I am also facing the similar problem and i just completed running combofix after running hijacks. here is log fole for combofix
can u let me know what shou i do after this to remove viruses from my system
ComboFix 08-06-07.3 - JARIMAHI 2008-06-08 15:22:30.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1550 [GMT -4:00]
Running from: E:\Documents and Settings\JARIMAHI\desktop\combofix.exe
Command switches used :: /killall
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Autorun.inf
D:\Autorun.inf
E:\autorun.inf
E:\WINDOWS\system32\kavo.exe
E:\WINDOWS\system32\kavo0.dll
E:\WINDOWS\system32\kavo1.dll
E:\WINDOWS\system32\tavo.exe
E:\WINDOWS\system32\tavo1.dll
G:\Autorun.inf
.
((((((((((((((((((((((((( Files Created from 2008-05-08 to 2008-06-08 )))))))))))))))))))))))))))))))
.
2008-06-08 13:17 . 2008-06-08 13:17 <DIR> d-------- E:\WINDOWS\system32\Kaspersky Lab
2008-06-08 13:17 . 2008-06-08 13:17 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-06-08 12:58 . 2008-06-08 12:58 <DIR> d-------- E:\Program Files\Trend Micro
2008-06-08 11:08 . 2008-06-08 11:08 <DIR> d-------- E:\Program Files\Common Files\Adobe
2008-06-08 11:06 . 2008-06-08 11:06 <DIR> d-------- E:\Documents and Settings\LocalService\Application Data\Intel
2008-06-08 11:06 . 2008-06-08 11:06 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\Intel
2008-06-08 11:02 . 2008-06-08 11:03 <DIR> dr-hs---- E:\RRbackups
2008-06-08 10:58 . 2008-06-08 11:01 <DIR> d-------- E:\Program Files\ThinkVantage Fingerprint Software
2008-06-08 10:58 . 2008-06-08 10:58 <DIR> d-------- E:\Program Files\Common Files\ThinkVantage Fingerprint Software
2008-06-08 10:58 . 2008-06-08 10:58 <DIR> d-------- E:\Icons
2008-06-08 10:58 . 2008-06-08 10:58 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\UIB
2008-06-08 10:54 . 2008-06-08 11:02 <DIR> d-------- E:\SWSHARE
2008-06-08 10:54 . 2008-06-08 10:54 <DIR> d-------- E:\Drivers
2008-06-08 10:54 . 2008-06-08 10:54 33,536 --a------ E:\WINDOWS\system32\drivers\tvtfilter.sys
2008-06-08 10:54 . 2008-06-08 10:53 7,012 --a------ E:\WINDOWS\system32\drivers\pmemnt.sys
2008-06-08 10:53 . 2008-06-08 10:53 <DIR> d-------- E:\WINDOWS\Downloaded Installations
2008-06-08 10:52 . 2008-06-08 11:01 <DIR> d-------- E:\WINDOWS\system32\DLA
2008-06-08 10:52 . 2008-06-08 10:52 <DIR> d-------- E:\Program Files\Sonic Icons for Lenovo
2008-06-08 10:52 . 2008-06-08 10:52 <DIR> d-------- E:\Program Files\Sonic
2008-06-08 10:52 . 2008-06-08 10:52 <DIR> d-------- E:\Program Files\Multimedia Center for Think Offerings
2008-06-08 10:52 . 2008-06-08 10:52 <DIR> d-------- E:\Program Files\Common Files\SureThing Shared
2008-06-08 10:52 . 2008-06-08 10:52 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\InstallShield
2008-06-08 10:52 . 2006-02-02 08:20 94,263 --a------ E:\WINDOWS\DLA.EXE
2008-06-08 10:52 . 2006-03-01 06:30 89,472 --a------ E:\WINDOWS\system32\drivers\DRVMCDB.SYS
2008-06-08 10:52 . 2006-02-02 08:20 61,500 --a------ E:\WINDOWS\system32\DLAAPI_W.DLL
2008-06-08 10:52 . 2005-11-18 08:20 40,544 --a------ E:\WINDOWS\system32\drivers\DRVNDDM.SYS
2008-06-08 10:52 . 2005-11-18 15:02 22,684 --a------ E:\WINDOWS\system32\drivers\DLARTL_N.SYS
2008-06-08 10:52 . 2005-11-18 15:02 5,660 --a------ E:\WINDOWS\system32\drivers\DLACDBHM.SYS
2008-06-08 10:52 . 2008-06-08 10:52 175 --a------ E:\WINDOWS\wininit.ini
2008-06-08 10:51 . 2008-06-08 10:52 <DIR> d-------- E:\Program Files\Common Files\Sonic Shared
2008-06-08 10:39 . 2008-06-08 10:39 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\Lenovo
2008-06-08 10:39 . 2008-02-15 15:45 172,032 --a------ E:\WINDOWS\system32\igfxres.dll
2008-06-08 10:11 . 2008-06-08 10:11 <DIR> d-------- E:\Program Files\Synaptics
2008-06-08 10:11 . 2007-12-05 19:11 177,664 --a------ E:\WINDOWS\system32\drivers\SynTP.sys
2008-06-08 10:11 . 2007-12-05 19:12 110,592 --a------ E:\WINDOWS\system32\SynTPAPI.dll
2008-06-08 10:11 . 2007-12-05 19:12 110,592 --a------ E:\WINDOWS\system32\SynCtrl.dll
2008-06-08 10:11 . 2007-12-05 20:10 77,824 --a------ E:\WINDOWS\system32\SynTPCoI.dll
2008-06-08 10:11 . 2007-12-05 19:12 73,728 --a------ E:\WINDOWS\system32\SynCOM.dll
2008-06-08 10:11 . 2007-12-05 19:14 65,536 --a------ E:\WINDOWS\system32\SynTPFcs.dll
2008-06-08 10:09 . 2008-06-08 10:09 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Lenovo
2008-06-08 10:08 . 2008-06-08 10:08 524,680 --a------ E:\WINDOWS\qfe25C.tmp
