MyCity » Ambulanta -> Arhiva Ambulante » Molim vas pogledajte ovo Please!!!

Molim vas pogledajte ovo Please!!!

Napisano na dan: 4.4.2009
1

Molim vas pogledajte ovo Please!!!
Sledeća strana Pagination

Idi na vrh

Poslao: 04 Apr 2009 16:33
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:26:06, on 04/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\WgaTray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Crawler\CToolbar.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Administrator\Desktop\TR3.exe\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.searchgateway.net/search-Google-Gateway.....1&q=%s
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll (file missing)
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User '?')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User '?')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User '?')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User '?')
O4 - HKUS\S-1-5-21-1659004503-764733703-682003330-500\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon (User '?')
O4 - S-1-5-21-1659004503-764733703-682003330-500 Startup: PartMetBackup.lnk = C:\Program Files\Java\jre6\bin\javaw.exe (User '?')
O4 - S-1-5-21-1659004503-764733703-682003330-500 Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe (User '?')
O4 - S-1-5-21-1659004503-764733703-682003330-500 Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe (User '?')
O4 - Startup: PartMetBackup.lnk = C:\Program Files\Java\jre6\bin\javaw.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O4 - Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.srtest.com/srl_bin/sysreqlab_srl.cab
O16 - DPF: {6715D12F-213F-4C6E-ACE1-8A363F550B96} (CPlayFirstDoggieDashControl Object) - http://www.gamehouse.com/games/DoggieDash.cab
O16 - DPF: {74E4A24D-5224-4F05-8A41-99445E0FC22B} (GameHouse Games Player) - http://www.gamehouse.com/games/gamehouse/ghplayer.cab
O16 - DPF: {74EF5274-F439-2168-B543-14745B625C72} (CPlayFirstWeddingDasControl Object) - http://www.gamehouse.com/games/WeddingDash2.cab
O16 - DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} (Jolly Bear Games Player) - http://www.gamehouse.com/games/JBGamePlayer.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://www.gamehouse.com/games/zylom/zylomplayer.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D40F5876-A494-4124-8161-82625BB28C06} (CPlayFirstChocolatieControl Object) - http://www.gamehouse.com/games/Chocolatier2.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://www.gamehouse.com/games/bonnie/popcaploader.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\ctbr.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Windows Presentation Foundation Font Cache 3.0.0.0 (FontCache3.0.0.0) - Unknown owner - C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: SQL Server (SONY_MEDIAMGR2) (MSSQL$SONY_MEDIAMGR2) - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Unknown owner - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

--
End of file - 9603 bytes

Ovo pokasuje NOD 32
Win 32/VirutNBM. virus Molim vas pomogni te mi

Poslao: 04 Apr 2009 16:38
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Zdravo,

nemoj molim te samo Virut da pokazuje. Bebee Dol

* Pokreni ESET Smart Security/ESET NOD32 na sledeci nacin :
Start>All Programs>ESET>ESET Smart Security ili pak ESET NOD32 Antivirus(ukoliko koristis samo Antivirus resenje).

* Kada ti se otvori glavni prozor programa, klikni na Setup opciju sa leve strane prozora;
* Izaberi Antivirus and antispyware opciju i klikni na Temporarily disable Antivirus and antispyware protection.
* Na sledece pitanje klikni Yes.

Napomena: Ne zaboravi da ukljuciš ovu opciju po završetku cišcenja.


----------------------

Skini ComboFix sa jedne od sledecih adresa na Desktop:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
http://www.forospyware.com/sUBs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Startuj ga i ne diraj prozor programa dok skenira.
Sledi uputstva na ekranu. Kada zavrsi pojavice se log (C:\ComboFix.txt) koji ces nam ovde iskopirati.

