------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER REPORT 2008-06-05 09:25 Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600) Kaspersky Online Scanner version: 5.0.98.0 Kaspersky Anti-Virus database last update: 4/06/2008 Kaspersky Anti-Virus database records: 828742 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: extended Scan Archives: true Scan Mail Bases: true Scan Target - My Computer: C:\ D:\ E:\ Scan Statistics: Total number of scanned objects: 122129 Number of viruses found: 36 Number of infected objects: 81 Number of suspicious objects: 0 Duration of the scan process: 03:43:13 Infected Object Name / Virus Name / Last Action C:\2fbaf4e2852c50572d7c2fa818d3274c\%temp%dd_msxml_retMSI.txt Object is locked skipped C:\Documents and Settings\All Users\Application Data\McAfee\Common Framework\Db\Agent_NIKS.log Object is locked skipped C:\Documents and Settings\All Users\Application Data\McAfee\Common Framework\Db\PrdMgr_NIKS.log Object is locked skipped C:\Documents and Settings\All Users\Application Data\McAfee\DesktopProtection\AccessProtectionLog.txt Object is locked skipped C:\Documents and Settings\All Users\Application Data\McAfee\DesktopProtection\BufferOverflowProtectionLog.txt Object is locked skipped C:\Documents and Settings\All Users\Application Data\McAfee\DesktopProtection\EmailOnDeliveryLog.txt Object is locked skipped C:\Documents and Settings\All Users\Application Data\McAfee\DesktopProtection\OnAccessScanLog.txt Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\GatherLogs\SystemIndex\SystemIndex.27.Crwl Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\GatherLogs\SystemIndex\SystemIndex.27.gthr Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\MSS.log Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\MSStmp.log Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010001.wid Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010002.wid Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010003.wid Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010004.wid Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010005.wid Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000F.wid Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010010.wid Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010028.ci Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010028.wid Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010028.wsb Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\INDEX.000 Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\CiPT0000.000 Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\Used0000.000 Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SecStore\CiST0000.000 Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.chk1.gthr Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.chk2.gthr Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.Ntfy39.gthr Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\tmp.edb Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\Windows.edb Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Temp\usgthrsvc\Ntf1.tmp Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Temp\usgthrsvc\Ntf2.tmp Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Temp\usgthrsvc\Perflib_Perfdata_548.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Apple Computer\Safari\PubSub\Database\Database.sqlite3 Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Microsoft\Outlook\Outlook.NK2 Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Microsoft\Outlook\Outlook.srs Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Microsoft\Templates\NormalEmail.dotm Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\cert8.db Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\formhistory.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\history.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\key3.db Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\parent.lock Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\search.sqlite Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\urlclassifier2.sqlite Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\DM_log.txt Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\SpecificSCOM_log.txt Object is locked skipped C:\Documents and Settings\chitnis_n\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\SpecificUSB_log.txt Object is locked skipped C:\Documents and Settings\chitnis_n\Cookies\index.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Adobe\Acrobat\8.0\Updater\updater.log Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Adobe\Updater5\aumLib.log Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Apple Computer\Safari\Cache.db Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Apple Computer\Safari\WebpageIcons.db Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Microsoft\CardSpace\CardSpace.db Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Microsoft\CardSpace\CardSpace.db.shadow Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\Cache\_CACHE_001_ Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\Cache\_CACHE_002_ Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\Cache\_CACHE_003_ Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\Cache\_CACHE_MAP_ Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Mozilla\Firefox\Profiles\laywqpet.default\XUL.mfl Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Application Data\Yahoo\Y!Msgr\merlin.log Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\History\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\History\History.IE5\MSHist012008060420080605\index.