Ir para conteúdo

Arquivado

Este tópico foi arquivado e está fechado para novas respostas.

tativi

[Arquivado] &nbspAnálise de LOG do HijackThis v2.0.4

Recommended Posts

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 15:58:44, on 24/9/2010

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.17055)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Documents and Settings\All Users\Dados de aplicativos\EPSON\EPW!3 SSRP\E_S40ST7.EXE

C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbguard.exe

C:\Arquivos de programas\LogMeIn\x86\RaMaint.exe

C:\Arquivos de programas\LogMeIn\x86\LogMeIn.exe

C:\Arquivos de programas\LogMeIn\x86\LMIGuardian.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbserver.exe

C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexingService.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\TEMP\winvonwp.exe

C:\WINDOWS\TEMP\winysksbi.exe

C:\WINDOWS\TEMP\w8ad40.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\RTHDCPL.EXE

C:\Arquivos de programas\LogMeIn\x86\LogMeInSystray.exe

C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe

C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEJL.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMBgMonitor.exe

C:\Arquivos de programas\LogMeIn\x86\LMIGuardian.exe

C:\WINDOWS\raidhost.exe

C:\WINDOWS\system32\wuauclt.exe

C:\ViteSoft\Admin\VSCyberAdmin.exe

C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe

C:\Arquivos de programas\Windows Live\Contacts\wlcomm.exe

C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE

C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexStoreSvr.exe

C:\Documents and Settings\Tati\Meus documentos\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orkut.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.codecguide.com/

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Arquivos de programas\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Arquivos de programas\Epson Software\Easy Photo Print\EPTBL.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Arquivos de programas\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll

O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Arquivos de programas\Epson Software\Easy Photo Print\EPTBL.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Arquivos de programas\LogMeIn\x86\LogMeInSystray.exe"

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [avast!] C:\ARQUIV~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [raidhost] raidhost.exe

O4 - HKCU\..\Run: [EPSON TX300F Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEJL.EXE /FU "C:\WINDOWS\TEMP\E_S1C5.tmp" /EF "HKCU"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [swg] C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Arquivos de programas\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html

O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARQUIV~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARQUIV~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe

O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Arquivos de programas\Microsoft Office\Office12\GrooveSystemServices.dll

O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Daemon de cache de categorias de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Arquivos de programas\AVG\AVG9\avgwdsvc.exe

O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Dados de aplicativos\EPSON\EPW!3 SSRP\E_S40ST7.EXE

O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbguard.exe

O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbserver.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Arquivos de programas\LogMeIn\x86\RaMaint.exe

O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Arquivos de programas\LogMeIn\x86\LogMeIn.exe

O23 - Service: NBService - Nero AG - C:\Arquivos de programas\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

 

--

End of file - 8730 bytes

 

 

 

 

 

 

Meu pc ta com muitos virus e nao consigo instalar nenhum antivirus, e o q tinha parou de funcionar...

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa Noite tativi!

 

1.

*Baixe o programa Sality_off'>http://support.kaspersky.com/downloads/utils/sality_off.zip"]Sality_off e salve-o no desktop

*Extraia o conteúdo de sality_off.zip para C:\

*Desative seu antivírus temporariamente

*Clique em Iniciar > Executar > digite: C:\Sality_off.exe -m

sality.jpg

*Clique OK

*Mantenha o programa rodando. Não feche esta janela!!...se desejar, minimize-a.

sality3.jpg

*Terminando...feche a janela do monitoramento da memória.

 

2.

*Agora, dê duplo clique no arquivo C:\Sality_off.exe e aguarde. Ao receber a mensagem "Pressione qualquer tecla para continuar...", tecle [ENTER]

*O programa será fechado automaticamente.

sality5.jpg

*Agora feche a janela do monitoramento da memória.

 

3.

*Baixe o programa DrWebCureIt'>ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe"]DrWebCureIt e salve-o no desktop

(Este antivírus é bom, pois permite limpar arquivos contaminados)

*Duplo clique em drweb-cureit.exe e instale o programa

*Clique em Iniciar e aguarde o scan inicial das áreas vitais do sistema terminar

*Caso encontre algo, clique em "Sim"

*Ao término, selecione a opção "Scan completo" e clique na seta verde ou azul

*Clique sempre "Sim" para a remoção

*Ao término, clique em "Arquivo" e salve o relatório no desktop

*Feche o DrWebCureIt e reinicie o PC

*A ferramenta de monitoramento (passo 1) será fechada automaticamente.

 

Novo Log do Hijackthis.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa Noite tativi!

 

1.

*Baixe o programa Sality_off'>http://support.kaspersky.com/downloads/utils/sality_off.zip"]Sality_off e salve-o no desktop

*Extraia o conteúdo de sality_off.zip para C:\

*Desative seu antivírus temporariamente

*Clique em Iniciar > Executar > digite: C:\Sality_off.exe -m

sality.jpg

*Clique OK

*Mantenha o programa rodando. Não feche esta janela!!...se desejar, minimize-a.

sality3.jpg

*Terminando...feche a janela do monitoramento da memória.

 

2.

*Agora, dê duplo clique no arquivo C:\Sality_off.exe e aguarde. Ao receber a mensagem "Pressione qualquer tecla para continuar...", tecle [ENTER]

*O programa será fechado automaticamente.

sality5.jpg

*Agora feche a janela do monitoramento da memória.

 

3.

*Baixe o programa DrWebCureIt'>ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe"]DrWebCureIt e salve-o no desktop

(Este antivírus é bom, pois permite limpar arquivos contaminados)

*Duplo clique em drweb-cureit.exe e instale o programa

*Clique em Iniciar e aguarde o scan inicial das áreas vitais do sistema terminar

*Caso encontre algo, clique em "Sim"

*Ao término, selecione a opção "Scan completo" e clique na seta verde ou azul

*Clique sempre "Sim" para a remoção

*Ao término, clique em "Arquivo" e salve o relatório no desktop

*Feche o DrWebCureIt e reinicie o PC

*A ferramenta de monitoramento (passo 1) será fechada automaticamente.

 

Novo Log do Hijackthis.

