MyCity » Ambulanta -> Arhiva Ambulante » Molim vas pogledajte ovo Please!!!

Molim vas pogledajte ovo Please!!!

Napisano na dan: 4.4.2009
1

Molim vas pogledajte ovo Please!!!
Sledeća strana Pagination

Idi na vrh

Poslao: 04 Apr 2009 16:33
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:26:06, on 04/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\WgaTray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Crawler\CToolbar.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Administrator\Desktop\TR3.exe\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Link mogu videti samo ulogovani korisnici]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici]
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = [Link mogu videti samo ulogovani korisnici]
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll (file missing)
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User '?')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User '?')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User '?')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User '?')
O4 - HKUS\S-1-5-21-1659004503-764733703-682003330-500\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon (User '?')
O4 - S-1-5-21-1659004503-764733703-682003330-500 Startup: PartMetBackup.lnk = C:\Program Files\Java\jre6\bin\javaw.exe (User '?')
O4 - S-1-5-21-1659004503-764733703-682003330-500 Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe (User '?')
O4 - S-1-5-21-1659004503-764733703-682003330-500 Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe (User '?')
O4 - Startup: PartMetBackup.lnk = C:\Program Files\Java\jre6\bin\javaw.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O4 - Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xport to Microsoft Excel - [Link mogu videti samo ulogovani korisnici]\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - [Link mogu videti samo ulogovani korisnici]
O16 - DPF: {6715D12F-213F-4C6E-ACE1-8A363F550B96} (CPlayFirstDoggieDashControl Object) - [Link mogu videti samo ulogovani korisnici]
O16 - DPF: {74E4A24D-5224-4F05-8A41-99445E0FC22B} (GameHouse Games Player) - [Link mogu videti samo ulogovani korisnici]
O16 - DPF: {74EF5274-F439-2168-B543-14745B625C72} (CPlayFirstWeddingDasControl Object) - [Link mogu videti samo ulogovani korisnici]
O16 - DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} (Jolly Bear Games Player) - [Link mogu videti samo ulogovani korisnici]
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - [Link mogu videti samo ulogovani korisnici]
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - [Link mogu videti samo ulogovani korisnici]
O16 - DPF: {D40F5876-A494-4124-8161-82625BB28C06} (CPlayFirstChocolatieControl Object) - [Link mogu videti samo ulogovani korisnici]
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - [Link mogu videti samo ulogovani korisnici]
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\ctbr.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Windows Presentation Foundation Font Cache 3.0.0.0 (FontCache3.0.0.0) - Unknown owner - C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: SQL Server (SONY_MEDIAMGR2) (MSSQL$SONY_MEDIAMGR2) - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Unknown owner - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

--
End of file - 9603 bytes

Ovo pokasuje NOD 32
Win 32/VirutNBM. virus Molim vas pomogni te mi



Poslao: 04 Apr 2009 16:38
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Zdravo,

nemoj molim te samo Virut da pokazuje. Bebee Dol

* Pokreni ESET Smart Security/ESET NOD32 na sledeci nacin :
Start>All Programs>ESET>ESET Smart Security ili pak ESET NOD32 Antivirus(ukoliko koristis samo Antivirus resenje).

* Kada ti se otvori glavni prozor programa, klikni na Setup opciju sa leve strane prozora;
* Izaberi Antivirus and antispyware opciju i klikni na Temporarily disable Antivirus and antispyware protection.
* Na sledece pitanje klikni Yes.

Napomena: Ne zaboravi da ukljuciš ovu opciju po završetku cišcenja.


----------------------

Skini ComboFix sa jedne od sledecih adresa na Desktop:
[Link mogu videti samo ulogovani korisnici]
[Link mogu videti samo ulogovani korisnici]
[Link mogu videti samo ulogovani korisnici]

Startuj ga i ne diraj prozor programa dok skenira.
Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.



