Scanning Report
Thursday, February 26, 2009 15:56:12 - 17:30:43
Computer name: BRIDGES
Scanning type: Scan system for malware, rootkits
Target: C:\ D:\
--------------------------------------------------------------------------------
Result: 14 malware found
INI/Vundo.A (virus)
C:\WINDOWS\SYSTEM32\QPSVUVUT.INI
Stealth_file (hidden item)
C:\WINDOWS\SYSTEM32\ENGEWAPP.EXE
C:\WINDOWS\SYSTEM32\INULURI.DLL
C:\WINDOWS\SYSTEM32\RASINBRO.DLL
C:\WINDOWS\SYSTEM32\WEBIPIP.DLL
CBERROR
C:\WINDOWS\SYSTEM32\BATERAD\WINATEXP.OCX
C:\WINDOWS\SYSTEM32\BATUDMP4.DLL
C:\WINDOWS\SYSTEM32\X32OFVOC.DLL
TrackingCookie.Advertising (spyware)
System
TrackingCookie.Atdmt (spyware)
System
TrackingCookie.Atwola (spyware)
System
TrackingCookie.Doubleclick (spyware)
System
Vundo.FBW (virus)
C:\WINDOWS\SYSTEM32\SPESGGFW.INI
--------------------------------------------------------------------------------
Statistics
Scanned:
Files: 71381
System: 5503
Not scanned: 9
Actions:
Disinfected: 0
Renamed: 0
Deleted: 0
None: 14
Submitted: 0
Files not scanned:
C:\HIBERFIL.SYS
C:\PAGEFILE.SYS
C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT
C:\WINDOWS\SYSTEM32\CONFIG\SAM
C:\WINDOWS\SYSTEM32\CONFIG\SECURITY
C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE
C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\AOL\C_AMERICA ONLINE 9.0A\ORGANIZE\CYPB5
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\AOL\C_AMERICA ONLINE 9.0A\ORGANIZE\CACHE\CYP01
--------------------------------------------------------------------------------
Options
Scanning engines:
F-Secure USS: 3.0.0
F-Secure Blacklight: 0.0.0
F-Secure Hydra: 3.6.8511, 2009-02-27
F-Secure Pegasus: 1.20.0, 1969-11-31
F-Secure AVP: 7.0.171, 2009-02-26
Scanning options:
Scan defined files: COM EXE SYS OV? BIN SCR DLL SHS HTM HTML HTT VBS JS INF VXD DO? XL? RTF CPL WIZ HTA PP? PWZ P?T MSO PIF . ACM ASP AX CNV CSC DRV INI MDB MPD MPP MPT OBD OBT OCX PCI TLB TSP WBK WBT WPC WSH VWP WML BOO HLP TD0 TT6 MSG ASD JSE VBE WSC CHM EML PRC SHB LNK WSF {* PDF ZL? XML ZIP XXX ANI AVB BAT CMD JOB LSP MAP MHT MIF PHP POT SWF WMF NWS TAR
Use Advanced heuristics
I have (or had) SpectorPro installed in stealth mode which is probably what those 'stealth' files are/were - right? I can't believe how much stuff these scans are finding. I have teenagers downloading music