Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan Check


  • This topic is locked This topic is locked
34 replies to this topic

#1 CheckNerd

CheckNerd

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:34 PM

Posted 07 May 2008 - 01:25 PM

Hiya, I was recently alerted by my antivirus(AVG) of a trojan which was subsequently healed by it. I'm posting my recent HJT log here just to make sure that there no malicious registry entry present in my computer.
I'd really appreciate if you guys check my log and remove any doubts.
Thanks!

My log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:21:36 PM, on 5/7/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\eManager\anbmServ.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Program Files\PrevxCSI\PrevxCSI.exe
C:\Program Files\PrevxCSI\PrevxCSI.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02A2D714-433E-46E4-B217-7C3B3FAF8EAE} (ScrabbleCubes Control) - http://www.worldwinner.com/games/v46/scrab...rabblecubes.cab
O16 - DPF: {33E54F7F-561C-49E6-929B-D7E76D3AFEB1} (Pool Control) - http://www.worldwinner.com/games/v50/pool/pool.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1195574771603
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab
O16 - DPF: {B06CE1BC-5D9D-4676-BD28-1752DBF394E0} (Hangman Control) - http://www.worldwinner.com/games/v41/hangman/hangman.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{4A52F7FE-CFAD-441C-9A3D-CD34FCD63F90}: NameServer = 203.99.163.240,203.135.0.70
O17 - HKLM\System\CCS\Services\Tcpip\..\{A2B39F4F-FABC-4561-813D-998CA72AB193}: NameServer = 203.99.163.240,203.135.0.70
O17 - HKLM\System\CS1\Services\Tcpip\..\{4A52F7FE-CFAD-441C-9A3D-CD34FCD63F90}: NameServer = 203.99.163.240,203.135.0.70
O17 - HKLM\System\CS2\Services\Tcpip\..\{4A52F7FE-CFAD-441C-9A3D-CD34FCD63F90}: NameServer = 203.99.163.240,203.135.0.70
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: CSIScanner - Prevx - C:\Program Files\PrevxCSI\\PrevxCSI.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 8398 bytes
Nobody is perfect & I'm Nobody.

BC AdBot (Login to Remove)

 


#2 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:06:34 PM

Posted 07 May 2008 - 02:06 PM

Hello CheckNerd,

Welcome to Bleeping Computer :thumbsup:

I don't see anything apparent in the log, but I'd like to run this tool to check for any lurking leftovers. :)

Please download Malwarebytes' Anti-Malware from one of these places:
http://www.majorgeeks.com/Malwarebytes_Ant...ware_d5756.html
http://www.besttechie.net/tools/mbam-setup.exe

Double Click mbam-setup.exe to install the application.

* Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select "Perform Quick Scan", then click Scan.
* The scan may take some time to finish,so please be patient.
* When the scan is complete, click OK, then Show Results to view the results.
* Make sure that everything is checked, and click Remove Selected.
* When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
* The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
* Copy&Paste the entire report in your next reply along with a fresh HijackThis log.


Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.

Thanks,
tea
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?

#3 CheckNerd

CheckNerd
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:34 PM

Posted 07 May 2008 - 03:10 PM

hiya! well malwarebytes was a real eye opener.. apparently my computer was pretty messed up.. thanks..
here's my Malwarebytes log:

Malwarebytes' Anti-Malware 1.12
Database version: 729

Scan type: Quick Scan
Objects scanned: 38266
Time elapsed: 16 minute(s), 54 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 1
Registry Keys Infected: 352
Registry Values Infected: 5
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 6

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
C:\WINDOWS\system32\mscoree.dll (Rogue.MalwareCore) -> Unloaded module successfully.