2008-06-08 10:07 . 2008-06-08 10:07 <DIR> d-------- E:\Program Files\NetWaiting
2008-06-08 10:07 . 2008-06-08 10:07 <DIR> d-------- E:\Program Files\Digital Line Detect
2008-06-08 10:07 . 2008-06-08 10:07 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\InstallShield
2008-06-08 10:06 . 2008-06-08 10:06 <DIR> d-------- E:\Program Files\CONEXANT
2008-06-08 10:05 . 2008-06-08 10:05 <DIR> d-------- E:\Program Files\PCDR5
2008-06-08 10:05 . 2008-06-08 10:05 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\PC-Doctor
2008-06-08 10:02 . 2006-12-30 08:25 78,720 -----c--- E:\WINDOWS\system32\dllcache\sdbus.sys
2008-06-08 10:02 . 2006-12-30 08:18 11,904 -----c--- E:\WINDOWS\system32\dllcache\sffdisk.sys
2008-06-08 10:02 . 2006-12-30 08:18 11,008 -----c--- E:\WINDOWS\system32\dllcache\sffp_sd.sys
2008-06-08 10:02 . 2006-12-30 08:18 10,240 --------- E:\WINDOWS\system32\drivers\sffp_mmc.sys
2008-06-08 10:02 . 2006-12-30 08:18 10,240 -----c--- E:\WINDOWS\system32\dllcache\sffp_mmc.sys
2008-06-08 09:59 . 2008-06-08 09:59 512,752 --a------ E:\WINDOWS\qfe183.tmp
2008-06-08 09:59 . 2006-06-30 00:57 32,768 --a------ E:\WINDOWS\system32\TpKmpSvc.exe
2008-06-08 09:58 . 2008-03-26 06:06 4,608 --------- E:\WINDOWS\system32\drivers\TSMAPIP.SYS
2008-06-08 09:57 . 2008-01-11 04:30 16,384 --------- E:\WINDOWS\PWMBTHLP.EXE
2008-06-08 09:57 . 2008-01-11 04:30 4,442 --------- E:\WINDOWS\system32\drivers\TPPWRIF.SYS
2008-06-08 09:25 . 2008-06-08 09:25 <DIR> d-------- E:\WINDOWS\system32\(null)
2008-06-08 09:25 . 2008-06-08 10:55 <DIR> d-------- E:\Program Files\Common Files\Lenovo
2008-06-08 09:25 . 2008-06-08 10:54 21,376 --a------ E:\WINDOWS\system32\drivers\psadd.sys
2008-06-08 02:32 . 2008-06-08 10:58 <DIR> d-------- E:\Program Files\ThinkVantage
2008-06-08 02:32 . 2007-09-14 08:01 922,920 --------- E:\WINDOWS\system32\ahlprun.exe
2008-06-08 02:32 . 2008-06-08 02:32 525,624 --a------ E:\WINDOWS\qfe4D.tmp
2008-06-08 02:32 . 2002-02-04 09:13 82,432 --a------ E:\WINDOWS\system32\msxml4r.dll
2008-06-08 02:32 . 2002-02-04 09:13 44,544 --a------ E:\WINDOWS\system32\msxml4a.dll
2008-06-08 02:32 . 2002-02-07 21:43 9,679 --a------ E:\WINDOWS\system32\msxml4r.cat
2008-06-08 02:32 . 2002-02-07 21:43 9,675 --a------ E:\WINDOWS\system32\msxml4.cat
2008-06-08 02:32 . 2002-02-06 23:31 3,489 --a------ E:\WINDOWS\system32\msxml4.Manifest
2008-06-08 02:32 . 2002-02-06 23:31 500 --a------ E:\WINDOWS\system32\msxml4r.Manifest
2008-06-08 02:28 . 2008-06-08 02:28 720,088 --a------ E:\WINDOWS\qfe3C.tmp
2008-06-08 02:07 . 2008-06-08 02:07 <DIR> d-------- E:\WINDOWS\system32\config\systemprofile\Application Data\Intel
2008-06-08 02:07 . 2008-06-08 02:07 376,832 --a------ E:\WINDOWS\system32\AegisI5Installer.exe
2008-06-08 02:07 . 2008-06-08 02:07 21,361 --a------ E:\WINDOWS\system32\drivers\AegisP.sys
2008-06-08 02:07 . 2008-06-08 02:07 21,361 --a------ E:\WINDOWS\AegisP.sys
2008-06-08 02:07 . 2008-06-08 02:07 13,984 --a------ E:\WINDOWS\AegisP.inf
2008-06-08 02:07 . 2008-06-08 02:07 10,640 --a------ E:\WINDOWS\AegisP.cat
2008-06-08 02:06 . 2008-06-08 09:55 <DIR> d----c--- E:\WINDOWS\system32\DRVSTORE
2008-06-08 02:06 . 2008-06-08 10:02 <DIR> d-------- E:\Program Files\Intel
2008-06-08 02:06 . 2008-06-08 02:06 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Intel
2008-06-08 02:06 . 2007-11-20 19:42 2,777,088 --a------ E:\WINDOWS\system32\NETw4r32.dll
2008-06-08 02:06 . 2007-11-27 02:37 2,236,544 --a------ E:\WINDOWS\system32\drivers\NETw4x32.sys
2008-06-08 02:06 . 2007-11-20 19:41 749,568 --a------ E:\WINDOWS\system32\NETw4c32.dll
2008-06-08 01:48 . 2008-06-08 01:48 <DIR> d-------- E:\WINDOWS\system32\LogFiles
2008-06-06 22:17 . 2008-06-06 22:17 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\DivX
2008-06-05 11:31 . 2008-06-08 11:31 123,072 -r-hs---- E:\f.bat
2008-06-02 21:57 . 2008-06-02 21:57 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\CyberLink
2008-06-02 21:57 . 2008-06-02 21:57 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\CyberLink
2008-05-31 11:35 . 2008-06-01 11:34 121,670 -r-hs---- E:\hovrflst.bat
2008-05-29 12:42 . 2008-05-29 12:41 122,087 -r-hs---- E:\cubp.bat
2008-05-28 12:42 . 2008-05-28 12:42 121,457 -r-hs---- E:\qs6m.bat
2008-05-27 10:42 . 2008-05-27 10:41 121,999 -r-hs---- E:\gabptk6d.bat
2008-05-26 22:00 . 2008-06-08 11:12 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\AdobeUM
2008-05-26 18:52 . 2008-05-26 18:52 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\Yahoo!
