Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

No Desktop Icons, Disabled Task Mgr & Regedit [Solved]

Started by Neil Bradley , Feb 11 2009 09:15 PM

  • This topic is locked This topic is locked

#16
fenzodahl512
Posted 16 February 2009 - 12:03 AM

fenzodahl512

  • Malware Removal
  • 9,863 posts

A1385889.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP830;Win32.Virut.56;Cured.;



Actually, this is not good.. In fact, this is very-very bad..

Some info about Virut.. It infects ALL executable files, in each and every partition the computer has, including any files inside the thumbdrive and external hard disk that been used with that computer...


Due to this matter, I would advised you to start backup all of your valuable data/documents/pictures/movies/songs/etc.. Do NOT backup any applications/installer and Do NOT backup any .exe/.scr/.htm/.html/.xml/.zip/.rar files... We are looking for possible Virut infection, and if it is.. Then you might have to wipe the machine clean..

Make sure you back-up everything ONLY via CD or DVD (non-rewritable)


But lets do this first.. (after you backup all important stuff)...

IMPORTANT! Disconnect your infected computer from the internet. We have to transfer ALL logs via cd/pendrive. Make sure that cd/pendrive is EMPTY as we don't want the baddies infected another clean computer.. Just logs in form of textfile (.txt/notepad) inside that cd/pendrive..


Delete the Dr.Web CureIt and ComboFix from your computer (if present) and do below.. We need to use fresh copy of both programs..


From a clean computer, download these three files and burn them on a CD (Do not use thumbdrive or external hard disk).. We will need to run ALL programs DIRECTLY from the CD

rename.com (this is Dr.Web CureIt renamed by me)
ComboFix
AVPTool by Kaspersky




Step 1: rename.com


Run rename.com at the infected computer DIRECTLY from the CD

  • Double-click the rename.com file and Allow to run the express scan
  • This will scan the files currently running in memory and when something is found, click the yes button when it asks you if you want to cure it. This is only a short scan.
  • Once the short scan has finished, please do a re-scan.. This time, choose Complete Scan
  • Click the green arrow button at the right, and the scan will start.
  • After the scan finished, click Select all
  • Click on Cure and choose Move incurable
  • When the scan has finished, in the menu, click File and choose Save report list
  • Save the report to your Desktop. The report will be called DrWeb.csv
  • Close Dr.Web Cureit. Reboot your PC in Normal Mode, and post DrWeb.csv in your next reply (Open it as Notepad)




Step 2: AVP Tool


  • Double click the setup file to run and install it.
  • By default it will install to your Desktop (as Kaspersky Lab Tool folder)
  • A Kaspersky Virus Removal Tool window will open. There will be a tab that says Automatic Scan.
  • Under Automatic Scan make sure these are checked.
    • [1.] System Memory
      [2.] Startup Objects
      [3.] Disk Boot Sectors.
      [4.] My Computer.
      [5.] Also any other drives (Removable that you may have)
  • After that click on Security level then choose Customize then click on the tab that says Heuristic Analyzer then choose Enable Deep rootkit search then choose ok.
  • Then choose OK again then you are back to the main screen.
  • Then click on Scan button.
  • It will automatically Neutralize any objects found.
  • If some objects are left unneutralized then click the button that says Neutralize all
  • If it says it cannot be Neutralized, then chooose the Delete option when prompted.
  • After that is done click on the Report button at the bottom and save it to file name as Kas.
  • Save it somewhere convenient like your Desktop and just post only the detected Virus\malware in the report. It will be at the very top under Detected. Post those results in your next reply.
  • When you close the AVPTool, you will be asked to uninstall the program.. Choose Yes..




Step 3: ComboFix

Just double-click ComboFix and run it.. Remember to disable ALL Antivirus/Antispyware/Firewall first..



Post these logs in your next reply.. Each log in separate post..

1. rename.com (Dr.Web CureIt)
2. AVP Tool
3. ComboFix
  • 0

Advertisements

#17
Neil Bradley
Posted 16 February 2009 - 08:21 AM

Neil Bradley

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
I was afraid that this was the virus that was very nasty.

Below is a log of the 2nd Dr.Web scanner, BEFORE I have done your most recent instructions. I will be following these instructions directly and will report on them later today.

Again, this is the 2nd Dr.Web scanner I ran before your most recent instructions, and will be following them right now.

