TrojanDownloader.Agent.BQ

Time Module Object Name Virus Action User Info
16/07/2005 19:21:41 AMON file C:\System Volume Information\_restore{EA1938B2-C4F2-4247-83D5-C15496001ACF}\RP1\A0000006.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
16/07/2005 16:01:21 AMON file C:\System Volume Information\_restore{EA1938B2-C4F2-4247-83D5-C15496001ACF}\RP1\A0000005.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
16/07/2005 14:16:50 AMON file C:\WINDOWS\syssb.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
16/07/2005 14:09:58 AMON file C:\WINDOWS\addxs32.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
16/07/2005 12:39:07 AMON file C:\WINDOWS\winhg32.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
16/07/2005 12:39:05 AMON file C:\WINDOWS\ntay32.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
16/07/2005 12:39:03 AMON file C:\WINDOWS\mfcew32.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
16/07/2005 12:39:01 AMON file C:\WINDOWS\iekz.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
16/07/2005 12:38:58 AMON file C:\WINDOWS\ieeh32.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
16/07/2005 12:38:54 AMON file C:\WINDOWS\atlqc.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
14/07/2005 23:27:36 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
14/07/2005 23:22:43 AMON file C:\WINDOWS\cril.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
14/07/2005 23:22:40 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) 
14/07/2005 23:22:30 AMON file C:\WINDOWS\winwo.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
14/07/2005 23:21:27 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) RICOETCEC\Eric et Cécile
14/07/2005 23:19:05 AMON file C:\WINDOWS\cril.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) RICOETCEC\Eric et Cécile
14/07/2005 23:17:57 AMON file C:\WINDOWS\mfcuk32.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
14/07/2005 23:17:51 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) AUTORITE NT\SYSTEM
14/07/2005 23:17:50 AMON file C:\WINDOWS\system32\sysog32.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
14/07/2005 23:15:11 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) AUTORITE NT\SYSTEM
14/07/2005 23:15:09 AMON file C:\WINDOWS\atlyr32.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
14/07/2005 23:14:26 AMON file C:\WINDOWS\cril.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) RICOETCEC\Eric et Cécile
14/07/2005 23:13:34 AMON file C:\WINDOWS\system32\nttk.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
14/07/2005 23:13:32 AMON file C:\WINDOWS\system32\ntay32.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
14/07/2005 23:13:28 AMON file C:\WINDOWS\appgh.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
14/07/2005 23:13:26 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) RICOETCEC\Eric et Cécile
14/07/2005 23:10:22 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) AUTORITE NT\SYSTEM
14/07/2005 23:10:20 AMON file C:\WINDOWS\sdkzb.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
14/07/2005 23:09:16 AMON file C:\WINDOWS\cril.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) RICOETCEC\Eric et Cécile
14/07/2005 23:09:05 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) AUTORITE NT\SYSTEM
14/07/2005 23:09:00 AMON file C:\WINDOWS\system32\crwy32.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
14/07/2005 23:08:44 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) AUTORITE NT\SYSTEM
14/07/2005 23:08:41 AMON file C:\WINDOWS\system32\ipfq32.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
14/07/2005 23:08:16 AMON file C:\WINDOWS\system32\syszo.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
14/07/2005 23:06:58 AMON file C:\WINDOWS\system32\atlxd.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
14/07/2005 23:06:26 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) AUTORITE NT\SYSTEM
14/07/2005 23:06:20 AMON file C:\WINDOWS\appqt.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
14/07/2005 23:05:25 AMON file C:\WINDOWS\cril.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) RICOETCEC\Eric et Cécile
14/07/2005 23:04:27 AMON file C:\WINDOWS\system32\mfcza32.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
14/07/2005 23:03:46 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) AUTORITE NT\SYSTEM
14/07/2005 23:03:41 AMON file C:\WINDOWS\system32\atlht.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
14/07/2005 23:01:50 AMON file C:\WINDOWS\cril.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) RICOETCEC\Eric et Cécile
14/07/2005 23:00:41 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) AUTORITE NT\SYSTEM
14/07/2005 23:00:29 AMON file C:\WINDOWS\system32\apija32.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
14/07/2005 22:59:03 AMON file C:\WINDOWS\system32\mfczn.exe Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted (after the next restart) AUTORITE NT\SYSTEM
14/07/2005 22:59:00 AMON file C:\WINDOWS\system32\apphl32.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted AUTORITE NT\SYSTEM
14/07/2005 22:57:07 AMON file C:\WINDOWS\system32\msvg32.dll Win32/TrojanDownloader.Agent.BQ trojan quarantined - deleted RICOETCEC\Eric et Cécile
12/07/2005 18:47:10 IMON email message from: gdembinski@yahoo.com to: eric.cecile@free.fr with subject Re: Hi dated Tue, 12 Jul 2005 14:41:33 +0200  Win32/Netsky.D worm contained infected files RICOETCEC\Eric et Cécile
11/07/2005 18:00:34 IMON file http://008k.com/inst/exe/a-clean.exe Win32/TrojanDownloader.Small.NDZ trojan quarantined - connection terminated RICOETCEC\Eric et Cécile
11/07/2005 17:59:36 IMON file http://69.50.171.170/traff/1/java/classload.jar Java/Exploit.Bytverify.F trojan connection terminated RICOETCEC\Eric et Cécile
11/07/2005 17:59:33 AMON file C:\Documents and Settings\Eric et Cécile\Local Settings\Temporary Internet Files\Content.IE5\W9MZC123\page1[1].htm probably modified virus JS/Mht.O deleted RICOETCEC\Eric et Cécile
11/07/2005 17:59:31 IMON file http://69.50.171.170/traff/1/page1.htm JS/TrojanDownloader.Psyme.AN trojan connection terminated RICOETCEC\Eric et Cécile
11/07/2005 17:59:23 IMON file http://abcsearch4u.com/enter1.htm probably modified trojan VBS/TrojanDownloader.Psyme.M connection terminated RICOETCEC\Eric et Cécile
11/07/2005 17:59:16 IMON file http://69.50.171.170/traff/1/page1.htm JS/TrojanDownloader.Psyme.AN trojan quarantined - connection terminated 
11/07/2005 17:59:14 AMON file C:\Documents and Settings\Eric et Cécile\Local Settings\Temporary Internet Files\Content.IE5\0DE34HUV\page1[1].htm probably modified virus JS/Mht.O deleted 
11/07/2005 17:59:02 IMON file http://69.50.171.170/traff/1/java/classload.jar Java/Exploit.Bytverify.F trojan quarantined - connection terminated RICOETCEC\Eric et Cécile