Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93078 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

hijack logs combo fix los


  • This topic is locked This topic is locked
No replies to this topic

#1 Mahesh Ramanavarapu

Mahesh Ramanavarapu

    New Member

  • New Member
  • Pip
  • 1 posts

Posted 08 June 2008 - 01:43 PM

Hi,

I am also facing the similar problem and i just completed running combofix after running hijacks. here is log fole for combofix

can u let me know what shou i do after this to remove viruses from my system

ComboFix 08-06-07.3 - JARIMAHI 2008-06-08 15:22:30.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1550 [GMT -4:00]
Running from: E:\Documents and Settings\JARIMAHI\desktop\combofix.exe
Command switches used :: /killall
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Autorun.inf
D:\Autorun.inf
E:\autorun.inf
E:\WINDOWS\system32\kavo.exe
E:\WINDOWS\system32\kavo0.dll
E:\WINDOWS\system32\kavo1.dll
E:\WINDOWS\system32\tavo.exe
E:\WINDOWS\system32\tavo1.dll
G:\Autorun.inf

.
((((((((((((((((((((((((( Files Created from 2008-05-08 to 2008-06-08 )))))))))))))))))))))))))))))))
.

2008-06-08 13:17 . 2008-06-08 13:17 <DIR> d-------- E:\WINDOWS\system32\Kaspersky Lab
2008-06-08 13:17 . 2008-06-08 13:17 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-06-08 12:58 . 2008-06-08 12:58 <DIR> d-------- E:\Program Files\Trend Micro
2008-06-08 11:08 . 2008-06-08 11:08 <DIR> d-------- E:\Program Files\Common Files\Adobe
2008-06-08 11:06 . 2008-06-08 11:06 <DIR> d-------- E:\Documents and Settings\LocalService\Application Data\Intel
2008-06-08 11:06 . 2008-06-08 11:06 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\Intel
2008-06-08 11:02 . 2008-06-08 11:03 <DIR> dr-hs---- E:\RRbackups
2008-06-08 10:58 . 2008-06-08 11:01 <DIR> d-------- E:\Program Files\ThinkVantage Fingerprint Software
2008-06-08 10:58 . 2008-06-08 10:58 <DIR> d-------- E:\Program Files\Common Files\ThinkVantage Fingerprint Software
2008-06-08 10:58 . 2008-06-08 10:58 <DIR> d-------- E:\Icons
2008-06-08 10:58 . 2008-06-08 10:58 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\UIB
2008-06-08 10:54 . 2008-06-08 11:02 <DIR> d-------- E:\SWSHARE
2008-06-08 10:54 . 2008-06-08 10:54 <DIR> d-------- E:\Drivers
2008-06-08 10:54 . 2008-06-08 10:54 33,536 --a------ E:\WINDOWS\system32\drivers\tvtfilter.sys
2008-06-08 10:54 . 2008-06-08 10:53 7,012 --a------ E:\WINDOWS\system32\drivers\pmemnt.sys
2008-06-08 10:53 . 2008-06-08 10:53 <DIR> d-------- E:\WINDOWS\Downloaded Installations
2008-06-08 10:52 . 2008-06-08 11:01 <DIR> d-------- E:\WINDOWS\system32\DLA
2008-06-08 10:52 . 2008-06-08 10:52 <DIR> d-------- E:\Program Files\Sonic Icons for Lenovo
2008-06-08 10:52 . 2008-06-08 10:52 <DIR> d-------- E:\Program Files\Sonic
2008-06-08 10:52 . 2008-06-08 10:52 <DIR> d-------- E:\Program Files\Multimedia Center for Think Offerings
2008-06-08 10:52 . 2008-06-08 10:52 <DIR> d-------- E:\Program Files\Common Files\SureThing Shared
2008-06-08 10:52 . 2008-06-08 10:52 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\InstallShield
2008-06-08 10:52 . 2006-02-02 08:20 94,263 --a------ E:\WINDOWS\DLA.EXE
2008-06-08 10:52 . 2006-03-01 06:30 89,472 --a------ E:\WINDOWS\system32\drivers\DRVMCDB.SYS
2008-06-08 10:52 . 2006-02-02 08:20 61,500 --a------ E:\WINDOWS\system32\DLAAPI_W.DLL
2008-06-08 10:52 . 2005-11-18 08:20 40,544 --a------ E:\WINDOWS\system32\drivers\DRVNDDM.SYS
2008-06-08 10:52 . 2005-11-18 15:02 22,684 --a------ E:\WINDOWS\system32\drivers\DLARTL_N.SYS
2008-06-08 10:52 . 2005-11-18 15:02 5,660 --a------ E:\WINDOWS\system32\drivers\DLACDBHM.SYS
2008-06-08 10:52 . 2008-06-08 10:52 175 --a------ E:\WINDOWS\wininit.ini
2008-06-08 10:51 . 2008-06-08 10:52 <DIR> d-------- E:\Program Files\Common Files\Sonic Shared
2008-06-08 10:39 . 2008-06-08 10:39 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\Lenovo