Neil


zsnesw.exe;C:\Documents and Settings\Dominic\Local Settings\Temp\Temporary Directory 1 for zsneswjan22wip.zip;Win32.Virut.56;Cured.;
MegaMan Password Creator.exe;C:\Documents and Settings\Dominic\Local Settings\Temp\Temporary Directory 2 for MegaMan Password Creator v1_2.zip;Win32.Virut.56;Cured.;
zsnesw.exe;C:\Documents and Settings\Dominic\Local Settings\Temp\Temporary Directory 3 for emulator.zip;Win32.Virut.56;Cured.;
MegaMan Password Creator.exe;C:\Documents and Settings\Dominic\Local Settings\Temp\Temporary Directory 3 for MegaMan Password Creator v1_2.zip;Win32.Virut.56;Cured.;
MegaMan Password Creator.exe;C:\Documents and Settings\Dominic\Local Settings\Temp\Temporary Directory 4 for MegaMan Password Creator v1_2.zip;Win32.Virut.56;Cured.;
tsc.exe;C:\Documents and Settings\Dominic.HAPPYGOLUCKY\.housecall6.6;Win32.Virut.56;Cured.;
igUninst.exe;C:\Documents and Settings\Dominic.HAPPYGOLUCKY\igLoader Files\bestfriends;Win32.Virut.56;Incurable.Moved.;
template.exe;C:\Documents and Settings\Dominic.HAPPYGOLUCKY\Local Settings\Application Data\NOS\Adobe AIR Installer\Adobe AIR\Versions\1.0;Win32.Virut.56;Cured.;
Ares.exe;C:\Documents and Settings\Frank\My Documents\Ares;Win32.Virut.56;Cured.;
Ares.exe;C:\Documents and Settings\Frank\My Documents\Ares\My Website\Ares;Win32.Virut.56;Cured.;
Installer[1].exe;C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\YHCXMTY1;Win32.Virut.56;Cured.;
igUninst.exe;C:\Documents and Settings\visitor\igLoader Files\bestfriends;Win32.Virut.56;Incurable.Moved.;
igUninst.exe;C:\Documents and Settings\visitor\igLoader Files\supergerball;Win32.Virut.56;Incurable.Moved.;
HotFix64.exe;C:\Program Files\Adobe\Security Update;Win32.Virut.56;Cured.;
TSLite3.exe;C:\Program Files\Bradbury\TopStyle3;Win32.Virut.56;Cured.;
DotNetInstaller.exe;C:\Program Files\Common Files\InstallShield\Professional\RunTime\0700\Intel32;Win32.Virut.56;Cured.;
DotNetInstaller.exe;C:\Program Files\Common Files\InstallShield\Professional\RunTime\0701\Intel32;Win32.Virut.56;Cured.;
DotNetInstaller.exe;C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\00\Intel32;Win32.Virut.56;Cured.;
DotNetInstaller.exe;C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32;Win32.Virut.56;Cured.;
DotNetInstaller.exe;C:\Program Files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32;Win32.Virut.56;Cured.;
KodakCCS.exe;C:\Program Files\Common Files\Kodak\kodak_dr;Win32.Virut.56;Cured.;
hpqacdse.exe;C:\Program Files\HP\Digital Imaging\bin;Win32.Virut.56;Cured.;
HP_IZE.exe;C:\Program Files\HP\Image Zone Express;Win32.Virut.56;Cured.;
iv_uninstall.exe;C:\Program Files\IrfanView;Win32.Virut.56;Cured.;
i_view32.exe;C:\Program Files\IrfanView;Win32.Virut.56;Cured.;
Slideshow.exe;C:\Program Files\IrfanView\Plugins;Win32.Virut.56;Cured.;
TXFCreate2005.exe;C:\Program Files\ItsDeductible2005;Win32.Virut.56;Cured.;
TXFCreate2006.exe;C:\Program Files\ItsDeductible2006;Win32.Virut.56;Cured.;
TXFCreate2004.exe;C:\Program Files\ItsDeductibleEX;Win32.Virut.56;Cured.;
java.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
keytool.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
kinit.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
klist.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
ktab.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
orbd.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
policytool.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
rmid.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
rmiregistry.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
servertool.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
tnameserv.exe;C:\Program Files\Java\j2re1.4.2_06\bin;Win32.Virut.56;Cured.;
java.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
keytool.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
kinit.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
klist.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
ktab.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
orbd.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
pack200.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
policytool.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
rmid.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
rmiregistry.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
servertool.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
tnameserv.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
unpack200.exe;C:\Program Files\Java\jre1.5.0_07\bin;Win32.Virut.56;Cured.;
java.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
keytool.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
kinit.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
klist.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
ktab.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
orbd.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
pack200.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
policytool.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
rmid.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
rmiregistry.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
servertool.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
tnameserv.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
unpack200.exe;C:\Program Files\Java\jre1.5.0_09\bin;Win32.Virut.56;Cured.;
Jnes.exe;C:\Program Files\Jnes 0.5.2;Win32.Virut.56;Cured.;
KXploit.exe;C:\Program Files\KXploit Tool;Win32.Virut.56;Cured.;
KXploitTool.exe;C:\Program Files\KXploit Tool;Win32.Virut.56;Cured.;
java.exe;C:\Program Files\Macromedia\Dreamweaver MX\JVM\bin;Win32.Virut.56;Cured.;
javac.exe;C:\Program Files\Macromedia\Dreamweaver MX\JVM\bin;Win32.Virut.56;Cured.;
keytool.exe;C:\Program Files\Macromedia\Dreamweaver MX\JVM\bin;Win32.Virut.56;Cured.;
policytool.exe;C:\Program Files\Macromedia\Dreamweaver MX\JVM\bin;Win32.Virut.56;Cured.;
rmid.exe;C:\Program Files\Macromedia\Dreamweaver MX\JVM\bin;Win32.Virut.56;Cured.;
rmiregistry.exe;C:\Program Files\Macromedia\Dreamweaver MX\JVM\bin;Win32.Virut.56;Cured.;
tnameserv.exe;C:\Program Files\Macromedia\Dreamweaver MX\JVM\bin;Win32.Virut.56;Cured.;
java.exe;C:\Program Files\Macromedia\Dreamweaver MX 2004\JVM\bin;Win32.Virut.56;Cured.;
javac.exe;C:\Program Files\Macromedia\Dreamweaver MX 2004\JVM\bin;Win32.Virut.56;Cured.;
keytool.exe;C:\Program Files\Macromedia\Dreamweaver MX 2004\JVM\bin;Win32.Virut.56;Cured.;
policytool.exe;C:\Program Files\Macromedia\Dreamweaver MX 2004\JVM\bin;Win32.Virut.56;Cured.;
rmid.exe;C:\Program Files\Macromedia\Dreamweaver MX 2004\JVM\bin;Win32.Virut.56;Cured.;
rmiregistry.exe;C:\Program Files\Macromedia\Dreamweaver MX 2004\JVM\bin;Win32.Virut.56;Cured.;
tnameserv.exe;C:\Program Files\Macromedia\Dreamweaver MX 2004\JVM\bin;Win32.Virut.56;Cured.;
HomeSite+.exe;C:\Program Files\Macromedia\HomeSite+;Win32.Virut.56;Cured.;
SNECompatibility.exe;C:\Program Files\Macromedia\HomeSite+;Win32.Virut.56;Cured.;
WAVTOASF.EXE;C:\Program Files\Microsoft Office\Office10;Win32.Virut.56;Cured.;
