Čertv warezov ABA

Jan Pašek · Příspěvekod **Jan Pašek** » 22 pro 2006 21:23

Avast mi ukazuje v souboru c:\widows\...\wmpssdpb.dll virus warez ABA po řesunutí do truhly se počase znovu obnovuje. Máte někdo tušení od čeho je ten zmiňovaný soubor. Mám podezření že jsem si ho stáhl ze slunečnice s ACE Mega Codec Packem. Jak na něj?

Reklama

Příspěvekod **fredik** » 22 pro 2006 23:21

Pravděpodobně tě navštívil Warezov/Stration. Tento soubor avast detekuje při jeho infiltraci.
Vlož sem log z HijackThis pro jistotu.

Jan Pašek · Příspěvekod **Jan Pašek** » 22 pro 2006 23:34

Ještě mi tam běží něco navíc převádím momentálně nějaké video ve VSO.
JInak se běhen svátkůchystám na montáž HD a překopání systému ale na zálohy než se do toho pustim bych rád čistý PC.

Logfile of HijackThis v1.99.1
Scan saved at 23:29:45, on 22.12.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\SCROLL~1\MouseElf.EXE
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\osunuxth.exe
C:\Program Files\vso\ConvertXtoDVD\ConvertXtoDvd.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\HijackThis.exe

O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [mouseElf] C:\PROGRA~1\SCROLL~1\MouseElf.EXE
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\Program Files\ICQLite\ICQLite.exe -trayboot
O4 - Startup: PowerReg Scheduler V3.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} (MainControl Class) - http://arcaonline.arcabit.com/ArcaOnline.cab
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} - http://www3.ca.com/securityadvisor/viru ... ebscan.cab
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} - http://ax.emsisoft.com/asquared.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Skype\Plugin Manager\Skype4COM.dll
O20 - AppInit_DLLs: e1.dll wuapsecu.dll
O20 - Winlogon Notify: osunuxth - C:\WINDOWS\system32\osunuxth.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: MX-3 B-Cup XP (Mx-3 B-Cup Service) - Unknown owner - C:\WINDOWS\system32\Mx-3 B-Cup Service.exe" s (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

Příspěvekod **fredik** » 22 pro 2006 23:43

Postupuj podle tohoto návodu s Avengerem. Postup opakuj alespoň 2x za sebou pak sem dej nový log z HJT na kontrolu.

Jan Pašek · Příspěvekod **Jan Pašek** » 23 pro 2006 00:58

Nevede se Fireval stále vypnutý a nelze zapnout a dělal sem to 4*. Sorry že to trvalo tak dlouho já potřeboval před restartem dodělat to video.
Ještě mi napadá ta utilitka pro vyčištění nemusí být náhodou na stejném disku jak systém protože já na všechno co stahuji mám zvlášť sektor.

log1 z poslední opravy:

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\pvjeiwoh

*******************

Script file located at: \??\C:\WINDOWS\nvdxnlio.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

File C:\WINDOWS\ais32.exe not found!
Deletion of file C:\WINDOWS\ais32.exe failed!

Could not process line:
C:\WINDOWS\ais32.exe
Status: 0xc0000034

File C:\WINDOWS\alerter.exe not found!
Deletion of file C:\WINDOWS\alerter.exe failed!

Could not process line:
C:\WINDOWS\alerter.exe
Status: 0xc0000034

File C:\WINDOWS\cc2.exe not found!
Deletion of file C:\WINDOWS\cc2.exe failed!

Could not process line:
C:\WINDOWS\cc2.exe
Status: 0xc0000034

File C:\WINDOWS\cc3.exe not found!
Deletion of file C:\WINDOWS\cc3.exe failed!

Could not process line:
C:\WINDOWS\cc3.exe
Status: 0xc0000034

File C:\WINDOWS\cc5.exe not found!
Deletion of file C:\WINDOWS\cc5.exe failed!

Could not process line:
C:\WINDOWS\cc5.exe
Status: 0xc0000034

File C:\WINDOWS\ccsserv.exe not found!
Deletion of file C:\WINDOWS\ccsserv.exe failed!

Could not process line:
C:\WINDOWS\ccsserv.exe
Status: 0xc0000034

File C:\WINDOWS\cct2.exe not found!
Deletion of file C:\WINDOWS\cct2.exe failed!

Could not process line:
C:\WINDOWS\cct2.exe
Status: 0xc0000034

File C:\WINDOWS\cserv32.exe not found!
Deletion of file C:\WINDOWS\cserv32.exe failed!

Could not process line:
C:\WINDOWS\cserv32.exe
Status: 0xc0000034

File C:\WINDOWS\cservv32.exe not found!
Deletion of file C:\WINDOWS\cservv32.exe failed!

Could not process line:
C:\WINDOWS\cservv32.exe
Status: 0xc0000034

File C:\WINDOWS\hv4e05.dll not found!
Deletion of file C:\WINDOWS\hv4e05.dll failed!

Could not process line:
C:\WINDOWS\hv4e05.dll
Status: 0xc0000034

File C:\WINDOWS\chater.exe not found!
Deletion of file C:\WINDOWS\chater.exe failed!

Could not process line:
C:\WINDOWS\chater.exe
Status: 0xc0000034

File C:\WINDOWS\msout.exe not found!
Deletion of file C:\WINDOWS\msout.exe failed!

Could not process line:
C:\WINDOWS\msout.exe
Status: 0xc0000034

File C:\WINDOWS\msserrv32.exe not found!
Deletion of file C:\WINDOWS\msserrv32.exe failed!

Could not process line:
C:\WINDOWS\msserrv32.exe
Status: 0xc0000034

File C:\WINDOWS\msserv.exe not found!
Deletion of file C:\WINDOWS\msserv.exe failed!

Could not process line:
C:\WINDOWS\msserv.exe
Status: 0xc0000034

File C:\WINDOWS\msserv32.exe not found!
Deletion of file C:\WINDOWS\msserv32.exe failed!

Could not process line:
C:\WINDOWS\msserv32.exe
Status: 0xc0000034

File C:\WINDOWS\msupdtwiz.exe not found!
Deletion of file C:\WINDOWS\msupdtwiz.exe failed!

Could not process line:
C:\WINDOWS\msupdtwiz.exe
Status: 0xc0000034

File C:\WINDOWS\mswiiz32.exe not found!
Deletion of file C:\WINDOWS\mswiiz32.exe failed!

Could not process line:
C:\WINDOWS\mswiiz32.exe
Status: 0xc0000034

File C:\WINDOWS\mswiizz32.exe not found!
Deletion of file C:\WINDOWS\mswiizz32.exe failed!

Could not process line:
C:\WINDOWS\mswiizz32.exe
Status: 0xc0000034

File C:\WINDOWS\mswiz32.exe not found!
Deletion of file C:\WINDOWS\mswiz32.exe failed!

Could not process line:
C:\WINDOWS\mswiz32.exe
Status: 0xc0000034

File C:\WINDOWS\ptr.exe not found!
Deletion of file C:\WINDOWS\ptr.exe failed!

Could not process line:
C:\WINDOWS\ptr.exe
Status: 0xc0000034

File C:\WINDOWS\reggserv.exe not found!
Deletion of file C:\WINDOWS\reggserv.exe failed!

Could not process line:
C:\WINDOWS\reggserv.exe
Status: 0xc0000034

File C:\WINDOWS\serrv.c not found!
Deletion of file C:\WINDOWS\serrv.c failed!

Could not process line:
C:\WINDOWS\serrv.c
Status: 0xc0000034

File C:\WINDOWS\serrv.exe not found!
Deletion of file C:\WINDOWS\serrv.exe failed!

Could not process line:
C:\WINDOWS\serrv.exe
Status: 0xc0000034

File C:\WINDOWS\serrv.wax not found!
Deletion of file C:\WINDOWS\serrv.wax failed!

Could not process line:
C:\WINDOWS\serrv.wax
Status: 0xc0000034

File C:\WINDOWS\serv.exe not found!
Deletion of file C:\WINDOWS\serv.exe failed!

Could not process line:
C:\WINDOWS\serv.exe
Status: 0xc0000034

File C:\WINDOWS\serv.wax not found!
Deletion of file C:\WINDOWS\serv.wax failed!

Could not process line:
C:\WINDOWS\serv.wax
Status: 0xc0000034

File C:\WINDOWS\sserrvv.exe not found!
Deletion of file C:\WINDOWS\sserrvv.exe failed!

Could not process line:
C:\WINDOWS\sserrvv.exe
Status: 0xc0000034

File C:\WINDOWS\stm.exe not found!
Deletion of file C:\WINDOWS\stm.exe failed!

Could not process line:
C:\WINDOWS\stm.exe
Status: 0xc0000034

File C:\WINDOWS\t2serv.dll not found!
Deletion of file C:\WINDOWS\t2serv.dll failed!

Could not process line:
C:\WINDOWS\t2serv.dll
Status: 0xc0000034

File C:\WINDOWS\t2serv.s not found!
Deletion of file C:\WINDOWS\t2serv.s failed!

Could not process line:
C:\WINDOWS\t2serv.s
Status: 0xc0000034

File C:\WINDOWS\t2serv.wax not found!
Deletion of file C:\WINDOWS\t2serv.wax failed!

Could not process line:
C:\WINDOWS\t2serv.wax
Status: 0xc0000034

File C:\WINDOWS\wnet32.exe not found!
Deletion of file C:\WINDOWS\wnet32.exe failed!

Could not process line:
C:\WINDOWS\wnet32.exe
Status: 0xc0000034

File C:\WINDOWS\system32\actidmoc.exe not found!
Deletion of file C:\WINDOWS\system32\actidmoc.exe failed!

Could not process line:
C:\WINDOWS\system32\actidmoc.exe
Status: 0xc0000034

File C:\WINDOWS\system32\adpticmp.exe not found!
Deletion of file C:\WINDOWS\system32\adpticmp.exe failed!

Could not process line:
C:\WINDOWS\system32\adpticmp.exe
Status: 0xc0000034

File C:\WINDOWS\system32\alrsbatt.dll not found!
Deletion of file C:\WINDOWS\system32\alrsbatt.dll failed!

Could not process line:
C:\WINDOWS\system32\alrsbatt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\alerter.exe not found!
Deletion of file C:\WINDOWS\system32\alerter.exe failed!