 

 

 

 

 

 

 

 

 

 

 

 

 

Novo log

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 17:19:28, on 1/10/2010

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.17055)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\RTHDCPL.EXE

C:\Arquivos de programas\LogMeIn\x86\LogMeInSystray.exe

C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe

C:\WINDOWS\FixCamera.exe

C:\WINDOWS\tsnp325.exe

C:\WINDOWS\vsnp325.exe

C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEJL.EXE

C:\Documents and Settings\All Users\Dados de aplicativos\EPSON\EPW!3 SSRP\E_S40ST7.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMBgMonitor.exe

C:\Arquivos de programas\LogMeIn\x86\LMIGuardian.exe

C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbguard.exe

C:\Arquivos de programas\LogMeIn\x86\RaMaint.exe

C:\Arquivos de programas\LogMeIn\x86\LogMeIn.exe

C:\Arquivos de programas\LogMeIn\x86\LMIGuardian.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbserver.exe

C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexingService.exe

C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexStoreSvr.exe

C:\WINDOWS\System32\svchost.exe

C:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe

C:\ViteSoft\Admin\VSCyberAdmin.exe

C:\Arquivos de programas\Windows Live\Contacts\wlcomm.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Arquivos de programas\Internet Explorer\iexplore.exe

C:\Documents and Settings\Tati\Meus documentos\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orkut.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.codecguide.com/

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Arquivos de programas\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Arquivos de programas\Epson Software\Easy Photo Print\EPTBL.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Arquivos de programas\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll

O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Arquivos de programas\Epson Software\Easy Photo Print\EPTBL.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Arquivos de programas\LogMeIn\x86\LogMeInSystray.exe"

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [avast!] C:\ARQUIV~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe

O4 - HKLM\..\Run: [tsnp325] C:\WINDOWS\tsnp325.exe

O4 - HKLM\..\Run: [snp325] C:\WINDOWS\vsnp325.exe

O4 - HKCU\..\Run: [EPSON TX300F Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEJL.EXE /FU "C:\WINDOWS\TEMP\E_S1C5.tmp" /EF "HKCU"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [swg] C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Arquivos de programas\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html

O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARQUIV~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\ARQUIV~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe

O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Arquivos de programas\Microsoft Office\Office12\GrooveSystemServices.dll

O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Daemon de cache de categorias de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Arquivos de programas\AVG\AVG9\avgwdsvc.exe

O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Dados de aplicativos\EPSON\EPW!3 SSRP\E_S40ST7.EXE

O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbguard.exe

O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbserver.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Arquivos de programas\LogMeIn\x86\RaMaint.exe

O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Arquivos de programas\LogMeIn\x86\LogMeIn.exe

O23 - Service: NBService - Nero AG - C:\Arquivos de programas\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

 

--

End of file - 8839 bytes

 

 

Obs.: Meu disco local C: e E: nao abre, aparece Hello World! e um botao pra clicar em OK.

Compartilhar este post


Link para o post
Compartilhar em outros sites

tativi,

 

Desculpa a demora, vamos dar continudiade!

 

- Faça o download do Flash'>http://www.pplware.com/downloads/software/Flash_Disinfector_www.pplware.com.rar"]Flash Desinfector

- Salve-o na área de trabalho e descompacte-o;

- Depois de um duplo clique em Flash_Disinfector.exe;

- Vá seguindo os prompts que poderão aparecer;

- Espere até que o programa conclua a busca e depois saia do programa;

- Reinicie o seu computador e veja se ainda ocorrem os problemas.

 

*Baixe o Kaspersky'>http://devbuilds.kaspersky-labs.com/devbuilds/AVPTool/"]Kaspersky Virus Removal Tool e salve-o no desktop

 

*Instale o programa

*A tela principal do programa será aberta automaticamente

*Selecione a opção:

[] Meu Computador

 

*Clique em [start scan]....aguarde. Pode demorar.

*Caso encontre algo, clique em [skip]

*Ao término do scan, clique em [Report]

*Uma janela chamada "Detailed report" será aberta

*Clique no sinal [+] ao lado de Autoscan para expandir os eventos encontrados

*Clique com o botão direito do mouse e selecione "Select all"

*Clique novamente com o botão direito do mouse e selecione "Copy"

*Abra o bloco de notas e cole (Ctrl+v) e salve o arquivo no desktop como log.txt

*Feche a janela "Detailed report" do Kasperky

*Na tela principal do Kaspersky clique em [Exit] > [No]

*Cole o relatório salvo no desktop na sua próxima resposta

 

No aguardo!

Compartilhar este post


Link para o post
Compartilhar em outros sites

Autoscan: completed 4 minutes ago (events: 612, objects: 188222, time: 01:10:10)

9/10/2010 10:53:19 Task started

9/10/2010 10:56:22 Detected: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\windnvgc.exe

9/10/2010 10:56:51 Untreated: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\windnvgc.exe Skipped by user

9/10/2010 10:56:51 Detected: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\obamp.exe

9/10/2010 10:57:06 Untreated: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\obamp.exe Skipped by user

9/10/2010 10:57:08 Detected: Backdoor.Win32.Mazben.dz C:\WINDOWS\Temp\winmwhjw.exe

9/10/2010 10:57:10 Untreated: Backdoor.Win32.Mazben.dz C:\WINDOWS\Temp\winmwhjw.exe Skipped by user

9/10/2010 10:59:15 Detected: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\windnvgc.exe

9/10/2010 10:59:15 Detected: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\obamp.exe

9/10/2010 10:59:15 Detected: Backdoor.Win32.Mazben.dz C:\WINDOWS\Temp\winmwhjw.exe

9/10/2010 10:59:20 Untreated: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\windnvgc.exe Skipped by user

9/10/2010 10:59:22 Untreated: Backdoor.Win32.Mazben.dz C:\WINDOWS\Temp\winmwhjw.exe Skipped by user

9/10/2010 10:59:23 Untreated: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\obamp.exe Skipped by user

9/10/2010 10:59:28 Detected: Trojan-Dropper.Win32.Agent.yat C:\76758f7687e35942f805f040cf9b40\spuninst.exe/#

9/10/2010 11:00:22 Untreated: Trojan-Dropper.Win32.Agent.yat C:\76758f7687e35942f805f040cf9b40\spuninst.exe/# Write not supported

9/10/2010 11:03:49 Detected: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\obamp.exe

9/10/2010 11:03:51 Detected: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\windnvgc.exe

9/10/2010 11:03:51 Detected: Trojan-Dropper.Win32.Sality.bo C:\Documents and Settings\Tati\Configurações locais\Temp\winklavt.exe

9/10/2010 11:04:03 Untreated: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\obamp.exe Skipped by user

9/10/2010 11:04:05 Untreated: Trojan-Dropper.Win32.Sality.bo C:\Documents and Settings\Tati\Configurações locais\Temp\winklavt.exe Skipped by user

9/10/2010 11:04:06 Untreated: Backdoor.Win32.Mazben.dz C:\Documents and Settings\Tati\Configurações locais\Temp\windnvgc.exe Skipped by user

9/10/2010 11:10:34 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\09_Music_played_the_most.wpl.lnk

9/10/2010 11:10:34 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\11_All_Pictures.wpl.lnk

9/10/2010 11:10:37 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\09_Music_played_the_most.wpl.lnk Skipped by user

9/10/2010 11:10:38 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0000851.lnk

9/10/2010 11:10:38 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\11_All_Pictures.wpl.lnk Skipped by user

9/10/2010 11:10:39 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0000852.lnk

9/10/2010 11:10:39 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0000853.lnk

9/10/2010 11:10:40 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0000851.lnk Skipped by user

