platinum 4.0.1.3 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DVDFab Platinum 4.0.1.3 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\DVDFab Platinum 4.0.3.2 - Final - Full License.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DVDFab Platinum 4.0.3.2 - Final - Full License.rar CAB: infected - 1 skipped
C:\My Downloads\DVDFab Platinum 4.0.4 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DVDFab Platinum 4.0.4 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\DVDFab Platinum 4.0.5.0 + Best Guide.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DVDFab Platinum 4.0.5.0 + Best Guide.rar CAB: infected - 1 skipped
C:\My Downloads\DVDFab Platinum 4.0.5.0 Final Full.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DVDFab Platinum 4.0.5.0 Final Full.rar CAB: infected - 1 skipped
C:\My Downloads\DVDFab.Platinum.4.0.5.0_Final Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DVDFab.Platinum.4.0.5.0_Final Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Easy DVD Creator 1.6.3 Working KEY! Espan˛l.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Easy DVD Creator 1.6.3 Working KEY! Espan˛l.rar CAB: infected - 1 skipped
C:\My Downloads\Easy RM RMVB to DVD Burner 1.4.1 (burn your .RM and .RMVB Movies)_.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Easy RM RMVB to DVD Burner 1.4.1 (burn your .RM and .RMVB Movies)_.rar CAB: infected - 1 skipped
C:\My Downloads\Easy Video Downloader 1.1 (Download Videos From Youtube, Google).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Easy Video Downloader 1.1 (Download Videos From Youtube, Google).rar CAB: infected - 1 skipped
C:\My Downloads\eMule 0.48a Download Speed patch (80% more speed your download with emule and WORK).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\eMule 0.48a Download Speed patch (80% more speed your download with emule and WORK).rar CAB: infected - 1 skipped
C:\My Downloads\eMule 0.48a Download Speed patch (Mui bonito).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\eMule 0.48a Download Speed patch (Mui bonito).rar CAB: infected - 1 skipped
C:\My Downloads\ESET NOD32 Antivirus 3.0.567 Patcher to have ALL updates.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ESET NOD32 Antivirus 3.0.567 Patcher to have ALL updates.rar CAB: infected - 1 skipped
C:\My Downloads\Eset NOD32 Smart Security 3.0.621 + Working Update Code (Till June 2010).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Eset NOD32 Smart Security 3.0.621 + Working Update Code (Till June 2010).rar CAB: infected - 1 skipped
C:\My Downloads\ESET NOD32 Smart Security 3.0.621 Retail 32-bit (100%-BEST Antivirus).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ESET NOD32 Smart Security 3.0.621 Retail 32-bit (100%-BEST Antivirus).rar CAB: infected - 1 skipped
C:\My Downloads\ESET Smart Security & NOD32 Antivirus 3.0.551.0 (el melior Antivirus en circolation).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ESET Smart Security & NOD32 Antivirus 3.0.551.0 (el melior Antivirus en circolation).rar CAB: infected - 1 skipped
C:\My Downloads\ESET Smart Security & NOD32 Antivirus 3.0.551.0.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ESET Smart Security & NOD32 Antivirus 3.0.551.0.rar CAB: infected - 1 skipped
C:\My Downloads\ESET.NOD32.Antivirus.Business.Edition.v3.0.566.CRACKED.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ESET.NOD32.Antivirus.Business.Edition.v3.0.566.CRACKED.rar CAB: infected - 1 skipped
C:\My Downloads\FL Studio 7 Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\FL Studio 7 Patch.rar CAB: infected - 1 skipped
C:\My Downloads\FlashFXP.v3.6.1 MULTiLiNGUAL-(ESP-ITA-ENG-DEU-FRA)-KeyGen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\FlashFXP.v3.6.1 MULTiLiNGUAL-(ESP-ITA-ENG-DEU-FRA)-KeyGen.rar CAB: infected - 1 skipped
C:\My Downloads\FlashGet 1.9.6.1074 [Best Download manager] + Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\FlashGet 1.9.6.1074 [Best Download manager] + Key.rar CAB: infected - 1 skipped
C:\My Downloads\FLV to AVI MPEG WMV 3GP MP4 iPod, Zune Converter.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\FLV to AVI MPEG WMV 3GP MP4 iPod, Zune Converter.rar CAB: infected - 1 skipped
C:\My Downloads\Football Manager 2008 [MULTI 5] Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Football Manager 2008 [MULTI 5] Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\football manager 2008_v8.0.1_Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\football manager 2008_v8.0.1_Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Fruity Loops Studio 7 Full + Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Fruity Loops Studio 7 Full + Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Full Set of Lynda.com - Adobe Creative Suite 3.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Full Set of Lynda.com - Adobe Creative Suite 3.rar CAB: infected - 1 skipped
C:\My Downloads\GetRight Pro 6.3.2.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\GetRight Pro 6.3.2.rar CAB: infected - 1 skipped
C:\My Downloads\Goldenfoundsoft MSN Webcam Recorder 13.0.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Goldenfoundsoft MSN Webcam Recorder 13.0.rar CAB: infected - 1 skipped
C:\My Downloads\Google Earth 4.3 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Google Earth 4.3 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Google Earth Pro 4.2 + Sky FuLL.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Google Earth Pro 4.2 + Sky FuLL.rar CAB: infected - 1 skipped
C:\My Downloads\Great Battles of Rome [PcGame][MULTI5] Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Great Battles of Rome [PcGame][MULTI5] Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Guitar Pro v5.2 (Full Version with CD Key).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Guitar Pro v5.2 (Full Version with CD Key).rar CAB: infected - 1 skipped
C:\My Downloads\Guitar Pro v5.2a Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Guitar Pro v5.2a Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Hirens Boot CD 9.3.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Hirens Boot CD 9.3.rar CAB: infected - 1 skipped
C:\My Downloads\Imtoo 3GP Video Converter 3.1.8.082.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Imtoo 3GP Video Converter 3.1.8.082.rar CAB: infected - 1 skipped
C:\My Downloads\ImTOO DVD Creator 3.0.33.0104.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ImTOO DVD Creator 3.0.33.0104.rar CAB: infected - 1 skipped
C:\My Downloads\ImTOO iPod Movie Converter 3.1.40.0831b.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ImTOO iPod Movie Converter 3.1.40.0831b.rar CAB: infected - 1 skipped
C:\My Downloads\Internet Download Manager 5.11.11 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Internet Download Manager 5.11.11 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Internet Download Manager 5.12_.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Internet Download Manager 5.12_.rar CAB: infected - 1 skipped
C:\My Downloads\Intervideo WinDVD Platinum 8.1 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Intervideo WinDVD Platinum 8.1 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Karaoke Builder Studio 3.0.080 Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Karaoke Builder Studio 3.0.080 Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Kaspersky Anti-Virus 7.0.1.321 Working Key file (till 2010).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Kaspersky Anti-Virus 7.0.1.321 Working Key file (till 2010).rar CAB: infected - 1 skipped
C:\My Downloads\Kaspersky Antivirus Tested Working Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Kaspersky Antivirus Tested Working Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\KASPERSKY AntiVirus7.0.1.321FINAL(with keys pack-key checker).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\KASPERSKY AntiVirus7.0.1.321FINAL(with keys pack-key checker).rar CAB: infected - 1 skipped
C:\My Downloads\Kaspersky Internet Security 7.00.125 Full Update patch till 2009.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Kaspersky Internet Security 7.00.125 Full Update patch till 2009.rar CAB: infected - 1 skipped
C:\My Downloads\Kaspersky Internet Security and Antivirus 7.0.1.321 license key valid untill 2010.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Kaspersky Internet Security and Antivirus 7.0.1.321 license key valid untill 2010.rar CAB: infected - 1 skipped
C:\My Downloads\Kaspersky Internet Security v7.0.1.321 Final [ENG] [NewKeys] All.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Kaspersky Internet Security v7.0.1.321 Final [ENG] [NewKeys] All.rar CAB: infected - 1 skipped
C:\My Downloads\Koyote IPOD Video Converter 2.4.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Koyote IPOD Video Converter 2.4.rar CAB: infected - 1 skipped
C:\My Downloads\LavaSoft Ad-Aware 2007 Professional 7.0.2.5 (version profesional ESP).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\LavaSoft Ad-Aware 2007 Professional 7.0.2.5 (version profesional ESP).rar CAB: infected - 1 skipped