Poslao: 04 Apr 2009 17:10
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

ComboFix 09-04-03.01 - Administrator 2009-04-04 17:04:19.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1024.673 [GMT 2:00]
Running from: c:\documents and settings\Administrator\My Documents\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning disabled* (Updated)

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
c:\windows\system32\drivers\npf.sys
c:\windows\system32\packet.dll
c:\windows\system32\paso.el
c:\windows\system32\wpcap.dll
c:\windows\ynh.dx

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_NPF


((((((((((((((((((((((((( Files Created from 2009-03-04 to 2009-04-04 )))))))))))))))))))))))))))))))
.

2009-03-24 14:22 . 2009-03-24 14:22 <DIR> d-------- c:\documents and settings\Administrator\Application Data\Ipref
2009-03-23 10:48 . 2009-04-02 16:15 <DIR> d-------- c:\documents and settings\Administrator\Application Data\mIRC
2009-03-14 23:39 . 2009-04-02 19:01 <DIR> d-------- C:\Picture This
2009-03-14 23:39 . 2009-03-14 23:39 32,768 --ahs---- C:\Thumbs.db

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-04 14:58 --------- d-----w c:\program files\Crawler
2009-04-04 14:53 --------- d-----w c:\program files\Winamp
2009-04-04 14:53 --------- d-----w c:\program files\MetFileRegenerator
2009-04-04 14:53 --------- d-----w c:\program files\D-Tools
2009-04-04 14:13 --------- d-----w c:\program files\Spyware Terminator
2009-04-04 14:10 61,952 ----a-w c:\windows\system32\alg.exe
2009-04-02 16:38 --------- d-----w c:\documents and settings\Administrator\Application Data\Spyware Terminator
2009-03-27 21:41 --------- d-----w c:\documents and settings\All Users\Application Data\Spyware Terminator
2009-03-27 14:40 --------- d-----w c:\program files\Java
2009-03-24 16:42 --------- d---a-w c:\documents and settings\All Users\Application Data\TEMP
2009-03-09 04:19 410,984 ----a-w c:\windows\system32\deploytk.dll
2009-03-04 17:51 --------- d-----w c:\program files\Avanquest update
2009-02-28 15:08 --------- d-----w c:\documents and settings\Administrator\Application Data\GameHouse
2009-02-26 19:54 --------- d-----w c:\documents and settings\All Users\Application Data\Fugazo
2009-02-24 18:52 --------- d-----w c:\documents and settings\All Users\Application Data\PopCap
2009-02-24 18:30 --------- d-----w c:\documents and settings\All Users\Application Data\JollyBear
2009-02-23 16:47 --------- d-----w c:\documents and settings\All Users\Application Data\Zylom
2009-02-23 16:47 --------- d-----w c:\documents and settings\All Users\Application Data\GameHouse
2009-02-23 16:30 --------- d-----w c:\documents and settings\All Users\Application Data\n7-89-o9-3r-4t-r9
2009-02-23 16:23 --------- d-----w c:\documents and settings\Administrator\Application Data\PlayFirst
2009-02-22 17:29 --------- d-----w c:\documents and settings\All Users\Application Data\Tarma Installer
2009-02-16 11:39 --------- d-----w c:\program files\ESET
2009-02-04 13:12 --------- d-----w c:\program files\Microsoft VM
2009-02-04 11:08 --------- d-----w c:\documents and settings\Administrator\Application Data\TeamViewer
.