CakeMania.exe;C:\Program Files\MSN Games\Cake Mania;Win32.Virut.56;Incurable.Moved.;
Launch.exe;C:\Program Files\MSN Games\Cake Mania;Win32.Virut.56;Incurable.Moved.;
Uninstall.exe;C:\Program Files\MSN Games\Cake Mania;Win32.Virut.56;Cured.;
5_spots.exe;C:\Program Files\Oberon Media\5 Spots;Win32.Virut.56;Cured.;
Launch.exe;C:\Program Files\Oberon Media\5 Spots;Win32.Virut.56;Cured.;
Uninstall.exe;C:\Program Files\Oberon Media\5 Spots;Win32.Virut.56;Cured.;
Launch.exe;C:\Program Files\Oberon Media\Zuma Deluxe;Win32.Virut.56;Cured.;
Uninstall.exe;C:\Program Files\Oberon Media\Zuma Deluxe;Win32.Virut.56;Cured.;
Zuma.exe;C:\Program Files\Oberon Media\Zuma Deluxe;Win32.Virut.56;Cured.;
.g2cln.exe;C:\Program Files\Real\RealPlayer\Setup;Win32.Virut.56;Cured.;
MediaManager.exe;C:\Program Files\Sony\Media Manager for PSP 2.0;Win32.Virut.56;Cured.;
fcourier.exe;C:\Program Files\Source Edit;Win32.Virut.56;Cured.;
SrcEdit.exe;C:\Program Files\Source Edit;Win32.Virut.56;Cured.;
delfile.exe;C:\Program Files\Spyware Nuker;Win32.Virut.56;Cured.;
swnxt.exe;C:\Program Files\Spyware Nuker;Win32.Virut.56;Cured.;
KillSPRT.exe;C:\Program Files\support.com\bin;Win32.Virut.56;Cured.;
removeall.exe;C:\Program Files\support.com\bin;Win32.Virut.56;Cured.;
restart.exe;C:\Program Files\support.com\bin;Win32.Virut.56;Cured.;
restart.exe;C:\Program Files\support.com\bin;Trojan.DownLoader.origin;Incurable.Will be deleted after restart.;
Uninstall.exe;C:\Program Files\support.com\TWC;Win32.Virut.56;Cured.;
shutdown.exe;C:\Program Files\support.com\TWC\bin;Win32.Virut.56;Cured.;
SwishMax.exe;C:\Program Files\SWiSHmax;Win32.Virut.56;Incurable.Moved.;
EDupex.exe;C:\Program Files\The Free HTML Editor;Win32.Virut.56;Cured.;
ThirtyDayTimer.exe;C:\Program Files\The Free HTML Editor;Win32.Virut.56;Cured.;
wrapper.exe;C:\Program Files\The Free HTML Editor;Win32.Virut.56;Cured.;
AdBlocker.exe;C:\Program Files\Tweak-XP Pro;Win32.Virut.56;Cured.;
shutdown.exe;C:\Program Files\Tweak-XP Pro;Win32.Virut.56;Cured.;
Tranicon.exe;C:\Program Files\Tweak-XP Pro;Win32.Virut.56;Cured.;
transtask.exe;C:\Program Files\Tweak-XP Pro;Win32.Virut.56;Cured.;
Tweak-xp.exe;C:\Program Files\Tweak-XP Pro;Win32.Virut.56;Cured.;
ModEdit.exe;C:\Program Files\WCRobot;Win32.Virut.56;Cured.;
iPodCopy.exe;C:\Program Files\Wide Angle Software\iPodCopy;Win32.Virut.56;Cured.;
Uninstall.exe;C:\Program Files\WinPcap;Win32.Virut.56;Cured.;
PongD.exe;C:\Program Files\WorkHorse Games\Pong;Win32.Virut.56;Cured.;
Setup.exe;C:\Program Files\WorkHorse Games\Pong;Win32.Virut.56;Cured.;
A0217499.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP374;Win32.Virut.56;Cured.;
A0227259.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP386;Win32.Virut.56;Cured.;
A0227399.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP390;Win32.Virut.56;Cured.;
A0227400.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP390;Win32.Virut.56;Cured.;
A0227402.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP390;Win32.Virut.56;Cured.;
A0227403.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP390;Win32.Virut.56;Cured.;
A0227404.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP390;Win32.Virut.56;Cured.;
A0227405.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP390;Win32.Virut.56;Cured.;
A0227406.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP390;Win32.Virut.56;Cured.;
A0227407.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP390;Win32.Virut.56;Cured.;
A0227408.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP390;Win32.Virut.56;Cured.;
A0228373.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP391;Win32.Virut.56;Cured.;
A0229361.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP391;Win32.Virut.56;Cured.;
A0230542.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP393;Win32.Virut.56;Cured.;
A0230661.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP394;Win32.Virut.56;Cured.;
A0230661.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP394;Trojan.Sectho;Deleted.;
A0230853.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP397;Win32.Virut.56;Cured.;
A0231022.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP398;Adware.Spyblock.origin;Incurable.Deleted.;
A0231055.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP399;Win32.Virut.56;Cured.;
A0231121.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP399;Win32.Virut.56;Cured.;
A0231121.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP399;Trojan.Sectho;Deleted.;
A0231123.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP399;Win32.Virut.56;Cured.;
A0233116.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Win32.Virut.56;Cured.;
A0233116.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Trojan.Sectho;Deleted.;
A0233117.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Win32.Virut.56;Cured.;
A0234100.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Win32.Virut.56;Cured.;
A0234101.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Win32.Virut.56;Cured.;
A0234126.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Win32.Virut.56;Cured.;
A0234126.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Trojan.Sectho;Deleted.;
A0234128.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Win32.Virut.56;Cured.;
A0235122.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Win32.Virut.56;Cured.;
A0235128.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Win32.Virut.56;Cured.;
A0235129.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP400;Win32.Virut.56;Cured.;
A0235206.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP401;Win32.Virut.56;Cured.;
A0235206.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP401;Trojan.Sectho;Deleted.;
A0235241.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP401;Win32.Virut.56;Cured.;
A0236205.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP401;Win32.Virut.56;Cured.;
A0236205.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP401;Trojan.Sectho;Deleted.;
A0236206.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP401;Win32.Virut.56;Cured.;
A0236226.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP401;Win32.Virut.56;Cured.;
A0236229.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP401;Win32.Virut.56;Cured.;
A0236234.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP401;Win32.Virut.56;Cured.;
A0237197.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP402;Win32.Virut.56;Cured.;
A0237197.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP402;Trojan.Sectho;Deleted.;
A0237212.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP402;Win32.Virut.56;Cured.;
A0241338.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP405;Win32.Virut.56;Cured.;
A0241389.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP406;Win32.Virut.56;Cured.;
A0243523.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP407;Win32.Virut.56;Cured.;
A0243555.exe;C:\System Volume Information\_restore{51646C6B-CDFD-403B-95B4-DD0338E7A78E}\RP407;Win32.Virut.56;Cured.;
