>>> MCShield AllScans.txt <<< >>> MCShield ::Anti-Malware Tool:: v 2.6.3.21 / DB: 2013.6.2.1 / Windows Vista <<< 03-06-2013 19:30:42 > Drive C: - scan started (no label ~288 GB, NTFS HDD )... >>> C:\bymyvu.pif - Malware > Deleted. (13.06.03. 19.30 bymyvu.pif.505963; MD5: 77e3adb2250820fe13aa791497f7e338) => Malicious files : 1/1 deleted. ____________________________________________ ::::: Scan duration: 1sec :::::::::::::::::: ____________________________________________ 03-06-2013 19:30:43 > Drive D: - scan started (HP_RECOVERY ~11 GB, NTFS HDD )... >>> D:\autorun.inf > Action failed. >>> D:\mhal.exe - Malware > Deleted. (13.06.03. 19.30 mhal.exe.279228; MD5: c0b1b27bb975c540e5d54019d140e5c6) >>> D:\$RECYCLE.BIN\protect.chinese hong kong - Malware > Deleted. (13.06.03. 19.30 protect.chinese hong kong.449178; MD5: 5855a7f748b34e6c79267a500be150c2) >>> D:\$RECYCLE.BIN\protect.chinese simplified - Malware > Deleted. (13.06.03. 19.30 protect.chinese simplified.47650; MD5: b6ba95c18b883079b3658bd1bfc71972) >>> D:\$RECYCLE.BIN\protect.chinese traditional - Malware > Deleted. (13.06.03. 19.30 protect.chinese traditional.767082; MD5: 5855a7f748b34e6c79267a500be150c2) >>> D:\$RECYCLE.BIN\protect.czech - Malware > Deleted. (13.06.03. 19.30 protect.czech.42074; MD5: a8ff3bbea3e653b880947a7efead3bcf) >>> D:\$RECYCLE.BIN\protect.danish - Malware > Deleted. (13.06.03. 19.30 protect.danish.304514; MD5: 7679b292927a39a23aeb62b8d743c75c) >>> D:\$RECYCLE.BIN\protect.dutch - Malware > Deleted. (13.06.03. 19.30 protect.dutch.955945; MD5: 37d5f667bdfe7f560c213b231c891b77) >>> D:\$RECYCLE.BIN\Protect.ed - Malware > Deleted. (13.06.03. 19.30 Protect.ed.562506; MD5: de9058fa006292bea84294dba5c06bf9) >>> D:\$RECYCLE.BIN\protect.english - Malware > Deleted. (13.06.03. 19.30 protect.english.336296; MD5: 962d4db7be709ace9669ba7d8782af14) >>> D:\$RECYCLE.BIN\protect.finnish - Malware > Deleted. (13.06.03. 19.30 protect.finnish.808735; MD5: d4ac6878b3ec66c1f7acd5d9b8fcdf8f) >>> D:\$RECYCLE.BIN\protect.french - Malware > Deleted. (13.06.03. 19.30 protect.french.795014; MD5: 5b6a5d61c7eef7fcfd88ef8238fc4763) >>> D:\$RECYCLE.BIN\protect.german - Malware > Deleted. (13.06.03. 19.30 protect.german.833246; MD5: c2db1dea30a918a25d842ba227d32d36) >>> D:\$RECYCLE.BIN\protect.greek - Malware > Deleted. (13.06.03. 19.30 protect.greek.777937; MD5: 0909e5319c4257d5fd99325bed94f2c8) >>> D:\$RECYCLE.BIN\protect.hebrew - Malware > Deleted. (13.06.03. 19.30 protect.hebrew.206513; MD5: 27d664d7e56958637b21b101baf24915) >>> D:\$RECYCLE.BIN\protect.hungarian - Malware > Deleted. (13.06.03. 19.30 protect.hungarian.523049; MD5: 7d95c390ba552b1c220f2c45e43fdb7e) >>> D:\$RECYCLE.BIN\protect.italian - Malware > Deleted. (13.06.03. 19.30 protect.italian.212526; MD5: b8dae96993953a364d1b8d1dd747fdf1) >>> D:\$RECYCLE.BIN\protect.japanese - Malware > Deleted. (13.06.03. 19.30 protect.japanese.531380; MD5: 1a9d6765e7d5550953214bfb41ad98d6) >>> D:\$RECYCLE.BIN\protect.korean - Malware > Deleted. (13.06.03. 19.30 protect.korean.509569; MD5: 3879788be1e1bed38934c67f9dbb8b52) >>> D:\$RECYCLE.BIN\protect.norwegian - Malware > Deleted. (13.06.03. 19.30 protect.norwegian.414815; MD5: 1d9bee84937bce7f05c403654f444428) >>> D:\$RECYCLE.BIN\protect.polish - Malware > Deleted. (13.06.03. 19.30 protect.polish.162060; MD5: 7a2d21b303d1e81c3a2b1893386198de) >>> D:\$RECYCLE.BIN\protect.portuguese - Malware > Deleted. (13.06.03. 