2008-05-26 18:52 . 2008-05-26 18:52 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-05-26 18:52 . 2008-05-26 18:55 664 --a------ E:\WINDOWS\system32\d3d9caps.dat
2008-05-26 18:51 . 2008-05-26 18:54 <DIR> d-------- E:\Program Files\DivX
2008-05-26 18:23 . 2008-05-26 18:23 121,705 -r-hs---- E:\tigi.cmd
2008-05-25 02:34 . 2008-05-25 08:20 119,095 -r-hs---- E:\mayyuk9g.bat
2008-05-23 12:19 . 2008-05-23 12:19 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\acccore
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Program Files\Viewpoint
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Program Files\Common Files\AOL
2008-05-23 12:17 . 2008-05-23 12:18 <DIR> d-------- E:\Program Files\AIM6
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Program Files\AIM Search
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\Viewpoint
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\AOL OCP
2008-05-23 12:17 . 2008-05-23 12:17 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\AOL
2008-05-23 12:17 . 2008-05-23 12:18 371 --ah----- E:\IPH.PH
2008-05-23 11:08 . 2008-05-23 11:08 525,624 --a------ E:\WINDOWS\qfe21.tmp
2008-05-23 10:32 . 2006-06-14 04:47 172,416 --a------ E:\WINDOWS\system32\drivers\kmixer.sys
2008-05-23 10:31 . 2008-05-23 10:31 <DIR> d-------- E:\Program Files\Analog Devices
2008-05-23 10:31 . 2001-09-11 17:20 1,285,632 --------- E:\WINDOWS\system32\SMMedia.dll
2008-05-21 11:49 . 2008-05-21 11:49 525,624 --a------ E:\WINDOWS\qfe10.tmp
2008-05-21 07:53 . 2008-05-23 10:34 120,867 -r-hs---- E:\mrsne.bat
2008-05-20 18:50 . 2008-06-08 09:18 <DIR> d-------- E:\Documents and Settings\JARIMAHI\Application Data\U3
2008-05-20 18:49 . 2004-08-04 02:08 26,496 --a--c--- E:\WINDOWS\system32\dllcache\usbstor.sys
2008-05-20 18:16 . 2008-06-08 10:57 <DIR> d-------- E:\Program Files\Lenovo
2008-05-20 18:16 . 2007-06-26 11:44 1,296,800 --a------ E:\WINDOWS\system32\ar5416.sys
2008-05-20 18:11 . 2008-06-08 10:07 <DIR> d-------- E:\Program Files\ThinkPad
2008-05-20 18:11 . 2008-01-21 23:34 583,232 --a------ E:\WINDOWS\system32\tvt_gina.dll
2008-05-20 18:11 . 2008-01-21 23:34 292,416 --a------ E:\WINDOWS\system32\tvt_gina_api.dll
2008-05-20 18:11 . 2008-01-21 23:34 11,520 --a------ E:\WINDOWS\system32\drivers\ANC.sys
2008-05-20 18:11 . 2008-01-21 23:34 4,224 --a------ E:\WINDOWS\system32\drivers\IBMBLDID.sys
2008-05-20 18:11 . 2008-05-20 18:11 0 --a------ E:\WINDOWS\system32\AccConnAdvanced.html
2008-05-20 18:00 . 2008-05-24 11:43 <DIR> d--h----- E:\WINDOWS\$hf_mig$
2008-05-20 18:00 . 2005-06-28 13:21 22,752 --a------ E:\WINDOWS\system32\spupdsvc.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-26 22:51 --------- d-----w E:\Program Files\Yahoo!