Poslao: 04 Apr 2009 17:10
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

ComboFix 09-04-03.01 - Administrator 2009-04-04 17:04:19.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1024.673 [GMT 2:00]
Running from: c:\documents and settings\Administrator\My Documents\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning disabled* (Updated)

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
c:\windows\system32\drivers\npf.sys
c:\windows\system32\packet.dll
c:\windows\system32\paso.el
c:\windows\system32\wpcap.dll
c:\windows\ynh.dx

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_NPF


((((((((((((((((((((((((( Files Created from 2009-03-04 to 2009-04-04 )))))))))))))))))))))))))))))))
.

2009-03-24 14:22 . 2009-03-24 14:22 <DIR> d-------- c:\documents and settings\Administrator\Application Data\Ipref
2009-03-23 10:48 . 2009-04-02 16:15 <DIR> d-------- c:\documents and settings\Administrator\Application Data\mIRC
2009-03-14 23:39 . 2009-04-02 19:01 <DIR> d-------- C:\Picture This
2009-03-14 23:39 . 2009-03-14 23:39 32,768 --ahs---- C:\Thumbs.db

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-04 14:58 --------- d-----w c:\program files\Crawler
2009-04-04 14:53 --------- d-----w c:\program files\Winamp
2009-04-04 14:53 --------- d-----w c:\program files\MetFileRegenerator
2009-04-04 14:53 --------- d-----w c:\program files\D-Tools
2009-04-04 14:13 --------- d-----w c:\program files\Spyware Terminator
2009-04-04 14:10 61,952 ----a-w c:\windows\system32\alg.exe
2009-04-02 16:38 --------- d-----w c:\documents and settings\Administrator\Application Data\Spyware Terminator
2009-03-27 21:41 --------- d-----w c:\documents and settings\All Users\Application Data\Spyware Terminator
2009-03-27 14:40 --------- d-----w c:\program files\Java
2009-03-24 16:42 --------- d---a-w c:\documents and settings\All Users\Application Data\TEMP
2009-03-09 04:19 410,984 ----a-w c:\windows\system32\deploytk.dll
2009-03-04 17:51 --------- d-----w c:\program files\Avanquest update
2009-02-28 15:08 --------- d-----w c:\documents and settings\Administrator\Application Data\GameHouse
2009-02-26 19:54 --------- d-----w c:\documents and settings\All Users\Application Data\Fugazo
2009-02-24 18:52 --------- d-----w c:\documents and settings\All Users\Application Data\PopCap
2009-02-24 18:30 --------- d-----w c:\documents and settings\All Users\Application Data\JollyBear
2009-02-23 16:47 --------- d-----w c:\documents and settings\All Users\Application Data\Zylom
2009-02-23 16:47 --------- d-----w c:\documents and settings\All Users\Application Data\GameHouse
2009-02-23 16:30 --------- d-----w c:\documents and settings\All Users\Application Data\n7-89-o9-3r-4t-r9
2009-02-23 16:23 --------- d-----w c:\documents and settings\Administrator\Application Data\PlayFirst
2009-02-22 17:29 --------- d-----w c:\documents and settings\All Users\Application Data\Tarma Installer
2009-02-16 11:39 --------- d-----w c:\program files\ESET
2009-02-04 13:12 --------- d-----w c:\program files\Microsoft VM
2009-02-04 11:08 --------- d-----w c:\documents and settings\Administrator\Application Data\TeamViewer
.

------- Sigcheck -------

2007-06-13 12:23 3195392 3be4584f9ac9b9094c634f9348a57fe2 c:\windows\EXPLORER.EXE
2007-06-13 13:26 1052160 601400ee02323db6408f22d1d35b1c69 c:\windows\$hf_mig$\KB938828\SP2QFE\explorer.exe
2001-08-23 11:00 1051136 306594b0cee0a5424b9ec25de203a9b4 c:\windows\$NtUninstallKB938828$\explorer.exe
2007-06-13 12:23 3214336 83b8d1426c4835b3511fcf0485c12fcb c:\windows\system32\dllcache\explorer.exe