------- Sigcheck -------

2007-06-13 12:23 3195392 3be4584f9ac9b9094c634f9348a57fe2 c:\windows\EXPLORER.EXE
2007-06-13 13:26 1052160 601400ee02323db6408f22d1d35b1c69 c:\windows\$hf_mig$\KB938828\SP2QFE\explorer.exe
2001-08-23 11:00 1051136 306594b0cee0a5424b9ec25de203a9b4 c:\windows\$NtUninstallKB938828$\explorer.exe
2007-06-13 12:23 3214336 83b8d1426c4835b3511fcf0485c12fcb c:\windows\system32\dllcache\explorer.exe

2001-08-23 11:00 34304 576ce88a37d9911d17c9f6f4700e6e09 c:\windows\system32\ctfmon.exe
2001-08-23 11:00 34304 9d3cdaa8506a15348724f44c5f6d6caa c:\windows\system32\dllcache\ctfmon.exe

2005-06-11 02:17 76800 2b374ca1dec942bf6c6c8c8a28cc889e c:\windows\$hf_mig$\KB896423\SP2QFE\spoolsv.exe
2001-08-23 11:00 76800 52f2707cae30824ca53dd35bb9f0dd25 c:\windows\$NtUninstallKB896423$\spoolsv.exe
2005-06-11 01:53 75264 4fae26cdc82923a92c85f57fb7cfe177 c:\windows\system32\SPOOLSV.EXE
2005-06-11 01:53 76800 b2278c918267cd9885da0450ff5b2daa c:\windows\system32\dllcache\spoolsv.exe

2001-08-23 11:00 24576 a6469e376946ac97e397ad2543bf62f9 c:\windows\system32\USERINIT.EXE
2001-08-23 11:00 43520 cbdf7b7ec638ea54f5b16da39e78e95c c:\windows\system32\dllcache\userinit.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" [2008-07-02 393216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-08-12 339968]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2009-03-09 37888]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-06-26 185896]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"DAEMON Tools-1033"="c:\program files\D-Tools\daemon.exe" [2004-08-22 86016]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-29 61440]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-02-20 1443072]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-09 148888]

c:\documents and settings\Administrator\Start Menu\Programs\Startup\
PartMetBackup.lnk - c:\program files\Java\jre6\bin\javaw.exe [2009-01-04 144792]
RocketDock.lnk - c:\windows\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe [2006-05-14 344064]
Y'z Toolbar.lnk - c:\windows\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe [2002-09-29 90112]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
InterVideo WinCinema Manager.lnk - c:\program files\InterVideo\Common\Bin\WinCinemaMgr.exe [2008-04-12 278528]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.ACDV"= ACDV.dll
"vidc.CDVC"= cdvccodc.dll
"MSACM.pcdv"= pcdv.acm
"vidc.CDV5"= cdv5codc.dll
"vidc.CLLC"= cllccodc.dll
"vidc.CUVC"= cuvccodc.dll
"vidc.CDVH"= cdvhcodc.dll
"vidc.CMIC"= cmiccodc.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\iexplore.exe]
"Debugger"=

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\InterVideo\\DVD7\\WinDVD.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"f:\\igrica2\\DC++\\DCPlusPlus.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\Sony\\Vegas Pro 8.0\\VegSrv80.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Microsoft Games\\Flight Simulator 9\\fs9.exe"=
"c:\\WINDOWS\\system32\\dpnsvr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=

R1 cdrblock;cdrblock;c:\windows\system32\drivers\cdrblock.sys [2008-12-17 20864]
R1 cdrport;cdrport;c:\windows\system32\drivers\cdrport.sys [2008-12-17 4608]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2008-02-20 33800]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2008-05-20 141312]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-02-20 472320]
S2 NOD32FiXTemDono;Eset Nod32 Boot;c:\windows\system32\REGEDT32.EXE [2001-08-23 20992]
S3 k510bus;Sony Ericsson K510 Driver driver (WDM);c:\windows\system32\drivers\k510bus.sys [2008-04-26 58288]
S3 k510mdfl;Sony Ericsson K510 USB WMC Modem Filter;c:\windows\system32\drivers\k510mdfl.sys [2008-04-26 8336]
S3 k510mdm;Sony Ericsson K510 USB WMC Modem Driver;c:\windows\system32\drivers\k510mdm.sys [2008-04-26 94064]
S3 k510mgmt;Sony Ericsson K510 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\k510mgmt.sys [2008-04-26 85408]
S3 k510obex;Sony Ericsson K510 USB WMC OBEX Interface;c:\windows\system32\drivers\k510obex.sys [2008-04-26 83344]
S3 MSSQL$SONY_MEDIAMGR2;SQL Server (SONY_MEDIAMGR2);"c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSONY_MEDIAMGR2 --> c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [?]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [2008-10-15 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [2008-10-15 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [2008-10-15 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [2008-10-15 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [2008-10-15 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [2008-10-15 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [2008-10-15 115752]
.
Contents of the 'Scheduled Tasks' folder

