cpvfeed url help

Here is my find.exe scan. I ran a vundo fix, and have not had any problems since though.

Logfile of HijackThis v1.99.1
Scan saved at 7:11:34 PM, on 1/20/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
C:\Program Files\Venturi2\Client\ventc.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\pccguide.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\Program Files\Venturi2\Configurator\ventcfg.exe
C:\Program Files\Greetings Workshop\GWREMIND.EXE
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\PcScnSrv.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exe
C:\Program Files\World of Warcraft\WoW-2.0.3.6299-to-2.0.5.6320-enUS-downloader.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OL\TMAS_OL.exe
C:\hijackthis\find.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.rr.com/flash/index.cfm
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.rr.com/flash/index.cfm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [pccguide.exe] C:\PROGRA~1\TRENDM~1\INTERN~2\pccguide.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [DllRunning] rundll32.exe "C:\WINDOWS\system32\avdjbinp.dll",setvm
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [OE] "C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.2480\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - Startup: Greetings Workshop Reminders.lnk = C:\Program Files\Greetings Workshop\GWREMIND.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Venturi 2.lnk = ?
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1153857123375
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1162547820260
O16 - DPF: {97BB6657-DC7F-4489-9067-51FAB9D8857E} (CWebLaunchCtl Object) - https://control.everdream.com/cf1live/static/weblaunch/weblaunch2.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exe
O23 - Service: Trend Micro Protection Against Spyware (PcScnSrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\PcScnSrv.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exe
O23 - Service: Venturi2 Client (Venturi2) - Fourelle Systems, Inc - C:\Program Files\Venturi2\Client\ventc.exe

Still some junk showing, looks like VundoFix got most of it though.

Before begining the fix, read this post completely. If there's anything that you do not understand, kindly ask your questions before proceeding. Ensure that there aren't any opened browsers when you are carrying out the procedures below. Save the following instructions in Notepad as this webpage would not be available when you're carrying out the fix.

It is IMPORTANT that you don't miss a step & perform everything in the correct order/sequence.

---------------------------------------------------------------------------------------------

Download combofix.exe to your desktop. We shall use this shortly.


* IMPORTANT !!! Place it on your Desktop.

---------------------------------------------------------------------------------------------

Open HijackThis and click on 'Do a System Scan Only'. Check the following entries if they exist (make sure you do not miss any) and click Fix Checked

O4 - HKLM\..\Run: [DllRunning] rundll32.exe "C:\WINDOWS\system32\avdjbinp.dll",setvm

Close HijackThis now.

---------------------------------------------------------------------------------------------

Run combofix


Click the Windows 'Start' button > Select 'Run' - then copy/paste this into the run box & click OK


When finished, it shall produce a log for you. Post that log in your next reply.

Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall.

---------------------------------------------------------------------------------------------

Perform an online scan with Internet Explorer with Panda ActiveScan

1. Click on
   located at the bottom of the page.
2. A "pop up" window will appear. * Please ensure that your pop up blocker doesn't block it *
3. Enter your e-mail address, country, and state & click "Free Online Scan" *The download of the 8 MB Panda's ActiveX control will take place*

Begin the scan by selecting

• If it finds any malware, it will offer you a report.
• Please ignore any entry it finds and the offer to buy the program to remove the entry, as we will address this later.
• Click on
  then click

* You needn't remain online while it's doing the scan but you have to re-connect after it has finished to see the report.
* Turn off the real time scanner of any existing antivirus program while performing the online scan

---------------------------------------------------------------------------------------------

Open Hijack This and click on 'Do a System Scan and save a Logfile'. Save the log file and post it here.

---------------------------------------------------------------------------------------------

Please return with results from:

combofix, located at C:\ComboFix.txt
Panda online scan
HJT

Thanks for your help.

Here is the combofix, panda and highjackthis log in respective order

"Sylvester Womack" - 07-01-21 11:10:42 Service Pack 2
ComboFix 07-01-21 - Running from: "C:\Documents and Settings\Sylvester Womack\desktop"
Command switches used :: /v avdjbinp

(((((((((((((((((((((((((((((((((((((((((((((((( Vundo Log )))))))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\avdjbinp.dll
C:\WINDOWS\system32\pnibjdva.ini
C:\WINDOWS\system32\pnibjdva.ini2
C:\WINDOWS\system32\pnibjdva.tmp


* * * POST RUN FILES/FOLDERS * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *



(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\components


((((((((((((((((((((((((((((((( Files Created from 2006-12-21 to 2007-01-21 ))))))))))))))))))))))))))))))))))


2007-01-13 10:28 <DIR> d-------- C:\Program Files\Greetings Workshop
2007-01-12 16:19 96,978 --a------ C:\VirtumundoBeGone.exe
2007-01-12 16:19 <DIR> d-------- C:\VundoFix Backups
2007-01-12 16:18 88,064 --a------ C:\VundoFix.exe
2007-01-12 16:10 81,684 --a------ C:\WINDOWS\system32\silwjajr.dll
2007-01-12 05:14 36,352 --------- C:\WINDOWS\system32\tsgqec.dll
2007-01-12 05:14 288,768 --------- C:\WINDOWS\system32\rhttpaa.dll
2007-01-12 05:14 116,736 --------- C:\WINDOWS\system32\aaclient.dll
2007-01-11 21:31 81,684 --a------ C:\WINDOWS\system32\rrnpeqdn.dll
2007-01-11 21:25 57,344 --a------ C:\WINDOWS\system32\vlsp.dll
2007-01-11 21:25 <DIR> d-------- C:\Program Files\Venturi2
2007-01-11 18:05 81,684 --a------ C:\WINDOWS\system32\acrsafxw.dll
2007-01-11 17:38 5,632 --a------ C:\WINDOWS\system32\drivers\motswch.sys
2007-01-11 17:38 40,960 --a------ C:\WINDOWS\system32\drivers\P2k.sys
2007-01-11 17:38 22,768 --a------ C:\WINDOWS\system32\drivers\usbser2k.sys
2007-01-11 17:33 9,826,960 --a------ C:\bitpim-0.9.10-setup.exe
2007-01-11 16:21 92,064 --a------ C:\DOCUME~1\SYLVES~1\mqdmmdm.sys
2007-01-11 16:21 9,232 --a------ C:\DOCUME~1\SYLVES~1\mqdmmdfl.sys
2007-01-11 16:21 79,328 --a------ C:\DOCUME~1\SYLVES~1\mqdmserd.sys
2007-01-11 16:21 66,656 --a------ C:\DOCUME~1\SYLVES~1\mqdmbus.sys
2007-01-11 16:21 6,208 --a------ C:\DOCUME~1\SYLVES~1\mqdmcmnt.sys
2007-01-11 16:21 5,936 --a------ C:\DOCUME~1\SYLVES~1\mqdmwhnt.sys
2007-01-11 16:21 4,048 --a------ C:\DOCUME~1\SYLVES~1\mqdmcr.sys
2007-01-11 16:18 <DIR> d-------- C:\DOCUME~1\SYLVES~1\Application Data\InstallShield
2007-01-10 21:34 81,684 --a------ C:\WINDOWS\system32\srnhpdjv.dll
2007-01-09 21:33 81,684 --a------ C:\WINDOWS\system32\mqxajtvt.dll
2007-01-09 18:43 <DIR> d-------- C:\CTMod 2 - Update 11
2007-01-08 21:33 81,684 --a------ C:\WINDOWS\system32\mcycejdj.dll
2007-01-08 15:55 81,684 --a------ C:\WINDOWS\system32\xcacrhfr.dll
2007-01-08 15:40 21,822,168 --a------ C:\AdbeRdr80_en_US.exe
2007-01-07 17:57 81,684 --a------ C:\WINDOWS\system32\jbgoopbb.dll
2007-01-07 08:07 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\Application Data\Yahoo!
2007-01-07 08:02 <DIR> d-------- C:\Program Files\Yahoo!
2007-01-07 08:01 422,952 --a------ C:\msgr8sg.exe
2007-01-06 17:57 81,684 --a------ C:\WINDOWS\system32\gadxkvma.dll
2007-01-05 17:56 81,684 --a------ C:\WINDOWS\system32\lewryopy.dll
2007-01-04 18:45 56,536 --a------ C:\CF1START(2).exe
2007-01-04 17:57 81,684 --a------ C:\WINDOWS\system32\uebartql.dll
2007-01-04 17:46 81,684 --a------ C:\WINDOWS\system32\qqflwqiw.dll
2007-01-04 17:31 81,684 --a------ C:\WINDOWS\system32\jwqnjmyg.dll
2007-01-04 17:23 <DIR> d-------- C:\hijackthis
2007-01-04 15:47 81,684 --a------ C:\WINDOWS\system32\qysiytkq.dll
2007-01-03 20:16 81,684 --a------ C:\WINDOWS\system32\srxcvbjb.dll
2007-01-02 20:17 81,684 --a------ C:\WINDOWS\system32\tduabfow.dll
2007-01-02 17:39 81,684 --a------ C:\WINDOWS\system32\nwatxsig.dll
2007-01-02 17:39 42,516 --a------ C:\WINDOWS\system32\jkjpvcdl.dll
2007-01-02 17:02 279,000 --a------ C:\BrowzarBlack1201.exe
2007-01-02 11:53 81,684 --a------ C:\WINDOWS\system32\unnxukac.dll
2007-01-01 11:53 81,684 --a------ C:\WINDOWS\system32\ncchdipl.dll
2006-12-31 11:53 81,684 --a------ C:\WINDOWS\system32\xpbeapql.dll
2006-12-30 11:52 81,684 --a------ C:\WINDOWS\system32\pbditlhv.dll
2006-12-30 11:42 <DIR> d-------- C:\Program Files\Common Files\iS3
2006-12-30 11:42 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\Application Data\ZILLAbar
2006-12-30 11:42 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\Application Data\STOPzilla!
2006-12-30 00:46 6,469,352 --a------ C:\avgas-setup-7.5.0.50.exe
2006-12-30 00:46 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2006-12-30 00:46 <DIR> d-------- C:\Program Files\Grisoft
2006-12-29 19:03 81,684 --a------ C:\WINDOWS\system32\bsjgqakj.dll
2006-12-29 16:10 81,684 --a------ C:\WINDOWS\system32\poiyyerd.dll
2006-12-28 19:13 81,684 --a------ C:\WINDOWS\system32\kdmfanuu.dll
2006-12-28 19:07 <DIR> d-------- C:\Program Files\Apple Software Update
2006-12-28 19:06 19,666,504 --a------ C:\QuickTimeInstaller(2).exe
2006-12-27 20:05 81,684 --a------ C:\WINDOWS\system32\rlqevgdp.dll
2006-12-27 20:00 81,684 --a------ C:\WINDOWS\system32\hobkdswk.dll
2006-12-27 16:55 81,684 --a------ C:\WINDOWS\system32\xfhxkrpk.dll
2006-12-27 16:34 <DIR> d-------- C:\WINDOWS\system32\appmgmt
2006-12-27 05:11 33,908,376 --a------ C:\WINDOWS\zaSuiteSetup_70_279_000_beta.exe
2006-12-27 05:02 11,264 --a------ C:\WINDOWS\system32\SpOrder.dll
2006-12-27 04:59 33,908,376 --a------ C:\zaSuiteSetup_70_279_000_beta.exe
2006-12-26 16:55 81,684 --a------ C:\WINDOWS\system32\nevgbyyh.dll
2006-12-25 16:54 81,684 --a------ C:\WINDOWS\system32\sohgljwd.dll
2006-12-25 01:11 81,684 --a------ C:\WINDOWS\system32\idwddseu.dll
2006-12-25 01:05 81,684 --a------ C:\WINDOWS\system32\nkfmihwg.dll
2006-12-24 18:12 <DIR> d-------- C:\CT_Profiles
2006-12-24 01:05 81,684 --a------ C:\WINDOWS\system32\ishblxtx.dll
2006-12-23 01:04 81,684 --a------ C:\WINDOWS\system32\gauoiesr.dll
2006-12-22 04:54 153,144 --a------ C:\ewido_micro(4).exe
2006-12-22 03:04 81,684 --a------ C:\WINDOWS\system32\qlwhjlxu.dll
2006-12-21 17:43 42,516 --a------ C:\WINDOWS\system32\fcxxynkt.dll
2006-12-21 17:36 42,516 --a------ C:\WINDOWS\system32\jtqmhued.dll
2006-12-21 17:09 <DIR> d-------- C:\Program Files\HighJackThis
2006-12-21 03:01 81,684 --a------ C:\WINDOWS\system32\deejcojk.dll