19.30 protect.portuguese.113135; MD5: db858bc6a48605649da255706cbde090) >>> D:\$RECYCLE.BIN\protect.portuguese brazilian - Malware > Deleted. (13.06.03. 19.30 protect.portuguese brazilian.384147; MD5: 37a421a9e9aec83008adfd79794a8b06) >>> D:\$RECYCLE.BIN\protect.russian - Malware > Deleted. (13.06.03. 19.30 protect.russian.843816; MD5: cda48e289e498fbd1abb5c8e6fbe7703) >>> D:\$RECYCLE.BIN\protect.spanish - Malware > Deleted. (13.06.03. 19.30 protect.spanish.461879; MD5: f6e02a6a0803002b6c040f82d341fb37) >>> D:\$RECYCLE.BIN\protect.swedish - Malware > Deleted. (13.06.03. 19.30 protect.swedish.716012; MD5: 0ad24c82f044e400aa4154aa19bda84e) >>> D:\$RECYCLE.BIN\protect.turkish - Malware > Deleted. (13.06.03. 19.30 protect.turkish.934373; MD5: 23eec1323cd26332a278b848900aa494) >>> D:\desktop.ini - Malware > Deleted. (13.06.03. 19.30 desktop.ini.728891; MD5: b12bf5e283b02e05f7d76b68caa07495) > D:\resycled > D:\resycled\Desktop.ini (MD5: b12bf5e283b02e05f7d76b68caa07495) > D:\resycled\Folder.htt (MD5: e0ba1af2184e62b8f1a79ca581aa6184) > D:\resycled\protect.chinese hong kong (MD5: 5855a7f748b34e6c79267a500be150c2) > D:\resycled\protect.chinese simplified (MD5: b6ba95c18b883079b3658bd1bfc71972) > D:\resycled\protect.chinese traditional (MD5: 5855a7f748b34e6c79267a500be150c2) > D:\resycled\protect.czech (MD5: a8ff3bbea3e653b880947a7efead3bcf) > D:\resycled\protect.danish (MD5: 7679b292927a39a23aeb62b8d743c75c) > D:\resycled\protect.dutch (MD5: 37d5f667bdfe7f560c213b231c891b77) > D:\resycled\Protect.ed (MD5: de9058fa006292bea84294dba5c06bf9) > D:\resycled\protect.english (MD5: 962d4db7be709ace9669ba7d8782af14) > D:\resycled\protect.finnish (MD5: d4ac6878b3ec66c1f7acd5d9b8fcdf8f) > D:\resycled\protect.french (MD5: 5b6a5d61c7eef7fcfd88ef8238fc4763) > D:\resycled\protect.german (MD5: c2db1dea30a918a25d842ba227d32d36) > D:\resycled\protect.greek (MD5: 0909e5319c4257d5fd99325bed94f2c8) > D:\resycled\protect.hebrew (MD5: 27d664d7e56958637b21b101baf24915) > D:\resycled\protect.hungarian (MD5: 7d95c390ba552b1c220f2c45e43fdb7e) > D:\resycled\protect.italian (MD5: b8dae96993953a364d1b8d1dd747fdf1) > D:\resycled\protect.japanese (MD5: 1a9d6765e7d5550953214bfb41ad98d6) > D:\resycled\protect.korean (MD5: 3879788be1e1bed38934c67f9dbb8b52) > D:\resycled\protect.norwegian (MD5: 1d9bee84937bce7f05c403654f444428) > D:\resycled\protect.polish (MD5: 7a2d21b303d1e81c3a2b1893386198de) > D:\resycled\protect.portuguese (MD5: db858bc6a48605649da255706cbde090) > D:\resycled\protect.portuguese brazilian (MD5: 37a421a9e9aec83008adfd79794a8b06) > D:\resycled\protect.russian (MD5: cda48e289e498fbd1abb5c8e6fbe7703) > D:\resycled\protect.spanish (MD5: f6e02a6a0803002b6c040f82d341fb37) > D:\resycled\protect.swedish (MD5: 0ad24c82f044e400aa4154aa19bda84e) > D:\resycled\protect.turkish (MD5: 23eec1323cd26332a278b848900aa494) >>> D:\resycled - Malware (folder) > Deleted. (13.06.03. 