Thread: Computer running very slow. Possible worm?
View Single Post
Old 05-05-2007, 12:01 PM   #8 (permalink)
exviper99
Registered User
 
Join Date: Mar 2007
Posts: 17
OS: xp


Re: Computer running very slow. Possible worm?
Logfile of HijackThis v1.99.1
Scan saved at 1:58:00 PM, on 5/5/2007
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Documents and Settings\Mikey\Desktop\Exec\hijackthis\HijackThis.exe

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://quartz.atkinson.yorku.ca/qp2.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/par...an_unicode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by103fd.bay103.hotmail.msn.co...s/MsnPUpld.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/06d8536b...p/RdxIE601.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/...toUploader.cab
O16 - DPF: {8CE3BAE6-AB66-40B6-9019-41E5282FF1E2} (QuickBooks Online Edition Utilities Class v8) - https://accounting.quickbooks.com/c1/v15.582/qboax8.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/Ms...Downloader.cab
O16 - DPF: {F127B9BA-89EA-4B04-9C67-2074A9DF61FD} (Photo Upload Plugin Class) - http://blacks.pnimedia.com/upload/ac...pv2.0.0.9.cab?
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Saturday, May 05, 2007 1:56:34 PM
Operating System: Microsoft Windows XP Professional, (Build 2600)
Kaspersky Online Scanner version: 5.0.83.0
Kaspersky Anti-Virus database last update: 5/05/2007
Kaspersky Anti-Virus database records: 313377
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\
E:\

Scan Statistics:
Total number of scanned objects: 76409
Number of viruses found: 35
Number of infected objects: 168 / 0
Number of suspicious objects: 0
Duration of the scan process: 02:50:23

Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\Leo H\Local Settings\Temporary Internet Files\Content.IE5\WTEBG163\PopularScreenSaversFWBInitialSetup1.0.0.15[1].cab/f3Setup1.exe Infected: not-a-virus:AdTool.Win32.MyWebSearch.aw skipped
C:\Documents and Settings\Leo H\Local Settings\Temporary Internet Files\Content.IE5\WTEBG163\PopularScreenSaversFWBInitialSetup1.0.0.15[1].cab CAB: infected - 1 skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Mikey\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Mikey\Desktop\Exec\hijackthis\backups\backup-20070405-000156-104.dll Infected: Trojan-Spy.Win32.BZub.ik skipped
C:\Documents and Settings\Mikey\Desktop\requested-files[2007-05-05_02_21].cab/C:/WINDOWS/system32/drvstat.dll Infected: Email-Worm.Win32.Warezov.nl skipped
C:\Documents and Settings\Mikey\Desktop\requested-files[2007-05-05_02_21].cab/C:/WINDOWS/system32/ldfksdioduihj.dll Infected: Trojan-Downloader.Win32.Small.ddx skipped
C:\Documents and Settings\Mikey\Desktop\requested-files[2007-05-05_02_21].cab/C:/WINDOWS/system32/drvprf32.dll Infected: Email-Worm.Win32.Warezov.nl skipped
C:\Documents and Settings\Mikey\Desktop\requested-files[2007-05-05_02_21].cab/C:/WINDOWS/system32/svehost.exe Infected: Trojan.Win32.Agent.kq skipped
C:\Documents and Settings\Mikey\Desktop\requested-files[2007-05-05_02_21].cab/C:/WINDOWS/system32/mujyifrj.dll Infected: Trojan.Win32.Delf.zj skipped
C:\Documents and Settings\Mikey\Desktop\requested-files[2007-05-05_02_21].cab CAB: infected - 5 skipped
C:\Documents and Settings\Mikey\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Mikey\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Mikey\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Mikey\Local Settings\History\History.IE5\MSHist012007050520070506\index.dat Object is locked skipped
C:\Documents and Settings\Mikey\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Mikey\ntuser.dat Object is locked skipped
C:\Documents and Settings\Mikey\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Mikey\UserData\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\cicpvscm.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\dqvnnxio.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\drivers\ndis.sys.vir/EXE-file Infected: SpamTool.Win32.Agent.u skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\drivers\ndis.sys.vir Embedded EXE: infected - 1 skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ebctffjb.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\frikucev.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.hb skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\hmfcgjdk.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\iekxiiai.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\irzzhnt.dll.vir Infected: Trojan.Win32.Agent.afg skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\kdtpr.exe.vir Infected: Trojan.Win32.DNSChanger.hg skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\l.dll.vir Infected: Trojan.Win32.Agent.afg skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\lqdpfddm.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\osafpjfe.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\piweapeb.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\qdimnyln.dll.vir Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\qlf.dll.vir Infected: Trojan.Win32.Agent.afg skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\rpcc1.dll.vir Infected: Trojan-Proxy.Win32.Dlena.cp skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\tuvnaeie.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\vtuts.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.iy skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\winlogon.exe.vir Infected: Trojan.Win32.Patched.m skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\winupd_KB44105752.exe.vir Infected: Trojan-Downloader.Win32.Agent.bnr skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\winupd_KB57455861.exe.vir Infected: SpamTool.Win32.Agent.u skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\winupd_KB80286011.exe.vir Infected: Trojan-Downloader.Win32.Agent.bnr skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\winupd_KB90188820.exe.vir/script.au3 Infected: Trojan-Downloader.Win32.AutoIt.k skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\winupd_KB90188820.exe.vir AutoIt: infected - 1 skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\winupd_KB90188820.exe.vir UPX: infected - 1 skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\winupd_KB90188820.exe.vir PE_Patch.UPX: infected - 1 skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\winupd_KB91028387.exe.vir Infected: Trojan-Proxy.Win32.Agent.lp skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\winupd_KB92380205.exe.vir Infected: Trojan-Proxy.Win32.Agent.lp skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\wrxqmpbe.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\xujig.dll.vir Infected: Trojan.Win32.Agent.afg skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\xziex.dll.vir Infected: Backdoor.Win32.Agent.adr skipped
C:\QooBox\Quarantine\catchme2007-05-04_143325.03.zip/gqbrirkr.sys Infected: Trojan.Win32.Delf.zj skipped
C:\QooBox\Quarantine\catchme2007-05-04_143325.03.zip/dkkbdkk.dll Infected: Trojan-Clicker.Win32.Delf.hi skipped
C:\QooBox\Quarantine\catchme2007-05-04_143325.03.zip ZIP: infected - 2 skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP10\A0006835.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP10\A0006848.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP11\A0006864.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP11\A0007864.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP11\A0008864.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP12\A0009462.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP12\A0009486.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP13\A0009503.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP14\A0009530.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP14\A0009543.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP15\A0010543.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP16\A0010598.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP16\A0011598.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP16\A0011604.sys Infected: Rootkit.Win32.Agent.fa skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP18\A0012629.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP18\A0012647.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP19\A0012741.dll Infected: Trojan-Spy.Win32.BZub.ik skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP20\A0012788.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP21\A0012897.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP22\A0012934.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP26\A0013114.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP27\A0013177.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP28\A0013226.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP28\A0013237.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP29\A0013261.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP30\A0013271.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP31\A0014297.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP32\A0014317.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP32\A0014327.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP32\A0016353.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP33\A0018365.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP34\A0018404.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP35\A0019413.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP36\A0020438.dll Infected: Trojan.Win32.Delf.zj skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP37\A0020450.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP38\A0021466.dll Infected: Trojan-Clicker.Win32.Delf.hi skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP40\A0024476.