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2007-01-21 07:07 -------- d-------- C:\Program Files\google
2007-01-20 19:33 -------- d-------- C:\Program Files\world of warcraft
2007-01-20 03:00 -------- d-------- C:\Program Files\xoftspyse
2007-01-13 09:59 -------- d-------- C:\Program Files\mozilla firefox
2007-01-13 09:42 -------- d-------- C:\Program Files\tmsexplorer
2007-01-11 21:25 -------- d--h----- C:\Program Files\installshield installation information
2007-01-11 17:34 -------- d-------- C:\Program Files\bitpim
2007-01-11 16:22 -------- d-------- C:\Program Files\motorola phone tools
2007-01-11 16:21 22768 --a------ C:\WINDOWS\system32\drivers\usbsermpt.sys
2007-01-11 16:18 -------- d-------- C:\Program Files\liveupdate
2007-01-11 16:18 -------- d-------- C:\Documents and Settings\Sylvester Womack\Application Data\installshield
2007-01-08 15:45 -------- d-------- C:\Program Files\Common Files\adobe
2006-12-28 19:08 -------- d-------- C:\Program Files\quicktime
2006-12-20 17:31 -------- d-------- C:\Documents and Settings\Sylvester Womack\Application Data\adobeum
2006-12-20 04:24 81684 --a------ C:\WINDOWS\system32\fjldemiu.dll
2006-12-19 17:25 -------- d-------- C:\Documents and Settings\Sylvester Womack\Application Data\xfire
2006-12-19 04:52 -------- d-------- C:\Program Files\java
2006-12-15 19:19 44052 --a------ C:\WINDOWS\system32\fpabnvwy.dll
2006-12-14 17:18 118804 --a------ C:\WINDOWS\system32\sxtexisc.dll
2006-12-14 16:00 -------- d-------- C:\Program Files\msecache
2006-12-07 12:50 -------- d---s---- C:\Documents and Settings\Sylvester Womack\Application Data\microsoft
2006-12-04 16:53 232240 --a------ C:\WINDOWS\psinfo.exe
2006-12-04 16:53 224048 --a------ C:\WINDOWS\psexec.exe
2006-12-04 16:53 207664 --a------ C:\WINDOWS\psshutdown.exe
2006-12-04 16:53 187184 --a------ C:\WINDOWS\pssuspend.exe
2006-12-04 16:53 187184 --a------ C:\WINDOWS\pskill.exe
2006-12-04 16:53 187184 --a------ C:\WINDOWS\psgetsid.exe
2006-12-04 16:53 125744 --a------ C:\WINDOWS\pslist.exe
2006-12-04 16:53 113456 --a------ C:\WINDOWS\psloglist.exe
2006-12-04 16:53 105264 --a------ C:\WINDOWS\psservice.exe
2006-12-04 16:53 105264 --a------ C:\WINDOWS\pspasswd.exe
2006-12-04 16:53 105264 --a------ C:\WINDOWS\psloggedon.exe
2006-12-04 16:53 105264 --a------ C:\WINDOWS\psfile.exe
2006-12-02 13:58 -------- d-------- C:\Program Files\Common Files\aol
2006-12-02 13:57 -------- d-------- C:\Program Files\aol
2006-12-02 13:35 -------- d-------- C:\Documents and Settings\Sylvester Womack\Application Data\acccore
2006-12-02 13:31 -------- d-------- C:\Program Files\Common Files\aolshare
2006-12-02 13:29 407808 --a------ C:\AOLDNLD(2).exe
2006-12-01 05:02 -------- d-------- C:\Program Files\groowe
2006-11-29 04:49 42516 --a------ C:\WINDOWS\system32\xtjofnek.dll
2006-11-28 16:58 -------- d-------- C:\Program Files\trend micro
2006-11-27 03:45 60416 --------- C:\WINDOWS\system32\tzchange.exe
2006-11-21 13:50 -------- d-------- C:\Program Files\echocentral
2006-11-13 01:02 1866240 --a------ C:\WINDOWS\system32\mstscax.dll
2006-11-10 03:33 110612 --a------ C:\WINDOWS\system32\yuwdlosn.exe
2006-11-09 15:33 110612 --a------ C:\WINDOWS\system32\vidsbram.exe
2006-11-09 13:07 1005104 --a------ C:\aolsetup.exe
2006-11-09 05:06 110612 --a------ C:\WINDOWS\system32\cxlxleja.exe
2006-11-09 04:59 110612 --a------ C:\WINDOWS\system32\layglcrb.exe
2006-11-08 11:30 110612 --a------ C:\WINDOWS\system32\wjeduxef.exe
2006-11-08 04:59 110612 --a------ C:\WINDOWS\system32\xuqgngry.exe
2006-11-08 00:06 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-11-07 21:03 6049280 --a------ C:\WINDOWS\system32\ieframe.dll
2006-11-07 21:03 50688 --a------ C:\WINDOWS\system32\msfeedsbs.dll
2006-11-07 21:03 458752 --a------ C:\WINDOWS\system32\msfeeds.dll
2006-11-07 21:03 413696 --a------ C:\WINDOWS\system32\vbscript.dll
2006-11-07 21:03 231424 --a------ C:\WINDOWS\system32\webcheck.dll
2006-11-07 21:03 180736 --a------ C:\WINDOWS\system32\ieui.dll
2006-11-07 21:03 156160 --a------ C:\WINDOWS\system32\msls31.dll
2006-11-07 11:30 110612 --a------ C:\WINDOWS\system32\nkwlnohp.exe
2006-11-07 04:59 110612 --a------ C:\WINDOWS\system32\ekhalrkj.exe
2006-11-07 03:27 382976 --a------ C:\WINDOWS\system32\iedkcs32.dll
2006-11-07 03:27 229376 --a------ C:\WINDOWS\system32\ieaksie.dll
2006-11-07 03:26 71680 --a------ C:\WINDOWS\system32\admparse.dll
2006-11-07 03:26 55296 --a------ C:\WINDOWS\system32\iesetup.dll
2006-11-07 03:26 54784 --a------ C:\WINDOWS\system32\ie4uinit.exe
2006-11-07 03:26 43008 --a------ C:\WINDOWS\system32\iernonce.dll
2006-11-07 03:26 152064 --a------ C:\WINDOWS\system32\ieakeng.dll
2006-11-07 03:26 13312 --a------ C:\WINDOWS\system32\ieudinit.exe
2006-11-07 03:26 123904 --a------ C:\WINDOWS\system32\advpack.dll
2006-11-07 03:25 161792 --a------ C:\WINDOWS\system32\ieakui.dll
2006-11-07 03:06 600576 --a------ C:\WINDOWS\system32\mstsc.exe
2006-11-06 11:30 110612 --a------ C:\WINDOWS\system32\cjfmrlum.exe
2006-11-06 04:59 110612 --a------ C:\WINDOWS\system32\moidbycw.exe
2006-11-06 04:58 110612 --a------ C:\WINDOWS\system32\kowtexfw.exe
2006-11-05 11:30 110612 --a------ C:\WINDOWS\system32\yrcdjjwv.exe
2006-11-04 14:14 1245696 --a------ C:\WINDOWS\system32\msxml4.dll
2006-11-04 11:30 110612 --a------ C:\WINDOWS\system32\jeyyhvib.exe
2006-11-04 10:41 110612 --a------ C:\WINDOWS\system32\rywaxqga.exe
2006-11-04 10:31 15521072 --a------ C:\IE7-WindowsXP-x86-enu.exe
2006-11-04 10:00 110612 --a------ C:\WINDOWS\system32\virmtdwp.exe
2006-11-04 09:59 110612 --a------ C:\WINDOWS\system32\govsynne.exe
2006-11-04 09:56 110612 --a------ C:\WINDOWS\system32\llhdhoon.exe
2006-11-04 09:53 110612 --a------ C:\WINDOWS\system32\dhwiekww.exe
2006-11-04 09:44 110612 --a------ C:\WINDOWS\system32\ctyjnkjt.exe
2006-11-04 09:36 110612 --a------ C:\WINDOWS\system32\lsxewrrg.exe
2006-11-04 09:35 110612 --a------ C:\WINDOWS\system32\gvrslrrt.exe
2006-11-04 09:15 110612 --a------ C:\WINDOWS\system32\yakkhpsi.exe
2006-11-03 18:37 110612 --a------ C:\WINDOWS\system32\qnixbsww.exe
2006-11-03 16:56 110612 --a------ C:\WINDOWS\system32\pbftqttl.exe
2006-11-03 16:39 110612 --a------ C:\WINDOWS\system32\tysouais.exe
2006-11-03 05:20 110612 --a------ C:\WINDOWS\system32\feabpaml.exe
2006-11-03 04:53 110612 --a------ C:\WINDOWS\system32\yliblsdj.exe
2006-10-31 18:31 251 --a------ C:\Program Files\wt3d.ini
2006-10-31 12:31 153144 --a------ C:\ewido_micro(3).exe
2006-10-31 08:30 110612 --a------ C:\WINDOWS\system32\ldntgqfn.exe
2006-10-30 19:01 110612 --a------ C:\WINDOWS\system32\blyrnbhf.exe
2006-10-29 21:05 23608632 --a------ C:\wmp11-windowsxp-x86-enu(2).exe
2006-10-29 13:17 1355912 --a------ C:\install_flash_player.exe
2006-10-29 11:29 5900416 --a------ C:\Firefox Setup 2.0.exe
2006-10-22 12:22 888832 --a------ C:\WINDOWS\system32\nvmobls.dll
2006-10-22 12:22 86016 --a------ C:\WINDOWS\system32\nvmctray.dll
2006-10-22 12:22 81920 --a------ C:\WINDOWS\system32\nvwddi.dll
2006-10-22 12:22 794624 --a------ C:\WINDOWS\system32\nvcplui.exe
2006-10-22 12:22 7700480 --a------ C:\WINDOWS\system32\nvcpl.dll
2006-10-22 12:22 581632 --a------ C:\WINDOWS\system32\nvhwvid.dll
2006-10-22 12:22 5644288 --a------ C:\WINDOWS\system32\nvoglnt.dll
2006-10-22 12:22 5619712 --a------ C:\WINDOWS\system32\nvdisps.dll
2006-10-22 12:22 5255168 --a------ C:\WINDOWS\system32\nvdispsr.dll
2006-10-22 12:22 466944 --a------ C:\WINDOWS\system32\nvshell.dll
2006-10-22 12:22 458752 --a------ C:\WINDOWS\system32\nvmccssr.dll
2006-10-22 12:22 4527488 --a------ C:\WINDOWS\system32\nv4_disp.dll
2006-10-22 12:22 45056 --a------ C:\WINDOWS\system32\nvmccsrs.dll
2006-10-22 12:22 442368 --a------ C:\WINDOWS\system32\nvappbar.exe
2006-10-22 12:22 425984 --a------ C:\WINDOWS\system32\keystone.exe
2006-10-22 12:22 35840 --a------ C:\WINDOWS\system32\nvcodins.dll
2006-10-22 12:22 35840 --a------ C:\WINDOWS\system32\nvcod.dll
2006-10-22 12:22 3203072 --a------ C:\WINDOWS\system32\nvgamesr.dll
2006-10-22 12:22 311296 --a------ C:\WINDOWS\system32\nvexpbar.dll
2006-10-22 12:22 3047424 --a------ C:\WINDOWS\system32\nvgames.dll
2006-10-22 12:22 2973696 --a------ C:\WINDOWS\system32\nvvitvsr.dll
2006-10-22 12:22 2924544 --a------ C:\WINDOWS\system32\nvvitvs.dll
2006-10-22 12:22 286720 --a------ C:\WINDOWS\system32\nvnt4cpl.dll
2006-10-22 12:22 2859008 --a------ C:\WINDOWS\system32\nvmoblsr.dll
2006-10-22 12:22 229376 --a------ C:\WINDOWS\system32\nvmccs.dll
2006-10-22 12:22 212992 --a------ C:\WINDOWS\system32\nvapi.dll
2006-10-22 12:22 188416 --a------ C:\WINDOWS\system32\nvmccss.dll
2006-10-22 12:22 1732608 --a------ C:\WINDOWS\system32\nvwssr.dll
2006-10-22 12:22 1662976 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
2006-10-22 12:22 1622016 --a------ C:\WINDOWS\system32\nwiz.exe
2006-10-22 12:22 159810 --a------ C:\WINDOWS\system32\nvsvc32.exe
2006-10-22 12:22 147456 --a------ C:\WINDOWS\system32\nvcolor.exe
2006-10-22 12:22 1470464 --a------ C:\WINDOWS\system32\nview.dll
2006-10-22 12:22 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe
2006-10-22 12:22 1236992 --a------ C:\WINDOWS\system32\nvwss.dll
2006-10-22 12:22 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll
2006-10-22 12:22 1011712 --a------ C:\WINDOWS\system32\nvcpluir.dll