9/10/2010 11:10:40 Detected: Trojan-Spy.Win32.Zbot.amiy C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001433.exe

9/10/2010 11:10:41 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0000852.lnk Skipped by user

9/10/2010 11:10:42 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001444.exe/UPX

9/10/2010 11:10:43 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0000853.lnk Skipped by user

9/10/2010 11:10:43 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001471.lnk

9/10/2010 11:10:44 Untreated: Trojan-Spy.Win32.Zbot.amiy C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001433.exe Skipped by user

9/10/2010 11:10:44 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001472.lnk

9/10/2010 11:10:45 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001444.exe/UPX Skipped by user

9/10/2010 11:10:45 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001471.lnk Skipped by user

9/10/2010 11:10:46 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001473.lnk

9/10/2010 11:10:46 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001472.lnk Skipped by user

9/10/2010 11:10:46 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001474.lnk

9/10/2010 11:10:46 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001473.lnk Skipped by user

9/10/2010 11:10:46 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001475.lnk

9/10/2010 11:10:47 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001474.lnk Skipped by user

9/10/2010 11:10:47 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001476.lnk

9/10/2010 11:10:47 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001475.lnk Skipped by user

9/10/2010 11:10:47 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001477.lnk

9/10/2010 11:10:48 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001476.lnk Skipped by user

9/10/2010 11:10:48 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001478.lnk

9/10/2010 11:10:48 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001477.lnk Skipped by user

9/10/2010 11:10:49 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001479.lnk

9/10/2010 11:10:49 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001480.lnk

9/10/2010 11:10:49 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001478.lnk Skipped by user

9/10/2010 11:10:50 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001481.lnk

9/10/2010 11:10:50 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001480.lnk Skipped by user

9/10/2010 11:10:51 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001482.lnk

9/10/2010 11:10:54 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001479.lnk Skipped by user

9/10/2010 11:10:54 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001483.lnk

9/10/2010 11:10:55 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001482.lnk Skipped by user

9/10/2010 11:10:55 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001484.lnk

9/10/2010 11:10:56 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001481.lnk Skipped by user

9/10/2010 11:10:56 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001485.lnk

9/10/2010 11:10:57 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001484.lnk Skipped by user

9/10/2010 11:10:57 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001486.lnk

9/10/2010 11:10:58 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001483.lnk Skipped by user

9/10/2010 11:10:59 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001486.lnk Skipped by user

9/10/2010 11:11:00 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0001485.lnk Skipped by user

9/10/2010 11:11:01 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0002500.exe/UPX

9/10/2010 11:11:01 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0003430.exe/UPX

9/10/2010 11:11:02 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0004566.exe/UPX

9/10/2010 11:11:03 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0002500.exe/UPX Skipped by user

9/10/2010 11:11:03 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0005598.exe/UPX

9/10/2010 11:11:03 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0003430.exe/UPX Skipped by user

9/10/2010 11:11:03 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0008571.lnk

9/10/2010 11:11:04 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0004566.exe/UPX Skipped by user

9/10/2010 11:11:04 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0008574.lnk

9/10/2010 11:11:04 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0005598.exe/UPX Skipped by user

9/10/2010 11:11:05 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0008571.lnk Skipped by user

9/10/2010 11:11:05 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0009551.exe/UPX

9/10/2010 11:11:05 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0008574.lnk Skipped by user

9/10/2010 11:11:06 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0011897.exe/UPX

9/10/2010 11:11:06 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0009551.exe/UPX Skipped by user

9/10/2010 11:11:07 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0011897.exe/UPX Skipped by user

9/10/2010 11:11:07 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014098.lnk

9/10/2010 11:11:08 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014098.lnk Skipped by user

9/10/2010 11:11:09 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014099.lnk

9/10/2010 11:11:10 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014099.lnk Skipped by user

9/10/2010 11:11:11 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0012894.exe/UPX

9/10/2010 11:11:11 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014100.lnk

9/10/2010 11:11:12 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0012894.exe/UPX Skipped by user

9/10/2010 11:11:12 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0013894.exe/UPX

9/10/2010 11:11:13 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014103.lnk

9/10/2010 11:11:13 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014100.lnk Skipped by user

9/10/2010 11:11:13 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014104.lnk

9/10/2010 11:11:14 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014103.lnk Skipped by user

9/10/2010 11:11:14 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014105.lnk

9/10/2010 11:11:15 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0013894.exe/UPX Skipped by user

9/10/2010 11:11:15 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014105.lnk Skipped by user

9/10/2010 11:11:15 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014106.lnk

9/10/2010 11:11:16 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014104.lnk Skipped by user

9/10/2010 11:11:16 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014107.lnk

9/10/2010 11:11:16 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014106.lnk Skipped by user

9/10/2010 11:11:17 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014108.lnk

9/10/2010 11:11:17 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014107.lnk Skipped by user

9/10/2010 11:11:17 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014109.lnk

9/10/2010 11:11:17 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014108.lnk Skipped by user

9/10/2010 11:11:18 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014110.lnk

9/10/2010 11:11:18 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014109.lnk Skipped by user

9/10/2010 11:11:18 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014111.lnk

9/10/2010 11:11:19 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014110.lnk Skipped by user

9/10/2010 11:11:19 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014112.lnk

9/10/2010 11:11:19 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014111.lnk Skipped by user

9/10/2010 11:11:20 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014112.lnk Skipped by user

9/10/2010 11:11:20 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018215.lnk

9/10/2010 11:11:20 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018216.lnk

9/10/2010 11:11:21 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018215.lnk Skipped by user

9/10/2010 11:11:21 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018228.lnk

9/10/2010 11:11:22 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018216.lnk Skipped by user

9/10/2010 11:11:22 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018228.lnk Skipped by user

9/10/2010 11:11:23 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018229.lnk

9/10/2010 11:11:23 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018229.lnk Skipped by user

9/10/2010 11:11:23 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018230.lnk

9/10/2010 11:11:24 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018230.lnk Skipped by user

9/10/2010 11:11:24 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018231.lnk

9/10/2010 11:11:24 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014895.exe/UPX

9/10/2010 11:11:24 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018231.lnk Skipped by user

9/10/2010 11:11:24 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018232.lnk

9/10/2010 11:11:25 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0014895.exe/UPX Skipped by user

9/10/2010 11:11:25 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018233.lnk

9/10/2010 11:11:25 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018232.lnk Skipped by user

9/10/2010 11:11:25 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018234.lnk

9/10/2010 11:11:26 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018233.lnk Skipped by user

9/10/2010 11:11:26 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018235.lnk

9/10/2010 11:11:26 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018234.lnk Skipped by user

9/10/2010 11:11:26 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018236.lnk

9/10/2010 11:11:27 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018237.lnk

9/10/2010 11:11:28 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018235.lnk Skipped by user

9/10/2010 11:11:29 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018238.lnk

9/10/2010 11:11:29 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018237.lnk Skipped by user