Could not process line:
C:\WINDOWS\system32\alerter.exe
Status: 0xc0000034

File C:\WINDOWS\system32\amcconf.exe not found!
Deletion of file C:\WINDOWS\system32\amcconf.exe failed!

Could not process line:
C:\WINDOWS\system32\amcconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\atkcadpt.dll not found!
Deletion of file C:\WINDOWS\system32\atkcadpt.dll failed!

Could not process line:
C:\WINDOWS\system32\atkcadpt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\atkcadpt.exe not found!
Deletion of file C:\WINDOWS\system32\atkcadpt.exe failed!

Could not process line:
C:\WINDOWS\system32\atkcadpt.exe
Status: 0xc0000034

File C:\WINDOWS\system32\atrconf.exe not found!
Deletion of file C:\WINDOWS\system32\atrconf.exe failed!

Could not process line:
C:\WINDOWS\system32\atrconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\attmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\attmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\attmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\attperf.exe not found!
Deletion of file C:\WINDOWS\system32\attperf.exe failed!

Could not process line:
C:\WINDOWS\system32\attperf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\attprf32.dll not found!
Deletion of file C:\WINDOWS\system32\attprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\attprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\attstat.dll not found!
Deletion of file C:\WINDOWS\system32\attstat.dll failed!

Could not process line:
C:\WINDOWS\system32\attstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\audconf.exe not found!
Deletion of file C:\WINDOWS\system32\audconf.exe failed!

Could not process line:
C:\WINDOWS\system32\audconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\audmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\audmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\audmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\audperf.exe not found!
Deletion of file C:\WINDOWS\system32\audperf.exe failed!

Could not process line:
C:\WINDOWS\system32\audperf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\audprf32.dll not found!
Deletion of file C:\WINDOWS\system32\audprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\audprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\audstat.dll not found!
Deletion of file C:\WINDOWS\system32\audstat.dll failed!

Could not process line:
C:\WINDOWS\system32\audstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\brwconf.exe not found!
Deletion of file C:\WINDOWS\system32\brwconf.exe failed!

Could not process line:
C:\WINDOWS\system32\brwconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\brwmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\brwmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\brwmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\brwperf.exe not found!
Deletion of file C:\WINDOWS\system32\brwperf.exe failed!

Could not process line:
C:\WINDOWS\system32\brwperf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\brwprf32.dll not found!
Deletion of file C:\WINDOWS\system32\brwprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\brwprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\brwstat.dll not found!
Deletion of file C:\WINDOWS\system32\brwstat.dll failed!

Could not process line:
C:\WINDOWS\system32\brwstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgcrs.dll not found!
Deletion of file C:\WINDOWS\system32\cfgcrs.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgcrs.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgd3d.dll not found!
Deletion of file C:\WINDOWS\system32\cfgd3d.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgd3d.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgdei.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdei.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdei.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgdsk.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdsk.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdsk.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgdss.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdss.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdss.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgdxt.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdxt.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdxt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgisr.dll not found!
Deletion of file C:\WINDOWS\system32\cfgisr.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgisr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgmmprm.dll not found!
Deletion of file C:\WINDOWS\system32\cfgmmprm.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgmmprm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgmplus.dll not found!
Deletion of file C:\WINDOWS\system32\cfgmplus.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgmplus.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgmwmid.exe not found!
Deletion of file C:\WINDOWS\system32\cfgmwmid.exe failed!

Could not process line:
C:\WINDOWS\system32\cfgmwmid.exe
Status: 0xc0000034

File C:\WINDOWS\system32\confatt.dll not found!
Deletion of file C:\WINDOWS\system32\confatt.dll failed!

Could not process line:
C:\WINDOWS\system32\confatt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confaud.dll not found!
Deletion of file C:\WINDOWS\system32\confaud.dll failed!

Could not process line:
C:\WINDOWS\system32\confaud.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confbrw.dll not found!
Deletion of file C:\WINDOWS\system32\confbrw.dll failed!

Could not process line:
C:\WINDOWS\system32\confbrw.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confcon.dll not found!
Deletion of file C:\WINDOWS\system32\confcon.dll failed!

Could not process line:
C:\WINDOWS\system32\confcon.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confega.dll not found!
Deletion of file C:\WINDOWS\system32\confega.dll failed!

Could not process line:
C:\WINDOWS\system32\confega.dll
Status: 0xc0000034

File C:\WINDOWS\system32\conmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\conmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\conmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\conperf.exe not found!
Deletion of file C:\WINDOWS\system32\conperf.exe failed!

Could not process line:
C:\WINDOWS\system32\conperf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\conprf32.dll not found!
Deletion of file C:\WINDOWS\system32\conprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\conprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\constat.dll not found!
Deletion of file C:\WINDOWS\system32\constat.dll failed!

Could not process line:
C:\WINDOWS\system32\constat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cp8xpqj.dll not found!
Deletion of file C:\WINDOWS\system32\cp8xpqj.dll failed!

Could not process line:
C:\WINDOWS\system32\cp8xpqj.dll
Status: 0xc0000034

File C:\WINDOWS\system32\creconf.exe not found!
Deletion of file C:\WINDOWS\system32\creconf.exe failed!

Could not process line:
C:\WINDOWS\system32\creconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\crsconf.exe not found!
Deletion of file C:\WINDOWS\system32\crsconf.exe failed!

Could not process line:
C:\WINDOWS\system32\crsconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\cssewmpd.exe not found!
Deletion of file C:\WINDOWS\system32\cssewmpd.exe failed!

Could not process line:
C:\WINDOWS\system32\cssewmpd.exe
Status: 0xc0000034

File C:\WINDOWS\system32\decconf.exe not found!
Deletion of file C:\WINDOWS\system32\decconf.exe failed!

Could not process line:
C:\WINDOWS\system32\decconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\deiconf.exe not found!
Deletion of file C:\WINDOWS\system32\deiconf.exe failed!

Could not process line:
C:\WINDOWS\system32\deiconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\deiprf32.dll not found!
Deletion of file C:\WINDOWS\system32\deiprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\deiprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\deiprov.exe not found!
Deletion of file C:\WINDOWS\system32\deiprov.exe failed!

Could not process line:
C:\WINDOWS\system32\deiprov.exe
Status: 0xc0000034

File C:\WINDOWS\system32\deskmcd3.dll not found!
Deletion of file C:\WINDOWS\system32\deskmcd3.dll failed!

Could not process line:
C:\WINDOWS\system32\deskmcd3.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dfssrasc.dll not found!
Deletion of file C:\WINDOWS\system32\dfssrasc.dll failed!

Could not process line:
C:\WINDOWS\system32\dfssrasc.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dfssrasc.exe not found!
Deletion of file C:\WINDOWS\system32\dfssrasc.exe failed!

Could not process line:
C:\WINDOWS\system32\dfssrasc.exe
Status: 0xc0000034

File C:\WINDOWS\system32\diagamc.dll not found!
Deletion of file C:\WINDOWS\system32\diagamc.dll failed!

Could not process line:
C:\WINDOWS\system32\diagamc.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagcre.dll not found!
Deletion of file C:\WINDOWS\system32\diagcre.dll failed!

Could not process line:
C:\WINDOWS\system32\diagcre.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagcrs.dll not found!
Deletion of file C:\WINDOWS\system32\diagcrs.dll failed!

Could not process line:
C:\WINDOWS\system32\diagcrs.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagd3d.dll not found!
Deletion of file C:\WINDOWS\system32\diagd3d.dll failed!

Could not process line:
C:\WINDOWS\system32\diagd3d.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagdei.dll not found!
Deletion of file C:\WINDOWS\system32\diagdei.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdei.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagdsk.dll not found!
Deletion of file C:\WINDOWS\system32\diagdsk.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdsk.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagdss.dll not found!
Deletion of file C:\WINDOWS\system32\diagdss.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdss.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagdxt.dll not found!
Deletion of file C:\WINDOWS\system32\diagdxt.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdxt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagfsd.dll not found!
Deletion of file C:\WINDOWS\system32\diagfsd.dll failed!

Could not process line:
C:\WINDOWS\system32\diagfsd.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagisr.dll not found!
Deletion of file C:\WINDOWS\system32\diagisr.dll failed!

Could not process line:
C:\WINDOWS\system32\diagisr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dmimmdt2.exe not found!
Deletion of file C:\WINDOWS\system32\dmimmdt2.exe failed!

Could not process line:
C:\WINDOWS\system32\dmimmdt2.exe
Status: 0xc0000034

File C:\WINDOWS\system32\docpfram.dll not found!
Deletion of file C:\WINDOWS\system32\docpfram.dll failed!

Could not process line:
C:\WINDOWS\system32\docpfram.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dpugmswe.dll not found!
Deletion of file C:\WINDOWS\system32\dpugmswe.dll failed!

Could not process line:
C:\WINDOWS\system32\dpugmswe.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dpvacdfv.dll not found!
Deletion of file C:\WINDOWS\system32\dpvacdfv.dll failed!

Could not process line:
C:\WINDOWS\system32\dpvacdfv.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dskconf.exe not found!
Deletion of file C:\WINDOWS\system32\dskconf.exe failed!

Could not process line:
C:\WINDOWS\system32\dskconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dssconf.exe not found!
Deletion of file C:\WINDOWS\system32\dssconf.exe failed!

Could not process line:
C:\WINDOWS\system32\dssconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dsseds32.dll not found!
Deletion of file C:\WINDOWS\system32\dsseds32.dll failed!

Could not process line:
C:\WINDOWS\system32\dsseds32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dsseds32.exe not found!
Deletion of file C:\WINDOWS\system32\dsseds32.exe failed!

Could not process line:
C:\WINDOWS\system32\dsseds32.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dxdimqtr.dll not found!
Deletion of file C:\WINDOWS\system32\dxdimqtr.dll failed!

Could not process line:
C:\WINDOWS\system32\dxdimqtr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dxtconf.exe not found!
Deletion of file C:\WINDOWS\system32\dxtconf.exe failed!

Could not process line:
C:\WINDOWS\system32\dxtconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dxtmsft3.dll not found!
Deletion of file C:\WINDOWS\system32\dxtmsft3.dll failed!

Could not process line:
C:\WINDOWS\system32\dxtmsft3.dll
Status: 0xc0000034

File C:\WINDOWS\system32\e1.dll not found!
Deletion of file C:\WINDOWS\system32\e1.dll failed!

