Thread: Where to begin?
View Single Post
Old 02-18-2007, 05:19 PM   #8 (permalink)
christinelydia
Registered User
 
Join Date: Feb 2007
Posts: 13
OS: Windows XP Professional


Security Risks
I forgot I had a log of the threat risks Norton Antivirus found a few days ago as well, don't know if it'll help:

Category: Security risks
Date Time,Feature,Risk Name,Result,Item Type,Target,Suspicious Action,Virus Definition Version,Product Version,User Name,Computer Name,Details
2/14/2007 6:54:31 PM,Auto-Protect,W32.Banwarum@mm,Automatically deleted,File,N/A,N/A,200702140020,12.6.0.1,SYSTEM,KYLE,"Source: C:\WINDOWS\TEMP\E3BBD1F5.exe,Action taken: Automatically deleted"
2/14/2007 6:54:31 PM,Auto-Protect,W32.Banwarum@mm,Access denied,File,N/A,N/A,200702140020,12.6.0.1,SYSTEM,KYLE,"Source: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\F8TN4YOW\install[1].htm,Action taken: Repair failed,Action taken: Access denied"
2/14/2007 6:46:35 PM,Virus scanner,W32.Banwarum@mm,Repaired,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Repaired,Description: Affected areas: 1 Additional areas: Unknown - Deleted "
2/14/2007 6:43:19 PM,Auto-Protect,W32.Banwarum@mm,Automatically deleted,File,N/A,N/A,200702140020,12.6.0.1,SYSTEM,KYLE,"Source: C:\WINDOWS\TEMP\B3A5308C.exe,Action taken: Automatically deleted"
2/14/2007 6:43:19 PM,Auto-Protect,W32.Banwarum@mm,Access denied,File,N/A,N/A,200702140020,12.6.0.1,SYSTEM,KYLE,"Source: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QWGWW3G7\install[1].htm,Action taken: Repair failed,Action taken: Access denied"
2/14/2007 6:38:38 PM,Virus scanner,W32.Banwarum@mm,Repaired,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Repaired,Description: Affected areas: 1 Additional areas: Unknown - Deleted "
2/14/2007 6:32:07 PM,Auto-Protect,W32.Banwarum@mm,Automatically deleted,File,N/A,N/A,200702140020,12.6.0.1,SYSTEM,KYLE,"Source: C:\WINDOWS\TEMP\802A9F51.exe,Action taken: Automatically deleted"
2/14/2007 6:32:07 PM,Auto-Protect,W32.Banwarum@mm,Access denied,File,N/A,N/A,200702140020,12.6.0.1,SYSTEM,KYLE,"Source: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\F8TN4YOW\install[1].htm,Action taken: Repair failed,Action taken: Access denied"
2/14/2007 6:21:07 PM,Virus scanner,W32.Banwarum@mm,Repaired,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Repaired,Description: Affected areas: 1 Additional areas: Unknown - Deleted "
2/14/2007 6:20:34 PM,Auto-Protect,W32.Banwarum@mm,Automatically deleted,File,N/A,N/A,200702140020,12.6.0.1,SYSTEM,KYLE,"Source: C:\WINDOWS\TEMP\872E2D17.exe,Action taken: Automatically deleted"
2/14/2007 6:20:34 PM,Auto-Protect,W32.Banwarum@mm,Access denied,File,N/A,N/A,200702140020,12.6.0.1,SYSTEM,KYLE,"Source: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QWGWW3G7\install[1].htm,Action taken: Repair failed,Action taken: Access denied"
2/14/2007 6:18:12 PM,Virus scanner,W32.Banwarum@mm,Repaired,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Repaired,Description: Affected areas: 1 Additional areas: Unknown - Deleted "
2/14/2007 6:09:42 PM,Auto-Protect,W32.Banwarum@mm,Automatically deleted,File,N/A,N/A,200702140020,12.6.0.1,SYSTEM,KYLE,"Source: C:\WINDOWS\TEMP\EAAD0543.exe,Action taken: Automatically deleted"
2/14/2007 6:09:42 PM,Auto-Protect,W32.Banwarum@mm,Access denied,File,N/A,N/A,200702140020,12.6.0.1,SYSTEM,KYLE,"Source: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\F8TN4YOW\install[1].htm,Action taken: Repair failed,Action taken: Access denied"
2/14/2007 6:01:41 PM,Virus scanner,W32.Banwarum@mm,Repaired,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Repaired,Description: Affected areas: 1 Additional areas: Unknown - Deleted "
