We'd like to remind Forumites to please avoid political debate on the Forum. This is to keep it a safe and useful space for MoneySaving discussions. Threads that are - or become - political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
Full laptop clean up following paypal fraud?
angelfire
Posts: 869 Forumite
Hi, last week, I had a sum of money stolen from my bank account via paypal. The general thinking is that it must have been via some type of key logger placed on my laptop. I've changed all my passwords but need to completely clean up my laptop and make sure it's better protected.
It's currently running Avira Antivir and I run Malwarebytes regularly - although obviously not regularly enough. I thought i had a firewall installed, but it seems not...
I also have two web browsers loaded, IE and Firefox, not sure if having both has left me more open?
Any help regarding what to do and in what order would be appreciated. I have already run malware bytes and saved the log and done the same with antivir....
It's currently running Avira Antivir and I run Malwarebytes regularly - although obviously not regularly enough. I thought i had a firewall installed, but it seems not...
I also have two web browsers loaded, IE and Firefox, not sure if having both has left me more open?
Any help regarding what to do and in what order would be appreciated. I have already run malware bytes and saved the log and done the same with antivir....
0
Comments
-
Post your Malwarebytes log and Avira if they show anything4.8kWp 12x400W Longhi 9.6 kWh battery Giv-hy 5.0 Inverter, WSW facing Essex . Aint no sunshine ☀️ Octopus gas fixed dec 24 @ 5.74 + Octopus Flux leccy0
-
How sure are you that the problem came from your laptop? Have you used any internet cafes or other devices to access your paypal account?
By all means clean up and increase security on the laptop - you'll get some good advice on here regarding that. It's a constant cat and mouse game with malware and system defences and the best security is not to connect to anything, but usually not too practical. Anything else is a balance of ease of use against security, which is usually what the average user has to accept.I’m a Forum Ambassador and I support the Forum Team on the In My Home MoneySaving, Energy and Techie Stuff boards. If you need any help on these boards, do let me know. Please note that Ambassadors are not moderators. Any posts you spot in breach of the Forum Rules should be reported via the report button, or by emailing forumteam@moneysavingexpert.com.
All views are my own and not the official line of MoneySavingExpert.
0 -
Hmm, the antivir log is so big it won't post in a reply on here! The Malware Bytes on is:
Malwarebytes' Anti-Malware 1.51.1.1800
https://www.malwarebytes.org
Database version: 7622
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
31/08/2011 22:39:44
mbam-log-2011-08-31 (22-39-37).txt
Scan type: Full scan (C:\|D:\|)
Objects scanned: 237086
Time elapsed: 1 hour(s), 14 minute(s), 13 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 2
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 5
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MICORSOFT_WINDOWS_SERVICE (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Micorsoft Windows Service (Trojan.Agent) -> No action taken.
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\documents and settings\User\local settings\Temp\ms0cfg32.exe (Trojan.Agent) -> No action taken.
c:\documents and settings\User\local settings\Temp\0.44004239393015243.exe (Exploit.Drop.2) -> No action taken.
c:\documents and settings\User\local settings\Temp\0.6862476750152974.exe (Exploit.Drop.2) -> No action taken.
c:\program files\mozilla firefox\0.17855484015444067.exe (Exploit.Dropper) -> No action taken.
c:\program files\mozilla firefox\0.31565976942989715.exe (Exploit.Dropper) -> No action taken.
Could do with somehow getting the antivir one up as well or inboxing it to someone?0 -
Avira AntiVir Personal
Report file date: 01 September 2011 21:12
Scanning for 3271032 virus strains and unwanted programs.
The program is running as an unrestricted full version.