C:\My Downloads\LimeWire Pro 4.14.0 Spped Download Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\LimeWire Pro 4.14.0 Spped Download Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Macromedia DreamWeaver CS3 + Plugins and Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Macromedia DreamWeaver CS3 + Plugins and Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Macromedia DreamWeaver CS3 Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Macromedia DreamWeaver CS3 Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Magic DVD Ripper 5.2.2.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Magic DVD Ripper 5.2.2.rar CAB: infected - 1 skipped
C:\My Downloads\Magic ISO 5.4 + serial.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Magic ISO 5.4 + serial.rar CAB: infected - 1 skipped
C:\My Downloads\Magic ISO 5.41 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Magic ISO 5.41 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Magic ISO Maker 5.4 with serial.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Magic ISO Maker 5.4 with serial.rar CAB: infected - 1 skipped
C:\My Downloads\Magic Video Converter 8.0.2.18 (The Ultimate Video Converter).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Magic Video Converter 8.0.2.18 (The Ultimate Video Converter).rar CAB: infected - 1 skipped
C:\My Downloads\Magic Video Converter 8.0.2.19 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Magic Video Converter 8.0.2.19 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Matlab 2007 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Matlab 2007 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Maximus Multiband Maximizer 1.0.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Maximus Multiband Maximizer 1.0.rar CAB: infected - 1 skipped
C:\My Downloads\McAfee Anti-Virus 10 con el Key valide.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\McAfee Anti-Virus 10 con el Key valide.rar CAB: infected - 1 skipped
C:\My Downloads\McAfee Antivirus 10.0 ENG-ESP-FRA Cracked.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\McAfee Antivirus 10.0 ENG-ESP-FRA Cracked.rar CAB: infected - 1 skipped
C:\My Downloads\McAfee VirusScan Enterprise 8.5.0i Licensed.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\McAfee VirusScan Enterprise 8.5.0i Licensed.rar CAB: infected - 1 skipped
C:\My Downloads\McAfee.Total.Protection.2007.Multilingual.Working.Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\McAfee.Total.Protection.2007.Multilingual.Working.Crack.rar CAB: infected - 1 skipped
C:\My Downloads\McAfee.Total.Protection.2008.WorkingPatch.Update.TILL.2011.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\McAfee.Total.Protection.2008.WorkingPatch.Update.TILL.2011.rar CAB: infected - 1 skipped
C:\My Downloads\MediaMonkey 3.0.1.1120 Full Multilingual.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MediaMonkey 3.0.1.1120 Full Multilingual.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office 2003 Professional with SP1 2 3 Working Serial.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office 2003 Professional with SP1 2 3 Working Serial.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office 2007 Complete DVD + Serial.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office 2007 Complete DVD + Serial.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office 2007 Complete Version Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office 2007 Complete Version Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office 2007 COMPLETE.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office 2007 COMPLETE.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office 2007 Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office 2007 Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office 2007 Enterprise Edition Incl Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office 2007 Enterprise Edition Incl Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office 2007 Enterprise Genuine Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office 2007 Enterprise Genuine Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office 2007 FULL + Keygen ( Vista comp.).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office 2007 FULL + Keygen ( Vista comp.).rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office 2007 Ultimate.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office 2007 Ultimate.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office Home and Student Edition 2007 FULL Versions with Working Activation Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office Home and Student Edition 2007 FULL Versions with Working Activation Key.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office XP PRO includes word, excel, powerpoint, outloock.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office XP PRO includes word, excel, powerpoint, outloock.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Visual Studio 2008 Professional Edition-ZWTiSO.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Visual Studio 2008 Professional Edition-ZWTiSO.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Windows Vista 32-X86-X64 Working Activation Key-(june 08).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Windows Vista 32-X86-X64 Working Activation Key-(june 08).rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Windows Vista Ultimate x86 DVD Integrated November 2007.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Windows Vista Ultimate x86 DVD Integrated November 2007.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Windows VISTA Validation Crack 2008.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Windows VISTA Validation Crack 2008.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Windows XP Pro SP3 WGA Validation Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Windows XP Pro SP3 WGA Validation Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft.Windows.Vista.Ultimate.x64.Integrated.December.2007.OEM.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft.Windows.Vista.Ultimate.x64.Integrated.December.2007.OEM.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft.Windows.Vista.Ultimate.x64.Integrated.January.2008.OEM.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft.Windows.Vista.Ultimate.x64.Integrated.January.2008.OEM.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft.Windows.XP.WGA.Validate.Patcher.(funciona.perfieto!).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft.Windows.XP.WGA.Validate.Patcher.(funciona.perfieto!).rar CAB: infected - 1 skipped
C:\My Downloads\MIRC.6.31.+.Keygen.+Manuales.+instrucions+scripts.(Pack.by.eLs0M).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MIRC.6.31.+.Keygen.+Manuales.+instrucions+scripts.(Pack.by.eLs0M).rar CAB: infected - 1 skipped
C:\My Downloads\MKV to AVI Converter 3.0.018.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MKV to AVI Converter 3.0.018.rar CAB: infected - 1 skipped
C:\My Downloads\Movie Collector Pro 5.256.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Movie Collector Pro 5.256.rar CAB: infected - 1 skipped
C:\My Downloads\MP3 Remix Plus 3.311 Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MP3 Remix Plus 3.311 Crack.rar CAB: infected - 1 skipped
C:\My Downloads\MP3Resizer 1.8.3 ESP.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MP3Resizer 1.8.3 ESP.rar CAB: infected - 1 skipped
C:\My Downloads\MS Office 2007 Full DVD Incl SN.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MS Office 2007 Full DVD Incl SN.rar CAB: infected - 1 skipped
C:\My Downloads\MSN Messenger 8 Fully Patched for XP Sp2 and ViSTA.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MSN Messenger 8 Fully Patched for XP Sp2 and ViSTA.rar CAB: infected - 1 skipped
C:\My Downloads\MSN.Messenger.8.0.Working.Patch.to.nudge.all.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MSN.Messenger.8.0.Working.Patch.to.nudge.all.rar CAB: infected - 1 skipped
C:\My Downloads\My Screen Recorder Pro 2.32.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\My Screen Recorder Pro 2.32.rar CAB: infected - 1 skipped
C:\My Downloads\Nero 8 Ultra 8.1.1.4 ESPANOL co key funcionante actualizado!.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Nero 8 Ultra 8.1.1.4 ESPANOL co key funcionante actualizado!.rar CAB: infected - 1 skipped
C:\My Downloads\Nero 8 Ultra Edition 8.1.1.4+KeyMaker-ShareAll.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Nero 8 Ultra Edition 8.1.1.4+KeyMaker-ShareAll.rar CAB: infected - 1 skipped
C:\My Downloads\Nero 8 Ultra Edition 8.1.1.5 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Nero 8 Ultra Edition 8.1.1.5 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Nero 8 Ultra Edition 8.2.8.0 (complete with Patch).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Nero 8 Ultra Edition 8.2.8.0 (complete with Patch).rar CAB: infected - 1 skipped
C:\My Downloads\Nero 8 Ultra Edition 8.2.8.0+Keymaker.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Nero 8 Ultra Edition 8.2.8.0+Keymaker.rar CAB: infected - 1 skipped
C:\My Downloads\Nero 8 Ultra Edition Serial Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Nero 8 Ultra Edition Serial Key.rar CAB: infected - 1 skipped
C:\My Downloads\Nero 8 with instructions (Only version that is fully cracked).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Nero 8 with instructions (Only version that is fully cracked).rar CAB: infected - 1 skipped