2/14/2007 5:59:00 PM,Auto-Protect,W32.Banwarum@mm,Automatically deleted,File,N/A,N/A,200702140020,12.2.0.13,SYSTEM,KYLE,"Source: C:\WINDOWS\TEMP\1AAEB730.exe,Action taken: Automatically deleted"
2/14/2007 5:59:00 PM,Auto-Protect,W32.Banwarum@mm,Access denied,File,N/A,N/A,200702140020,12.2.0.13,SYSTEM,KYLE,"Source: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QWGWW3G7\install[1].htm,Action taken: Repair failed,Action taken: Access denied"
2/14/2007 5:49:06 PM,Virus scanner,W32.Banwarum@mm,Repaired,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Repaired,Description: Affected areas: 1 Additional areas: Unknown - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\DD40F018.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\DA2DB01F.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\DF037C0D.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\CAC088DB.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\1381A6E7.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\9A23E8F7.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\1ED88306.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\1023FC33.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\71B99F09.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\C6A53784.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\B547CA52.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\4F422767.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\43FCB0BD.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\WINDOWS\Temp\094D00F0.exe - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QWGWW3G7\install[2].htm - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,W32.Banwarum@mm,Deleted,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Deleted,Description: Affected areas: 1 Files: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QWGWW3G7\install[1].htm - Deleted "
2/14/2007 5:48:56 PM,Virus scanner,Trojan.Vundo,Quarantined,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Quarantined,Description: Affected areas: 1 Files: c:\WINDOWS\system32\jkkli.dll - Reboot required 113 Registry keys: HKEY_CLASSES_ROOT\CLSID\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_CLASSES_ROOT\CLSID\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_CLASSES_ROOT\CLSID\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_CLASSES_ROOT\CLSID\{83A5F7B7-DC75-44CE-9195-264F41709FA9} - Reboot required HKEY_CLASSES_ROOT\CLSID\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_CLASSES_ROOT\CLSID\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_CLASSES_ROOT\CLSID\{79A576C4-B7A9-47EC-B57C-2CE5CA6ECC6A} - Reboot required HKEY_CLASSES_ROOT\CLSID\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_CLASSES_ROOT\CLSID\{DE8BDE42-16D9-4CCC-9F4F-1C3167B82F60} - Reboot required HKEY_CLASSES_ROOT\CLSID\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_CLASSES_ROOT\MSEvents.MSEvents - Reboot required HKEY_CLASSES_ROOT\MSEvents.MSEvents.1 - Reboot required HKEY_CLASSES_ROOT\IEpl.IEpl - Reboot required HKEY_CLASSES_ROOT\IEpl.IEPl.1 - Reboot required HKEY_CLASSES_ROOT\DPCUpdater.DPCUpdater - Reboot required HKEY_CLASSES_ROOT\DPCUpdater.DPCUpdater.1 - Reboot required HKEY_CLASSES_ROOT\ATLDistrib.ATLDistrib - Reboot required HKEY_CLASSES_ROOT\ATLDistrib.ATLDistrib.1 - Reboot required HKEY_CLASSES_ROOT\RawExecAction.RawExecAction - Reboot required HKEY_CLASSES_ROOT\RawExecAction.RawExecAction.1 - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{79A576C4-B7A9-47EC-B57C-2CE5CA6ECC6A} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83A5F7B7-DC75-44CE-9195-264F41709FA9} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DE8BDE42-16D9-4CCC-9F4F-1C3167B82F60} - Reboot required