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries & legit default entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"
"OE"="\"C:\\Program Files\\Trend Micro\\Internet Security 2007\\TMAS_OE\\TMAS_OEMon.exe\""
"swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.1128.2480\\GoogleToolbarNotifier.exe"
"WMPNSCFG"="C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe"
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"Yahoo! Pager"="\"C:\\PROGRA~1\\Yahoo!\\MESSEN~1\\YAHOOM~1.EXE\" -quiet"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"IAAnotif"="C:\\Program Files\\Intel\\Intel Matrix Storage Manager\\iaanotif.exe"
"SigmatelSysTrayApp"="stsystra.exe"
"NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"
"nwiz"="nwiz.exe /install"
"PaperPort PTD"="C:\\Program Files\\ScanSoft\\PaperPort\\pptd40nt.exe"
"IndexSearch"="C:\\Program Files\\ScanSoft\\PaperPort\\IndexSearch.exe"
"NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit"
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_10\\bin\\jusched.exe\""
"pccguide.exe"="C:\\PROGRA~1\\TRENDM~1\\INTERN~2\\pccguide.exe"
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Acrobat Speed Launcher.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\Adobe Acrobat Speed Launcher.lnk"
"backup"="C:\\WINDOWS\\pss\\Adobe Acrobat Speed Launcher.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\WINDOWS\\Installer\\{AC76BA86-1033-F400-8796-100000000002}\\SC_Acrobat.exe "
"item"="Adobe Acrobat Speed Launcher"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\Adobe Reader Speed Launch.lnk"
"backup"="C:\\WINDOWS\\pss\\Adobe Reader Speed Launch.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\Adobe\\ACROBA~1.0\\Reader\\READER~1.EXE "
"item"="Adobe Reader Speed Launch"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Google Updater.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\Google Updater.lnk"
"backup"="C:\\WINDOWS\\pss\\Google Updater.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\Google\\GOOGLE~2\\GOOGLE~1.EXE -systray -startup"
"item"="Google Updater"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^VPN Client.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\VPN Client.lnk"
"backup"="C:\\WINDOWS\\pss\\VPN Client.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\WINDOWS\\Installer\\{8A3A2363-2129-43FB-8DFC-F237DA58038C}\\Icon3E5562ED7.ico -user_logon"
"item"="VPN Client"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Sylvester Womack^Start Menu^Programs^Startup^AOL OpenRide.lnk]
"path"="C:\\Documents and Settings\\Sylvester Womack\\Start Menu\\Programs\\Startup\\AOL OpenRide.lnk"
"backup"="C:\\WINDOWS\\pss\\AOL OpenRide.lnkStartup"
"location"="Startup"
"command"="C:\\PROGRA~1\\COMMON~1\\AOL\\Launch\\AOLLAU~1.EXE /d suiteid=frontier_1.23.16.1 /d locale=en-US ee://aol/frontierApp /preload"
"item"="AOL OpenRide"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"=""
"hkey"="HKLM"
"command"=""
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 7.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Acrotray"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Adobe\\Acrobat 7.0\\Distillr\\Acrotray.exe\""
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIMACE]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MACE"
"hkey"="HKLM"
"command"="MACE.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="atiptaxx"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\""
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="daemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\DAEMON Tools\\daemon.exe\" -lang 1033"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DaemonTools_WhenUSaveNow_Installer]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DaemonTools_WhenUSaveNow_Installer"
"hkey"="HKLM"
"command"="C:\\Program Files\\DaemonTools_WhenUSaveNow_Installer\\DaemonTools_WhenUSaveNow_Installer.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DllRunning]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="sxtexisc"
"hkey"="HKLM"
"command"="rundll32.exe \"C:\\WINDOWS\\system32\\sxtexisc.dll\",setvm"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ehtray"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\ehome\\ehtray.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EzVoice]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ezvoice3"
"hkey"="HKCU"
"command"="C:\\PROGRA~1\\EZVOIC~1.2\\ezvoice3.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AOLSoftware"
"hkey"="HKLM"
"command"="C:\\Program Files\\Common Files\\AOL\\1165084292\\ee\\AOLSoftware.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LTMSG]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="LTMSG"
"hkey"="HKLM"
"command"="LTMSG.exe 7"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msmsgs"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MsnMsgr"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\" /background"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NeroCheck"
"hkey"="HKLM"
"command"="C:\\Program Files\\Common Files\\Ahead\\Lib\\NeroCheck.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PhoneTray]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="PhoneTray"
"hkey"="HKLM"
"command"="C:\\Program Files\\TraySoft\\PhoneTray\\PhoneTray.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="qttask"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="jusched"
"hkey"="HKLM"
"command"="C:\\Program Files\\Java\\jre1.5.0_06\\bin\\jusched.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GoogleToolbarNotifier"
"hkey"="HKCU"
"command"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.908.6962\\GoogleToolbarNotifier.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="WMPNSCFG"
"hkey"="HKCU"
"command"="C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{553858A7-4922-4e7e-B1C1-97140C1C16EF}"="IE Component Categories cache daemon"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=hex(2):43,3a,5c,57,49,4e,44,4f,57,53,5c,52,65,73,6f,75,72,\
63,65,73,5c,54,68,65,6d,65,73,5c,52,6f,79,61,6c,65,5c,52,6f,79,61,6c,65,2e,\
6d,73,73,74,79,6c,65,73,00
"InstallTheme"=hex(2):43,3a,5c,57,49,4e,44,4f,57,53,5c,52,65,73,6f,75,72,63,65,\
73,5c,54,68,65,6d,65,73,5c,52,6f,79,61,6c,65,2e,74,68,65,6d,65,00

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"


[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
HTTPFilter REG_MULTI_SZ HTTPFilter\0\0
LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService REG_MULTI_SZ DnsCache\0\0
DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0
rpcss REG_MULTI_SZ RpcSs\0\0
imgsvc REG_MULTI_SZ StiSvc\0\0
termsvcs REG_MULTI_SZ TermService\0\0
Usnsvc REG_MULTI_SZ usnsvc\0\0
WudfServiceGroup REG_MULTI_SZ WUDFSvc\0\0


[HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F]
Shell\AutoRun\command F:\setup.exe



~ ~ ~ ~ ~ ~ ~ ~ Hijackthis Backups ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

backup-20070121-110427-572
O4 - HKLM\..\Run: [DllRunning] rundll32.exe "C:\WINDOWS\system32\avdjbinp.dll",setvm
backup-20070104-175059-458
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
backup-20070104-175059-865
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
backup-20070104-172702-747
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
backup-20070104-172702-830
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.113.93 85.255.112.210

Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\XoftSpySE.job

Completion time: 07-01-21 11:15:45

***PANDA***

Incident Status Location

Adware:adware/ist.istbar Not disinfected Windows Registry
Spyware:Cookie/Gorillanation Not disinfected C:\Documents and Settings\Delphine D. Womack\Cookies\delphine d. [email protected][1].txt
Virus:Trj/Mitglieder.BO Not disinfected Archive Folders\Deleted Items\345556.rar[dddd.exe]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[.hitbox.com/]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[.atwola.com/]
Spyware:Cookie/FortuneCity Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[.fortunecity.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[.go.com/]
Spyware:Cookie/MediaTickets Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[.kinghost.com/]
Spyware:Cookie/Maxserving Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[.maxserving.com/]
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[hc2.humanclick.com/]
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[hc2.humanclick.com/hc/50255095]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Sylvester Womack\Application Data\Mozilla\Firefox\Profiles\w2aa85gh.default\cookies.txt[searchportal.information.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Sylvester Womack\Cookies\[email protected][2].txt
Spyware:Cookie/myaffiliateprogram Not disinfected C:\Documents and Settings\Sylvester Womack\Cookies\[email protected][2].txt
***HIGHJACKTHIS***
Logfile of HijackThis v1.99.1
Scan saved at 1:18:13 PM, on 1/21/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exe
C:\Program Files\Venturi2\Client\ventc.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\pccguide.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\PcScnSrv.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\Program Files\Venturi2\Configurator\ventcfg.exe
C:\Program Files\Greetings Workshop\GWREMIND.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\hijackthis\find.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.rr.com/flash/index.cfm
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [pccguide.exe] C:\PROGRA~1\TRENDM~1\INTERN~2\pccguide.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [OE] "C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.2480\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - Startup: Greetings Workshop Reminders.lnk = C:\Program Files\Greetings Workshop\GWREMIND.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Venturi 2.lnk = ?
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1153857123375
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1162547820260
O16 - DPF: {97BB6657-DC7F-4489-9067-51FAB9D8857E} (CWebLaunchCtl Object) - https://control.everdream.com/cf1live/static/weblaunch/weblaunch2.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exe
O23 - Service: Trend Micro Protection Against Spyware (PcScnSrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\PcScnSrv.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exe
O23 - Service: Venturi2 Client (Venturi2) - Fourelle Systems, Inc - C:\Program Files\Venturi2\Client\ventc.exe

You appear to have quite a collection of inactive crappies....let's scan a couple of the same sized files to confirm

Please go to: VirusTotal

• At the top of the page you'll find a "Browse" button. Click the "Browse" button and browse to this file in BOLD:
  
  C:\WINDOWS\system32\blyrnbhf.exe
  
  
• Click "Open".
• Then click the "Send" button at the top of the VirusTotal page.
• This will scan the file. Please be patient.
• Then repeat as above for the following files in BOLD:
  
  C:\WINDOWS\system32\xuqgngry.exe
  C:\WINDOWS\system32\unnxukac.dll
  C:\WINDOWS\system32\ncchdipl.dll
• Once scanned, copy and paste the results in your next reply.

---------------------------------------------------------------------------------------------

Thanks! Here is the summary from VirusTotal.

Complete scanning result of "blyrnbhf.exe", received in VirusTotal at 01.22.2007, 00:35:14 (CET).

Antivirus Version Update Result
AntiVir 7.3.0.26 01.21.2007 ADSPY/VSAddinDLL.A
Authentium 4.93.8 01.21.2007 no virus found
Avast 4.7.936.0 01.18.2007 Win32:Adware-gen.
AVG 386 01.21.2007 Adware Generic.RUQ
BitDefender 7.2 01.21.2007 Adware.Agent.AT
CAT-QuickHeal 9.00 01.20.2007 Adware.Virtumonde.sr (Not a Virus)
ClamAV devel-20060426 01.21.2007 no virus found
DrWeb 4.33 01.21.2007 no virus found
eSafe 7.0.14.0 01.21.2007 Suspicious Trojan/Worm
eTrust-InoculateIT 23.73.118 01.20.2007 no virus found
eTrust-Vet 30.3.3336 01.19.2007 no virus found
Ewido 4.0 01.21.2007 no virus found
Fortinet 2.82.0.0 01.21.2007 Adware/SearchColours
F-Prot 3.16f 01.21.2007 no virus found
F-Prot4 4.2.1.29 01.21.2007 no virus found
Ikarus T3.1.0.27 01.09.2007 not-a-virus:AdWare.Win32.Agent.at
Kaspersky 4.0.2.24 01.22.2007 not-a-virus:AdWare.Win32.Agent.at
McAfee 4943 01.19.2007 potentially unwanted program Adware-SearchColours
Microsoft 1.1904 01.21.2007 no virus found
NOD32v2 1995 01.21.2007 Win32/Adware.Toolbar.SearchColours
Norman 5.80.02 01.21.2007 W32/Virtumonde.SR
Panda 9.0.0.4 01.21.2007 Application/VSToolbar
Prevx1 V2 01.22.2007 no virus found
Sophos 4.13.0 01.20.2007 no virus found
Sunbelt 2.2.907.0 01.12.2007 VIPRE.Suspicious
TheHacker 6.0.3.153 01.21.2007 Adware/Agent.at
UNA 1.83 01.19.2007 Adware.Agent.C0AA
VBA32 3.11.2 01.20.2007 AdWare.Win32.Searchcolor.a
VirusBuster 4.3.19:9 01.21.2007 Adware.SearchColors.A


Aditional Information
File size: 110612 bytes
MD5: 65c7bb33f7e4e4d68aaff2a82d0f4102
SHA1: cce39118c90d83fe7c6fd7accfe50ece7639a740
packers: PECRYPT
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "xuqgngry.exe", received in VirusTotal at 01.22.2007, 00:39:41 (CET).

Antivirus Version Update Result
AntiVir 7.3.0.26 01.21.2007 ADSPY/VSAddinDLL.A
Authentium 4.93.8 01.21.2007 no virus found
Avast 4.7.936.0 01.18.2007 Win32:Adware-gen.
AVG 386 01.21.2007 Adware Generic.RUQ
BitDefender 7.2 01.21.2007 Adware.Agent.AT
CAT-QuickHeal 9.00 01.20.2007 Adware.Virtumonde.sr (Not a Virus)
ClamAV devel-20060426 01.21.2007 no virus found
DrWeb 4.33 01.21.2007 no virus found
eSafe 7.0.14.0 01.21.2007 Suspicious Trojan/Worm
eTrust-InoculateIT 23.73.118 01.20.2007 no virus found
eTrust-Vet 30.3.3336 01.19.2007 no virus found
Ewido 4.0 01.21.2007 no virus found
Fortinet 2.82.0.0 01.21.2007 Adware/SearchColours
F-Prot 3.16f 01.21.2007 no virus found
F-Prot4 4.2.1.29 01.21.2007 no virus found
Ikarus T3.1.0.27 01.09.2007 not-a-virus:AdWare.Win32.Agent.at
Kaspersky 4.0.2.24 01.22.2007 not-a-virus:AdWare.Win32.Agent.at
McAfee 4943 01.19.2007 potentially unwanted program Adware-SearchColours
Microsoft 1.1904 01.21.2007 no virus found
NOD32v2 1995 01.21.2007 Win32/Adware.Toolbar.SearchColours
Norman 5.80.02 01.21.2007 W32/Virtumonde.SR
Panda 9.0.0.4 01.21.2007 Application/VSToolbar
Prevx1 V2 01.22.2007 no virus found
Sophos 4.13.0 01.20.2007 no virus found
Sunbelt 2.2.907.0 01.12.2007 VIPRE.Suspicious
TheHacker 6.0.3.153 01.21.2007 Adware/Agent.at
UNA 1.83 01.19.2007 Adware.Agent.C0AA
VBA32 3.11.2 01.20.2007 AdWare.Win32.Searchcolor.a
VirusBuster 4.3.19:9 01.21.2007 Adware.SearchColors.A


Aditional Information
File size: 110612 bytes
MD5: 65c7bb33f7e4e4d68aaff2a82d0f4102
SHA1: cce39118c90d83fe7c6fd7accfe50ece7639a740
packers: PECRYPT
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "unnxukac.dll", received in VirusTotal at 01.22.2007, 00:45:46 (CET).

Antivirus Version Update Result
AntiVir 7.3.0.26 01.21.2007 TR/Spy.VBStat.J
Authentium 4.93.8 01.21.2007 W32/Trojan.MAW
Avast 4.7.936.0 01.18.2007 no virus found
AVG 386 01.21.2007 PSW.Generic2.XLL
BitDefender 7.2 01.21.2007 Trojan.Spy.VBStat.B
CAT-QuickHeal 9.00 01.20.2007 Trojan-Spy.VBStat.j
ClamAV devel-20060426 01.21.2007 Trojan.Spy-216
DrWeb 4.33 01.21.2007 Trojan.Virtumod
eSafe 7.0.14.0 01.21.2007 no virus found
eTrust-InoculateIT 23.73.119 01.22.2007 Win32/Vundo!DLL!Trojan
eTrust-Vet 30.3.3336 01.19.2007 Win32/Darksma.T
Ewido 4.0 01.21.2007 no virus found
Fortinet 2.82.0.0 01.21.2007 suspicious
F-Prot 3.16f 01.21.2007 destructive program named W32/Trojan.MAW
F-Prot4 4.2.1.29 01.21.2007 W32/Trojan.MAW
Ikarus T3.1.0.27 01.09.2007 Trojan-Spy.Win32.VBStat.j
Kaspersky 4.0.2.24 01.22.2007 Trojan-Spy.Win32.VBStat.j
McAfee 4943 01.19.2007 Vundo.dll
Microsoft 1.1904 01.21.2007 TrojanSpy:Win32/VBStat.C
NOD32v2 1995 01.21.2007 Win32/Spy.VBStat.J
Norman 5.80.02 01.21.2007 W32/Virtumonde.TS
Panda 9.0.0.4 01.21.2007 Spyware/Virtumonde
Prevx1 V2 01.22.2007 no virus found
Sophos 4.13.0 01.20.2007 Troj/Counto-H
Sunbelt 2.2.907.0 01.12.2007 no virus found
TheHacker 6.0.3.153 01.21.2007 Trojan/Spy.VBStat.j
UNA 1.83 01.19.2007 Trojan.Spy.Win32.VBStat.D5E9
VBA32 3.11.2 01.20.2007 no virus found
VirusBuster 4.3.19:9 01.21.2007 TrojanSpy.VBStat.E


Aditional Information
File size: 81684 bytes
MD5: df6b5bc868396f71e94eeda5dbc780c5
SHA1: 0a7676069f262bd86cd3519095fcce60c4521b62

Complete scanning result of "ncchdipl.dll", received in VirusTotal at 01.22.2007, 00:50:47 (CET).