2009-04-03 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClick.exe []

2009-02-26 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]
.
- - - - ORPHANS REMOVED - - - -

BHO-{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - c:\program files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll
HKLM-Run-SpywareTerminator - c:\program files\Spyware Terminator\SpywareTerminatorShield.exe


.
------- Supplementary Scan -------
.
uStart Page = about:blank
uDefault_Search_URL =
uSearchURL,(Default) = [Link mogu videti samo ulogovani korisnici]
IE: Crawler Search - tbr:iemenu
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\ctbr.dll
DPF: Microsoft XML Parser for Java - [Link mogu videti samo ulogovani korisnici]\windows\Java\classes\xmldso.cab
DPF: {6715D12F-213F-4C6E-ACE1-8A363F550B96} - [Link mogu videti samo ulogovani korisnici]
DPF: {74E4A24D-5224-4F05-8A41-99445E0FC22B} - [Link mogu videti samo ulogovani korisnici]
DPF: {74EF5274-F439-2168-B543-14745B625C72} - [Link mogu videti samo ulogovani korisnici]
DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} - [Link mogu videti samo ulogovani korisnici]
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - [Link mogu videti samo ulogovani korisnici]
DPF: {D40F5876-A494-4124-8161-82625BB28C06} - [Link mogu videti samo ulogovani korisnici]
FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\krdyd8eg.default\
FF - prefs.js: browser.startup.homepage - about:blank
FF - component: c:\progra~1\Crawler\firefox\components\xcomm.dll
FF - component: c:\progra~1\Crawler\firefox\components\xshared.dll
FF - component: c:\progra~1\Crawler\firefox\components\xsupport.dll
FF - component: c:\progra~1\Crawler\firefox\components\xwsg.dll
.

**************************************************************************

catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [Link mogu videti samo ulogovani korisnici]
Rootkit scan 2009-04-04 17:06:43
Windows 5.1.2600 Service Pack 2 NTFS

detected NTDLL code modification:
ZwOpenFile

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-1659004503-764733703-682003330-500\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:10,a8,30,d3,b8,33,00,8f,fc,ad,fd,0d,76,5a,ce,7c,4c,c5,d0,2d,c1,00,ab,
e2,32,1a,58,0b,6d,4b,57,a0,c0,af,28,a6,00,0c,5c,e7,9b,51,de,34,80,c4,5c,77,\
"??"=hex:07,49,a2,2d,fb,b0,e3,48,51,fa,5f,01,d8,8c,79,84
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(684)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2009-04-04 17:08:56
ComboFix-quarantined-files.txt 2009-04-04 15:08:39

Pre-Run: 20,138,151,936 bytes free
Post-Run: 20,118,212,608 bytes free

195 --- E O F --- 2009-01-13 21:10:23

Poslao: 04 Apr 2009 17:14
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Uploaduj mi:

c:\windows\EXPLORER.EXE

preko:

[Link mogu videti samo ulogovani korisnici]

Poslao: 04 Apr 2009 17:21
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

Uplodovao sam

Poslao: 04 Apr 2009 17:28
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Moze li malo detaljnije kada ti je Nod to prijavio, sta se potom desavalo?

Imas li neki log od Noda da mi pokazes?