C:\My Downloads\Nero 8.2.8.0 Ultra Edition incl. Keygen (WORKS PERFECT).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Nero 8.2.8.0 Ultra Edition incl. Keygen (WORKS PERFECT).rar CAB: infected - 1 skipped
C:\My Downloads\NOD32 3.xx Universal Fix.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\NOD32 3.xx Universal Fix.rar CAB: infected - 1 skipped
C:\My Downloads\NOD32 Antivirus 3.0.551.0 ESP.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\NOD32 Antivirus 3.0.551.0 ESP.rar CAB: infected - 1 skipped
C:\My Downloads\NOD32 AntiVirus BUSINESS EDITIONv3.0.621.0.(NEW FIX.FINAL).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\NOD32 AntiVirus BUSINESS EDITIONv3.0.621.0.(NEW FIX.FINAL).rar CAB: infected - 1 skipped
C:\My Downloads\Norton 360 Tested Working Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Norton 360 Tested Working Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Norton Anti Virus 2008 for Vista RETAiL + Crack + Instruciones.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Norton Anti Virus 2008 for Vista RETAiL + Crack + Instruciones.rar CAB: infected - 1 skipped
C:\My Downloads\Norton Antivirus 2008 Full Cracked INCL KEYGEN.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Norton Antivirus 2008 Full Cracked INCL KEYGEN.rar CAB: infected - 1 skipped
C:\My Downloads\Norton Ghost 12 Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Norton Ghost 12 Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Norton Internet Security 2008 15.0.0.58 Cracked + Guides.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Norton Internet Security 2008 15.0.0.58 Cracked + Guides.rar CAB: infected - 1 skipped
C:\My Downloads\Norton Internet Security 2008 Multilingual-(ESP-ITA-ENG-GER-FRA)+ Guide to crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Norton Internet Security 2008 Multilingual-(ESP-ITA-ENG-GER-FRA)+ Guide to crack.rar CAB: infected - 1 skipped
C:\My Downloads\Norton Partition Magic 8.05 Full Cracked.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Norton Partition Magic 8.05 Full Cracked.rar CAB: infected - 1 skipped
C:\My Downloads\Norton Product Suite 2007 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Norton Product Suite 2007 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Norton.Antivirus.2008.beta.with.crack.and.instruciones-rELY.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Norton.Antivirus.2008.beta.with.crack.and.instruciones-rELY.rar CAB: infected - 1 skipped
C:\My Downloads\Norton.Internet.Security.2008.+crack+guides+instruciones.to.crack.it.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Norton.Internet.Security.2008.+crack+guides+instruciones.to.crack.it.rar CAB: infected - 1 skipped
C:\My Downloads\NortonInternetSecurity 2008 Espanol (gracias oN0x).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\NortonInternetSecurity 2008 Espanol (gracias oN0x).rar CAB: infected - 1 skipped
C:\My Downloads\O&O Defrag Professional 10.0.1635 Key (funciona).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\O&O Defrag Professional 10.0.1635 Key (funciona).rar CAB: infected - 1 skipped
C:\My Downloads\Oxygen Phone Manager for Nokia Phones II 2.12.1.6.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Oxygen Phone Manager for Nokia Phones II 2.12.1.6.rar CAB: infected - 1 skipped
C:\My Downloads\Panda Antivirus 2008 CracKed.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Panda Antivirus 2008 CracKed.rar CAB: infected - 1 skipped
C:\My Downloads\Panda Antivirus Plus Firewall (2008) Update patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Panda Antivirus Plus Firewall (2008) Update patch.rar CAB: infected - 1 skipped
C:\My Downloads\Patch.all.Windows.XP.in.a.second-(and make updates!).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Patch.all.Windows.XP.in.a.second-(and make updates!).rar CAB: infected - 1 skipped
C:\My Downloads\PC Satellite TV 2007 Elite Working KeyGen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\PC Satellite TV 2007 Elite Working KeyGen.rar CAB: infected - 1 skipped
C:\My Downloads\PC Tools AntiVirus 3.6.0.34 (version complete).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\PC Tools AntiVirus 3.6.0.34 (version complete).rar CAB: infected - 1 skipped
C:\My Downloads\PC Tools Internet Security 2008 Patch to 2009 Updates.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\PC Tools Internet Security 2008 Patch to 2009 Updates.rar CAB: infected - 1 skipped
C:\My Downloads\PhotoSphere Professional 2.2 Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\PhotoSphere Professional 2.2 Key.rar CAB: infected - 1 skipped
C:\My Downloads\Pinnacle Studio Plus v11 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Pinnacle Studio Plus v11 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Pinnacle Studio Plus v11 MultiLanguage Bonus DVD Incl Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Pinnacle Studio Plus v11 MultiLanguage Bonus DVD Incl Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\PlayStation 2 Emulator for PC (PCSX2 Stable and working).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\PlayStation 2 Emulator for PC (PCSX2 Stable and working).rar CAB: infected - 1 skipped
C:\My Downloads\Power ISO + serial 3.8 latest.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Power ISO + serial 3.8 latest.rar CAB: infected - 1 skipped
C:\My Downloads\Power ISO 3.8 + Aiudos + Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Power ISO 3.8 + Aiudos + Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Power ISO 3.9 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Power ISO 3.9 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\PS3 Video Converter 3.1.21.0115b NEW.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\PS3 Video Converter 3.1.21.0115b NEW.rar CAB: infected - 1 skipped
C:\My Downloads\RapidGet Download Manager.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\RapidGet Download Manager.rar CAB: infected - 1 skipped
C:\My Downloads\Rapidshare Leecher 2008 + Rapidshare Tools.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Rapidshare Leecher 2008 + Rapidshare Tools.rar CAB: infected - 1 skipped
C:\My Downloads\RapidShare Manager 2008.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\RapidShare Manager 2008.rar CAB: infected - 1 skipped
C:\My Downloads\Rapidshare Premium Donloader Manager.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Rapidshare Premium Donloader Manager.rar CAB: infected - 1 skipped
C:\My Downloads\Real Player 11.0.0.373 Crack-W0rking.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Real Player 11.0.0.373 Crack-W0rking.rar CAB: infected - 1 skipped
C:\My Downloads\RealPlayer 11.0.0.372 Plus for XP-VISTA.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\RealPlayer 11.0.0.372 Plus for XP-VISTA.rar CAB: infected - 1 skipped
C:\My Downloads\Registry First Aid Platinum 6.1.0.1546 + Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Registry First Aid Platinum 6.1.0.1546 + Key.rar CAB: infected - 1 skipped
C:\My Downloads\Resident Evil 3 Nemesis[PcGame][MULTI5] Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Resident Evil 3 Nemesis[PcGame][MULTI5] Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Rosetta Stone 2007 and language pack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Rosetta Stone 2007 and language pack.rar CAB: infected - 1 skipped
C:\My Downloads\Roxio Easy Media Creator 10a Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Roxio Easy Media Creator 10a Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Screen Grab Pro Deluxe 1.1 (pics of your desktop).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Screen Grab Pro Deluxe 1.1 (pics of your desktop).rar CAB: infected - 1 skipped
C:\My Downloads\SlySoft AnyDVD & AnyDVD HD 6.3.0.8 Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\SlySoft AnyDVD & AnyDVD HD 6.3.0.8 Crack.rar CAB: infected - 1 skipped
C:\My Downloads\SlySoft AnyDVD HD 6.3.0.3 FINAL incl. crack by Team Resurrection.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\SlySoft AnyDVD HD 6.3.0.3 FINAL incl. crack by Team Resurrection.rar CAB: infected - 1 skipped
C:\My Downloads\Slysoft AnyDVD HD 6.3.0.3.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Slysoft AnyDVD HD 6.3.0.3.rar CAB: infected - 1 skipped
C:\My Downloads\SolSuite 2008 8.1 (Best Card Game!).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\SolSuite 2008 8.1 (Best Card Game!).rar CAB: infected - 1 skipped
C:\My Downloads\Sony DVD Architect Studio 4.5c (Complete Disk).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Sony DVD Architect Studio 4.5c (Complete Disk).rar CAB: infected - 1 skipped
C:\My Downloads\Sony Vegas 8.0a Complete.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Sony Vegas 8.0a Complete.rar CAB: infected - 1 skipped
C:\My Downloads\Sony Vegas Pro 8 0a build 179 Corporate Full.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Sony Vegas Pro 8 0a build 179 Corporate Full.rar CAB: infected - 1 skipped
C:\My Downloads\Sophos Antivirus 6.5.1.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Sophos Antivirus 6.5.1.rar CAB: infect
  • 0