A1399042.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1399107.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1399158.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1399161.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1399655.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1400931.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400932.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400961.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400962.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400964.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400965.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400966.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400968.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400976.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1400981.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400990.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400991.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1400999.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401007.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401008.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401035.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401042.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401048.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401066.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401067.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401068.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401069.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401070.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401081.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401139.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401182.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401213.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401214.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401215.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401218.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401221.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401224.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401225.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401230.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401231.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401232.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401233.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401234.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401235.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401236.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401237.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401238.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401239.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401241.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401247.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401248.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401249.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401250.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401251.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401252.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401253.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401254.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401255.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401256.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401257.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401258.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401259.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401264.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401265.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401266.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401267.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401268.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401269.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401270.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401271.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401272.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401273.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401274.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401275.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401276.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401277.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401278.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401292.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401293.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401295.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401296.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401297.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401298.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401299.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401301.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401302.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401304.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401305.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401306.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401307.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401308.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401331.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401332.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401347.EXE;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401366.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401367.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401369.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401418.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401419.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401420.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401421.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401422.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401423.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401439.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401451.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401452.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401455.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401456.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401457.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401459.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401460.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401461.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401461.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Trojan.DownLoader.origin;Incurable.Will be deleted after restart.;
A1401465.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401468.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401471.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401473.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401474.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401475.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401513.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401514.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401515.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401516.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401517.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401527.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401529.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401550.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401559.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401560.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401705.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401706.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401708.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401709.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401989.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402007.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Trojan.Juan.78;Deleted.;
A1402040.scr;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.7;Incurable.Deleted.;
A1402054.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Trojan.DownLoad.29442;Deleted.;
A1402063.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Trojan.Juan.78;Deleted.;
A1402085.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402119.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402140.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402387.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Probably BACKDOOR.Trojan;Incurable.Deleted.;
A1402388.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Probably BACKDOOR.Trojan;Incurable.Deleted.;
A1402389.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Ezula;Incurable.Deleted.;
A1402390.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.VirtualBouncer;Incurable.Deleted.;
A1402391.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.6;Incurable.Deleted.;
A1402392.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Zango.83;Incurable.Deleted.;
A1402393.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Program.PopcapLoader.origin;Incurable.Deleted.;
A1402394.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.6;Incurable.Deleted.;
A1402395.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.8;Incurable.Deleted.;
A1402396.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.3;Incurable.Deleted.;
A1402397.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.4;Incurable.Deleted.;
A1402398.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.5;Incurable.Deleted.;
A1402399.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.6;Incurable.Deleted.;
A1402400.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MWS.75;Incurable.Deleted.;
A1402401.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.8;Incurable.Deleted.;
A1402402.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.10;Incurable.Deleted.;
A1402403.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Msearch;Incurable.Deleted.;
A1402404.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.11;Incurable.Deleted.;
A1402405.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MWS;Incurable.Deleted.;
A1402406.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.12;Incurable.Deleted.;
A1402407.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MWS.76;Incurable.Deleted.;
A1402408.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.14;Incurable.Deleted.;
A1402409.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MyWebSearch.16;Incurable.Deleted.;
A1402410.DLL;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.MWS.74;Incurable.Deleted.;
A1402411.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Twaintech;Incurable.Deleted.;
A1402412.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402413.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Rebates;Incurable.Deleted.;
A1402414.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402415.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402416.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402417.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.nCase;Incurable.Deleted.;
A1402418.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402419.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.nCase;Incurable.Deleted.;
A1402420.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402421.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402422.sys;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Adtomi;Incurable.Deleted.;
A1402423.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.nCase;Incurable.Deleted.;
A1402424.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.NavHelper;Incurable.Deleted.;
A1402425.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.nCase;Incurable.Deleted.;
A1402426.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.nCase;Incurable.Deleted.;
A1402427.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.nCase;Incurable.Deleted.;
A1402428.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.nCase;Incurable.Deleted.;
A1402429.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.nCase;Incurable.Deleted.;
A1402430.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402431.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402432.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402433.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402434.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402435.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402436.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402437.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402438.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402439.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402440.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.nCase;Incurable.Deleted.;
A1402441.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.PowerScan;Incurable.Deleted.;
A1402442.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.ClickSpring;Incurable.Deleted.;
A1402443.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.SaveNow;Incurable.Deleted.;
A1402444.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402445.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402446.ocx;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Dialer.Vacpro;Incurable.Deleted.;
A1402447.sys;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Adtomi;Incurable.Deleted.;
A1402448.sys;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Adtomi;Incurable.Deleted.;
A1402449.EXE;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Aws;Incurable.Deleted.;
A1402450.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Probably DLOADER.Trojan;Incurable.Deleted.;
A1402451.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Zango.82;Incurable.Deleted.;
A1402452.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Adware.Zango.83;Incurable.Deleted.;