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP41\A0024498.dll Infected: Trojan.Win32.Delf.zj skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP41\A0024499.dll Infected: Trojan.Win32.Delf.zj skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP41\A0026532.dll Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP42\A0026566.exe Infected: SpamTool.Win32.Agent.u skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP42\A0026571.exe Infected: Trojan.Win32.Agent.kq skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP43\A0026599.exe Infected: SpamTool.Win32.Agent.u skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP43\A0026604.exe Infected: Trojan.Win32.Agent.kq skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP43\A0027611.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0027643.exe Infected: SpamTool.Win32.Agent.u skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0027648.exe Infected: Trojan.Win32.Agent.kq skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0027662.exe Infected: not-virus:Hoax.Win32.Renos.fi skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0028655.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0028673.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0028674.dll Infected: Email-Worm.Win32.Warezov.nl skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0028675.dll Infected: Email-Worm.Win32.Warezov.nl skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0028683.exe/stream/data0001/01.exe Infected: Trojan.Win32.DNSChanger.hg skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0028683.exe/stream/data0001 Infected: Trojan.Win32.DNSChanger.hg skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0028683.exe/stream Infected: Trojan.Win32.DNSChanger.hg skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0028683.exe NSIS: infected - 3 skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP44\A0028684.exe Infected: not-virus:Hoax.Win32.Renos.fi skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP45\A0028731.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP45\A0029731.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP45\A0030731.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0030767.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0031767.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0032767.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0032777.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033801.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033811.exe Infected: Trojan-Proxy.Win32.Xorpix.ar skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033812.exe Infected: Trojan-Proxy.Win32.Xorpix.ar skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033813.exe Infected: Trojan-Downloader.Win32.Small.ddp skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033814.dll Infected: Trojan-Spy.Win32.BZub.hx skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033815.dll Infected: Trojan-Spy.Win32.BZub.hx skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033816.exe Infected: Trojan.Win32.Pakes skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033817.exe Infected: Trojan.Win32.Pakes skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033818.dll Infected: Trojan.Win32.Pakes skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033820.exe Infected: Trojan-Downloader.Win32.Agent.bnf skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033821.exe Infected: Trojan-Downloader.Win32.Tiny.eu skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033822.exe Infected: Trojan-Downloader.Win32.Tiny.eu skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033823.exe Infected: Trojan-Downloader.Win32.Tiny.eu skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033824.exe Infected: Email-Worm.Win32.Warezov.jp skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033826.exe Infected: Trojan-Spy.Win32.BZub.hl skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033827.exe Infected: Trojan-Downloader.Win32.Small.eio skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033828.exe Infected: Trojan-Downloader.Win32.Small.eio skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033829.exe Infected: Backdoor.Win32.Small.na skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0033832.exe Infected: not-a-virus:AdWare.Win32.Trymedia.b skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041877.exe Infected: Trojan-Downloader.Win32.Agent.bnr skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041878.exe Infected: SpamTool.Win32.Agent.u skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041879.exe Infected: Trojan-Downloader.Win32.Agent.bnr skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041880.exe/script.au3 Infected: Trojan-Downloader.Win32.AutoIt.k skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041880.exe AutoIt: infected - 1 skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041880.exe UPX: infected - 1 skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041880.exe PE_Patch.UPX: infected - 1 skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041881.exe Infected: Trojan-Proxy.Win32.Agent.lp skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041882.exe Infected: Trojan-Proxy.Win32.Agent.lp skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041883.dll Infected: Backdoor.Win32.Agent.adr skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041886.dll Infected: Trojan.Win32.Agent.afg skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041887.dll Infected: Trojan.Win32.Agent.afg skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041888.dll Infected: Trojan.Win32.Agent.afg skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041889.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041890.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041891.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041892.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.hb skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041893.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041894.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041895.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041896.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041897.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041898.dll Infected: Trojan-Spy.Win32.VBStat.h skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041900.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041901.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.ir skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041907.dll Infected: Trojan-Proxy.Win32.Dlena.cp skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041908.sys/EXE-file Infected: SpamTool.Win32.Agent.u skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041908.sys Embedded EXE: infected - 1 skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041910.exe Infected: Trojan.Win32.Patched.m skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP46\A0041911.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.iy skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP5\A0001348.exe Infected: Trojan.Win32.Patched.g skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP5\A0002348.exe Infected: Trojan.Win32.Patched.g skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP50\A0043131.exe Infected: Trojan.Win32.DNSChanger.hg skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP52\A0043280.dll Infected: Email-Worm.Win32.Warezov.nl skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP52\A0043282.dll Infected: Email-Worm.Win32.Warezov.nl skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP52\A0043283.dll Infected: Trojan-Downloader.Win32.Small.ddx skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP52\A0043284.dll Infected: Email-Worm.Win32.Warezov.nl skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP52\A0043286.dll Infected: Trojan.Win32.Delf.zj skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP52\change.log Object is locked skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP6\A0004348.exe Infected: Trojan.Win32.Patched.g skipped
C:\System Volume Information\_restore{038F3331-9F23-4504-808E-53FCE2E22D15}\RP7\A0006379.exe Infected: Trojan.Win32.Patched.m skipped
C:\WINDOWS\Debug\oakley.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{C9499127-F7FE-46CE-8536-92037ECCE9E7}.bin Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat Object is locked skipped
C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\lpt2.lla Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\ukjka1.dll Infected: not-a-virus:AdWare.Win32.LinkOptimizer.a skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped

Scan process completed.
exviper99 is offline