Antivirus Version Update Result
AntiVir 7.3.0.26 01.21.2007 TR/Spy.VBStat.J
Authentium 4.93.8 01.21.2007 W32/Trojan.MAW
Avast 4.7.936.0 01.18.2007 no virus found
AVG 386 01.21.2007 PSW.Generic2.XLL
BitDefender 7.2 01.21.2007 Trojan.Spy.VBStat.B
CAT-QuickHeal 9.00 01.20.2007 Trojan-Spy.VBStat.j
ClamAV devel-20060426 01.21.2007 Trojan.Spy-216
DrWeb 4.33 01.21.2007 Trojan.Virtumod
eSafe 7.0.14.0 01.21.2007 no virus found
eTrust-InoculateIT 23.73.119 01.22.2007 Win32/Vundo!DLL!Trojan
eTrust-Vet 30.3.3336 01.19.2007 Win32/Darksma.T
Ewido 4.0 01.21.2007 no virus found
Fortinet 2.82.0.0 01.21.2007 suspicious
F-Prot 3.16f 01.21.2007 destructive program named W32/Trojan.MAW
F-Prot4 4.2.1.29 01.21.2007 W32/Trojan.MAW
Ikarus T3.1.0.27 01.09.2007 Trojan-Spy.Win32.VBStat.j
Kaspersky 4.0.2.24 01.22.2007 Trojan-Spy.Win32.VBStat.j
McAfee 4943 01.19.2007 Vundo.dll
Microsoft 1.1904 01.21.2007 TrojanSpy:Win32/VBStat.C
NOD32v2 1995 01.21.2007 Win32/Spy.VBStat.J
Norman 5.80.02 01.21.2007 W32/Virtumonde.TS
Panda 9.0.0.4 01.21.2007 Spyware/Virtumonde
Prevx1 V2 01.22.2007 no virus found
Sophos 4.13.0 01.20.2007 Troj/Counto-H
Sunbelt 2.2.907.0 01.12.2007 no virus found
TheHacker 6.0.3.153 01.21.2007 Trojan/Spy.VBStat.j
UNA 1.83 01.19.2007 Trojan.Spy.Win32.VBStat.D5E9
VBA32 3.11.2 01.20.2007 no virus found
VirusBuster 4.3.19:9 01.21.2007 TrojanSpy.VBStat.E


Aditional Information
File size: 81684 bytes
MD5: df6b5bc868396f71e94eeda5dbc780c5
SHA1: 0a7676069f262bd86cd3519095fcce60c4521b62

Before begining the fix, read this post completely. If there's anything that you do not understand, kindly ask your questions before proceeding. Ensure that there aren't any opened browsers when you are carrying out the procedures below. Save the following instructions in Notepad as this webpage would not be available when you're carrying out the fix.

It is IMPORTANT that you don't miss a step & perform everything in the correct order/sequence.

There's quite a bit of mess that's showing on this system, past and present. Let's give it a thorough cleaning.

---------------------------------------------------------------------------------------------

Download Pocket Killbox and unzip the exe file to your desktop. We'll use this shortly.

---------------------------------------------------------------------------------------------

I see you have AVG Anti-Spyware already. Please update it's definitions, and run a scan where I have placed it in this fix.

Run AVG Anti-Spyware

• From the main screen, click on update, then click the Start
  update button.
• After the update finishes (the status bar at the bottom will display "Update
  successful")
• select the "Settings" tab.
• Once in the Settings screen click on "Recommended actions" and then select "Quarantine".
• Under "Reports"
• Select "Automatically generate report after every scan"
• Un-Select "Only if threats were found"
• Exit AVG Anti-Spyware. DO NOT scan yet.

---------------------------------------------------------------------------------------------

Please download ATF Cleaner by Atribune.
This program is for XP and Windows 2000 only We'll use this later.

---------------------------------------------------------------------------------------------

I see from ComboFix's log that you have fixed an O17 entry which indicates another type of malware.

Please download FixWareout from one of these sites:
http://downloads.subratam.org/Fixwareout.exe
http://www.bleepingcomputer.com/files/lonny/Fixwareout.exe

Save it to your desktop and run it. Click Next, then Install, make sure "Run fixit" is checked and click Finish.
The fix will begin; follow the prompts. You will be asked to reboot your computer; please do so. Your system may take longer than usual to load; this is normal.

Once the desktop loads a text file will open (report.txt), you can close it - the file has already been saved.

**If you receive an error message while trying to run FixWareout, copy autoexec.nt from the C:\WINDOWS\repair folder to C:\WINDOWS\system32 folder, and run FixWareout again.

----------------------------------------------------------------------------------------------------------

Copy and paste the following into Notepad (don't forget to copy and paste REGEDIT4):

REGEDIT4

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DllRunning]

Click to expand...

Save the file as "delete.reg". Make sure to save it with the quotes. It should look like this:

Close Notepad.

Double click on the delete.reg file and choose Yes to merge/add it to the registry. You may delete the file afterwards.

---------------------------------------------------------------------------------------------

Launch KillBox.exe & select the following options:

• delete on Reboot [*] All files (if available)

Use your mouse to select all the filenames highlighted in blue & then right-click & select Copy

• C:\WINDOWS\system32\silwjajr.dll
  C:\WINDOWS\system32\rrnpeqdn.dll
  C:\WINDOWS\system32\acrsafxw.dll
  C:\WINDOWS\system32\srnhpdjv.dll
  C:\WINDOWS\system32\mqxajtvt.dll
  C:\WINDOWS\system32\mcycejdj.dll
  C:\WINDOWS\system32\xcacrhfr.dll
  C:\WINDOWS\system32\jbgoopbb.dll
  C:\WINDOWS\system32\gadxkvma.dll
  C:\WINDOWS\system32\lewryopy.dll
  C:\WINDOWS\system32\uebartql.dll
  C:\WINDOWS\system32\qqflwqiw.dll
  C:\WINDOWS\system32\jwqnjmyg.dll
  C:\WINDOWS\system32\qysiytkq.dll
  C:\WINDOWS\system32\srxcvbjb.dll
  C:\WINDOWS\system32\tduabfow.dll
  C:\WINDOWS\system32\nwatxsig.dll
  C:\WINDOWS\system32\jkjpvcdl.dll
  C:\WINDOWS\system32\fcxxynkt.dll
  C:\WINDOWS\system32\jtqmhued.dll
  C:\WINDOWS\system32\unnxukac.dll
  C:\WINDOWS\system32\ncchdipl.dll
  C:\WINDOWS\system32\xpbeapql.dll
  C:\WINDOWS\system32\pbditlhv.dll
  C:\WINDOWS\system32\bsjgqakj.dll
  C:\WINDOWS\system32\poiyyerd.dll
  C:\WINDOWS\system32\kdmfanuu.dll
  C:\WINDOWS\system32\rlqevgdp.dll
  C:\WINDOWS\system32\hobkdswk.dll
  C:\WINDOWS\system32\xfhxkrpk.dll
  C:\WINDOWS\system32\nevgbyyh.dll
  C:\WINDOWS\system32\sohgljwd.dll
  C:\WINDOWS\system32\idwddseu.dll
  C:\WINDOWS\system32\nkfmihwg.dll
  C:\WINDOWS\system32\ishblxtx.dll
  C:\WINDOWS\system32\gauoiesr.dll
  C:\WINDOWS\system32\qlwhjlxu.dll
  C:\WINDOWS\system32\fcxxynkt.dll
  C:\WINDOWS\system32\jtqmhued.dll
  C:\WINDOWS\system32\deejcojk.dll
  C:\WINDOWS\system32\yuwdlosn.exe
  C:\WINDOWS\system32\vidsbram.exe
  C:\WINDOWS\system32\cxlxleja.exe
  C:\WINDOWS\system32\layglcrb.exe
  C:\WINDOWS\system32\wjeduxef.exe
  C:\WINDOWS\system32\xuqgngry.exe
  C:\WINDOWS\system32\nkwlnohp.exe
  C:\WINDOWS\system32\ekhalrkj.exe
  C:\WINDOWS\system32\cjfmrlum.exe
  C:\WINDOWS\system32\moidbycw.exe
  C:\WINDOWS\system32\kowtexfw.exe
  C:\WINDOWS\system32\yrcdjjwv.exe
  C:\WINDOWS\system32\jeyyhvib.exe
  C:\WINDOWS\system32\rywaxqga.exe
  C:\WINDOWS\system32\virmtdwp.exe
  C:\WINDOWS\system32\govsynne.exe
  C:\WINDOWS\system32\llhdhoon.exe
  C:\WINDOWS\system32\dhwiekww.exe
  C:\WINDOWS\system32\ctyjnkjt.exe
  C:\WINDOWS\system32\lsxewrrg.exe
  C:\WINDOWS\system32\gvrslrrt.exe
  C:\WINDOWS\system32\yakkhpsi.exe
  C:\WINDOWS\system32\qnixbsww.exe
  C:\WINDOWS\system32\pbftqttl.exe
  C:\WINDOWS\system32\tysouais.exe
  C:\WINDOWS\system32\feabpaml.exe
  C:\WINDOWS\system32\yliblsdj.exe
  C:\WINDOWS\system32\ldntgqfn.exe
  C:\WINDOWS\system32\blyrnbhf.exe
  

* Go to the File menu, and choose Paste from Clipboard
* Click the RED X button.
* KillBox will alert you the files will be deleted on next reboot, click Yes
* When asked to Reboot, select Yes

Click OK at any PendingFileRenameOperations prompt, and let us know if you receive this message.

Also, if the computer does not restart automatically, please restart it manually.

----------------------------------------------------------------------------------------------------------

Restart your computer and boot into Safe Mode by tapping the F8 key repeatedly until a menu shows up (and choose Safe Mode from the list). In some systems, this may be the F5 key, so try that if F8 doesn't work. Login on your usual account. Make sure to close any open browsers.

---------------------------------------------------------------------------------------------

• 
  Double-click ATF-Cleaner.exe to run the program.
  Under Main choose: Select All
  Click the Empty Selected button.

If you use Firefox browser

• Click Firefox at the top and choose: Select All
  Click the Empty Selected button.
  NOTE: If you would like to keep your saved passwords, please click No at the prompt.

If you use Opera browser

• Click Opera at the top and choose: Select All
  Click the Empty Selected button.
  NOTE: If you would like to keep your saved passwords, please click No at the prompt.

Click Exit on the Main menu to close the program.
For Technical Support, double-click the e-mail address located at the bottom of each menu.

Run AVG Anti-Spyware with it's updated definitions...it's important that all windows must be closed)

• Click Scanner
• Click on the Scan tab
• Click Complete System Scan to begin scanning.
  Once the scan is complete do the following:
• If you have any infections you will prompted, then select "Apply all actions"
• Once finished, click the Save report button, then click Save Report As and save it to your desktop. (make sure to remember where you saved that file, this is important).

Restart in normal mode.

---------------------------------------------------------------------------------------------

Establish an internet connection & perform an online scan using Internet Explorer at http://www.kaspersky.com/service?chapter=161739400

Answer Yes, when prompted to install an ActiveX component.

• The program will then begin downloading the latest definition files.
• Once the files have been downloaded click on NEXT
• Locate the Scan Settings button & configure to:
  • Scan using the following Anti-Virus database:
    • Extended
  • Scan Options:
    • Scan Archives
      [*]Scan Mail Bases
• Click OK & have it scan My Computer
• Once the scan is complete, it will display if your system has been infected. It does not provide an option to clean/disinfect. We only require a report from it.
• Click the Save Report As button.
• Select txt file from the dropdown menu, to save the file to your desktop so that you may post it in your next reply

* Turn off the real time scanner of any existing antivirus program while performing the online scan

---------------------------------------------------------------------------------------------

Open Hijack This and click on 'Do a System Scan and save a Logfile'. Save the log file and post it here.

---------------------------------------------------------------------------------------------

Please return with results from:

FixWareout (C:\fixwareout\report.txt)
AVG Anti-Spyware
Kaspersky online scan
HJT


How is your system behaving now, please?

Ok... I did get the PendingFileRenameOperations prompt. My system seems to be running fine.

