Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google links redirect, CD/DVD drive not working, system restore not working.


  • Please log in to reply
8 replies to this topic

#1 trhat

trhat

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 15 July 2009 - 06:40 PM

Hi!
I recently noticed that when I do a Google search, the link redirects me to random ad sites, making it nearly impossible to get to the page that I want. I tried System Restore, only to realize it won't let me go past the last step. Also, my CD/DVD drive doesn't seem to be working. You can watch movies and discs in the drive, but it will not recognize a blank disc for burning music or photos.
I have AVG, and it has only detected tracking cookies. I scan with Malwarebytes on a regular basis, and it never seems to find anything. I scanned with AdAware, and it detected tracking cookies as well. I clean out my Cookies and Temporary Internet Files folder quite frequently, but I can't seem to fix the problem.

Thanks for your help!

BC AdBot (Login to Remove)

 


#2 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:16 AM

Posted 15 July 2009 - 06:51 PM

Please download RootRepeal Rootkit Detector and save it to your Desktop.

* Close all programs and temporarily disable your anti-virus, Firewall and any anti-malware real-time protection before performing a scan.
* Click this link to see a list of such programs and how to disable them.
* Create a new folder on your hard drive called RootRepeal (C:\RootRepeal) and extract (unzip) RootRepeal.zip. (click here if you're not sure how to do this. Vista users refer to this link.)
* Open the folder and double-click on RootRepeal.exe to launch it. If using Vista, right-click and Run as Administrator...
* Click on the Files tab, then click the Scan button.
* In the Select Drives, dialog Please select drives to scan: select all drives showing, then click OK.
* When the scan has completed, a list of files will be generated in the RootRepeal window.
* Click on the Save Report button and save it as rootrepeal.txt to your desktop or the same location where you ran the tool from.
* Open rootrepeal.txt in Notepad and copy/paste its contents in your next reply.
* Exit RootRepeal and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.

Note: If RootRepeal cannot complete a scan and results in a crash report, try repeating the scan in "Safe Mode".
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#3 trhat

trhat
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 17 July 2009 - 09:18 PM

ROOTREPEAL © AD, 2007-2009
==================================================
Scan Start Time: 2009/07/17 22:16
Program Version: Version 1.3.2.0
Windows Version: Windows XP SP3
==================================================

Hidden/Locked Files
-------------------
Path: C:\hiberfil.sys
Status: Locked to the Windows API!

Path: C:\WINDOWS\system32\hjgruihiehrqyn.dat
Status: Invisible to the Windows API!

Path: C:\WINDOWS\system32\hjgruilrnvvutn.dll
Status: Invisible to the Windows API!

Path: C:\WINDOWS\system32\hjgruimbkvufoc.dll
Status: Invisible to the Windows API!

Path: C:\WINDOWS\system32\hjgruinkxvanvp.dat
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruieqatiosivp.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruiixxxexoufd.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruikryvsfqcuo.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruilabbtoxpmi.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruilbemnlpkww.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruinocehmrqdg.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruiobinnsvjul.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruipiogptvapw.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruippvufdfxvq.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruirqfmqovpgw.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruitftivkpfvn.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruivrncbdiotg.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruivytjnhkvpu.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruixbwrcgnrxr.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\hjgruixqmiiyisrp.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\system32\drivers\hjgruiabdgfvqj.sys
Status: Invisible to the Windows API!

Path: c:\documents and settings\tara\local settings\temp\etilqs_lagnpcewuayoq8nqogtq
Status: Allocation size mismatch (API: 32768, Raw: 0)

Path: C:\Documents and Settings\Tara\Application Data\Mozilla\Firefox\Profiles\h3blrw3a.default\sessionstore.js
Status: Could not get file information (Error 0xc0000008)

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\7GOIQNI1\click,XKUDAPr3BwCHCRkAOGMIAAIAIWkAAP8AAAADFwIADwKergEAh.4LAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIUeL0oAAAAA,http%3A%2F%2Fus.ard.yahoo.com%2FSIG%3D15qhsq73a%2FM%3D715481[1].htm
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\7GOIQNI1\CAKH2BSX.com%2Fnfl%2Fblog%2Fshutdown_corner%2Fpost%2FJoey-Porter-is-having-trouble-understanding-thes%3B_ylt%3DAuo6hzzS4ju2AUEPhZfKcylDubYF%3Furn%3Dnfl%2C168823&r=0
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\7GOIQNI1\CAMJWT2Z.com%2Fnfl%2Fblog%2Fshutdown_corner%2Fpost%2FJoey-Porter-is-having-trouble-understanding-thes%3B_ylt%3DAuo6hzzS4ju2AUEPhZfKcylDubYF%3Furn%3Dnfl%2C168823&r=0
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NA7UHGF\click,XKUDAM38BwAUjRoAzMEIAAIAGWgAAP8AAAADFwIAAgOergEA0M4GAAyJDAAAAAAAAAAAAAAAAAAAAAAAAAAAALMVL0oAAAAA,http%3A%2F%2Fus.ard.yahoo.com%2FSIG%3D15p77fpk6%2FM%3D715481[1]
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NA7UHGF\click,XKUDAM38BwB7BhkA-7kKAAIAZWgAAP8AAAADFwIAAgKergEAPUwPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgYL0oAAAAA,http%3A%2F%2Fus.ard.yahoo.com%2FSIG%3D15penpe6v%2FM%3D715481[1].htm
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NA7UHGF\activity;src=1133021;met=1;v=1;pid=36368951;aid=215380338;ko=0;cid=31684196;rid=31702072;rv=1;&timestamp=1244483510765;eid1=2;ecn1=0;etm1=30;eid3=12;ecn3=0;etm3=5;eid5=99390[1].gif
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NA7UHGF\click,XKUDAM38BwC7xCQAjOMKAAIATWgAAP8AAAADFwIAAgOergEAkZYOALyHDwAAAAAAAAAAAAAAAAAAAAAAAAAAAGQXL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609108,;ord=1244600164
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NA7UHGF\entity;entity=tvseries-100177;network=109;genre=comedy;genre=animated;genre=family;genre=sitcom;;entry=no;refer=www.fancast[2].com;tile=1;sz=728x90;ord=4000147754776789969
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NA7UHGF\entity;entity=tvseries-3593;network=13;genre=lawcrime;genre=culturesociety;genre=reality;genre=documentary;genre=realityshowtv;genre[2].com;tile=1;sz=728x90;ord=3060042024122548799
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NA7UHGF\entity;entity=tvseries-7716;network=13;genre=sitcomtv;genre=comedy;genre=animated;genre=sitcom;genre=absurdcomedy;;entry=no;refer=ww[2].com;tile=1;sz=728x90;ord=3030573441819974604
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NA7UHGF\click,XKUDAM38BwCmOSMAQ70KAAIABWgAAP8AAAADFwIAAgOergEAdqwPADtRDwAAAAAAAAAAAAAAAAAAAAAAAAAAAC8VL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609130,;ord=1244599599
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NA7UHGF\click,XKUDAM38BwDuvBsAeecKAAIBbWgAAP8AAAADFwIAAgOergEAxsUEAIaODwAAAAAAAAAAAAAAAAAAAAAAAAAAAEgYL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609108,;ord=1244600392
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\9S0S6OP9\CABYLCTH.com%2Fnfl%2Fblog%2Fshutdown_corner%2Fpost%2FJoey-Porter-is-having-trouble-understanding-thes%3B_ylt%3DAuo6hzzS4ju2AUEPhZfKcylDubYF%3Furn%3Dnfl%2C168823&r=0
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\9S0S6OP9\click,XKUDAM38BwD4-SEAUXMKAAAA.WgAAAkAAgADFwIAAgKergEAQekOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHkdL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609108,;ord=1244601721
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\CD2NC3SB\click,XKU[2].com%2Fnfl%2Fblog%2Fshutdown_corner%2Fpost%2Fjoey-porter-is-having-trouble-understanding-thes%3B_ylt%3Dauo6hzzs4ju2auephzfkcyldubyf%3Furn%3Dnfl%2C168823,;ord=1244601988
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\CD2NC3SB\click,XKUDAM38BwDmASQAo.0IAAAAgWgAAAkAAgADFwIAAgOergEAHQ0DANniDAAAAAAAAAAAAAAAAAAAAAAAAAAAAOoYL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609108,;ord=1244600554
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E543IPIR\dref=http%253A%252F%252Fsports[1].com%252Fnfl%252Frumors%252Fpost%252FCowboys-have-shopped-LB-Bobby-Carpenter%253B_ylt%253DAtC8oUgWEsKbmCuQNIDz1XI5nYcB%253Furn%253Dnfl%252C149826
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E543IPIR\click,XKUDAHcuCQD-CRkA-7kKAAIAAWgAAP8AAAACDgIAgAKergEAPUwPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEZKLUoAAAAA,http%3A%2F%2Fus.ard.yahoo.com%2FSIG%3D15p93fmem%2FM%3D715481[1].htm
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E543IPIR\activity;src=1133021;met=1;v=1;pid=36368951;aid=215380338;ko=0;cid=31684196;rid=31702072;rv=1;&timestamp=1244483480765;eid1=2;ecn1=0;etm1=10;eid3=12;ecn3=0;etm3=9;[1].gif
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E543IPIR\entity;entity=tvseries-3593;network=13;genre=lawcrime;genre=culturesociety;genre=reality;genre=documentary;genre=realityshowtv;genr[2].com;tile=2;sz=300x250;ord=3060042024122548799
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E543IPIR\videoplayer;entity=tvseries-100177;network=109;genre=comedy;genre=animated;genre=family;genre=sitcom;;entry=no;refer=www.fancast[2].com;tile=1;sz=728x90;ord=6494178359719273490
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E543IPIR\videoplayer;entity=tvseries-7716;network=13;genre=sitcomtv;genre=comedy;genre=animated;genre=sitcom;genre=absurdcomedy;;entry=no;ref[2].com;tile=1;sz=728x90;ord=4670008795714556486
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E543IPIR\videoplayer;entity=tvseries-3593;network=13;genre=lawcrime;genre=culturesociety;genre=reality;genre=documentary;genre=realityshowtv;[2].com;tile=1;sz=728x90;ord=7232368780392837337
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E543IPIR\click,XKUDAM38BwBEixkAp2sIAAIADWgAAP8AAAADFwIAAgOergEAxsUEAL0KDAAAAAAAAAAAAAAAAAAAAAAAAAAAAHEVL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609105,;ord=1244599665
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E543IPIR\click,XKUDAM38BwDP.iMAI-4KAAIAfWgAAP8AAAADFwIAAgOergEAxsUEAF2XDwAAAAAAAAAAAAAAAAAAAAAAAAAAAMoYL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609108,;ord=1244600522
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E543IPIR\click,XKUDAM38BwDu-SEAUXMKAAIAJWgAAP8AAAADFwIAAgKergEAQekOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADIWL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609105,;ord=1244599858
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\E72D6XKZ\click,XKUDAM38BwDu-SEAUXMKAAAACWkAAAoAAgADFwIAAgKergEAQekOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALodL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609108,;ord=1244601786
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\GX83E30D\click,XKUDACr8BwCUJhkAZCYIAAIADAAAAP8AAAADBAIAAgKergEAD7YLAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKmIyEkAAAAA,http%3A%2F%2Fus.ard.yahoo.com%2FSIG%3D15pjt8ijm%2FM%3D715481[1].htm
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\GX83E30D\click,XKUDAM38BwD4-SEAUXMKAAIAMWgAAP8AAAADFwIAAgKergEAQekOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ4WL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609108,;ord=1244599966
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\GX83E30D\dref=http%253A%252F%252Fus.adserver.yahoo[1].com%252Fa%253Ff%253D2023882155%2526p%253Dnews%2526l%253DREC%2526c%253Dh%2526at%253Dcontent%25253D%252522no_expandable%252522
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\GX83E30D\videoplayer;entity=tvseries-100177;network=109;genre=comedy;genre=animated;genre=family;genre=sitcom;;entry=no;refer=www.fancast[2].com;tile=1;sz=728x90;ord=492831520786791902
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\GX83E30D\videoplayer;entity=tvseries-3593;network=13;genre=lawcrime;genre=culturesociety;genre=reality;genre=documentary;genre=realityshowtv;ge[2].com;tile=1;sz=728x90;ord=51550370207363384
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\GX83E30D\v=5;m=2;l=4310;cxt=30000265_1281231-85260001_1281225-30000265_1281231-30000265_1281225-30000265_1281202;kw=;ts=264818;smuid=XYuqb22qLIlXDA;p=ui%3DXYuqb22qLIlXDA%3Btr%3DCJ1Om[1]
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\GX83E30D\entity;entity=tvseries-7716;network=13;genre=sitcomtv;genre=comedy;genre=animated;genre=sitcom;genre=absurdcomedy;;entry=no;refer=w[2].com;tile=2;sz=300x250;ord=3030573441819974604
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\QJYP85KP\dref=http%253A%252F%252Fus.adserver.yahoo[1].com%252Fa%253Ff%253D85074877%2526p%253Dnews%2526l%253DREC%2526c%253Dh%2526at%253Dcontent%25253D%252522no_expandable%252522
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\QJYP85KP\videoplayer;entity=tvseries-3593;network=13;genre=lawcrime;genre=culturesociety;genre=reality;genre=documentary;genre=realityshowtv;[2].com;tile=1;sz=728x90;ord=5332713606981810939
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\QJYP85KP\videoplayer;entity=tvseries-3593;network=13;genre=lawcrime;genre=culturesociety;genre=reality;genre=documentary;genre=realityshowtv;[2].com;tile=1;sz=728x90;ord=5360715762919217809
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\QJYP85KP\activity;src=1133021;met=1;v=1;pid=36368951;aid=215380338;ko=0;cid=31684196;rid=31702072;rv=1;&timestamp=1244483470765;eid1=2;ecn1=1;etm1=10;eid2=99382;ecn2=1;etm2=0;[1].gif
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\QJYP85KP\activity;src=1133021;met=1;v=1;pid=36368951;aid=215380338;ko=0;cid=31684196;rid=31702072;rv=1;&timestamp=1244483471343;eid3=12;ecn3=1;etm3=0;eid4=11;ecn4=1;etm4=0;[1].gif
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\QJYP85KP\entity;entity=tvseries-100177;network=109;genre=comedy;genre=animated;genre=family;genre=sitcom;;entry=no;refer=www.fancast[2].com;tile=2;sz=300x250;ord=4000147754776789969
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\QJYP85KP\click,XKUDAM38BwB7BhkAGWMIAAIABWgAAP8AAAACGAIAAgKergEAY.4LAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDcLUoAAAAA,http%3A%2F%2Fus.ard.yahoo.com%2FSIG%3D15ptvmu6m%2FM%3D715481[1].htm
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\QJYP85KP\click,XKUDAM38BwDmASQAo.0IAAIAPWgAAP8AAAADFwIAAgOergEASl8HANniDAAAAAAAAAAAAAAAAAAAAAAAAAAAAO4UL0oAAAAA,http%3A%2F%2Fus[2].com%2Fmlb%2Fboxscore%3Fgid%3D290609130,;ord=1244599534
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Tara\Local Settings\Temp\Temporary Internet Files\Content.IE5\QJYP85KP\click,XKUDAOj9BwCZwRoA7aEIAAIBJWgAAP8AAAADAQIACgKergEAR1gMAAAAAAAAAAAAAAAAAAAAAAAAAAAAA[2].com%2Fmlb%2Fplayers%2F7231%2Fcareer%3B_ylt%3Dau5thg592q5pcc6chhhqpuufclcf,;ord=1244520070
Status: Locked to the Windows API!

#4 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:16 AM

Posted 17 July 2009 - 11:57 PM

Rerun Rootrepeal. After the scan completes, go to the files tab and find this file:

C:\WINDOWS\system32\drivers\hjgruiabdgfvqj.sys

Then use your mouse to highlight it in the Rootrepeal window.
Next right mouse click on it and select *wipe file* option only.
Then immediately reboot the computer.

Then run a quick-scan with Malwarebytes.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#5 trhat

trhat
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 19 July 2009 - 09:01 AM

Ok, I wiped out the file you specified and rebooted the computer, then ran Malwarebytes. Malwarebytes detected the following 6 infections. Afterward, I rebooted the computer again and re-ran Malwarebytes. It found no more infections. Here is the report from the first run of Malwarebytes where it found the 6 infections:

Malwarebytes' Anti-Malware 1.38
Database version: 2419
Windows 5.1.2600 Service Pack 3

7/19/2009 9:30:55 AM
mbam-log-2009-07-19 (09-30-47).txt

Scan type: Quick Scan
Objects scanned: 108591
Time elapsed: 13 minute(s), 5 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 6

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\WINDOWS\system32\hjgruimbkvufoc.dll (Trojan.TDSS) -> No action taken.
c:\WINDOWS\Temp\hjgruilbemnlpkww.tmp (Trojan.TDSS) -> No action taken.
c:\WINDOWS\Temp\hjgruiobinnsvjul.tmp (Trojan.TDSS) -> No action taken.
c:\WINDOWS\Temp\hjgruipiogptvapw.tmp (Trojan.TDSS) -> No action taken.
c:\WINDOWS\system32\hjgruilrnvvutn.dll (Trojan.Agent) -> No action taken.
c:\WINDOWS\system32\drivers\hjgruiabdgfvqj.sys (Trojan.Agent) -> No action taken.

#6 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:16 AM

Posted 19 July 2009 - 04:25 PM

If you’re clean, you should create a new Restore Point to prevent possible re-infection from an old one.

Go Start > Programs > Accessories > System Tools and click System Restore. Choose the radio button marked Create a Restore Point on the first screen then click Next. Give the Restore Point a name and then click Create. Then use Disk Cleanup to remove all but the most recently created Restore Point. Go Start > Run and type: "Cleanmgr" (without the quotes). Click Ok > More Options tab > Clean Up in the System Restore section to remove all previous restore points except the newly created one.

Also, go Start > Control Panel and double-click Add or Remove Programs. Post back and report any Java entries that you have.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#7 trhat

trhat
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 24 July 2009 - 07:32 PM

I'm sorry for the slow reply! My internet has been out due to a storm in the area.

I did all of the above. Malwarebytes is still coming back clean; I made a new restore point and removed all old ones; I looked for Java entries in Add & Remove Programs, but found just one thing: J2SE Runtime Environment 5.0 Update 6.

#8 trhat

trhat
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 24 July 2009 - 08:49 PM

Well, I thought I was all clear, but my AVG did its scheduled scan and has found 24 infections. I had AVG remove them, and then I restarted and ran a scan again. This is what AVG found:

"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_da.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_de.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_en.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_es.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_fi.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_fr.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_iPodService.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_it.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_ja.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_ko.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_nb.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_nl.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_pl.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_pt.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_pt_PT.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_ru.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_sv.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_zh_CN.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iPodService.Resources_zh_TW.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iTunes.Resources_da.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iTunes.Resources_da.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iTunes.Resources_de.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\WINDOWS\Temp\e74ae8ec-b588-4a95-9eea-004164f833d2.tmp:\iTunes.Resources_de.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"

So I rescanned with AVG, and now it is finding a TON more infections, most in an Itunes and Ipod files. I don't even have any music on my computer to use Itunes! I haven't downloaded anything, so I'm not sure why my AVG is just now finding this..I don't understand how I keep getting these viruses when I'm not doing anything!

"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_da.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_de.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_en.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_es.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_fi.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_fr.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_iPodService.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_it.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_ja.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_ko.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_nb.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_nl.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_pl.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_pt.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_pt_PT.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_ru.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_sv.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_zh_CN.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_zh_TW.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_da.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_da.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_de.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_de.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_en.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_en.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_es.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_es.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_fi.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_fi.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_fr.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_fr.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_it.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_it.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_iTunes.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_iTunes.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_iTunesRegistry.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ja.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ja.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ko.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ko.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_nb.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_nb.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_nl.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_nl.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pl.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pl.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pt.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pt.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pt_PT.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pt_PT.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ru.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ru.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_sv.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_sv.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_zh_CN.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_zh_CN.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_zh_TW.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_zh_TW.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_da.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_de.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_en.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_es.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_fi.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_fr.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_it.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_iTunesHelper.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_ja.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_ko.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_nb.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_nl.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_pl.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_pt.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_pt_PT.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_ru.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_sv.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_zh_CN.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_zh_TW.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_da.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_de.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_en.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_es.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_fi.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_fr.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_it.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_iTunesMiniPlayer.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_ja.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_ko.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_nb.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_nl.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_pl.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_pt.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_pt_PT.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_ru.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_sv.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_zh_CN.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Documents and Settings\Tara\Desktop\iTunesSetup.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_zh_TW.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\Program Files\iPod(2)\bin(2)\iPodService(2).Resources\en(2).lproj\iPodServiceLocalized(2).dll";"Trojan horse Small.BOG";"Moved to Virus Vault"
"C:\Program Files\iPod(2)\bin(2)\iPodService(2).Resources\iPodService(2).dll";"Trojan horse Small.BOG";"Moved to Virus Vault"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_da.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_de.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_en.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_es.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_fi.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_fr.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_iPodService.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_it.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_ja.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_ko.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_nb.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_nl.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_pl.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_pt.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_pt_PT.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_ru.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_sv.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_zh_CN.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iPodService.Resources_zh_TW.lproj_iPodServiceLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_da.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_da.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_de.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_de.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_en.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_en.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_es.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_es.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_fi.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_fi.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_fr.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_fr.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_it.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_it.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_iTunes.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_iTunes.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_iTunesRegistry.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ja.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ja.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ko.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ko.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_nb.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_nb.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_nl.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_nl.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pl.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pl.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pt.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pt.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pt_PT.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_pt_PT.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ru.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_ru.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_sv.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_sv.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_zh_CN.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_zh_CN.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_zh_TW.lproj_iTunesLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunes.Resources_zh_TW.lproj_iTunesLocalized.qtr";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_da.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_de.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_en.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_es.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_fi.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_fr.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_it.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_iTunesHelper.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_ja.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_ko.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_nb.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_nl.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_pl.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_pt.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_pt_PT.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_ru.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_sv.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_zh_CN.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesHelper.Resources_zh_TW.lproj_iTunesHelperLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_da.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_de.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_en.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_es.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_fi.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_fr.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_it.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_iTunesMiniPlayer.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_ja.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_ko.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_nb.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_nl.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_pl.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_pt.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_pt_PT.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_ru.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_sv.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_zh_CN.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"
"C:\RECYCLER\S-1-5-21-2811201175-692453717-1673258288-1006\Dc466.exe:\iTunes.msi:\iTunes.cab:\iTunesMiniPlayer.Resources_zh_TW.lproj_iTunesMiniPlayerLocalized.dll";"Trojan horse Small.BOG";"Deleted"

#9 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:16 AM

Posted 26 July 2009 - 04:57 PM

I believe that this is a "false positive".

http://discussions.apple.com/thread.jspa?t...42&tstart=0
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users