Online services are available:
Licensee : Avira AntiVir Personal - Free Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows XP
Windows version : (Service Pack 3) [5.1.2600]
Boot mode : Normally booted
Username : SYSTEM
Computer name : PRIVATE-4B36A37
Version information:
BUILD.DAT : 10.2.0.696 35934 Bytes 29/06/2011 17:32:00
AVSCAN.EXE : 10.3.0.7 484008 Bytes 28/06/2011 21:58:05
AVSCAN.DLL : 10.0.5.0 47464 Bytes 28/06/2011 21:58:05
LUKE.DLL : 10.3.0.5 45416 Bytes 28/06/2011 21:58:06
LUKERES.DLL : 10.0.0.1 12648 Bytes 10/02/2010 23:40:49
AVSCPLR.DLL : 10.3.0.7 119656 Bytes 28/06/2011 21:58:07
AVREG.DLL : 10.3.0.9 88833 Bytes 12/07/2011 16:55:57
VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 07:35:52
VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 23:10:08
VBASE002.VDF : 7.11.3.0 1950720 Bytes 09/02/2011 18:35:47
VBASE003.VDF : 7.11.5.225 1980416 Bytes 07/04/2011 17:55:43
VBASE004.VDF : 7.11.8.178 2354176 Bytes 31/05/2011 11:39:24
VBASE005.VDF : 7.11.10.251 1788416 Bytes 07/07/2011 16:55:44
VBASE006.VDF : 7.11.10.252 2048 Bytes 07/07/2011 16:55:44
VBASE007.VDF : 7.11.10.253 2048 Bytes 07/07/2011 16:55:44
VBASE008.VDF : 7.11.10.254 2048 Bytes 07/07/2011 16:55:44
VBASE009.VDF : 7.11.10.255 2048 Bytes 07/07/2011 16:55:45
VBASE010.VDF : 7.11.11.0 2048 Bytes 07/07/2011 16:55:45
VBASE011.VDF : 7.11.11.1 2048 Bytes 07/07/2011 16:55:45
VBASE012.VDF : 7.11.11.2 2048 Bytes 07/07/2011 16:55:45
VBASE013.VDF : 7.11.11.75 688128 Bytes 12/07/2011 16:55:47
VBASE014.VDF : 7.11.11.104 978944 Bytes 13/07/2011 19:10:22
VBASE015.VDF : 7.11.11.137 655360 Bytes 14/07/2011 12:47:57
VBASE016.VDF : 7.11.11.184 699392 Bytes 18/07/2011 12:40:17
VBASE017.VDF : 7.11.11.214 414208 Bytes 19/07/2011 12:40:19
VBASE018.VDF : 7.11.11.242 772096 Bytes 20/07/2011 12:40:24
VBASE019.VDF : 7.11.12.3 1291776 Bytes 20/07/2011 12:40:33
VBASE020.VDF : 7.11.12.30 844288 Bytes 21/07/2011 12:40:39
VBASE021.VDF : 7.11.12.31 2048 Bytes 21/07/2011 12:40:39
VBASE022.VDF : 7.11.12.32 2048 Bytes 21/07/2011 12:40:39
VBASE023.VDF : 7.11.12.33 2048 Bytes 21/07/2011 12:40:40
VBASE024.VDF : 7.11.12.34 2048 Bytes 21/07/2011 12:40:40
VBASE025.VDF : 7.11.12.35 2048 Bytes 21/07/2011 12:40:40
VBASE026.VDF : 7.11.12.36 2048 Bytes 21/07/2011 12:40:40
VBASE027.VDF : 7.11.12.37 2048 Bytes 21/07/2011 12:40:40
VBASE028.VDF : 7.11.12.38 2048 Bytes 21/07/2011 12:40:40
VBASE029.VDF : 7.11.12.39 2048 Bytes 21/07/2011 12:40:40
VBASE030.VDF : 7.11.12.40 2048 Bytes 21/07/2011 12:40:40
VBASE031.VDF : 7.11.12.65 135680 Bytes 23/07/2011 12:40:42
Engineversion : 8.2.6.18
AEVDF.DLL : 8.1.2.1 106868 Bytes 29/07/2010 19:29:43
AESCRIPT.DLL : 8.1.3.73 1622395 Bytes 17/07/2011 12:48:13
AESCN.DLL : 8.1.7.2 127349 Bytes 23/11/2010 19:09:59
AESBX.DLL : 8.2.1.34 323957 Bytes 03/06/2011 08:21:53
AERDL.DLL : 8.1.9.13 639349 Bytes 17/07/2011 12:48:12
AEPACK.DLL : 8.2.9.5 676214 Bytes 17/07/2011 12:48:10
AEOFFICE.DLL : 8.1.2.12 201083 Bytes 17/07/2011 12:48:09
AEHEUR.DLL : 8.1.2.146 3633527 Bytes 24/07/2011 12:40:52
AEHELP.DLL : 8.1.17.6 254326 Bytes 24/07/2011 12:40:42
AEGEN.DLL : 8.1.5.6 401780 Bytes 22/05/2011 07:25:31
AEEMU.DLL : 8.1.3.0 393589 Bytes 23/11/2010 19:09:54
AECORE.DLL : 8.1.22.4 196983 Bytes 17/07/2011 12:48:00
AEBB.DLL : 8.1.1.0 53618 Bytes 24/04/2010 09:01:43
AVWINLL.DLL : 10.0.0.0 19304 Bytes 13/12/2010 08:39:56
AVPREF.DLL : 10.0.3.2 44904 Bytes 28/06/2011 21:58:05
AVREP.DLL : 10.0.0.10 174120 Bytes 18/05/2011 15:48:24
AVARKT.DLL : 10.0.26.1 255336 Bytes 28/06/2011 21:58:05
AVEVTLOG.DLL : 10.0.0.9 203112 Bytes 28/06/2011 21:58:05
SQLITE3.DLL : 3.6.19.0 355688 Bytes 17/06/2010 14:27:22
AVSMTP.DLL : 10.0.0.17 63848 Bytes 13/12/2010 08:39:56
NETNT.DLL : 10.0.0.0 11624 Bytes 17/06/2010 14:27:21
RCIMAGE.DLL : 10.0.0.35 2589544 Bytes 28/06/2011 21:58:05
RCTEXT.DLL : 10.0.64.0 97640 Bytes 28/06/2011 21:58:05
Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\PROFILES\AVSCAN-20110901-211001-AA930E62.avp
Logging.............................: Default
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: Advanced
Deviating risk categories...........: +APPL,+GAME,+JOKE,+PCK,+PFS,+SPR,
Start of the scan: 01 September 2011 21:12
Starting search for hidden objects.
c:\documents and settings\default user\start menu\programs\startup\aanpunrm.exe
c:\documents and settings\default user\start menu\programs\startup\aanpunrm.exe
[NOTE] The file is not visible.
c:\documents and settings\default user\start menu\programs\startup\desktop.ini
c:\documents and settings\default user\start menu\programs\startup\desktop.ini
[NOTE] The file is not visible.
c:\documents and settings\user\local settings\application data\rwydknmh\aanpunrm.exe
c:\documents and settings\user\local settings\application data\rwydknmh\aanpunrm.exe
[NOTE] The file is not visible.
c:\documents and settings\user\start menu\programs\startup\aanpunrm.exe
c:\documents and settings\user\start menu\programs\startup\aanpunrm.exe
[NOTE] The file is not visible.
c:\documents and settings\user\start menu\programs\startup\desktop.ini
c:\documents and settings\user\start menu\programs\startup\desktop.ini
[NOTE] The file is not visible.
The scan of running processes will be started
Scan process 'alg.exe' - '33' Module(s) have been scanned
Scan process 'TPSBattM.exe' - '22' Module(s) have been scanned
Scan process 'wscntfy.exe' - '18' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '40' Module(s) have been scanned
Scan process 'wuauclt.exe' - '36' Module(s) have been scanned
Scan process 'avscan.exe' - '67' Module(s) have been scanned
Scan process 'avcenter.exe' - '61' Module(s) have been scanned
Scan process 'TODDSrv.exe' - '21' Module(s) have been scanned
Scan process 'svchost.exe' - '41' Module(s) have been scanned
Scan process 'HPZipm12.exe' - '22' Module(s) have been scanned