#12
IndiGenus

IndiGenus

    Anti-Malware Buddha

  • Member
  • PipPipPipPip
  • 1,617 posts
Hi,

Well, your Kaspersky log got cut off. But I assume it's more of what we're seeing anyway.

You really need to take a look at your download habits....and think about whether or not you should be paying for software. Downloading cracks and keygens to use software is not only illegal but will get you re-infected very quickly. If you keep downloading that stuff on the Torrents or P2P you will be back here. I would recommend you remove everything in your downloads folder that is not legit. You may have some legitimate software in there but most of that stuff if launched will probably re-infect you very quickly. I would recommend you remove it then run Kaspersky again, posting the log. Please note that many of the forums will not help at all if they find you are downloading this stuff.

C:\My Downloads
  • 0

#13
welder572

welder572

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
Deleted all kinds of stuff, should I delete everything in my downloads? Alot of stuff in there says it has keygens and cracks, including kaspersky's scan. Does that mean it all needs to go?

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Tuesday, February 19, 2008 8:30:51 PM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 20/02/2008
Kaspersky Anti-Virus database records: 573353
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
C:\
D:\
E:\
F:\
G:\
H:\
I:\
J:\
K:\

Scan Statistics:
Total number of scanned objects: 138282
Number of viruses found: 12
Number of infected objects: 489
Number of suspicious objects: 2
Duration of the scan process: 02:01:52