2008-05-15 06:01 --------- d-----w E:\Program Files\Common Files\Ahead
2008-05-15 05:58 --------- d-----w E:\Program Files\Nero
2008-05-15 05:58 --------- d-----w E:\Documents and Settings\All Users\Application Data\Nero
2008-05-15 05:55 --------- d-----w E:\Program Files\Common Files\xing shared
2008-05-15 05:55 --------- d-----w E:\Program Files\Common Files\Real
2008-05-15 05:54 --------- d-----w E:\Program Files\Real
2008-05-15 05:52 --------- d-----w E:\Program Files\Winamp
2008-05-15 05:52 --------- d-----w E:\Program Files\Mjuice Media Player
2008-05-15 05:49 --------- d-----w E:\Program Files\Microsoft.NET
2008-05-15 05:49 --------- d-----w E:\Program Files\Microsoft ActiveSync
2008-05-15 05:41 --------- d-----w E:\Program Files\microsoft frontpage
2008-05-13 01:53 43,528 ------w E:\WINDOWS\system32\drivers\PxHelp20.sys
2008-04-25 00:53 308,736 ----a-w E:\WINDOWS\system32\drivers\ADIHdAud.sys
2008-04-25 00:53 103,424 ----a-w E:\WINDOWS\system32\drivers\aeaudio.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22}]
2008-03-25 16:49 111968 --a------ E:\Program Files\AIM Search\AOLSearch.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Yahoo! Pager"="E:\Program Files\Yahoo!\Messenger\ypager.exe" [2004-05-21 15:49 2498560]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="E:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-12-23 21:05 143360]
"Aim6"="E:\Program Files\AIM6\aim6.exe" [2008-03-25 16:21 50528]
"updateMgr"="E:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 19:45 313472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"="E:\Program Files\Winamp\Winampa.exe" [2001-01-10 23:20 7680]
"TkBellExe"="E:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2008-05-15 01:54 180269]
"NeroFilterCheck"="E:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 18:40 155648]
"RemoteControl"="E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 18:10 56928]
"LanguageShortcut"="E:\Program Files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-06 01:55 54832]
"ACTray"="E:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe" [2008-03-14 21:57 425984]
"ACWLIcon"="E:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe" [2008-03-14 21:53 126976]
"SoundMAXPnP"="E:\Program Files\Analog Devices\Core\smax4pnp.exe" [2008-04-24 20:53 1036288]
"LPManager"="E:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe" [2008-01-11 05:21 144728]
"TVT Scheduler Proxy"="E:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe" [2008-03-04 13:34 487424]
"IgfxTray"="E:\WINDOWS\system32\igfxtray.exe" [2008-03-05 17:48 141848]
"HotKeysCmds"="E:\WINDOWS\system32\hkcmd.exe" [2008-03-05 17:48 166424]
"Persistence"="E:\WINDOWS\system32\igfxpers.exe" [2008-03-05 17:48 137752]
"TPHOTKEY"="E:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe" [2008-01-24 13:21 66928]
"PWRMGRTR"="E:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL" [2008-01-11 04:30 294912]
"BLOG"="E:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL" [2008-01-11 04:30 208896]
"TPFNF7"="E:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe" [2008-03-26 06:06 59680]
"EZEJMNAP"="E:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe" [2007-04-27 05:33 243248]
"TPKMAPHELPER"="E:\Program Files\ThinkPad\Utilities\TpKmapAp.exe" [2007-01-09 19:28 868352]
"TpShocks"="TpShocks.exe" [2007-11-22 18:09 181536 E:\WINDOWS\system32\TpShocks.exe]
"LPMailChecker"="E:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe" [2008-01-11 05:21 124248]
"SynTPLpr"="E:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [2007-12-05 19:14 122880]
"SynTPEnh"="E:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-05 19:14 524288]
"DLA"="E:\WINDOWS\System32\DLA\DLACTRLW.EXE" [2006-02-02 08:20 122940]
"ISUSPM Startup"="E:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 19:50 221184]
"ISUSScheduler"="E:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [2004-07-27 19:50 81920]
"AwaySch"="E:\Program Files\Lenovo\AwayTask\AwaySch.EXE" [2006-11-07 22:51 91688]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 03:56 110592 E:\WINDOWS\system32\bthprops.cpl]
E:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - E:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2008-04-23 06:38:16 29696]
Digital Line Detect.lnk - E:\Program Files\Digital Line Detect\DLG.exe [2008-06-08 10:07:25 50688]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ACNotify]
ACNotify.dll 2008-03-14 21:54 32768 E:\Program Files\ThinkPad\ConnectUtilities\ACNotify.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
E:\WINDOWS\system32\psqlpwd.dll 2007-08-14 18:54 89600 E:\WINDOWS\system32\psqlpwd.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpfnf2]
E:\Program Files\Lenovo\HOTKEY\notifyf2.dll 2006-09-06 19:37 34344 E:\Program Files\Lenovo\HOTKEY\notifyf2.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tphotkey]
E:\Program Files\Lenovo\HOTKEY\tphklock.dll 2007-12-14 19:36 28672 E:\Program Files\Lenovo\HOTKEY\tphklock.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"E:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"=
"E:\\Program Files\\Yahoo!\\Messenger\\YPager.exe"=
"E:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"E:\\Program Files\\AIM6\\aim6.exe"=
R0 Shockprf;Shockprf;E:\WINDOWS\system32\DRIVERS\Apsx86.sys [2007-10-16 21:33]
R0 TPDIGIMN;TPDIGIMN;E:\WINDOWS\system32\DRIVERS\ApsHM86.sys [2007-10-16 21:32]
R1 ANC;ANC;E:\WINDOWS\system32\drivers\ANC.SYS [2008-01-21 23:34]
R1 IBMTPCHK;IBMTPCHK;E:\WINDOWS\system32\Drivers\IBMBLDID.sys [2008-01-21 23:34]
R1 TPPWRIF;TPPWRIF;E:\WINDOWS\system32\drivers\Tppwrif.sys [2008-01-11 04:30]
R1 tvtumon;tvtumon;E:\WINDOWS\system32\DRIVERS\tvtumon.sys [2007-12-05 19:42]
R2 smihlp;SMI Helper Driver (smihlp);E:\Program Files\Common Files\ThinkVantage Fingerprint Software\Drivers\smihlp.sys [2007-08-14 18:46]
R2 TVT Backup Protection Service;TVT Backup Protection Service;"E:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe" [2007-12-05 20:17]
R2 TVT_UpdateMonitor;TVT Windows Update Monitor;E:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe [2007-12-05 19:42]
R2 Viewpoint Manager Service;Viewpoint Manager Service;"E:\Program Files\Viewpoint\Common\ViewpointService.exe" [2007-01-04 17:38]
R3 LenovoRd;LenovoRd;E:\WINDOWS\system32\Drivers\LenovoRd.sys [2007-06-08 12:36]
R3 TcUsb;TC USB Kernel Driver;E:\WINDOWS\system32\Drivers\tcusb.sys [2007-08-14 18:25]
R3 TVTI2C;Lenovo SM bus driver;E:\WINDOWS\system32\DRIVERS\Tvti2c.sys [2007-05-22 17:59]
R3 WSIMD;wsimd Service;E:\WINDOWS\system32\DRIVERS\wsimd.sys [2007-05-14 15:21]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\C]
\Shell\AutoRun\command - C:\f.bat
\Shell\explore\Command - C:\f.bat
\Shell\open\Command - C:\f.bat
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
\Shell\AutoRun\command - D:\f.bat
\Shell\explore\Command - D:\f.bat
\Shell\open\Command - D:\f.bat
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
\Shell\AutoRun\command - E:\f.bat
\Shell\explore\Command - E:\f.bat
\Shell\open\Command - E:\f.bat
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G]
\Shell\AutoRun\command - G:\f.bat
\Shell\explore\Command - G:\f.bat
\Shell\open\Command - G:\f.bat
.
