Jump to content

Just for fun


exile360

Recommended Posts

I installed a few rogues in a Virtual Machine and ran MBAM against them. It did a nice job (the only hitch was that I had to rename the executable for it to run thanks to AV360). Here's my results:

Malwarebytes' Anti-Malware 1.34
Database version: 1752
Windows 5.1.2600 Service Pack 3

2/12/2009 1:34:19 AM
mbam-log-2009-02-12 (01-34-19).txt

Scan type: Quick Scan
Objects scanned: 53180
Time elapsed: 4 minute(s), 29 second(s)

Memory Processes Infected: 2
Memory Modules Infected: 4
Registry Keys Infected: 8
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 7
Files Infected: 23

Memory Processes Infected:
C:\Program Files\A360\av360.exe (Rogue.A360Antivirus) -> Unloaded process successfully.
C:\Program Files\MalwareRemovalBot\MalwareRemovalBot.exe (Rogue.MalwareRemovalBot) -> Unloaded process successfully.

Memory Modules Infected:
C:\Program Files\SmitFraudFixTool\SpyCleaner.dll (Rogue.SpyCleaner) -> Delete on reboot.
C:\Program Files\MalwareRemovalBot\SpyCleaner.dll (Rogue.MalwareRemovalBot) -> Delete on reboot.
C:\Program Files\MalwareRemovalBot\TCL.dll (Rogue.MalwareRemovalBot) -> Delete on reboot.
C:\Program Files\MalwareRemovalBot\zlib.dll (Rogue.MalwareRemovalBot) -> Delete on reboot.

Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{9d3cf193-58e5-40d5-ba60-233f4c216e37} (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Installer\UpgradeCodes\50e90ec4ec063d44bb935a0d02415732 (Rogue.MalwareBot) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\50e90ec4ec063d44bb935a0d02415732 (Rogue.MalwareBot) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{9d3cf193-58e5-40d5-ba60-233f4c216e37} (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\MacroVirus (Rogue.MacroVirus) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d263fa6d-84cc-48a8-9af6-c664362b7a5b} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d263fa6d-84cc-48a8-9af6-c664362b7a5b} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d263fa6d-84cc-48a8-9af6-c664362b7a5b} (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\96198110a27e315f00ee49d00d8d47db (Rogue.A360Antivirus) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\Program Files\A360 (Rogue.A360Antivirus) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Start Menu\A360 (Rogue.A360Antivirus) -> Quarantined and deleted successfully.
C:\Program Files\MalwareRemovalBot (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Start Menu\Programs\MalwareRemovalBot (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Application Data\MalwareRemovalBot (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Application Data\MalwareRemovalBot\Log (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Application Data\MalwareRemovalBot\Settings (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.

Files Infected:
C:\Program Files\MalwareRemovalBot\SpyCleaner.dll (Rogue.SpyCleaner) -> Quarantined and deleted successfully.
C:\Program Files\SmitFraudFixTool\SpyCleaner.dll (Rogue.SpyCleaner) -> Delete on reboot.
C:\Documents and Settings\Exile\Local Settings\Temporary Internet Files\Content.IE5\MBW3GJOJ\setupxv[1].exe (Rogue.Installer) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Desktop\setup.exe (Rogue.Installer) -> Quarantined and deleted successfully.
C:\Program Files\A360\av360.exe (Rogue.A360Antivirus) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Start Menu\A360\A360.lnk (Rogue.A360Antivirus) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Start Menu\A360\Help.lnk (Rogue.A360Antivirus) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Start Menu\A360\Registration.lnk (Rogue.A360Antivirus) -> Quarantined and deleted successfully.
C:\Program Files\MalwareRemovalBot\DataBase.ref (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Program Files\MalwareRemovalBot\MalwareRemovalBot.exe (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Program Files\MalwareRemovalBot\MalwareRemovalBot.url (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Program Files\MalwareRemovalBot\TCL.dll (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Program Files\MalwareRemovalBot\vistaCPtasks.xml (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Program Files\MalwareRemovalBot\zlib.dll (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Start Menu\Programs\MalwareRemovalBot\MalwareRemovalBot on the Web.lnk (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Start Menu\Programs\MalwareRemovalBot\MalwareRemovalBot.lnk (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Application Data\MalwareRemovalBot\Log\2009 Feb 12 - 01_08_50 AM_449.log (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Application Data\MalwareRemovalBot\Log\2009 Feb 12 - 01_10_06 AM_323.log (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Application Data\MalwareRemovalBot\Log\2009 Feb 12 - 01_21_51 AM_982.log (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Desktop\A360.lnk (Rogue.Antivirus360) -> Quarantined and deleted successfully.
C:\Documents and Settings\Exile\Application Data\Microsoft\Internet Explorer\Quick Launch\A360.lnk (Rogue.Antivirus360) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Desktop\MalwareRemovalBot.lnk (Rogue.MalwareRemovalBot) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\winconfig.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.