2008-06-08 10:39 . 2008-02-15 15:45 172,032 --a------ E:\WINDOWS\system32\igfxres.dll
2008-06-08 10:11 . 2008-06-08 10:11 <DIR> d-------- E:\Program Files\Synaptics
2008-06-08 10:11 . 2007-12-05 19:11 177,664 --a------ E:\WINDOWS\system32\drivers\SynTP.sys
2008-06-08 10:11 . 2007-12-05 19:12 110,592 --a------ E:\WINDOWS\system32\SynTPAPI.dll
2008-06-08 10:11 . 2007-12-05 19:12 110,592 --a------ E:\WINDOWS\system32\SynCtrl.dll
2008-06-08 10:11 . 2007-12-05 20:10 77,824 --a------ E:\WINDOWS\system32\SynTPCoI.dll
2008-06-08 10:11 . 2007-12-05 19:12 73,728 --a------ E:\WINDOWS\system32\SynCOM.dll
2008-06-08 10:11 . 2007-12-05 19:14 65,536 --a------ E:\WINDOWS\system32\SynTPFcs.dll
2008-06-08 10:09 . 2008-06-08 10:09 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Lenovo
2008-06-08 10:08 . 2008-06-08 10:08 524,680 --a------ E:\WINDOWS\qfe25C.tmp
2008-06-08 10:07 . 2008-06-08 10:07 <DIR> d-------- E:\Program Files\NetWaiting
2008-06-08 10:07 . 2008-06-08 10:07 <DIR> d-------- E:\Program Files\Digital Line Detect
2008-06-08 10:07 . 2008-06-08 10:07 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\InstallShield
2008-06-08 10:06 . 2008-06-08 10:06 <DIR> d-------- E:\Program Files\CONEXANT
2008-06-08 10:05 . 2008-06-08 10:05 <DIR> d-------- E:\Program Files\PCDR5
2008-06-08 10:05 . 2008-06-08 10:05 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\PC-Doctor
2008-06-08 10:02 . 2006-12-30 08:25 78,720 -----c--- E:\WINDOWS\system32\dllcache\sdbus.sys
2008-06-08 10:02 . 2006-12-30 08:18 11,904 -----c--- E:\WINDOWS\system32\dllcache\sffdisk.sys
2008-06-08 10:02 . 2006-12-30 08:18 11,008 -----c--- E:\WINDOWS\system32\dllcache\sffp_sd.sys
2008-06-08 10:02 . 2006-12-30 08:18 10,240 --------- E:\WINDOWS\system32\drivers\sffp_mmc.sys
2008-06-08 10:02 . 2006-12-30 08:18 10,240 -----c--- E:\WINDOWS\system32\dllcache\sffp_mmc.sys
2008-06-08 09:59 . 2008-06-08 09:59 512,752 --a------ E:\WINDOWS\qfe183.tmp
2008-06-08 09:59 . 2006-06-30 00:57 32,768 --a------ E:\WINDOWS\system32\TpKmpSvc.exe
2008-06-08 09:58 . 2008-03-26 06:06 4,608 --------- E:\WINDOWS\system32\drivers\TSMAPIP.SYS
2008-06-08 09:57 . 2008-01-11 04:30 16,384 --------- E:\WINDOWS\PWMBTHLP.EXE
2008-06-08 09:57 . 2008-01-11 04:30 4,442 --------- E:\WINDOWS\system32\drivers\TPPWRIF.SYS
2008-06-08 09:25 . 2008-06-08 09:25 <DIR> d-------- E:\WINDOWS\system32\(null)
2008-06-08 09:25 . 2008-06-08 10:55 <DIR> d-------- E:\Program Files\Common Files\Lenovo
2008-06-08 09:25 . 2008-06-08 10:54 21,376 --a------ E:\WINDOWS\system32\drivers\psadd.sys
2008-06-08 02:32 . 2008-06-08 10:58 <DIR> d-------- E:\Program Files\ThinkVantage
2008-06-08 02:32 . 2007-09-14 08:01 922,920 --------- E:\WINDOWS\system32\ahlprun.exe
2008-06-08 02:32 . 2008-06-08 02:32 525,624 --a------ E:\WINDOWS\qfe4D.tmp
2008-06-08 02:32 . 2002-02-04 09:13 82,432 --a------ E:\WINDOWS\system32\msxml4r.dll
2008-06-08 02:32 . 2002-02-04 09:13 44,544 --a------ E:\WINDOWS\system32\msxml4a.dll
2008-06-08 02:32 . 2002-02-07 21:43 9,679 --a------ E:\WINDOWS\system32\msxml4r.cat
2008-06-08 02:32 . 2002-02-07 21:43 9,675 --a------ E:\WINDOWS\system32\msxml4.cat
2008-06-08 02:32 . 2002-02-06 23:31 3,489 --a------ E:\WINDOWS\system32\msxml4.Manifest
2008-06-08 02:32 . 2002-02-06 23:31 500 --a------ E:\WINDOWS\system32\msxml4r.Manifest
2008-06-08 02:28 . 2008-06-08 02:28 720,088 --a------ E:\WINDOWS\qfe3C.tmp
2008-06-08 02:07 . 2008-06-08 02:07 <DIR> d-------- E:\WINDOWS\system32\config\systemprofile\Application Data\Intel
2008-06-08 02:07 . 2008-06-08 02:07 376,832 --a------ E:\WINDOWS\system32\AegisI5Installer.exe
2008-06-08 02:07 . 2008-06-08 02:07 21,361 --a------ E:\WINDOWS\system32\drivers\AegisP.sys
2008-06-08 02:07 . 2008-06-08 02:07 21,361 --a------ E:\WINDOWS\AegisP.sys
2008-06-08 02:07 . 2008-06-08 02:07 13,984 --a------ E:\WINDOWS\AegisP.inf
2008-06-08 02:07 . 2008-06-08 02:07 10,640 --a------ E:\WINDOWS\AegisP.cat
2008-06-08 02:06 . 2008-06-08 09:55 <DIR> d----c--- E:\WINDOWS\system32\DRVSTORE
