Ga naar inhoud

spyware doctor vraagje en een msn probleemke


Aanbevolen berichten

mijn moeder heeft mij opgebeld om eens haar pc te checken,want ze had een probleempje.effkes het probleempje

uitleggen.

als ze berichten ontvangde moet je zoals normaal klikken op "postvak in",ja dat ging normaal...MAAARRRRRRR,na een aantal seconden kwam ze terecht op de pagina om een email te verzenden:hmmmm:,das vreemd hé...begrijp je wat ik bedoel? "postvak in "openen om je mail te checken en enkele seconden komen ze op haar pagina om een email te verzenden.iemand raad?

ik heb spyware doctor geïnstalleerd op haar pc gisteren en deed een scan...hij vond een paar bedreigingen( low en medium)...en 1NE met en hoge bedreiging en daar zou ik graag iets meer over weten(is dat spyware van een software dat mijn zoon of moeder gedownload? heeft vraag ik mij af).

Trojan-Downloader.Murlo....:eviltongue:

nou ja ik zal eens de volledige scanresult doorgeven(je weet maar nooit hé)

[TABLE]

[TR]

[TD=bgcolor: #1C67A8] PC Tools Spyware Doctor[/TD]

[/TR]

[TR]

[TD] [TABLE]

[TR]

[TD=bgcolor: #1C67A8]

Date

[/TD]

[TD=bgcolor: #1C67A8]

Status

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:14:52:171[/TD]

[TD=width: 25%]

Service Started

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Spyware Doctor Service Application started[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:14:52:187[/TD]

[TD=width: 25%]

Anti-Malware Engine

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Anti-Malware engine configuration loaded successfully.[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:15:24:156[/TD]

[TD=width: 25%]

IntelliGuards status

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]All IntelliGuards were Enabled[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:15:33:312[/TD]

[TD=width: 25%]

Immunizer Results

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]ActiveX section has been immunized, Processed 5117 items.[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:17:09:671[/TD]

[TD=width: 25%]

Service Stopped

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Spyware Doctor Service Application Stopped[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:25:55:875[/TD]

[TD=width: 25%]

Service Started

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Spyware Doctor Service Application started[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:25:55:890[/TD]

[TD=width: 25%]

Anti-Malware Engine

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Anti-Malware engine configuration loaded successfully.[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:25:56:687[/TD]

[TD=width: 25%]

IntelliGuards status

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]All IntelliGuards were Enabled[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:26:00:796[/TD]

[TD=width: 25%]

Immunizer Results

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]ActiveX section has been immunized, Processed 25 items.[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:26:07:984[/TD]

[TD=width: 25%]

Anti-Malware Engine

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Anti-Malware detection engine was disabled[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:30:41:140[/TD]

[TD=width: 25%]

Behavior Guard

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Successfully initialized the ThreatFire engine.[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:31:33:937[/TD]

[TD=width: 25%]

IntelliGuard: Behavioral Event Quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Action: Quarantined by user

Details: This program is attempting to hide a certain process from the Windows Task Manager.

Risk: VERY HIGH

Process: [wrap][/wrap][/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:32:12:593[/TD]

[TD=width: 25%]

IntelliGuard: Behavioral Event Quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Action: Quarantined by user

Details: This program is attempting to hide a certain process from the Windows Task Manager.

Risk: VERY HIGH

Process: [wrap][/wrap][/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:36:32:828[/TD]

[TD=width: 25%]

IntelliGuard: Behavioral Event Quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Action: Quarantined by user

Details: This program is attempting to hide a certain process from the Windows Task Manager.

Risk: VERY HIGH

Process: [wrap][/wrap][/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:37:01:281[/TD]

[TD=width: 25%]

IntelliGuard: Behavioral Event Quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Action: Quarantined

Details: This program is attempting to hide a certain process from the Windows Task Manager.