9/10/2010 11:11:29 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018239.lnk

9/10/2010 11:11:29 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018236.lnk Skipped by user

9/10/2010 11:11:30 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018240.lnk

9/10/2010 11:11:37 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018239.lnk Skipped by user

9/10/2010 11:11:37 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0019076.exe/UPX

9/10/2010 11:11:37 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018238.lnk Skipped by user

9/10/2010 11:11:37 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0019593.lnk

9/10/2010 11:11:38 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0019076.exe/UPX Skipped by user

9/10/2010 11:11:38 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021209.exe/UPX

9/10/2010 11:11:38 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0018240.lnk Skipped by user

9/10/2010 11:11:38 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021547.lnk

9/10/2010 11:11:39 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021209.exe/UPX Skipped by user

9/10/2010 11:11:39 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0019593.lnk Skipped by user

9/10/2010 11:11:40 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021548.lnk

9/10/2010 11:11:40 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021547.lnk Skipped by user

9/10/2010 11:11:40 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021549.lnk

9/10/2010 11:11:41 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021550.lnk

9/10/2010 11:11:41 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021548.lnk Skipped by user

9/10/2010 11:11:41 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021551.lnk

9/10/2010 11:11:42 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021549.lnk Skipped by user

9/10/2010 11:11:43 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021552.lnk

9/10/2010 11:11:43 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021550.lnk Skipped by user

9/10/2010 11:11:44 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021553.lnk

9/10/2010 11:11:44 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021552.lnk Skipped by user

9/10/2010 11:11:45 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021554.lnk

9/10/2010 11:11:45 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021551.lnk Skipped by user

9/10/2010 11:11:46 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021555.lnk

9/10/2010 11:11:46 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021553.lnk Skipped by user

9/10/2010 11:11:47 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021556.lnk

9/10/2010 11:11:47 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021554.lnk Skipped by user

9/10/2010 11:11:47 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021557.lnk

9/10/2010 11:11:47 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021555.lnk Skipped by user

9/10/2010 11:11:48 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021556.lnk Skipped by user

9/10/2010 11:11:48 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021558.lnk

9/10/2010 11:11:49 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021559.lnk

9/10/2010 11:11:49 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021557.lnk Skipped by user

9/10/2010 11:11:49 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021560.lnk

9/10/2010 11:11:49 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021558.lnk Skipped by user

9/10/2010 11:11:51 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021559.lnk Skipped by user

9/10/2010 11:11:51 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021560.lnk Skipped by user

9/10/2010 11:11:52 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023337.lnk

9/10/2010 11:11:53 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023337.lnk Skipped by user

9/10/2010 11:11:53 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023339.lnk

9/10/2010 11:11:54 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023339.lnk Skipped by user

9/10/2010 11:11:55 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023340.lnk

9/10/2010 11:11:55 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021578.exe/UPX

9/10/2010 11:11:55 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023340.lnk Skipped by user

9/10/2010 11:11:56 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023341.lnk

9/10/2010 11:11:56 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021982.exe/UPX

9/10/2010 11:11:56 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021578.exe/UPX Skipped by user

9/10/2010 11:11:57 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023342.lnk

9/10/2010 11:11:58 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023341.lnk Skipped by user

9/10/2010 11:11:59 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023343.lnk

9/10/2010 11:11:59 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0021982.exe/UPX Skipped by user

9/10/2010 11:12:00 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023343.lnk Skipped by user

9/10/2010 11:12:00 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023344.lnk

9/10/2010 11:12:00 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023346.lnk

9/10/2010 11:12:00 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023342.lnk Skipped by user

9/10/2010 11:12:01 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023344.lnk Skipped by user

9/10/2010 11:12:01 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023347.lnk

9/10/2010 11:12:02 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023356.lnk

9/10/2010 11:12:02 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023346.lnk Skipped by user

9/10/2010 11:12:02 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023357.lnk

9/10/2010 11:12:02 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023347.lnk Skipped by user

9/10/2010 11:12:03 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023358.lnk

9/10/2010 11:12:03 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023356.lnk Skipped by user

9/10/2010 11:12:04 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023359.lnk

9/10/2010 11:12:04 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023358.lnk Skipped by user

9/10/2010 11:12:05 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023360.lnk

9/10/2010 11:12:05 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023357.lnk Skipped by user

9/10/2010 11:12:06 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023359.lnk Skipped by user

9/10/2010 11:12:07 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023366.exe/UPX

9/10/2010 11:12:07 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0028769.exe/UPX

9/10/2010 11:12:07 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023360.lnk Skipped by user

9/10/2010 11:12:07 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029121.lnk

9/10/2010 11:12:08 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0023366.exe/UPX Skipped by user

9/10/2010 11:12:09 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0028769.exe/UPX Skipped by user

9/10/2010 11:12:09 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029145.lnk

9/10/2010 11:12:10 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029146.lnk

9/10/2010 11:12:12 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029121.lnk Skipped by user

9/10/2010 11:12:12 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029147.lnk

9/10/2010 11:12:13 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029145.lnk Skipped by user

9/10/2010 11:12:13 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029148.lnk

9/10/2010 11:12:14 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029146.lnk Skipped by user

9/10/2010 11:12:14 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029149.lnk

9/10/2010 11:12:17 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029148.lnk Skipped by user

9/10/2010 11:12:18 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029150.lnk

9/10/2010 11:12:18 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029147.lnk Skipped by user

9/10/2010 11:12:19 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029150.lnk Skipped by user

9/10/2010 11:12:19 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029151.lnk

9/10/2010 11:12:19 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029149.lnk Skipped by user

9/10/2010 11:12:19 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029152.lnk

9/10/2010 11:12:20 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029151.lnk Skipped by user

9/10/2010 11:12:20 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029153.lnk

9/10/2010 11:12:21 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029152.lnk Skipped by user

9/10/2010 11:12:21 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029154.lnk

9/10/2010 11:12:21 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029155.lnk

9/10/2010 11:12:21 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029153.lnk Skipped by user

9/10/2010 11:12:22 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029156.lnk

9/10/2010 11:12:27 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029154.lnk Skipped by user

9/10/2010 11:12:28 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029157.lnk

9/10/2010 11:12:34 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029155.lnk Skipped by user

9/10/2010 11:12:35 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029158.lnk

9/10/2010 11:12:36 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029156.lnk Skipped by user

9/10/2010 11:12:36 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029158.lnk Skipped by user

9/10/2010 11:12:37 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029157.lnk Skipped by user

9/10/2010 11:12:38 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030397.lnk

9/10/2010 11:12:38 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030397.lnk Skipped by user

9/10/2010 11:12:39 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030398.lnk

9/10/2010 11:12:40 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030398.lnk Skipped by user

9/10/2010 11:12:41 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030399.lnk

9/10/2010 11:12:41 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029164.exe/UPX

9/10/2010 11:12:41 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030399.lnk Skipped by user