Could not process line:
C:\WINDOWS\system32\e1.dll
Status: 0xc0000034

File C:\WINDOWS\system32\e1.sys not found!
Deletion of file C:\WINDOWS\system32\e1.sys failed!

Could not process line:
C:\WINDOWS\system32\e1.sys
Status: 0xc0000034

File C:\WINDOWS\system32\egaavi.exe not found!
Deletion of file C:\WINDOWS\system32\egaavi.exe failed!

Could not process line:
C:\WINDOWS\system32\egaavi.exe
Status: 0xc0000034

File C:\WINDOWS\system32\egamgr32.dll not found!
Deletion of file C:\WINDOWS\system32\egamgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\egamgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\egastat.dll not found!
Deletion of file C:\WINDOWS\system32\egastat.dll failed!

Could not process line:
C:\WINDOWS\system32\egastat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\egperf32.dll not found!
Deletion of file C:\WINDOWS\system32\egperf32.dll failed!

Could not process line:
C:\WINDOWS\system32\egperf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\encddpva.dll not found!
Deletion of file C:\WINDOWS\system32\encddpva.dll failed!

Could not process line:
C:\WINDOWS\system32\encddpva.dll
Status: 0xc0000034

File C:\WINDOWS\system32\evenncob.dll not found!
Deletion of file C:\WINDOWS\system32\evenncob.dll failed!

Could not process line:
C:\WINDOWS\system32\evenncob.dll
Status: 0xc0000034

File C:\WINDOWS\system32\fpwppgpm.exe not found!
Deletion of file C:\WINDOWS\system32\fpwppgpm.exe failed!

Could not process line:
C:\WINDOWS\system32\fpwppgpm.exe
Status: 0xc0000034

File C:\WINDOWS\system32\fsdconf.exe not found!
Deletion of file C:\WINDOWS\system32\fsdconf.exe failed!

Could not process line:
C:\WINDOWS\system32\fsdconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\fsxsh4.dll not found!
Deletion of file C:\WINDOWS\system32\fsxsh4.dll failed!

Could not process line:
C:\WINDOWS\system32\fsxsh4.dll
Status: 0xc0000034

File C:\WINDOWS\system32\glu3panm.dll not found!
Deletion of file C:\WINDOWS\system32\glu3panm.dll failed!

Could not process line:
C:\WINDOWS\system32\glu3panm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\gpkrmssi.dll not found!
Deletion of file C:\WINDOWS\system32\gpkrmssi.dll failed!

Could not process line:
C:\WINDOWS\system32\gpkrmssi.dll
Status: 0xc0000034

File C:\WINDOWS\system32\gtmqf608r7.dll not found!
Deletion of file C:\WINDOWS\system32\gtmqf608r7.dll failed!

Could not process line:
C:\WINDOWS\system32\gtmqf608r7.dll
Status: 0xc0000034

File C:\WINDOWS\system32\hypewmv9.exe not found!
Deletion of file C:\WINDOWS\system32\hypewmv9.exe failed!

Could not process line:
C:\WINDOWS\system32\hypewmv9.exe
Status: 0xc0000034

File C:\WINDOWS\system32\iasamsre.dll not found!
Deletion of file C:\WINDOWS\system32\iasamsre.dll failed!

Could not process line:
C:\WINDOWS\system32\iasamsre.dll
Status: 0xc0000034

File C:\WINDOWS\system32\icmpdx3j.dll not found!
Deletion of file C:\WINDOWS\system32\icmpdx3j.dll failed!

Could not process line:
C:\WINDOWS\system32\icmpdx3j.dll
Status: 0xc0000034

File C:\WINDOWS\system32\icmuwmad.exe not found!
Deletion of file C:\WINDOWS\system32\icmuwmad.exe failed!

Could not process line:
C:\WINDOWS\system32\icmuwmad.exe
Status: 0xc0000034

File C:\WINDOWS\system32\imagalrs.exe not found!
Deletion of file C:\WINDOWS\system32\imagalrs.exe failed!

Could not process line:
C:\WINDOWS\system32\imagalrs.exe
Status: 0xc0000034

File C:\WINDOWS\system32\inetzlco.dll not found!
Deletion of file C:\WINDOWS\system32\inetzlco.dll failed!

Could not process line:
C:\WINDOWS\system32\inetzlco.dll
Status: 0xc0000034

File C:\WINDOWS\system32\inetzlco.exe not found!
Deletion of file C:\WINDOWS\system32\inetzlco.exe failed!

Could not process line:
C:\WINDOWS\system32\inetzlco.exe
Status: 0xc0000034

File C:\WINDOWS\system32\inpufm20.exe not found!
Deletion of file C:\WINDOWS\system32\inpufm20.exe failed!

Could not process line:
C:\WINDOWS\system32\inpufm20.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ipsecmon.exe not found!
Deletion of file C:\WINDOWS\system32\ipsecmon.exe failed!

Could not process line:
C:\WINDOWS\system32\ipsecmon.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ipsmwebh.exe not found!
Deletion of file C:\WINDOWS\system32\ipsmwebh.exe failed!

Could not process line:
C:\WINDOWS\system32\ipsmwebh.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ipxpextm.exe not found!
Deletion of file C:\WINDOWS\system32\ipxpextm.exe failed!

Could not process line:
C:\WINDOWS\system32\ipxpextm.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ipxwshel.exe not found!
Deletion of file C:\WINDOWS\system32\ipxwshel.exe failed!

Could not process line:
C:\WINDOWS\system32\ipxwshel.exe
Status: 0xc0000034

File C:\WINDOWS\system32\isrconf.exe not found!
Deletion of file C:\WINDOWS\system32\isrconf.exe failed!

Could not process line:
C:\WINDOWS\system32\isrconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\isrprf32.dll not found!
Deletion of file C:\WINDOWS\system32\isrprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\isrprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\isrprov.exe not found!
Deletion of file C:\WINDOWS\system32\isrprov.exe failed!

Could not process line:
C:\WINDOWS\system32\isrprov.exe
Status: 0xc0000034

File C:\WINDOWS\system32\iuennwcf.dll not found!
Deletion of file C:\WINDOWS\system32\iuennwcf.dll failed!

Could not process line:
C:\WINDOWS\system32\iuennwcf.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ixssregw.exe not found!
Deletion of file C:\WINDOWS\system32\ixssregw.exe failed!

Could not process line:
C:\WINDOWS\system32\ixssregw.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ixsswmas.exe not found!
Deletion of file C:\WINDOWS\system32\ixsswmas.exe failed!

Could not process line:
C:\WINDOWS\system32\ixsswmas.exe
Status: 0xc0000034

File C:\WINDOWS\system32\j2t3crh.dll not found!
Deletion of file C:\WINDOWS\system32\j2t3crh.dll failed!

Could not process line:
C:\WINDOWS\system32\j2t3crh.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jgdwadsn.dll not found!
Deletion of file C:\WINDOWS\system32\jgdwadsn.dll failed!

Could not process line:
C:\WINDOWS\system32\jgdwadsn.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jgdwadsn.exe not found!
Deletion of file C:\WINDOWS\system32\jgdwadsn.exe failed!

Could not process line:
C:\WINDOWS\system32\jgdwadsn.exe
Status: 0xc0000034

File C:\WINDOWS\system32\jgsdrpcn.dll not found!
Deletion of file C:\WINDOWS\system32\jgsdrpcn.dll failed!

Could not process line:
C:\WINDOWS\system32\jgsdrpcn.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jgsdrpcn.exe not found!
Deletion of file C:\WINDOWS\system32\jgsdrpcn.exe failed!

Could not process line:
C:\WINDOWS\system32\jgsdrpcn.exe
Status: 0xc0000034

File C:\WINDOWS\system32\jgawmsne.dll not found!
Deletion of file C:\WINDOWS\system32\jgawmsne.dll failed!

Could not process line:
C:\WINDOWS\system32\jgawmsne.dll
Status: 0xc0000034

File C:\WINDOWS\system32\kbdfwshe.exe not found!
Deletion of file C:\WINDOWS\system32\kbdfwshe.exe failed!

Could not process line:
C:\WINDOWS\system32\kbdfwshe.exe
Status: 0xc0000034

File C:\WINDOWS\system32\kbdcrtut.dll not found!
Deletion of file C:\WINDOWS\system32\kbdcrtut.dll failed!

Could not process line:
C:\WINDOWS\system32\kbdcrtut.dll
Status: 0xc0000034

File C:\WINDOWS\system32\loghatkc.dll not found!
Deletion of file C:\WINDOWS\system32\loghatkc.dll failed!

Could not process line:
C:\WINDOWS\system32\loghatkc.dll
Status: 0xc0000034

File C:\WINDOWS\system32\lprmneth.dll not found!
Deletion of file C:\WINDOWS\system32\lprmneth.dll failed!

Could not process line:
C:\WINDOWS\system32\lprmneth.dll
Status: 0xc0000034

File C:\WINDOWS\system32\lprmneth.exe not found!
Deletion of file C:\WINDOWS\system32\lprmneth.exe failed!

Could not process line:
C:\WINDOWS\system32\lprmneth.exe
Status: 0xc0000034

File C:\WINDOWS\system32\mcd3mscm.dll not found!
Deletion of file C:\WINDOWS\system32\mcd3mscm.dll failed!

Could not process line:
C:\WINDOWS\system32\mcd3mscm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\mfcscoma.dll not found!
Deletion of file C:\WINDOWS\system32\mfcscoma.dll failed!

Could not process line:
C:\WINDOWS\system32\mfcscoma.dll
Status: 0xc0000034

File C:\WINDOWS\system32\mididpnh.dll not found!
Deletion of file C:\WINDOWS\system32\mididpnh.dll failed!

Could not process line:
C:\WINDOWS\system32\mididpnh.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ml7swr.exe not found!
Deletion of file C:\WINDOWS\system32\ml7swr.exe failed!

Could not process line:
C:\WINDOWS\system32\ml7swr.exe
Status: 0xc0000034

File C:\WINDOWS\system32\mmfubits.dll not found!
Deletion of file C:\WINDOWS\system32\mmfubits.dll failed!

Could not process line:
C:\WINDOWS\system32\mmfubits.dll
Status: 0xc0000034

File C:\WINDOWS\system32\mmfubits.exe not found!
Deletion of file C:\WINDOWS\system32\mmfubits.exe failed!