As a side note it actually removed the installer for AV360 which I had saved on my desktop. It didn't touch the other 2, but I could simply delete them by hand anyway. It also didn't catch SmitfraudFixTool (a MalwareRemovalBot clone) but I'm sure it will be added to MBAM's detections soon enough as it's already been reported by the RogueReporters. It did stop it from starting up though, as it was broken when some files from MalwareRemovalBot were removed because the 2 infections are different in name only and share system files/dll's.

Link to post
Share on other sites

  • 3 weeks later...
  • 4 weeks later...

Got my virtual machine back. but its back corrupted

Malwarebytes' Anti-Malware 1.35

Database version: 1904

Windows 5.1.2600 Service Pack 3

3/27/2009 5:11:12 PM

mbam-log-2009-03-27 (17-11-08).txt

Scan type: Quick Scan

Objects scanned: 62412

Time elapsed: 3 minute(s), 52 second(s)

Memory Processes Infected: 8

Memory Modules Infected: 3

Registry Keys Infected: 39

Registry Values Infected: 19

Registry Data Items Infected: 8

Folders Infected: 59

Files Infected: 237

Memory Processes Infected:

C:\Program Files\Malware Defender 2009\malwaredef.exe (Rogue.MalwareDefender) -> No action taken.

C:\Program Files\Perfect Defender 2009\pdfndr.exe (Rogue.PerfectDefender) -> No action taken.

C:\Documents and Settings\All Users\Application Data\N1\n1.exe (Rogue.AntiVirus1) -> No action taken.

C:\Documents and Settings\Azlan\Application Data\pcdefender.exe (Rogue.WinPCDefender) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temp\3290.tmp (Backdoor.KeyStart) -> No action taken.

C:\Program Files\Antivirus Protection\antivirusprotection.exe (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\AntiSpyware Pro\AntiSpyware Pro.exe (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\proas2009.exe (Rogue.ProAntispyware) -> No action taken.

Memory Modules Infected:

C:\Program Files\Antivirus Protection\SpyWares\Browser Hijack\helper.dll (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Perfect Defender 2009\pd.dll (Rogue.PerfectDefender) -> No action taken.

C:\Program Files\AntiSpyware Pro\ASpyProPUBlk.dll (Rogue.AntiSpywarePro) -> No action taken.

Registry Keys Infected:

HKEY_CLASSES_ROOT\ieocxapp.ieocx (Trojan.BHO) -> No action taken.

HKEY_CLASSES_ROOT\ieocxapp.ieocx.1 (Trojan.BHO) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{4b66e1df-4de3-4cda-83b5-11673eadab0b} (Trojan.FakeAlert) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{9692be2f-eb8f-49d9-a11c-c24c1ef734d5} (Trojan.FakeAlert) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{44b71ad2-4f42-4312-bff3-9b68a41de078} (Rogue.Antivirus2008) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{66b643be-5e94-4569-b93e-ce2636848ac8} (Rogue.AntiSpywarePro) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{66b643be-5e94-4569-b93e-ce2636848ac8} (Rogue.AntiSpywarePro) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{66b643be-5e94-4569-b93e-ce2636848ac8} (Rogue.AntiSpywarePro) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{1334158e-0314-405f-84e2-504815415812} (Rogue.ThreatNuker) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{9a1d3451-03d2-aadd-034e-35d42b5b1b27} (Rogue.ThreatNuker) -> No action taken.