2008-06-08 02:06 . 2008-06-08 10:02 <DIR> d-------- E:\Program Files\Intel
2008-06-08 02:06 . 2008-06-08 02:06 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Intel
2008-06-08 02:06 . 2007-11-20 19:42 2,777,088 --a------ E:\WINDOWS\system32\NETw4r32.dll
2008-06-08 02:06 . 2007-11-27 02:37 2,236,544 --a------ E:\WINDOWS\system32\drivers\NETw4x32.sys
2008-06-08 02:06 . 2007-11-20 19:41 749,568 --a------ E:\WINDOWS\system32\NETw4c32.dll
2008-06-08 01:48 . 2008-06-08 01:48 <DIR> d-------- E:\WINDOWS\system32\LogFiles
2008-06-06 22:17 . 2008-06-06 22:17 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\DivX
2008-06-05 11:31 . 2008-06-08 11:31 123,072 -r-hs---- E:\f.bat
2008-06-02 21:57 . 2008-06-02 21:57 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\CyberLink
2008-06-02 21:57 . 2008-06-02 21:57 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\CyberLink
2008-05-31 11:35 . 2008-06-01 11:34 121,670 -r-hs---- E:\hovrflst.bat
2008-05-29 12:42 . 2008-05-29 12:41 122,087 -r-hs---- E:\cubp.bat
2008-05-28 12:42 . 2008-05-28 12:42 121,457 -r-hs---- E:\qs6m.bat
2008-05-27 10:42 . 2008-05-27 10:41 121,999 -r-hs---- E:\gabptk6d.bat
2008-05-26 22:00 . 2008-06-08 11:12 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\AdobeUM
2008-05-26 18:52 . 2008-05-26 18:52 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\Yahoo!
2008-05-26 18:52 . 2008-05-26 18:52 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-05-26 18:52 . 2008-05-26 18:55 664 --a------ E:\WINDOWS\system32\d3d9caps.dat
2008-05-26 18:51 . 2008-05-26 18:54 <DIR> d-------- E:\Program Files\DivX
2008-05-26 18:23 . 2008-05-26 18:23 121,705 -r-hs---- E:\tigi.cmd
2008-05-25 02:34 . 2008-05-25 08:20 119,095 -r-hs---- E:\mayyuk9g.bat
2008-05-23 12:19 . 2008-05-23 12:19 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\acccore
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Program Files\Viewpoint
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Program Files\Common Files\AOL
2008-05-23 12:17 . 2008-05-23 12:18 <DIR> d-------- E:\Program Files\AIM6
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Program Files\AIM Search
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Viewpoint
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\AOL OCP
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\AOL
2008-05-23 12:17 . 2008-05-23 12:18 371 --ah----- E:\IPH.PH
2008-05-23 11:08 . 2008-05-23 11:08 525,624 --a------ E:\WINDOWS\qfe21.tmp
2008-05-23 10:32 . 2006-06-14 04:47 172,416 --a------ E:\WINDOWS\system32\drivers\kmixer.sys
2008-05-23 10:31 . 2008-05-23 10:31 <DIR> d-------- E:\Program Files\Analog Devices
2008-05-23 10:31 . 2001-09-11 17:20 1,285,632 --------- E:\WINDOWS\system32\SMMedia.dll
2008-05-21 11:49 . 2008-05-21 11:49 525,624 --a------ E:\WINDOWS\qfe10.tmp
2008-05-21 07:53 . 2008-05-23 10:34 120,867 -r-hs---- E:\mrsne.bat
2008-05-20 18:50 . 2008-06-08 09:18 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\U3
2008-05-20 18:49 . 2004-08-04 02:08 26,496 --a--c--- E:\WINDOWS\system32\dllcache\usbstor.sys
2008-05-20 18:16 . 2008-06-08 10:57 <DIR> d-------- E:\Program Files\Lenovo
2008-05-20 18:16 . 2007-06-26 11:44 1,296,800 --a------ E:\WINDOWS\system32\ar5416.sys
2008-05-20 18:11 . 2008-06-08 10:07 <DIR> d-------- E:\Program Files\ThinkPad
2008-05-20 18:11 . 2008-01-21 23:34 583,232 --a------ E:\WINDOWS\system32\tvt_gina.dll
2008-05-20 18:11 . 2008-01-21 23:34 292,416 --a------ E:\WINDOWS\system32\tvt_gina_api.dll
2008-05-20 18:11 . 2008-01-21 23:34 11,520 --a------ E:\WINDOWS\system32\drivers\ANC.sys
2008-05-20 18:11 . 2008-01-21 23:34 4,224 --a------ E:\WINDOWS\system32\drivers\IBMBLDID.sys
2008-05-20 18:11 . 2008-05-20 18:11 0 --a------ E:\WINDOWS\system32\AccConnAdvanced.html
2008-05-20 18:00 . 2008-05-24 11:43 <DIR> d--h----- E:\WINDOWS\$hf_mig$
2008-05-20 18:00 . 2005-06-28 13:21 22,752 --a------ E:\WINDOWS\system32\spupdsvc.exe