Could not process line:
C:\WINDOWS\system32\mmfubits.exe
Status: 0xc0000034

File C:\WINDOWS\system32\mp4sglmf.dll not found!
Deletion of file C:\WINDOWS\system32\mp4sglmf.dll failed!

Could not process line:
C:\WINDOWS\system32\mp4sglmf.dll
Status: 0xc0000034

File C:\WINDOWS\system32\mprmsfma.dll not found!
Deletion of file C:\WINDOWS\system32\mprmsfma.dll failed!

Could not process line:
C:\WINDOWS\system32\mprmsfma.dll
Status: 0xc0000034

File C:\WINDOWS\system32\mqadscp3.exe not found!
Deletion of file C:\WINDOWS\system32\mqadscp3.exe failed!

Could not process line:
C:\WINDOWS\system32\mqadscp3.exe
Status: 0xc0000034

File C:\WINDOWS\system32\msihftpw.dll not found!
Deletion of file C:\WINDOWS\system32\msihftpw.dll failed!

Could not process line:
C:\WINDOWS\system32\msihftpw.dll
Status: 0xc0000034

File C:\WINDOWS\system32\msisnwcf.dll not found!
Deletion of file C:\WINDOWS\system32\msisnwcf.dll failed!

Could not process line:
C:\WINDOWS\system32\msisnwcf.dll
Status: 0xc0000034

File C:\WINDOWS\system32\mspradme.exe not found!
Deletion of file C:\WINDOWS\system32\mspradme.exe failed!

Could not process line:
C:\WINDOWS\system32\mspradme.exe
Status: 0xc0000034

File C:\WINDOWS\system32\msrdtscf.exe not found!
Deletion of file C:\WINDOWS\system32\msrdtscf.exe failed!

Could not process line:
C:\WINDOWS\system32\msrdtscf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\mstsodbc.exe not found!
Deletion of file C:\WINDOWS\system32\mstsodbc.exe failed!

Could not process line:
C:\WINDOWS\system32\mstsodbc.exe
Status: 0xc0000034

File C:\WINDOWS\system32\narrwshr.dll not found!
Deletion of file C:\WINDOWS\system32\narrwshr.dll failed!

Could not process line:
C:\WINDOWS\system32\narrwshr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\netfrtm.dll not found!
Deletion of file C:\WINDOWS\system32\netfrtm.dll failed!

Could not process line:
C:\WINDOWS\system32\netfrtm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\netstraf.dll not found!
Deletion of file C:\WINDOWS\system32\netstraf.dll failed!

Could not process line:
C:\WINDOWS\system32\netstraf.dll
Status: 0xc0000034

File C:\WINDOWS\system32\netstraf.exe not found!
Deletion of file C:\WINDOWS\system32\netstraf.exe failed!

Could not process line:
C:\WINDOWS\system32\netstraf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ntlamsht.dll not found!
Deletion of file C:\WINDOWS\system32\ntlamsht.dll failed!

Could not process line:
C:\WINDOWS\system32\ntlamsht.dll
Status: 0xc0000034

File C:\WINDOWS\system32\oaklrass.exe not found!
Deletion of file C:\WINDOWS\system32\oaklrass.exe failed!

Could not process line:
C:\WINDOWS\system32\oaklrass.exe
Status: 0xc0000034

File C:\WINDOWS\system32\offfmsre.dll not found!
Deletion of file C:\WINDOWS\system32\offfmsre.dll failed!

Could not process line:
C:\WINDOWS\system32\offfmsre.dll
Status: 0xc0000034

File C:\WINDOWS\system32\olecmsre.dll not found!
Deletion of file C:\WINDOWS\system32\olecmsre.dll failed!

Could not process line:
C:\WINDOWS\system32\olecmsre.dll
Status: 0xc0000034

File C:\WINDOWS\system32\osunuxth.dll not found!
Deletion of file C:\WINDOWS\system32\osunuxth.dll failed!

Could not process line:
C:\WINDOWS\system32\osunuxth.dll
Status: 0xc0000034

File C:\WINDOWS\system32\osunuxth.exe not found!
Deletion of file C:\WINDOWS\system32\osunuxth.exe failed!

Could not process line:
C:\WINDOWS\system32\osunuxth.exe
Status: 0xc0000034

File C:\WINDOWS\system32\p2psifmo.exe not found!
Deletion of file C:\WINDOWS\system32\p2psifmo.exe failed!

Could not process line:
C:\WINDOWS\system32\p2psifmo.exe
Status: 0xc0000034

File C:\WINDOWS\system32\psapdani.dll not found!
Deletion of file C:\WINDOWS\system32\psapdani.dll failed!

Could not process line:
C:\WINDOWS\system32\psapdani.dll
Status: 0xc0000034

File C:\WINDOWS\system32\psbaavic.dll not found!
Deletion of file C:\WINDOWS\system32\psbaavic.dll failed!

Could not process line:
C:\WINDOWS\system32\psbaavic.dll
Status: 0xc0000034

File C:\WINDOWS\system32\psbamtxe.dll not found!
Deletion of file C:\WINDOWS\system32\psbamtxe.dll failed!

Could not process line:
C:\WINDOWS\system32\psbamtxe.dll
Status: 0xc0000034

File C:\WINDOWS\system32\psbamtxe.exe not found!
Deletion of file C:\WINDOWS\system32\psbamtxe.exe failed!

Could not process line:
C:\WINDOWS\system32\psbamtxe.exe
Status: 0xc0000034

File C:\WINDOWS\system32\qasfole2.dll not found!
Deletion of file C:\WINDOWS\system32\qasfole2.dll failed!

Could not process line:
C:\WINDOWS\system32\qasfole2.dll
Status: 0xc0000034

File C:\WINDOWS\system32\rdpwmsjt.exe not found!
Deletion of file C:\WINDOWS\system32\rdpwmsjt.exe failed!

Could not process line:
C:\WINDOWS\system32\rdpwmsjt.exe
Status: 0xc0000034

File C:\WINDOWS\system32\rtutdmin.dll not found!
Deletion of file C:\WINDOWS\system32\rtutdmin.dll failed!

Could not process line:
C:\WINDOWS\system32\rtutdmin.dll
Status: 0xc0000034

File C:\WINDOWS\system32\samsusrr.dll not found!
Deletion of file C:\WINDOWS\system32\samsusrr.dll failed!

Could not process line:
C:\WINDOWS\system32\samsusrr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\samsusrr.exe not found!
Deletion of file C:\WINDOWS\system32\samsusrr.exe failed!

Could not process line:
C:\WINDOWS\system32\samsusrr.exe
Status: 0xc0000034

File C:\WINDOWS\system32\sbeddem.dll not found!
Deletion of file C:\WINDOWS\system32\sbeddem.dll failed!

Could not process line:
C:\WINDOWS\system32\sbeddem.dll
Status: 0xc0000034

File C:\WINDOWS\system32\sbeddem.exe not found!
Deletion of file C:\WINDOWS\system32\sbeddem.exe failed!

Could not process line:
C:\WINDOWS\system32\sbeddem.exe
Status: 0xc0000034

File C:\WINDOWS\system32\sbeddem.z1 not found!
Deletion of file C:\WINDOWS\system32\sbeddem.z1 failed!

Could not process line:
C:\WINDOWS\system32\sbeddem.z1
Status: 0xc0000034

File C:\WINDOWS\system32\scsm.exe not found!
Deletion of file C:\WINDOWS\system32\scsm.exe failed!

Could not process line:
C:\WINDOWS\system32\scsm.exe
Status: 0xc0000034

File C:\WINDOWS\system32\shsvmdim.dll not found!
Deletion of file C:\WINDOWS\system32\shsvmdim.dll failed!

Could not process line:
C:\WINDOWS\system32\shsvmdim.dll
Status: 0xc0000034

File C:\WINDOWS\system32\slbipsch.dll not found!
Deletion of file C:\WINDOWS\system32\slbipsch.dll failed!

Could not process line:
C:\WINDOWS\system32\slbipsch.dll
Status: 0xc0000034

File C:\WINDOWS\system32\slbipsch.exe not found!
Deletion of file C:\WINDOWS\system32\slbipsch.exe failed!

Could not process line:
C:\WINDOWS\system32\slbipsch.exe
Status: 0xc0000034

File C:\WINDOWS\system32\snmpmmcn.dll not found!
Deletion of file C:\WINDOWS\system32\snmpmmcn.dll failed!

Could not process line:
C:\WINDOWS\system32\snmpmmcn.dll
Status: 0xc0000034

File C:\WINDOWS\system32\statamc.dll not found!
Deletion of file C:\WINDOWS\system32\statamc.dll failed!

Could not process line:
C:\WINDOWS\system32\statamc.dll
Status: 0xc0000034

File C:\WINDOWS\system32\statcre.dll not found!
Deletion of file C:\WINDOWS\system32\statcre.dll failed!

Could not process line:
C:\WINDOWS\system32\statcre.dll
Status: 0xc0000034

File C:\WINDOWS\system32\statcrs.dll not found!
Deletion of file C:\WINDOWS\system32\statcrs.dll failed!

Could not process line:
C:\WINDOWS\system32\statcrs.dll
Status: 0xc0000034

File C:\WINDOWS\system32\statd3d.dll not found!
Deletion of file C:\WINDOWS\system32\statd3d.dll failed!

Could not process line:
C:\WINDOWS\system32\statd3d.dll
Status: 0xc0000034

File C:\WINDOWS\system32\statdei.dll not found!
Deletion of file C:\WINDOWS\system32\statdei.dll failed!

Could not process line:
C:\WINDOWS\system32\statdei.dll
Status: 0xc0000034

File C:\WINDOWS\system32\statdsk.dll not found!
Deletion of file C:\WINDOWS\system32\statdsk.dll failed!

Could not process line:
C:\WINDOWS\system32\statdsk.dll
Status: 0xc0000034

File C:\WINDOWS\system32\statdss.dll not found!
Deletion of file C:\WINDOWS\system32\statdss.dll failed!

Could not process line:
C:\WINDOWS\system32\statdss.dll
Status: 0xc0000034

File C:\WINDOWS\system32\statdxt.dll not found!
Deletion of file C:\WINDOWS\system32\statdxt.dll failed!