Infected Object Name / Virus Name / Last Action
C:\autorun.inf\lpt3.This folder was created by Flash_Disinfector Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\d90bc52ff7b19732831ff5ed5e0c68a1_bf6084eb-2d42-4f0d-b2e5-c66ed0ed5218 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\WhenUWeatherCast1.zip/Uninst.exe Suspicious: Password-protected-EXE skipped
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\WhenUWeatherCast1.zip ZIP: suspicious - 1 skipped
C:\Documents and Settings\All Users\Application Data\Support.com\Profiles\Owner\triggers.log Object is locked skipped
C:\Documents and Settings\Joan\Application Data\Netscape\NSB\Profiles\dnyc1yl6\TempScanDir\rzhsr875.exe Infected: not-a-virus:Downloader.Win32.ImLoader.c skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\Application Data\BellSouth\AM\client_gateway.log Object is locked skipped
C:\Documents and Settings\Owner\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Desktop\SmitfraudFix.exe/data.rar/SmitfraudFix/Reboot.exe Infected: not-a-virus:RiskTool.Win32.Reboot.f skipped
C:\Documents and Settings\Owner\Desktop\SmitfraudFix.exe/data.rar Infected: not-a-virus:RiskTool.Win32.Reboot.f skipped
C:\Documents and Settings\Owner\Desktop\SmitfraudFix.exe RarSFX: infected - 2 skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\AOL OCP\AIM\Storage\All Users\localStorage\common.cls Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\MSHist012008021920080220\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Owner\ntuser.dat.LOG Object is locked skipped
C:\My Downloads\ACDSee 9 build 108 Vista Compatible.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ACDSee 9 build 108 Vista Compatible.rar CAB: infected - 1 skipped
C:\My Downloads\Acronis Disk Director Server 10.0.2169 Keygen Working.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Acronis Disk Director Server 10.0.2169 Keygen Working.rar CAB: infected - 1 skipped
C:\My Downloads\Acronis Disk Director Server 10.0.2169.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Acronis Disk Director Server 10.0.2169.rar CAB: infected - 1 skipped
C:\My Downloads\Acronis True Image 11 Build 8053 Home.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Acronis True Image 11 Build 8053 Home.rar CAB: infected - 1 skipped
C:\My Downloads\Advanced System Optimizer 2.20.4.747 Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Advanced System Optimizer 2.20.4.747 Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Advanced Uninstaller Pro 8.54 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Advanced Uninstaller Pro 8.54 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Advanced Uninstaller Professional 8.5.2 + Working KEY.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Advanced Uninstaller Professional 8.5.2 + Working KEY.rar CAB: infected - 1 skipped
C:\My Downloads\Ashampoo Office 2008 3.01 + KEY.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Ashampoo Office 2008 3.01 + KEY.rar CAB: infected - 1 skipped
C:\My Downloads\Atomix Virtual DJ Professional 5.0 rev6.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Atomix Virtual DJ Professional 5.0 rev6.rar CAB: infected - 1 skipped
C:\My Downloads\Avast Antivirus Pro 4.7.1098 Licensed till 2009.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Avast Antivirus Pro 4.7.1098 Licensed till 2009.rar CAB: infected - 1 skipped
C:\My Downloads\Avast Antivirus Pro 4.7.1098 working Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Avast Antivirus Pro 4.7.1098 working Key.rar CAB: infected - 1 skipped
C:\My Downloads\AVG 7.5 Internet Security & Firewall.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AVG 7.5 Internet Security & Firewall.rar CAB: infected - 1 skipped
C:\My Downloads\AVG Anti-Spyware Plus 7.5.1.43.3339 con el key funcionante.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AVG Anti-Spyware Plus 7.5.1.43.3339 con el key funcionante.rar CAB: infected - 1 skipped
C:\My Downloads\AVG Anti-Spyware Plus 7.5.1.43.3339 Patched Multilingual-ReL.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AVG Anti-Spyware Plus 7.5.1.43.3339 Patched Multilingual-ReL.rar CAB: infected - 1 skipped
C:\My Downloads\AVG Anti-Virus Professional Edition Latest v7.5.516 + Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AVG Anti-Virus Professional Edition Latest v7.5.516 + Key.rar CAB: infected - 1 skipped
C:\My Downloads\AVG Antivirus Latest Version 7.5 Pro.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\AVG Antivirus Latest Version 7.5 Pro.rar CAB: infected - 1 skipped
C:\My Downloads\BitDefender Antivirus 10 LAST Working Crack + Updates.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\BitDefender Antivirus 10 LAST Working Crack + Updates.rar CAB: infected - 1 skipped
C:\My Downloads\BitDefender Antivirus 2008 Patcheado ESP-ITA-ENG.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\BitDefender Antivirus 2008 Patcheado ESP-ITA-ENG.rar CAB: infected - 1 skipped
C:\My Downloads\Bitdefender AntiVirus 32bit 2008 patcheado + license key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Bitdefender AntiVirus 32bit 2008 patcheado + license key.rar CAB: infected - 1 skipped
C:\My Downloads\Computer FiX VoL1 [App][MULTI5].rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Computer FiX VoL1 [App][MULTI5].rar CAB: infected - 1 skipped
C:\My Downloads\Convert DAA (PowerISO) or UIF (MagicISO) to ISO.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Convert DAA (PowerISO) or UIF (MagicISO) to ISO.rar CAB: infected - 1 skipped
C:\My Downloads\Cool Youtube Downloader Full.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Cool Youtube Downloader Full.rar CAB: infected - 1 skipped
C:\My Downloads\CyberLink MakeDVD 2.0.0.2026.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\CyberLink MakeDVD 2.0.0.2026.rar CAB: infected - 1 skipped
C:\My Downloads\Daemon Tools Pro 4.16.0218 Patched.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Daemon Tools Pro 4.16.0218 Patched.rar CAB: infected - 1 skipped
C:\My Downloads\Daemon tools pro Advanced 4.10.218.0.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Daemon tools pro Advanced 4.10.218.0.rar CAB: infected - 1 skipped
C:\My Downloads\DAEMON Tools Pro Advanced v4.10.0218 And Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DAEMON Tools Pro Advanced v4.10.0218 And Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Daemon Tools Pro Basic 4.11.0220 Serial.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Daemon Tools Pro Basic 4.11.0220 Serial.rar CAB: infected - 1 skipped
C:\My Downloads\DivX Bundle 6.9 Professional + Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DivX Bundle 6.9 Professional + Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\DivX Professional 6.8.0.30 con el media player actualizado col Coded.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DivX Professional 6.8.0.30 con el media player actualizado col Coded.rar CAB: infected - 1 skipped
C:\My Downloads\DivX-XviD Multi Converter 1.9 [Converte.movies.en.el.fomrat.de.tu.selci˛n].rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\DivX-XviD Multi Converter 1.9 [Converte.movies.en.el.fomrat.de.tu.selci˛n].rar CAB: infected - 1 skipped
C:\My Downloads\Download Accelerator Plus Premium 8.6.1.4.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Download Accelerator Plus Premium 8.6.1.4.rar CAB: infected - 1 skipped
C:\My Downloads\Dr. Hardware 2008 9.0.0e.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Dr. Hardware 2008 9.0.0e.rar CAB: infected - 1 skipped
C:\My Downloads\Driver Magic Pro 1.1.3 (update win drivers).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Driver Magic Pro 1.1.3 (update win drivers).rar CAB: infected - 1 skipped
C:\My Downloads\eMule 0.48a Download Speed patch (80% more speed your download with emule and WORK).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\eMule 0.48a Download Speed patch (80% more speed your download with emule and WORK).rar CAB: infected - 1 skipped
C:\My Downloads\eMule 0.48a Download Speed patch (Mui bonito).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\eMule 0.48a Download Speed patch (Mui bonito).rar CAB: infected - 1 skipped
C:\My Downloads\ESET NOD32 Antivirus 3.0.567 Patcher to have ALL updates.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ESET NOD32 Antivirus 3.0.567 Patcher to have ALL updates.rar CAB: infected - 1 skipped
C:\My Downloads\Eset NOD32 Smart Security 3.0.621 + Working Update Code (Till June 2010).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Eset NOD32 Smart Security 3.0.621 + Working Update Code (Till June 2010).rar CAB: infected - 1 skipped
C:\My Downloads\ESET NOD32 Smart Security 3.0.621 Retail 32-bit (100%-BEST Antivirus).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ESET NOD32 Smart Security 3.0.621 Retail 32-bit (100%-BEST Antivirus).rar CAB: infected - 1 skipped
C:\My Downloads\ESET Smart Security & NOD32 Antivirus 3.0.551.0 (el melior Antivirus en circolation).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ESET Smart Security & NOD32 Antivirus 3.0.551.0 (el melior Antivirus en circolation).rar CAB: infected - 1 skipped
C:\My Downloads\ESET Smart Security & NOD32 Antivirus 3.0.551.0.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ESET Smart Security & NOD32 Antivirus 3.0.551.0.rar CAB: infected - 1 skipped
C:\My Downloads\ESET.NOD32.Antivirus.Business.Edition.v3.0.566.CRACKED.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ESET.NOD32.Antivirus.Business.Edition.v3.0.566.CRACKED.rar CAB: infected - 1 skipped
C:\My Downloads\Full Set of Lynda.com - Adobe Creative Suite 3.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Full Set of Lynda.com - Adobe Creative Suite 3.rar CAB: infected - 1 skipped
C:\My Downloads\GetRight Pro 6.3.2.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\GetRight Pro 6.3.2.rar CAB: infected - 1 skipped
C:\My Downloads\Goldenfoundsoft MSN Webcam Recorder 13.0.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Goldenfoundsoft MSN Webcam Recorder 13.0.rar CAB: infected - 1 skipped
C:\My Downloads\Great Battles of Rome [PcGame][MULTI5] Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Great Battles of Rome [PcGame][MULTI5] Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Hirens Boot CD 9.3.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Hirens Boot CD 9.3.rar CAB: infected - 1 skipped
C:\My Downloads\Imtoo 3GP Video Converter 3.1.8.082.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Imtoo 3GP Video Converter 3.1.8.082.rar CAB: infected - 1 skipped
C:\My Downloads\ImTOO DVD Creator 3.0.33.0104.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ImTOO DVD Creator 3.0.33.0104.rar CAB: infected - 1 skipped
C:\My Downloads\ImTOO iPod Movie Converter 3.1.40.0831b.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\ImTOO iPod Movie Converter 3.1.40.0831b.rar CAB: infected - 1 skipped
C:\My Downloads\Kaspersky Anti-Virus 7.0.1.321 Working Key file (till 2010).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Kaspersky Anti-Virus 7.0.1.321 Working Key file (till 2010).rar CAB: infected - 1 skipped
C:\My Downloads\Kaspersky Antivirus Tested Working Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Kaspersky Antivirus Tested Working Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\KASPERSKY AntiVirus7.0.1.321FINAL(with keys pack-key checker).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\KASPERSKY AntiVirus7.0.1.321FINAL(with keys pack-key checker).rar CAB: infected - 1 skipped
C:\My Downloads\Kaspersky Internet Security 7.00.125 Full Update patch till 2009.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Kaspersky Internet Security 7.00.125 Full Update patch till 2009.rar CAB: infected - 1 skipped
C:\My Downloads\Kaspersky Internet Security and Antivirus 7.0.1.321 license key valid untill 2010.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Kaspersky Internet Security and Antivirus 7.0.1.321 license key valid untill 2010.rar CAB: infected - 1 skipped
C:\My Downloads\Kaspersky Internet Security v7.0.1.321 Final [ENG] [NewKeys] All.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Kaspersky Internet Security v7.0.1.321 Final [ENG] [NewKeys] All.rar CAB: infected - 1 skipped
C:\My Downloads\Koyote IPOD Video Converter 2.4.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Koyote IPOD Video Converter 2.4.rar CAB: infected - 1 skipped
C:\My Downloads\LavaSoft Ad-Aware 2007 Professional 7.0.2.5 (version profesional ESP).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\LavaSoft Ad-Aware 2007 Professional 7.0.2.5 (version profesional ESP).rar CAB: infected - 1 skipped