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-26 22:51 --------- d-----w E:\Program Files\Yahoo!
2008-05-15 06:01 --------- d-----w E:\Program Files\Common Files\Ahead
2008-05-15 05:58 --------- d-----w E:\Program Files\Nero
2008-05-15 05:58 --------- d-----w E:\Documents and Settings\All Users\Application Data\Nero
2008-05-15 05:55 --------- d-----w E:\Program Files\Common Files\xing shared
2008-05-15 05:55 --------- d-----w E:\Program Files\Common Files\Real
2008-05-15 05:54 --------- d-----w E:\Program Files\Real
2008-05-15 05:52 --------- d-----w E:\Program Files\Winamp
2008-05-15 05:52 --------- d-----w E:\Program Files\Mjuice Media Player
2008-05-15 05:49 --------- d-----w E:\Program Files\Microsoft.NET
2008-05-15 05:49 --------- d-----w E:\Program Files\Microsoft ActiveSync
2008-05-15 05:41 --------- d-----w E:\Program Files\microsoft frontpage
2008-05-13 01:53 43,528 ------w E:\WINDOWS\system32\drivers\PxHelp20.sys
2008-04-25 00:53 308,736 ----a-w E:\WINDOWS\system32\drivers\ADIHdAud.sys
2008-04-25 00:53 103,424 ----a-w E:\WINDOWS\system32\drivers\aeaudio.sys
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22}]
2008-03-25 16:49 111968 --a------ E:\Program Files\AIM Search\AOLSearch.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Yahoo! Pager"="E:\Program Files\Yahoo!\Messenger\ypager.exe" [2004-05-21 15:49 2498560]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="E:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-12-23 21:05 143360]
"Aim6"="E:\Program Files\AIM6\aim6.exe" [2008-03-25 16:21 50528]
"updateMgr"="E:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 19:45 313472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"="E:\Program Files\Winamp\Winampa.exe" [2001-01-10 23:20 7680]
"TkBellExe"="E:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2008-05-15 01:54 180269]
"NeroFilterCheck"="E:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 18:40 155648]
"RemoteControl"="E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 18:10 56928]
"LanguageShortcut"="E:\Program Files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-06 01:55 54832]
"ACTray"="E:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe" [2008-03-14 21:57 425984]
"ACWLIcon"="E:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe" [2008-03-14 21:53 126976]
"SoundMAXPnP"="E:\Program Files\Analog Devices\Core\smax4pnp.exe" [2008-04-24 20:53 1036288]
"LPManager"="E:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe" [2008-01-11 05:21 144728]
"TVT Scheduler Proxy"="E:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe" [2008-03-04 13:34 487424]
"IgfxTray"="E:\WINDOWS\system32\igfxtray.exe" [2008-03-05 17:48 141848]
"HotKeysCmds"="E:\WINDOWS\system32\hkcmd.exe" [2008-03-05 17:48 166424]
"Persistence"="E:\WINDOWS\system32\igfxpers.exe" [2008-03-05 17:48 137752]
"TPHOTKEY"="E:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe" [2008-01-24 13:21 66928]
"PWRMGRTR"="E:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL" [2008-01-11 04:30 294912]
"BLOG"="E:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL" [2008-01-11 04:30 208896]
"TPFNF7"="E:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe" [2008-03-26 06:06 59680]
"EZEJMNAP"="E:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe" [2007-04-27 05:33 243248]
"TPKMAPHELPER"="E:\Program Files\ThinkPad\Utilities\TpKmapAp.exe" [2007-01-09 19:28 868352]
"TpShocks"="TpShocks.exe" [2007-11-22 18:09 181536 E:\WINDOWS\system32\TpShocks.exe]
"LPMailChecker"="E:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe" [2008-01-11 05:21 124248]
"SynTPLpr"="E:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [2007-12-05 19:14 122880]
"SynTPEnh"="E:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-05 19:14 524288]
"DLA"="E:\WINDOWS\System32\DLA\DLACTRLW.EXE" [2006-02-02 08:20 122940]
"ISUSPM Startup"="E:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 19:50 221184]
"ISUSScheduler"="E:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [2004-07-27 19:50 81920]
"AwaySch"="E:\Program Files\Lenovo\AwayTask\AwaySch.EXE" [2006-11-07 22:51 91688]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 03:56 110592 E:\WINDOWS\system32\bthprops.cpl]

E:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - E:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2008-04-23 06:38:16 29696]
Digital Line Detect.lnk - E:\Program Files\Digital Line Detect\DLG.exe [2008-06-08 10:07:25 50688]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ACNotify]
ACNotify.dll 2008-03-14 21:54 32768 E:\Program Files\ThinkPad\ConnectUtilities\ACNotify.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
E:\WINDOWS\system32\psqlpwd.dll 2007-08-14 18:54 89600 E:\WINDOWS\system32\psqlpwd.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpfnf2]
E:\Program Files\Lenovo\HOTKEY\notifyf2.dll 2006-09-06 19:37 34344 E:\Program Files\Lenovo\HOTKEY\notifyf2.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tphotkey]
E:\Program Files\Lenovo\HOTKEY\tphklock.dll 2007-12-14 19:36 28672 E:\Program Files\Lenovo\HOTKEY\tphklock.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"E:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"=
"E:\\Program Files\\Yahoo!\\Messenger\\YPager.exe"=
"E:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"E:\\Program Files\\AIM6\\aim6.exe"=

R0 Shockprf;Shockprf;E:\WINDOWS\system32\DRIVERS\Apsx86.sys [2007-10-16 21:33]
R0 TPDIGIMN;TPDIGIMN;E:\WINDOWS\system32\DRIVERS\ApsHM86.sys [2007-10-16 21:32]
R1 ANC;ANC;E:\WINDOWS\system32\drivers\ANC.SYS [2008-01-21 23:34]
R1 IBMTPCHK;IBMTPCHK;E:\WINDOWS\system32\Drivers\IBMBLDID.sys [2008-01-21 23:34]
R1 TPPWRIF;TPPWRIF;E:\WINDOWS\system32\drivers\Tppwrif.sys [2008-01-11 04:30]
R1 tvtumon;tvtumon;E:\WINDOWS\system32\DRIVERS\tvtumon.sys [2007-12-05 19:42]
R2 smihlp;SMI Helper Driver (smihlp);E:\Program Files\Common Files\ThinkVantage Fingerprint Software\Drivers\smihlp.sys [2007-08-14 18:46]
R2 TVT Backup Protection Service;TVT Backup Protection Service;"E:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe" [2007-12-05 20:17]
R2 TVT_UpdateMonitor;TVT Windows Update Monitor;E:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe [2007-12-05 19:42]
R2 Viewpoint Manager Service;Viewpoint Manager Service;"E:\Program Files\Viewpoint\Common\ViewpointService.exe" [2007-01-04 17:38]
R3 LenovoRd;LenovoRd;E:\WINDOWS\system32\Drivers\LenovoRd.sys [2007-06-08 12:36]
R3 TcUsb;TC USB Kernel Driver;E:\WINDOWS\system32\Drivers\tcusb.sys [2007-08-14 18:25]
R3 TVTI2C;Lenovo SM bus driver;E:\WINDOWS\system32\DRIVERS\Tvti2c.sys [2007-05-22 17:59]
R3 WSIMD;wsimd Service;E:\WINDOWS\system32\DRIVERS\wsimd.sys [2007-05-14 15:21]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\C]
\Shell\AutoRun\command - C:\f.bat
\Shell\explore\Command - C:\f.bat
\Shell\open\Command - C:\f.bat

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
\Shell\AutoRun\command - D:\f.bat
\Shell\explore\Command - D:\f.bat
\Shell\open\Command - D:\f.bat

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
\Shell\AutoRun\command - E:\f.bat
\Shell\explore\Command - E:\f.bat
\Shell\open\Command - E:\f.bat

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G]
\Shell\AutoRun\command - G:\f.bat
\Shell\explore\Command - G:\f.bat
\Shell\open\Command - G:\f.bat

.
Contents of the 'Scheduled Tasks' folder
"2008-06-08 19:26:21 E:\WINDOWS\Tasks\PMTask.job"
- E:\PROGRA~1\ThinkPad\UTILIT~1\PWMIDTSK.EXE
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-08 15:26:28
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...


E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\AOL\AOLDiag\AOL\IMAppServiceUSGM\Win32\6.5.12.1\000129ba.nub 190381 bytes
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\AOL OCP\AIM\Storage\data\mramanavarapu\localStorage\common.cls-journal 512 bytes

scan completed successfully
hidden files: 2

**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
E:\WINDOWS\system32\ibmpmsvc.exe
E:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
E:\WINDOWS\system32\scardsvr.exe
E:\WINDOWS\system32\IPSSVC.EXE
E:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
E:\WINDOWS\system32\acs.exe
E:\Program Files\Intel\Wireless\Bin\EvtEng.exe
E:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
E:\Program Files\CyberLink\Shared Files\RichVideo.exe
E:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
E:\WINDOWS\system32\TPHDEXLG.exe
E:\WINDOWS\system32\TpKmpSvc.exe
E:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
E:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
E:\WINDOWS\system32\wdfmgr.exe
E:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
E:\Program Files\Lenovo\System Update\SUService.exe
E:\Program Files\Common Files\Lenovo\Logger\logmon.exe
E:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
E:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
E:\WINDOWS\system32\igfxsrvc.exe
E:\WINDOWS\system32\rundll32.exe
E:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
E:\Program Files\Lenovo\ZOOM\TpScrex.exe
E:\WINDOWS\system32\rundll32.exe
E:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
E:\Program Files\Common Files\AOL\Loader\aolload.exe
E:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
E:\Program Files\Yahoo!\Messenger\Ymsgr_tray.exe
.
**************************************************************************
.
Completion time: 2008-06-08 15:28:27 - machine was rebooted
ComboFix-quarantined-files.txt 2008-06-08 19:28:23

Pre-Run: 11,295,006,720 bytes free
Post-Run: 11,842,174,976 bytes free

313 --- E O F --- 2008-05-25 10:00:53
-------------------------------------------------------------------------------

here is log file from kaspersky onliune report.