Contents of the 'Scheduled Tasks' folder
"2008-06-08 19:26:21 E:\WINDOWS\Tasks\PMTask.job"
- E:\PROGRA~1\ThinkPad\UTILIT~1\PWMIDTSK.EXE
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-08 15:26:28
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\AOL\AOLDiag\AOL\IMAppServiceUSGM\Win32\6.5.12.1\000129ba.nub 190381 bytes
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\AOL OCP\AIM\Storage\data\mramanavarapu\localStorage\common.cls-journal 512 bytes
scan completed successfully
hidden files: 2
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
E:\WINDOWS\system32\ibmpmsvc.exe
E:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
E:\WINDOWS\system32\scardsvr.exe
E:\WINDOWS\system32\IPSSVC.EXE
E:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
E:\WINDOWS\system32\acs.exe
E:\Program Files\Intel\Wireless\Bin\EvtEng.exe
E:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
E:\Program Files\CyberLink\Shared Files\RichVideo.exe
E:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
E:\WINDOWS\system32\TPHDEXLG.exe
E:\WINDOWS\system32\TpKmpSvc.exe
E:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
E:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
E:\WINDOWS\system32\wdfmgr.exe
E:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
E:\Program Files\Lenovo\System Update\SUService.exe
E:\Program Files\Common Files\Lenovo\Logger\logmon.exe
E:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
E:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
E:\WINDOWS\system32\igfxsrvc.exe
E:\WINDOWS\system32\rundll32.exe
E:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
E:\Program Files\Lenovo\ZOOM\TpScrex.exe
E:\WINDOWS\system32\rundll32.exe
E:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
E:\Program Files\Common Files\AOL\Loader\aolload.exe
E:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
E:\Program Files\Yahoo!\Messenger\Ymsgr_tray.exe
.
**************************************************************************
.
Completion time: 2008-06-08 15:28:27 - machine was rebooted
ComboFix-quarantined-files.txt 2008-06-08 19:28:23
Pre-Run: 11,295,006,720 bytes free
Post-Run: 11,842,174,976 bytes free
313 --- E O F --- 2008-05-25 10:00:53
-------------------------------------------------------------------------------
here is log file from kaspersky onliune report.
-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Sunday, June 08, 2008 3:11:21 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 8/06/2008
Kaspersky Anti-Virus database records: 839572
-------------------------------------------------------------------------------
Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true
Scan Target - My Computer:
C:\
D:\
E:\
F:\
G:\
Scan Statistics:
Total number of scanned objects: 88500
Number of viruses found: 61
Number of infected objects: 520
Number of suspicious objects: 0
Duration of the scan process: 00:54:50
Infected Object Name / Virus Name / Last Action
C:\9f3np.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\cubp.bat Infected: Trojan.Win32.Vaklik.ano skipped
C:\ek.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\gabptk6d.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
C:\hovrflst.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\mayyuk9g.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\mrsne.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\qs6m.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001145.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001146.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001192.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001193.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001215.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001216.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001228.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001263.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001293.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001322.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001343.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0001391.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0002418.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0002440.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003043.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003950.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003983.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP16\A0004005.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004018.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004043.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004075.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004100.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0004110.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005128.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005164.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0006161.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0006173.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007160.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007204.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007229.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007254.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007289.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007318.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007351.bat Infected: Trojan.Win32.Vaklik.ano skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007441.bat Infected: Trojan.Win32.Vaklik.ano skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007458.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007488.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007521.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007538.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007563.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0007587.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0008563.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0008582.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009597.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009615.bat Infected: Trojan.Win32.Vaklik.apk skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009680.bat Infected: Trojan.Win32.Vaklik.arw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009713.bat Infected: Trojan.Win32.Vaklik.arw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009749.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009763.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009791.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009820.bat Infected: Trojan.Win32.Vaklik.asw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009836.bat Infected: Trojan.Win32.Vaklik.asw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009869.bat Infected: Trojan.Win32.Vaklik.asw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0009998.bat Infected: Trojan.Win32.Vaklik.asw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010130.bat Infected: Trojan.Win32.Vaklik.asw skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010162.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010210.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010237.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010273.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010289.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010309.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP36\A0010332.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP37\A0010360.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP38\A0010376.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010410.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010433.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000160.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000176.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010456.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010478.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP5\A0000196.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000226.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000281.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000314.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000315.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000385.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000386.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000420.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000421.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000436.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000437.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001102.bat Infected: Trojan.Win32.Vaklik.ajx skipped
C:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001103.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP2\A0000025.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP3\A0000037.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP4\A0000099.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP5\A0000137.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000153.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000216.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000232.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000252.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000268.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000303.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\tigi.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
C:\WINDOWS\system32\kavo.exe Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\WINDOWS\system32\kavo0.dll Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
C:\WINDOWS\system32\WinServices.exe Infected: Backdoor.Win32.Agent.anf skipped
C:\WINDOWS\Temp\r.dll Infected: Trojan-PSW.Win32.OnLineGames.zkd skipped
C:\WINDOWS\Temp\ra2m5a.dll Infected: Trojan-PSW.Win32.OnLineGames.nqk skipped
D:\9f3np.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\cubp.bat Infected: Trojan.Win32.Vaklik.ano skipped
D:\ek.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\gabptk6d.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
D:\hovrflst.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\mayyuk9g.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