HKEY_CLASSES_ROOT\Installer\UpgradeCodes\e20d6ec50a67ec04083b1251f2935d09 (Rogue.Antivirus2008) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\e20d6ec50a67ec04083b1251f2935d09 (Rogue.Antivirus2008) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{44b71ad2-4f42-4312-bff3-9b68a41de078} (Rogue.Antivirus2008) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\antivirus protection (Rogue.AntivirusProtection) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\antispyware pro (Rogue.AntiSpywarePro) -> No action taken.

HKEY_CLASSES_ROOT\TypeLib\{91208e84-6a79-46b9-a20e-99e8aa153539} (Rogue.AntiVirus1) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{daba6477-80c0-440b-9a45-0a7fa4b60562} (Rogue.AntiVirus1) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{6ab37108-7433-4a04-b49c-4ac3d971e102} (Rogue.AntiVirus1) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6ab37108-7433-4a04-b49c-4ac3d971e102} (Rogue.AntiVirus1) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6ab37108-7433-4a04-b49c-4ac3d971e102} (Rogue.AntiVirus1) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\WinPC Defender (Rogue.WinPCDefender) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AntiVirus_Pro_is1 (Rogue.AntiVirusPro) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\AntiSpyware Pro (Rogue.AntiSpywarePro) -> No action taken.

HKEY_CLASSES_ROOT\AppID\QWProtect.DLL (Rogue.AntiVirus1) -> No action taken.

HKEY_CLASSES_ROOT\qwprotect.qwprotectbho (Rogue.AntiVirus1) -> No action taken.

HKEY_CLASSES_ROOT\qwprotect.qwprotectbho.1 (Rogue.AntiVirus1) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Telecom Advance (Rogue.AdwareRemover) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\pro antispyware 2009 4.7 (Rogue.ProAntispyware) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt (Trojan.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\AntivirusProtection.exe (Rogue.AntivirusProtection) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Solt Lake Software (Rogue.ProAntispyware2009) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\PDefender (Rogue.PerfectDefender) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PDefender (Rogue.PerfectDefender) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Malware Defender 2009 (Rogue.MalwareDefender2009) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Malware Defender 2009 (Rogue.MalwareDefender2009) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\threatnuker (Rogue.ThreatNuker) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\ThreatNuker (Rogue.ThreatNuker) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ThreatNuker (Rogue.ThreatNuker) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\N1 (Rogue.AntiVirus1) -> No action taken.

Registry Values Infected:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\612436923 (Rogue.Multiple.H) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\malwaredef (Rogue.MalwareDefender) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\perfect defender 2009 (Rogue.PerfectDefender) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysav (Rogue.WinPCDefender) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\threatnuker (Pup.ThreatNuker) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\drive (Rogue.AntiVirus1) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\antispyware pro (Rogue.AntiSpywarePro) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\antivirus_promfct (Rogue.AntiVirusPro) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\pro antispyware 2009 (Rogue.ProAntispyware) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\dll (Trojan.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Antispyware (Rogue.Antispyware) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\rs32net (Trojan.Agent) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\rs32net (Trojan.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\PromoReg (Trojan.Agent) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysldtray (Backdoor.Bot) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\AntivirusProtection (Rogue.AntivirusProtection) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Network\UID (Malware.Trace) -> No action taken.

HKEY_CURRENT_USER\Control Panel\don't load\scui.cpl (Hijack.SecurityCenter) -> No action taken.

HKEY_CURRENT_USER\Control Panel\don't load\wscui.cpl (Hijack.SecurityCenter) -> No action taken.

Registry Data Items Infected:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data: c:\windows\system32\oembios.exe -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data: system32\oembios.exe -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data: c:\windows\system32\userinit.exe -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data: system32\userinit.exe -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Hijack.UserInit) -> Bad: (C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\oembios.exe,) Good: (userinit.exe) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

Folders Infected:

C:\Documents and Settings\All Users\Application Data\1739009794 (Rogue.Multiple.H) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\Antivirus Protection (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\Logs (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\Sound (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\AdRoar (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Alexa Related (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\BroadcastPC (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Browser Hijack (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cookies (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cydoor (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\eAcceleration (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\eUniverse (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\FSG (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\GAIN (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\HuntBar (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\IBIS Toolbar (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\KeenValue.PerfectNav (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\MarketScore (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\New.Net (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\StartNow.HyperBar (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TopMoxie(WebSavings) (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TV Media (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Twain-Tech (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\VX2 (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebHancer (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebSearchToolbar (Rogue.AntivirusProtection) -> No action taken.