19.30 resycled.815444) => Malicious files : 54/54 deleted. => Malicious folders : 1/1 deleted. ____________________________________________ ::::: Scan duration: 11sec ::::::::::::::::: ____________________________________________ 03-06-2013 19:30:53 > Drive F: - scan started (Phani-My Passport ~931 GB, NTFS HDD )... >>> F:\autorun.inf > Action failed. >>> F:\rnjxri.exe - Suspicious > Renamed. (MD5: 77e3adb2250820fe13aa791497f7e338) => Suspicious files : 1/2 renamed. ____________________________________________ ::::: Scan duration: 11sec ::::::::::::::::: ____________________________________________ 03-06-2013 19:30:53 > Drive H: - scan started (PHANI ~3705 MB, FAT32 flash drive )... >>> H:\autorun.inf > Action failed. ---> Executing generic S&D routine... Searching for files hidden by malware... ---> Items to process: 1 ---> H:\autorun.inf > unhidden. >>> H:\eegu.exe - Malware > Deleted. (13.06.03. 19.31 eegu.exe.624877; MD5: 4178867a6a36847e59beeb495d9d42e7) >>> H:\autorun.inf.lnk - Malware > Deleted. (13.06.03. 19.31 autorun.inf.lnk.455168; MD5: 0f871273062c5f96f5c1c43599abb2b6) >>> H:\ba4c12bee3027d94da5c81db2d196bfd.exe - Malware > Deleted. (13.06.03. 19.31 ba4c12bee3027d94da5c81db2d196bfd.exe.741793; MD5: dc5ff43ce88ed082d09edf1d54d93df1) >>> H:\New Folder.lnk - Malware > Deleted. (13.06.03. 19.31 New Folder.lnk.1959; MD5: c6be5146a9b63bca82306baa7e5062fa) >>> H:\Download Details.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 Download Details.mp3.lnk.692834; MD5: ccd512d91a3d001359fb25b38400ac9c) >>> H:\Download Details_2.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 Download Details_2.mp3.lnk.636520; MD5: bf37905cf0865f92348609551781a8bd) >>> H:\Download Details_3.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 Download Details_3.mp3.lnk.976103; MD5: 9d788325bfecf8b6be4280ed56af0c28) >>> H:\Download Details_4.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 Download Details_4.mp3.lnk.938112; MD5: bfe9c675e5a5820f39b904d897e4bb42) >>> H:\Download Details_5.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 Download Details_5.mp3.lnk.658943; MD5: 33bcc540a258edc850a7a48c8fb4aa2b) >>> H:\2012 September _ HD Song Spot _ Page 7.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 2012 September _ HD Song Spot _ Page 7.mp3.lnk.371815; MD5: 9f8f0b7840a0e509583803483fab54cf) >>> H:\Akasam Thana.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 Akasam Thana.mp3.lnk.469084; MD5: 1122187be7f53d3ac90e7290beb42955) >>> H:\2012 September _ HD Song Spot _ Page 11.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 2012 September _ HD Song Spot _ Page 11.mp3.lnk.301911; MD5: 3a5e54cc9b3df6c57f6b3d660c43a070) >>> H:\2012 September _ HD Song Spot _ Page 13.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 2012 September _ HD Song Spot _ Page 13.mp3.lnk.974070; MD5: b264406790868537886f85af7ebe4405) >>> H:\Oosaravelli-Love-Ante-Caring.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 Oosaravelli-Love-Ante-Caring.mp3.lnk.423506; MD5: 12bbc60acc2ad2ac8a9ab6c85f46b740) >>> H:\2012 September _ HD Song Spot _ Page 13_2.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 2012 September _ HD Song Spot _ Page 13_2.mp3.lnk.75198; MD5: 46ac4114a14c66d02dd430a932290ee4) >>> H:\01 - Gunde Jari Gallanthayyinde.mp3.lnk - Malware > Deleted. (13.06.03. 19.31 01 - Gunde Jari Gallanthayyinde.mp3.lnk.28110; MD5: ea7257f32ff7e63ee2a0f30e9ce5a6c7) >>> H:\Nenjodu Cherthu Yuvvh [KittusMp3].mp3.lnk - Malware > Deleted. (13.06.03. 19.31 Nenjodu Cherthu Yuvvh [KittusMp3].mp3.lnk.356324; MD5: 1fb17d9f825d5f3d088b1053065594a8) >>> H:\RESTORE\k-1-3542-4232123213-7676767-8888886\Desktop.ini - Malware > Deleted. (13.06.03. 19.31 Desktop.ini.276744; MD5: 7457a5df1ff47c957acf1fa000d7d9ad) >>> H:\ \RESTORE\k-1-3542-4232123213-7676767-8888886\Desktop.ini - Malware > Deleted. (13.06.03. 