Poslao: 04 Apr 2009 18:38
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

problem mi se pojavio sinoc. Prvo je nod smestio neke fajlove iz F u quaratine; uradio skeniranje i on je pronasao neka 3 zarana fajl koje sam obrisao. Asad je poceo da smesta neke faljove iz c (tu je instaliran windows) i to uglavno iz program file. A skeniranjem f vise ne pokazuje da je nesto zarazeno sad rad skeniranje C

Poslao: 04 Apr 2009 18:45
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Kad si vec tu, uploaduj i ovo, za svaki slucaj:

c:\windows\system32\USERINIT.EXE

link ti je gore dat.

Poslao: 05 Apr 2009 20:04
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

i ovo sam uplodovao

Poslao: 05 Apr 2009 22:10
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

i ovo sam uplodovao
P.S. evo sta je pokazao nod
Scan Log
Version of virus signature database: 3988 (20090404)
Date: 05/04/2009 Time: 9:15:17 PM
Scanned disks, folders and files: C:\;F:\
C:\AUTOEXEC.BAT » MIME - is OK (internal scanning not performed)
C:\pagefile.sys - error opening [4]
C:\Documents and Settings\Administrator\NTUSER.DAT - error opening [4]
C:\Documents and Settings\Administrator\ntuser.dat.LOG - error opening [4]
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\krdyd8eg.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities\{012CA8E8-D2EE-4A5F-8A24-6E65E8D6C935}\Microsoft\Outlook Express\Inbox.dbx » DBX - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities\{012CA8E8-D2EE-4A5F-8A24-6E65E8D6C935}\Microsoft\Outlook Express\Sent Items.dbx » DBX - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\CardSpace\CardSpace.db - error opening [4]
C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\CardSpace\CardSpace.db.shadow - error opening [4]
C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat - error opening [4]
C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG - error opening [4]
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\RI13GGKY\em[1].txt - a variant of Win32/Kryptik.LP trojan - cleaned by deleting - quarantined [1]
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\T6D0UMCJ\ge[1].txt - Win32/Joleee.NG worm - cleaned by deleting - quarantined [1]
C:\Documents and Settings\Administrator\My Documents\Odštampaj stranicu - Sta su to Torenti.mht » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\My Documents\Italija\Polovni automobil Fiat punto cena 650 ( po dogovoru ) 327530- auto oglasi - MojAuto - polovni automobili.mht » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\My Documents\My Videos\RealPlayer Downloads\preferans.mht » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\My Documents\sppski\Kaleidoskop - Marina Cvetaeva.mht » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\My Documents\sppski\Zak Prever.mht » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\LocalService\NTUSER.DAT - error opening [4]
C:\Documents and Settings\LocalService\ntuser.dat.LOG - error opening [4]
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat - error opening [4]
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG - error opening [4]
C:\Documents and Settings\NetworkService\NTUSER.DAT - error opening [4]
C:\Documents and Settings\NetworkService\ntuser.dat.LOG - error opening [4]
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat - error opening [4]
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG - error opening [4]
C:\Program Files\AGEIA Technologies\AGEIA_PhysX_Help.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Ahead\Nero\CDI\CDI_VCD.CFG » MIME - is OK (internal scanning not performed)
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe - Win32/Virut.NBM virus - error while cleaning
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - Win32/Virut.NBM virus - deleted
C:\Program Files\Common Files\LightScribe\LSSrvc.exe - Win32/Virut.NBM virus - error while cleaning
C:\Program Files\Common Files\LightScribe\Content\Getting Started.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Crawler\firefox\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Java\jre6\lib\resources.jar » ZIP » com/sun/org/apache/xerces/internal/impl/msg/XIncludeMessages.properties » MIME - is OK (internal scanning not performed)
C:\Program Files\Java\jre6\lib\resources.jar » ZIP » com/sun/xml/internal/fastinfoset/resources/ResourceBundle.properties » MIME - is OK (internal scanning not performed)
C:\Program Files\Java\jre6\lib\resources.jar » ZIP » javax/xml/bind/Messages.properties » MIME - is OK (internal scanning not performed)
C:\Program Files\Java\jre6\lib\deploy\ffjcext.zip » ZIP » {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}/chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Java\jre6\lib\deploy\jqs\ff\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Microsoft Office\OFFICE11\1033\VIDEO.MHT » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\chrome\browser.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\chrome\comm.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\chrome\pippki.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\chrome\reporter.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\chrome\toolkit.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Nero\Nero Burning ROM\CDI\CDI_VCD.CFG » MIME - is OK (internal scanning not performed)
C:\Program Files\Real\RealPlayer\rphelperapp.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\Program Files\Real\RealPlayer\browserrecord\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony\Vegas Pro 8.0\Sony Vegas Pro 8 -- ShuttlePRO v2.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony\Vegas Pro 8.0\Sony Vegas Pro 8 -- ShuttlePRO.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony\Vegas Pro 8.0\Sony Vegas Pro 8 -- ShuttleXpress.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Sound Forge 7.0\main.cab » CAB » shuttlepromht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Sound Forge 7.0\main.cab » CAB » shuttlepro2mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Sound Forge 7.0\main.cab » CAB » shuttlexpmht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Vegas Pro 8.0\main.cab » CAB » Sony_Vegas_Pro_8_ShuttlePRO_v2.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Vegas Pro 8.0\main.cab » CAB » Sony_Vegas_Pro_8_ShuttlePRO.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Vegas Pro 8.0\main.cab » CAB » Sony_Vegas_Pro_8_ShuttleXpress.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Winamp\UninstWA.exe » NSIS - incorrect CRC checksum, the file may be damaged
C:\Program Files\Windows NT\hypertrm.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\Program Files\WinRAR\Uninstall.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\Qoobox\Quarantine\C\WINDOWS\system32\paso.el.vir - probably a variant of Win32/TrojanDownloader.Small trojan - cleaned by deleting - quarantined [1]
C:\System Volume Information\MountPointManagerRemoteDatabase - error opening [4]
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP312\A0143319.exe » NSIS - bad archive
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP356\A0155109.manifest » MIME - is OK (internal scanning not performed)
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP356\A0155334.exe » NSIS - incorrect CRC checksum, the file may be damaged
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP356\A0155338.exe » NSIS - incorrect CRC checksum, the file may be damaged
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160172.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160178.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160179.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160183.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160184.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160185.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160190.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160191.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160192.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160193.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160194.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160195.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160196.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160197.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160198.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160199.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160200.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160201.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160202.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160205.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160207.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160208.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160209.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160210.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160211.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160212.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160216.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160217.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160218.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160220.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160221.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160222.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160223.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160224.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160225.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160226.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160227.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160228.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160229.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160230.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160231.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160232.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160233.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160235.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160263.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160264.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160265.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160266.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160278.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160279.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160280.Exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160284.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160285.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160291.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160314.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160315.