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Sunday, June 08, 2008 3:11:21 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 8/06/2008
Kaspersky Anti-Virus database records: 839572
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
C:\
D:\
E:\
F:\
G:\

Scan Statistics:
Total number of scanned objects: 88500
Number of viruses found: 61
Number of infected objects: 520
Number of suspicious objects: 0
Duration of the scan process: 00:54:50

Infected Object Name / Virus Name / Last Action
C:\9f3np.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\cubp.bat Infected: Trojan.Win32.Vaklik.ano skipped
C:\ek.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\gabptk6d.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
C:\hovrflst.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\mayyuk9g.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\mrsne.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\qs6m.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001145.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001146.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001192.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001193.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001215.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001216.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001228.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001263.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001293.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001322.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001343.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0001391.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0002418.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0002440.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003043.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003950.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003983.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP16\A0004005.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004018.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004043.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004075.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004100.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0004110.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005128.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005164.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0006161.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0006173.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007160.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007204.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007229.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007254.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007289.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007318.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007351.bat Infected: Trojan.Win32.Vaklik.ano skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007441.bat Infected: Trojan.Win32.Vaklik.ano skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007458.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007488.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007521.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007538.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007563.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0007587.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0008563.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0008582.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009597.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009615.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009680.bat Infected: Trojan.Win32.Vaklik.arw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009713.bat Infected: Trojan.Win32.Vaklik.arw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009749.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009763.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009791.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009820.bat Infected: Trojan.Win32.Vaklik.asw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009836.bat Infected: Trojan.Win32.Vaklik.asw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009869.bat Infected: Trojan.Win32.Vaklik.asw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0009998.bat Infected: Trojan.Win32.Vaklik.asw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010130.bat Infected: Trojan.Win32.Vaklik.asw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010162.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010210.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010237.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010273.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010289.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010309.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP36\A0010332.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP37\A0010360.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP38\A0010376.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010410.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010433.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000160.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000176.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010456.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010478.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP5\A0000196.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000226.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000281.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000314.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000315.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000385.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000386.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000420.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000421.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000436.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000437.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001102.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001103.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP2\A0000025.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP3\A0000037.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP4\A0000099.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP5\A0000137.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000153.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000216.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000232.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000252.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000268.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000303.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\tigi.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
C:\WINDOWS\system32\kavo.exe Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\WINDOWS\system32\kavo0.dll Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\WINDOWS\system32\WinServices.exe Infected: Backdoor.Win32.Agent.anf skipped
C:\WINDOWS\Temp\r.dll Infected: Trojan-PSW.Win32.OnLineGames.zkd skipped
C:\WINDOWS\Temp\ra2m5a.dll Infected: Trojan-PSW.Win32.OnLineGames.nqk skipped
D:\9f3np.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\cubp.bat Infected: Trojan.Win32.Vaklik.ano skipped
D:\ek.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\gabptk6d.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
D:\hovrflst.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\mayyuk9g.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
D:\mrsne.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\qs6m.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001147.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001148.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001194.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001195.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001217.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001218.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001230.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001265.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001295.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001324.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001345.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0001393.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0002420.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0002442.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003045.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003952.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003985.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP16\A0004007.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004020.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004045.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004077.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004102.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0004112.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005130.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005166.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0006163.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0006175.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007206.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007231.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007256.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007291.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007320.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007353.bat Infected: Trojan.Win32.Vaklik.ano skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007443.bat Infected: Trojan.Win32.Vaklik.ano skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007460.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007490.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007523.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007540.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007565.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0007589.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0008565.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0008584.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009599.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009617.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009682.bat Infected: Trojan.Win32.Vaklik.arw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009715.bat Infected: Trojan.Win32.Vaklik.arw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009751.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009765.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009793.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009822.bat Infected: Trojan.Win32.Vaklik.asw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009838.bat Infected: Trojan.Win32.Vaklik.asw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009871.bat Infected: Trojan.Win32.Vaklik.asw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010001.bat Infected: Trojan.Win32.Vaklik.asw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010133.bat Infected: Trojan.Win32.Vaklik.asw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010164.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010212.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010239.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010275.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010291.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010311.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP36\A0010334.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP37\A0010362.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP38\A0010378.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010412.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010435.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000162.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000178.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010458.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010480.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP5\A0000198.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000228.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000283.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000316.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000317.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000387.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000388.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000422.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000423.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000438.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000439.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001104.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001105.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP2\A0000027.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP3\A0000039.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP4\A0000101.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP5\A0000139.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000155.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000218.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000234.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000254.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000270.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000305.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\tigi.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