Risk: VERY HIGH

Process: [wrap][/wrap][/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:41:32:609[/TD]

[TD=width: 25%]

Scan Started

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Scan Type - Intelli-Scan

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:42:26:718[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trackware.Tracking Cookies!rem

Type - Cookie

Risk Level - Medium

Infection - ad.yieldmanager.com/ ad.yieldmanager.com

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:42:29:328[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trackware.Tracking Cookies!rem

Type - Cookie

Risk Level - Medium

Infection - bs.serving-sys.com/ bs.serving-sys.com

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:42:30:359[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trackware.Tracking Cookies!rem

Type - Cookie

Risk Level - Medium

Infection - content.yieldmanager.com/ content.yieldmanager.com

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:42:31:781[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Application.TrackingCookies

Type - Cookie

Risk Level - Low

Infection - fl01.ct2.comclick.com/ fl01.ct2.comclick.com

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:42:32:937[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Application.TrackingCookies

Type - Cookie

Risk Level - Low

Infection - metriweb.be/ metriweb.be

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:42:34:156[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trackware.Tracking Cookies!rem

Type - Cookie

Risk Level - Medium

Infection - serving-sys.com/ serving-sys.com

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:42:36:281[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Application.TrackingCookies

Type - Cookie

Risk Level - Low

Infection - xiti.com/ xiti.com

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:44:16:203[/TD]

[TD=width: 25%]

Smart Update

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Smart Update has determined that Spyware Doctor is up to date[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:41:703[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Application.Component.Keyloggers

Type - Registry Value

Risk Level - Elevated

Infection - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon, IgnoreShiftOveride

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:93[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME, NextInstance

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:218[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Service

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:218[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Legacy

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:218[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, ConfigFlags

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:218[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Class

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:234[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, ClassGUID

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:234[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, DeviceDesc

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:234[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Capabilities

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:234[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Driver

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:281[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000\LogConf

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:281[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000\Control

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:281[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:281[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:531[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, Type

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:531[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, ErrorControl

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:531[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, Start

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:531[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, ImagePath

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:531[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, Group

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:546[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum, 0

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:546[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum, Count

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:546[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum, NextInstance

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:45:44:546[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:45:44:546[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:33:890[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:35:687[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Control

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:15[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{0DE86A52-2BAA-11CF-A229-00AA003D7352}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:15[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{0DE86A53-2BAA-11CF-A229-00AA003D7352}

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:125[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{0DE86A57-2BAA-11CF-A229-00AA003D7352}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:203[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{40FC6ED4-2438-11CF-A3DB-080036F12502}

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:296[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{40FC6ED5-2438-11CF-A3DB-080036F12502}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:296[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:390[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:390[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32, ThreadingModel

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:390[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:390[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:421[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus\1, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:437[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus\1

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:437[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:515[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ProgID, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:515[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ProgID

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:625[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Programmable

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:671[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ToolboxBitmap32, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:671[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ToolboxBitmap32

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:687[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\TypeLib, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:687[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\TypeLib

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:703[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Version, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:703[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Version

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:734[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\VersionIndependentProgID, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:36:750[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\VersionIndependentProgID

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:36:750[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:37:328[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:37:562[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:37:562[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:37:562[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 12:57:49:750[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Startup

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{248DD890-BB45-11CF-9ABC-0080C7E7B78D}\1.0\0\win32, (Default) = C:\WINDOWS\system32\mswinsck.ocx

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 12:57:49:750[/TD]

[TD=width: 25%]

Infection was detected on this computer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - File

Risk Level - High

Infection - c:\windows\system32\mswinsck.ocx

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:00:20:187[/TD]

[TD=width: 25%]

Scan Finished

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Scan Type - Intelli-Scan

Items Processed - 407076

Threats Detected - 5

Infections Detected - 64

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:468[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - File

Risk Level - High

Infection - c:\windows\system32\mswinsck.ocx

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:531[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Startup

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{248DD890-BB45-11CF-9ABC-0080C7E7B78D}\1.0\0\win32, (Default) = C:\WINDOWS\system32\mswinsck.ocx

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:640[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:656[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:671[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:671[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:703[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:703[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\VersionIndependentProgID

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:703[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\VersionIndependentProgID, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:718[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Version

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:718[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Version, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:734[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\TypeLib

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:734[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\TypeLib, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:812[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ToolboxBitmap32

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:812[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ToolboxBitmap32, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:828[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Programmable

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:828[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ProgID

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:843[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ProgID, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:859[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:859[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus\1

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:875[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus\1, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:875[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:875[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:890[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32, ThreadingModel

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:890[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:890[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:906[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{40FC6ED5-2438-11CF-A3DB-080036F12502}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:906[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{40FC6ED4-2438-11CF-A3DB-080036F12502}

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:906[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{0DE86A57-2BAA-11CF-A229-00AA003D7352}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:921[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{0DE86A53-2BAA-11CF-A229-00AA003D7352}

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:921[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{0DE86A52-2BAA-11CF-A229-00AA003D7352}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:17:921[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Control