19.31 Desktop.ini.512553; MD5: 7457a5df1ff47c957acf1fa000d7d9ad) >>> H:\ \RESTORE\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini - Malware > Deleted. (13.06.03. 19.31 Desktop.ini.336284; MD5: 7457a5df1ff47c957acf1fa000d7d9ad) >>> H:\inds tour .exe - Suspicious > Renamed. (MD5: 59983c5393ba2525e88f511b5a090d34) > Resetting attributes: H:\New Folder < Successful. => Malicious files : 20/20 deleted. => Suspicious files : 1/1 renamed. => Hidden folders : 1/1 unhidden. => Hidden files : 1/1 unhidden. ____________________________________________ ::::: Scan duration: 32sec ::::::::::::::::: ____________________________________________ >>> MCShield ::Anti-Malware Tool:: v 2.6.3.21 / DB: 2013.6.2.1 / Windows Vista <<< 03-06-2013 19:59:48 > Drive F: - scan started (Phani-My Passport ~931 GB, NTFS HDD )... >>> F:\autorun.inf > Suspicious > Renamed. >>> F:\rnjxri.exe - Suspicious > Renamed. (MD5: 2d33d0d3d770a011e9bd2831acc17caa) => Suspicious files : 2/2 renamed. ____________________________________________ ::::: Scan duration: 1sec :::::::::::::::::: ____________________________________________ >>> MCShield ::Anti-Malware Tool:: v 2.6.3.21 / DB: 2013.6.2.1 / Windows Vista <<< 03-06-2013 19:59:54 > Drive H: - scan started (PHANI ~3705 MB, FAT32 flash drive )... >>> H:\autorun.inf > Suspicious > Renamed. >>> H:\eegu.exe - Suspicious > Renamed. (MD5: 2d33d0d3d770a011e9bd2831acc17caa) => Suspicious files : 2/2 renamed. ____________________________________________ ::::: Scan duration: 25sec ::::::::::::::::: ____________________________________________ >>> MCShield ::Anti-Malware Tool:: v 2.6.3.21 / DB: 2013.6.2.1 / Windows Vista <<< 03-06-2013 22:53:34 > Drive C: - scan started (no label ~288 GB, NTFS HDD )... => The drive is clean. 03-06-2013 22:53:35 > Drive D: - scan started (HP_RECOVERY ~11 GB, NTFS HDD )... => The drive is clean. 03-06-2013 22:53:38 > Drive F: - scan started (Phani-My Passport ~931 GB, NTFS HDD )... => Elevation of privileges... 03-06-2013 22:54:10 > Drive F: - scan started (Phani-My Passport ~931 GB, NTFS HDD )... >>> F:\autorun.inf > Action failed. >>> F:\autorun.inf.vir - Malware > Deleted. (13.06.03. 22.54 autorun.inf.vir.513394; MD5: 6fe9841ed5b071b8ab44e26eba361ded) >>> F:\mmilqs.pif - Malware > Deleted. (13.06.03. 22.54 mmilqs.pif.492851; MD5: 164bcdfe0c53b402eda87d5f6df51665) => Malicious files : 2/2 deleted. ____________________________________________ ::::: Scan duration: 1sec :::::::::::::::::: ____________________________________________ 03-06-2013 22:54:10 > Drive H: - scan started (PHANI ~3705 MB, FAT32 flash drive )... >>> H:\autorun.inf > Action failed. ---> Executing generic S&D routine... Searching for files hidden by malware... ---> Items to process: 1 ---> H:\Thumbs.db > unhidden. >>> H:\autorun.inf.vir - Malware > Deleted. (13.06.03. 22.54 autorun.inf.vir.308935; MD5: 41a18c1c71e14fa11758b89f7ac39ebc) >>> H:\ploakg.pif - Malware > Deleted. (13.06.03. 22.54 ploakg.pif.297619; MD5: 2d33d0d3d770a011e9bd2831acc17caa) >>> H:\Thumbs.db.lnk - Malware > Deleted. (13.06.03. 22.54 Thumbs.db.lnk.236625; MD5: 8001cfcb5f752b81871c70961ac5e10a) => Malicious files : 3/3 deleted. => Hidden files : 1/1 unhidden. ____________________________________________ ::::: Scan duration: 22sec ::::::::::::::::: ____________________________________________