Scan process 'o2flash.exe' - '16' Module(s) have been scanned
Scan process 'jqs.exe' - '33' Module(s) have been scanned
Scan process 'CFSvcs.exe' - '42' Module(s) have been scanned
Scan process 'svchost.exe' - '34' Module(s) have been scanned
Scan process 'ctfmon.exe' - '25' Module(s) have been scanned
Scan process 'jusched.exe' - '21' Module(s) have been scanned
Scan process 'rundll32.exe' - '34' Module(s) have been scanned
Scan process 'TPSMain.exe' - '38' Module(s) have been scanned
Scan process 'igfxsrvc.exe' - '27' Module(s) have been scanned
Scan process 'igfxpers.exe' - '27' Module(s) have been scanned
Scan process 'hkcmd.exe' - '26' Module(s) have been scanned
Scan process 'igfxtray.exe' - '27' Module(s) have been scanned
Scan process 'Explorer.EXE' - '93' Module(s) have been scanned
Scan process 'svchost.exe' - '35' Module(s) have been scanned
Scan process 'svchost.exe' - '29' Module(s) have been scanned
Scan process 'svchost.exe' - '34' Module(s) have been scanned
Scan process 'sched.exe' - '46' Module(s) have been scanned
Scan process 'spoolsv.exe' - '65' Module(s) have been scanned
Scan process 'svchost.exe' - '38' Module(s) have been scanned
Scan process 'svchost.exe' - '32' Module(s) have been scanned
Scan process 'svchost.exe' - '30' Module(s) have been scanned
Scan process 'svchost.exe' - '161' Module(s) have been scanned
Scan process 'svchost.exe' - '40' Module(s) have been scanned
Scan process 'svchost.exe' - '48' Module(s) have been scanned
Scan process 'lsass.exe' - '58' Module(s) have been scanned
Scan process 'services.exe' - '32' Module(s) have been scanned
Scan process 'winlogon.exe' - '67' Module(s) have been scanned
Scan process 'csrss.exe' - '14' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!0 -
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Starting to scan executable files (registry).
The registry was scanned ( '459' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\Documents and Settings\All Users\Application Data\OviInstallerCache\{927AA2A2-7631-4EA2-A1F9-252D27B9D0A2}\Installer\CommonCustomActions\Run_XML6_SP1.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\All Users\Application Data\OviInstallerCache\{927AA2A2-7631-4EA2-A1F9-252D27B9D0A2}\Installer\CommonCustomActions\WMF11Runx64.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\All Users\Application Data\OviInstallerCache\{927AA2A2-7631-4EA2-A1F9-252D27B9D0A2}\Installer\CommonCustomActions\WMF11Runx86.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportBukaBroom\13897\RapportBukaBroom.dll
[DETECTION] Contains code of the W32/Ramnit.C Windows virus
C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportMS\17053\RapportMS.dll
[DETECTION] Contains code of the W32/Ramnit.C Windows virus
C:\Documents and Settings\User\Application Data\Spotify\Gracenote\gnsdk_dsp.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Spotify\Gracenote\gnsdk_musicid_file.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Spotify\Gracenote\gnsdk_sdkmanager.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\15\58fb3e0f-2fd7b653-n\decora-d3d.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\15\58fb3e0f-2fd7b653-n\decora-sse.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\15\58fb3e0f-2fd7b653-n\jmc.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\15\58fb3e0f-2fd7b653-n\msvcp71.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\15\58fb3e0f-2fd7b653-n\msvcr71.dll
[DETECTION] Contains code of the W32/Ramnit.C Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\17\6d0ad391-2834842b-n\decora-d3d.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\17\6d0ad391-2834842b-n\decora-sse.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\21\14e5d595-2ffc04b6-n\decora-d3d.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\21\14e5d595-2ffc04b6-n\decora-sse.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\21\14e5d595-2ffc04b6-n\jmc.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\21\14e5d595-2ffc04b6-n\msvcp71.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\21\14e5d595-2ffc04b6-n\msvcr71.dll
[DETECTION] Contains code of the W32/Ramnit.C Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\24\5e1a8f18-6be39510
[0] Archive type: ZIP
--> FactoryService/Container.class
[DETECTION] Contains recognition pattern of the JAVA/Exdoer.ckl Java virus
--> FactoryService/DefClass.class
[DETECTION] Contains recognition pattern of the EXP/2010-0840.I exploit
--> FactoryService/Factory.class
[DETECTION] Contains recognition pattern of the JAVA/Exdoer.EB Java virus
--> MessageStack/StringPack.class
[DETECTION] Contains recognition pattern of the JAVA/Exdoer.EC Java virus
--> MessageStack/TemplateMessage.class
[DETECTION] Contains recognition pattern of the JAVA/Exdoer.ED Java virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\44\3b21af6c-54657434
[DETECTION] Contains recognition pattern of the JAVA/Dldr.Tharra.F Java virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\45\4f710eed-31da5b68-n\gluegen-rt.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\46\759e98ee-1af1ea63-n\decora-d3d.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\46\759e98ee-1af1ea63-n\decora-sse.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\46\759e98ee-1af1ea63-n\jmc.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\46\759e98ee-1af1ea63-n\msvcp71.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\46\759e98ee-1af1ea63-n\msvcr71.dll
[DETECTION] Contains code of the W32/Ramnit.C Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\46\f84c6ae-70cd29db-n\jmc.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\46\f84c6ae-70cd29db-n\msvcp71.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\46\f84c6ae-70cd29db-n\msvcr71.dll