Registry Keys Infected:
HKEY_CLASSES_ROOT\Interface\{343f7ed5-4f1f-4faf-b9c8-5de9f89df1dd} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{371d800c-ea03-4f2a-8225-cd6b9db3f636} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{4c1971fc-9f5d-41d0-91e7-958ce354e0bb} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{52168eaf-394c-476c-8891-4cdd0470fea2} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6c74062f-bdd2-4bdc-8477-557b8ac66950} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{77c60bc3-bc70-4312-8ab1-6661f623b99d} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{80a2f7ca-22c8-4435-9716-6f7421631a77} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{8150f909-30a4-44af-9293-9e677c03bf3c} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{89170106-7e35-4cd9-b1a5-ae7cde44d159} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{8e232a63-a5e4-41f9-bce2-d48f524a15f1} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{9fb6637e-fd7a-4f41-bc26-8cce6e48845e} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{c36b573f-6075-4534-ba1a-eef87028a072} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{cef7ac70-5b42-4b91-9c29-d6b47cc5710d} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{d13d9397-2d78-4cc9-97b7-c22317d7dd0b} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{dc3461e4-cb8c-46a9-a379-f90c12264e16} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{ff23845e-21d3-4e96-8cfb-f6d45df3f2b2} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{339f31d8-2b4b-44ba-8293-7b99e11e0e0b} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5d4348fb-df43-0334-69b8-dad6ca156781} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{047a9a40-657e-11d3-8d5b-00104b35e7ef} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0d17a350-6585-4f3d-b008-6827ebde5d85} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1d2680c9-0e2a-469d-b787-065558bc7d43} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1ec2de53-75cc-11d2-9775-00a0c9b4d50c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{24800cd0-0f4e-4df7-9f69-3c6903c89224} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3f281000-e95a-11d2-886b-00c04f869f04} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6619a740-8154-43be-a186-0319578e02db} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6619a740-8154-43be-a186-0319578e02db} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6fef44d0-39e7-4c77-be8e-c9f8cf988630} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{90f1a06e-7712-4762-86b5-7a5eba6bdb01} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{90f1a06e-7712-4762-86b5-7a5eba6bdb02} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{99749841-0d55-4cf4-8d0d-f212ece9409a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a138cf39-2cae-42c2-adb3-022658d79f2f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a8f03be3-edb7-4972-821f-af6f8ea34884} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b81ff171-20f3-11d2-8dcc-00a0c9b00525} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ca35cb3d-0357-11d3-8729-00c04f79ed0d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cb2f6723-ab3a-11d2-9c40-00c04fa30a3e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d2eaa715-dac7-4771-af5c-931611a1853c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e5cb7a31-7512-11d2-89ce-0080c792e5d8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{00b01b2e-b1fe-33a6-ad40-57de8358dc7d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{01ff4e4b-8ad0-3171-8c82-5c2f48b87e3d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{026cc6d7-34b2-33d5-b551-ca31eb6ce345} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{05eba309-0164-11d3-8729-00c04f79ed0d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{06b81c12-a5da-340d-aff7-fa1453fbc29a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07f94112-a42e-328b-b508-702ef62bcc29} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{08295c62-7462-3633-b35e-7ae68aca3948} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{09a60795-31c0-3a79-9250-8d93c74fe540} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0a29ff9e-7f9c-4437-8b11-f424491e3931} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0a3976c5-4529-4ef8-b0b0-42eed37082cd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0ae2deb0-f901-478b-bb9f-881ee8066788} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0d23f8b4-f2a6-3eff-9d37-bdf79ac6b440} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0d52abe3-3c93-3d94-a744-ac44850baccd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0e4effc0-2387-11d3-b372-00105a98b7ce} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0e71f9bd-c109-3352-bd60-14f96d56b6f3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0ff66430-c796-3ee7-902b-166c402ca288} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{108296c1-281e-11d3-bd22-0000f80849bd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{112bc2e7-9ef9-3648-af9e-45c0d4b89929} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{11581718-2434-32e3-b559-e86ce9923744} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1163d0ca-2a02-37c1-bf3f-a9b9e9d49245} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{146855fa-309f-3d0e-bb3e-df525f30a715} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{146a47ab-a2cf-3587-bb25-2b286d7566b4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{14910622-09d4-3b4a-8c1e-9991dbdcc553} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{14be6b21-c682-3a3a-8b24-fee75b4ff8c5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{18b1c7ee-68e3-35bb-9e40-469a223285f7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1a06a4dc-e239-3717-89e1-d0683f3a5320} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1b979846-aaeb-314b-8e63-d44ef1cb9efc} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1c97ef1d-74ed-3d21-84a4-8631d959634a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1d09b407-a97f-378a-accb-82ca0082f9f3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1e66f26b-79ee-11d2-8710-00c04f79ed0d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1f17c39c-99d5-37e0-8e98-8f27044bd50a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1f9f18a3-efc0-3913-84a5-90678a4a9a80} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{20051d1b-321f-3e4d-a3da-5fbe892f7ec5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{204d5a28-46a0-3f04-bd7c-b5672631e57f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{21f5a790-53ea-3d73-86c3-a5ba6cf65fe9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2206d773-ca1c-3258-9456-ceb7706c3710} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{24540ebc-316e-35d2-80db-8a535caf6a35} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{24eec005-3938-3c71-821d-7f68fd850b2d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2763be6b-f8cf-39d9-a2e8-9e9815c0815e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{27e986e1-baec-3d48-82e4-14169ca8cecf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{27f31d55-d6c6-3676-9d42-c40f3a918636} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2846ae5e-a9fa-36cf-b2d1-6e95596dbde7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{29625281-51ce-3f8a-ac4d-e360cacb92e2} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{29a6cf6f-d663-31a7-9210-1347871681fc} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{29c69707-875f-3678-8f01-283094a2dfb1} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{29c98dfc-ac6b-4788-bddd-ca41d6d3704a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2bb6c5e0-c2b9-3608-8868-21cfd6ddb91e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2c314899-8f99-3041-a49d-2f6afc0e6296} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2d5ec63c-1b3e-3ee4-9052-eb0d0303549c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2decbcb7-bac0-316d-9131-43035c5cb480} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{30ac0b94-3bdb-3199-8a5d-eca0c5458381} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{31c967b5-2f8a-3957-9c6d-34a0731db36c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{31d353b3-0a0a-3986-9b20-3ec4ee90b389} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{346d5b9f-45e1-45c0-aadf-1b7d221e9063} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3495e5fa-2a90-3ca7-b3b5-58736c4441dd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{35e946e4-7cda-3824-8b24-d799a96309ad} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{36dcda30-dc3b-4d93-be42-90b2d74c64e7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{374050dd-6190-3257-8812-8230bf095147} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{390e92c9-fa66-3357-bef2-45a1f34186b9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{39b68485-6773-3c46-82e9-56d8f0b4570c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3b0398c9-7812-4007-85cb-18c771f2206f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3bd1f243-9bc4-305d-9b1c-0d10c80329fc} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3c9dca8b-4410-3143-b801-559553eb6725} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3cded51a-86b4-39f0-a12a-5d1fdced6546} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3d367908-928f-3c13-8b93-5e1718820f6d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3ddb2114-9285-30a6-906d-b117640ca927} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3e5509f0-1fb9-304d-8174-75d6c9afe5da} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3e8e0f03-d3fd-3a93-bae0-c74a6494dbca} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3f4a4283-6a08-3e90-a976-2c2d3be4eb0b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3fa7a1c5-812c-3b56-b957-cb14af670c09} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3fb717af-9d21-3016-871a-df817abddd51} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3fdceec6-b14b-37e2-bb69-abc7ca0da22f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{40031115-09d2-3851-a13f-56930be48038} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{405c2d81-315b-3cb0-8442-ef5a38d4c3b8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{40ae2088-ce00-33ad-9320-5d201cb46fc9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{41970d73-92f6-36d9-874d-3bd0762a0d6f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4224ac84-9b11-3561-8923-c893ca77acbe} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4286fa72-a2fa-3245-8751-d4206070a191} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{432d76ce-8c9e-4eed-addd-91737f27a8cb} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{433ca926-9887-3541-89cc-5d74d0259144} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{43cd41ad-3b78-3531-9031-3059e0aa64eb} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{44181b13-ae94-3cfb-81d1-37db59145030} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4479c009-4cc3-39a2-8f92-dfcdf034f748} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{458aa3b5-265a-4b75-bc05-9bea4630cf18} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4599202d-460f-3fb7-8a1c-c2cc6ed6c7c8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{46080ca7-7cb8-3a55-a72e-8e50eca4d4fc} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{463ae13f-c7e5-357e-a41c-df8762fff85c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{46e97093-b2ec-3787-a9a5-470d1a27417c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{475e398f-8afa-43a7-a3be-f4ef8d6787c9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{477a7d8e-8d26-3959-88f6-f6ab7e7f50cf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{47d3c68d-7d85-3227-a9e7-88451d6badfc} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48728b3f-f7d9-36c1-b3e7-8bf2e63ce1b3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48a75519-cb7a-3d18-b91e-be62ee842a3e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48ad62e8-bd40-37f4-8fd7-f7a17478a8e6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48c6e96f-a2f3-33e7-ba7f-c8f74866760b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48d0cfe7-3128-3d2c-a5b5-8c7b82b4ab4f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4b601364-a04b-38bc-bd38-a18e981324cf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4be89ac3-603d-36b2-ab9b-9c38866f56d5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4c3ebfd5-fc72-33dc-bc37-9953eb25b8d7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4c69c54f-9824-38cc-8387-a22dc67e0bab} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4d187ac2-d815-3b7e-bcea-8e0bbc702f7c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4e515531-7a71-3cdd-8078-0a01c85c8f9d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4e77ec8f-51d8-386c-85fe-7dc931b7a8e7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4f272c37-f0a8-350c-867b-2c03b2b16b80} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{50369004-db9a-3a75-be7a-1d0ef017b9d3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{50aad4c2-61fa-3b1f-8157-5ba3b27aee61} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{53a3c917-bb24-3908-b58b-09ecda99265f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5520b6d3-6ec6-3ce7-958b-e69faf6eff99} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5610f042-ff1d-36d0-996c-68f7a207d1f0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{57154c7c-edb2-3bfd-a8ba-924c60913ebf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{58897d76-ef6c-327a-93f7-6cd66c424e11} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{58d052bc-a3df-3508-ac95-ff297bdc9f0c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{590e4a07-dafc-3be7-a178-da349bba980b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5a18d43e-115b-3b8b-8245-9a06b204b717} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5b76534c-3acc-3d52-aa61-d788b134abe2} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5c35f099-165e-3225-a3a5-564150ea17f5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5c3e6ce8-b218-3762-883c-91bc987cdc2d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5ca9971b-2dc3-3bc8-847a-5e6d15cbb16e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5f3a0f8d-5ef9-3ad5-94e0-53aff8bce960} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5f9a955f-aa55-4127-a32b-33496aa8a44e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{61b3e12b-3586-3a58-a497-7ed7c4c794b9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{62545937-20a9-3d0f-b04b-322e854eacb0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{62e92675-cb77-3fc9-8597-1a81a5f18013} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{630a3ef1-23c6-31fe-9d25-294e3b3e7486} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{647053c3-1879-34d7-ae57-67015c91fc70} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{66ce75d4-0334-3ca6-bca8-ce9af28a4396} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{673dfe75-9f93-304f-aba8-d2a86ba87d7c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{676e1164-752c-3a74-8d3f-bcd32a2026d6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{682d63b8-1692-31be-88cd-5cb1f79edb7b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6850404f-d7fb-32bd-8328-c94f66e8c1c7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6896b49d-7afb-34dc-934e-5add38eeee39} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{68f8aea9-1968-35b9-8a0e-6fdc637a4f8e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6a02951c-b129-4d26-ab92-b9ca19bdca26} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6c1c243a-2146-3342-8078-ac4bfb9db4e9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6f674828-9081-3b45-bc39-791bd84ccf8f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6f8527bf-5aad-3236-b639-a05177332efe} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{70a738d1-1bc5-3175-bd42-603e2b82c08b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{726bbdf4-6c6d-30f4-b3a0-f14d6aec08c7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{742ad1fb-b2f0-3681-b4aa-e736a3bce4e1} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{74bdd0b9-38d7-3fda-a67e-d404ee684f24} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{75215200-a2fe-30f6-a34b-8f1a1830358e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{75999eba-0679-3d43-bdc4-02e4d637f1b1} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{769b8b68-64f7-3b61-b744-160a9fcc3216} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{777f668e-3272-39cd-a8b5-860935a35181} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{78d22140-40cf-303e-be96-b3ac0407a34d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7ae01d6c-bee7-38f6-9a86-329d8a917803} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7ae844f0-eca8-3f15-ae27-afa21a2aa6f8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7b769b29-35f0-3bdc-aae9-e99937f6cdec} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7b938a6f-77bf-351c-a712-69483c91115d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7bc115cd-1ee2-3068-894d-e3d3f7632f40} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7d23ccc6-a390-406e-ab67-2f8b7558f6f6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7e3393ab-2ab2-320b-8f6f-eab6f5cf2caf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7e34ab89-0684-3b86-8a0f-e638eb4e6252} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7f6bcbe5-eb30-370b-9f1b-92a6265afedd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7f71db2d-1ea0-3cae-8087-26095f5215e6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7f8c7dc5-d8b4-3758-981f-02af6b42461a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7f976b72-4b71-3858-bee8-8e3a3189a651} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7fd3958d-0a14-3001-8074-0d15ead7f05c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7fe87a55-1321-3d9f-8fef-cd2f5e8ab2e9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{81c5fe01-027c-3e1c-98d5-da9c9862aa21} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{837a6733-1675-3bc9-bbf8-13889f84daf4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{84589833-40d7-36e2-8545-67a92b97c408} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{84f70b6c-d59e-394a-b879-ffcc30ddcaa2} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8833bc41-dc6b-34b9-a799-682d2554f02f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{88c8a919-eb24-3cca-84f7-2ea82bb3f3ed} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{89a86e7b-c229-4008-9baa-2f5c8411d7e0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{89bcc804-53a5-3eb2-a342-6282cc410260} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{89d26277-8408-3fc8-bd44-cf5f0e614c82} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8a3fd229-b2a9-347f-93d2-87f3b7f92753} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8c1425c9-a7d3-35cd-8248-928ca52ad49b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8c40d44a-4ede-3760-9b61-50255056d3c7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8d36569b-14d6-3c3d-b55c-9d02a45bfc3d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8f45c7ff-1e6e-34c1-a7cc-260985392a05} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8f6d198c-e66f-3a87-aa3f-f885dd09ea13} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8fd730c1-dd1b-3694-84a1-8ce7159e266b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{91591469-efef-3d63-90f9-88520f0aa1ef} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9173d971-b142-38a5-8488-d10a9dcf71b0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{91f672a3-6b82-3e04-b2d7-bac5d6676609} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{92755472-2059-3f96