daviswe
2008-03-22, 15:31
I got a zip from a friend, opened it and now Spybot is disallowing (by my decision) a registry change for a service called 'UnknownDrive'. If I delete the registry entry for it, it just comes back in a few seconds, and the Spybot popups alterting me that 'Resident denied change of UnknownDrive (category Shell services) based on your black list.'
Any ideas what this is (Google gets me nothing usable) and how to get rid of it? Getting rid of the buddy that sent it to me might be a a lot easier!
Thx,
Ed (A contributor of bucks to this great program several times!)
-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Saturday, March 22, 2008 4:42:03 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 22/03/2008
Kaspersky Anti-Virus database records: 654552
-------------------------------------------------------------------------------
Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: false
Scan Target - My Computer:
A:\
C:\
D:\
E:\
Scan Statistics:
Total number of scanned objects: 209257
Number of viruses found: 3
Number of infected objects: 3
Number of suspicious objects: 0
Duration of the scan process: 02:06:16
Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\Administrator\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Administrator\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus Corporate Edition\7.5\Quarantine\081C0000.VBN Infected: Trojan-Downloader.Win32.Small.ivo skipped
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus Corporate Edition\7.5\Quarantine\0ECC0000.VBN Infected: not-a-virus:AdWare.Win32.Webdir.b skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\cert8.db Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\formhistory.dat Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\history.dat Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\key3.db Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\parent.lock Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\search.sqlite Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\urlclassifier2.sqlite Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\call256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\callmember256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chat512.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chat8192.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chatmember256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chatmsg1024.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chatmsg256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chatmsg512.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\contactgroup256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\dyncontent\bundle.dat Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\index2.dat Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\profile4096.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\user1024.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\user16384.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\user256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\voicemail256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbc2e.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbdam Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbdao Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbeam Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbeao Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbm Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbu2d.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbvm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbvmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\fii.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\fiih.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\hp Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\hpt2i.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\rpm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\rpm1m.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\rpm1mh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\rpmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-black-enchashm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-black-enchashmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-black-urlm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-black-urlmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-malware-domainm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-malware-domainmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-white-domainm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-white-domainmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\Cache\_CACHE_001_ Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\Cache\_CACHE_002_ Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\Cache\_CACHE_003_ Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\Cache\_CACHE_MAP_ Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Temp\~DF3991.tmp Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Temp\~DF792E.tmp Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Ed\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Ed\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\master.mdf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\mastlog.ldf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\model.mdf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\modellog.ldf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\tempdb.mdf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\templog.ldf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\LOG\ERRORLOG Object is locked skipped
C:\Program Files\Panasonic\NCR2\Logs\system_log_20080322.txt Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{2D8DF06F-9EF9-4427-85C1-7B5E38853287}\RP166\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Installer\{33da0dfd-91b0-49be-bffa-613b4849d6e2}\UnknownDrive.dll Infected: Trojan-Downloader.Win32.Agent.lsw skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\Temp\Perflib_Perfdata_7f0.dat Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
E:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
Scan process completed.
Any ideas what this is (Google gets me nothing usable) and how to get rid of it? Getting rid of the buddy that sent it to me might be a a lot easier!
Thx,
Ed (A contributor of bucks to this great program several times!)
-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Saturday, March 22, 2008 4:42:03 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 22/03/2008
Kaspersky Anti-Virus database records: 654552
-------------------------------------------------------------------------------
Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: false
Scan Target - My Computer:
A:\
C:\
D:\
E:\
Scan Statistics:
Total number of scanned objects: 209257
Number of viruses found: 3
Number of infected objects: 3
Number of suspicious objects: 0
Duration of the scan process: 02:06:16
Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\Administrator\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Administrator\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus Corporate Edition\7.5\Quarantine\081C0000.VBN Infected: Trojan-Downloader.Win32.Small.ivo skipped
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus Corporate Edition\7.5\Quarantine\0ECC0000.VBN Infected: not-a-virus:AdWare.Win32.Webdir.b skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\cert8.db Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\formhistory.dat Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\history.dat Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\key3.db Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\parent.lock Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\search.sqlite Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\urlclassifier2.sqlite Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\call256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\callmember256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chat512.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chat8192.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chatmember256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chatmsg1024.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chatmsg256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\chatmsg512.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\contactgroup256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\dyncontent\bundle.dat Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\index2.dat Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\profile4096.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\user1024.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\user16384.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\user256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Application Data\Skype\bluzplayer\voicemail256.dbb Object is locked skipped
C:\Documents and Settings\Ed\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbc2e.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbdam Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbdao Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbeam Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbeao Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbm Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbu2d.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbvm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\dbvmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\fii.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\fiih.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\hp Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\hpt2i.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\rpm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\rpm1m.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\rpm1mh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\rpmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-black-enchashm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-black-enchashmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-black-urlm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-black-urlmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-malware-domainm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-malware-domainmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-white-domainm.cf1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Google\Google Desktop\1e511fe4a233\safeweb\goog-white-domainmh.ht1 Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\Cache\_CACHE_001_ Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\Cache\_CACHE_002_ Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\Cache\_CACHE_003_ Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\cvcnmf1v.default\Cache\_CACHE_MAP_ Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Temp\~DF3991.tmp Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Temp\~DF792E.tmp Object is locked skipped
C:\Documents and Settings\Ed\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Ed\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Ed\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\master.mdf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\mastlog.ldf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\model.mdf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\modellog.ldf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\tempdb.mdf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\Data\templog.ldf Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$INVENTORCONTENT\LOG\ERRORLOG Object is locked skipped
C:\Program Files\Panasonic\NCR2\Logs\system_log_20080322.txt Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{2D8DF06F-9EF9-4427-85C1-7B5E38853287}\RP166\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Installer\{33da0dfd-91b0-49be-bffa-613b4849d6e2}\UnknownDrive.dll Infected: Trojan-Downloader.Win32.Agent.lsw skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\Temp\Perflib_Perfdata_7f0.dat Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
E:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
Scan process completed.