C:\My Downloads\Macromedia DreamWeaver CS3 + Plugins and Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Macromedia DreamWeaver CS3 + Plugins and Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Macromedia DreamWeaver CS3 Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Macromedia DreamWeaver CS3 Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Maximus Multiband Maximizer 1.0.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Maximus Multiband Maximizer 1.0.rar CAB: infected - 1 skipped
C:\My Downloads\MediaMonkey 3.0.1.1120 Full Multilingual.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MediaMonkey 3.0.1.1120 Full Multilingual.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office Home and Student Edition 2007 FULL Versions with Working Activation Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office Home and Student Edition 2007 FULL Versions with Working Activation Key.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Office XP PRO includes word, excel, powerpoint, outloock.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Office XP PRO includes word, excel, powerpoint, outloock.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Visual Studio 2008 Professional Edition-ZWTiSO.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Visual Studio 2008 Professional Edition-ZWTiSO.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Windows Vista 32-X86-X64 Working Activation Key-(june 08).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Windows Vista 32-X86-X64 Working Activation Key-(june 08).rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Windows Vista Ultimate x86 DVD Integrated November 2007.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Windows Vista Ultimate x86 DVD Integrated November 2007.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Windows VISTA Validation Crack 2008.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Windows VISTA Validation Crack 2008.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft Windows XP Pro SP3 WGA Validation Patch.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft Windows XP Pro SP3 WGA Validation Patch.rar CAB: infected - 1 skipped
C:\My Downloads\Microsoft.Windows.XP.WGA.Validate.Patcher.(funciona.perfieto!).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Microsoft.Windows.XP.WGA.Validate.Patcher.(funciona.perfieto!).rar CAB: infected - 1 skipped
C:\My Downloads\MIRC.6.31.+.Keygen.+Manuales.+instrucions+scripts.(Pack.by.eLs0M).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MIRC.6.31.+.Keygen.+Manuales.+instrucions+scripts.(Pack.by.eLs0M).rar CAB: infected - 1 skipped
C:\My Downloads\MSN Messenger 8 Fully Patched for XP Sp2 and ViSTA.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MSN Messenger 8 Fully Patched for XP Sp2 and ViSTA.rar CAB: infected - 1 skipped
C:\My Downloads\MSN.Messenger.8.0.Working.Patch.to.nudge.all.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\MSN.Messenger.8.0.Working.Patch.to.nudge.all.rar CAB: infected - 1 skipped
C:\My Downloads\My Screen Recorder Pro 2.32.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\My Screen Recorder Pro 2.32.rar CAB: infected - 1 skipped
C:\My Downloads\O&O Defrag Professional 10.0.1635 Key (funciona).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\O&O Defrag Professional 10.0.1635 Key (funciona).rar CAB: infected - 1 skipped
C:\My Downloads\Patch.all.Windows.XP.in.a.second-(and make updates!).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Patch.all.Windows.XP.in.a.second-(and make updates!).rar CAB: infected - 1 skipped
C:\My Downloads\PC Satellite TV 2007 Elite Working KeyGen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\PC Satellite TV 2007 Elite Working KeyGen.rar CAB: infected - 1 skipped
C:\My Downloads\PC Tools AntiVirus 3.6.0.34 (version complete).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\PC Tools AntiVirus 3.6.0.34 (version complete).rar CAB: infected - 1 skipped
C:\My Downloads\PC Tools Internet Security 2008 Patch to 2009 Updates.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\PC Tools Internet Security 2008 Patch to 2009 Updates.rar CAB: infected - 1 skipped
C:\My Downloads\Registry First Aid Platinum 6.1.0.1546 + Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Registry First Aid Platinum 6.1.0.1546 + Key.rar CAB: infected - 1 skipped
C:\My Downloads\SolSuite 2008 8.1 (Best Card Game!).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\SolSuite 2008 8.1 (Best Card Game!).rar CAB: infected - 1 skipped
C:\My Downloads\Sony DVD Architect Studio 4.5c (Complete Disk).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Sony DVD Architect Studio 4.5c (Complete Disk).rar CAB: infected - 1 skipped
C:\My Downloads\Sony Vegas 8.0a Complete.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Sony Vegas 8.0a Complete.rar CAB: infected - 1 skipped
C:\My Downloads\Sony Vegas Pro 8 0a build 179 Corporate Full.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Sony Vegas Pro 8 0a build 179 Corporate Full.rar CAB: infected - 1 skipped
C:\My Downloads\Sophos Antivirus 6.5.1.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Sophos Antivirus 6.5.1.rar CAB: infected - 1 skipped
C:\My Downloads\Super Internet TV 7.11 2007 Patched.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Super Internet TV 7.11 2007 Patched.rar CAB: infected - 1 skipped
C:\My Downloads\Super Todo En Uno V3 [DVD9] [Spanish].rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Super Todo En Uno V3 [DVD9] [Spanish].rar CAB: infected - 1 skipped
C:\My Downloads\Symantec AntiVirus Corporate Edition 1.0.3-8 for Servers.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Symantec AntiVirus Corporate Edition 1.0.3-8 for Servers.rar CAB: infected - 1 skipped
C:\My Downloads\System Mechanic 7.5.3 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\System Mechanic 7.5.3 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\System Mechanic Professional 7.5.5.1_Full.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\System Mechanic Professional 7.5.5.1_Full.rar CAB: infected - 1 skipped
C:\My Downloads\TechSmith Camtasia Studio 5.0.1 [Record your own videos]-Cracked.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\TechSmith Camtasia Studio 5.0.1 [Record your own videos]-Cracked.rar CAB: infected - 1 skipped
C:\My Downloads\TEU Essentials 2007 [PC-DVD].rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\TEU Essentials 2007 [PC-DVD].rar CAB: infected - 1 skipped
C:\My Downloads\The Shield Antivirus 2007 Pro & Firewall.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\The Shield Antivirus 2007 Pro & Firewall.rar CAB: infected - 1 skipped
C:\My Downloads\Total Commander 7.01 for XP-VISTA.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Total Commander 7.01 for XP-VISTA.rar CAB: infected - 1 skipped
C:\My Downloads\Trend Micro Anti-Spyware 3.5.0.1041 (crackeado).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Trend Micro Anti-Spyware 3.5.0.1041 (crackeado).rar CAB: infected - 1 skipped
C:\My Downloads\Trend Micro PC-Cillin Internet Security Pro 2008 16.05.1015 + License Key patcher.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Trend Micro PC-Cillin Internet Security Pro 2008 16.05.1015 + License Key patcher.rar CAB: infected - 1 skipped
C:\My Downloads\TuneUp Utilities 2007 6.0.2312 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\TuneUp Utilities 2007 6.0.2312 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\TuneUp Utilities 2008 7.0.7992 working Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\TuneUp Utilities 2008 7.0.7992 working Key.rar CAB: infected - 1 skipped
C:\My Downloads\UltraISO Premium Edition 8.6.6.2180 Working Crack + Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\UltraISO Premium Edition 8.6.6.2180 Working Crack + Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\USB Safely Remove 3.3.0.613.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\USB Safely Remove 3.3.0.613.rar CAB: infected - 1 skipped
C:\My Downloads\WGA.Validate.2008.for.Windows.XP.Home+Professional.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\WGA.Validate.2008.for.Windows.XP.Home+Professional.rar CAB: infected - 1 skipped
C:\My Downloads\Winamp 5.5.1640 Pro incluido plugins-advanced system.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Winamp 5.5.1640 Pro incluido plugins-advanced system.rar CAB: infected - 1 skipped
C:\My Downloads\Winamp Pro v5.6 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Winamp Pro v5.6 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\WinAVI Video Converter 8.0 Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\WinAVI Video Converter 8.0 Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\WinAVI Video Converter 9.0+ Serial.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\WinAVI Video Converter 9.0+ Serial.rar CAB: infected - 1 skipped
C:\My Downloads\Windows 98 Second Edition Full Bootable CD + CD Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Windows 98 Second Edition Full Bootable CD + CD Key.rar CAB: infected - 1 skipped
C:\My Downloads\Windows Vista x86 MultiLang AutoPatcher.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Windows Vista x86 MultiLang AutoPatcher.rar CAB: infected - 1 skipped
C:\My Downloads\Windows Vista x86 Ultimate Genuine OEM Keygen.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Windows Vista x86 Ultimate Genuine OEM Keygen.rar CAB: infected - 1 skipped
C:\My Downloads\Windows Xp Pro Sp3 3264 Vista Style.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Windows Xp Pro Sp3 3264 Vista Style.rar CAB: infected - 1 skipped
C:\My Downloads\Windows XP Professional Genuine Crack.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Windows XP Professional Genuine Crack.rar CAB: infected - 1 skipped
C:\My Downloads\Windows XP Professional Service Pack 2.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Windows XP Professional Service Pack 2.rar CAB: infected - 1 skipped
C:\My Downloads\Windows XP Professional Student SP3-Integrated + CD Key.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Windows XP Professional Student SP3-Integrated + CD Key.rar CAB: infected - 1 skipped
C:\My Downloads\Windows XP Ultimate Edition (by Johnny) [January2008-R3.5].iso.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Windows XP Ultimate Edition (by Johnny) [January2008-R3.5].iso.rar CAB: infected - 1 skipped
C:\My Downloads\Windows XP Ultimate Edition [December2007-R3 4 No serial or activation needed].rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Windows XP Ultimate Edition [December2007-R3 4 No serial or activation needed].rar CAB: infected - 1 skipped
C:\My Downloads\WinZip 11.2 professional patched-ReLEASE.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\WinZip 11.2 professional patched-ReLEASE.rar CAB: infected - 1 skipped
C:\My Downloads\WinZIP 12 (co el key funcionante).rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\WinZIP 12 (co el key funcionante).rar CAB: infected - 1 skipped
C:\My Downloads\WirelessMon 2.1 Patched with guides.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\WirelessMon 2.1 Patched with guides.rar CAB: infected - 1 skipped
C:\My Downloads\WS FTP Server with SSH 6.1.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\WS FTP Server with SSH 6.1.rar CAB: infected - 1 skipped
C:\My Downloads\Xilisoft iPod to PC Copy 1.0.54.1102.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Xilisoft iPod to PC Copy 1.0.54.1102.rar CAB: infected - 1 skipped
C:\My Downloads\Yamicsoft Vista Manager 1.1.4.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\My Downloads\Yamicsoft Vista Manager 1.1.4.rar CAB: infected - 1 skipped
C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped
C:\Program Files\mIRC\backups\mirc.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\gebcabb.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\iifcyxx.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ljjjiji.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\opnlmkj.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\qomlkjk.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\rndlqbsi.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\rqrrpnk.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ssqnolk.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\urqnlml.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\uwvucgxl.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\wvuttqn.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\catchme2008-02-09_192849.69.zip/efcca.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.etj skipped