HKEY_CLASSES_ROOT\CLSID\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\SysUpd - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\SysUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\SysUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\SysUpd - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\SysUpd - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\SysUpd - Reboot required HKEY_CLASSES_ROOT\CLSID\{6DD0BC06-4719-4BA3-BEBC-FBAE6A448152} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6DD0BC06-4719-4BA3-BEBC-FBAE6A448152} - Reboot required HKEY_CLASSES_ROOT\CLSID\{A6CEA0E7-6B4D-4CD9-9932-D85705CBC1A9} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6CEA0E7-6B4D-4CD9-9932-D85705CBC1A9} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jkkli - Reboot required HKEY_CLASSES_ROOT\CLSID\{9B98D3DF-405C-4F33-8D49-587DEAAAE75B} - Reboot required HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9B98D3DF-405C-4F33-8D49-587DEAAAE75B} - Reboot required 1 Additional areas: Unknown - Deleted "
2/14/2007 5:48:08 PM,Auto-Protect,W32.Banwarum@mm,Automatically deleted,File,N/A,N/A,200702140020,12.2.0.13,SYSTEM,KYLE,"Source: C:\WINDOWS\TEMP\6C0E6B80.exe,Action taken: Automatically deleted"
2/14/2007 5:48:08 PM,Auto-Protect,W32.Banwarum@mm,Access denied,File,N/A,N/A,200702140020,12.2.0.13,SYSTEM,KYLE,"Source: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\F8TN4YOW\install[1].htm,Action taken: Repair failed,Action taken: Access denied"
2/14/2007 5:43:53 PM,Virus scanner,W32.Banwarum@mm,Repaired,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Repaired,Description: Affected areas: 1 Additional areas: Unknown - Deleted "
2/14/2007 5:37:17 PM,Auto-Protect,W32.Banwarum@mm,Automatically deleted,File,N/A,N/A,200702140020,12.2.0.13,SYSTEM,KYLE,"Source: C:\WINDOWS\TEMP\05FDC715.exe,Action taken: Automatically deleted"
2/14/2007 5:37:17 PM,Auto-Protect,W32.Banwarum@mm,Access denied,File,N/A,N/A,200702140020,12.2.0.13,SYSTEM,KYLE,"Source: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QWGWW3G7\install[1].htm,Action taken: Repair failed,Action taken: Access denied"
2/14/2007 5:29:34 PM,Virus scanner,W32.Banwarum@mm,Repaired,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Repaired,Description: Affected areas: 1 Additional areas: Unknown - Deleted "
2/14/2007 5:26:06 PM,Auto-Protect,W32.Banwarum@mm,Automatically deleted,File,N/A,N/A,200702140020,12.2.0.13,SYSTEM,KYLE,"Source: C:\WINDOWS\TEMP\AA483F3E.exe,Action taken: Automatically deleted"
2/14/2007 5:26:06 PM,Auto-Protect,W32.Banwarum@mm,Access denied,File,N/A,N/A,200702140020,12.2.0.13,SYSTEM,KYLE,"Source: C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\F8TN4YOW\install[1].htm,Action taken: Repair failed,Action taken: Access denied"
2/14/2007 5:17:28 PM,Virus scanner,W32.Banwarum@mm,Repaired,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Repaired,Description: Affected areas: 1 Additional areas: Unknown - Deleted "
2/14/2007 5:15:15 PM,Auto-Protect,W32.Banwarum@mm,Automatically deleted,File,N/A,N/A,200702140020,12.2.0.13,SYSTEM,KYLE,"Source: C:\WINDOWS\TEMP\4E6E3C7C.exe,Action taken: Automatically deleted"