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temp\ExchangePerflog_8484fa31291a986ecfcccd43.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temp\hsperfdata_chitnis_n\2580 Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temp\lilo2 Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temp\lilo3 Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temp\NAILogs\UpdaterUI_NIKS.log Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temp\Perflib_Perfdata_ad4.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temp\~DF11A3.tmp Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temp\~DF11B5.tmp Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temporary Internet Files\Content.Word\~WRF{5D45CDD2-576B-4A1A-B4E6-75DA6445DDB8}.tmp Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temporary Internet Files\Content.Word\~WRS{200EA300-11C4-483A-8C68-5F3E6EA2D35B}.tmp Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temporary Internet Files\Content.Word\~WRS{566C4BF3-A6C5-48D4-A9A8-470C0FAFA447}.tmp Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temporary Internet Files\Content.Word\~WRS{B5BD47F6-0E28-4086-9726-E5D46B572E3B}.tmp Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temporary Internet Files\Content.Word\~WRS{BFA18E0A-D9F2-4F40-9DA6-12544DB101C7}.tmp Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temporary Internet Files\Content.Word\~WRS{ECE0F45A-9AF9-48AF-BD00-444309B3E7EC}.tmp Object is locked skipped C:\Documents and Settings\chitnis_n\Local Settings\Temporary Internet Files\Content.Word\~WRS{F7697279-0C57-4FCD-8102-239B75C0BD26}.tmp Object is locked skipped C:\Documents and Settings\chitnis_n\NTUSER.DAT Object is locked skipped C:\Documents and Settings\chitnis_n\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\chitnis_n\workspace\.metadata\.lock Object is locked skipped C:\Documents and Settings\chitnis_n\workspace\.metadata\.plugins\com.aptana.rdt\gems\1211175043542\local_listing.txt Object is locked skipped C:\Documents and Settings\chitnis_n\workspace\.metadata\.plugins\com.aptana.rdt\gems\1211175043542\version.txt Object is locked skipped C:\Documents and Settings\chitnis_n\workspace\.metadata\.plugins\com.aptana.rdt\sources_list.txt Object is locked skipped C:\Documents and Settings\chitnis_n\workspace\.metadata\.plugins\org.eclipse.rse.core\.log Object is locked skipped C:\Documents and Settings\chitnis_n\workspace\.metadata\.plugins\org.eclipse.rse.logging\.log Object is locked skipped C:\Documents and Settings\chitnis_n\workspace\.metadata\.plugins\org.eclipse.rse.ui\.log Object is locked skipped C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Desktop Search\Logs\UNCFATPHLog.txt Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped C:\Program Files\Eclipse\aptanaDB\db.lck Object is locked skipped C:\Program Files\Eclipse\aptanaDB\log\log1.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c10.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c121.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c20.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c290.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c2c1.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c2d0.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c2e1.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c300.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c51.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c60.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c71.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\c90.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\ca1.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\cc0.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\cd1.dat Object is locked skipped C:\Program Files\Eclipse\aptanaDB\seg0\cf0.dat Object is locked skipped C:\Program Files\Eclipse\configuration\org.eclipse.core.runtime\.manager\.tmp59953.instance Object is locked skipped C:\Program Files\Eclipse\configuration\org.eclipse.equinox.app\.manager\.tmp59954.instance Object is locked skipped C:\Program Files\Eclipse\configuration\org.eclipse.osgi\.manager\.tmp59952.instance Object is locked skipped C:\Program Files\Eclipse\derby.log Object is locked skipped C:\Program Files\RealVNC\VNC4\vncconfig.exe Infected: not-a-virus:RemoteAdmin.Win32.WinVNC.4 skipped C:\Program Files\RealVNC\VNC4\vncviewer.exe Infected: not-a-virus:RemoteAdmin.Win32.WinVNC.4 skipped C:\Program Files\RealVNC\VNC4\winvnc4.exe Infected: not-a-virus:RemoteAdmin.Win32.WinVNC.4 skipped C:\Program Files\RealVNC\VNC4\wm_hooks.dll Infected: not-a-virus:RemoteAdmin.Win32.WinVNC.4 skipped C:\Program Files\Yahoo!\Messenger\logs\billing_chitnis_n.log Object is locked skipped C:\Program Files\Yahoo!