C:\QooBox\Quarantine\catchme2008-02-09_192849.69.zip/vtutrsp.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\catchme2008-02-09_192849.69.zip ZIP: infected - 2 skipped
C:\QooBox\Quarantine\catchme2008-02-14_183103.43.zip/fccca.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.imh skipped
C:\QooBox\Quarantine\catchme2008-02-14_183103.43.zip/pmnopno.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\catchme2008-02-14_183103.43.zip ZIP: infected - 2 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc349.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc349.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc351.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc351.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc353.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc353.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc356.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc356.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc358.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc358.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc359.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc359.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc363.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc363.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc365.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc365.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc368.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc368.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc369.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc369.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc371.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc371.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc374.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc374.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc376.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc376.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc377.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc377.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc380.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc380.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc381.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc381.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc384.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc384.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc385.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc385.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc387.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc387.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc389.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc389.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc392.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc392.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc393.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc393.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc396.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc396.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc397.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc397.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc399.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc399.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc401.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc401.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc403.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc403.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc406.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc406.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc407.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc407.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc410.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc410.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc411.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc411.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc412.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc412.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc414.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc414.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc416.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc416.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc419.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc419.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc420.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc420.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc423.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc423.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc426.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc426.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc427.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc427.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc429.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc429.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc432.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc432.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc433.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc433.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc435.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc435.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc436.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc436.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc439.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc439.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc440.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc440.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc442.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc442.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc444.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc444.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc448.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc448.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc449.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc449.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc451.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc451.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc452.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc452.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc454.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc454.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc458.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc458.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc460.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc460.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc462.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc462.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc463.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc463.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc465.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc465.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc468.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc468.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc470.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc470.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc471.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc471.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc473.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc473.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc476.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc476.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc477.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc477.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc479.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc479.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc481.exe/stream/data0001/stream/data0014 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc481.exe/stream/data0001/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc481.exe/stream/data0001 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc481.exe/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc481.exe NSIS: infected - 4 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc482.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc482.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc485.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc485.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc486.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1003\Dc486.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc10.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc10.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc13.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc13.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc15.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc15.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc16.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc16.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc19.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc19.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc21.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc21.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc23.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc23.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc25.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc25.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc26.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc26.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc29.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc29.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc30.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc30.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc31.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc31.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc32.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc32.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc37.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc37.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc38.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc38.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc39.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc39.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc5.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc5.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc7.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc7.rar CAB: infected - 1 skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc8.rar/Setup + Patch.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Dc8.rar CAB: infected - 1 skipped
C:\SDFix\backups_old1\NTSpool.exe Infected: Trojan.Win32.Agent.ecd skipped
C:\SDFix\backups_old1\WinPrint.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\SDFix\backups_old1\WinUpdating.exe Infected: Trojan.Win32.Agent.fgk skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP580\A0221335.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224293.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224294.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224295.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224296.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224297.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224298.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224299.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224300.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224301.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224303.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224304.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224305.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP587\A0224306.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.imh skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP588\A0226479.exe Infected: Trojan.Win32.Agent.ecd skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP588\A0226480.exe Infected: Trojan.Win32.Pakes.bzo skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP588\A0226482.exe Infected: Trojan.Win32.Agent.fgk skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP590\A0226575.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP590\A0226576.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP590\A0226577.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP590\A0226585.dll Infected: not-a-virus:A
  • 0