[DETECTION] Contains code of the W32/Ramnit.C Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\50\5535ab32-14cb7297-n\decora-d3d.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\50\5535ab32-14cb7297-n\decora-sse.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\54\1a209876-47c5b038-n\jmc.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\54\1a209876-47c5b038-n\msvcp71.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\54\1a209876-47c5b038-n\msvcr71.dll
[DETECTION] Contains code of the W32/Ramnit.C Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-1863c689-n\jogl.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-1863c689-n\jogl_awt.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-1863c689-n\jogl_cg.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\Sun\Java\jre1.6.0_16\lzma.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\U3\temp\cleanup.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Application Data\U3\temp\Launchpad Removal.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Application Data\Yahoo!\BrowserPlus\Corelets\FileAccess\1.0.11\FileAccess.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Application Data\Yahoo!\BrowserPlus\Corelets\ImageAlter\3.0.2\ImageAlter.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Application Data\Yahoo!\BrowserPlus\Corelets\Notify\2.0.16\BPAlertCenter.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Application Data\Yahoo!\BrowserPlus\Corelets\Notify\2.0.16\Notify.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Application Data\Yahoo!\BrowserPlus\Corelets\Uploader\3.2.12\Uploader.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\epurcmainver20.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\epurcukver20.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hpzmsi01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hpzscr01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\jar_cache3420478607499494682.tmp
[0] Archive type: ZIP
--> ski.class
[DETECTION] Contains recognition pattern of the JAVA/Sincron.frt Java virus
C:\Documents and Settings\User\Local Settings\Temp\jar_cache6540437544758868664.tmp
[0] Archive type: ZIP
--> bug.class
[DETECTION] Contains recognition pattern of the EXP/CVE-2010-0840.R exploit
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\hpzc3212.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\hpzglu14.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\HPZidi01.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\HPZIDS01.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\hpzpnp14.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\hpzscr14.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\hpzsetup.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\msvcirt.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\tls704d.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\xmlparse.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\hpbmiapi.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\HPBOID.EXE
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\hpboidps.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\HPBPRO.EXE
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\hpbprops.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\HPJCMN2U.DLL
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\HPJIPX1U.DLL
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\hpoism01.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\hppapml0.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\hpqip09.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\common\drivers\com_os\hpqish09.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\dot4\win2000\hpzc3212.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\dot4\win98\hpzc3212.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\dot4\win98\hpzimn12.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\dot4\wrapper\setup.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\dot4\wrapper\wrapper.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\dot4\wrapper\_isdel.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\dot4\wrapper\_setup.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\scanner\x32\hpotiop2.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\scanner\x32\hpotpusd.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\scanner\x32\hpotscl2.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\scanner\x32\hpowiax1.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\drivers\scanner\x32\hpowiax2.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\enu\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\enu\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPCommunication.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPeDiag.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hpoapd01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hponicifs01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hponiprint01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\Hponiscp01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hporfd01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hpowfs01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPScripting.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZarp01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZcdl01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZchk01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZddv01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hpzdui01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hpzfwx01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZgat01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hpzmsi01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZnet01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZnfx01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZnop01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZopt01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hpzpnp01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hpzprl01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZpsc01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZpsl01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZrcn01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZrcv01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZrein01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hpzscr01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\hpzshl01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZsui01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZtim01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZwis01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZwrp01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\HPZwup01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\InstallMetrics.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\InternetUtil.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\mdfix01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\msxml3.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\RulesEngine.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\usbready.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\redisco\hpzjfw01.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\redisco\hpzjrd01.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\redisco\hpzjsn01.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\setup\redisco\wsnmp32.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\util\cfgmgr32.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\util\aio\hpopdi05.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\util\aio\hpopin05.exe0 -
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\util\ccc\FixErr1714.exe
[DETECTION] Contains code of the W32/Ramnit.C Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\util\ccc\HPZlgc01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\util\ccc\HPZprs01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\util\common\hpfpdi14.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\util\common\hpqisc09.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\util\common\hpzghl14.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\7zS2D43\util\common\hpzpin14.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\hpzc3212.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\hpzglu14.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\HPZidi01.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\HPZIDS01.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\hpzpnp14.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\hpzscr14.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\hpzsetup.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\msvcirt.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\Setup.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\tls704d.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\xmlparse.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\arb\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\arb\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\chs\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\chs\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\cht\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\cht\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\hpbmiapi.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\HPBOID.EXE
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\hpboidps.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\HPBPRO.EXE
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\hpbprops.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\HPJCMN2U.DLL
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\HPJIPX1U.DLL
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\hpoism01.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\hppapml0.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\hpqip09.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\common\drivers\com_os\hpqish09.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\csy\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\csy\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\dan\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\dan\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\deu\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\deu\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\dot4\win2000\hpzc3212.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\dot4\win98\hpzc3212.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\dot4\win98\hpzimn12.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\dot4\wrapper\setup.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\dot4\wrapper\wrapper.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\dot4\wrapper\_isdel.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\dot4\wrapper\_setup.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\fax\hpzuifax.dll