2001-08-23 11:00 34304 576ce88a37d9911d17c9f6f4700e6e09 c:\windows\system32\ctfmon.exe
2001-08-23 11:00 34304 9d3cdaa8506a15348724f44c5f6d6caa c:\windows\system32\dllcache\ctfmon.exe

2005-06-11 02:17 76800 2b374ca1dec942bf6c6c8c8a28cc889e c:\windows\$hf_mig$\KB896423\SP2QFE\spoolsv.exe
2001-08-23 11:00 76800 52f2707cae30824ca53dd35bb9f0dd25 c:\windows\$NtUninstallKB896423$\spoolsv.exe
2005-06-11 01:53 75264 4fae26cdc82923a92c85f57fb7cfe177 c:\windows\system32\SPOOLSV.EXE
2005-06-11 01:53 76800 b2278c918267cd9885da0450ff5b2daa c:\windows\system32\dllcache\spoolsv.exe

2001-08-23 11:00 24576 a6469e376946ac97e397ad2543bf62f9 c:\windows\system32\USERINIT.EXE
2001-08-23 11:00 43520 cbdf7b7ec638ea54f5b16da39e78e95c c:\windows\system32\dllcache\userinit.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" [2008-07-02 393216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-08-12 339968]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2009-03-09 37888]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-06-26 185896]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"DAEMON Tools-1033"="c:\program files\D-Tools\daemon.exe" [2004-08-22 86016]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-29 61440]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-02-20 1443072]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-09 148888]

c:\documents and settings\Administrator\Start Menu\Programs\Startup\
PartMetBackup.lnk - c:\program files\Java\jre6\bin\javaw.exe [2009-01-04 144792]
RocketDock.lnk - c:\windows\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe [2006-05-14 344064]
Y'z Toolbar.lnk - c:\windows\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe [2002-09-29 90112]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
InterVideo WinCinema Manager.lnk - c:\program files\InterVideo\Common\Bin\WinCinemaMgr.exe [2008-04-12 278528]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.ACDV"= ACDV.dll
"vidc.CDVC"= cdvccodc.dll
"MSACM.pcdv"= pcdv.acm
"vidc.CDV5"= cdv5codc.dll
"vidc.CLLC"= cllccodc.dll
"vidc.CUVC"= cuvccodc.dll
"vidc.CDVH"= cdvhcodc.dll
"vidc.CMIC"= cmiccodc.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\iexplore.exe]
"Debugger"=

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\InterVideo\\DVD7\\WinDVD.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"f:\\igrica2\\DC++\\DCPlusPlus.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\Sony\\Vegas Pro 8.0\\VegSrv80.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Microsoft Games\\Flight Simulator 9\\fs9.exe"=
"c:\\WINDOWS\\system32\\dpnsvr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=

R1 cdrblock;cdrblock;c:\windows\system32\drivers\cdrblock.sys [2008-12-17 20864]
R1 cdrport;cdrport;c:\windows\system32\drivers\cdrport.sys [2008-12-17 4608]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2008-02-20 33800]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2008-05-20 141312]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-02-20 472320]
S2 NOD32FiXTemDono;Eset Nod32 Boot;c:\windows\system32\REGEDT32.EXE [2001-08-23 20992]
S3 k510bus;Sony Ericsson K510 Driver driver (WDM);c:\windows\system32\drivers\k510bus.sys [2008-04-26 58288]
S3 k510mdfl;Sony Ericsson K510 USB WMC Modem Filter;c:\windows\system32\drivers\k510mdfl.sys [2008-04-26 8336]
S3 k510mdm;Sony Ericsson K510 USB WMC Modem Driver;c:\windows\system32\drivers\k510mdm.sys [2008-04-26 94064]
S3 k510mgmt;Sony Ericsson K510 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\k510mgmt.sys [2008-04-26 85408]
S3 k510obex;Sony Ericsson K510 USB WMC OBEX Interface;c:\windows\system32\drivers\k510obex.sys [2008-04-26 83344]
S3 MSSQL$SONY_MEDIAMGR2;SQL Server (SONY_MEDIAMGR2);"c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSONY_MEDIAMGR2 --> c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [?]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [2008-10-15 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [2008-10-15 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [2008-10-15 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [2008-10-15 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [2008-10-15 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [2008-10-15 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [2008-10-15 115752]
.
Contents of the 'Scheduled Tasks' folder