-8938-8ac767b5187b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{92e76a74-2622-3aa9-a3ca-1ae8bd7bc4a8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{93d11de9-5f6c-354a-a7c5-16ccca64a9b8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{93f551d6-2f9e-301b-be63-85aef508cae0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9546306b-1b68-33af-80db-3a9206501515} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{964aa3bd-4b12-3e23-9d7f-99342afae812} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{96705ee3-f7ab-3e9a-9fb2-ad1d536e901a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{96a058cd-faf7-386c-85bf-e47f00c81795} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9a3a64f4-8ba5-3dcf-880c-8d3ee06c5538} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9a944885-edaf-3a81-a2ff-6a9d5d1abfc7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9b924ec5-bf13-3a98-8ac0-80877995d403} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9bf86f6e-b0e1-348b-9627-6970672eb3d3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9c125a6f-eae2-3fc1-97a1-c0dceab0b5df} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9c67f424-22dc-3d05-ab36-17eaf95881f2} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9d309f77-4655-372e-84b0-b0fb4030f3b8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9da2f8b8-59f0-3852-b509-0663e3bf643b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9e28ef95-9c6f-3a00-b525-36a76178cc9c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9e31421c-2f15-4f35-ad20-66fb9d4cd428} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9ea60eca-3dcd-340f-8e95-67845d185999} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a0e2e749-63ce-3651-8f4f-f5f996344c32} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a0f5f5dc-337b-38d7-b1a3-fb1b95666bbf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a164c0bf-67ae-3c7e-bc05-bfe24a8cdb62} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a1c0a095-df97-3441-bfc1-c9f194e494db} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a36738b5-fa8f-3316-a929-68099a32b43b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a36e4eaf-ea3f-30a6-906d-374bbf7903b1} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a3a1f076-1fa7-3a26-886d-8841cb45382f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a5448b7a-aa07-3c56-b42b-7d881fa10934} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a6673c32-3943-3bbb-b476-c09a0ec0bcd6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a7136bdf-b141-3913-9d1c-9bc5aff21470} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a7248ec6-a8a5-3d07-890e-6107f8c247e5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a7eddcb5-6043-3988-921c-25e3dee6322b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a8d058c4-d923-3859-9490-d3888fc90439} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a8f9f740-70c9-30a7-937c-59785a9bb5a4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{aa544d41-28cb-11d3-bd22-0000f80849bd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{aad4bdd3-81aa-3abc-b53b-d904d25bc01e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ab558a90-77ec-3c9a-a7e3-7b2260890a84} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ad326409-bf80-3e0c-ba6f-ee2c33b675a5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ad664904-fe8a-3217-bbf5-e6ab1d998f5f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ae53ed01-cab4-39ce-854a-8bf544eeec35} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{af60343f-6c7b-3761-839f-0c44e3ca06da} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{af8c5f8a-9999-3e92-bb41-c5f4955174cd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{afaef10f-1bc4-351f-886a-878a265c1862} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{afc681cf-e82f-361a-8280-cf4e1f844c3e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{afef65ad-4577-447a-a148-83acadd3d4b9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b0f64827-79bb-3163-b1ab-a2ea0e1fda23} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b406ac70-4d7e-3d24-b241-aeaeac343bd9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b54e38f8-17ff-3d0a-9ff3-5e662de2055f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b6eb52d5-bb1c-3380-8bca-345ff43f4b04} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b71e484d-93ed-4b56-bfb9-ceed5134822b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b81cb5ed-e654-399f-9698-c83c50665786} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bc5062b6-79e8-3f19-a87e-f9daf826960c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bcb67d4d-2096-36be-974c-a003fc95041b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bda7bee5-85f1-3b66-b610-ddf1d5898006} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c016a313-9606-36d3-a823-33ebf5006189} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c03880a5-0b5e-39ad-954a-ce0dcbd5ef7d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c1abb475-f198-39d5-bf8d-330bc7189661} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c30abd41-7b5a-3d10-a6ef-56862e2979b6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c41d0b30-a518-3093-a18f-364af9e71eb7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c41fa05c-8a7a-3157-8166-4104bb4925ba} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c437ab2e-865b-321d-ba15-0c8ec4ca119b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c498f2d9-a77c-3d4b-a1a5-12cc7b99115d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c76b435d-86c2-30fd-9329-e2603246095c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c7b9c313-2fd4-4384-8571-7abc08bd17e5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c89ac250-e18a-4fc7-abd5-b8897b6a78a5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c9f0a842-3ce1-338f-a1d4-6d7bb397bdaa} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c9f61cbd-287f-3d24-9feb-2c3f347cf570} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ca0f511a-faf2-4942-b9a8-17d5e46514e8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ca805b13-468c-3a22-bf9a-818e97efa6b7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{caa817cc-0c04-4d22-a05c-2b7e162f4e8f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{caec7d4f-0b02-3579-943f-821738ee78cc} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cbeaa915-4d2c-3f77-98e8-a258b0fd3cef} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cc20c6df-a054-3f09-a5f5-a3b5a25f4ce6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cc77f5f3-222d-3586-88c3-410477a3b65d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ccf306ae-33bd-3003-9cce-daf5befef611} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cdc70043-d56b-3799-b7bd-6113bbca160a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cdfa7117-b2a4-3a3f-b393-bc19d44f9749} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cf8f7fcf-94fe-3516-90e9-c103156dd2d5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d049dc2b-82c3-3350-a1cc-bf69fee3825e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d13b741d-051f-322f-93aa-1367a3c8aafb} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d23d2f41-1d69-3e03-a275-32ae381223ac} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d2548bf2-801a-36af-8800-1f11fbf54361} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d41969a6-c394-34b9-bd24-dd408f39f261} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d5cb383d-99f4-3c7e-a9c3-85b53661448f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d6d2034d-5f67-30d7-9cc5-452f2c46694f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d74d613d-f27f-311b-a9a3-27ebc63a1a5d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d8013eef-730b-45e2-ba24-874b7242c425} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d8013ef1-730b-45e2-ba24-874b7242c425} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d8013ff1-730b-45e2-ba24-874b7242c425} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d8a4f3eb-e7ec-3620-831a-b052a67c9944} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d9035152-6b1f-33e3-86f4-411cd21cde0e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{da317be2-1a0d-37b3-83f2-a0f32787fc67} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{daa132bf-1170-3d8b-a0ef-e2f55a68a91d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dafb2462-2a5b-3818-b17e-602984fe1bb0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{db13821e-9835-3958-8539-1e021399ab6c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dc5da001-7cd4-11d2-8ed9-d8c857f98fe3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dd5856e5-8151-3334-b8e9-07cb152b20a4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{de47d9cf-0107-3d66-93e9-a8acb06b4583} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dfd888a7-a6b0-3b1b-985e-4cdab0e4c17d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e38da416-8050-3786-8201-46f187c15213} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e724b749-18d6-36ab-9f6d-09c36d9c6016} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e772bbe6-cb52-3c19-876a-d1bfa2305f4e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e786fb32-b659-3d96-94c4-e1a9fc037868} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e7d574d5-2e51-3400-9fb6-a058f2d5b8ab} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e822f35c-ddc2-3fb2-9768-a2aebced7c40} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e9148312-a9bf-3a45-bbca-350967fd78f5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e947a0b0-d47f-3aa3-9b77-4624e0f3aca4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{eaa78d4a-20a3-3fde-ab72-d3d55e3aefe6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ebaa029c-01c0-32b6-aae6-fe21adfc3e5d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ec3dac94-df80-3017-b381-b13dced6c4d8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ecabafd1-7f19-11d2-978e-0000f8757e2a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ecc82a10-b731-3a01-8a17-ac0ddd7666cf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ed0bc45c-2438-31a9-bbb6-e2a3b5916419} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ee24a2c3-3aa2-33da-8731-a4fcc1105813} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ee832ce3-06ca-33ef-8f01-61c7c218bd7e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ee96f4e1-377e-315c-aef5-874dc8c7a2aa} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{eef05c76-5c98-3685-a69c-6e1a26a7f846} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ef24f689-14f8-4d92-b4af-d7b1f0e70fd4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f00ca7a7-4b8d-3f2f-a5f2-ce4a4478b39c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f12fde6a-9394-3c32-8e4d-f3d470947284} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f1c3bf79-c3e4-11d3-88e7-00902754c43a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f1eba909-6621-346d-9ce2-39f266c9d011} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f59d514c-f200-319f-bf3f-9e4e23b2848c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f5e692d9-8a87-349d-9657-f96e5799d2f4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f6914a11-d95d-324f-ba0f-39a374625290} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f6b6768f-f99e-4152-8ed2-0412f78517fb} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f8be2ad5-4e99-3e00-b10e-7c54d31c1c1d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fa0b54d5-f221-3648-a20c-f67a96f4a207} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fc13a7d5-e2b3-37ba-b807-7fa6238284d5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fd5cd8b1-6fe0-44f3-bbfb-65e3655b096e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fd8c8fce-4f85-36b2-b8e8-f5a183654539} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fdb2dc94-b5a0-3702-ae84-bbfa752acb36} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fdf9c30d-ccab-3e2d-b584-9e24ce8038e3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fedb2179-2335-48f0-aa28-5cda35a2b36d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ffc9f9ae-e87a-3252-8e25-b22423a40065} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\uninstall (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{a98d0065-7326-41b5-b8d9-c5b692cdb82f} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{db9fba9d-ab1b-4cc6-9745-f3b549d64e40} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\*.securewebinfo.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\*.safetyincludes.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\*.securemanaging.com (Trojan.Zlob) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\system32\mscoree.dll (Rogue.MalwareCore) -> Delete on reboot.
C:\WINDOWS\ofbl.ini (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\oflink.ini (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\OFLink.js (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\ofpds.ini (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Documents and Settings\Zeeshan\Favorites\Online Security Test.url (Rogue.Link) -> Quarantined and deleted successfully.
Nobody is perfect & I'm Nobody.