9/10/2010 11:12:42 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029815.exe/UPX

9/10/2010 11:12:42 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030400.lnk

9/10/2010 11:12:44 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029164.exe/UPX Skipped by user

9/10/2010 11:12:44 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030401.lnk

9/10/2010 11:12:45 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030400.lnk Skipped by user

9/10/2010 11:12:45 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030402.lnk

9/10/2010 11:12:46 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0029815.exe/UPX Skipped by user

9/10/2010 11:12:47 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030403.lnk

9/10/2010 11:12:49 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030401.lnk Skipped by user

9/10/2010 11:12:50 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030402.lnk Skipped by user

9/10/2010 11:12:50 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030404.lnk

9/10/2010 11:12:50 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030405.lnk

9/10/2010 11:12:51 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030403.lnk Skipped by user

9/10/2010 11:12:51 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030406.lnk

9/10/2010 11:12:52 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030405.lnk Skipped by user

9/10/2010 11:12:52 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030407.lnk

9/10/2010 11:12:53 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030404.lnk Skipped by user

9/10/2010 11:12:53 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030408.lnk

9/10/2010 11:12:53 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030406.lnk Skipped by user

9/10/2010 11:12:59 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030414.exe/UPX

9/10/2010 11:14:01 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030407.lnk Skipped by user

9/10/2010 11:14:01 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030725.lnk

9/10/2010 11:14:01 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030414.exe/UPX Skipped by user

9/10/2010 11:14:01 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030825.lnk

9/10/2010 11:14:02 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030408.lnk Skipped by user

9/10/2010 11:14:02 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030825.lnk Skipped by user

9/10/2010 11:14:03 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030826.lnk

9/10/2010 11:14:03 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030725.lnk Skipped by user

9/10/2010 11:14:03 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030827.lnk

9/10/2010 11:14:03 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030826.lnk Skipped by user

9/10/2010 11:14:04 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030828.lnk

9/10/2010 11:14:04 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030827.lnk Skipped by user

9/10/2010 11:14:04 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030829.lnk

9/10/2010 11:14:04 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030828.lnk Skipped by user

9/10/2010 11:14:05 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030830.lnk

9/10/2010 11:14:05 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030829.lnk Skipped by user

9/10/2010 11:14:05 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030831.lnk

9/10/2010 11:14:05 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030830.lnk Skipped by user

9/10/2010 11:14:06 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030832.lnk

9/10/2010 11:14:06 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030831.lnk Skipped by user

9/10/2010 11:14:06 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030833.lnk

9/10/2010 11:14:06 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030832.lnk Skipped by user

9/10/2010 11:14:07 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030834.lnk

9/10/2010 11:14:07 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030833.lnk Skipped by user

9/10/2010 11:14:07 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030835.lnk

9/10/2010 11:14:07 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030834.lnk Skipped by user

9/10/2010 11:14:07 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030836.lnk

9/10/2010 11:14:07 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030835.lnk Skipped by user

9/10/2010 11:14:08 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030837.lnk

9/10/2010 11:14:08 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030836.lnk Skipped by user

9/10/2010 11:14:08 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030838.lnk

9/10/2010 11:14:13 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030847.exe/UPX

9/10/2010 11:16:36 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030837.lnk Skipped by user

9/10/2010 11:16:36 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031170.lnk

9/10/2010 11:16:56 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030847.exe/UPX Skipped by user

9/10/2010 11:16:57 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031171.lnk

9/10/2010 11:17:14 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0030838.lnk Skipped by user

9/10/2010 11:17:14 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031172.lnk

9/10/2010 11:17:15 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031171.lnk Skipped by user

9/10/2010 11:17:15 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031170.lnk Skipped by user

9/10/2010 11:17:15 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031173.lnk

9/10/2010 11:17:16 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031172.lnk Skipped by user

9/10/2010 11:17:16 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031174.lnk

9/10/2010 11:17:16 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031173.lnk Skipped by user

9/10/2010 11:17:16 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031175.lnk

9/10/2010 11:17:17 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031174.lnk Skipped by user

9/10/2010 11:17:17 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031176.lnk

9/10/2010 11:17:17 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031175.lnk Skipped by user

9/10/2010 11:17:17 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031177.lnk

9/10/2010 11:17:18 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031176.lnk Skipped by user

9/10/2010 11:17:18 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031178.lnk

9/10/2010 11:17:18 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031177.lnk Skipped by user

9/10/2010 11:17:18 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031179.lnk

9/10/2010 11:17:18 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031178.lnk Skipped by user

9/10/2010 11:17:19 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031180.lnk

9/10/2010 11:17:19 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031179.lnk Skipped by user

9/10/2010 11:17:19 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031181.lnk

9/10/2010 11:17:19 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031180.lnk Skipped by user

9/10/2010 11:17:20 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031182.lnk

9/10/2010 11:17:20 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031181.lnk Skipped by user

9/10/2010 11:17:20 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031183.lnk

9/10/2010 11:17:21 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031182.lnk Skipped by user

9/10/2010 11:17:21 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031185.lnk

9/10/2010 11:17:21 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031186.lnk

9/10/2010 11:17:21 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031183.lnk Skipped by user

9/10/2010 11:17:22 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031187.lnk

9/10/2010 11:17:23 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031186.lnk Skipped by user

9/10/2010 11:17:23 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031185.lnk Skipped by user

9/10/2010 11:17:23 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031188.lnk

9/10/2010 11:17:24 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031189.lnk

9/10/2010 11:17:24 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031187.lnk Skipped by user

9/10/2010 11:17:25 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031188.lnk Skipped by user

9/10/2010 11:17:25 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031190.lnk

9/10/2010 11:17:25 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031189.lnk Skipped by user

9/10/2010 11:17:25 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031191.lnk

9/10/2010 11:17:26 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031192.lnk

9/10/2010 11:17:26 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031190.lnk Skipped by user

9/10/2010 11:17:27 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031193.lnk

9/10/2010 11:17:27 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031191.lnk Skipped by user

9/10/2010 11:17:28 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031194.lnk

9/10/2010 11:17:29 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031192.lnk Skipped by user

9/10/2010 11:17:29 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\AlbumArt_{E201F44C-B9E2-490F-9ED7-0976E9DA2EA5}_Small.jpg.lnk

9/10/2010 11:17:29 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031194.lnk Skipped by user

9/10/2010 11:17:29 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\AlbumArt_{EFFDEB51-C913-4EE1-8B2A-C80112057955}_Large.jpg.lnk

9/10/2010 11:17:30 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\A0031193.lnk Skipped by user

9/10/2010 11:17:30 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Aline.lnk

9/10/2010 11:17:31 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\AlbumArt_{EFFDEB51-C913-4EE1-8B2A-C80112057955}_Large.jpg.lnk Skipped by user

9/10/2010 11:17:31 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Copy of New File.lnk