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:17:937[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:203[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - File

Risk Level - High

Infection - c:\windows\system32\mswinsck.ocx

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:359[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Startup

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{248DD890-BB45-11CF-9ABC-0080C7E7B78D}\1.0\0\win32, (Default) = C:\WINDOWS\system32\mswinsck.ocx

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:531[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:531[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:531[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:531[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD897-BB45-11CF-9ABC-0080C7E7B78D}, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\VersionIndependentProgID

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\VersionIndependentProgID, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Version

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Version, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\TypeLib

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\TypeLib, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ToolboxBitmap32

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ToolboxBitmap32, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Programmable

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:656[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ProgID

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\ProgID, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus\1

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus\1, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\MiscStatus, (Default)

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32, ThreadingModel

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\InprocServer32, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{40FC6ED5-2438-11CF-A3DB-080036F12502}

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{40FC6ED4-2438-11CF-A3DB-080036F12502}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{0DE86A57-2BAA-11CF-A229-00AA003D7352}

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{0DE86A53-2BAA-11CF-A229-00AA003D7352}

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:687[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Implemented Categories\{0DE86A52-2BAA-11CF-A229-00AA003D7352}

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:687[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}\Control

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:687[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Backdoor.VB!sd6

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D}, (Default)

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:937[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:953[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:953[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum, NextInstance

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:953[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum, Count

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:968[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum, 0

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:968[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, Group

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:984[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, ImagePath

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:18:984[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, Start

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:18:984[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, ErrorControl

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:0[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, Type

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:0[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:15[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:15[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000\Control

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:31[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000\LogConf

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:31[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Driver

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:31[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Capabilities

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:31[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, DeviceDesc

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:46[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, ClassGUID

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:46[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Class

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:46[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, ConfigFlags

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:62[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Legacy

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:62[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Service

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:62[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME, NextInstance

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum, NextInstance

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum, Count

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme\Enum, 0

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, Group

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, ImagePath

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, Start

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, ErrorControl

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\catchme, Type

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000\Control

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Key

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000\LogConf

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Driver

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Capabilities

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, DeviceDesc

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, ClassGUID

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:421[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Class

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:437[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, ConfigFlags

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:437[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Legacy

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:437[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME\0000, Service

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:437[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trojan-Downloader.Murlo

Type - Registry Value

Risk Level - High

Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CATCHME, NextInstance

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:671[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trackware.Tracking Cookies!rem

Type - Cookie

Risk Level - Medium

Infection - serving-sys.com/ serving-sys.com

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:718[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trackware.Tracking Cookies!rem

Type - Cookie

Risk Level - Medium

Infection - content.yieldmanager.com/ content.yieldmanager.com

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:718[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Trackware.Tracking Cookies!rem

Type - Cookie

Risk Level - Medium

Infection - bs.serving-sys.com/ bs.serving-sys.com

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:718[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Trackware.Tracking Cookies!rem

Type - Cookie

Risk Level - Medium

Infection - ad.yieldmanager.com/ ad.yieldmanager.com

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:906[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Application.TrackingCookies

Type - Cookie

Risk Level - Low

Infection - xiti.com/ xiti.com

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:19:906[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Application.TrackingCookies

Type - Cookie

Risk Level - Low

Infection - metriweb.be/ metriweb.be

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:19:906[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Application.TrackingCookies

Type - Cookie

Risk Level - Low

Infection - fl01.ct2.comclick.com/ fl01.ct2.comclick.com

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:20:234[/TD]

[TD=width: 25%]

Infection quarantined

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Threat Name - Application.Component.Keyloggers

Type - Registry Value

Risk Level - Elevated

Infection - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon, IgnoreShiftOveride

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:02:20:312[/TD]

[TD=width: 25%]

Infection cleaned

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Threat Name - Application.Component.Keyloggers

Type - Registry Value

Risk Level - Elevated

Infection - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon, IgnoreShiftOveride

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:02:23:265[/TD]

[TD=width: 25%]

Infections Quarantined/Removed Summary

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Quarantined - 57

Quarantine Failed - 0

Removed - 64

Remove Failed - 0

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:17:08:562[/TD]

[TD=width: 25%]

Het scannen is gestart

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Scantype - Inactieve scan

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]22/06/2011 13:17:23:609[/TD]

[TD=width: 25%]

Het scannen is voltooid

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Scantype - Inactieve scan

Verwerkte items - 0

Bedreigingen gedetecteerd - 0

Infecties gedetecteerd - 0

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]22/06/2011 13:22:12:453[/TD]