Here are the logs from Fixwareout, AVG, Kaspersky and HJT respectively


Fixwareout
Last edited 1/14/2006
Post this report in the forums please
...
Prerun check
»»»»» HKLM run and Winlogon System values
»»»»» System restarted
...
Reg Entries that were deleted
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Urls\ocanomputes
...
Random Runs removed from HKLM
...

PLEASE NOTE, There WILL be LEGITIMATE FILES LISTED. IF YOU ARE UNSURE OF WHAT IT IS LEAVE THEM ALONE.

»»»»» Searching by size/names...

»»»»»
Search five digit cs, dm kd and jb files.
This WILL/CAN also list Legit Files, Submit them at Virustotal

Other suspects.

»»»»» Misc files.

»»»»» Checking for older varients covered by the Rem3 tool.

»»»»» Postrun check
»»»»» HKLM run
»»»»» Winlogon System value
»»»»»

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 4:48:53 AM 1/23/2007

+ Scan result:



E:\Windows.old\Users\Sylvester Womack\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt -> TrackingCookie.Information : Cleaned.


::Report end

My post was too large

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Tuesday, January 23, 2007 3:32:26 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.83.0
Kaspersky Anti-Virus database last update: 23/01/2007
Kaspersky Anti-Virus database records: 260965
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
C:\
D:\
E:\
F:\
G:\

Scan Statistics:
Total number of scanned objects: 648801
Number of viruses found: 16
Number of infected objects: 543 / 0
Number of suspicious objects: 0
Duration of the scan process: 04:47:33

Infected Object Name / Virus Name / Last Action
C:\!KillBox\acrsafxw.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\blyrnbhf.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\bsjgqakj.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\cjfmrlum.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\ctyjnkjt.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\cxlxleja.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\deejcojk.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\dhwiekww.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\ekhalrkj.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\feabpaml.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\gadxkvma.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\gauoiesr.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\govsynne.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\gvrslrrt.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\hobkdswk.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\idwddseu.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\ishblxtx.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\jbgoopbb.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\jeyyhvib.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\jwqnjmyg.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\kdmfanuu.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\kowtexfw.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\layglcrb.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\ldntgqfn.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\lewryopy.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\llhdhoon.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\lsxewrrg.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\mcycejdj.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\moidbycw.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\mqxajtvt.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\ncchdipl.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\nevgbyyh.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\nkfmihwg.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\nkwlnohp.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\nwatxsig.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\pbditlhv.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\pbftqttl.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\poiyyerd.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\qlwhjlxu.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\qnixbsww.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\qqflwqiw.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\qysiytkq.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\rlqevgdp.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\rrnpeqdn.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\rywaxqga.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\silwjajr.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\sohgljwd.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\srnhpdjv.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\srxcvbjb.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\tduabfow.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\tysouais.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\uebartql.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\unnxukac.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\vidsbram.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\virmtdwp.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\wjeduxef.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\xcacrhfr.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\xfhxkrpk.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\xpbeapql.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\!KillBox\xuqgngry.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\yakkhpsi.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\yliblsdj.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\yrcdjjwv.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\!KillBox\yuwdlosn.exe Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\eHome\logs\ehRecvr.log Object is locked skipped
C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Deleted Items/06 Mar 2005 03:14 from Delluv:/345556.rar/dddd.exe Infected: Email-Worm.Win32.Bagle.pac skipped
C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Deleted Items/06 Mar 2005 03:14 from Delluv:/345556.rar Infected: Email-Worm.Win32.Bagle.pac skipped
C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Deleted Items/08 Mar 2005 08:54 from REGIONS BANK:spam: Regions Bank: Urgent N.rtf Infected: Trojan-Spy.HTML.Bankfraud.dq skipped
C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst Mail MS Mail: infected - 3 skipped
C:\Documents and Settings\Delphine Womack\Local Settings\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
C:\Documents and Settings\Delphine Womack\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/01 Dec 2004 23:03 to '[email protected]':FW: Failure t/2464B7B8-86E8-4F4A-BA2CD0B8AC3AA1AC.txt/[From Suntrust Billing Department <[email protected]>][Date Thu, 02 Dec 2004 01:39:19 +0300]/html Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/01 Dec 2004 23:03 to '[email protected]':FW: Failure t/2464B7B8-86E8-4F4A-BA2CD0B8AC3AA1AC.txt Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/17 Dec 2004 12:16 to '[email protected]':FW: Important/B30022AE-1F5F-4509-82627C21427E11BF.txt/[From TCF Bank <[email protected]>][Date Fri, 17 Dec 2004 10:26:21 +0500]/html Infected: Trojan-Spy.HTML.Bankfraud.bh skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/17 Dec 2004 12:16 to '[email protected]':FW: Important/B30022AE-1F5F-4509-82627C21427E11BF.txt Infected: Trojan-Spy.HTML.Bankfraud.bh skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/07 Dec 2004 16:43 to '[email protected]':FW: Failure t/B4B75E31-D49B-4FC0-8A65B47F7E80E7E9.txt/[From Suntrust Billing Department <[email protected]>][Date Tue, 07 Dec 2004 13:16:17 -0500]/html Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/07 Dec 2004 16:43 to '[email protected]':FW: Failure t/B4B75E31-D49B-4FC0-8A65B47F7E80E7E9.txt Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/23 Dec 2004 03:30 to '[email protected]':FW: Important/64E15DCA-125A-4916-829C32451EE9AEA5.txt/[From Citizens Bank <[email protected]>][Date Wed, 22 Dec 2004 22:33:40 -0400]/html Infected: Trojan-Spy.HTML.Bankfraud.br skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/23 Dec 2004 03:30 to '[email protected]':FW: Important/64E15DCA-125A-4916-829C32451EE9AEA5.txt Infected: Trojan-Spy.HTML.Bankfraud.br skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst Mail MS Mail: infected - 8 skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\Outlook.bak/Personal Folders/Sent Items/01 Dec 2004 23:03 to '[email protected]':FW: Failure t/2464B7B8-86E8-4F4A-BA2CD0B8AC3AA1AC.txt/[From Suntrust Billing Department <billin[email protected]>][Date Thu, 02 Dec 2004 01:39:19 +0300]/html Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\Outlook.bak/Personal Folders/Sent Items/01 Dec 2004 23:03 to '[email protected]':FW: Failure t/2464B7B8-86E8-4F4A-BA2CD0B8AC3AA1AC.txt Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\Outlook.bak/Personal Folders/Junk E-mail1/29 Oct 2004 04:07 from [email protected]:spam: Swomack, .eml Infected: Trojan-Spy.HTML.Pcard.c skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\Outlook.bak/Personal Folders/Junk E-mail1/01 Nov 2004 10:28 from Suntrust Support:spam: Alert.rtf Infected: Trojan-Spy.HTML.Sunfraud.d skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\Outlook.bak/Personal Folders/Junk E-mail1/04 Nov 2004 09:02 from Citibanklease confirm Your account.eml Infected: Trojan-Spy.HTML.Citifraud.ay skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\Outlook.bak/Personal Folders/Junk E-mail1/08 Nov 2004 22:07 from Customer Support:NOTE! Citibank account s.eml Infected: Trojan-Spy.HTML.Citifraud.ay skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\Outlook.bak/Personal Folders/Junk E-mail1/18 Nov 2004 13:29 from [email protected]:Swomack, You hav.eml Infected: Trojan-Spy.HTML.Pcard.c skipped
C:\Documents and Settings\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Outlook\Outlook.bak Mail MS Mail: infected - 7 skipped
C:\Documents and Settings\Sylvester Womack\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Logs\Dfsr.log Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\pending.dat Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_D848_3B70_483B_4C8E\dfsr.db Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_D848_3B70_483B_4C8E\fsr.log Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_D848_3B70_483B_4C8E\fsrtmp.log Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_D848_3B70_483B_4C8E\tmp.edb Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Application Data\Microsoft\Windows Live Contacts\[email protected]\real\members.stg Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Application Data\Microsoft\Windows Live Contacts\[email protected]\shadow\members.stg Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Temp\Perflib_Perfdata_d24.dat Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Temp\~DF2C11.tmp Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Temp\~DF2EDD.tmp Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Temp\~DF309B.tmp Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Temp\~DFADFC.tmp Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Temp\~DFB052.tmp Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped
C:\Documents and Settings\Sylvester Womack\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Sylvester Womack\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Sylvester Womack\ntuser.dat.LOG Object is locked skipped
C:\Program Files\HighJackThis\backups\backup-20070113-101355-284.dll Infected: Trojan.Win32.BHO.g skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\109.tmp Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\11E.tmp Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\124.tmp Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\14A.tmp Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\19A.tmp Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\19B.tmp Infected: Trojan.Win32.BH skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\1C6.tmp Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\1DD.tmp Infected: Trojan.Win32.BH skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\3.tmp Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\4.tmp Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\9.tmp Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\94.tmp Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\95.tmp Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\96.tmp Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\A4.tmp Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\D1.tmp Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\D2.tmp Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\Program Files\Trend Micro\Internet Security 2007\Quarantine\D3.tmp Infected: not-a-virus:AdWare.Win32.Agent.at skipped
C:\Program Files\Venturi2\Client\vent2.log Object is locked skipped
C:\Program Files\Yahoo!\Messenger\logs\billing_Sylvester Womack.log Object is locked skipped
C:\Program Files\Yahoo!\Messenger\logs\client_Sylvester Womack.log Object is locked skipped
C:\Program Files\Yahoo!\Messenger\logs\network_Sylvester Womack.log Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\VundoFix Backups\rcmnoyvi.dll.bad Infected: Trojan.Win32.BHO.g skipped
C:\VundoFix Backups\vaatpi.dll.bad Infected: not-a-virus:AdWare.Win32.Virtumonde.fl skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Internet Logs\tvDebug.log Object is locked skipped
C:\WINDOWS\ModemLog_Agere Win Modem.txt Object is locked skipped
C:\WINDOWS\Registration\{02D4B3F1-FD88-11D1-960D-00805FC79235}.{85EBB434-EDFD-4D6A-99E8-6BF83F884A0E}.crmlog Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\Media Ce.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\drivers\dtscsi.sys Object is locked skipped
C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped
C:\WINDOWS\system32\drivers\sptd3693.sys Object is locked skipped
C:\WINDOWS\system32\fjldemiu.dll Infected: Trojan-Spy.Win32.VBStat.j skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl Object is locked skipped
C:\WINDOWS\system32\sxtexisc.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ft skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\system32\xtjofnek.dll Infected: Trojan.Win32.BHO.g skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
E:\IdentaFone_Pro_v2.31\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
E:\IdentaFone_Pro_v2.31\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
E:\IdentaFone_Pro_v2.31\runxxx.exe NSIS: infected - 2 skipped
E:\IdentaFone_Pro_v2.31\runxxx.exe UPX: infected - 2 skipped
E:\IdentaFone_Pro_v2.31.zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
E:\IdentaFone_Pro_v2.31.zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
E:\IdentaFone_Pro_v2.31.zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
E:\IdentaFone_Pro_v2.31.zip ZIP: infected - 3 skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/01 Dec 2004 23:03 to '[email protected]':FW: Failure t/2464B7B8-86E8-4F4A-BA2CD0B8AC3AA1AC.txt/[From Suntrust Billing Department <[email protected]>][Date Thu, 02 Dec 2004 01:39:19 +0300]/html Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/01 Dec 2004 23:03 to '[email protected]':FW: Failure t/2464B7B8-86E8-4F4A-BA2CD0B8AC3AA1AC.txt Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/17 Dec 2004 12:16 to '[email protected]':FW: Important/B30022AE-1F5F-4509-82627C21427E11BF.txt/[From TCF Bank <[email protected]>][Date Fri, 17 Dec 2004 10:26:21 +0500]/html Infected: Trojan-Spy.HTML.Bankfraud.bh skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/17 Dec 2004 12:16 to '[email protected]':FW: Important/B30022AE-1F5F-4509-82627C21427E11BF.txt Infected: Trojan-Spy.HTML.Bankfraud.bh skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/07 Dec 2004 16:43 to '[email protected]':FW: Failure t/B4B75E31-D49B-4FC0-8A65B47F7E80E7E9.txt/[From Suntrust Billing Department <[email protected]>][Date Tue, 07 Dec 2004 13:16:17 -0500]/html Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/07 Dec 2004 16:43 to '[email protected]':FW: Failure t/B4B75E31-D49B-4FC0-8A65B47F7E80E7E9.txt Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/23 Dec 2004 03:30 to '[email protected]':FW: Important/64E15DCA-125A-4916-829C32451EE9AEA5.txt/[From Citizens Bank <[email protected]>][Date Wed, 22 Dec 2004 22:33:40 -0400]/html Infected: Trojan-Spy.HTML.Bankfraud.br skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items/23 Dec 2004 03:30 to '[email protected]':FW: Important/64E15DCA-125A-4916-829C32451EE9AEA5.txt Infected: Trojan-Spy.HTML.Bankfraud.br skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst Mail MS Mail: infected - 8 skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst/Personal Folders/Sent Items/01 Dec 2004 23:03 to '[email protected]':FW: Failure t/2464B7B8-86E8-4F4A-BA2CD0B8AC3AA1AC.txt/[From Suntrust Billing Department <[email protected]>][Date Thu, 02 Dec 2004 01:39:19 +0300]/html Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst/Personal Folders/Sent Items/01 Dec 2004 23:03 to '[email protected]':FW: Failure t/2464B7B8-86E8-4F4A-BA2CD0B8AC3AA1AC.txt Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst/Personal Folders/Sent Items/17 Dec 2004 12:16 to '[email protected]':FW: Important/B30022AE-1F5F-4509-82627C21427E11BF.txt/[From TCF Bank <[email protected]>][Date Fri, 17 Dec 2004 10:26:21 +0500]/html Infected: Trojan-Spy.HTML.Bankfraud.bh skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst/Personal Folders/Sent Items/17 Dec 2004 12:16 to '[email protected]':FW: Important/B30022AE-1F5F-4509-82627C21427E11BF.txt Infected: Trojan-Spy.HTML.Bankfraud.bh skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst/Personal Folders/Sent Items/07 Dec 2004 16:43 to '[email protected]':FW: Failure t/B4B75E31-D49B-4FC0-8A65B47F7E80E7E9.txt/[From Suntrust Billing Department <[email protected]>][Date Tue, 07 Dec 2004 13:16:17 -0500]/html Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst/Personal Folders/Sent Items/07 Dec 2004 16:43 to '[email protected]':FW: Failure t/B4B75E31-D49B-4FC0-8A65B47F7E80E7E9.txt Infected: Trojan-Spy.HTML.Sunfraud.ax skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst/Personal Folders/Sent Items/23 Dec 2004 03:30 to '[email protected]':FW: Important/64E15DCA-125A-4916-829C32451EE9AEA5.txt/[From Citizens Bank <[email protected]>][Date Wed, 22 Dec 2004 22:33:40 -0400]/html Infected: Trojan-Spy.HTML.Bankfraud.br skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst/Personal Folders/Sent Items/23 Dec 2004 03:30 to '[email protected]':FW: Important/64E15DCA-125A-4916-829C32451EE9AEA5.txt Infected: Trojan-Spy.HTML.Bankfraud.br skipped
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst Mail MS Mail: infected - 8 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped

Continuation of Kaspersky

G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped

Still Kaspersky

G:\Users\Sylvester Lee Womack\AppData\Local\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe NSIS: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\Temp2_IdentaFone_Pro_v2.31.zip\runxxx.exe UPX: infected - 2 skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF18E6.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF18EB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF2716.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF272F.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF29C5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF2A19.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF3047.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF304C.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF318B.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF3191.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF3CE5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF3CEC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF3FF0.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF3FF5.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DF6753.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFA8E2.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFD2C7.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFD2CC.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFE3FB.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFE426.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFEBA3.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFEBA8.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFEC51.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFEC58.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFEEFE.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFEF39.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFEF93.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFF425.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temp\~DFF533.tmp Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe/stream Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip/runxxx.exe Infected: Trojan-Downloader.Win32.Zlob.ala skipped
G:\Users\Sylvester Lee Womack\Local Settings\Temporary Internet Files\Low\Content.IE5\X2KTGDBD\IdentaFone_Pro_v2.31[1].zip ZIP: infected - 3 skipped
G:\Windows\CSC\v2.0.6\pq Object is locked skipped
G:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-Application.etl Object is locked skipped
G:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventlog-Security.etl Object is locked skipped
G:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl Object is locked skipped
G:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTMsMpPsSession.etl Object is locked skipped
G:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Windows\Temporary Internet Files\AntiPhishing\07FB382D-AA75-4683-82F4-EAB265A275CB.dat Object is locked skipped

Scan process completed.

Logfile of HijackThis v1.99.1
Scan saved at 3:33:05 PM, on 1/23/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
C:\Program Files\Venturi2\Client\ventc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\pccguide.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\Program Files\Venturi2\Configurator\ventcfg.exe
C:\Program Files\Greetings Workshop\GWREMIND.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wscntfy.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\PcScnSrv.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exe
C:\hijackthis\find.exe

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [pccguide.exe] C:\PROGRA~1\TRENDM~1\INTERN~2\pccguide.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [OE] "C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.2480\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\GetFlash.exe
O4 - Startup: Greetings Workshop Reminders.lnk = C:\Program Files\Greetings Workshop\GWREMIND.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Venturi 2.lnk = ?
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1153857123375
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1162547820260
O16 - DPF: {97BB6657-DC7F-4489-9067-51FAB9D8857E} (CWebLaunchCtl Object) - https://control.everdream.com/cf1live/static/weblaunch/weblaunch2.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\PcCtlCom.exe
O23 - Service: Trend Micro Protection Against Spyware (PcScnSrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\PcScnSrv.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\tmproxy.exe
O23 - Service: Venturi2 Client (Venturi2) - Fourelle Systems, Inc - C:\Program Files\Venturi2\Client\ventc.exe

There's a lot going on in that Kaspersky log.

Please locate and upload these folders to the following site:

E:\IdentaFone_Pro_v2.31.zip
G:\Documents and Settings\Sylvester Lee Womack\AppData\Local\Temp\Temp2_IdentaFone_Pro_v2.31.zip


Please submit it to this site http://www.bleepingcomputer.com/submit-malware.php?channel=4
Please include a link to this topic in the message.

--------------------------------------------------------------------

Once you've done that, locate and delete all these files and folders:

C:\Program Files\HighJackThis\backups\backup-20070113-101355-284.dll
C:\VundoFix Backups
C:\WINDOWS\system32\fjldemiu.dll
C:\WINDOWS\system32\sxtexisc.dll
C:\WINDOWS\system32\xtjofnek.dll
E:\IdentaFone_Pro_v2.31
E:\IdentaFone_Pro_v2.31.zip
G:\Documents and Settings\Sylvester Lee Womack\AppData
G:\Users\Sylvester Lee Womack\AppData
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Windows\Temporary Internet Files
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temporary Internet Files
G:\Users\Sylvester Lee Womack\Local Settings\Temp\Temp2_IdentaFone_Pro_v2.31.zip
G:\Users\Sylvester Lee Womack\Local Settings\Temporary Internet Files\Low

--------------------------------------------------------------------

If any resist deletion, boot to safe mode and delete from there.

Delete the contents of this folder:

C:\Program Files\Trend Micro\Internet Security 2007\Quarantine

You have several infected emails in archives which should be removed.

They are located here:

E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items

E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst/Personal Folders/Sent Items

--------------------------------------------------------------------

Next, please do this:

Go here and do the BitDefender online virus scan.

• Click "I Agree" to agree to the EULA.
• Allow the ActiveX control to install when prompted.
• Leave the scanning options at default and press "Click here to scan" to begin the scan.
• Please refrain from using the computer until the scan is finished.
• When the scan is finished, click on "Click here to export the scan results"
• Save the report to your desktop then come back here and post it in your next reply.

--------------------------------------------------------------------

I am still in the process of performing the scan, 14 hours left. However, I was not able to deleted some of the requested items.

G:\Documents and Settings\Sylvester Lee Womack\AppData
G:\Users\Sylvester Lee Womack\AppData
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Application Data
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Microsoft\Windows\Temporary Internet Files
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temp
G:\Users\Sylvester Lee Womack\Local Settings\Application Data\Temporary Internet Files
G:\Users\Sylvester Lee Womack\Local Settings\Temp\Temp2_IdentaFone_Pro_v2.31.zip
G:\Users\Sylvester Lee Womack\Local Settings\Temporary Internet Files\Low
E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\archive.pst/Archive Folders/Sent Items

E:\Windows.old\Users\Sylvester Womack\AppData\Local\Microsoft\Outlook\Outlook.pst/Personal Folders/Sent Items

The items were not found by copying the paths in Windows Explorer. I attempted to go to the locations on directory at a time and got an access denied error on the users folder and the Documents and Settings folder while I was logged in as an Administrator in safemode.

I had to change the owner and effective permissions from SYSTEM to Administrator, and from SYSTEM to Sylvester Lee Womack, respectively.

I still received an permissions error for G:\Users\Sylvester Lee Womack\Local Settings when logged in as Sylveter Lee Womack in safemode, where the owner and effective permissions were still in my name.

Also, the paths were not listed under G:\Users\Sylvester Lee Womack\Local Settings, i.e Application Data and Temporary Internet Files. Those folderss as well as AppData were in folders by themselves outside of Users or Documents and Settings. If you go into those folders, the next path for deletion was not listed as well, I.e. Application Data\Microsoft and Local Settings\Temporary Internet Files

I will post the log when scan is complete.