9/10/2010 11:17:31 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\AlbumArt_{E201F44C-B9E2-490F-9ED7-0976E9DA2EA5}_Small.jpg.lnk Skipped by user

9/10/2010 11:17:32 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Copy of New File.lnk Skipped by user

9/10/2010 11:17:32 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Copy of Shortcut.lnk

9/10/2010 11:17:32 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Aline.lnk Skipped by user

9/10/2010 11:17:33 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Copy of Shortcut.lnk Skipped by user

9/10/2010 11:17:33 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\desktop.in0.lnk

9/10/2010 11:17:34 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\desktop.in0.lnk Skipped by user

9/10/2010 11:17:34 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\desktop.in1.lnk

9/10/2010 11:17:34 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\desktop.in1.lnk Skipped by user

9/10/2010 11:17:34 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Desktop.in2.lnk

9/10/2010 11:17:35 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\desktop.ini.lnk

9/10/2010 11:17:35 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\groom.av0.lnk

9/10/2010 11:17:35 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Desktop.in2.lnk Skipped by user

9/10/2010 11:17:36 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\desktop.ini.lnk Skipped by user

9/10/2010 11:17:36 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\groom.avi.lnk

9/10/2010 11:17:36 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\groom.av0.lnk Skipped by user

9/10/2010 11:17:36 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Inverno.jpg.lnk

9/10/2010 11:17:37 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\groom.avi.lnk Skipped by user

9/10/2010 11:17:37 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Inverno.jpg.lnk Skipped by user

9/10/2010 11:17:38 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Mercúrio é o menor e mais interno planeta do Sistema Solar.doc.lnk

9/10/2010 11:17:39 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Mercúrio é o menor e mais interno planeta do Sistema Solar.doc.lnk Skipped by user

9/10/2010 11:17:40 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Meus vídeos.lnk

9/10/2010 11:17:41 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Meus vídeos.lnk Skipped by user

9/10/2010 11:17:42 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\microsoft.lnk

9/10/2010 11:17:46 Detected: Worm.Win32.AutoIt.tq C:\Documents and Settings\Tati\DoctorWeb\Quarantine\lsass.exe/UPX/script.au3

9/10/2010 11:17:46 Detected: Worm.Win32.AutoIt.tq C:\Documents and Settings\Tati\DoctorWeb\Quarantine\lsass__0.exe/UPX/script.au3

9/10/2010 11:17:48 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\microsoft.lnk Skipped by user

9/10/2010 11:17:48 Untreated: Worm.Win32.AutoIt.tq C:\Documents and Settings\Tati\DoctorWeb\Quarantine\lsass__0.exe/UPX/script.au3 Write not supported

9/10/2010 11:17:48 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Minhas imagen0.lnk

9/10/2010 11:17:49 Untreated: Worm.Win32.AutoIt.tq C:\Documents and Settings\Tati\DoctorWeb\Quarantine\lsass.exe/UPX/script.au3 Write not supported

9/10/2010 11:17:50 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Minhas imagen0.lnk Skipped by user

9/10/2010 11:17:50 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Minhas imagens.lnk

9/10/2010 11:17:51 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Minhas imagens.lnk Skipped by user

9/10/2010 11:17:51 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Minhas músicas.lnk

9/10/2010 11:17:54 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Ninféias.jpg.lnk

9/10/2010 11:17:54 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Pussy.avi.lnk

9/10/2010 11:18:05 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Minhas músicas.lnk Skipped by user

9/10/2010 11:18:05 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\rebecca.jpg.lnk

9/10/2010 11:18:07 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Ninféias.jpg.lnk Skipped by user

9/10/2010 11:18:08 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\Pussy.avi.lnk Skipped by user

9/10/2010 11:18:09 Detected: Trojan-Dropper.Win32.Sality.r C:\Documents and Settings\Tati\DoctorWeb\Quarantine\z4cceb.tmp

9/10/2010 11:18:10 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\rebecca.jpg.lnk Skipped by user

9/10/2010 11:18:10 Detected: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\~$arbono.doc.lnk

9/10/2010 11:18:10 Untreated: Trojan-Dropper.Win32.Sality.r C:\Documents and Settings\Tati\DoctorWeb\Quarantine\z4cceb.tmp Skipped by user

9/10/2010 11:18:13 Detected: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\w961ea.exe/UPX

9/10/2010 11:18:14 Untreated: Exploit.Win32.CVE-2010-2568.d C:\Documents and Settings\Tati\DoctorWeb\Quarantine\~$arbono.doc.lnk Skipped by user

9/10/2010 11:18:16 Untreated: Backdoor.Win32.Spammy.ca C:\Documents and Settings\Tati\DoctorWeb\Quarantine\w961ea.exe/UPX Skipped by user

9/10/2010 11:18:34 Detected: Trojan-Dropper.Win32.Sality.al C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP10\A0000543.exe

9/10/2010 11:18:35 Untreated: Trojan-Dropper.Win32.Sality.al C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP10\A0000543.exe Skipped by user

9/10/2010 11:19:34 Detected: Trojan-Dropper.Win32.Sality.al C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP23\A0004435.exe

9/10/2010 11:20:40 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0008549.exe

9/10/2010 11:20:40 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0008551.exe

9/10/2010 11:21:20 Untreated: Trojan-Dropper.Win32.Sality.al C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP23\A0004435.exe Skipped by user

9/10/2010 11:21:20 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0008553.exe

9/10/2010 11:21:21 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0008551.exe Skipped by user

9/10/2010 11:21:22 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0008549.exe Skipped by user

9/10/2010 11:21:22 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0008553.exe Skipped by user

9/10/2010 11:21:26 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0009552.exe

9/10/2010 11:21:26 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0009549.exe/#

9/10/2010 11:21:27 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0009552.exe Skipped by user

9/10/2010 11:21:27 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0009549.exe/# Write not supported

9/10/2010 11:21:29 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010559.exe/#

9/10/2010 11:21:30 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010559.exe/# Write not supported

9/10/2010 11:22:01 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010836.exe

9/10/2010 11:22:01 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010838.exe

9/10/2010 11:22:02 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010839.exe

9/10/2010 11:22:21 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010836.exe Skipped by user

9/10/2010 11:22:22 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010838.exe Skipped by user

9/10/2010 11:22:22 Detected: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010875.exe

9/10/2010 11:22:22 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010839.exe Skipped by user

9/10/2010 11:22:23 Untreated: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010875.exe Skipped by user

9/10/2010 11:22:25 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010894.exe

9/10/2010 11:22:26 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0010894.exe Skipped by user

9/10/2010 11:22:28 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0011898.exe

9/10/2010 11:22:28 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0011894.exe

9/10/2010 11:22:29 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0011894.exe Skipped by user

9/10/2010 11:22:29 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0011909.exe/#

9/10/2010 11:22:35 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0011898.exe Skipped by user

9/10/2010 11:22:36 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0011909.exe/# Write not supported

9/10/2010 11:22:38 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0012895.exe