#14
IndiGenus

IndiGenus

    Anti-Malware Buddha

  • Member
  • PipPipPipPip
  • 1,617 posts
Hi,

I'm not saying you have to delete everything in your downloads folder. But everything that is related to a crack, keygen, or other illegally obtained software should go.

Can you post the rest of the Kaspersky log in another post, or posts if needed, so we can see the whole log. It was cut off again.

Thanks
  • 0

#15
welder572

welder572

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
starting with last line of last post:

C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP590\A0226585.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.imh skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP590\A0226586.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP593\A0228415.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP594\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{55DD6AA6-B923-4153-8ED4-A74F3132939D}.bin Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\Temp\Perflib_Perfdata_5d8.dat Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
D:\autorun.inf\lpt3.This folder was created by Flash_Disinfector Object is locked skipped
F:\autorun.inf\lpt3.This folder was created by Flash_Disinfector Object is locked skipped
F:\Program Files\BearShare\Installer\BSINSTALL.exe/WISE0024.BIN/data0001.cab/VVSN.exe Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\Program Files\BearShare\Installer\BSINSTALL.exe/WISE0024.BIN/data0001.cab Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\Program Files\BearShare\Installer\BSINSTALL.exe/WISE0024.BIN Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\Program Files\BearShare\Installer\BSINSTALL.exe WiseSFX: infected - 3 skipped
F:\Program Files\BearShare\Installer\BSINSTALL.exe WiseSFXDropper: infected - 3 skipped
F:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Df1.exe/WISE0024.BIN/data0001.cab/VVSN.exe Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Df1.exe/WISE0024.BIN/data0001.cab Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Df1.exe/WISE0024.BIN Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Df1.exe WiseSFX: infected - 3 skipped
F:\RECYCLER\S-1-5-21-238397636-2059689480-754597021-1010\Df1.exe WiseSFXDropper: infected - 3 skipped
F:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0181827.exe/WISE0024.BIN/data0001.cab/VVSN.exe Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0181827.exe/WISE0024.BIN/data0001.cab Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0181827.exe/WISE0024.BIN Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0181827.exe WiseSFX: infected - 3 skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0181827.exe WiseSFXDropper: infected - 3 skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0184726.dll Infected: not-a-virus:AdTool.Win32.WhenU.g skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0184766.exe/WISE0024.BIN/data0001.cab/VVSN.exe Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0184766.exe/WISE0024.BIN/data0001.cab Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0184766.exe/WISE0024.BIN Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0184766.exe WiseSFX: infected - 3 skipped
F:\System Volume Information\_restore{99F56F21-F0FC-4130-8DF6-846F0D8F5AEF}\RP323\A0184766.exe WiseSFXDropper: infected - 3 skipped
F:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP586\A0223026.exe/data0001.cab/VVSN.exe Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP586\A0223026.exe/data0001.cab Infected: not-a-virus:AdWare.Win32.SaveNow.z skipped
F:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP586\A0223026.exe EmbeddedCAB: infected - 2 skipped
F:\WINDOWS\$NtUninstallKB828741$\comuid.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB828741$\es.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB828741$\msdtcprx.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB828741$\msdtctm.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB828741$\msdtcuiu.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB828741$\mtxclu.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB828741$\mtxoci.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB828741$\ole32.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB828741$\rpcrt4.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB828741$\rpcss.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB828741$\txflog.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\callcont.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\h323.tsp Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\h323msp.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\helpctr.exe Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\ipnathlp.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\lsasrv.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\msasn1.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\msgina.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\mst120.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\netapi32.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\nmcom.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\rtcdll.dll Object is locked skipped
F:\WINDOWS\$NtUninstallKB835732$\schannel.dll Object is locked skipped

Scan process completed.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP