Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virus creating .exe folder with my name in every drive partition


  • Please log in to reply
18 replies to this topic

#1 flamboyant_sid

flamboyant_sid

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:26 AM

Posted 24 June 2014 - 06:49 AM

Recently I used my USB pen drive on a friend’s PC and seems to be infected with some type of Virus or malware.

Every time I start my system a white box with my name (SID) and some gibberish pops up. (Screen1)

Also an .exe folder of 638 kb with my name (SID) is automatically created in each of my drives, including USB pen drive and external hard drive.

I ran a malware check and a few key-registry and spyware were detected and deleted and cleaned, the antivirus system scan did not yield anything (I am using quick heal at the moment). I also had this pop up popping out persistently however that was resolved when I followed steps to fix disk exception processing message (http://www.techsupportall.com/how-to-fix-no-disk-exception-processing-message-c0000013-parameters-75b6bf7c-4-75b6bf7c-75b6bf7c/), by changing parameters in registry editor.

Wonder if you could help me with the .exe and start up dialogue box issue.

Attached Files


Edited by hamluis, 24 June 2014 - 07:22 AM.
Moved from XP to Am I Infected - Hamluis


BC AdBot (Login to Remove)

 


m

#2 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:03:56 AM

Posted 24 June 2014 - 10:47 AM

Hi flamboyant_sid and welcome to BleepingComputer! :)

 

Please download Malwarebytes Anti-Malware and save it to your desktop.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
  • Double-click on the renamed file to install, then follow these instructions
  • for doing a Quick Scan in normal mode.
  • Don't forget to check for database definition updates through the program's interface (preferable method) before scanning.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • After completing the scan, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab .
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, use Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#3 flamboyant_sid

flamboyant_sid
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:26 AM

Posted 25 June 2014 - 02:08 AM

Thanks Sirawit,

 

I will get on to it and submit the log with you.



#4 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:03:56 AM

Posted 25 June 2014 - 04:57 AM

OK, please keep us updated. :)

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#5 flamboyant_sid

flamboyant_sid
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:26 AM

Posted 26 June 2014 - 03:51 PM

LOg:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 6/27/2014
Scan Time: 2:07:03 AM
Logfile: log1.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.03.04.09
Rootkit Database: v2014.02.20.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: SID

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 208505
Time Elapsed: 10 min, 24 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 2
Trojan.Malex, C:\Documents and Settings\SID\Local Settings\Application Data\SysManager\winlogon.eXe, 2640, , [ff4a43bc6c0ee353dad6000ee31e4eb2]
Trojan.Malex, C:\Documents and Settings\SID\Local Settings\Application Data\SysManager\winlogon.eXe, 2820, , [ff4a43bc6c0ee353dad6000ee31e4eb2]

Modules: 0
(No malicious items detected)

Registry Keys: 19
PUP.Optional.Conduit, HKLM\SOFTWARE\CLASSES\CLSID\{537F4F0B-3542-4C7D-A3E5-CF121482696C}, , [004957a83248e55105617ffe21df6e92],
PUP.Optional.Conduit, HKLM\SOFTWARE\CLASSES\Toolbar.CT3220468, , [004957a83248e55105617ffe21df6e92],
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{537F4F0B-3542-4C7D-A3E5-CF121482696C}, , [004957a83248e55105617ffe21df6e92],
PUP.Optional.Conduit, HKLM\SOFTWARE\CLASSES\CLSID\{745AD919-3AC5-4045-9507-6F42C961EEF3}, , [004957a83248e55105617ffe21df6e92],
PUP.Optional.Conduit, HKLM\SOFTWARE\CLASSES\CLSID\{7473B6BD-4691-4744-A82B-7854EB3D70B6}, , [004957a83248e55105617ffe21df6e92],
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7473B6BD-4691-4744-A82B-7854EB3D70B6}, , [004957a83248e55105617ffe21df6e92],
PUP.Optional.Conduit, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{7473B6BD-4691-4744-A82B-7854EB3D70B6}, , [004957a83248e55105617ffe21df6e92],
PUP.Optional.Conduit, HKLM\SOFTWARE\CLASSES\CLSID\{7473B6BD-4691-4744-A82B-7854EB3D70B6}\INPROCSERVER32, , [004957a83248e55105617ffe21df6e92],
PUP.Optional.Delta.A, HKLM\SOFTWARE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, , [71d8d22de496d2640cf7363e24de8878],
Virus.Sality, HKLM\SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_AMSINT32, , [bd8c3cc37505ac8a61d3ea3e768d47b9],
Virus.Sality, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\amsint32, , [b099ff00700a96a04062d9501de6867a],
PUP.Optional.BabylonToolBar.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\BabylonToolbar, , [85c48a757efc96a0e3a12985679c6d93],
PUP.Optional.Conduit.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\ConduitSearchScopes, , [53f68c73bfbbbf7744cc09a8ab58649c],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr, , [8dbc7788adcd05318a1d04a6cf3447b9],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr_Toolbar, , [1d2c837c433778be683e38724bb84ab6],
PUP.Optional.PriceGong.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\PriceGong, , [d3765fa0f6842115819e9afd738f29d7],
PUP.Optional.Conduit.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CONDUIT\FF, , [ce7bac53a4d67cbafc5ce9c760a330d0],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, , [1e2b13ec7604171ff8808f05946e8779],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, , [0a3f3ec15d1d3bfb9c328327fb087c84],

Registry Values: 6
Trojan.Malex, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SysManagerGold, "C:\Documents and Settings\SID\Local Settings\Application Data\SysManager\winlogon.eXe", , [ff4a43bc6c0ee353dad6000ee31e4eb2]
Trojan.Malex, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SysManagerGold, "C:\Documents and Settings\SID\Local Settings\Application Data\SysManager\winlogon.eXe", , [ff4a43bc6c0ee353dad6000ee31e4eb2]
PUP.Optional.Conduit, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{7473B6BD-4691-4744-A82B-7854EB3D70B6}, ½¶stâ??FDG¨+xTë=p¶, , [004957a83248e55105617ffe21df6e92]
PUP.Optional.Conduit, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{7473B6BD-4691-4744-A82B-7854EB3D70B6}, , [004957a83248e55105617ffe21df6e92],
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{7473B6BD-4691-4744-A82B-7854EB3D70B6}, uTorrentControl_v2 Toolbar, , [004957a83248e55105617ffe21df6e92]
PUP.Optional.InstallCore.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0L1N1H2O1S, , [0a3f3ec15d1d3bfb9c328327fb087c84]

Registry Data: 4
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|AntiVirusDisableNotify, 1, Good: (0), Bad: (1),,[04459a65601a40f679885ad0d034669a]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|FirewallDisableNotify, 1, Good: (0), Bad: (1),,[3316e21d671362d411f12efc62a2d42c]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|UpdatesDisableNotify, 1, Good: (0), Bad: (1),,[8dbcae51ef8bad8946bd9e8c50b4827e]
PUP.Optional.Conduit, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.conduit.com?SearchSource=10&CUI=UN32979976491303128&UM=2&ctid=CT3306061, Good: (http://www.google.com), Bad: (http://search.conduit.com?SearchSource=10&CUI=UN32979976491303128&UM=2&ctid=CT3306061),,[5fea3fc0d6a482b48f07220cba4a827e]

Folders: 11
PUP.Optional.PriceGong.A, C:\Documents and Settings\SID\Application Data\PriceGong, , [d1781ee17406b284ee7b592de41e9b65],
PUP.Optional.PriceGong.A, C:\Documents and Settings\SID\Application Data\PriceGong\Data, , [d1781ee17406b284ee7b592de41e9b65],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy, , [62e7718eea900a2ccbc07c0a25dd50b0],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy\5C76F89BC8364C40B903179B0A273F5A, , [62e7718eea900a2ccbc07c0a25dd50b0],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy\8294F5DFD53343879DF54B13EC8A5EE9, , [62e7718eea900a2ccbc07c0a25dd50b0],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\plugins, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\xpi, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\xpi\defaults, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\xpi\defaults\preferences, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\All Users\Application Data\Conduit\IE, , [13364db2e3972f0793863c4ba0628a76],

Files: 38
Trojan.Malex, C:\Documents and Settings\SID\Local Settings\Application Data\SysManager\winlogon.eXe, , [ff4a43bc6c0ee353dad6000ee31e4eb2],
PUP.Optional.Conduit, C:\Program Files\uTorrentControl_v2\prxtbuTo2.dll, , [004957a83248e55105617ffe21df6e92],
PUP.Optional.OpenCandy.A, C:\Documents and Settings\SID\Application Data\OpenCandy\5C76F89BC8364C40B903179B0A273F5A\dlm.exe, , [a9a029d6413987aff34bdd8413ee14ec],
Trojan.Malex, C:\ SID.exe, , [4900fb041268b680bff1af5fdf22c33d],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\SPStub.exe, , [97b27f80cab0af876517203e04fd08f8],
PUP.Optional.OneClickDownloader.A, C:\Documents and Settings\SID\Local Settings\Temp\kPDn1wm4.exe.part, , [61e8f00f98e22f07aa4de073ab5619e7],
PUP.Optional.OneClickDownloader.A, C:\Documents and Settings\SID\Local Settings\Temp\fAYyHzkw.exe.part, , [fc4d738c0476cb6b5d9ac98a35ccf709],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\chLogic.exe, , [8abf38c7e1994beba3d9e37b47bac33d],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\ctbe.exe, , [55f4679825550a2c83e13a3239c705fb],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\ffLogic.exe, , [301912ed9bdf67cf621a2f2fdc255fa1],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\ieLogic.exe, , [2029877880fa53e366167de1a35ed32d],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\spch.exe, , [66e3d12e483246f0b3c99bc325dcdb25],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\spff.exe, , [e069bc43ff7b9a9cafcdcb936c95d42c],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\statisticsStub.exe, , [8bbe728ddb9f013538c899b0fb06837d],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\stub.exe, , [67e235ca384214224a5b9dd90cf4a25e],
PUP.Optional.LuckyLeap.A, C:\Documents and Settings\SID\Local Settings\Temp\dlm42.tmp\LuckyLeap0816.exe, , [70d948b7abcf072f77e664af27ddfe02],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\dlm42.tmp\mconduitinstaller.exe, , [1e2b8976007a05313e7d74f836ca7c84],
PUP.Optional.Spigot.A, C:\Documents and Settings\SID\Local Settings\Temp\dlmDC.tmp\YTDSetup.exe, , [5eebb44ba7d3fd396c45abbb9869e31d],
PUP.Optional.Conduit, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\CT3220468\uTorrentControl_v2AutoUpdateHelper.exe, , [0247f708c8b2b58134323c41c33d50b0],
PUP.Optional.Conduit, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\hk64tbuTo2.dll, , [95b437c82a50b77ff274cab3619fe31d],
PUP.Optional.Conduit, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\hktbuTo2.dll, , [bd8c807ff783a195471fb2cb10f046ba],
PUP.Optional.Conduit, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ldrtbuTo2.dll, , [87c2ff007307b680eb7bcdb057a940c0],
PUP.Optional.Conduit, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\tbuTo2.dll, , [341527d87cfeba7c481edca15aa617e9],
PUP.Optional.PriceGong.A, C:\Documents and Settings\SID\Application Data\PriceGong\Data\All.zip, , [d1781ee17406b284ee7b592de41e9b65],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy\5C76F89BC8364C40B903179B0A273F5A\3596.ico, , [62e7718eea900a2ccbc07c0a25dd50b0],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy\5C76F89BC8364C40B903179B0A273F5A\TuneUp2014ROW15day-en-GB-p4v1.exe, , [62e7718eea900a2ccbc07c0a25dd50b0],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy\8294F5DFD53343879DF54B13EC8A5EE9\TuneUpUtilities2014_en-GB.exe, , [62e7718eea900a2ccbc07c0a25dd50b0],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\chromeid.txt, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\conduit.xml, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\CT3306061.txt, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\CT3306061.xpi, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\initdata.json, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\manifest.json, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\setup.ini.txt, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\version.txt, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\plugins\TBVerifier.dll, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\xpi\install.rdf, , [bd8cad525f1b44f2ec18d6b1768c9967],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\xpi\defaults\preferences\defaults.js, , [bd8cad525f1b44f2ec18d6b1768c9967],

Physical Sectors: 0
(No malicious items detected)


(end)



#6 flamboyant_sid

flamboyant_sid
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:26 AM

Posted 26 June 2014 - 03:53 PM

Hope this helps, Now I am not too sure about what all files I need to quarantine!!!!



#7 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:03:56 AM

Posted 27 June 2014 - 03:52 AM

OK, please wait a bit. I'm currently talking with my colleagues about your result and I will give you next instruction in a short time.

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#8 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:03:56 AM

Posted 27 June 2014 - 05:50 AM

OK, run MBAM again and quarantine all of those detected, then post the log again.

 

After that please do this:

I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

What we need in your next reply:

  • MBAM log
  • ESET log (No log if nothing had been detected.)
  • How's your computer running? Did you get the popup and exe files again?

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#9 flamboyant_sid

flamboyant_sid
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:26 AM

Posted 27 June 2014 - 08:44 AM

Thanks, Will do that.

 

I might be a little slow in posting replies as sometimes it gets difficult to squeeze time between work.

 

Will get back to you ASAP.



#10 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:03:56 AM

Posted 27 June 2014 - 11:58 AM

No problem, like me said before, just keep us updated. :)

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#11 flamboyant_sid

flamboyant_sid
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:26 AM

Posted 28 June 2014 - 12:23 PM

Here's what I did, MBAM scan 2:

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 6/28/2014
Scan Time: 9:47:01 PM
Logfile: log2.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.28.03
Rootkit Database: v2014.06.23.02
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: SID

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 244658
Time Elapsed: 18 min, 50 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 26
PUP.Optional.Conduit, HKLM\SOFTWARE\CLASSES\CLSID\{537F4F0B-3542-4C7D-A3E5-CF121482696C}, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e],
PUP.Optional.Conduit, HKLM\SOFTWARE\CLASSES\Toolbar.CT3220468, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e],
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{537F4F0B-3542-4C7D-A3E5-CF121482696C}, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e],
PUP.Optional.Conduit, HKLM\SOFTWARE\CLASSES\CLSID\{745AD919-3AC5-4045-9507-6F42C961EEF3}, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e],
PUP.Optional.Conduit, HKLM\SOFTWARE\CLASSES\CLSID\{7473B6BD-4691-4744-A82B-7854EB3D70B6}, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e],
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7473B6BD-4691-4744-A82B-7854EB3D70B6}, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e],
PUP.Optional.Conduit, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{7473B6BD-4691-4744-A82B-7854EB3D70B6}, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e],
PUP.Optional.Conduit, HKLM\SOFTWARE\CLASSES\CLSID\{7473B6BD-4691-4744-A82B-7854EB3D70B6}\INPROCSERVER32, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e],
PUP.Optional.Delta.A, HKLM\SOFTWARE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, Quarantined, [6d6686f7dc9f5bdb90407b059270ef11],
PUP.Optional.Babylon.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, Quarantined, [e0f3d0ad265558de1546fb4cca383dc3],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\DataMngr, Quarantined, [7b58e39a91ea41f55056842f41c1926e],
PUP.Optional.uTorrentControl.A, HKLM\SOFTWARE\uTorrentControl_v2, Quarantined, [8251f18c3348e55188bae8dbea18946c],
PUP.Optional.Conduit.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\lipgolpfajiadodbcbljdpmbmbdmfcil, Quarantined, [22b1225bee8db6800b24758c06fe24dc],
Virus.Sality, HKLM\SYSTEM\CURRENTCONTROLSET\ENUM\ROOT\LEGACY_AMSINT32, Quarantined, [f3e02c5135464cea694ccb99f70ce11f],
Virus.Sality, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\amsint32, Quarantined, [c112b8c5a6d5c76fe63d8bdb48bb5ea2],
PUP.Optional.BabylonToolBar.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\BabylonToolbar, Quarantined, [20b35f1e5922b086dfdd6387c83b0df3],
PUP.Optional.Conduit.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\ConduitSearchScopes, Quarantined, [5b7883fa017a40f61e24ca23ba49966a],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr, Quarantined, [00d381fc0f6cd85eeff844a232d139c7],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr_Toolbar, Quarantined, [01d290edc9b21d19ac3a2cba21e2f50b],
PUP.Optional.PriceGong.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\PriceGong, Quarantined, [e0f3c9b41a61e4521b77c60d6a987888],
PUP.Optional.uTorrentControl.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\uTorrentControl_v2, Quarantined, [b0238df04536bb7bf74c497a05fd17e9],
PUP.Optional.Conduit.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CONDUIT\FF, Quarantined, [07ccceafc2b93afc9df18f5de91a7090],
PUP.Optional.Conduit.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\lipgolpfajiadodbcbljdpmbmbdmfcil, Quarantined, [dff496e7cdae4beb80b0ae53897b817f],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, Quarantined, [a82b3548bebda591a34fa52b27db7c84],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, Quarantined, [d102423b18631f1732d9de09d62d2dd3],
PUP.Optional.uTorrentControl.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\uTorrentControl_v2 Toolbar, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],

Registry Values: 9
PUP.Optional.Conduit, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{7473B6BD-4691-4744-A82B-7854EB3D70B6}, ½¶stâ??FDG¨+xTë=p¶, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e]
PUP.Optional.Conduit, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{7473B6BD-4691-4744-A82B-7854EB3D70B6}, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e],
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{7473B6BD-4691-4744-A82B-7854EB3D70B6}, uTorrentControl_v2 Toolbar, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e]
PUP.Optional.UTorrentControl.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER\{7473B6BD-4691-4744-A82B-7854EB3D70B6}, Quarantined, [f9da99e4b6c506300895c98158aaad53],
PUP.Optional.UTorrentControl.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{7473b6bd-4691-4744-a82b-7854eb3d70b6}, Quarantined, [2ea5f984e4978fa7396471d95ea4f30d],
PUP.Optional.UTorrentControl.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\{7473b6bd-4691-4744-a82b-7854eb3d70b6}, Quarantined, [3b987a036d0e3df9b8e5480219e912ee],
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SysManagerGold, "C:\Documents and Settings\SID\Local Settings\Application Data\SysManager\winlogon.eXe", Quarantined, [13c0a7d63c3f70c66a6d18d37989a060]
PUP.Optional.InstallCore.A, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0L1N1H2O1S, Quarantined, [d102423b18631f1732d9de09d62d2dd3]
Trojan.Agent, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SysManagerGold, "C:\Documents and Settings\SID\Local Settings\Application Data\SysManager\winlogon.eXe", Quarantined, [f0e392ebd9a2ad891db81dc9cf33837d]

Registry Data: 4
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|AntiVirusDisableNotify, 1, Good: (0), Bad: (1),Replaced,[ffd4d4a9a7d4da5ccb59a4e174900af6]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|FirewallDisableNotify, 1, Good: (0), Bad: (1),Replaced,[ce0539446714e65050d5dca9a85c3cc4]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|UpdatesDisableNotify, 1, Good: (0), Bad: (1),Replaced,[8f447b023a41ae8810162a5b0afae020]
PUP.Optional.Conduit, HKU\S-1-5-21-299502267-1960408961-1177238915-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.conduit.com?SearchSource=10&CUI=UN32979976491303128&UM=2&ctid=CT3306061, Good: (http://www.google.com), Bad: (http://search.conduit.com?SearchSource=10&CUI=UN32979976491303128&UM=2&ctid=CT3306061),Replaced,[10c30c712655f3435c5c3455b84c916f]

Folders: 62
PUP.Optional.PriceGong.A, C:\Documents and Settings\SID\Application Data\PriceGong, Quarantined, [7162d8a50576f442ab15f0a318ea758b],
PUP.Optional.PriceGong.A, C:\Documents and Settings\SID\Application Data\PriceGong\Data, Quarantined, [7162d8a50576f442ab15f0a318ea758b],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy, Quarantined, [4291d5a8700b46f013cde6adb84a6d93],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy\5C76F89BC8364C40B903179B0A273F5A, Quarantined, [4291d5a8700b46f013cde6adb84a6d93],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy\8294F5DFD53343879DF54B13EC8A5EE9, Quarantined, [4291d5a8700b46f013cde6adb84a6d93],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\plugins, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\xpi, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\xpi\defaults, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\xpi\defaults\preferences, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\All Users\Application Data\Conduit\IE, Quarantined, [805391ecbdbe60d6c2a92074d9295ca4],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\AddedAppDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\DefualtImages, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\DetectedAppDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\EngineFirstTimeDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\NewSearchProtectorDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\NewSearchProtectorDialog\images, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorBubbleDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorBubbleDialog\images, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorDialog\Images, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorRetakeoverDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorRetakeoverDialog\Images, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\images, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarUntrustedAppsApprovalDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\UninstallDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\UntrustedAddedAppDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\UntrustedAppApprovalDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\UntrustedAppPendingDialog, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\EmailNotifier, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ExternalComponent, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Logs, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\MyStuffApps, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\plugins, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.6.8, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.6.8\bin, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\AppsMetaData, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\DynamicDialogs, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarHiddenLogin, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarHiddenSettings, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarLogin, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarSettings, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_en, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_en\ToolbarTranslation, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\SearchInNewTab, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\NativeMessaging\CT3306061, Quarantined, [ad2689f496e59e98d745fe9c0002758b],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\NativeMessaging\CT3306061\nativeMessaging, Quarantined, [ad2689f496e59e98d745fe9c0002758b],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\NativeMessaging\CT3306061, Quarantined, [4b888eefd2a9ee489ee34c4ece34d22e],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\NativeMessaging\CT3306061\1_0_0_2, Quarantined, [4b888eefd2a9ee489ee34c4ece34d22e],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\CT3220468, Quarantined, [10c3512c96e5dc5af43d386322e0a15f],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\TestIfExeExist\CT3306061, Quarantined, [c50e6419067596a083b2d9c24bb7e51b],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\TestIfExeExist\CT3306061\nativeMessaging, Quarantined, [c50e6419067596a083b2d9c24bb7e51b],

Files: 240
PUP.Optional.Conduit, C:\Program Files\uTorrentControl_v2\prxtbuTo2.dll, Quarantined, [f6ddc1bc6714b1851480aa85f30df20e],
PUP.Optional.OpenCandy.A, C:\Documents and Settings\SID\Application Data\OpenCandy\5C76F89BC8364C40B903179B0A273F5A\dlm.exe, Quarantined, [8b487805d4a7d3636a3b939144bd916f],
Trojan.Malex, C:\ SID.exe, Quarantined, [4e851f5e651679bdd7449d3530d041bf],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\SPStub.exe, Quarantined, [577c176674070e2831b22ff21ae7b64a],
PUP.Optional.OneClickDownloader.A, C:\Documents and Settings\SID\Local Settings\Temp\kPDn1wm4.exe.part, Quarantined, [e9eaf68798e35fd7ce901afd9968ca36],
PUP.Optional.OneClickDownloader.A, C:\Documents and Settings\SID\Local Settings\Temp\fAYyHzkw.exe.part, Quarantined, [a42f6914314a0d297fdf4acd8e73e61a],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\chLogic.exe, Quarantined, [894aaad3e09b8aac8162ab766b969d63],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\ctbe.exe, Quarantined, [b0239fdec8b345f1198205190000fc04],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\ffLogic.exe, Quarantined, [28ab3d40c6b56fc75a89de43649d7888],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\ieLogic.exe, Quarantined, [993afd80adcece6852910e13c23fd52b],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\spch.exe, Quarantined, [a92a611c3e3dd95deef537ea05fc0000],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\spff.exe, Quarantined, [51823b42245780b6984b44dd0af7e917],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\statisticsStub.exe, Quarantined, [e8eb8af3a7d49d99a9c0f715e21fd32d],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\stub.exe, Quarantined, [775c67165a216cca27af77b133cdce32],
PUP.Optional.LuckyLeap.A, C:\Documents and Settings\SID\Local Settings\Temp\dlm42.tmp\LuckyLeap0816.exe, Quarantined, [9a39e499e49771c54762dd6d897bdc24],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\dlm42.tmp\mconduitinstaller.exe, Quarantined, [3b98cfaeaccf4de918d923fbdb25768a],
PUP.Optional.Spigot.A, C:\Documents and Settings\SID\Local Settings\Temp\dlmDC.tmp\YTDSetup.exe, Quarantined, [c310e39a403be650c74c4edc768b768a],
PUP.Optional.Conduit, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\CT3220468\uTorrentControl_v2AutoUpdateHelper.exe, Quarantined, [d0037b028bf03ef80193ea45a45c5fa1],
PUP.Optional.Conduit, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\hk64tbuTo2.dll, Quarantined, [557e5924e8936ec832627ab5a25e847c],
PUP.Optional.Conduit, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\hktbuTo2.dll, Quarantined, [696a2d502853a88e464e270898685ba5],
PUP.Optional.Conduit, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ldrtbuTo2.dll, Quarantined, [f3e09de0e09bb0863064f7389f615ba5],
PUP.Optional.Conduit, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\tbuTo2.dll, Quarantined, [ba191e5f1b60bf77346060cf36ca56aa],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_search.conduit.com_0.localstorage, Quarantined, [3f949ae32c4f33039abc2a8fe41e8779],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_search.conduit.com_0.localstorage-journal, Quarantined, [5083d9a4c6b5ef479fb78f2aee149a66],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\CRE\lipgolpfajiadodbcbljdpmbmbdmfcil.crx, Quarantined, [27acde9f9edd71c58aa415ec10f4bb45],
PUP.Optional.PriceGong.A, C:\Documents and Settings\SID\Application Data\PriceGong\Data\All.zip, Quarantined, [7162d8a50576f442ab15f0a318ea758b],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy\5C76F89BC8364C40B903179B0A273F5A\3596.ico, Quarantined, [4291d5a8700b46f013cde6adb84a6d93],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy\5C76F89BC8364C40B903179B0A273F5A\TuneUp2014ROW15day-en-GB-p4v1.exe, Quarantined, [4291d5a8700b46f013cde6adb84a6d93],
PUP.Optional.OpenCandy, C:\Documents and Settings\SID\Application Data\OpenCandy\8294F5DFD53343879DF54B13EC8A5EE9\TuneUpUtilities2014_en-GB.exe, Quarantined, [4291d5a8700b46f013cde6adb84a6d93],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\chromeid.txt, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\conduit.xml, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\CT3306061.txt, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\CT3306061.xpi, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\initdata.json, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\manifest.json, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\setup.ini.txt, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\version.txt, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\plugins\TBVerifier.dll, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\xpi\install.rdf, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\ct3306061\xpi\defaults\preferences\defaults.js, Quarantined, [963db5c88bf080b6de79b6de80821ee2],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\hk64tbuTo0.dll, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\hktbuTo0.dll, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ldrtbuTo0.dll, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ldrtbuTor.dll, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\tbuTo0.dll, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\tbuTo1.dll, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\tbuTor.dll, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ThirdPartyComponents.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\toolbar.cfg, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_53_307_CT3072253_images_634514692184142958_20PX_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_home_page_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_options_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_privacy_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_refresh_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_shrink_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_tell_a_friend_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_upgrade_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_Menu_uninstall-icon_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_SearchEngines_images_search_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_SearchEngines_news_icon_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_bankimages_commandcomps_block_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_About_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_Browse_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_Contact_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_Hide_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_LikeIcon_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_MoreFromPublisher_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_More_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_53_307_CT3072253_Images_634520779497696087_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_Options_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_help_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_searchengines_search_icon_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_searchengines_softonic_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_SearchEngines_tfd_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_SearchEngines_video_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_Privacy_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_Refresh_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_Upgrade_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_BankImages_Facebook_Facebook_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_Images_ClientResources_mini_browser_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_eula_png.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_about_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_clear_history_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\CacheIcons\http___storage_conduit_com_images_main_menu_contact_gif.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\RoundedCornersIE9.css, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\DialogsAPI.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\excanvas.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\generalDialogStyle.css, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\PIE.htc, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\RoundedCorners.css, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\settings.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\version.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\AddedAppDialog\app-added.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\AddedAppDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\DefualtImages\icon.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\DetectedAppDialog\app-2go.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\DetectedAppDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\EngineFirstTimeDialog\EngineFirstTimeDialog.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\EngineFirstTimeDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\EngineFirstTimeDialog\right-click.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\NewSearchProtectorDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\NewSearchProtectorDialog\SearchProtector.css, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\NewSearchProtectorDialog\SearchProtector.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\NewSearchProtectorDialog\images\ok-button.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\NewSearchProtectorDialog\images\separation-line.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\NewSearchProtectorDialog\images\warning.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorBubbleDialog\bubble.css, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorBubbleDialog\bubble.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorBubbleDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorBubbleDialog\images\information.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorBubbleDialog\images\x-default-LTR.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorBubbleDialog\images\x-default-RTL.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorBubbleDialog\images\x-mouseover-LTR.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorBubbleDialog\images\x-mouseover-RTL.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorDialog\SearchProtector.css, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorDialog\SearchProtector.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorDialog\Images\info.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorDialog\Images\ok-on.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorDialog\Images\ok.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorRetakeoverDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorRetakeoverDialog\SearchProtectorRetakeover.css, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorRetakeoverDialog\SearchProtectorRetakeover.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorRetakeoverDialog\Images\Icon.jpg, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorRetakeoverDialog\Images\Icon.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorRetakeoverDialog\Images\info.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorRetakeoverDialog\Images\ok-on.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\SearchProtectorRetakeoverDialog\Images\ok.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\ToolbarFirstTimeDialog.css, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\ToolbarFirstTimeDialog.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\images\app-store-icon.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\images\arrow.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\images\divider.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\images\emailNotifier.gif, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\images\facebook.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\images\radio.GIF, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\images\Thumbs.db, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\images\truste_welcome.GIF, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarFirstTimeDialog\images\weather.GIF, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarUntrustedAppsApprovalDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\ToolbarUntrustedAppsApprovalDialog\ToolbarUntrustedAppsApprovalDialog.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\UntrustedAddedAppDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\UntrustedAddedAppDialog\UT-app-dialog-added.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\UntrustedAppApprovalDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\UntrustedAppApprovalDialog\UT-app-dialog-needs-your-approval.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\UntrustedAppPendingDialog\main.html, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Dialogs\UntrustedAppPendingDialog\UT-app-dialog-is-waiting.js, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=OtherApps&locale=en.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=GottenApps&locale=en&ctid=CT3220468.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=GottenApps&locale=en.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=OtherApps&locale=en&ctid=CT3220468.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=SharedApps&locale=en&ctid=CT3220468.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=SharedApps&locale=en.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=Toolbar&locale=en&ctid=CT3220468&UM=UM_UNINSTALL_ID.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=Toolbar&locale=en&ctid=CT3220468.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=Toolbar&locale=en.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\manifest.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.6.8\bin\PriceGongIE.dll, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.6.8\bin\PriceGong_16.png, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\AppsMetaData\data.bck.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\AppsMetaData\data.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\DynamicDialogs\data.bck.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\DynamicDialogs\data.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarHiddenLogin\data.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarHiddenSettings\data.bck.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarHiddenSettings\data.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarLogin\data.bck.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarLogin\data.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarSettings\data.bck.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_CT3220468\ToolbarSettings\data.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_en\ToolbarTranslation\data.bck.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\Repository\conduit_CT3220468_en\ToolbarTranslation\data.txt, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Documents and Settings\SID\Local Settings\Application Data\uTorrentControl_v2\SearchInNewTab\SearchInNewTabContent.xml, Quarantined, [30a36c11c8b35fd7be6ac4d542c028d8],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\prxtbuTor.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\GottenAppsContextMenu.xml, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\hk64tbuTo0.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\hk64tbuTo2.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\hktbuTo0.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\hktbuTo2.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\ldrtbuTo0.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\ldrtbuTo2.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\ldrtbuTor.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\OtherAppsContextMenu.xml, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\prxtbuTo0.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\SharedAppsContextMenu.xml, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\tbuTo0.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\tbuTo2.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\tbuTor.dll, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\toolbar.cfg, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\ToolbarContextMenu.xml, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\uninstall.exe, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\uTorrentControl_v2ToolbarHelper.exe, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.uTorrentControl.A, C:\Program Files\uTorrentControl_v2\uTorrentControl_v2ToolbarHelper1.exe, Quarantined, [21b269140c6f02343eec0f8aa65cbc44],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\NativeMessaging\CT3306061\nativeMessaging\nmHostConfig.json, Quarantined, [ad2689f496e59e98d745fe9c0002758b],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\NativeMessaging\CT3306061\nativeMessaging\nmHostManifest.json, Quarantined, [ad2689f496e59e98d745fe9c0002758b],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\NativeMessaging\CT3306061\nativeMessaging\TBMessagingHost.exe, Quarantined, [ad2689f496e59e98d745fe9c0002758b],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061.130158552044204297.search.selectedEngineId.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061.130158552044204297.search.settings.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061.appOptions.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061.installUsage.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061.installUsageEarly.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061.NotificationSettings.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061.NOTIFICATION_ID.notifications-repository.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061.NOTIFICATION_ID.notifications-servicemap.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061.NOTIFICATION_ID.notifications-service_1790914.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061.searchProtectorData.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_appsMetadata.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_appTrackingFirstTime.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_Configuration.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_gottenAppsContextMenu.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_login.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_otherAppsContextMenu.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_searchAPI.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_serviceMap.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_translation.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_toolbarSettings.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_translation.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_appsMetadata.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_appTrackingFirstTime.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_Configuration.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_gottenAppsContextMenu.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_login.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_otherAppsContextMenu.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_searchAPI.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_serviceMap.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_toolbarContextMenu.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_10.22.0.88.serviceLayer_services_toolbarContextMenu.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\CT3306061_RAW.serviceLayer_services_toolbarSettings.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\ToolbarFullUserID.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\ToolbarUserId.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\toolbar_initializing_logger.txt.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\uninstallData.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Conduit\ChromeExtData\lipgolpfajiadodbcbljdpmbmbdmfcil\Repository\uninstallUrl.txt, Quarantined, [7f54710ced8ee94d443be3b715ed55ab],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\NativeMessaging\CT3306061\nmHostManifest.json, Quarantined, [4b888eefd2a9ee489ee34c4ece34d22e],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\NativeMessaging\CT3306061\1_0_0_2\nmHostConfig.json, Quarantined, [4b888eefd2a9ee489ee34c4ece34d22e],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\NativeMessaging\CT3306061\1_0_0_2\nmHostManifest.json, Quarantined, [4b888eefd2a9ee489ee34c4ece34d22e],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\NativeMessaging\CT3306061\1_0_0_2\TBMessagingHost.exe, Quarantined, [4b888eefd2a9ee489ee34c4ece34d22e],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Temp\TestIfExeExist\CT3306061\nativeMessaging\TBMessagingHost.exe, Quarantined, [c50e6419067596a083b2d9c24bb7e51b],
PUP.Optional.Conduit.A, C:\Documents and Settings\SID\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: (   "homepage": "http://search.conduit.com/?ctid=CT3306061&SearchSource=48&CUI=UN34518209011246990&UM=2",), Replaced,[607384f99ae177bf999f7445fc08956b]