C:\WINDOWS\system32\sysproc64 (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\sysproc64 (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\sysproc64 (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Antispyware (Rogue.Antispyware) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Perfect Defender 2009 (Rogue.PerfectDefender) -> No action taken.

C:\Program Files\Perfect Defender 2009 (Rogue.PerfectDefender) -> No action taken.

C:\Program Files\Perfect Defender 2009\updates (Rogue.PerfectDefender) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\Pro Antispyware 2009 (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\System Security (Rogue.SystemSecurity) -> No action taken.

C:\Program Files\AntiSpyware Pro (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\Azlan\Application Data\AntiSpyware Pro (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\Azlan\Application Data\AntiSpyware Pro\logs (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\Azlan\Application Data\AntiSpyware Pro\startup (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\AntiSpyware Pro (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Anti-Virus Number-1 (Rogue.AntivirusOne) -> No action taken.

C:\Program Files\ThreatNuker (Rogue.ThreatNuker) -> No action taken.

C:\Documents and Settings\Azlan\Application Data\ThreatNuker (Rogue.ThreatNuker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\ThreatNuker (Rogue.ThreatNuker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\AntiVirus_Pro (Rogue.AntiVirusPro) -> No action taken.

C:\Program Files\AntiVirus_Pro (Rogue.AntiVirusPro) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\Malware Defender 2009 (Rogue.MalwareDefender2009) -> No action taken.

C:\Program Files\Malware Defender 2009 (Rogue.MalwareDefender2009) -> No action taken.

C:\Program Files\Malware Defender 2009\quarantine (Rogue.MalwareDefender2009) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Microsoft\Media Index\Drivers (Rogue.MalwareDefender2009) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009 (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\BASE (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\DELETED (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\SAVED (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\N1 (Rogue.AntiVirus1) -> No action taken.

Files Infected:

C:\Documents and Settings\All Users\Application Data\1739009794\612436923.exe (Rogue.Multiple.H) -> No action taken.

C:\Documents and Settings\All Users\Application Data\1739009794\config.udb (Rogue.Multiple.H) -> No action taken.

C:\Documents and Settings\All Users\Application Data\1739009794\init.udb (Rogue.Multiple.H) -> No action taken.

C:\Documents and Settings\All Users\Application Data\1739009794\Langs.udb (Rogue.Multiple.H) -> No action taken.

C:\Program Files\Malware Defender 2009\malwaredef.exe (Rogue.MalwareDefender) -> No action taken.

C:\Program Files\Perfect Defender 2009\pdfndr.exe (Rogue.PerfectDefender) -> No action taken.

C:\Documents and Settings\All Users\Application Data\N1\n1.exe (Rogue.AntiVirus1) -> No action taken.

C:\Documents and Settings\Azlan\Application Data\pcdefender.exe (Rogue.WinPCDefender) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temp\3290.tmp (Backdoor.KeyStart) -> No action taken.

C:\Program Files\ThreatNuker\ThreatNuker.exe (Pup.ThreatNuker) -> No action taken.

C:\Documents and Settings\All Users\Application Data\N1\N1i.exe (Rogue.AntiVirus1) -> No action taken.