9/10/2010 11:22:38 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0012907.exe/#

9/10/2010 11:23:15 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013174.exe

9/10/2010 11:23:24 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0012895.exe Skipped by user

9/10/2010 11:23:25 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013174.exe Skipped by user

9/10/2010 11:23:25 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013176.exe

9/10/2010 11:23:26 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0012907.exe/# Write not supported

9/10/2010 11:23:26 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013176.exe Skipped by user

9/10/2010 11:23:27 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013177.exe

9/10/2010 11:23:28 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013177.exe Skipped by user

9/10/2010 11:23:33 Detected: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013213.exe

9/10/2010 11:23:33 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013896.exe

9/10/2010 11:23:33 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013907.exe/#

9/10/2010 11:23:43 Untreated: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013213.exe Skipped by user

9/10/2010 11:23:47 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013907.exe/# Write not supported

9/10/2010 11:23:48 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0013896.exe Skipped by user

9/10/2010 11:24:16 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014191.exe

9/10/2010 11:24:17 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014193.exe

9/10/2010 11:24:18 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014194.exe

9/10/2010 11:24:25 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014191.exe Skipped by user

9/10/2010 11:24:26 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014194.exe Skipped by user

9/10/2010 11:24:26 Detected: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014234.exe

9/10/2010 11:24:26 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014193.exe Skipped by user

9/10/2010 11:24:27 Untreated: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014234.exe Skipped by user

9/10/2010 11:24:27 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014896.exe

9/10/2010 11:24:28 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014896.exe Skipped by user

9/10/2010 11:24:28 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014905.exe/#

9/10/2010 11:24:30 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP27\A0014905.exe/# Write not supported

9/10/2010 11:24:50 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0015061.exe/#

9/10/2010 11:24:52 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0015061.exe/# Write not supported

9/10/2010 11:25:15 Detected: Virus.Win32.Sality.bh C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0015518.exe

9/10/2010 11:25:58 Detected: Virus.Win32.Sality.bh C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0016351.exe

9/10/2010 11:26:12 Untreated: Virus.Win32.Sality.bh C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0015518.exe Skipped by user

9/10/2010 11:26:12 Untreated: Virus.Win32.Sality.bh C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0016351.exe Skipped by user

9/10/2010 11:26:41 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0018097.exe

9/10/2010 11:26:43 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0018099.exe

9/10/2010 11:26:44 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0018100.exe

9/10/2010 11:29:13 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0018097.exe Skipped by user

9/10/2010 11:29:14 Detected: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0018136.exe

9/10/2010 11:29:16 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0018099.exe Skipped by user

9/10/2010 11:29:16 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0018100.exe Skipped by user

9/10/2010 11:29:17 Untreated: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP28\A0018136.exe Skipped by user

9/10/2010 11:30:24 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP29\A0019075.exe

9/10/2010 11:30:27 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP29\A0019097.exe/#

9/10/2010 11:30:39 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0019226.exe/#

9/10/2010 11:30:41 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP29\A0019075.exe Skipped by user

9/10/2010 11:30:41 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0019226.exe/# Write not supported

9/10/2010 11:30:42 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP29\A0019097.exe/# Write not supported

9/10/2010 11:31:35 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0019539.exe

9/10/2010 11:31:36 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0019541.exe

9/10/2010 11:31:36 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0019542.exe

9/10/2010 11:31:39 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0019539.exe Skipped by user

9/10/2010 11:31:40 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0019541.exe Skipped by user

9/10/2010 11:31:41 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0019542.exe Skipped by user

9/10/2010 11:31:42 Detected: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0019582.exe

9/10/2010 11:31:45 Untreated: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0019582.exe Skipped by user

9/10/2010 11:31:46 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0020209.exe

9/10/2010 11:31:47 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0020209.exe Skipped by user

9/10/2010 11:31:50 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021224.exe/#

9/10/2010 11:31:50 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021224.exe/# Write not supported

9/10/2010 11:32:29 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021499.exe

9/10/2010 11:32:30 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021501.exe

9/10/2010 11:32:31 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021502.exe

9/10/2010 11:32:31 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021499.exe Skipped by user

9/10/2010 11:32:34 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021501.exe Skipped by user

9/10/2010 11:32:35 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021502.exe Skipped by user

9/10/2010 11:32:36 Detected: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021538.exe

9/10/2010 11:32:37 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021580.exe

9/10/2010 11:32:38 Untreated: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021538.exe Skipped by user

9/10/2010 11:32:39 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP30\A0021580.exe Skipped by user

9/10/2010 11:32:39 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0021594.exe/#

9/10/2010 11:32:40 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0021594.exe/# Write not supported

9/10/2010 11:33:12 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0021984.exe

9/10/2010 11:33:12 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0021983.exe

9/10/2010 11:33:13 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0021985.exe

9/10/2010 11:33:21 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0021984.exe Skipped by user

9/10/2010 11:33:24 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0022000.exe/#

9/10/2010 11:33:28 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0021983.exe Skipped by user

9/10/2010 11:33:33 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0022990.exe/#

9/10/2010 11:33:41 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0021985.exe Skipped by user

9/10/2010 11:33:42 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0022990.exe/# Write not supported

9/10/2010 11:33:43 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0022000.exe/# Write not supported

9/10/2010 11:34:19 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023268.exe

9/10/2010 11:34:20 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023270.exe

9/10/2010 11:34:20 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023271.exe

9/10/2010 11:35:18 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023268.exe Skipped by user

9/10/2010 11:35:19 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023270.exe Skipped by user

9/10/2010 11:35:19 Detected: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023307.exe

9/10/2010 11:35:19 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023271.exe Skipped by user

9/10/2010 11:35:20 Untreated: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023307.exe Skipped by user

9/10/2010 11:35:21 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023370.exe

9/10/2010 11:35:21 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023371.exe

9/10/2010 11:35:23 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023372.exe

9/10/2010 11:35:26 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023370.exe Skipped by user

9/10/2010 11:35:27 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023372.exe Skipped by user

9/10/2010 11:35:27 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023375.exe

9/10/2010 11:35:27 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023385.exe/#

9/10/2010 11:35:27 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023371.exe Skipped by user

9/10/2010 11:35:28 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023385.exe/# Write not supported

9/10/2010 11:35:29 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP31\A0023375.exe Skipped by user

9/10/2010 11:36:09 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0027771.exe

9/10/2010 11:36:09 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0027772.exe

9/10/2010 11:36:13 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0027773.exe

9/10/2010 11:36:59 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0027771.exe Skipped by user

9/10/2010 11:37:00 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0027788.exe/#

9/10/2010 11:37:01 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0027773.exe Skipped by user

9/10/2010 11:37:02 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0027772.exe Skipped by user

9/10/2010 11:37:02 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0027788.exe/# Write not supported

9/10/2010 11:37:07 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0028771.exe

9/10/2010 11:37:08 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0028782.exe/#