Physical Sectors: 0
(No malicious items detected)


(end)



#12 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:03:56 AM

Posted 28 June 2014 - 12:27 PM

MBAM removed a lot of bad stuff, please run ESET online scan as instruct and post the result here. :)

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#13 flamboyant_sid

flamboyant_sid
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:26 AM

Posted 28 June 2014 - 01:31 PM

The system seems to be working fine after MBAM quarantined the threats. No pop up no .exe files, I still went ahead with ESET as suggested. Here's the log:

 

C:\Documents and Settings\SID\Local Settings\Temp\tbConn.dll    a variant of Win32/Toolbar.Conduit.X potentially unwanted application    deleted - quarantined
C:\Documents and Settings\SID\Local Settings\Temp\dlm5.tmp\mHotspot_setup_7.6.0.0.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
C:\Documents and Settings\SID\Local Settings\Temp\NativeMessaging\CT3306061.crx    a variant of Win32/Toolbar.Conduit.AA potentially unwanted application    deleted - quarantined
C:\Program Files\Conduit\Community Alerts\Alert.dll    Win32/Toolbar.Conduit.Y potentially unwanted application    deleted - quarantined
C:\Program Files\Rovio\Angry Birds Rio\Patch.exe    a variant of Win32/HackTool.Patcher.U potentially unsafe application    deleted - quarantined
 



#14 flamboyant_sid

flamboyant_sid
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:02:26 AM

Posted 28 June 2014 - 01:35 PM

Can this be used to scan my poratble disk and flash drive as well? and which one should I keep ESET or MBAM? I already have quick heal installed, I am afraid that too many security software would slow the system down.

 

Thanks and Ton Sirawit!!! :bowdown:  :thumbsup:



#15 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:03:56 AM

Posted 29 June 2014 - 06:36 AM

We're nearly complete! :)

 

Download MiniToolBox, Save it to your desktop and run it.
Close any Firefox browsers you may have open
Checkmark the following boxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore Points

Click Go and copy / paste the result (Result.txt).

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users