#4 CheckNerd

CheckNerd
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:34 PM

Posted 07 May 2008 - 03:20 PM

forgot the hjt log:


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:20:40 AM, on 5/8/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\eManager\anbmServ.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Program Files\PrevxCSI\PrevxCSI.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02A2D714-433E-46E4-B217-7C3B3FAF8EAE} (ScrabbleCubes Control) - http://www.worldwinner.com/games/v46/scrab...rabblecubes.cab
O16 - DPF: {33E54F7F-561C-49E6-929B-D7E76D3AFEB1} (Pool Control) - http://www.worldwinner.com/games/v50/pool/pool.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1195574771603
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab
O16 - DPF: {B06CE1BC-5D9D-4676-BD28-1752DBF394E0} (Hangman Control) - http://www.worldwinner.com/games/v41/hangman/hangman.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{4A52F7FE-CFAD-441C-9A3D-CD34FCD63F90}: NameServer = 203.99.163.240,203.135.0.70
O17 - HKLM\System\CCS\Services\Tcpip\..\{A2B39F4F-FABC-4561-813D-998CA72AB193}: NameServer = 203.99.163.240,203.135.0.70
O17 - HKLM\System\CS1\Services\Tcpip\..\{4A52F7FE-CFAD-441C-9A3D-CD34FCD63F90}: NameServer = 203.99.163.240,203.135.0.70
O17 - HKLM\System\CS2\Services\Tcpip\..\{4A52F7FE-CFAD-441C-9A3D-CD34FCD63F90}: NameServer = 203.99.163.240,203.135.0.70
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: CSIScanner - Prevx - C:\Program Files\PrevxCSI\\PrevxCSI.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 8312 bytes
Nobody is perfect & I'm Nobody.

#5 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:06:34 PM

Posted 07 May 2008 - 03:20 PM

Whoa! :thumbsup: Well now you know why I wanted you to run it.....but I sure wasn't expecting that much. How is it running now please?
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?

#6 CheckNerd

CheckNerd
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:34 PM

Posted 07 May 2008 - 03:24 PM

it shocked me outta my wits man! While i was running the Malwarebytes scan, AVG detected another trojan but it wasnt able to heal.. PC is running the way it was before .. didnt notice any change.. thanks again :thumbsup:
Nobody is perfect & I'm Nobody.

#7 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:06:34 PM

Posted 07 May 2008 - 03:33 PM

Did AVG give you a path? If it's in System Restore it's not a threat and we can fix that, but after all that mess I want to be sure before we set restore points and such.

How about an online scan and a cleanup :

Please download ATF Cleaner by Atribune.Double-click ATF-Cleaner.exe to run the program.
Under Main choose: Select All
Click the Empty Selected button.
If you use Firefox browserClick Firefox at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browserClick Opera at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.
For Technical Support, double-click the e-mail address located at the bottom of each menu.

Please download and run Bit Defender 8 online scanner
  • Install the program and then follow the prompts to download all available updates.
  • Select Antivirus and then click the Settings button. Click Default. Click Ok.
  • Select Local Drives and click Scan.
  • When the scan is complete save the log and post it back here in your next reply.
Thanks,
tea
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?