D:\mrsne.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\qs6m.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001147.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001148.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001194.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001195.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001217.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001218.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001230.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001265.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001295.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001324.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001345.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0001393.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0002420.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0002442.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003045.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003952.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003985.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP16\A0004007.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004020.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004045.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004077.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004102.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0004112.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005130.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005166.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0006163.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0006175.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007206.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007231.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007256.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007291.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007320.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007353.bat Infected: Trojan.Win32.Vaklik.ano skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007443.bat Infected: Trojan.Win32.Vaklik.ano skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007460.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007490.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007523.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007540.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007565.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0007589.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0008565.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0008584.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009599.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009617.bat Infected: Trojan.Win32.Vaklik.apk skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009682.bat Infected: Trojan.Win32.Vaklik.arw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009715.bat Infected: Trojan.Win32.Vaklik.arw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009751.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009765.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009793.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009822.bat Infected: Trojan.Win32.Vaklik.asw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009838.bat Infected: Trojan.Win32.Vaklik.asw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009871.bat Infected: Trojan.Win32.Vaklik.asw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010001.bat Infected: Trojan.Win32.Vaklik.asw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010133.bat Infected: Trojan.Win32.Vaklik.asw skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010164.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010212.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010239.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010275.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010291.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010311.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP36\A0010334.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP37\A0010362.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP38\A0010378.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010412.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010435.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000162.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000178.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010458.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010480.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP5\A0000198.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000228.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000283.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000316.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000317.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000387.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000388.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000422.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000423.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000438.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000439.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001104.bat Infected: Trojan.Win32.Vaklik.ajx skipped
D:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001105.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP2\A0000027.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP3\A0000039.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP4\A0000101.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP5\A0000139.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000155.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000218.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP6\A0000234.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000254.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000270.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\System Volume Information\_restore{1DC8E012-D154-4F56-A102-1E6CD3D4D8FE}\RP7\A0000305.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
D:\tigi.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
E:\9f3np.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\cubp.bat Infected: Trojan.Win32.Vaklik.ano skipped
E:\Documents and Settings\JARIMAHI\Application Data\acccore\nss\cert8.db Object is locked skipped
E:\Documents and Settings\JARIMAHI\Application Data\acccore\nss\key3.db Object is locked skipped
E:\Documents and Settings\JARIMAHI\Cookies\index.dat Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\Ahead\Nero Home\bl.db Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\Ahead\Nero Home\is2.db Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\AOL OCP\AIM\Storage\All Users\localStorage\common.cls Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\AOL OCP\AIM\Storage\data\mramanavarapu\localStorage\common.cls Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\History\History.IE5\index.dat Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\History\History.IE5\MSHist012008060820080609\index.dat Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\ra2m5a.dll Infected: Trojan-PSW.Win32.OnLineGames.nqk skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru10.tmp Infected: Trojan-Dropper.Win32.Crypter.d skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru11.tmp Infected: Trojan-Dropper.Win32.Crypter.f skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru12.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajlx skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru13.tmp Infected: Trojan-Dropper.Win32.Crypter.f skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru14.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajlx skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru15.tmp Infected: Trojan-Dropper.Win32.Crypter.f skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru16.tmp Infected: Trojan-Dropper.Win32.Crypter.e skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru17.tmp Infected: Trojan-Dropper.Win32.Crypter.f skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru18.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajtv skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru19.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajtu skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1A.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajzb skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1B.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajzb skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1C.tmp Infected: Trojan-PSW.Win32.OnLineGames.akkj skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1D.tmp Infected: Trojan-PSW.Win32.OnLineGames.aksi skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1E.tmp Infected: Trojan-Dropper.Win32.Crypter.m skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru1F.tmp Infected: Trojan.Win32.Vaklik.aos skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru20.tmp Infected: Trojan.Win32.Vaklik.aov skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru21.tmp Infected: Trojan.Win32.Vaklik.api skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru22.tmp Infected: Trojan.Win32.Vaklik.apo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru23.tmp Infected: Trojan.Win32.Vaklik.apy skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru24.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru25.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru26.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru27.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru28.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru29.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2A.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2B.tmp Infected: Trojan-PSW.Win32.OnLineGames.anbs skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2C.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2D.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2E.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru2F.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru3.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru30.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru31.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru32.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru33.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru34.tmp Infected: Trojan-Dropper.Win32.Agent.sli skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru4.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru5.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru6.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru7.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru8.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\tru9.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truA.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truB.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truC.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truD.tmp Infected: Trojan-PSW.Win32.OnLineGames.ahbo skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truE.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajgt skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\truF.tmp Infected: Trojan-PSW.Win32.OnLineGames.ajgt skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temp\~DFB061.tmp Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temporary Internet Files\Content.IE5\K1CH6LIB\index[1] Infected: Packed.JS.Agent.d skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temporary Internet Files\Content.IE5\KBIJ4VAN\index[1] Infected: Packed.JS.Agent.d skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temporary Internet Files\Content.IE5\KBIJ4VAN\index[1].htm Infected: Packed.JS.Agent.d skipped
