Jump to content

False positives for Holdem Manager related files?

exploiter

By exploiter
in File Detections

 Share

Recommended Posts

exploiter

exploiter

Posted
Posted

Holdem Manager is a program used for online poker, used by many many people. It's a safe program. The newest MBAM version is detecting 50-55 Holdem Manager related files. 3 of us on 2+2 have gotten these detections now.

Link to one of the threads on 2+2:

http://forumserver.twoplustwo.com/48/compu...-update-560392/

Malwarebytes' Anti-Malware 1.40

Database version: 2629

Windows 6.0.6001 Service Pack 1

8/15/2009 2:01:22 PM

56TrojansHEM_mbam-log-2009-08-15 (14-01-11).txt

Scan type: Full Scan (A:\|C:\|D:\|E:\|F:\|)

Objects scanned: 373164

Time elapsed: 59 minute(s), 36 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 56

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v006DBC2F\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v09930AC1\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v12EFC15E\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v1C84EDBD\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ PROGRAMFILES@\Microsoft Office\OFFICE11\WINWORD.EXE (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ PROGRAMFILES@\Mozilla Firefox\firefox.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\DBControlPanel.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ WINDIR@\splwow64.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\dw20.ex e (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HoldemManager.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v3001F9EE\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMArticles.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\dw20.ex e (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v6B68FA03\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v6B68FA03\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\Native\STUBEXE\@ PROGRAMFILES@\Mozilla Firefox\firefox.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v77810409\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMArticles.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v77810409\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v77810409\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v77810409\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v77810409\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

Link to Holdem Manager forums:

http://www.holdemmanager.net/forum/index.php

Issue will be discussed in this thread: (most recent posts)

http://www.holdemmanager.net/forum/showthr...641&page=37

I await your input. Thank you.

Link to post
Share on other sites
exploiter

exploiter

Posted
  • Author
Posted
Holdem Manager is a program used for online poker, used by many many people. It's a safe program. The newest MBAM version is detecting 50-55 Holdem Manager related files. 3 of us on 2+2 have gotten these detections now.

Link to one of the threads on 2+2:

http://forumserver.twoplustwo.com/48/compu...-update-560392/

Malwarebytes' Anti-Malware 1.40

Database version: 2629

Windows 6.0.6001 Service Pack 1

8/15/2009 2:01:22 PM

56TrojansHEM_mbam-log-2009-08-15 (14-01-11).txt

Scan type: Full Scan (A:\|C:\|D:\|E:\|F:\|)

Objects scanned: 373164

Time elapsed: 59 minute(s), 36 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 56

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v006DBC2F\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v09930AC1\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v12EFC15E\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v1C84EDBD\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ PROGRAMFILES@\Microsoft Office\OFFICE11\WINWORD.EXE (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ PROGRAMFILES@\Mozilla Firefox\firefox.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\DBControlPanel.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ WINDIR@\splwow64.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\dw20.ex e (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v2B34C5A3\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HoldemManager.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v3001F9EE\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMArticles.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\dw20.ex e (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v5B04D48C\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v6B68FA03\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v6B68FA03\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\Native\STUBEXE\@ PROGRAMFILES@\Mozilla Firefox\firefox.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\Native\STUBEXE\@ SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v72674296\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v77810409\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMArticles.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v77810409\Native\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v77810409\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v77810409\Native\STUBEXE\@ WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres. exe (Trojan.Crypt) -> No action taken.

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceC aches\HoldemManager.exe_v77810409\TheApp\STUBEXE\@ PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken.

Link to Holdem Manager forums:

http://www.holdemmanager.net/forum/index.php

Issue will be discussed in this thread: (most recent posts)

http://www.holdemmanager.net/forum/showthr...641&page=37

I await your input. Thank you.

Input from one of the HEM developers:

All those files and folders are cached versions of the same files that have been virtualized. Each folder relates to a specific version of Hm you installed and you can delete all those files/folders if you like.

I suspect that your software added some type of new detection algorithm that incorrectly identifies these vritualized files as potential issues. It even identifies cvtres.exe as a virus and this is in fact a windows file.

So definitely a false positive but you should continue to look into this just for peace of mind

Roy

http://forumserver.twoplustwo.com/48/compu...-update-560392/

Link to post
Share on other sites
HH89

HH89

Posted
Posted

Developer Log here:

Malwarebytes' Anti-Malware 1.40

Database version: 2630

Windows 6.0.6001 Service Pack 1

8/15/2009 6:15:06 PM

56TrojansHEM_D-Log_mbam-log-2009-08-15 (18-14-52).txt

Scan type: Full Scan (A:\|C:\|D:\|E:\|F:\|)

Objects scanned: 373311

Time elapsed: 1 hour(s), 0 minute(s), 24 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 56

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v006DBC2F\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v006DBC2F\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v09930AC1\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v09930AC1\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v12EFC15E\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v12EFC15E\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v1C84EDBD\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v1C84EDBD\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@PROGRAMFILES@\Microsoft Office\OFFICE11\WINWORD.EXE (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@PROGRAMFILES@\Mozilla Firefox\firefox.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\DBControlPanel.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@WINDIR@\splwow64.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\dw20.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v2B34C5A3\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HoldemManager.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v3001F9EE\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v3001F9EE\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMArticles.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v5B04D48C\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\dw20.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v5B04D48C\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v6B68FA03\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v6B68FA03\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v72674296\Native\STUBEXE\@PROGRAMFILES@\Mozilla Firefox\firefox.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v72674296\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v72674296\Native\STUBEXE\@SYSTEM@\conime.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v72674296\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v72674296\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v72674296\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v77810409\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMArticles.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v77810409\Native\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMHud.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v77810409\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\csc.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v77810409\Native\STUBEXE\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\cvtres.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

C:\Users\Carlton\AppData\Local\Xenocode\ApplianceCaches\HoldemManager.exe_v77810409\TheApp\STUBEXE\@PROGRAMFILES@\RVG Software\Holdem Manager\HMImport.exe (Trojan.Crypt) -> No action taken. [5253514247405230221818191301232020342236222522192339233924212239211924222326233

62321223622252022193820192236222323372236241923222336232223182420232222362220242

1

242223192122242523221938241723212319]

Link to post
Share on other sites
  • 1 month later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.