A1402453.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Probably Trojan.Packed.447;Incurable.Deleted.;
A1402454.dll;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Probably Trojan.Packed.447;Incurable.Deleted.;
A1402464.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402465.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402466.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402467.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402468.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402469.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402470.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1402471.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402472.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402473.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402474.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402475.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1402476.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1402477.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402478.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402479.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402480.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402481.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402482.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402483.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402484.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402485.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402486.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402487.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402488.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402489.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402490.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402491.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402492.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402493.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402494.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402495.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402496.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402497.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402498.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402499.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402500.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402501.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402502.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402503.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402504.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402505.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402506.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402507.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402508.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402509.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402510.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402511.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402512.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402513.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402514.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402515.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402516.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402517.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402518.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402519.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402520.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402521.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402522.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402523.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402524.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402525.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402526.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402527.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402528.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402529.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402530.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402531.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402532.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402533.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402534.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402535.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402536.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402537.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402538.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402539.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402540.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402541.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402542.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402543.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402544.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402545.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402546.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402547.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402548.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402549.EXE;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402550.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1402551.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1402552.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402553.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402554.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402555.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402556.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402557.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402558.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402559.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402560.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402561.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402562.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402563.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402564.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402565.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402566.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402567.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402567.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Trojan.DownLoader.origin;Incurable.Will be deleted after restart.;
A1402568.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402569.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402570.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1402571.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402572.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402573.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402574.exe;C:\System Volume Inform
  • 0