E:\Documents and Settings\JARIMAHI\Local Settings\Temporary Internet Files\Content.IE5\M5QPANCB\index[1] Infected: Packed.JS.Agent.d skipped
E:\Documents and Settings\JARIMAHI\NTUSER.DAT Object is locked skipped
E:\Documents and Settings\JARIMAHI\ntuser.dat.LOG Object is locked skipped
E:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
E:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
E:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
E:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
E:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped
E:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
E:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
E:\Documents and Settings\NetworkService\Local Settings\History\History.IE5\index.dat Object is locked skipped
E:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
E:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
E:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
E:\ek.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\gabptk6d.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
E:\hovrflst.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\mayyuk9g.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\mrsne.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\qs6m.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
E:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001149.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001150.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001187.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoy skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001188.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001196.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001197.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001200.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoy skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001213.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001219.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001220.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001223.exe Infected: Trojan-PSW.Win32.OnLineGames.aiwm skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001224.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001225.exe Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001226.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoy skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001232.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001257.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001267.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001271.exe Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001273.exe Infected: Trojan-PSW.Win32.OnLineGames.aixv skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001297.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001301.exe Infected: Trojan-PSW.Win32.OnLineGames.aixv skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001326.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001347.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001351.exe Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0001395.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0001399.exe Infected: Trojan-PSW.Win32.OnLineGames.aixv skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0002422.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0002427.exe Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0002444.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003047.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003051.exe Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003053.exe Infected: Trojan-PSW.Win32.OnLineGames.aixv skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003954.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003987.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003992.exe Infected: Trojan-PSW.Win32.Magania.qlf skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003994.exe Infected: Trojan-PSW.Win32.OnLineGames.ajgo skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP16\A0004009.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004022.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004047.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004052.exe Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004054.exe Infected: Trojan.Win32.Vaklik.ali skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004079.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004104.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0004114.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0005110.exe Infected: Trojan-PSW.Win32.Magania.qlk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0005112.exe Infected: Trojan.Win32.Vaklik.ali skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005132.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005168.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005173.exe Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0006157.dll Infected: Trojan-PSW.Win32.OnLineGames.akjw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0006165.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0006177.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007157.dll Infected: Trojan-PSW.Win32.OnLineGames.akjw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007168.exe Infected: Trojan.Win32.Vaklik.alw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007169.dll Infected: Trojan-PSW.Win32.OnLineGames.akjw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007170.exe Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007208.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007214.exe Infected: Trojan-PSW.Win32.OnLineGames.ajxr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007216.exe Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007233.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007258.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007264.exe Infected: Trojan.Win32.Vaklik.amg skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007266.exe Infected: Trojan-PSW.Win32.Magania.raa skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007293.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007322.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007328.exe Infected: Trojan-PSW.Win32.Magania.rgi skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007355.bat Infected: Trojan.Win32.Vaklik.ano skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007445.bat Infected: Trojan.Win32.Vaklik.ano skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007450.exe Infected: Trojan.Win32.Vaklik.anj skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007452.exe Infected: Trojan.Win32.Vaklik.ano skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007462.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007492.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007497.exe Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007525.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007529.exe Infected: Trojan-PSW.Win32.OnLineGames.aljz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007542.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007567.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007573.exe Infected: Trojan-PSW.Win32.OnLineGames.alra skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0007591.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0008586.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009561.dll Infected: Trojan-PSW.Win32.OnLineGames.amkw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009574.exe Infected: Trojan-PSW.Win32.OnLineGames.alre skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009575.dll Infected: Trojan-PSW.Win32.OnLineGames.amkw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009595.dll Infected: Trojan-PSW.Win32.OnLineGames.amkw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009601.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009619.bat Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009636.exe Infected: Trojan.Win32.Vaklik.apk skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009638.exe Infected: Trojan-PSW.Win32.OnLineGames.amqm skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009658.exe Infected: Trojan.Win32.Vaklik.arw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009660.exe Infected: Trojan-PSW.Win32.OnLineGames.amxh skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009684.bat Infected: Trojan.Win32.Vaklik.arw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009689.exe Infected: Trojan.Win32.Vaklik.arw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009717.bat Infected: Trojan.Win32.Vaklik.arw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009722.exe Infected: Trojan-PSW.Win32.OnLineGames.amxh skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009724.exe Infected: Trojan.Win32.Vaklik.arw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009753.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009767.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009788.dll Infected: Trojan-PSW.Win32.OnLineGames.adrn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009795.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009799.exe Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009800.dll Infected: Trojan-PSW.Win32.OnLineGames.adrn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009801.exe Infected: Trojan-PSW.Win32.OnLineGames.anee skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009819.dll Infected: Trojan-PSW.Win32.OnLineGames.adrn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009824.bat Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009840.bat Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009873.bat Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010004.bat Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010136.bat Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010140.exe Infected: Trojan-PSW.Win32.OnLineGames.anki skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010141.exe Infected: Trojan.Win32.Vaklik.asw skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010166.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010214.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010241.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010245.exe Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010247.exe Infected: Trojan-PSW.Win32.OnLineGames.antr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010277.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010283.exe Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010293.