Here is BitDefender's log

BitDefender Online Scanner

Scan report generated at: Fri, Jan 26, 2007 - 11:14:12

Scan path: C:\;D:\;E:\;F:\;G:\;

Statistics

Time


06:02:28

Files

2044394

Folders

39531

Boot Sectors

6

Archives

6748

Packed Files

223538

Results

Identified Viruses

7

Infected Files

57

Suspect Files

0

Warnings

0

Disinfected

0

Deleted Files

75

Engines Info

Virus Definitions

391416

Engine build


AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)

Scan plugins

14

Archive plugins

38

Unpack plugins

6

E-mail plugins

6

System plugins

1

Scan Settings

First Action

Disinfect

Second Action

Delete

Heuristics

Yes

Enable Warnings

Yes

Scanned Extensions


*;

Exclude Extensions

Scan Emails

Yes

Scan Archives


Yes

Scan Packed


Yes

Scan Files


Yes

Scan Boot


Yes

Scanned File

Status

C:\!KillBox\acrsafxw.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\acrsafxw.dll


Disinfection failed

C:\!KillBox\acrsafxw.dll


Deleted

C:\!KillBox\bsjgqakj.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\bsjgqakj.dll


Disinfection failed

C:\!KillBox\bsjgqakj.dll


Deleted

C:\!KillBox\deejcojk.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\deejcojk.dll


Disinfection failed

C:\!KillBox\deejcojk.dll


Deleted

C:\!KillBox\gadxkvma.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\gadxkvma.dll


Disinfection failed

C:\!KillBox\gadxkvma.dll


Deleted

C:\!KillBox\gauoiesr.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\gauoiesr.dll


Disinfection failed

C:\!KillBox\gauoiesr.dll


Deleted

C:\!KillBox\hobkdswk.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\hobkdswk.dll


Disinfection failed

C:\!KillBox\hobkdswk.dll


Deleted

C:\!KillBox\idwddseu.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\idwddseu.dll


Disinfection failed

C:\!KillBox\idwddseu.dll


Deleted

C:\!KillBox\ishblxtx.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\ishblxtx.dll


Disinfection failed

C:\!KillBox\ishblxtx.dll


Deleted

C:\!KillBox\jbgoopbb.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\jbgoopbb.dll


Disinfection failed

C:\!KillBox\jbgoopbb.dll


Deleted

C:\!KillBox\jwqnjmyg.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\jwqnjmyg.dll


Disinfection failed

C:\!KillBox\jwqnjmyg.dll


Deleted

C:\!KillBox\kdmfanuu.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\kdmfanuu.dll


Disinfection failed

C:\!KillBox\kdmfanuu.dll


Deleted

C:\!KillBox\lewryopy.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\lewryopy.dll


Disinfection failed

C:\!KillBox\lewryopy.dll


Deleted

C:\!KillBox\mcycejdj.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\mcycejdj.dll


Disinfection failed

C:\!KillBox\mcycejdj.dll


Deleted

C:\!KillBox\mqxajtvt.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\mqxajtvt.dll


Disinfection failed

C:\!KillBox\mqxajtvt.dll


Deleted

C:\!KillBox\ncchdipl.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\ncchdipl.dll


Disinfection failed

C:\!KillBox\ncchdipl.dll


Deleted

C:\!KillBox\nevgbyyh.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\nevgbyyh.dll


Disinfection failed

C:\!KillBox\nevgbyyh.dll


Deleted

C:\!KillBox\nkfmihwg.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\nkfmihwg.dll


Disinfection failed

C:\!KillBox\nkfmihwg.dll


Deleted

C:\!KillBox\nwatxsig.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\nwatxsig.dll


Disinfection failed

C:\!KillBox\nwatxsig.dll


Deleted

C:\!KillBox\pbditlhv.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\pbditlhv.dll


Disinfection failed

C:\!KillBox\pbditlhv.dll


Deleted

C:\!KillBox\poiyyerd.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\poiyyerd.dll


Disinfection failed

C:\!KillBox\poiyyerd.dll


Deleted

C:\!KillBox\qlwhjlxu.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\qlwhjlxu.dll


Disinfection failed

C:\!KillBox\qlwhjlxu.dll


Deleted

C:\!KillBox\qqflwqiw.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\qqflwqiw.dll


Disinfection failed

C:\!KillBox\qqflwqiw.dll


Deleted

C:\!KillBox\qysiytkq.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\qysiytkq.dll


Disinfection failed

C:\!KillBox\qysiytkq.dll


Deleted

C:\!KillBox\rlqevgdp.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\rlqevgdp.dll


Disinfection failed

C:\!KillBox\rlqevgdp.dll


Deleted

C:\!KillBox\rrnpeqdn.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\rrnpeqdn.dll


Disinfection failed

C:\!KillBox\rrnpeqdn.dll


Deleted

C:\!KillBox\silwjajr.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\silwjajr.dll


Disinfection failed

C:\!KillBox\silwjajr.dll


Deleted

C:\!KillBox\sohgljwd.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\sohgljwd.dll


Disinfection failed

C:\!KillBox\sohgljwd.dll


Deleted

C:\!KillBox\srnhpdjv.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\srnhpdjv.dll


Disinfection failed

C:\!KillBox\srnhpdjv.dll


Deleted

C:\!KillBox\srxcvbjb.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\srxcvbjb.dll


Disinfection failed

C:\!KillBox\srxcvbjb.dll


Deleted

C:\!KillBox\tduabfow.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\tduabfow.dll


Disinfection failed

C:\!KillBox\tduabfow.dll


Deleted

C:\!KillBox\uebartql.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\uebartql.dll


Disinfection failed

C:\!KillBox\uebartql.dll


Deleted

C:\!KillBox\unnxukac.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\unnxukac.dll


Disinfection failed

C:\!KillBox\unnxukac.dll


Deleted

C:\!KillBox\xcacrhfr.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\xcacrhfr.dll


Disinfection failed

C:\!KillBox\xcacrhfr.dll


Deleted

C:\!KillBox\xfhxkrpk.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\xfhxkrpk.dll


Disinfection failed

C:\!KillBox\xfhxkrpk.dll


Deleted

C:\!KillBox\xpbeapql.dll


Infected with: Trojan.Spy.VBStat.B

C:\!KillBox\xpbeapql.dll


Disinfection failed

C:\!KillBox\xpbeapql.dll


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R0S6DVD.tmp=>(Quarantine-4)


Infected with: Trojan.Agent.ACL

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R0S6DVD.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R0S6DVD.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R15Y7SY.tmp=>(Quarantine-4)


Infected with: Trojan.Agent.ACL

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R15Y7SY.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R15Y7SY.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R1743CW.tmp=>(Quarantine-4)


Infected with: Trojan.Spy.VBStat.H

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R1743CW.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R1743CW.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R1OLZYG.tmp=>(Quarantine-4)


Infected with: Backdoor.Pcclient.CC

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R1OLZYG.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R1OLZYG.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R2FRTU8.tmp=>(Quarantine-4)


Infected with: Trojan.Spy.VBStat.H

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R2FRTU8.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$R2FRTU8.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RBCARUM.tmp=>(Quarantine-4)


Infected with: Trojan.Spy.VBStat.H

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RBCARUM.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RBCARUM.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RBO088X.tmp=>(Quarantine-4)


Infected with: Trojan.Agent.ACL

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RBO088X.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RBO088X.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RDGYZX2.tmp=>(Quarantine-4)


Infected with: Trojan.Agent.ACL

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RDGYZX2.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RDGYZX2.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RDYI21K.tmp=>(Quarantine-4)


Infected with: Trojan.Agent.ACL

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RDYI21K.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RDYI21K.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RE3IH1X.tmp=>(Quarantine-4)


Infected with: Trojan.Spy.VBStat.H

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RE3IH1X.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RE3IH1X.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RK86AB8.tmp=>(Quarantine-4)


Infected with: Trojan.Spy.VBStat.H

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RK86AB8.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RK86AB8.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RKXYO01.tmp=>(Quarantine-4)


Infected with: Trojan.Spy.VBStat.H

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RKXYO01.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RKXYO01.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RL57AXZ.tmp=>(Quarantine-4)


Infected with: Trojan.Agent.ACL

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RL57AXZ.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RL57AXZ.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$ROC6NFW.tmp=>(Quarantine-4)


Infected with: Trojan.Spy.VBStat.H

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$ROC6NFW.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$ROC6NFW.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RQHLPXS.tmp=>(Quarantine-4)


Infected with: Trojan.Agent.ACL

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RQHLPXS.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RQHLPXS.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RR88T2O.tmp=>(Quarantine-4)


Infected with: Backdoor.Pcclient.CC

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RR88T2O.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RR88T2O.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RTL3OEB.tmp=>(Quarantine-4)


Infected with: Trojan.Spy.VBStat.H

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RTL3OEB.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RTL3OEB.tmp=>(Quarantine-4)


Deleted

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RVK314Z.tmp=>(Quarantine-4)


Infected with: Trojan.Spy.VBStat.H

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RVK314Z.tmp=>(Quarantine-4)


Disinfection failed

C:\$RECYCLE.BIN\S-1-5-21-2229090843-3586861418-1859014064-1000\$RVK314Z.tmp=>(Quarantine-4)


Deleted

C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst=>[Subject:

][From: Delluv]=>345556.rar=>dddd.exe


Infected with: [email protected]

C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst=>[Subject:

][From: Delluv]=>345556.rar=>dddd.exe


Disinfection failed

C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst=>[Subject:

][From: Delluv]=>345556.rar=>dddd.exe


Deleted

C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst=>[Subject:

][From: Delluv]=>345556.rar


Update failed

C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst=>[Subject:

spam: Regions Bank: Urgent Notification From BiIIing Department][From: REGIONS BANK]=>(body)=>(Compressed Rtf)=>(Rtf2Html)


Infected with: Trojan.Spy.HTML.Bankfraud.DQ

C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst=>[Subject:

spam: Regions Bank: Urgent Notification From BiIIing Department][From: REGIONS BANK]=>(body)=>(Compressed Rtf)=>(Rtf2Html)


Disinfection failed

C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst=>[Subject:

spam: Regions Bank: Urgent Notification From BiIIing Department][From: REGIONS BANK]=>(body)=>(Compressed Rtf)=>(Rtf2Html)


Deleted

C:\Documents and Settings\Delphine D. Womack\Local Settings\Application Data\Microsoft\Outlook\archive.pst=>[Subject:

spam: Regions Bank: Urgent Notification From BiIIing Department][From: REGIONS BANK]=>(body)=>(Compressed Rtf)


Update failed

C:\Program Files\XoftSpySE\Quarantine\Quarantine21122006-174352.xpy=>(Embedded EXE g)


Infected with: Trojan.Agent.ACL

C:\Program Files\XoftSpySE\Quarantine\Quarantine21122006-174352.xpy=>(Embedded EXE g)


Disinfection failed

C:\Program Files\XoftSpySE\Quarantine\Quarantine21122006-174352.xpy=>(Embedded EXE g)


Deleted

C:\Program Files\XoftSpySE\Quarantine\Quarantine21122006-174352.xpy


Update failed

C:\WINDOWS\system32\fpabnvwy.dll


Infected with: Trojan.Juan.B

C:\WINDOWS\system32\fpabnvwy.dll


Disinfection failed

C:\WINDOWS\system32\fpabnvwy.dll


Deleted