2009-04-03 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClick.exe []

2009-02-26 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]
.
- - - - ORPHANS REMOVED - - - -

BHO-{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - c:\program files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll
HKLM-Run-SpywareTerminator - c:\program files\Spyware Terminator\SpywareTerminatorShield.exe


.
------- Supplementary Scan -------
.
uStart Page = about:blank
uDefault_Search_URL =
uSearchURL,(Default) = hxxp://www.searchgateway.net/search-Google-Gateway.php?sa=Search+Here&client=pub-4642981363251965&forid=1&ie=ISO-8859-1&oe=ISO-8859-1&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A11&q=%s
IE: Crawler Search - tbr:iemenu
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\ctbr.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {6715D12F-213F-4C6E-ACE1-8A363F550B96} - hxxp://www.gamehouse.com/games/DoggieDash.cab
DPF: {74E4A24D-5224-4F05-8A41-99445E0FC22B} - hxxp://www.gamehouse.com/games/gamehouse/ghplayer.cab
DPF: {74EF5274-F439-2168-B543-14745B625C72} - hxxp://www.gamehouse.com/games/WeddingDash2.cab
DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} - hxxp://www.gamehouse.com/games/JBGamePlayer.cab
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://www.gamehouse.com/games/zylom/zylomplayer.cab
DPF: {D40F5876-A494-4124-8161-82625BB28C06} - hxxp://www.gamehouse.com/games/Chocolatier2.cab
FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\krdyd8eg.default\
FF - prefs.js: browser.startup.homepage - about:blank
FF - component: c:\progra~1\Crawler\firefox\components\xcomm.dll
FF - component: c:\progra~1\Crawler\firefox\components\xshared.dll
FF - component: c:\progra~1\Crawler\firefox\components\xsupport.dll
FF - component: c:\progra~1\Crawler\firefox\components\xwsg.dll
.

**************************************************************************

catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-04 17:06:43
Windows 5.1.2600 Service Pack 2 NTFS

detected NTDLL code modification:
ZwOpenFile

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-1659004503-764733703-682003330-500\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:10,a8,30,d3,b8,33,00,8f,fc,ad,fd,0d,76,5a,ce,7c,4c,c5,d0,2d,c1,00,ab,
e2,32,1a,58,0b,6d,4b,57,a0,c0,af,28,a6,00,0c,5c,e7,9b,51,de,34,80,c4,5c,77,\
"??"=hex:07,49,a2,2d,fb,b0,e3,48,51,fa,5f,01,d8,8c,79,84
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(684)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2009-04-04 17:08:56
ComboFix-quarantined-files.txt 2009-04-04 15:08:39

Pre-Run: 20,138,151,936 bytes free
Post-Run: 20,118,212,608 bytes free

195 --- E O F --- 2009-01-13 21:10:23

Poslao: 04 Apr 2009 17:14
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Uploaduj mi:

c:\windows\EXPLORER.EXE

preko:

http://www.mycity.rs/ambulanta-upload.php

Poslao: 04 Apr 2009 17:21
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

Uplodovao sam

Poslao: 04 Apr 2009 17:28
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Moze li malo detaljnije kada ti je Nod to prijavio, sta se potom desavalo?

Imas li neki log od Noda da mi pokazes?