Could not process line:
C:\WINDOWS\system32\statdxt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\statfsd.dll not found!
Deletion of file C:\WINDOWS\system32\statfsd.dll failed!

Could not process line:
C:\WINDOWS\system32\statfsd.dll
Status: 0xc0000034

File C:\WINDOWS\system32\statisr.dll not found!
Deletion of file C:\WINDOWS\system32\statisr.dll failed!

Could not process line:
C:\WINDOWS\system32\statisr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\strmwin8.dll not found!
Deletion of file C:\WINDOWS\system32\strmwin8.dll failed!

Could not process line:
C:\WINDOWS\system32\strmwin8.dll
Status: 0xc0000034

File C:\WINDOWS\system32\sysshtic.dll not found!
Deletion of file C:\WINDOWS\system32\sysshtic.dll failed!

Could not process line:
C:\WINDOWS\system32\sysshtic.dll
Status: 0xc0000034

File C:\WINDOWS\system32\sysshtic.exe not found!
Deletion of file C:\WINDOWS\system32\sysshtic.exe failed!

Could not process line:
C:\WINDOWS\system32\sysshtic.exe
Status: 0xc0000034

File C:\WINDOWS\system32\tlntrass.exe not found!
Deletion of file C:\WINDOWS\system32\tlntrass.exe failed!

Could not process line:
C:\WINDOWS\system32\tlntrass.exe
Status: 0xc0000034

File C:\WINDOWS\system32\trkwpipa.exe not found!
Deletion of file C:\WINDOWS\system32\trkwpipa.exe failed!

Could not process line:
C:\WINDOWS\system32\trkwpipa.exe
Status: 0xc0000034

File C:\WINDOWS\system32\tscfvjoy.dll not found!
Deletion of file C:\WINDOWS\system32\tscfvjoy.dll failed!

Could not process line:
C:\WINDOWS\system32\tscfvjoy.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ujn6oqt.dll not found!
Deletion of file C:\WINDOWS\system32\ujn6oqt.dll failed!

Could not process line:
C:\WINDOWS\system32\ujn6oqt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ulibofff.exe not found!
Deletion of file C:\WINDOWS\system32\ulibofff.exe failed!

Could not process line:
C:\WINDOWS\system32\ulibofff.exe
Status: 0xc0000034

File C:\WINDOWS\system32\uregdeve.dll not found!
Deletion of file C:\WINDOWS\system32\uregdeve.dll failed!

Could not process line:
C:\WINDOWS\system32\uregdeve.dll
Status: 0xc0000034

File C:\WINDOWS\system32\uregdeve.exe not found!
Deletion of file C:\WINDOWS\system32\uregdeve.exe failed!

Could not process line:
C:\WINDOWS\system32\uregdeve.exe
Status: 0xc0000034

File C:\WINDOWS\system32\vb5dmspo.dll not found!
Deletion of file C:\WINDOWS\system32\vb5dmspo.dll failed!

Could not process line:
C:\WINDOWS\system32\vb5dmspo.dll
Status: 0xc0000034

File C:\WINDOWS\system32\vbscqdv.exe not found!
Deletion of file C:\WINDOWS\system32\vbscqdv.exe failed!

Could not process line:
C:\WINDOWS\system32\vbscqdv.exe
Status: 0xc0000034

File C:\WINDOWS\system32\vdshlicw.exe not found!
Deletion of file C:\WINDOWS\system32\vdshlicw.exe failed!

Could not process line:
C:\WINDOWS\system32\vdshlicw.exe
Status: 0xc0000034

File C:\WINDOWS\system32\vgnb4c.dll not found!
Deletion of file C:\WINDOWS\system32\vgnb4c.dll failed!

Could not process line:
C:\WINDOWS\system32\vgnb4c.dll
Status: 0xc0000034

File C:\WINDOWS\system32\vmhevnet.dll not found!
Deletion of file C:\WINDOWS\system32\vmhevnet.dll failed!

Could not process line:
C:\WINDOWS\system32\vmhevnet.dll
Status: 0xc0000034

File C:\WINDOWS\system32\vmhevnet.exe not found!
Deletion of file C:\WINDOWS\system32\vmhevnet.exe failed!

Could not process line:
C:\WINDOWS\system32\vmhevnet.exe
Status: 0xc0000034

File C:\WINDOWS\system32\vwipsti_.dll not found!
Deletion of file C:\WINDOWS\system32\vwipsti_.dll failed!

Could not process line:
C:\WINDOWS\system32\vwipsti_.dll
Status: 0xc0000034

File C:\WINDOWS\system32\w3sskbda.dll not found!
Deletion of file C:\WINDOWS\system32\w3sskbda.dll failed!

Could not process line:
C:\WINDOWS\system32\w3sskbda.dll
Status: 0xc0000034

File C:\WINDOWS\system32\wdmicpui.dll not found!
Deletion of file C:\WINDOWS\system32\wdmicpui.dll failed!

Could not process line:
C:\WINDOWS\system32\wdmicpui.dll
Status: 0xc0000034

File C:\WINDOWS\system32\wiadwmis.exe not found!
Deletion of file C:\WINDOWS\system32\wiadwmis.exe failed!

Could not process line:
C:\WINDOWS\system32\wiadwmis.exe
Status: 0xc0000034

File C:\WINDOWS\system32\winbpowr.exe not found!
Deletion of file C:\WINDOWS\system32\winbpowr.exe failed!

Could not process line:
C:\WINDOWS\system32\winbpowr.exe
Status: 0xc0000034

File C:\WINDOWS\system32\wmnecomc.dll not found!
Deletion of file C:\WINDOWS\system32\wmnecomc.dll failed!

Could not process line:
C:\WINDOWS\system32\wmnecomc.dll
Status: 0xc0000034

File C:\WINDOWS\system32\wmpcskdl.dll not found!
Deletion of file C:\WINDOWS\system32\wmpcskdl.dll failed!

Could not process line:
C:\WINDOWS\system32\wmpcskdl.dll
Status: 0xc0000034

File C:\WINDOWS\system32\wmspmsv1.dll not found!
Deletion of file C:\WINDOWS\system32\wmspmsv1.dll failed!

Could not process line:
C:\WINDOWS\system32\wmspmsv1.dll
Status: 0xc0000034

File C:\WINDOWS\system32\wmspmsv1.exe not found!
Deletion of file C:\WINDOWS\system32\wmspmsv1.exe failed!

Could not process line:
C:\WINDOWS\system32\wmspmsv1.exe
Status: 0xc0000034

File C:\WINDOWS\system32\wshtlprh.dll not found!
Deletion of file C:\WINDOWS\system32\wshtlprh.dll failed!

Could not process line:
C:\WINDOWS\system32\wshtlprh.dll
Status: 0xc0000034

File C:\WINDOWS\system32\wuapsecu.dll not found!
Deletion of file C:\WINDOWS\system32\wuapsecu.dll failed!

Could not process line:
C:\WINDOWS\system32\wuapsecu.dll
Status: 0xc0000034

File C:\WINDOWS\system32\wupstlnt.dll not found!
Deletion of file C:\WINDOWS\system32\wupstlnt.dll failed!

Could not process line:
C:\WINDOWS\system32\wupstlnt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\xactcomr.exe not found!
Deletion of file C:\WINDOWS\system32\xactcomr.exe failed!

Could not process line:
C:\WINDOWS\system32\xactcomr.exe
Status: 0xc0000034

File C:\WINDOWS\system32\yapconf.exe not found!
Deletion of file C:\WINDOWS\system32\yapconf.exe failed!

Could not process line:
C:\WINDOWS\system32\yapconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\zlcocard.dll not found!
Deletion of file C:\WINDOWS\system32\zlcocard.dll failed!

Could not process line:
C:\WINDOWS\system32\zlcocard.dll
Status: 0xc0000034

File C:\WINDOWS\system32\zlcocard.exe not found!
Deletion of file C:\WINDOWS\system32\zlcocard.exe failed!

Could not process line:
C:\WINDOWS\system32\zlcocard.exe
Status: 0xc0000034

Registry value HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs replaced with dummy successfully.

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\atkcadpt not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\atkcadpt failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\attmgr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\attmgr failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\audmgr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\audmgr failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\brwmgr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\brwmgr failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\conmgr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\conmgr failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crsconf not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crsconf failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\decstat not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\decstat failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dfssrasc not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dfssrasc failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\deiconf not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\deiconf failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dpvacdfv not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dpvacdfv failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dskconf not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dskconf failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dssconf not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dssconf failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dsseds32 not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dsseds32 failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dssmgr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dssmgr failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dxdimqtr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dxdimqtr failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dxtconf not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dxtconf failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\inetzlco not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\inetzlco failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\isrconf not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\isrconf failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jgsdrpcn not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jgsdrpcn failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jgdwadsn not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jgdwadsn failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\lprmneth not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\lprmneth failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\mmfubits not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\mmfubits failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\netstraf not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\netstraf failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\osunuxth not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\osunuxth failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psbamtxe not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psbamtxe failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\samsusrr not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\samsusrr failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sbeddem not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sbeddem failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\slbipsch not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\slbipsch failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sysshtic not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sysshtic failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\uregdeve not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\uregdeve failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\vmhevnet not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\vmhevnet failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wmspmsv1 not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wmspmsv1 failed!
Status: 0xc0000034

Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\zlcocard not found!
Deletion of registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\zlcocard failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|adpticmp
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|adpticmp failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|amcdiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|amcdiag failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|audiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|audiag failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|brwdiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|brwdiag failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ccsserv
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ccsserv failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ciodiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ciodiag failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|cfgmwmid
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|cfgmwmid failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|chater.exe
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|chater.exe failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|crediag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|crediag failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|cserv32
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|cserv32 failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|cservv32
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|cservv32 failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|davctool
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|davctool failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|dssdiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|dssdiag failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|dxtdiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|dxtdiag failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|egdiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|egdiag failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|fsddiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|fsddiag failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|icmuwmad
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|icmuwmad failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ipxwshel
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ipxwshel failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|isrdiag
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|isrdiag failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ixssregw
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ixssregw failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mqadscp3
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mqadscp3 failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|msserv
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|msserv failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|msserrv32
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|msserrv32 failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|msserv32
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|msserv32 failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|msupdtwiz
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|msupdtwiz failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mswiiz32
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mswiiz32 failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mswiizz32
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mswiizz32 failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mswiz32
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mswiz32 failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|reggserv
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|reggserv failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|serrv
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|serrv failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|serv
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|serv failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|sserrvv
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|sserrvv failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|t2serv
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|t2serv failed!
Status: 0xc0000034

Could not delete registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ulibofff
Deletion of registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ulibofff failed!
Status: 0xc0000034

Completed script processing.