C:\Program Files\AntiSpyware Pro\ASProSB.dll (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temp\jopaxx_1238066402.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temporary Internet Files\Content.IE5\C12B41Y7\load[1].exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temporary Internet Files\Content.IE5\C12B41Y7\MalwareDefender2009[1].exe (Rogue.MalwareDefender) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temporary Internet Files\Content.IE5\OXUN0LQJ\3[1].exe (Rogue.AntiVirus1) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temporary Internet Files\Content.IE5\OXUN0LQJ\QWProtect[1].dll (Rogue.AntiVirus1) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temporary Internet Files\Content.IE5\OXUN0LQJ\MalwareDefender2009[1].exe (Rogue.Installer) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temporary Internet Files\Content.IE5\OXUN0LQJ\pdinstall2009[1].exe (Rogue.PerfectDefender) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temporary Internet Files\Content.IE5\WDIR0L6N\731l2[1].exe (Backdoor.KeyStart) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temporary Internet Files\Content.IE5\WXI30P6V\2[1].exe (Rogue.AntiVirus1) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temporary Internet Files\Content.IE5\WXI30P6V\svchost[1].exe (Rogue.AntiVirus1) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\Antivirus Protection\Antivirus Protection.lnk (Rogue.AntivirusProtection) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\Antivirus Protection\Uninstall.lnk (Rogue.AntivirusProtection) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\Antivirus Protection\Website.lnk (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\Antivirus Protection.url (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\antivirusprotection.exe (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\AntivirusProtection.manifest (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\uninst.exe (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\Logs\ObjectsFound.log (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\Logs\ObjectsRemoved.log (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\Sound\notify.wav (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\spydb.exe (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\version.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\AdRoar\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\AdRoar\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\AdRoar\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\AdRoar\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\AdRoar\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Alexa Related\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\BroadcastPC\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\BroadcastPC\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\BroadcastPC\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\BroadcastPC\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\BroadcastPC\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Browser Hijack\helper.dll (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cookies\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cookies\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cookies\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cookies\fixedfiles.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cydoor\fixedfiles.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cydoor\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cydoor\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cydoor\registry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Cydoor\registrypaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\eAcceleration\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\eAcceleration\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\eUniverse\cookies.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\eUniverse\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\eUniverse\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\eUniverse\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\eUniverse\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\FSG\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\FSG\fixedfiles.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\FSG\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\GAIN\cookies.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\GAIN\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\GAIN\fixedfiles.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\GAIN\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\GAIN\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\HuntBar\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\HuntBar\fixedfiles.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\HuntBar\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\HuntBar\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\IBIS Toolbar\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\IBIS Toolbar\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\IBIS Toolbar\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\IBIS Toolbar\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\KeenValue.PerfectNav\cookies.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\KeenValue.PerfectNav\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\KeenValue.PerfectNav\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\MarketScore\cookies.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\MarketScore\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\MarketScore\fixedfiles.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\MarketScore\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\MarketScore\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\New.Net\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\New.Net\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\New.Net\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\New.Net\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\New.Net\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\New.Net\providers.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\New.Net\uninstallers.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\StartNow.HyperBar\fixedfiles.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\StartNow.HyperBar\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TopMoxie(WebSavings)\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TopMoxie(WebSavings)\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TopMoxie(WebSavings)\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TopMoxie(WebSavings)\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TopMoxie(WebSavings)\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TV Media\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TV Media\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TV Media\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\TV Media\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Twain-Tech\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Twain-Tech\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Twain-Tech\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\Twain-Tech\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\VX2\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\VX2\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\VX2\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\VX2\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\VX2\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebHancer\description.html (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebHancer\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebHancer\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebHancer\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebHancer\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebHancer\providers.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebSearchToolbar\files.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebSearchToolbar\filespaths.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebSearchToolbar\fixedregistry.txt (Rogue.AntivirusProtection) -> No action taken.

C:\Program Files\Antivirus Protection\SpyWares\WebSearchToolbar\processes.txt (Rogue.AntivirusProtection) -> No action taken.

C:\WINDOWS\system32\sysproc64\sysproc32.sys (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\sysproc64\sysproc86.sys (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\sysproc64\sysproc32.sys (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\sysproc64\sysproc32.sys (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Antispyware\Antispyware on the Web.lnk (Rogue.Antispyware) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Antispyware\Antispyware.lnk (Rogue.Antispyware) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Perfect Defender 2009\Perfect Defender 2009.lnk (Rogue.PerfectDefender) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Perfect Defender 2009\Uninstall Perfect Defender 2009.lnk (Rogue.PerfectDefender) -> No action taken.

C:\Program Files\Perfect Defender 2009\dbbase.div (Rogue.PerfectDefender) -> No action taken.

C:\Program Files\Perfect Defender 2009\pd.dll (Rogue.PerfectDefender) -> No action taken.

C:\Program Files\Perfect Defender 2009\UnInstall.exe (Rogue.PerfectDefender) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\Pro Antispyware 2009\Pro Antispyware 2009.lnk (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\System Security\System Security.lnk (Rogue.SystemSecurity) -> No action taken.