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160324.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160325.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160348.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160349.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160350.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160372.old - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160373.old - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160374.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160375.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160376.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160377.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160378.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160379.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160380.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160381.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160382.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160383.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160384.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160385.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160386.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160387.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160388.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160389.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160390.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160391.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160392.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160393.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160394.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160395.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160396.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160397.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160398.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160399.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160400.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160401.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160402.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160403.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160404.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160405.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160406.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160407.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160408.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160409.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160410.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160411.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160412.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160413.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160414.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160415.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160416.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160417.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160418.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160419.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160420.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160421.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160422.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160423.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160424.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160425.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160426.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160427.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160428.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160429.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160430.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160431.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160432.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160433.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160434.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160435.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160436.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160437.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160438.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160439.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160444.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160445.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160446.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160447.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160448.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160449.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160450.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160451.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160452.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160453.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160454.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160455.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160456.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160457.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160458.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160459.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160460.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160461.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160462.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160463.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160466.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160467.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160468.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160469.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160470.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160471.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160472.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160473.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160474.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160475.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160476.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160477.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160478.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160479.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160480.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160481.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160482.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160483.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160484.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160485.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160486.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160487.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160488.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160489.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160490.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160491.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160492.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160493.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160494.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160495.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160496.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160497.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160498.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160499.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160500.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160501.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160502.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160503.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160504.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160505.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160506.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160507.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160508.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160509.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160510.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160511.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160512.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160513.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160514.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160515.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160516.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160517.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160518.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160519.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160520.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160521.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160522.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160523.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160524.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160525.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160526.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160527.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160528.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160529.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160530.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160531.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160532.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160533.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160534.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160535.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160536.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160537.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160538.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160539.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160540.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160541.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160542.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160543.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160544.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160545.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160546.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160547.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160548.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160549.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160550.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160551.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160552.