*******************

Finished! Terminate.

Log z hijack

Logfile of HijackThis v1.99.1
Scan saved at 0:58:27, on 23.12.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\SCROLL~1\MouseElf.EXE
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\HijackThis.exe

O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [mouseElf] C:\PROGRA~1\SCROLL~1\MouseElf.EXE
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: PowerReg Scheduler V3.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} (MainControl Class) - http://arcaonline.arcabit.com/ArcaOnline.cab
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} - http://www3.ca.com/securityadvisor/viru ... ebscan.cab
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} - http://ax.emsisoft.com/asquared.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Skype\Plugin Manager\Skype4COM.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: MX-3 B-Cup XP (Mx-3 B-Cup Service) - Unknown owner - C:\WINDOWS\system32\Mx-3 B-Cup Service.exe" s (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

Příspěvekod **fredik** » 23 pro 2006 12:02

Logu už je v pořádku.
Můžeš v něm fixnout tyto drobnosti:
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)

Ten prográmek se používá více krát za sebou protože se občas stávalo že na jeden zátah se neodstranilo vše.

Jestli ti nejde zapnout firewall, nevím jestli používáš ten co je součástí Windows nebo jsi měl doinstalovaný nějaký jiný a ten ti nejde spustit tak ho vyzkoušej přeinstalovat. Je možné že ho ten vir nějak poškodil.

Případně to zkus ještě pro jistotu projet a dej sem log z Mwav pokud něco najde. Ale před jeho spuštěním proveď update programu.

Petrr · Příspěvekod **Petrr** » 02 led 2007 05:19

Jan Pašek píše:Avast mi ukazuje v souboru c:\widows\...\wmpssdpb.dll virus warez ABA po řesunutí do truhly se počase znovu obnovuje. Máte někdo tušení od čeho je ten zmiňovaný soubor. Mám podezření že jsem si ho stáhl ze slunečnice s ACE Mega Codec Packem. Jak na něj?

stejný problém, můžete mě proím poradit se toho zbavit. Přikládám log

Mám Logfile of HijackThis v1.99.1
Scan saved at 5:10:39, on 2.1.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
C:\Program Files\MSN Apps\Updater\01.02.3000.1001\cs-cz\msnappau.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Outlook Express\msimn.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\System32\osunuxth.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\DOCUME~1\Petr\LOCALS~1\Temp\Rar$EX03.000\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\cs-cz\msntb.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &S-Rank - {B71B15CF-3093-459C-B764-AEB2486F2273} - C:\Documents and Settings\Eliška\Dokumenty\My Videos\Postak\SRank.dll (file missing)
O3 - Toolbar: &Seznam Lištička - {B71B15CE-3093-459C-B764-AEB2486F2273} - C:\Program Files\Seznam Listicka\Toolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\cs-cz\msnappau.exe"
O4 - HKLM\..\Run: [SeznamAntidialer] "C:\Program Files\Seznam Listicka\ToolbarAntiDialer.exe"
O4 - HKLM\..\Run: [SMail] "C:\Documents and Settings\Eliška\Dokumenty\My Videos\Postak\Postak.exe"
O4 - HKLM\..\Run: [SpySpotter System Defender] C:\Program Files\SpySpotter3\Defender.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MIF269~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Informace o pluginu iAudit - {912B1533-A668-41B3-92E6-627B150EDB90} - http://monitor.iaudit.info/info (file missing)
O9 - Extra 'Tools' menuitem: Plugin iAudit - {912B1533-A668-41B3-92E6-627B150EDB90} - http://monitor.iaudit.info/info (file missing)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF269~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {3190CE28-0B6E-4133-A7D3-87D29CB92120} (ToolbarInetInstall Control) - http://www.listicka.cz/toolbar.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v ... 0790541234
O16 - DPF: {65D72393-E210-4A2A-B8E0-10AC45986770} (GWebInstallControl Object) - http://recruit.netmonitor.cz/WebInstaller.dll
O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://www.gfp.cz:88/activex/AMC.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMe ... loader.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} - http://static.zangocash.com/cab/Zango/i ... d94259853a
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://arcade.icq.com/carlo/zuma/popcaploader_v5.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E741ED04-E107-4DEB-A470-176AF55BD663}: NameServer = 10.1.0.244
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: e1.dll wuapsecu.dll
O20 - Winlogon Notify: osunuxth - C:\WINDOWS\system32\osunuxth.dll
O20 - Winlogon Notify: t2emmsac - C:\WINDOWS\system32\t2emmsac.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InCD Helper (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

Jan Pašek · Příspěvekod **Jan Pašek** » 02 led 2007 08:12

V této diskusi je komplet návod na vyčištění řádně jí pročti vyčisti podle návodu a pak si dej zkontrolovat log z Hijack s popisem o co šlo aby ten kdo to bude kontrolovat věděl na co se zaměřit.
Pro samotnou kontrolu logů tu máme samostatnou sekci tak bych poprosil tam již takto je tahle diskuse dost nepřehledná.
Ještě malé upozornění virus se zapisuje do systémových souborů a pro úplné odstranění bude zřejmě třeba vypnout obnovu systému. Tím ale přídeš o možnost rátit systém do bodu obnovení před vypnutím obnovy systému všechna data se smažou a s nimi i infikovaný systémový soubor. Je tedy dost důležité aby si měl systém jinak bezproblémový. Samozřejmě obnovení systému si zase zapneš až obrdžíš potvrzení že log je čistý.
Další možnost jak se viru zbavit pokud víš kdy jsi ho chytil použít místo čištění obnovu systému a vrátit stav do doby před infekcí tím ale stratíš data za bodem obnovení.
Odkazy na to jak se virus šíří a jeho chování najdeš také v této diskusi mělo by i to pomoci v hledání bodu obnovení tedy doby infekce.
Jinak pro odvirování a u tebe hlavně pro následnou kontrolu je tady návod http://www.pc-help.cz/viewtopic.php?t=3277 spoustu věcí si tedy můžeš udělat sám a log z hijack poslat až nakonec. Délka celého procesu odvirování podle návodu záleží na objemu dat na HD takže na mých 500GB sem si musel vyšetřit zhruba jeden den.

Jan Pašek · Příspěvekod **Jan Pašek** » 02 led 2007 08:32

Ještě sem se musel vrátit a dopovědět ti jak se v tomto případě chránit. Jak si se možná dočetl virus se šíří přez ICQ důleřitá jsou dvě nastavení v ICQ používat fireval a pak Woknácký fireval není až zas tak úplně A1 řada lidí tady na fóru používá Kerio doporučil bych tedy instalaci externího firewalu.

Petrr · Příspěvekod **Petrr** » 02 led 2007 21:10

Jan Pašek píše:Ještě sem se musel vrátit a dopovědět ti jak se v tomto případě chránit. Jak si se možná dočetl virus se šíří přez ICQ důleřitá jsou dvě nastavení v ICQ používat fireval a pak Woknácký fireval není až zas tak úplně A1 řada lidí tady na fóru používá Kerio doporučil bych tedy instalaci externího firewalu.

udělal jsem scan ale nemůžu dostat log na sítˇke kontrole můžete mě pomoct?

Tue Jan 02 19:26:22 2007 => **********************************************************
Tue Jan 02 19:26:22 2007 => MicroWorld Anti Virus & Spyware Toolkit Utility.
Tue Jan 02 19:26:22 2007 => Copyright © 2003-2006, MicroWorld Technologies Inc.
Tue Jan 02 19:26:22 2007 => **********************************************************
Tue Jan 02 19:26:22 2007 => Source: C:\DOCUME~1\Petr\LOCALS~1\TEMPOR~1\Content.IE5\K96UJ7LZ\MWAV_1~1.EXE
Tue Jan 02 19:26:22 2007 => Version 8.8.1 (C:\DOCUME~1\Petr\LOCALS~1\Temp\mexe.com)
Tue Jan 02 19:26:22 2007 => Log File: C:\DOCUME~1\Petr\LOCALS~1\Temp\MWAV.LOG
Tue Jan 02 19:26:22 2007 => MWAV Registered: FALSE.
Tue Jan 02 19:26:22 2007 => User Account: Petr
Tue Jan 02 19:26:22 2007 => OS Type: Windows Workstation
Tue Jan 02 19:26:22 2007 => OS: Windows XP
Tue Jan 02 19:26:22 2007 => Ver: Service Pack 2 (Build 2600)
Tue Jan 02 19:26:22 2007 => Windows Root Folder: C:\WINDOWS
Tue Jan 02 19:26:22 2007 => Windows Sys32 Folder: C:\WINDOWS\system32
Tue Jan 02 19:26:22 2007 => Local Fixed Drives: c:\
Tue Jan 02 19:26:22 2007 => MWAV Mode: Only Scan files.
Tue Jan 02 19:26:22 2007 => Latest Date of files inside MWAV: 02 Jan 2007 13:55:4.
Tue Jan 02 19:26:25 2007 => AV Library Loaded...
Tue Jan 02 19:26:25 2007 => MWAV doing self scanning...
Tue Jan 02 19:26:25 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\Getvlist.exe
Tue Jan 02 19:26:26 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\main.avi
Tue Jan 02 19:26:26 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\virus.avi
Tue Jan 02 19:26:26 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\ScanningProcess.exe
Tue Jan 02 19:26:26 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\Kave.dll
Tue Jan 02 19:26:26 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\prloader.dll
Tue Jan 02 19:26:26 2007 => MWAV files are clean.
Tue Jan 02 19:26:32 2007 => Virus Database Date: 1/2/2007
Tue Jan 02 19:26:32 2007 => Virus Database Count: 255607
Tue Jan 02 19:27:20 2007 => Downloading AntiVirus and Anti-Spyware Databases...
Tue Jan 02 19:27:27 2007 => Downloads Successful...
Tue Jan 02 19:27:30 2007 => Reload of AntiVirus Signatures successfully done.
Tue Jan 02 19:27:30 2007 => Virus Database Date: 1/2/2007
Tue Jan 02 19:27:30 2007 => Virus Database Count: 255581