\Messenger\logs\client_chitnis_n.log Object is locked skipped C:\Program Files\Yahoo!\Messenger\logs\network_chitnis_n.log Object is locked skipped C:\Program Files\Yahoo!\Messenger\logs\performance_build_907.log Object is locked skipped C:\Program Files\Yahoo!\Messenger\logs\voice_chitnis_n_0.log Object is locked skipped C:\Program Files\Yahoo!\Messenger\logs\ycp_chitnis_n.log Object is locked skipped C:\QooBox\Quarantine\C\WINDOWS\system32\cmrwjxcc.dll.vir Infected: Trojan.Win32.Monder.io skipped C:\QooBox\Quarantine\C\WINDOWS\system32\cvvdpxct.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\C\WINDOWS\system32\fvuewhjq.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\C\WINDOWS\system32\hnlvossf.dll.vir Infected: Trojan.Win32.Monder.gz skipped C:\QooBox\Quarantine\C\WINDOWS\system32\kptxlbbx.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\C\WINDOWS\system32\pydkwhhy.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\C\WINDOWS\system32\qnffwyyr.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\C\WINDOWS\system32\qsvehnga.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\C\WINDOWS\system32\qtugmsnr.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\C\WINDOWS\system32\rbghhcus.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\C\WINDOWS\system32\tkerovks.dll.vir Infected: Trojan.Win32.KillAV.rf skipped C:\QooBox\Quarantine\C\WINDOWS\system32\ujwbyihh.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\C\WINDOWS\system32\vftballo.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.tsr skipped C:\QooBox\Quarantine\C\WINDOWS\system32\wqgjicsc.dll.vir Infected: not-a-virus:AdWare.Win32.SuperJuan.bfj skipped C:\QooBox\Quarantine\C\WINDOWS\system32\xoppxoin.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\C\WINDOWS\system32\ydvjsdkx.dll.vir Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\catchme2008-06-04_131335.14.zip/aWOhGaAq.dll Infected: Trojan.Win32.Monder.gen skipped C:\QooBox\Quarantine\catchme2008-06-04_131335.14.zip ZIP: infected - 1 skipped C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP58\A0015066.dll Infected: Trojan.Win32.Monder.fc skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP59\A0016189.dll Infected: Trojan.Win32.Monder.ha skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP61\A0017222.dll Infected: Trojan.Win32.Monder.il skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP61\A0017297.dll Infected: Trojan.Win32.Monder.ix skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP61\A0017298.dll Infected: Trojan.Win32.Monder.iw skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP61\A0017455.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.tsq skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP61\A0017456.dll Infected: Trojan.Win32.Monder.kg skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP62\A0017601.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.tsp skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP64\A0017825.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP64\A0017826.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP64\A0017858.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.tsg skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP64\A0017913.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.tsf skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP65\A0018091.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.tsw skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP65\A0018092.dll Infected: Trojan.Win32.Monder.kh skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP66\A0018315.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.vln skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP66\A0018316.dll Infected: Trojan.Win32.Monder.la skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP66\A0018894.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.vpc skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP66\A0018895.dll Infected: Trojan.Win32.Monder.lb skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP67\A0018999.dll Infected: Trojan.Win32.Monder.lh skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP68\A0020041.dll Infected: Trojan.Win32.Monder.ma skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP68\A0020042.dll Infected: Trojan.Win32.Monder.lo skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP69\A0020191.dll Infected: Trojan.Win32.Monder.mj skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP69\A0020192.dll Infected: Trojan.Win32.Monder.mg skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020537.dll Infected: Trojan.Win32.KillAV.rf skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020539.dll Infected: Trojan.Win32.Monder.io skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020540.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020541.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020543.dll Infected: Trojan.Win32.Monder.gz skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020544.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020546.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020547.