2/14/2007 5:14:47 PM,Virus scanner,Trojan.Vundo,Quarantined,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Quarantined,Description: Affected areas: 1 Files: c:\WINDOWS\system32\jkkli.dll - Reboot required 1 Processes: C:\Program Files\Internet Explorer\iexplore.exe - Terminated 113 Registry keys: HKEY_CLASSES_ROOT\CLSID\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_CLASSES_ROOT\CLSID\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_CLASSES_ROOT\CLSID\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_CLASSES_ROOT\CLSID\{83A5F7B7-DC75-44CE-9195-264F41709FA9} - Reboot required HKEY_CLASSES_ROOT\CLSID\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_CLASSES_ROOT\CLSID\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_CLASSES_ROOT\CLSID\{79A576C4-B7A9-47EC-B57C-2CE5CA6ECC6A} - Reboot required HKEY_CLASSES_ROOT\CLSID\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_CLASSES_ROOT\CLSID\{DE8BDE42-16D9-4CCC-9F4F-1C3167B82F60} - Reboot required HKEY_CLASSES_ROOT\CLSID\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_CLASSES_ROOT\MSEvents.MSEvents - Reboot required HKEY_CLASSES_ROOT\MSEvents.MSEvents.1 - Reboot required HKEY_CLASSES_ROOT\IEpl.IEpl - Reboot required HKEY_CLASSES_ROOT\IEpl.IEPl.1 - Reboot required HKEY_CLASSES_ROOT\DPCUpdater.DPCUpdater - Reboot required HKEY_CLASSES_ROOT\DPCUpdater.DPCUpdater.1 - Reboot required HKEY_CLASSES_ROOT\ATLDistrib.ATLDistrib - Reboot required HKEY_CLASSES_ROOT\ATLDistrib.ATLDistrib.1 - Reboot required HKEY_CLASSES_ROOT\RawExecAction.RawExecAction - Reboot required HKEY_CLASSES_ROOT\RawExecAction.RawExecAction.1 - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{79A576C4-B7A9-47EC-B57C-2CE5CA6ECC6A} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83A5F7B7-DC75-44CE-9195-264F41709FA9} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DE8BDE42-16D9-4CCC-9F4F-1C3167B82F60} - Reboot required HKEY_CLASSES_ROOT\CLSID\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0612F71E-934B-4D92-B8E8-2E29EA78EB03} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2353FCBC-012D-487B-8BF3-865C0929FBEB} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{827DC836-DD9F-A602-5812EB50A834} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE70731D-F28D-4D81-9D61-C8EE60378401} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DAD9C3A5-FB4E-45CD-93EB-2059F4EEF4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC148228-87E1-4D00-AC06-58DCAA52A4D1} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18898424-E3AB-4BA9-8E8D-5434B1CECA75} - Reboot required HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\SysUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\WindowsUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-500\Software\Microsoft\SysUpd - Reboot required HKEY_USERS\S-1-5-19\Software\Microsoft\SysUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1004\Software\Microsoft\SysUpd - Reboot required HKEY_USERS\S-1-5-21-1555576864-2154702590-596957751-1007\Software\Microsoft\SysUpd - Reboot required HKEY_USERS\S-1-5-20\Software\Microsoft\SysUpd - Reboot required HKEY_USERS\.DEFAULT\Software\Microsoft\SysUpd - Reboot required HKEY_CLASSES_ROOT\CLSID\{6DD0BC06-4719-4BA3-BEBC-FBAE6A448152} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6DD0BC06-4719-4BA3-BEBC-FBAE6A448152} - Reboot required HKEY_CLASSES_ROOT\CLSID\{A6CEA0E7-6B4D-4CD9-9932-D85705CBC1A9} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6CEA0E7-6B4D-4CD9-9932-D85705CBC1A9} - Reboot required HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jkkli - Reboot required HKEY_CLASSES_ROOT\CLSID\{9B98D3DF-405C-4F33-8D49-587DEAAAE75B} - Reboot required HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9B98D3DF-405C-4F33-8D49-587DEAAAE75B} - Reboot required 1 Additional areas: Unknown - Deleted "
2/14/2007 5:14:47 PM,Virus scanner,Trojan.Peacomm,Repaired,File,N/A,N/A,200702140020,12.6.0.1,Kyle Hicks,KYLE,"Source: Manual Scanner,Risk category: Virus,Action taken: Repaired,Description: Affected areas: 1 Files: C:\WINDOWS\system32\wincom32.ini - Deleted 1 Registry keys: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wincom32 - No action required 1 Services: wincom32 - Reboot required "
christinelydia is offline