#18
fenzodahl512
Posted 16 February 2009 - 09:19 AM

fenzodahl512

  • Malware Removal
  • 9,863 posts

Again, this is the 2nd Dr.Web scanner I ran before your most recent instructions, and will be following them right now.


I am not surprised.. Virut is extremely nasty and very extremely difficult to cure.. Most of the time, victims ends up formatting their computer..

Will wait for your reports :)
  • 0

#19
Neil Bradley
Posted 16 February 2009 - 08:16 PM

Neil Bradley

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
The scans are taking a very long time to run.

The first scan took over 9 hours. Attached is the log from the rename.com run. The Kaperski scan is running now. At 5% completed, it found 500+ files. I predict that it will be another 5+ hours before the scan is completed. I will post that log of course when it's done.

Question:
Can I put the HD in another PC as a slave to copy the music, photos and other important data files? The reason I ask is that USB Drives and burning to CD are not available to me in the state the system is now. Until I can get to a desktop, I am restricted to floppy disk to xfer things, and that is not practical for anything but logs. I don't want to infect the 2nd pc -- however it is my understanding that as long as I don't copy executable, html, sys, compressed, etc., I should be safe.

Here is the first log:

A1401695.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401699.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401702.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1401712.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401713.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401714.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401715.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401716.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401717.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401718.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401719.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401720.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401721.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401722.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401747.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401754.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401798.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401802.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401803.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1401912.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402060.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402094.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402584.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402585.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1402586.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Incurable.Moved.;
A1402587.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402588.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402589.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402590.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402591.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402592.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402593.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402594.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402595.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402596.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402597.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402598.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402599.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402600.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402601.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402602.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402603.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402604.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Win32.Virut.56;Cured.;
A1402605.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Probably Trojan.Packed.189;Incurable.Moved.;
A1402607.exe;C:\System Volume Information\_restore{E985765F-B449-44C3-92CC-689E2B0E6D95}\RP831;Trojan.DownLoader.origin;Incurable.Moved.;
  • 0

#20
fenzodahl512
Posted 16 February 2009 - 10:12 PM

fenzodahl512

  • Malware Removal
  • 9,863 posts

Can I put the HD in another PC as a slave to copy the music, photos and other important data files?


NO and DON'T.. You risk infecting other computer as well..

It's a very tricky situation but it is your best interest to find any DVD or external drive to do the backup thingy.. If you want to use either external drive or any thumbdrive, make sure that those drives are EMPTY before you stick it to the infected computer.. Better if you format them clean before you stick it to the infected computer to do the backup...


however it is my understanding that as long as I don't copy executable, html, sys, compressed, etc., I should be safe.


Yup, but Virut is one unique of a kind.. Once they detect any present of executables, they'll infected them in no time.. That's why I never recommend to slave the hard disk to other computer to do the backup.. It surely will infect other computer as well :)


Waiting for the AVP report.. You must have lots of data over there...

Edited by fenzodahl512, 16 February 2009 - 10:13 PM.

  • 0

#21
Neil Bradley
Posted 17 February 2009 - 08:53 AM

Neil Bradley

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
Here is the log from AVP. It's very long, so I am attaching it. I had toZIP it to get it small enough to upload.

Running Combofix now.

Well, not running it. :)

After uninstalling the AVP, the computer rebooted. I now have the "Log on to Windows" screen where you have to type in the user name. I have tried in both safe mode (first) and normal boot.

Defaulted is Administrator. I have tried several of the other user names as well, and all are giving me the same thing.

After typing in the username and hitting OK, the box changes to "Loading personal settings", flashes, quickly says saving settings, flashes, and then I am back to the Log On to Windows screen.

My assumption is that the virus has killed a large number of system files -- I am surprised that windows even started -- and the virus removal program has deleted them.

My guess is that I may need to do a 'repair' installation of windows so I can at least be able to log in and continue the removal process.

Let me know what needs to be done next.

Neil

Attached Files

  • Attached File  avp.zip   26.86KB   318 downloads

Edited by Neil Bradley, 17 February 2009 - 09:00 AM.

  • 0

#22
fenzodahl512
Posted 17 February 2009 - 09:20 AM

fenzodahl512

  • Malware Removal
  • 9,863 posts
That's bad.. Tell me, do you have Windows CD?.. We might need to reinstall Windows on the computer..
  • 0

#23
Neil Bradley
Posted 17 February 2009 - 10:33 AM

Neil Bradley

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
Yes, I have a windows XP CD. So the next step is to do a 'repair' installation of XP, so that we can get back to the OS and continue work.

I will do that this afternoon when I return from work, and will post a message this evening (Central Time).

Neil
  • 0

#24
fenzodahl512
Posted 17 February 2009 - 11:58 AM

fenzodahl512

  • Malware Removal
  • 9,863 posts
Ok.. Please visit below link if yo do not know how :)

http://www.geekstogo...ws-XP-t138.html
  • 0

#25
Neil Bradley
Posted 18 February 2009 - 09:41 AM

Neil Bradley

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
We may be at the end of the line here.