Poslao: 04 Apr 2009 18:38
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

problem mi se pojavio sinoc. Prvo je nod smestio neke fajlove iz F u quaratine; uradio skeniranje i on je pronasao neka 3 zarana fajl koje sam obrisao. Asad je poceo da smesta neke faljove iz c (tu je instaliran windows) i to uglavno iz program file. A skeniranjem f vise ne pokazuje da je nesto zarazeno sad rad skeniranje C

Poslao: 04 Apr 2009 18:45
Idi na vrh
offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8620
  • Gde živiš: Novi Beograd

Kad si vec tu, uploaduj i ovo, za svaki slucaj:

c:\windows\system32\USERINIT.EXE

link ti je gore dat.

Poslao: 05 Apr 2009 20:04
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

i ovo sam uplodovao

Poslao: 05 Apr 2009 22:10
Idi na vrh
offline
  • GTA  Male
  • Počasni građanin
  • Pridružio: 14 Avg 2008
  • Poruke: 717

i ovo sam uplodovao
P.S. evo sta je pokazao nod
Scan Log
Version of virus signature database: 3988 (20090404)
Date: 05/04/2009 Time: 9:15:17 PM
Scanned disks, folders and files: C:\;F:\
C:\AUTOEXEC.BAT » MIME - is OK (internal scanning not performed)
C:\pagefile.sys - error opening [4]
C:\Documents and Settings\Administrator\NTUSER.DAT - error opening [4]
C:\Documents and Settings\Administrator\ntuser.dat.LOG - error opening [4]
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\krdyd8eg.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities\{012CA8E8-D2EE-4A5F-8A24-6E65E8D6C935}\Microsoft\Outlook Express\Inbox.dbx » DBX - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities\{012CA8E8-D2EE-4A5F-8A24-6E65E8D6C935}\Microsoft\Outlook Express\Sent Items.dbx » DBX - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\CardSpace\CardSpace.db - error opening [4]
C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\CardSpace\CardSpace.db.shadow - error opening [4]
C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat - error opening [4]
C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG - error opening [4]
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\RI13GGKY\em[1].txt - a variant of Win32/Kryptik.LP trojan - cleaned by deleting - quarantined [1]
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\T6D0UMCJ\ge[1].txt - Win32/Joleee.NG worm - cleaned by deleting - quarantined [1]
C:\Documents and Settings\Administrator\My Documents\Odštampaj stranicu - Sta su to Torenti.mht » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\My Documents\Italija\Polovni automobil Fiat punto cena 650 ( po dogovoru ) 327530- auto oglasi - MojAuto - polovni automobili.mht » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\My Documents\My Videos\RealPlayer Downloads\preferans.mht » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\My Documents\sppski\Kaleidoskop - Marina Cvetaeva.mht » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\Administrator\My Documents\sppski\Zak Prever.mht » MIME - is OK (internal scanning not performed)
C:\Documents and Settings\LocalService\NTUSER.DAT - error opening [4]
C:\Documents and Settings\LocalService\ntuser.dat.LOG - error opening [4]
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat - error opening [4]
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG - error opening [4]
C:\Documents and Settings\NetworkService\NTUSER.DAT - error opening [4]
C:\Documents and Settings\NetworkService\ntuser.dat.LOG - error opening [4]
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat - error opening [4]
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG - error opening [4]
C:\Program Files\AGEIA Technologies\AGEIA_PhysX_Help.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Ahead\Nero\CDI\CDI_VCD.CFG » MIME - is OK (internal scanning not performed)
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe - Win32/Virut.NBM virus - error while cleaning
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - Win32/Virut.NBM virus - deleted
C:\Program Files\Common Files\LightScribe\LSSrvc.exe - Win32/Virut.NBM virus - error while cleaning
C:\Program Files\Common Files\LightScribe\Content\Getting Started.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Crawler\firefox\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Java\jre6\lib\resources.jar » ZIP » com/sun/org/apache/xerces/internal/impl/msg/XIncludeMessages.properties » MIME - is OK (internal scanning not performed)
C:\Program Files\Java\jre6\lib\resources.jar » ZIP » com/sun/xml/internal/fastinfoset/resources/ResourceBundle.properties » MIME - is OK (internal scanning not performed)
C:\Program Files\Java\jre6\lib\resources.jar » ZIP » javax/xml/bind/Messages.properties » MIME - is OK (internal scanning not performed)
C:\Program Files\Java\jre6\lib\deploy\ffjcext.zip » ZIP » {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}/chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Java\jre6\lib\deploy\jqs\ff\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Microsoft Office\OFFICE11\1033\VIDEO.MHT » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\chrome\browser.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\chrome\comm.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\chrome\pippki.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\chrome\reporter.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\chrome\toolkit.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Nero\Nero Burning ROM\CDI\CDI_VCD.CFG » MIME - is OK (internal scanning not performed)
C:\Program Files\Real\RealPlayer\rphelperapp.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\Program Files\Real\RealPlayer\browserrecord\chrome.manifest » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony\Vegas Pro 8.0\Sony Vegas Pro 8 -- ShuttlePRO v2.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony\Vegas Pro 8.0\Sony Vegas Pro 8 -- ShuttlePRO.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony\Vegas Pro 8.0\Sony Vegas Pro 8 -- ShuttleXpress.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Sound Forge 7.0\main.cab » CAB » shuttlepromht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Sound Forge 7.0\main.cab » CAB » shuttlepro2mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Sound Forge 7.0\main.cab » CAB » shuttlexpmht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Vegas Pro 8.0\main.cab » CAB » Sony_Vegas_Pro_8_ShuttlePRO_v2.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Vegas Pro 8.0\main.cab » CAB » Sony_Vegas_Pro_8_ShuttlePRO.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Sony Setup\Vegas Pro 8.0\main.cab » CAB » Sony_Vegas_Pro_8_ShuttleXpress.mht » MIME - is OK (internal scanning not performed)
C:\Program Files\Winamp\UninstWA.exe » NSIS - incorrect CRC checksum, the file may be damaged
C:\Program Files\Windows NT\hypertrm.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\Program Files\WinRAR\Uninstall.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\Qoobox\Quarantine\C\WINDOWS\system32\paso.el.vir - probably a variant of Win32/TrojanDownloader.Small trojan - cleaned by deleting - quarantined [1]
C:\System Volume Information\MountPointManagerRemoteDatabase - error opening [4]
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP312\A0143319.exe » NSIS - bad archive
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP356\A0155109.manifest » MIME - is OK (internal scanning not performed)
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP356\A0155334.exe » NSIS - incorrect CRC checksum, the file may be damaged
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP356\A0155338.exe » NSIS - incorrect CRC checksum, the file may be damaged
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160172.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160178.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160179.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160183.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160184.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160185.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160190.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160191.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160192.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160193.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160194.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160195.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160196.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160197.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160198.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160199.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160200.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160201.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160202.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160205.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160207.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160208.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160209.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160210.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160211.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160212.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160216.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160217.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160218.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160220.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160221.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160222.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160223.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160224.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160225.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160226.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160227.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160228.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160229.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160230.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160231.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160232.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160233.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160235.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160263.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160264.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160265.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160266.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160278.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160279.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160280.Exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160284.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160285.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160291.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160314.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160315.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160324.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160325.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160348.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160349.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160350.exe - Win32/Virut.NBM virus - deleted