[DETECTION] Contains code of the W32/Ramnit.C Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\scanner\x32\hpotiop2.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\scanner\x32\hpotpusd.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\scanner\x32\hpotscl2.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\scanner\x32\hpowiax1.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\drivers\scanner\x32\hpowiax2.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\enu\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\enu\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\esm\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\esm\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\fin\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\fin\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\fra\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\fra\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\grk\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\grk\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\hbr\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\hbr\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\hun\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\hun\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\ita\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\ita\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\jpn\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\jpn\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\kor\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\kor\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\nld\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\nld\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\non\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\non\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\plk\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\plk\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\ptb\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\ptb\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\rus\drivers\com_lang\hpofax08.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\rus\drivers\win9x_me\usbmon.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\cfgtoip.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpbntkrs.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpbskutl.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPCommunication.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPeDiag.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpgeneric.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpjnds50.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpntwkexe.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpntwkwiz.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpntwkwiz_ar.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpntwkwiz_en.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpntwkwiz_es.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpntwkwiz_fr.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpntwkwiz_pt.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpntwkwiz_zhcn.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpntwkwiz_zhtw.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpoapd01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hponicifs01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hponiprint01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\Hponiscp01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hporfd01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpowfs01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPScripting.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZarp01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZcdl01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZchk01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZddv01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpzdui01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpzfwx01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZgat01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpzjfw01.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpzmsi01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZnet01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZnfx01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZnop01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZopt01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpzpnp01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpzprl01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZpsc01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZpsl01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZrcn01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZrcv01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZrein01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpzscr01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\hpzshl01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZsui01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZtim01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZwis01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZwrp01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\HPZwup01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\InstallMetrics.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\InternetUtil.dll
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\mdfix01.exe
[DETECTION] Contains recognition pattern of the W32/Ramnit.E Windows virus
C:\Documents and Settings\User\Local Settings\Temp\hp_webrelease\setup\MFC71.dll0 -
Malwarebytes log shows no action taken.
UPDATE Malwarebytes and scan again then remove anything found.0 -
It goes on and on like this for ages..?0
-
A couple of years ago I had money taken from my current account.
Barclays reckoned the security breach was via Paypal, although the money went out as ordinary cardholder not present transactions.
The moral of my story, and the OP's, and the stories of others, is clear.0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 347.8K Banking & Borrowing
- 251.9K Reduce Debt & Boost Income
- 452.2K Spending & Discounts
- 240.1K Work, Benefits & Business
- 616.2K Mortgages, Homes & Bills
- 175.3K Life & Family
- 253.5K Travel & Transport
- 1.5M Hobbies & Leisure
- 16K Discuss & Feedback
- 15.1K Coronavirus Support Boards