C:\Program Files\AntiSpyware Pro\AntiSpyware Pro.db (Rogue.AntiSpywarePro) -> No action taken.

C:\Program Files\AntiSpyware Pro\AntiSpyware Pro.exe (Rogue.AntiSpywarePro) -> No action taken.

C:\Program Files\AntiSpyware Pro\AntiSpywarePro.pkg (Rogue.AntiSpywarePro) -> No action taken.

C:\Program Files\AntiSpyware Pro\ASpyProPUBlk.dll (Rogue.AntiSpywarePro) -> No action taken.

C:\Program Files\AntiSpyware Pro\BlankActiveX.ocx (Rogue.AntiSpywarePro) -> No action taken.

C:\Program Files\AntiSpyware Pro\prg.info (Rogue.AntiSpywarePro) -> No action taken.

C:\Program Files\AntiSpyware Pro\Uninstall.exe (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\Azlan\Application Data\AntiSpyware Pro\conf.xml (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\Azlan\Application Data\AntiSpyware Pro\Sites.black (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\Azlan\Application Data\AntiSpyware Pro\logs\1237476226.log (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\AntiSpyware Pro\Register AntiSpyware Pro.lnk (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\AntiSpyware Pro\Start AntiSpyware Pro.lnk (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\AntiSpyware Pro\Uninstall AntiSpyware Pro.lnk (Rogue.AntiSpywarePro) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Anti-Virus Number-1\Anti-Virus Number-1.lnk (Rogue.AntivirusOne) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Anti-Virus Number-1\Uninstall.lnk (Rogue.AntivirusOne) -> No action taken.

C:\Program Files\ThreatNuker\domains.list (Rogue.ThreatNuker) -> No action taken.

C:\Program Files\ThreatNuker\mfc71.dll (Rogue.ThreatNuker) -> No action taken.

C:\Program Files\ThreatNuker\msvcp71.dll (Rogue.ThreatNuker) -> No action taken.

C:\Program Files\ThreatNuker\msvcr71.dll (Rogue.ThreatNuker) -> No action taken.

C:\Program Files\ThreatNuker\Strings.ini (Rogue.ThreatNuker) -> No action taken.

C:\Program Files\ThreatNuker\ThreatNuker.chm (Rogue.ThreatNuker) -> No action taken.

C:\Program Files\ThreatNuker\Uninstall.exe (Rogue.ThreatNuker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\ThreatNuker\ThreatNuker.lnk (Rogue.ThreatNuker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\ThreatNuker\Uninstall ThreatNuker.lnk (Rogue.ThreatNuker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\AntiVirus_Pro\AntiVirus_Pro.lnk (Rogue.AntiVirusPro) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\AntiVirus_Pro\Uninstall AntiVirus_Pro.lnk (Rogue.AntiVirusPro) -> No action taken.

C:\Program Files\AntiVirus_Pro\AntiVirus_Pro.exe (Rogue.AntiVirusPro) -> No action taken.

C:\Program Files\AntiVirus_Pro\A_VPEngine.dat (Rogue.AntiVirusPro) -> No action taken.

C:\Program Files\AntiVirus_Pro\A_VPEngine.dll (Rogue.AntiVirusPro) -> No action taken.

C:\Program Files\AntiVirus_Pro\A_VPSchedule.txt (Rogue.AntiVirusPro) -> No action taken.

C:\Program Files\AntiVirus_Pro\unins000.dat (Rogue.AntiVirusPro) -> No action taken.

C:\Program Files\AntiVirus_Pro\unins000.exe (Rogue.AntiVirusPro) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\Malware Defender 2009\Malware Defender 2009.lnk (Rogue.MalwareDefender2009) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\Malware Defender 2009\Uninstall.lnk (Rogue.MalwareDefender2009) -> No action taken.

C:\Program Files\Malware Defender 2009\conf.cfg (Rogue.MalwareDefender2009) -> No action taken.

C:\Program Files\Malware Defender 2009\mbase.vdb (Rogue.MalwareDefender2009) -> No action taken.

C:\Program Files\Malware Defender 2009\quarantine.vdb (Rogue.MalwareDefender2009) -> No action taken.