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010313.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010319.exe Infected: Trojan-PSW.Win32.OnLineGames.antr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010320.exe Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP36\A0010336.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP37\A0010364.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP38\A0010380.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010414.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010437.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000164.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000175.dll Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000180.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010460.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010482.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010490.exe Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010492.exe Infected: Trojan-PSW.Win32.OnLineGames.antr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010493.exe Infected: Trojan-PSW.Win32.OnLineGames.antr skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP5\A0000200.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000230.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000274.dll Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000285.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000289.exe Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP60\change.log Object is locked skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000318.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000319.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000389.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000390.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000403.dll Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000404.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000424.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000425.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000428.exe Infected: Trojan-PSW.Win32.OnLineGames.aiwm skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000429.exe Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000430.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoy skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000440.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000441.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001094.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001106.bat Infected: Trojan.Win32.Vaklik.ajx skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001107.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001110.exe Infected: Trojan-PSW.Win32.OnLineGames.aiwm skipped
E:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001111.dll Infected: Trojan-PSW.Win32.OnLineGames.ajoz skipped
E:\tigi.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
E:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
E:\WINDOWS\SchedLgU.Txt Object is locked skipped
E:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
E:\WINDOWS\Sti_Trace.log Object is locked skipped
E:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
E:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
E:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
E:\WINDOWS\system32\config\default Object is locked skipped
E:\WINDOWS\system32\config\default.LOG Object is locked skipped
E:\WINDOWS\system32\config\SAM Object is locked skipped
E:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
E:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
E:\WINDOWS\system32\config\SECURITY Object is locked skipped
E:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
E:\WINDOWS\system32\config\software Object is locked skipped
E:\WINDOWS\system32\config\software.LOG Object is locked skipped
E:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
E:\WINDOWS\system32\config\system Object is locked skipped
E:\WINDOWS\system32\config\system.LOG Object is locked skipped
E:\WINDOWS\system32\h323log.txt Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
E:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
E:\WINDOWS\wiadebug.log Object is locked skipped
E:\WINDOWS\wiaservc.log Object is locked skipped
E:\WINDOWS\WindowsUpdate.log Object is locked skipped
G:\9f3np.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\cubp.bat Infected: Trojan.Win32.Vaklik.ano skipped
G:\ek.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
G:\gabptk6d.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
G:\hovrflst.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\mayyuk9g.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
G:\mrsne.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\qs6m.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
G:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001151.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001152.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001198.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001199.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001221.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP10\A0001222.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001234.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001269.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP11\A0001299.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001328.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP12\A0001349.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0001397.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP13\A0002424.bat Infected: Trojan-PSW.Win32.OnLineGames.aiym skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0002446.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP14\A0003049.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003956.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP15\A0003989.bat Infected: Trojan-PSW.Win32.Magania.qlf skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP16\A0004011.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004024.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004049.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004081.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP18\A0004106.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP19\A0004116.bat Infected: Trojan-PSW.Win32.Magania.qlk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005134.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0005170.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP20\A0006167.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0006179.bat Infected: Trojan-PSW.Win32.OnLineGames.ajvr skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP21\A0007210.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007235.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP22\A0007260.bat Infected: Trojan-PSW.Win32.Magania.raa skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007295.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP23\A0007324.bat Infected: Trojan-PSW.Win32.Magania.rgi skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007357.bat Infected: Trojan.Win32.Vaklik.ano skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP24\A0007447.bat Infected: Trojan.Win32.Vaklik.ano skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007464.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007494.bat Infected: Trojan-PSW.Win32.OnLineGames.aljc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP25\A0007527.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007544.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP26\A0007569.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP27\A0007593.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0008588.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP28\A0009603.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009621.bat Infected: Trojan.Win32.Vaklik.apk skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009686.bat Infected: Trojan.Win32.Vaklik.arw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009719.bat Infected: Trojan.Win32.Vaklik.arw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP29\A0009755.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009769.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009797.bat Infected: Trojan-PSW.Win32.OnLineGames.ango skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP30\A0009826.bat Infected: Trojan.Win32.Vaklik.asw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009842.bat Infected: Trojan.Win32.Vaklik.asw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP31\A0009875.bat Infected: Trojan.Win32.Vaklik.asw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010007.bat Infected: Trojan.Win32.Vaklik.asw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP32\A0010138.bat Infected: Trojan.Win32.Vaklik.asw skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010168.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010216.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010243.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP33\A0010279.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010295.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP35\A0010315.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP36\A0010338.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP37\A0010366.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP38\A0010382.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010416.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP39\A0010439.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP4\A0000182.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010462.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP40\A0010484.bat Infected: Trojan-PSW.Win32.OnLineGames.anrc skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP5\A0000202.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000232.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP6\A0000287.com Infected: Trojan-PSW.Win32.OnLineGames.nvn skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000320.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP7\A0000322.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000391.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000392.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000426.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP8\A0000427.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000442.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0000443.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001108.bat Infected: Trojan.Win32.Vaklik.ajx skipped
G:\System Volume Information\_restore{1020F6F6-1837-477C-AD53-13E88D254103}\RP9\A0001109.inf Infected: Trojan-PSW.Win32.OnLineGames.ahev skipped
G:\tigi.cmd Infected: Trojan-PSW.Win32.OnLineGames.ajuj skipped
Scan process completed.