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020548.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020549.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020550.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020551.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020552.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.tsr skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020554.dll Infected: not-a-virus:AdWare.Win32.SuperJuan.bfj skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020555.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\A0020558.dll Infected: Trojan.Win32.Monder.gen skipped C:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\change.log Object is locked skipped C:\WINDOWS\CSC\00000001 Object is locked skipped C:\WINDOWS\Debug\Netlogon.log Object is locked skipped C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped C:\WINDOWS\SchedLgU.Txt Object is locked skipped C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\default Object is locked skipped C:\WINDOWS\system32\config\default.LOG Object is locked skipped C:\WINDOWS\system32\config\Internet.evt Object is locked skipped C:\WINDOWS\system32\config\ODiag.evt Object is locked skipped C:\WINDOWS\system32\config\OSession.evt Object is locked skipped C:\WINDOWS\system32\config\SAM Object is locked skipped C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\SECURITY Object is locked skipped C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped C:\WINDOWS\system32\config\software Object is locked skipped C:\WINDOWS\system32\config\software.LOG Object is locked skipped C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\system Object is locked skipped C:\WINDOWS\system32\config\system.LOG Object is locked skipped C:\WINDOWS\system32\h323log.txt Object is locked skipped C:\WINDOWS\system32\LogFiles\W3SVC1\ex080604.log Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped C:\WINDOWS\WindowsUpdate.log Object is locked skipped D:\Niks\NiksArea\Utils\Other Utils\Desktop Clocks\FlyakiteOSXv3.5.exe/stream/data0023 Infected: not-a-virus:RiskTool.Win32.WFPDisabler.a skipped D:\Niks\NiksArea\Utils\Other Utils\Desktop Clocks\FlyakiteOSXv3.5.exe/stream Infected: not-a-virus:RiskTool.Win32.WFPDisabler.a skipped D:\Niks\NiksArea\Utils\Other Utils\Desktop Clocks\FlyakiteOSXv3.5.exe NSIS: infected - 2 skipped D:\Niks\NiksArea\Utils\Other Utils\PDF\CutePDFWriter\CuteComp.exe/file21 Infected: not-a-virus:AdTool.Win32.WhenU.a skipped D:\Niks\NiksArea\Utils\Other Utils\PDF\CutePDFWriter\CuteComp.exe Inno: infected - 1 skipped D:\Niks\NiksArea\Utils\Other Utils\PDF\SacnToPdf\Scan.to.PDF.v3.2.0.6.Incl.Keygen.Lz0.zip/Scan.to.PDF.v3.2.0.6.Incl.Keygen-Lz0/setup.exe/data0007/data0002 Infected: not-a-virus:AdWare.Win32.PurityScan.fk skipped D:\Niks\NiksArea\Utils\Other Utils\PDF\SacnToPdf\Scan.to.PDF.v3.2.0.6.Incl.Keygen.Lz0.zip/Scan.to.PDF.v3.2.0.6.Incl.Keygen-Lz0/setup.exe/data0007 Infected: not-a-virus:AdWare.Win32.PurityScan.fk skipped D:\Niks\NiksArea\Utils\Other Utils\PDF\SacnToPdf\Scan.to.PDF.v3.2.0.6.Incl.Keygen.Lz0.zip/Scan.to.PDF.v3.2.0.6.Incl.Keygen-Lz0/setup.exe/data0008 Infected: Trojan-Downloader.Win32.Agent.hjs skipped D:\Niks\NiksArea\Utils\Other Utils\PDF\SacnToPdf\Scan.to.PDF.v3.2.0.6.Incl.Keygen.Lz0.zip/Scan.to.PDF.v3.2.0.6.Incl.Keygen-Lz0/setup.exe/data0009/data0007 Infected: not-a-virus:AdWare.Win32.ZenoSearch.ad skipped D:\Niks\NiksArea\Utils\Other Utils\PDF\SacnToPdf\Scan.to.PDF.v3.2.0.6.Incl.Keygen.Lz0.zip/Scan.to.PDF.v3.2.0.6.Incl.Keygen-Lz0/setup.exe/data0009 Infected: not-a-virus:AdWare.Win32.ZenoSearch.ad skipped D:\Niks\NiksArea\Utils\Other Utils\PDF\SacnToPdf\Scan.to.PDF.v3.2.0.6.Incl.Keygen.Lz0.zip/Scan.to.PDF.v3.2.0.6.Incl.Keygen-Lz0/setup.exe/data0012 Infected: Trojan-Downloader.Win32.PurityScan.gc skipped D:\Niks\NiksArea\Utils\Other Utils\PDF\SacnToPdf\Scan.to.PDF.v3.2.0.6.Incl.Keygen.Lz0.zip/Scan.to.PDF.v3.2.0.6.Incl.Keygen-Lz0/setup.exe Infected: Trojan-Downloader.Win32.PurityScan.gc skipped D:\Niks\NiksArea\Utils\Other Utils\PDF\SacnToPdf\Scan.to.PDF.v3.2.0.6.Incl.Keygen.Lz0.zip ZIP: infected - 7 skipped D:\Niks\NiksArea\Utils\VNC\Real VNC\vnc-4.0-x86_win32.exe/data0002 Infected: not-a-virus:RemoteAdmin.Win32.WinVNC.4 skipped D:\Niks\NiksArea\Utils\VNC\Real VNC\vnc-4.0-x86_win32.exe/data0003 Infected: not-a-virus:RemoteAdmin.Win32.WinVNC.4 skipped D:\Niks\NiksArea\Utils\VNC\Real VNC\vnc-4.0-x86_win32.exe/data0006 Infected: not-a-virus:RemoteAdmin.Win32.WinVNC.4 skipped D:\Niks\NiksArea\Utils\VNC\Real VNC\vnc-4.0-x86_win32.exe Inno: infected - 3 skipped D:\Niks\NiksArea\Utils\VNC\TightVNC\tightvnc-1.2.9-setup.exe/data0002 Infected: not-a-virus:RemoteAdmin.Win32.WinVNC-based.h skipped D:\Niks\NiksArea\Utils\VNC\TightVNC\tightvnc-1.2.9-setup.exe/data0003 Infected: not-a-virus:RemoteAdmin.Win32.WinVNC-based.b skipped D:\Niks\NiksArea\Utils\VNC\TightVNC\tightvnc-1.2.9-setup.exe Inno: infected - 2 skipped D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped D:\System Volume Information\_restore{A97D9B12-9686-4A72-B905-8B3A395BAF5B}\RP72\change.log Object is locked skipped Scan process completed.