C:\Program Files\Malware Defender 2009\queue.vdb (Rogue.MalwareDefender2009) -> No action taken.

C:\Program Files\Malware Defender 2009\uninstall.exe (Rogue.MalwareDefender2009) -> No action taken.

C:\Program Files\Malware Defender 2009\vbase.vdb (Rogue.MalwareDefender2009) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Microsoft\Media Index\Drivers\hdddriver.dll (Rogue.MalwareDefender2009) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\proas2009.exe (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\BASE\vbase.tmp (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090319232051005.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090320112729088.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090320145747753.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090320152408274.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090320155210154.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090320160046150.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090320161130709.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090321123819014.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090321193852646.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090322214048609.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090322214448785.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090322214919208.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090322215517989.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090322215735912.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090323150439526.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090323172451778.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090324154313422.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090325183410179.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090325184246987.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090325184802323.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090326184430804.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090326192001593.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090327145741516.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20090327165933263.log (Rogue.ProAntispyware) -> No action taken.

C:\Documents and Settings\All Users\Application Data\N1\N1.cab (Rogue.AntiVirus1) -> No action taken.

C:\Documents and Settings\All Users\Application Data\N1\N1Two.exe (Rogue.AntiVirus1) -> No action taken.

C:\Documents and Settings\All Users\Application Data\N1\QWProtect.dll (Rogue.AntiVirus1) -> No action taken.

C:\Documents and Settings\All Users\Application Data\N1\svchost.exe (Rogue.AntiVirus1) -> No action taken.

C:\WINDOWS\t55ft2808f44.dat (Trojan.KoobFace) -> No action taken.

C:\WINDOWS\t55ft2809f44.dat (Trojan.KoobFace) -> No action taken.

C:\Documents and Settings\Azlan\Local Settings\Temp\jopaxx_1237800649.exe (Trojan.KoobFace) -> No action taken.

C:\Documents and Settings\Azlan\Desktop\WinPC Defender.LNK (Rogue.WinPCDefender) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\WinPC Defender.LNK (Rogue.WinPCDefender) -> No action taken.

C:\Documents and Settings\All Users\Desktop\AntiVirus_Pro.lnk (Rogue.AntiVirusPro) -> No action taken.

C:\Program Files\Antispyware\SpyCleaner.dll (Rogue.Antispyware) -> No action taken.

C:\Program Files\Antispyware\Antispyware.exe (Rogue.Antispyware) -> No action taken.

C:\WINDOWS\Tasks\Antispyware Scheduled Scan.job (Rogue.Antispyware) -> No action taken.

C:\Documents and Settings\Azlan\Desktop\System Security.lnk (Rogue.SystemSecurity) -> No action taken.

C:\WINDOWS\system32\MSVolume.dll (Fake.Dropped.Malware) -> No action taken.

C:\Documents and Settings\All Users\Desktop\Antispyware.lnk (Rogue.Antispyware) -> No action taken.

C:\Documents and Settings\Azlan\Desktop\Malware Defender 2009.lnk (Rogue.Link) -> No action taken.

C:\WINDOWS\system32\rs32net.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Azlan\My Documents\Downloads\main.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\oembios.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\Temp\wpv581238107706.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\ld02.exe (Backdoor.Bot) -> No action taken.

C:\WINDOWS\system32\dll32.dll (Backdoor.Bot.Q) -> No action taken.

C:\WINDOWS\system32\crypts.dll (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\filekiller.dll (Rogue.Multiple) -> No action taken.

C:\Documents and Settings\Azlan\Desktop\Antivirus Protection.lnk (Rogue.AntivirusPro) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\.security (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Azlan\Start Menu\Programs\Startup\.security (Trojan.FakeAlert) -> No action taken.

C:\WINDOWS\system32\drivers\etc\.security (Rogue.Multiple) -> No action taken.

C:\.security (Rogue.Multiple) -> No action taken.

C:\WINDOWS\.security (Rogue.Multiple) -> No action taken.

C:\Documents and Settings\All Users\Desktop\ThreatNuker.lnk (Rogue.ThreatNuker) -> No action taken.

C:\Documents and Settings\All Users\Desktop\Anti-Virus Number-1.lnk (Rogue.AntiVirus1) -> No action taken.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.