Tue Jan 02 19:27:33 2007 => **********************************************************
Tue Jan 02 19:27:33 2007 => MicroWorld Anti Virus & Spyware Toolkit Utility.
Tue Jan 02 19:27:33 2007 => Copyright © 2003-2006, MicroWorld Technologies Inc.
Tue Jan 02 19:27:33 2007 =>
Tue Jan 02 19:27:33 2007 => Support: support@mwti.net
Tue Jan 02 19:27:33 2007 => Web: http://www.mwti.net
Tue Jan 02 19:27:33 2007 => **********************************************************
Tue Jan 02 19:27:33 2007 => Version 8.8.1 (C:\DOCUME~1\Petr\LOCALS~1\Temp\mexe.com)
Tue Jan 02 19:27:33 2007 => Log File: C:\DOCUME~1\Petr\LOCALS~1\Temp\MWAV.LOG
Tue Jan 02 19:27:33 2007 => User Account: Petr
Tue Jan 02 19:27:33 2007 => Windows Root Folder: C:\WINDOWS
Tue Jan 02 19:27:33 2007 => Windows Sys32 Folder: C:\WINDOWS\system32
Tue Jan 02 19:27:33 2007 => OS: Windows XP
Tue Jan 02 19:27:33 2007 => Ver: Service Pack 2 (Build 2600)
Tue Jan 02 19:27:33 2007 => Latest Date of files inside MWAV: 02 Jan 2007 10:17:5.

Tue Jan 02 19:27:33 2007 => Options Selected by User:
Tue Jan 02 19:27:33 2007 => Memory Check: Enabled
Tue Jan 02 19:27:33 2007 => Registry Check: Enabled
Tue Jan 02 19:27:33 2007 => StartUp Folder Check: Enabled
Tue Jan 02 19:27:33 2007 => System Folder Check: Enabled
Tue Jan 02 19:27:33 2007 => System Area Check: Disabled
Tue Jan 02 19:27:33 2007 => Services Check: Enabled
Tue Jan 02 19:27:33 2007 => Drive Check Option Disabled
Tue Jan 02 19:27:33 2007 => Folder Check: Disabled

Tue Jan 02 19:27:34 2007 => ***** Scanning Memory Files *****
Tue Jan 02 19:27:34 2007 => Scanning File C:\WINDOWS\System32\smss.exe
Tue Jan 02 19:27:34 2007 => Scanning File C:\WINDOWS\system32\ntdll.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\SYSTEM32\CSRSS.EXE
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\CSRSRV.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\basesrv.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\winsrv.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\GDI32.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\KERNEL32.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\USER32.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\sxs.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\ADVAPI32.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\RPCRT4.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\SYSTEM32\WINLOGON.EXE
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\AUTHZ.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\msvcrt.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\CRYPT32.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\MSASN1.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\NDdeApi.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\PROFMAP.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\NETAPI32.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\USERENV.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\PSAPI.DLL
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\REGAPI.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\Secur32.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\SETUPAPI.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\VERSION.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\WINSTA.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\WINTRUST.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\IMAGEHLP.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\WS2_32.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\WS2HELP.dll
Tue Jan 02 19:27:35 2007 => Scanning File C:\WINDOWS\system32\MSGINA.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\SHLWAPI.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\COMCTL32.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\ODBC32.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\comdlg32.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\odbcint.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\SHSVCS.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\sfc.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\sfc_os.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\ole32.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\Apphelp.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\WINSCARD.DLL
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\WTSAPI32.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\uxtheme.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\WINMM.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\Ati2evxx.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\rsaenh.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\cscdll.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\WINSPOOL.DRV
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\MPR.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\WgaLogon.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\OLEAUT32.dll
Tue Jan 02 19:27:36 2007 => Scanning File C:\WINDOWS\system32\NTMARTA.DLL
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\WLDAP32.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\SAMLIB.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\CLBCATQ.DLL
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\COMRes.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\msv1_0.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\iphlpapi.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\RASAPI32.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\rasman.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\TAPI32.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\rtutils.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\cscui.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\MPRAPI.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\ACTIVEDS.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\adsldpc.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\ATL.DLL
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\xpsp2res.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\wdmaud.drv
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\msacm32.drv
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\MSACM32.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\midimap.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\services.exe
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\SCESRV.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\umpnpmgr.dll
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\NCObjAPI.DLL
Tue Jan 02 19:27:37 2007 => Scanning File C:\WINDOWS\system32\MSVCP60.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\ShimEng.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\AppPatch\AcGenral.DLL
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\eventlog.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\LSASRV.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\NTDSAPI.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\DNSAPI.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\SAMSRV.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\cryptdll.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\msprivs.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\kerberos.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\netlogon.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\w32time.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\schannel.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\wdigest.dll
Tue Jan 02 19:27:38 2007 => Scanning File C:\WINDOWS\system32\scecli.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\ipsecsvc.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\oakley.DLL
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\WINIPSEC.DLL
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\mswsock.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\hnetcfg.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\pstorsvc.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\psbase.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\System32\wshtcpip.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\dssenh.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\Ati2evxx.exe
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\Ati2edxx.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\rpcss.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\termsrv.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\ICAAPI.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\mstlsapi.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\System32\wshisn.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\WSOCK32.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\System32\winrnr.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\rasadhlp.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\dhcpcsvc.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\wzcsvc.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\WMI.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\ESENT.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\System32\rastls.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\CRYPTUI.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\system32\WININET.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\System32\raschap.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\schedsvc.dll
Tue Jan 02 19:27:39 2007 => Scanning File C:\WINDOWS\System32\MSIDLE.DLL
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\audiosrv.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\wkssvc.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\cryptsvc.dll
Tue Jan 02 19:27:39 2007 => Scanning File c:\windows\system32\certcli.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\ersvc.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\es.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\pchealth\helpctr\binaries\pchsvc.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\srvsvc.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\netman.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\netshell.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\credui.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\WZCSAPI.DLL
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\seclogon.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\sens.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\srsvc.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\POWRPROF.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\trkwks.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\wbem\wmisvc.dll
Tue Jan 02 19:27:40 2007 => Scanning File C:\WINDOWS\system32\VSSAPI.DLL
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\ipnathlp.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\wscsvc.dll
Tue Jan 02 19:27:40 2007 => Scanning File c:\windows\system32\msi.dll
Tue Jan 02 19:27:40 2007 => Scanning File C:\WINDOWS\system32\wbem\wbemcomn.dll
Tue Jan 02 19:27:40 2007 => Scanning File C:\WINDOWS\System32\Wbem\wbemcore.dll
Tue Jan 02 19:27:40 2007 => Scanning File C:\WINDOWS\System32\Wbem\esscli.dll
Tue Jan 02 19:27:40 2007 => Scanning File C:\WINDOWS\System32\Wbem\FastProx.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\wbem\wmiutils.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\wbem\repdrvfs.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\comsvcs.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\colbact.DLL
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\MTXCLU.DLL
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\CLUSAPI.DLL
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\RESUTILS.DLL
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\wbem\wmiprvsd.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\wbem\wbemess.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\wbem\ncprov.dll
Tue Jan 02 19:27:41 2007 => Scanning File c:\windows\system32\browser.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\netcfgx.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\rasmans.dll
Tue Jan 02 19:27:41 2007 => Scanning File c:\windows\system32\tapisrv.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\rastapi.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\unimdm.tsp
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\uniplat.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\unimdmat.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\modemui.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\kmddsp.tsp
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\ndptsp.tsp
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\ipconf.tsp
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\h323.tsp
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\hidphone.tsp
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\HID.DLL
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\rasppp.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\ntlsapi.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\ipxwan.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\adptif.dll
Tue Jan 02 19:27:41 2007 => Scanning File c:\windows\system32\rasauto.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\icmp.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\upnphost.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\WINHTTP.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\system32\SSDPAPI.dll
Tue Jan 02 19:27:41 2007 => Scanning File C:\WINDOWS\System32\RASDLG.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\upnp.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\urlmon.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\wuapi.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\PROGRA~1\Ahead\InCD\InCDsrv.exe
Tue Jan 02 19:27:42 2007 => Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\DRIVEL~1.DLL
Tue Jan 02 19:27:42 2007 => Scanning File C:\PROGRA~1\Ahead\InCD\incdshx.dll
Tue Jan 02 19:27:42 2007 => Scanning File c:\windows\system32\dnsrslvr.dll
Tue Jan 02 19:27:42 2007 => Scanning File c:\windows\system32\lmhsvc.dll
Tue Jan 02 19:27:42 2007 => Scanning File c:\windows\system32\webclnt.dll
Tue Jan 02 19:27:42 2007 => Scanning File c:\windows\system32\ssdpsrv.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\msxml3.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\mlang.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\httpapi.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\udhisapi.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\SPOOLSS.DLL
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\localspl.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\cnbjmon.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\mdimon.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\pjlmon.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\tcpmon.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\usbmon.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\win32spl.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\NETRAP.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\WINDOWS\system32\inetpp.dll
Tue Jan 02 19:27:42 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswUpdSv.exe
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\WINDOWS\system32\MSVCP71.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\WINDOWS\system32\MSVCR71.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashServ.exe
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswEngin.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswScan.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswInteg.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswIdle.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\WINDOWS\system32\dbghelp.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Czech\Base.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\UNACEV2.DLL
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResMai.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ahResMes.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResNS.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResOut.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ahResP2P.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResStd.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResWS.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashSSqlt.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\WINDOWS\system32\perfos.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\WINDOWS\system32\cisvc.exe
Tue Jan 02 19:27:43 2007 => Scanning File C:\WINDOWS\system32\query.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\COMMON~1\MICROS~1\VS7DEBUG\MDM.EXE
Tue Jan 02 19:27:43 2007 => Scanning File c:\windows\system32\wiaservc.dll
Tue Jan 02 19:27:43 2007 => Scanning File c:\windows\system32\CFGMGR32.dll
Tue Jan 02 19:27:43 2007 => Scanning File c:\windows\system32\mscms.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\WINDOWS\system32\dsncp106.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\WINDOWS\system32\actxprxy.dll
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashMaiSv.exe
Tue Jan 02 19:27:43 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\MFC71.DLL
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\RICHED20.DLL
Tue Jan 02 19:27:44 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Czech\Lang.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Czech\langmai.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashWebSv.exe
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\security.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashWsFtr.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\OLEACC.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AhResWs.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\System32\alg.exe
Tue Jan 02 19:27:44 2007 => Scanning File c:\windows\system32\w3ssl.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\System32\strmfilt.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\wscntfy.exe
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\Explorer.EXE
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\BROWSEUI.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\SHDOCVW.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\themeui.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\MSIMG32.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\PROGRA~1\WINDOW~2\wmpband.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\msutb.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\MSCTF.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\LINKINFO.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\stobject.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\BatMeter.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\WPDShServiceObj.dll
Tue Jan 02 19:27:44 2007 => Scanning File C:\WINDOWS\system32\mydocs.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\PortableDeviceTypes.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\PortableDeviceApi.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\System32\drprov.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\System32\ntlanman.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\System32\NETUI0.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\System32\NETUI1.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\System32\davclnt.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\PROGRA~1\ICQTOO~1\toolbaru.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\shdoclc.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\PROGRA~1\WinRAR\rarext.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\PROGRA~1\WinRAR\rarlng.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashShell.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\PROGRA~1\ATITEC~1\ATICON~1\atiptaxx.exe
Tue Jan 02 19:27:45 2007 => Scanning File C:\PROGRA~1\ATITEC~1\ATICON~1\atipdsxx.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\PROGRA~1\ATITEC~1\ATICON~1\ATRPUIXX.CSY
Tue Jan 02 19:27:45 2007 => Scanning File C:\PROGRA~1\ATITEC~1\ATICON~1\atipdxxx.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\DINPUT8.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\SOUNDMAN.EXE
Tue Jan 02 19:27:45 2007 => Scanning File C:\PROGRA~1\WinFast\WFTVFM\WFWIZ.exe
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\qcap.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\MSVFW32.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\quartz.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\devenum.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\msdmo.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\ksproxy.ax
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\ksuser.dll
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\kswdmcap.ax
Tue Jan 02 19:27:45 2007 => Scanning File C:\WINDOWS\system32\MFC42.DLL
Tue Jan 02 19:27:46 2007 => Scanning File C:\WINDOWS\system32\MFC42LOC.DLL
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\MSNAPP~1\Updater\010230~1.100\cs-cz\msnappau.exe
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\MSNAPP~1\Updater\010230~1.100\cs-cz\au_util.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\WINDOWS\system32\SensApi.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\MSNAPP~1\Updater\010230~1.100\cs-cz\TBDwnMgr.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_0\bin\jusched.exe
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\iTunes\ITUNES~1.EXE
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\iTunes\ITUNES~2.RES\ENBEFF~1.LPR\ITUNES~1.DLL
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\iTunes\ITUNES~2.RES\ITUNES~1.DLL
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\AavmRpch.dll
Tue Jan 02 19:27:46 2007 => Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruimai.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll
Tue Jan 02 19:27:46 2007 => Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruimes.dll
Tue Jan 02 19:27:46 2007 => Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruins.dll
Tue Jan 02 19:27:46 2007 => Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruiout.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\WINDOWS\system32\MAPI32.dll
Tue Jan 02 19:27:46 2007 => Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruip2p.dll
Tue Jan 02 19:27:46 2007 => Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruistd.dll
Tue Jan 02 19:27:46 2007 => Scanning File c:\PROGRA~1\ALWILS~1\avast4\ahruiws.dll
Tue Jan 02 19:27:46 2007 => Scanning File C:\PROGRA~1\MESSEN~1\msmsgs.exe
Tue Jan 02 19:27:46 2007 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\XPOB2RES.DLL
Tue Jan 02 19:27:47 2007 => Scanning File C:\PROGRA~1\Google\GOOGLE~2\12908~1.500\GOOGLE~1.EXE
Tue Jan 02 19:27:47 2007 => Scanning File C:\PROGRA~1\Google\GOOGLE~2\12908~1.500\res_en.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\PROGRA~1\Google\GOOGLE~2\12908~1.500\swg.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\PROGRA~1\iPod\bin\IPODSE~1.EXE
Tue Jan 02 19:27:47 2007 => Scanning File C:\PROGRA~1\iPod\bin\IPODSE~1.RES\ENBEFF~1.LPR\IPODSE~1.DLL
Tue Jan 02 19:27:47 2007 => Scanning File C:\PROGRA~1\iPod\bin\IPODSE~1.RES\IPODSE~1.DLL
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\notepad.exe
Tue Jan 02 19:27:47 2007 => Scanning File C:\PROGRA~1\INTERN~1\IEXPLORE.EXE
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\browselc.dll
Tue Jan 02 19:27:47 2007 => Scanning File c:\PROGRA~1\google\GOOGLE~2.DLL
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\IMM32.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_0\bin\ssv.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\OLEPRO32.DLL
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\mshtml.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\msls31.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\msimtf.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\PROGRA~1\MIF269~1\OFFICE11\msohev.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\jscript.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\mshtmled.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\iepeers.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\dxtrans.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\ddrawex.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\DDRAW.dll
Tue Jan 02 19:27:47 2007 => Scanning File C:\WINDOWS\system32\DCIMAN32.dll
Tue Jan 02 19:27:48 2007 => Scanning File C:\WINDOWS\system32\dxtmsft.dll
Tue Jan 02 19:27:48 2007 => Scanning File C:\WINDOWS\system32\ImgUtil.dll
Tue Jan 02 19:27:48 2007 => Scanning File C:\WINDOWS\system32\pngfilt.dll
Tue Jan 02 19:27:48 2007 => Scanning File C:\WINDOWS\system32\msieftp.dll
Tue Jan 02 19:27:48 2007 => Scanning File C:\WINDOWS\system32\corpol.dll
Tue Jan 02 19:27:48 2007 => Scanning File C:\WINDOWS\system32\cryptnet.dll
Tue Jan 02 19:27:48 2007 => Scanning File C:\WINDOWS\system32\cidaemon.exe
Tue Jan 02 19:27:48 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\mexe.com
Tue Jan 02 19:27:48 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\msvl64.dll
Tue Jan 02 19:27:48 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\kave.dll
Tue Jan 02 19:27:48 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\PSAPI.DLL
Tue Jan 02 19:27:48 2007 => Scanning File C:\WINDOWS\system32\RICHED32.DLL
Tue Jan 02 19:27:48 2007 => Scanning File C:\WINDOWS\system32\VDMDBG.DLL
Tue Jan 02 19:27:48 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\ScanningProcess.exe
Tue Jan 02 19:27:48 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\prloader.dll
Tue Jan 02 19:27:48 2007 => Scanning File C:\DOCUME~1\Petr\LOCALS~1\Temp\prkernel.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\avpmgr.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\wdiskio.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\nfio.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\avlib.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\dtreg.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\prutil.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\avp1.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\l_llio.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\ichstrms.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\hashcont.ppl
Tue Jan 02 19:27:48 2007 => Scanning File c:\docume~1\petr\locals~1\temp\hccmp.ppl
Tue Jan 02 19:27:49 2007 => Scanning File c:\docume~1\petr\locals~1\temp\iwgen.ppl