E:\9f3np.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\cubp.bat Infected: Trojan.Win32.Vaklik.ano skipped
E:\Documents and Settings\JARIMAHI\Application Data\acccore\nss\cert8.db Object is locked skipped
E:\Documents and Settings\JARIMAHI\Application Data\acccore\nss\key3.db Object is locked skipped
E:\Documents and Settings\JARIMAHI\Cookies\index.dat Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\Ahead\Nero Home\bl.db Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\Ahead\Nero Home\is2.db Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\AOL OCP\AIM\Storage\All Users\localStorage\common.cls Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\AOL OCP\AIM\Storage\data\mramanavarapu\localStorage\common.cls Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\History\History.IE5\index.dat Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\History\History.IE5\MSHist012008060820080609\index.dat Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\ra2m5a.dll Infected: Trojan-PSW.Win32.OnLineGames.nqk skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru10.tmp Infected: Trojan-Dropper.Win32.Crypter.d skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru11.tmp Infected: Trojan-Dropper.Win32.Crypter.f skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru12.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajlx skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru13.tmp Infected: Trojan-Dropper.Win32.Crypter.f skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru14.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajlx skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru15.tmp Infected: Trojan-Dropper.Win32.Crypter.f skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru16.tmp Infected: Trojan-Dropper.Win32.Crypter.e skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru17.tmp Infected: Trojan-Dropper.Win32.Crypter.f skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru18.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajtv skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru19.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajtu skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1A.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajzb skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1B.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajzb skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1C.tmp Infected: Trojan-PSW.Win32.OnLineGames.akkj skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1D.tmp Infected: Trojan-PSW.Win32.OnLineGames.aksi skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1E.tmp Infected: Trojan-Dropper.Win32.Crypter.m skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1F.tmp Infected: Trojan.Win32.Vaklik.aos skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru20.tmp Infected: Trojan.Win32.Vaklik.aov skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru21.tmp Infected: Trojan.Win32.Vaklik.api skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru22.tmp Infected: Trojan.Win32.Vaklik.apo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru23.tmp Infected: Trojan.Win32.Vaklik.apy skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru24.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru25.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru26.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru27.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru28.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru29.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2A.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2B.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2C.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2D.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2E.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2F.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru3.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru30.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru31.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru32.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru33.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru34.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru4.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru5.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru6.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru7.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru8.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru9.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truA.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truB.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truC.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truD.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truE.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajgt skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truF.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajgt skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\~DFB061.tmp Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temporary Internet Files\Content.IE5\K1CH6LIB\index[1] Infected: Packed.JS.Agent.d skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temporary Internet Files\Content.IE5\KBIJ4VAN\index[1] Infected: Packed.JS.Agent.d skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temporary Internet Files\Content.IE5\KBIJ4VAN\index[1].htm Infected: Packed.JS.Agent.d skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temporary Internet Files\Content.IE5\M5QPANCB\index[1] Infected: Packed.JS.Agent.d skipped
E:\Documents and Settings\JARIMAHI\NTUSER.DAT Object is locked skipped
E:\Documents and Settings\JARIMAHI\ntuser.dat.LOG Object is locked skipped
E:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
E:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
E:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
E:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
E:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped
E:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
E:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
E:\Documents and Settings\NetworkService\Local Settings\History\History.IE5\index.dat Object is locked skipped
E:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
E:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
E:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
E:\ek.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\gabptk6d.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
E:\hovrflst.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\mayyuk9g.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\mrsne.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\qs6m.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
E:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001149.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001150.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001187.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoy skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001188.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001196.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001197.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001200.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoy skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001213.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001219.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001220.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001223.exe Infected: Trojan-PSW.Win32.OnLineGames.aiwm skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001224.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001225.exe Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001226.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoy skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001232.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001257.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001267.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001271.exe Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001273.exe Infected: Trojan-PSW.Win32.OnLineGames.aixv skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001297.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001301.exe Infected: Trojan-PSW.Win32.OnLineGames.aixv skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001326.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001347.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001351.exe Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0001395.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0001399.exe Infected: Trojan-PSW.Win32.OnLineGames.aixv skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0002422.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0002427.exe Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0002444.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003047.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003051.exe Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003053.exe Infected: Trojan-PSW.Win32.OnLineGames.aixv skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003954.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003987.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003992.exe Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003994.exe Infected: Trojan-PSW.Win32.OnLineGames.ajgo skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP16\A0004009.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004022.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004047.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004052.exe Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004054.exe Infected: Trojan.Win32.Vaklik.ali skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004079.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004104.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0004114.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0005110.exe Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0005112.exe Infected: Trojan.Win32.Vaklik.ali skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005132.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005168.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005173.exe Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0006157.dll Infected: Trojan-PSW.Win32.OnLineGames.akjw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0006165.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0006177.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007157.dll Infected: Trojan-PSW.Win32.OnLineGames.akjw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007168.exe Infected: Trojan.Win32.Vaklik.alw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007169.dll Infected: Trojan-PSW.Win32.OnLineGames.akjw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007170.exe Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007208.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007214.exe Infected: Trojan-PSW.Win32.OnLineGames.ajxr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007216.exe Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007233.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007258.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007264.exe Infected: Trojan.Win32.Vaklik.amg skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007266.exe Infected: Trojan-PSW.Win32.Magania.raa skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007293.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007322.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007328.exe Infected: Trojan-PSW.Win32.Magania.rgi skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007355.bat Infected: Trojan.Win32.Vaklik.ano skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007445.bat Infected: Trojan.Win32.Vaklik.ano skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007450.exe Infected: Trojan.Win32.Vaklik.anj skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007452.exe Infected: Trojan.Win32.Vaklik.ano skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007462.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007492.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007497.exe Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007525.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007529.exe Infected: Trojan-PSW.Win32.OnLineGames.aljz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007542.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007567.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007573.exe Infected: Trojan-PSW.Win32.OnLineGames.alra skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0007591.