I have done an in-place repair of windows XP home twice now, just in case the first one failed.

Both times, after successfully completing the repair, I am back with the same problem.

I get to the standard logon screen, where the 4 users names are shown. Clicking on any of the names -- I see Loading Personal Settings, a very brief flash of the desktop, and then Saving personal settings, and I am back to the logon screen.

I have tried it both normally and in safe mode.

I have also done the double ctrl-alt-del to bring up the other logon screen where you type in the user name. That does not help -- exact same problems.

I have also run a chkdsk (found errors and fixed them). That did not help.

At this point, I have no way of running any programs except from the command console, or else slaving the hard drive and running scans from another computer.

That being said, I do have an old Pentium-4 WIN2K system, with nothing on it but WIN2K. I am willing to slave the hard drive to this system. If the WIN2K system gets corrupted, it's not a big thing to wipe it and reinstall.

So, what do we do now?

Neil
  • 0

Advertisements

#26
fenzodahl512
Posted 18 February 2009 - 09:59 AM

fenzodahl512

  • Malware Removal
  • 9,863 posts
I assume you still haven't backup anything rite?.. Ok, if you slave that hard disk into your other computer, the Virut thing will infect that clean computer in no time, meaning that you have to reformat two computer.. If you still decide to do that to backup all your data, please backup them ONLY via DVD-ROM (non re-writable dvd's).. Then you have to repartition and reformat all drives and partitions of both computers..


First, lets do this command first and let see if we can just revive your computer so that you can backup all your data...


You will need Windows CD to boot into Recovery Console.. Please refer below website to understand on how to boot into Recovery Console..

http://pcsupport.abo...ss/rconsole.htm << This one has 6 slides, navigate them all..

http://www.windowsne...s/wxprcons.html


Upon C:\WINDOWS> directory, type below and press Enter (make sure you type it right..)

copy e:\i386\userinit.ex_ C:\Windows\System32\userinit.exe


The red e is your cd/dvd-rom drive.. Change it to the letter of your own cd\dvd rom drive..


You should see 1 file(s) copied. after you press Enter.. Then type Exit and press Enter..

Reboot your computer and tell me, can you enter Windows now? If you encounter any errors, please state those errors here :)
  • 0

#27
Neil Bradley
Posted 18 February 2009 - 01:40 PM

Neil Bradley

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
What I have done regarding backups is to use norton ghost 8 floppy boot, and cloned the hard drive. The clone has been sitting on the shelf the entire time. I have not put the infected disk in any other computer. All transfers of files have been me downloading them on the good PC, burning the files to CD, and running/copying off the CD on the infected computer.

I will run your solution when I get home this afternoon. -- I should have remembered that one.

Neil
  • 0

#28
fenzodahl512
Posted 18 February 2009 - 02:57 PM

fenzodahl512

  • Malware Removal
  • 9,863 posts

What I have done regarding backups is to use norton ghost 8 floppy boot, and cloned the hard drive.


That's both a relief and also worrying.. Relief because you already have a backup, which means we can wipe the computer clean right now..

Worrying because we need to determine whether the clone hard disk also infected with Virut.. Since its a clone, the infection also was cloned inside..
  • 0

#29
Neil Bradley
Posted 18 February 2009 - 04:38 PM

Neil Bradley

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
Fixed the logon issue, but we are back to where we started I think. I have a desktop with no icons, disabled task manager.

Task manager works in safe mode, so we can get back to business.

The clone was made at the start of things, before we did any work, so I am 100% positive the clone has the virut on it.

Neil
  • 0

#30
Neil Bradley
Posted 18 February 2009 - 10:05 PM

Neil Bradley

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
I have had some definate success since my last post.

Booting into safe mode/administrator.

I was able to run mbam.exe from the CD. It cleaned out a lot, as you can see.

Once MBAM was done, the desktop reappeard!

I ran the cleanup program, and deleted 5GB+ of temporary files.

I Ran OT2ScanIt direct from CD. The first run found a lot of stuff. Unfortunately, the log file is corrupt.

I ran scanit a 2nd time, and attached that log.

I have not rebooted the computer yet, and will not pending your reply

Neil

Attached Files


Edited by Neil Bradley, 18 February 2009 - 10:52 PM.

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP