Jump to content

Unable to clean with malwarebytes


Recommended Posts

I have a server 2003 and xp pc that keeps showing it has many trojans but the files are not there. Malwarebytes scans the PC and looks clean until it comes to "Performing Extra Heuristics scan" then comes up with over 2000 files. Ive searched for the files and they are not there. here are some logs from Malwarebytes and hijack this. I use Trend Officescan and it comes up clean too.

I click to clean with malwarebytes. reboot and scan again and the scan shows the files are still there but I can't find them.

Malwarebytes' Anti-Malware 1.40

Database version: 2693

Windows 5.2.3790 Service Pack 2

25/08/2009 12:50:35

mbam-log-2009-08-25 (12-50-29).txt

Scan type: Quick Scan

Objects scanned: 201528

Time elapsed: 5 minute(s), 27 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 2560

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

C:\1.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\1.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\dumpreport.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\event.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\helper.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\lsas.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\msiexeca.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\rundll.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\service.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\sound.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\taskmon.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Application Data\upnpsvc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\A.M.K.B_Pk.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Assus XDesktop Load.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\CTFM0N.exe (Backdoor.Hupigon) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\GbpSvm.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Hayalan.exe (Worm.Korron) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Installer.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\JVM0.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Java7.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\KB4182843.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\MS Office 2003.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Macromedia Doctor Load.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Msoffice.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\NVidia Utils Start.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\NuclearDOS.exe (Backdoor.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Sony Try Icon XStart.exe (Trojan.Jevafus) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\System.exe (Rogue.WinAntiVirus) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\SystemIL1.exe (Virus.Sality) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\SystemIL2.exe (Virus.Sality) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Userinit.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Wapp.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\WinUpdate.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Windows UpdateSP9.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Windows32.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\WindowsUpdate.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Windowsupdat.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\YacsMon.exe (Trojan.Lop) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Yahoo Doctor Start.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\anjwsoinhj.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\autorun.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\autos.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\avg.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\bf.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\bzts.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\cmzo.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\csrss.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\ctfmonx.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\czlq.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\deploy.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\dfjje.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\dfqupd32.exe (Worm.Autorun) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\dllhost.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\dmaupd32.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\dniw.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\ewe.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\findfast.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\fmnupd32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\fqrl.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\gabr.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\gbplugin.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\icwsetup.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\iexpres.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\ifmq.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\ihaupd32.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\ikowin32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\imad.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\imiupd32.exe (Backdoor.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\infos.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\javawins.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\k2.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\kss.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\lan.exe (Worm.Saphira) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\lans.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\legupd32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\lsass.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\lssas.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\ltul.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\lwbk.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\mccv.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\mscvhost.exe (Worm.Huelar) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\msdoc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\msn.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\msnmsgr.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\msnmsrgr.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\mstcpmvd.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\ncyc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\necsys32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\nod32kut.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\norton32.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\p3.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\pi.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\rncsys32.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\rqjupd32.exe (Trojan.PWS) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\rundll32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\sexy.exe (Backdoor.IRCBot) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\sndvol32.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\stup.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\svcchostb.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\svchost.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\sxikf.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\syskiss.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\systray.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\toaw.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\win.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\zip32.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\zqosys32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Administrator\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\1.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\All Users\Application Data\dumpreport.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Application Data\event.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Application Data\helper.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Application Data\lsas.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Application Data\msiexeca.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Application Data\rundll.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Application Data\service.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Application Data\sound.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Application Data\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Application Data\taskmon.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Application Data\upnpsvc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\A.M.K.B_Pk.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Assus XDesktop Load.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\CTFM0N.exe (Backdoor.Hupigon) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\GbpSvm.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Hayalan.exe (Worm.Korron) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Installer.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\JVM0.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Java7.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\KB4182843.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\MS Office 2003.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Macromedia Doctor Load.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Msoffice.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\NVidia Utils Start.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\NuclearDOS.exe (Backdoor.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Sony Try Icon XStart.exe (Trojan.Jevafus) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\System.exe (Rogue.WinAntiVirus) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\SystemIL1.exe (Virus.Sality) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\SystemIL2.exe (Virus.Sality) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Userinit.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wapp.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinUpdate.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows UpdateSP9.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows32.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WindowsUpdate.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windowsupdat.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\YacsMon.exe (Trojan.Lop) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Yahoo Doctor Start.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\anjwsoinhj.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\autorun.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\autos.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\avg.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\bf.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\bzts.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\cmzo.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\csrss.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ctfmonx.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\czlq.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\deploy.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\dfjje.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\dfqupd32.exe (Worm.Autorun) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\dllhost.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\dmaupd32.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\dniw.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ewe.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\findfast.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\fmnupd32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\fqrl.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\gabr.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\gbplugin.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\icwsetup.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\iexpres.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ifmq.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ihaupd32.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ikowin32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\imad.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\imiupd32.exe (Backdoor.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\infos.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\javawins.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\k2.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\kss.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\lan.exe (Worm.Saphira) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\lans.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\legupd32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\lsass.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\lssas.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ltul.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\lwbk.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\mccv.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\mscvhost.exe (Worm.Huelar) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\msdoc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\msn.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\msnmsgr.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\msnmsrgr.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\mstcpmvd.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ncyc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\necsys32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\nod32kut.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\norton32.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\p3.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\pi.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\rncsys32.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\rqjupd32.exe (Trojan.PWS) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\rundll32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\sexy.exe (Backdoor.IRCBot) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\sndvol32.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\stup.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\svcchostb.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\svchost.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\sxikf.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\syskiss.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\systray.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\toaw.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\win.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\zip32.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\zqosys32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\All Users\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\1.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\Default User\Application Data\dumpreport.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Application Data\event.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Application Data\helper.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Application Data\lsas.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Application Data\msiexeca.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Application Data\rundll.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Application Data\service.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Application Data\sound.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Application Data\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Application Data\taskmon.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Application Data\upnpsvc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\A.M.K.B_Pk.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Assus XDesktop Load.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\CTFM0N.exe (Backdoor.Hupigon) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\GbpSvm.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Hayalan.exe (Worm.Korron) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Installer.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\JVM0.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Java7.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\KB4182843.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\MS Office 2003.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Macromedia Doctor Load.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Msoffice.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\NVidia Utils Start.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\NuclearDOS.exe (Backdoor.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Sony Try Icon XStart.exe (Trojan.Jevafus) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\System.exe (Rogue.WinAntiVirus) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\SystemIL1.exe (Virus.Sality) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\SystemIL2.exe (Virus.Sality) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Userinit.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Wapp.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\WinUpdate.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Windows UpdateSP9.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Windows32.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\WindowsUpdate.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Windowsupdat.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\YacsMon.exe (Trojan.Lop) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Yahoo Doctor Start.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\anjwsoinhj.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\autorun.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\autos.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\avg.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\bf.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\bzts.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\cmzo.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\csrss.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\ctfmonx.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\czlq.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\deploy.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\dfjje.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\dfqupd32.exe (Worm.Autorun) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\dllhost.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\dmaupd32.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\dniw.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\ewe.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\findfast.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\fmnupd32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\fqrl.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\gabr.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\gbplugin.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\icwsetup.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\iexpres.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\ifmq.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\ihaupd32.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\ikowin32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\imad.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\imiupd32.exe (Backdoor.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\infos.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\javawins.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\k2.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\kss.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\lan.exe (Worm.Saphira) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\lans.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\legupd32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\lsass.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\lssas.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\ltul.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\lwbk.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\mccv.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\mscvhost.exe (Worm.Huelar) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\msdoc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\msn.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\msnmsgr.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\msnmsrgr.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\mstcpmvd.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\ncyc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\necsys32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\nod32kut.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\norton32.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\p3.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\pi.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\rncsys32.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\rqjupd32.exe (Trojan.PWS) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\rundll32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\sexy.exe (Backdoor.IRCBot) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\sndvol32.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\stup.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\svcchostb.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\svchost.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\sxikf.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\syskiss.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\systray.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\toaw.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\win.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\zip32.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\zqosys32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\Default User\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\1.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\dumpreport.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\event.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\helper.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\lsas.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\msiexeca.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\rundll.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\service.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\sound.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\taskmon.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\Application Data\upnpsvc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\LocalService\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\1.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\dumpreport.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\event.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\helper.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\lsas.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\msiexeca.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\rundll.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\service.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\sound.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\taskmon.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\Application Data\upnpsvc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\NetworkService\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\1.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\dumpreport.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\event.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\helper.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\lsas.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\msiexeca.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\rundll.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\service.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\sound.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\taskmon.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Application Data\upnpsvc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\A.M.K.B_Pk.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Assus XDesktop Load.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\CTFM0N.exe (Backdoor.Hupigon) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\GbpSvm.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Hayalan.exe (Worm.Korron) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Installer.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\JVM0.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Java7.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\KB4182843.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\MS Office 2003.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Macromedia Doctor Load.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Msoffice.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\NVidia Utils Start.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\NuclearDOS.exe (Backdoor.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Sony Try Icon XStart.exe (Trojan.Jevafus) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\System.exe (Rogue.WinAntiVirus) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\SystemIL1.exe (Virus.Sality) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\SystemIL2.exe (Virus.Sality) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Userinit.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Wapp.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\WinUpdate.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Windows UpdateSP9.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Windows32.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\WindowsUpdate.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Windowsupdat.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\YacsMon.exe (Trojan.Lop) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\Yahoo Doctor Start.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\anjwsoinhj.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\autorun.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\autos.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\avg.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\bf.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\bzts.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\cmzo.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\csrss.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\ctfmonx.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\czlq.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\deploy.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\dfjje.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\dfqupd32.exe (Worm.Autorun) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\dllhost.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\dmaupd32.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\dniw.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\ewe.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\findfast.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\fmnupd32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\fqrl.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\gabr.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\gbplugin.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\icwsetup.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\iexpres.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\ifmq.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\ihaupd32.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\ikowin32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\imad.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\imiupd32.exe (Backdoor.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\infos.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\javawins.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\k2.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\kss.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\lan.exe (Worm.Saphira) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\lans.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\legupd32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\lsass.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\lssas.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\ltul.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\lwbk.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\mccv.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\mscvhost.exe (Worm.Huelar) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\msdoc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\msn.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\msnmsgr.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\msnmsrgr.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\mstcpmvd.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\ncyc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\necsys32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\nod32kut.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\norton32.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\p3.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\pi.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\rncsys32.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\rqjupd32.exe (Trojan.PWS) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\rundll32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\sexy.exe (Backdoor.IRCBot) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\sndvol32.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\stup.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\svcchostb.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\svchost.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\sxikf.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\syskiss.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\systray.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\toaw.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\win.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\zip32.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\Start Menu\Programs\Startup\zqosys32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-BACKUPEXEC\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\1.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\dumpreport.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\event.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\helper.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\lsas.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\msiexeca.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\rundll.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\service.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\sound.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\taskmon.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Application Data\upnpsvc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\A.M.K.B_Pk.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Assus XDesktop Load.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\CTFM0N.exe (Backdoor.Hupigon) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\GbpSvm.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Hayalan.exe (Worm.Korron) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Installer.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\JVM0.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Java7.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\KB4182843.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\MS Office 2003.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Macromedia Doctor Load.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Msoffice.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\NVidia Utils Start.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\NuclearDOS.exe (Backdoor.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Sony Try Icon XStart.exe (Trojan.Jevafus) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\System.exe (Rogue.WinAntiVirus) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\SystemIL1.exe (Virus.Sality) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\SystemIL2.exe (Virus.Sality) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Userinit.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Wapp.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\WinUpdate.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Windows UpdateSP9.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Windows32.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\WindowsUpdate.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Windowsupdat.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\YacsMon.exe (Trojan.Lop) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\Yahoo Doctor Start.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\anjwsoinhj.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\autorun.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\autos.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\avg.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\bf.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\bzts.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\cmzo.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\csrss.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\ctfmonx.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\czlq.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\deploy.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\dfjje.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\dfqupd32.exe (Worm.Autorun) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\dllhost.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\dmaupd32.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\dniw.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\ewe.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\findfast.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\fmnupd32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\fqrl.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\gabr.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\gbplugin.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\icwsetup.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\iexpres.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\ifmq.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\ihaupd32.exe (Trojan.Dropper) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\ikowin32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\imad.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\imiupd32.exe (Backdoor.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\infos.exe (Trojan.FakeAlert) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\javawins.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\k2.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\kss.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\lan.exe (Worm.Saphira) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\lans.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\legupd32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\lsass.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\lssas.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\ltul.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\lwbk.exe (Adware.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\mccv.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\mscvhost.exe (Worm.Huelar) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\msdoc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\msn.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\msnmsgr.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\msnmsrgr.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\mstcpmvd.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\ncyc.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\necsys32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\nod32kut.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\norton32.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\p3.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\pi.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\rncsys32.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\rqjupd32.exe (Trojan.PWS) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\rundll32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\sexy.exe (Backdoor.IRCBot) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\sndvol32.exe (Backdoor.Bot) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\stup.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\svcchostb.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\svchost.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\sxikf.exe (Worm.AutoRun) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\syskiss.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\systray.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\toaw.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\win.exe (Trojan.Agent) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\zip32.exe (Trojan.Banker) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\Start Menu\Programs\Startup\zqosys32.exe (Trojan.Downloader) -> No action taken.

C:\Documents and Settings\SVC-GBYT-BESERVICE\svchosts.exe (Trojan.Agent) -> No action taken.

C:\Program Files\1\1.exe (Trojan.Agent) -> No action taken.

C:\Program Files\2\2.exe (Trojan.Agent) -> No action taken.

C:\Program Files\Common Files\Win Config\service.exe (Backdoor.Bot) -> No action taken.

C:\Program Files\PornCleanser\svchosts.exe (Rogue.PornCleanser) -> No action taken.

C:\Program Files\pc\svchosts.exe (Rogue.PornCleanser) -> No action taken.

C:\Program Files\rundll.exe (Spyware.OnlineGames) -> No action taken.

C:\RECYCLER\S-1-5-21-0982818026-0792038349-964117139-9221\service.exe (Trojan.Agent) -> No action taken.

C:\RECYCLER\S-1-5-21-1292832515-2685961851-318933812-6215\service.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\Cursors\svchosts.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\Media\sound.exe (Trojan.Downloader) -> No action taken.

C:\WINDOWS\System\helper.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\System\svchosts.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\Temp\lsas.exe (Trojan.Dropper) -> No action taken.

C:\WINDOWS\lsas.exe (Backdoor.Bot) -> No action taken.

C:\WINDOWS\rundll.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\service.exe (Backdoor.Bot) -> No action taken.

C:\WINDOWS\svchosts.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\1.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\1\1.exe (Backdoor.Bifrose) -> No action taken.

C:\WINDOWS\system32\2.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\Com\rundll.exe (Trojan.Sramler) -> No action taken.

C:\WINDOWS\system32\Drivers\Security\service.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\inf\svchosts.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\lsas.exe (Backdoor.Bot) -> No action taken.

C:\WINDOWS\system32\rundll.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\runwin32\rundll.exe (Backdoor.Bot) -> No action taken.

C:\WINDOWS\system32\service.exe (Backdoor.Bot) -> No action taken.

C:\WINDOWS\system32\svc\svchosts.exe (Trojan.Banker) -> No action taken.

C:\WINDOWS\system32\svchosts.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\taskmon.exe (Trojan.Agent) -> No action taken.

C:\WINDOWS\system32\win32ini\svchosts.exe (Backdoor.Bot) -> No action taken.

C:\WINDOWS\taskmon.exe (Proxy.Agent) -> No action taken.

C:\svchosts.exe (Worm.AutoRun) -> No action taken.

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 12:57:27, on 25/08/2009

Platform: Windows 2003 SP2 (WinNT 5.02.3790)

MSIE: Internet Explorer v6.00 SP2 (6.00.3790.3959)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

D:\altiris\Altiris Agent\aexnsagent.exe

C:\WINDOWS\system32\ccsrvc.exe

C:\Program Files\Altiris\Carbon Copy\shellker.exe

C:\WINDOWS\system32\CpqRcmc.exe

C:\hp\hpsmh\data\cgi-bin\vcagent\vcagent.exe

C:\Program Files\Executive Software\Diskeeper\DkService.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\tcpsvcs.exe

C:\Program Files\Microsoft SQL Server\MSSQL$BKUPEXEC\Binn\sqlservr.exe

C:\Program Files\NSClient++\NSClient++.exe

C:\Program Files\Aldebaran\ServerAssist\SAMONITOR.EXE

C:\WINDOWS\System32\snmp.exe

C:\hp\hpsmh\bin\smhstart.exe

C:\hp\hpsmh\bin\hpsmhd.exe

C:\WINDOWS\system32\CPQNiMgt\cpqnimgt.exe

C:\WINDOWS\system32\CPQMgmt\CqMgServ\cqmgserv.exe

C:\WINDOWS\system32\CPQMgmt\CqMgStor\cqmgstor.exe

C:\WINDOWS\system32\sysdown.exe

C:\hp\hpsmh\bin\rotatelogs.exe

C:\hp\hpsmh\bin\rotatelogs.exe

C:\Program Files\VERITAS\Backup Exec\NT\beremote.exe

C:\hp\hpsmh\bin\hpsmhd.exe

C:\Program Files\VERITAS\Backup Exec\NT\benetns.exe

C:\WINDOWS\system32\CPQMgmt\CqMgHost\cqmghost.exe

C:\hp\hpsmh\bin\rotatelogs.exe

C:\hp\hpsmh\bin\rotatelogs.exe

C:\Program Files\VERITAS\Backup Exec\NT\pvlsvr.exe

C:\Program Files\Microsoft SQL Server\MSSQL$BKUPEXEC\Binn\sqlagent.EXE

C:\Program Files\VERITAS\Backup Exec\NT\beserver.exe

C:\Program Files\VERITAS\Backup Exec\NT\bengine.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe

C:\WINDOWS\TEMP\OBBEDE.EXE

C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe

C:\Program Files\Trend Micro\OfficeScan Client\CNTAoSMgr.exe

C:\Program Files\Trend Micro\OfficeScan Client\tmproxy.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\rdpclip.exe

C:\WINDOWS\system32\ctfmon.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\cpqteam.exe

C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe

C:\Program Files\VERITAS\VxUpdate\VxTaskbarMgr.exe

C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe

D:\altiris\Altiris Agent\AeXAgentUIHost.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = res://shdoclc.dll/hardAdmin.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = res://shdoclc.dll/hardAdmin.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://internetproxy.sunchemical.com:8086/proxy.pac

O4 - HKLM\..\Run: [CPQTEAM] cpqteam.exe

O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow

O4 - HKLM\..\Run: [AeXAgentLogon] D:\altiris\Altiris Agent\AeXAgentActivate.exe /logon

O4 - HKLM\..\Run: [VxTaskbarMgr] C:\Program Files\VERITAS\VxUpdate\VxTaskbarMgr.exe

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')

O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe

O15 - ESC Trusted Zone: http://free.antivirus.com

O15 - ESC Trusted Zone: http://www.malwarebytes.org

O15 - ESC Trusted Zone: http://us.trendmicro.com

O15 - ESC Trusted Zone: http://www.trendsecure.com

O15 - ESC Trusted Zone: http://*.windowsupdate.com

O15 - ESC Trusted Zone: http://*.windowsupdate.com (HKLM)

O16 - DPF: {00134F72-5284-44F7-95A8-52A619F70751} (ObjWinNTCheck Class) - https://ustpppas012/officescan/console/html...ll/WinNTChk.cab

O16 - DPF: {08D75BC1-D2B5-11D1-88FC-0080C859833B} (OfficeScan Corp Edition Web-Deployment SetupCtrl Class) - https://ustpppas012/officescan/console/html...stall/setup.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1234951106968

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = prod.sunchemical.com

O17 - HKLM\System\CCS\Services\Tcpip\..\{122732E4-53F4-425E-AC23-7A9B60CA6362}: NameServer = 171.74.65.82,10.1.5.210

O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = prod.sunchemical.com

O17 - HKLM\System\CS1\Services\Tcpip\..\{122732E4-53F4-425E-AC23-7A9B60CA6362}: NameServer = 171.74.65.82,10.1.5.210

O18 - Protocol: hpapp - {24F45006-5BD9-41B7-9BD9-5F8921C8EBD1} - C:\Program Files\Compaq\Cpqacuxe\Bin\hpapp.dll

O23 - Service: Altiris Agent (AeXNSClient) - Altiris, Inc. - D:\altiris\Altiris Agent\AeXNSAgent.exe

O23 - Service: Backup Exec Remote Agent for Windows Servers (BackupExecAgentAccelerator) - Symantec Corporation - C:\Program Files\VERITAS\Backup Exec\NT\beremote.exe

O23 - Service: Backup Exec Agent Browser (BackupExecAgentBrowser) - Symantec Corporation - C:\Program Files\VERITAS\Backup Exec\NT\benetns.exe

O23 - Service: Backup Exec Device & Media Service (BackupExecDeviceMediaService) - Symantec Corporation - C:\Program Files\VERITAS\Backup Exec\NT\pvlsvr.exe

O23 - Service: Backup Exec Job Engine (BackupExecJobEngine) - Symantec Corporation - C:\Program Files\VERITAS\Backup Exec\NT\bengine.exe

O23 - Service: Backup Exec Server (BackupExecRPCService) - Symantec Corporation - C:\Program Files\VERITAS\Backup Exec\NT\beserver.exe

O23 - Service: Altiris Carbon Copy (CarbonCopy32) - Altiris - C:\WINDOWS\system32\ccsrvc.exe

O23 - Service: Carbon Copy Scheduler (CarbonCopyScheduler) - Altiris - C:\WINDOWS\system32\schdsrvc.exe

O23 - Service: HP Insight NIC Agent (CpqNicMgmt) - Hewlett-Packard Company - C:\WINDOWS\system32\CPQNiMgt\cpqnimgt.exe

O23 - Service: HP ProLiant Remote Monitor Service (CpqRcmc) - Hewlett-Packard Company - C:\WINDOWS\system32\CpqRcmc.exe

O23 - Service: HP Version Control Agent (cpqvcagent) - Hewlett-Packard Company - C:\hp\hpsmh\data\cgi-bin\vcagent\vcagent.exe

O23 - Service: HP Insight Foundation Agents (CqMgHost) - Hewlett-Packard Company - C:\WINDOWS\system32\CPQMgmt\CqMgHost\cqmghost.exe

O23 - Service: HP Insight Server Agents (CqMgServ) - Hewlett-Packard Company - C:\WINDOWS\system32\CPQMgmt\CqMgServ\cqmgserv.exe

O23 - Service: HP Insight Storage Agents (CqMgStor) - Hewlett-Packard Company - C:\WINDOWS\system32\CPQMgmt\CqMgStor\cqmgstor.exe

O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe

O23 - Service: NSClient++ (Win32) (NSClientpp) - Unknown owner - C:\Program Files\NSClient++\\NSClient++.exe

O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe

O23 - Service: ServerAssist Monitor (SAMONITOR) - Aldebaran Systems Ltd - C:\Program Files\Aldebaran\ServerAssist\SAMONITOR.EXE

O23 - Service: HP ProLiant System Shutdown Service (sysdown) - Compaq Computer Corporation - C:\WINDOWS\system32\sysdown.exe

O23 - Service: HP System Management Homepage (SysMgmtHp) - Hewlett-Packard Company - C:\hp\hpsmh\bin\smhstart.exe

O23 - Service: OfficeScan NT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe

O23 - Service: OfficeScan NT Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\TmProxy.exe

Link to post
Share on other sites

  • Staff

Hi LW9090 and welcome to Malwarebytes.

Please disconnect from the Internet immediately.

We need to see a developer's log from MBAM.

Navigate to Start --> Run, and enter the following command exactly as shown:

mbam.exe /developer

(do note that there is a space between .exe and /)

This will open MBAM. Please run a Quick Scan and post its log.

-screen317

Link to post
Share on other sites

Hi LW9090 and welcome to Malwarebytes.

Please disconnect from the Internet immediately.

We need to see a developer's log from MBAM.

Navigate to Start --> Run, and enter the following command exactly as shown:

mbam.exe /developer

(do note that there is a space between .exe and /)

This will open MBAM. Please run a Quick Scan and post its log.

-screen317

I am attaching the file since it is to big to post here. We saw this after we got the ILOMO virus.

mbam_log_2009_08_26__14_57_18_.zip

Link to post
Share on other sites

Could you try this please:

Please reboot to Safe Mode (tap the F8 key just before Windows starts to load and select the Safe Mode option from the menu).

Run a Quick Scan with MBAM and see if it is still detecting those ~2000 files.

-screen317

When running in safe mode it finds nothing.

Link to post
Share on other sites

  • Staff

Thanks for letting me know.

Our team is aware of this issue and are working on it.

Those detections you are seeing are not actually there.

If you would like to wait and help us out, it'd be great if you could try out the new version when it does come out to see if the detections still come up.

Aside from that, is there anything else I can help you with?

-screen317

Link to post
Share on other sites

Thanks for letting me know.

Our team is aware of this issue and are working on it.

Those detections you are seeing are not actually there.

If you would like to wait and help us out, it'd be great if you could try out the new version when it does come out to see if the detections still come up.

Aside from that, is there anything else I can help you with?

-screen317

Thanks. I will try the new version when its ready.

I want to thank you guys for this program.

Link to post
Share on other sites

  • 2 weeks later...
  • 3 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.