[TD=width: 25%]

Het scannen is gestart

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Scantype - Volledige scan

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]23/06/2011 15:15:31:46[/TD]

[TD=width: 25%]

De service is gestart

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Servicetoepassing Spyware Doctor is gestart[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]23/06/2011 15:15:31:46[/TD]

[TD=width: 25%]

Anti-malware-engine

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Configuratie anti-malware-engine geladen.[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]23/06/2011 15:15:32:125[/TD]

[TD=width: 25%]

Status IntelliGuard

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Alle IntelliGuards zijn ingeschakeld[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]23/06/2011 15:15:45:312[/TD]

[TD=width: 25%]

Resultaten Immunizer

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]ActiveX-sectie is immuun gemaakt. Er zijn geen items verwerkt.[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]23/06/2011 15:16:08:453[/TD]

[TD=width: 25%]

Behavior Guard

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]ThreatFire-engine geïnitialiseerd.[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=width: 25%]23/06/2011 15:16:50:78[/TD]

[TD=width: 25%]

Het scannen is gestart

[/TD]

[/TR]

[TR=bgcolor: #ffffff]

[TD=colspan: 4]Scantype - Intelli-Scan

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=width: 25%]23/06/2011 15:24:19:687[/TD]

[TD=width: 25%]

Het scannen is voltooid

[/TD]

[/TR]

[TR=bgcolor: #cccccc]

[TD=colspan: 4]Scantype - Intelli-Scan

Verwerkte items - 402901

Bedreigingen gedetecteerd - 0

Infecties gedetecteerd - 0

[/TD]

[/TR]

[/TABLE]

[/TD]

[/TR]

[TR]

[/TR]

[/TABLE]

Link naar reactie
Delen op andere sites

Download HijackThis (klik er op).

1. Klik bij "HijackThis Downloads" op "Installer".

Bestand HijackThis.msi opslaan. Daarna kiezen voor "uitvoeren".

Hijackthis wordt nu op je PC geïnstalleerd, een snelkoppeling wordt op je bureaublad geplaatst.

2. Klik op de snelkoppeling om HijackThis te starten.

Klik ofwel op "Do a systemscan and save a logfile", ofwel eerst op "Scan" en dan op "Savelog".

Er opent een kladblokvenster, hou gelijktijdig de CTRL en A-toets ingedrukt, nu is alles geselecteerd. Hou gelijktijdig de CTRL en C-toets ingedrukt, nu is alles gekopieerd.

3. Plak nu het HJT-logje in je volgende bericht hier op het forum door de CTRL en V-toets.

Belangrijke opmerkingen :

° Krijg je een melding "For some reason your system denied writing to the Host file ....", klik dan gewoon door op de OK-toets.

° Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\Program Files\Trend Micro\HiJackThis of C:\Program Files (x86)\Trend Micro\HiJackThis.

Extra info :

Dit (klik er op) filmpje kan je helpen om een HijackThis logje te plaatsen.

Na het plaatsen van je logje wordt dit door een expert (Kape of Kweezie Wabbit) nagekeken en begeleidt hij jou door het ganse proces.

Link naar reactie
Delen op andere sites

Logfile of Trend Micro HijackThis v2.0.3 (BETA)

Scan saved at 13:32:23, on 24/06/2011

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\PROGRA~1\AVG\AVG10\avgchsvx.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\Canon\MyPrinter\BJMyPrt.exe

C:\Program Files\AVG\AVG10\avgtray.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\PC Tools Security\BDT\FGuard.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\AVG\AVG10\avgwdsvc.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe

C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe

C:\Program Files\CDBurnerXP\NMSAccessU.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\AVG\AVG10\avgnsx.exe

C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\PROGRA~1\AVG\AVG10\avgrsx.exe

C:\Program Files\AVG\AVG10\avgcsrvx.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\DC++\DCPlusPlus.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen

R3 - URLSearchHook: PC Tools Browser Guard - {472734EA-242A-422b-ADF8-83D1E48CC825} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll

O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon

O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

O4 - HKLM\..\Run: [PCTools FGuard] C:\Program Files\PC Tools Security\BDT\FGuard.exe

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll

O9 - Extra 'Tools' menuitem: &KeyScrambler Options - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1275082291866

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1277307672656

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll

O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Browser Defender Update Service - Unknown owner - C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe

O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\PC Tools Security\pctsAuxs.exe

O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\PC Tools Security\pctsSvc.exe

O23 - Service: ThreatFire - PC Tools - C:\Program Files\PC Tools Security\TFEngine\TFService.exe

--

End of file - 10276 bytes

Link naar reactie
Delen op andere sites

Dit hijt logje ziet er goed uit. Waarschijnlijk omdat Spyware Doctor al een boel heeft opgeruimd.