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0008586.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009561.dll Infected: Trojan-PSW.Win32.OnLineGames.amkw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009574.exe Infected: Trojan-PSW.Win32.OnLineGames.alre skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009575.dll Infected: Trojan-PSW.Win32.OnLineGames.amkw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009595.dll Infected: Trojan-PSW.Win32.OnLineGames.amkw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009601.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009619.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009636.exe Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009638.exe Infected: Trojan-PSW.Win32.OnLineGames.amqm skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009658.exe Infected: Trojan.Win32.Vaklik.arw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009660.exe Infected: Trojan-PSW.Win32.OnLineGames.amxh skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009684.bat Infected: Trojan.Win32.Vaklik.arw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009689.exe Infected: Trojan.Win32.Vaklik.arw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009717.bat Infected: Trojan.Win32.Vaklik.arw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009722.exe Infected: Trojan-PSW.Win32.OnLineGames.amxh skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009724.exe Infected: Trojan.Win32.Vaklik.arw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009753.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009767.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009788.dll Infected: Trojan-PSW.Win32.OnLineGames.adrn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009795.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009799.exe Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009800.dll Infected: Trojan-PSW.Win32.OnLineGames.adrn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009801.exe Infected: Trojan-PSW.Win32.OnLineGames.anee skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009819.dll Infected: Trojan-PSW.Win32.OnLineGames.adrn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009824.bat Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009840.bat Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009873.bat Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010004.bat Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010136.bat Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010140.exe Infected: Trojan-PSW.Win32.OnLineGames.anki skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010141.exe Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010166.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010214.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010241.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010245.exe Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010247.exe Infected: Trojan-PSW.Win32.OnLineGames.antr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010277.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010283.exe Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010293.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010313.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010319.exe Infected: Trojan-PSW.Win32.OnLineGames.antr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010320.exe Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP36\A0010336.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP37\A0010364.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP38\A0010380.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010414.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010437.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000164.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000175.dll Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000180.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010460.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010482.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010490.exe Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010492.exe Infected: Trojan-PSW.Win32.OnLineGames.antr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010493.exe Infected: Trojan-PSW.Win32.OnLineGames.antr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP5\A0000200.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000230.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000274.dll Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000285.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000289.exe Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP60\change.log Object is locked skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000318.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000319.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000389.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000390.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000403.dll Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000404.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000424.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000425.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000428.exe Infected: Trojan-PSW.Win32.OnLineGames.aiwm skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000429.exe Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000430.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoy skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000440.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000441.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001094.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001106.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001107.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001110.exe Infected: Trojan-PSW.Win32.OnLineGames.aiwm skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001111.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\tigi.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
E:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
E:\WINDOWS\SchedLgU.Txt Object is locked skipped
E:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
E:\WINDOWS\Sti_Trace.log Object is locked skipped
E:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
E:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
E:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
E:\WINDOWS\system32\config\default Object is locked skipped
E:\WINDOWS\system32\config\default.LOG Object is locked skipped
E:\WINDOWS\system32\config\SAM Object is locked skipped
E:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
E:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
E:\WINDOWS\system32\config\SECURITY Object is locked skipped
E:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
E:\WINDOWS\system32\config\software Object is locked skipped
E:\WINDOWS\system32\config\software.LOG Object is locked skipped
E:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
E:\WINDOWS\system32\config\system Object is locked skipped
E:\WINDOWS\system32\config\system.LOG Object is locked skipped
E:\WINDOWS\system32\h323log.txt Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
E:\WINDOWS\wiadebug.log Object is locked skipped
E:\WINDOWS\wiaservc.log Object is locked skipped
E:\WINDOWS\WindowsUpdate.log Object is locked skipped
G:\9f3np.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\cubp.bat Infected: Trojan.Win32.Vaklik.ano skipped
G:\ek.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
G:\gabptk6d.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
G:\hovrflst.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\mayyuk9g.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
G:\mrsne.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\qs6m.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
G:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001151.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001152.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001198.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001199.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001221.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001222.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001234.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001269.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001299.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001328.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001349.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0001397.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0002424.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0002446.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003049.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003956.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003989.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP16\A0004011.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004024.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004049.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004081.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004106.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0004116.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005134.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005170.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0006167.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0006179.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007210.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007235.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007260.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007295.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007324.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007357.bat Infected: Trojan.Win32.Vaklik.ano skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007447.bat Infected: Trojan.Win32.Vaklik.ano skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007464.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007494.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007527.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007544.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007569.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0007593.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0008588.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009603.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009621.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009686.bat Infected: Trojan.Win32.Vaklik.arw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009719.bat Infected: Trojan.Win32.Vaklik.arw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009755.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009769.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009797.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009826.bat Infected: Trojan.Win32.Vaklik.asw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009842.bat Infected: Trojan.Win32.Vaklik.asw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009875.bat Infected: Trojan.Win32.Vaklik.asw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010007.bat Infected: Trojan.Win32.Vaklik.asw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010138.bat Infected: Trojan.Win32.Vaklik.asw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010168.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010216.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010243.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010279.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010295.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010315.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP36\A0010338.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP37\A0010366.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP38\A0010382.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010416.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010439.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000182.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010462.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010484.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP5\A0000202.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000232.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000287.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000320.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000322.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000391.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000392.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000426.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000427.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000442.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000443.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001108.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001109.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\tigi.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped

Scan process completed.

    Advertisements

Register to Remove

Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users