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160372.old - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160373.old - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160374.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160375.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160376.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160377.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160378.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160379.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160380.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160381.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160382.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160383.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160384.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160385.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160386.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160387.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160388.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160389.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160390.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160391.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160392.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160393.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160394.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160395.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160396.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160397.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160398.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160399.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160400.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160401.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160402.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160403.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160404.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160405.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160406.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160407.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160408.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160409.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160410.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160411.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160412.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160413.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160414.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160415.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160416.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160417.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160418.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160419.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160420.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160421.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160422.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160423.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160424.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160425.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160426.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160427.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160428.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160429.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160430.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160431.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160432.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160433.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160434.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160435.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160436.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160437.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160438.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160439.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160444.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160445.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160446.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160447.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160448.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160449.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160450.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160451.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160452.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160453.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160454.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160455.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160456.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160457.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160458.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160459.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160460.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160461.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160462.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160463.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160466.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160467.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160468.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160469.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160470.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160471.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160472.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160473.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160474.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160475.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160476.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160477.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160478.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160479.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160480.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160481.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160482.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160483.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160484.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160485.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160486.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160487.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160488.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160489.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160490.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160491.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160492.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160493.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160494.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160495.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160496.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160497.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160498.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160499.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160500.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160501.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160502.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160503.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160504.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160505.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160506.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160507.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160508.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160509.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160510.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160511.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160512.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160513.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160514.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160515.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160516.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160517.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160518.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160519.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160520.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160521.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160522.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160523.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160524.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160525.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160526.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160527.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160528.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160529.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160530.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160531.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160532.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160533.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160534.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160535.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160536.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160537.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160538.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160539.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160540.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160541.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160542.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160543.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160544.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160545.