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160553.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160554.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160555.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160556.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160557.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160558.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160559.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160560.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160561.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160562.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160563.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160564.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160565.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160566.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160567.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160568.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160569.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160570.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160571.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160572.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160573.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160574.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160575.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160576.scr - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160577.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160578.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160579.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160580.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160581.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160582.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160583.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160584.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160585.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160586.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160587.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160588.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160589.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160590.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160591.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160592.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160593.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160594.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160595.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160596.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160597.exe » CAB - is OK
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160598.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160599.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160600.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160601.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160602.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160603.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160604.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160605.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160606.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160607.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160608.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160609.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160610.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160611.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160612.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160613.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160614.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160615.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160616.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160617.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160618.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160619.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160812.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160867.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160868.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160869.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160870.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160871.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160904.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160910.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160916.scr - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160918.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160919.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160920.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160921.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160922.scr - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160923.scr - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160924.scr - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160926.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160932.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160933.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160937.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160938.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160948.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160950.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160955.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160956.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160958.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160961.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160962.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160969.Exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160972.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160973.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160974.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160975.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160976.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160977.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160978.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160979.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160980.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160981.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160982.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160983.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160984.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160985.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160986.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160987.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160988.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160989.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160990.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160991.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160992.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160993.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160994.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160995.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160996.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160997.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160998.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160999.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0161000.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161012.el - probably a variant of Win32/TrojanDownloader.Small trojan - cleaned by deleting - quarantined [1]
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161015.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161016.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161017.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161018.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161019.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161020.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161021.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161022.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161034.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161035.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161036.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161037.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161038.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161039.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161040.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161041.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161042.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161043.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161044.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161045.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161046.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161047.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161048.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161051.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161052.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161053.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161054.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161055.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161058.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161059.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161110.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161111.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161114.EXE - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161165.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161171.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-58

MyCity » Ambulanta -> Arhiva Ambulante » Molim vas pogledajte ovo Please!!!

Ko je trenutno na forumu
 

Ukupno su 955 korisnika na forumu :: 64 registrovanih, 8 sakrivenih i 883 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: acatomic, Alexa77, amadeus, amaterSRB, bbogdan, bobomicek, Bobrock1, bokisha253, bolenbgd, Boris90, burevestnik, Buzdovan, casual03, cinoeye, Ciri1994, darkojovxp, Dimitrije Paunovic, Dimitrise93, Dogma21, Dr.Strangelove, dule10savic, Dungorth, dzoni19, GveX, Insan, ivica976, Jonbonjovi, Kalem, lcc, Lošmi, lucko1, mercedesamg, mikrimaus, mile33, milenko crazy north, milos.cbr, milutin134, Mrav Obrad, nemkea71, Oscar, Paklenica, Panter, Prečanin30, Pv123, RAKITNICA, RILE-NS, Romibrat, sajorg, SamostalniReferent, Sićko, smicovic, Smiljke, srpskasparta, ss10, Tihi86, travisrise, Trpe Grozni, vathra, VJ, wizzardone, Zavulon, Zoran1959, zoran77, zziko