We gaan nog een controleren met een andere tool.

Download MBAM (Malwarebytes Anti-Malware)

Dubbelklik op mbam-setup.exe om het programma te installeren.

Zorg ervoor dat er een vinkje geplaatst is voor Update Malwarebytes' Anti-Malware en Start Malwarebytes' Anti-Malware, Klik daarna op "Voltooien".

Indien een update gevonden werd, zal die gedownload en geïnstalleerd worden.

Wanneer het programma volledig up to date is, selecteer dan in het tabblad Scanner : "Snelle Scan", daarna klik op Scan.

Het scannen kan een tijdje duren, dus wees geduldig.

Wanneer de scan voltooid is, klik op OK, daarna "Bekijk Resultaten" om de resultaten te zien.

Zorg ervoor dat daar alles aangevinkt is, daarna klik op: Verwijder geselecteerde.

Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten. (Zie verder).

Indien er de rootkit (TDSS) aanwezig is, zal MBAM vragen te herstarten. Doe dit dan ook.

MBAM zal na de herstart opnieuw scannen en de rootkit verwijderen.

Het log wordt automatisch bewaard door MBAM en kan je terugvinden door op de "Logs" tab te klikken in het programma.

Indien MBAM moeilijkheden heeft met het verwijderen van bepaalde bestanden zal het enkele meldingen geven waar je OK moet klikken. Daarna zal het vragen om de computer opnieuw op te starten... dus sta toe dat MBAM de computer opnieuw opstart.

Plak de inhoud van het logje in je volgende bericht.

Link naar reactie
Delen op andere sites

Malwarebytes' Anti-Malware 1.51.0.1200

Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Databaseversie: 6944

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

25/06/2011 13:47:47

mbam-log-2011-06-25 (13-47-47).txt

Scantype: Snelle scan

Objecten gescand: 168309

Verstreken tijd: 12 minuut/minuten, 18 seconde(n)

Geheugenprocessen geïnfecteerd: 0

Geheugenmodulen geïnfecteerd: 0

Registersleutels geïnfecteerd: 0

Registerwaarden geïnfecteerd: 0

Registerdata geïnfecteerd: 0

Mappen geïnfecteerd: 0

Bestanden geïnfecteerd: 0

Geheugenprocessen geïnfecteerd:

(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen geïnfecteerd:

(Geen kwaadaardige objecten gedetecteerd)

Registersleutels geïnfecteerd:

(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden geïnfecteerd:

(Geen kwaadaardige objecten gedetecteerd)

Registerdata geïnfecteerd:

(Geen kwaadaardige objecten gedetecteerd)

Mappen geïnfecteerd:

(Geen kwaadaardige objecten gedetecteerd)

Bestanden geïnfecteerd:

(Geen kwaadaardige objecten gedetecteerd)

Link naar reactie
Delen op andere sites

thanks aan allen die mij weeral geholpen hebben :-)

voordat ik deze mail geplaatst had,had mijn moeder dus problemen met haar msn....als ze wilde kijken naar haar"postvak in" ,waren er problemen...ik heb dit opgelost door "firefox " op haar pc te zetten en de add on "webmail notifier" te plaatsen...dankzij deze "add on" kan ze probleemloos haar "postvak in" bekijken...en antispyware doctor(gekochte versie) heb ik op haar pc geïnstalleerd,dus zijn er geen problemen meer.

ik heb toch dit berichtje hier geplaatst om zeker te zijn dat haar pc zonder infecties zit.

nu blijkt dat dankzij jullie hulp,niet het geval!!!!!

nota:toch opmerkellijk hoe vlug spyware of malware kan binnendringen op een pc(zucht),m'n zegt wel eens freeware anti vrussen,freeware spyware....zijn even sterk dat betaalde versies...maar ik twijfel daar toch sterk aan hoor...ooit had ik gewoon avg antivirus (gratis dus) geen virus ofzo te bespeuren...ik heb gdata gekocht,die dan wel een virus vond...en op mijn moeders pc was dat ook het geval!!!!

groeten anatool!!!!

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.