#8 CheckNerd

CheckNerd
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:34 PM

Posted 07 May 2008 - 03:48 PM

Yes, AVG does give a path to all the files that aren't healable in the virusvault. By the way, if I download too many antivirus programs, wouldnt it slow down my PC? I already have AVG,PrevX and Malwarebytes.
Nobody is perfect & I'm Nobody.

#9 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:06:34 PM

Posted 07 May 2008 - 03:54 PM

Malwarebytes is not an AntiVirus, and the online scan is just that. It won't take up residence on your computer. Do you keep one of the others disabled? If you don't, then you should. Just run one real time AV protection program, and use the other for on demand scanning. :thumbsup:
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?

#10 CheckNerd

CheckNerd
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:34 PM

Posted 07 May 2008 - 04:07 PM

okay i ran the ATF cleaner. However, I'm confused regarding the BitDefender; you want me to run the online scanner or download antivirus 2008?
Nobody is perfect & I'm Nobody.

#11 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:06:34 PM

Posted 07 May 2008 - 04:10 PM

Run the online scanner. :thumbsup:
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?

#12 CheckNerd

CheckNerd
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:34 PM

Posted 07 May 2008 - 04:16 PM

doing just that.. thanks .. I needed a tea cup to wake up from my dream of clean PC :thumbsup:
Nobody is perfect & I'm Nobody.

#13 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:06:34 PM

Posted 07 May 2008 - 04:25 PM

It won't be a dream. :) It'll be clean in no time. :thumbsup:
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?

#14 CheckNerd

CheckNerd
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:34 PM

Posted 07 May 2008 - 05:15 PM

Bit Defender log:

BitDefender Online Scanner



Scan report generated at: Thu, May 08, 2008 - 03:10:53





Scan path: C:\;D:\;E:\;







Statistics

Time
00:51:14

Files
134850

Folders
3320

Boot Sectors
3

Archives
7680

Packed Files
6650




Results

Identified Viruses
3

Infected Files
3

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
4




Engines Info

Virus Definitions
1190431

Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Scan plugins
16

Archive plugins
42

Unpack plugins
7

E-mail plugins
6

System plugins
5




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\Documents and Settings\Zeeshan\.housecall6.6\Quarantine\PLAY_MP3[1].exe.bac_a00500=>(Quarantine-4)
Detected with: Adware.PlayMp3z.A

C:\Documents and Settings\Zeeshan\.housecall6.6\Quarantine\PLAY_MP3[1].exe.bac_a00500=>(Quarantine-4)
Deleted

C:\Documents and Settings\Zeeshan\.housecall6.6\Quarantine\setup[1].exe.bac_a02196=>(Quarantine-4)=>(NSIS o)=>lzma_solid_nsis0000
Infected with: Trojan.Downloader.Zlob.ABPV

C:\Documents and Settings\Zeeshan\.housecall6.6\Quarantine\setup[1].exe.bac_a02196=>(Quarantine-4)=>(NSIS o)=>lzma_solid_nsis0000
Disinfection failed

C:\Documents and Settings\Zeeshan\.housecall6.6\Quarantine\setup[1].exe.bac_a02196=>(Quarantine-4)=>(NSIS o)=>lzma_solid_nsis0000
Deleted

C:\Documents and Settings\Zeeshan\.housecall6.6\Quarantine\setup[1].exe.bac_a02196=>(Quarantine-4)=>(NSIS o)
Update failed

C:\Documents and Settings\Zeeshan\.housecall6.6\Quarantine\setup[1].exe.bac_a02196=>(Quarantine-4)=>(NSIS o)=>lzma_solid_nsis0006
Infected with: Trojan.Downloader.Zlob.ABQY

C:\Documents and Settings\Zeeshan\.housecall6.6\Quarantine\setup[1].exe.bac_a02196=>(Quarantine-4)=>(NSIS o)=>lzma_solid_nsis0006
Disinfection failed

C:\Documents and Settings\Zeeshan\.housecall6.6\Quarantine\setup[1].exe.bac_a02196=>(Quarantine-4)=>(NSIS o)=>lzma_solid_nsis0006
Deleted

C:\Documents and Settings\Zeeshan\.housecall6.6\Quarantine\setup[1].exe.bac_a02196=>(Quarantine-4)=>(NSIS o)
Update failed
Nobody is perfect & I'm Nobody.

#15 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:06:34 PM

Posted 07 May 2008 - 08:45 PM

Hello,

Is AVG still giving you warnings?
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users