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160546.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160547.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160548.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160549.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160550.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160551.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160552.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160553.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160554.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160555.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160556.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160557.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160558.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160559.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160560.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160561.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160562.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160563.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160564.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160565.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160566.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160567.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160568.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160569.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160570.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160571.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160572.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160573.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160574.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160575.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160576.scr - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160577.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160578.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160579.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160580.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160581.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160582.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160583.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160584.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160585.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160586.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160587.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160588.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160589.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160590.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160591.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160592.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160593.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160594.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160595.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160596.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160597.exe » CAB - is OK
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160598.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160599.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160600.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160601.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160602.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160603.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160604.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160605.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160606.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160607.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160608.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160609.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160610.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160611.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160612.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160613.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160614.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160615.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160616.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160617.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160618.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160619.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160812.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160867.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160868.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160869.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160870.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP371\A0160871.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160904.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160910.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160916.scr - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160918.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160919.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160920.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160921.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160922.scr - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160923.scr - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160924.scr - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160926.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160932.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160933.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160937.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160938.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160948.EXE - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160950.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160955.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160956.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160958.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160961.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160962.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160969.Exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160972.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160973.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160974.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160975.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160976.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160977.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160978.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160979.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160980.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160981.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160982.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160983.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160984.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160985.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160986.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160987.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160988.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160989.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160990.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160991.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160992.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160993.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160994.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160995.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160996.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160997.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160998.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0160999.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP372\A0161000.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161012.el - probably a variant of Win32/TrojanDownloader.Small trojan - cleaned by deleting - quarantined [1]
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161015.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161016.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161017.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161018.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161019.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161020.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161021.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161022.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161034.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161035.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161036.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161037.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161038.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161039.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161040.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161041.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161042.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161043.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161044.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161045.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161046.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161047.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161048.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161051.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161052.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161053.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161054.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161055.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161058.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161059.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161110.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161111.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161114.EXE - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161165.exe - Win32/Virut.NBM virus - cleaned - quarantined
C:\System Volume Information\_restore{0AE269C2-5831-4C82-B99A-83CC59743A73}\RP373\A0161171.exe - Win32/Virut.NBM virus - error while cleaning
C:\System Volume Information\_restore{0AE269C2-58

MyCity » Ambulanta -> Arhiva Ambulante » Molim vas pogledajte ovo Please!!!

Ko je trenutno na forumu
 

Ukupno su 769 korisnika na forumu :: 6 registrovanih, 0 sakrivenih i 763 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: Boskovic, Fog of War, lcc, nemkea71, nenad81, wizzardone