9/10/2010 11:37:09 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0028771.exe Skipped by user

9/10/2010 11:37:10 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0028782.exe/# Write not supported

9/10/2010 11:37:40 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029070.exe

9/10/2010 11:37:40 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029068.exe

9/10/2010 11:37:40 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029071.exe

9/10/2010 11:37:48 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029070.exe Skipped by user

9/10/2010 11:37:48 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029071.exe Skipped by user

9/10/2010 11:37:49 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029068.exe Skipped by user

9/10/2010 11:37:52 Detected: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029106.exe

9/10/2010 11:37:56 Untreated: Trojan.Win32.Patched.dj C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029106.exe Skipped by user

9/10/2010 11:38:07 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029165.exe

9/10/2010 11:38:08 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029175.exe/#

9/10/2010 11:38:21 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029165.exe Skipped by user

9/10/2010 11:38:22 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029175.exe/# Write not supported

9/10/2010 11:39:08 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029471.exe

9/10/2010 11:39:14 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029473.exe

9/10/2010 11:39:20 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029474.exe

9/10/2010 11:39:31 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029471.exe Skipped by user

9/10/2010 11:39:32 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029473.exe Skipped by user

9/10/2010 11:39:33 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP32\A0029474.exe Skipped by user

9/10/2010 11:40:10 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0029818.exe

9/10/2010 11:40:18 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0029912.exe/#

9/10/2010 11:40:27 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030024.exe

9/10/2010 11:41:45 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0029818.exe Skipped by user

9/10/2010 11:41:45 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030028.exe

9/10/2010 11:41:46 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0029912.exe/# Write not supported

9/10/2010 11:41:46 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030029.exe

9/10/2010 11:41:46 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030024.exe Skipped by user

9/10/2010 11:41:47 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030028.exe Skipped by user

9/10/2010 11:41:47 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030029.exe Skipped by user

9/10/2010 11:41:51 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030046.exe/#

9/10/2010 11:41:55 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030046.exe/# Write not supported

9/10/2010 11:42:22 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030313.exe

9/10/2010 11:42:23 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030315.exe

9/10/2010 11:42:24 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030313.exe Skipped by user

9/10/2010 11:42:24 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030316.exe

9/10/2010 11:42:25 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030315.exe Skipped by user

9/10/2010 11:42:26 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030316.exe Skipped by user

9/10/2010 11:42:29 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030413.exe

9/10/2010 11:42:30 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030429.exe/#

9/10/2010 11:42:31 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030413.exe Skipped by user

9/10/2010 11:42:33 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030429.exe/# Write not supported

9/10/2010 11:43:06 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030715.exe

9/10/2010 11:43:06 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030717.exe

9/10/2010 11:43:07 Detected: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030718.exe

9/10/2010 11:43:11 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030715.exe Skipped by user

9/10/2010 11:43:12 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030717.exe Skipped by user

9/10/2010 11:43:12 Untreated: Trojan-Dropper.Win32.Sality.bo C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030718.exe Skipped by user

9/10/2010 11:43:17 Detected: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030846.exe

9/10/2010 11:43:17 Detected: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030868.exe/#

9/10/2010 11:43:18 Untreated: Backdoor.Win32.Mazben.dz C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030846.exe Skipped by user

9/10/2010 11:43:19 Untreated: Trojan-Dropper.Win32.Agent.yat C:\System Volume Information\_restore{EAE71307-FD44-49AC-A3C0-3B1C82437C64}\RP33\A0030868.exe/# Write not supported

9/10/2010 11:45:34 Detected: Worm.Win32.AutoIt.tq C:\Win\lsass.exe/UPX/script.au3

9/10/2010 11:45:35 Untreated: Worm.Win32.AutoIt.tq C:\Win\lsass.exe/UPX/script.au3 Write not supported

9/10/2010 11:51:21 Detected: Backdoor.Win32.Mazben.dz C:\WINDOWS\Temp\winmwhjw.exe

9/10/2010 11:51:46 Untreated: Backdoor.Win32.Mazben.dz C:\WINDOWS\Temp\winmwhjw.exe Skipped by user

9/10/2010 11:56:19 Detected: Backdoor.Win32.Agent.axwl E:\Reset epson TX300 F\TX300F_by_OrTHoTaMiNe.rar/TX300F by OrTHoTaMiNe/Loader.exe

9/10/2010 11:56:23 Untreated: Backdoor.Win32.Agent.axwl E:\Reset epson TX300 F\TX300F_by_OrTHoTaMiNe.rar/TX300F by OrTHoTaMiNe/Loader.exe Write not supported

9/10/2010 11:57:38 Detected: Trojan.Win32.AutoRun.mr E:\System Volume Information\_restore{A186BBD2-41CB-4B06-B68E-E9E8356FA802}\RP75\A0023359.inf

9/10/2010 11:57:39 Untreated: Trojan.Win32.AutoRun.mr E:\System Volume Information\_restore{A186BBD2-41CB-4B06-B68E-E9E8356FA802}\RP75\A0023359.inf Skipped by user

9/10/2010 11:58:55 Detected: Virus.Win32.Sality.bh E:\System Volume Information\_restore{CFE5C96C-1029-4DA2-BFB8-B2B617E91F22}\RP43\A0016815.exe

9/10/2010 11:58:57 Untreated: Virus.Win32.Sality.bh E:\System Volume Information\_restore{CFE5C96C-1029-4DA2-BFB8-B2B617E91F22}\RP43\A0016815.exe Skipped by user

9/10/2010 12:03:29 Task completed

Compartilhar este post


Link para o post
Compartilhar em outros sites

Bom dia tativi!

 

*Baixe o ComboFix'>http://download.bleepingcomputer.com/sUBs/ComboFix.exe"]ComboFix e salve-o no desktop

* Desative seu antivírus temporariamente:

*Execute o Combofix e aceite o contrato

*Se o console de recuperação do Windows já estiver instalado, o ComboFix continuará o processo automaticamente. Caso contrário, clique em [sIM] para a sua instalação.

recovery-console-prompt.jpg

*Clique em [sIM] para continuar.

recovery-console-installed.jpg

*Aguarde a conclusão de todas as etapas

etapas.jpg

*Enquanto o ComboFix estiver em execução, evite usar o mouse e o teclado!!..... Para interromper o procedimento tecle N ou 2 e depois ENTER.

*O programa será fechado automaticamente e um relatório (C:\combofix.txt) será apresentado. Cole-o na próxima resposta.

 

No Aguardo.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Tópico Arquivado

 

Como o autor não respondeu por mais de 30 dias, o tópico foi arquivado.

 

Caso você seja o autor do tópico e quer reabrir, envie uma mensagem privada para um moderador da área juntamente com o link para este tópico e explique o motivo da reabertura.

Compartilhar este post


Link para o post
Compartilhar em outros sites

×

Informação importante

Ao usar o fórum, você concorda com nossos Termos e condições.