Tue Jan 02 19:27:49 2007 => ***** Scanning Registry Files *****

Tue Jan 02 19:27:49 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Tue Jan 02 19:27:49 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Tue Jan 02 19:27:49 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Tue Jan 02 19:27:49 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:49 2007 => Scanning File C:\WINDOWS\system32\stobject.dll
Tue Jan 02 19:27:49 2007 => Scanning File C:\WINDOWS\system32\WPDShServiceObj.dll

Tue Jan 02 19:27:49 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad

Tue Jan 02 19:27:49 2007 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Plugins\Extension

Tue Jan 02 19:27:49 2007 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
Tue Jan 02 19:27:49 2007 => Scanning File C:\PROGRA~1\ICQTOO~1\toolbaru.dll
Tue Jan 02 19:27:49 2007 => ERROR!!! Invalid Entry {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} = C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\cs-cz\msntb.dll (in key SOFTWARE\Microsoft\Internet Explorer\Toolbar). No Action Taken.
Tue Jan 02 19:27:49 2007 => Scanning File C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\yt.dll
Tue Jan 02 19:27:49 2007 => ERROR!!! Invalid Entry {B71B15CF-3093-459C-B764-AEB2486F2273} = C:\Documents and Settings\Eliška\Dokumenty\My Videos\Postak\SRank.dll (in key SOFTWARE\Microsoft\Internet Explorer\Toolbar). No Action Taken.
Tue Jan 02 19:27:49 2007 => Scanning File C:\PROGRA~1\SEZNAM~1\Toolbar.dll
Tue Jan 02 19:27:50 2007 => Scanning File c:\PROGRA~1\google\GOOGLE~2.DLL

Tue Jan 02 19:27:50 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
Tue Jan 02 19:27:50 2007 => {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} = C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
Tue Jan 02 19:27:50 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_0\bin\ssv.dll
Tue Jan 02 19:27:50 2007 => {AA58ED58-01DD-4d91-8333-CF10577473F7} = c:\program files\google\googletoolbar2.dll
Tue Jan 02 19:27:50 2007 => Scanning File c:\PROGRA~1\google\GOOGLE~2.DLL

Tue Jan 02 19:27:50 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\browseui.dll

Tue Jan 02 19:27:50 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\mmsys.cpl
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\icmui.dll
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\rshx32.dll
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\docprop.dll
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\themeui.dll
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\deskadp.dll
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\deskmon.dll
Tue Jan 02 19:27:50 2007 => Scanning File C:\WINDOWS\system32\dssec.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\SlayerXP.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\shscrap.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\diskcopy.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\ntlanui2.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\System32\icmui.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\icmui.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\printui.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\dskquoui.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\syncui.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\hticons.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\fontext.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\icmui.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\rshx32.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\deskperf.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\cryptext.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\cryptext.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\wiashext.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\wiashext.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\wiashext.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\wiashext.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\wiashext.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\remotepg.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\wshext.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\PROGRA~1\COMMON~1\System\OLEDB~1\oledb32.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\mstask.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\mstask.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\mstask.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:51 2007 => Scanning File C:\WINDOWS\system32\wuaucpl.cpl
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\twext.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\twext.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\sendmail.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\sendmail.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\occache.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\appwiz.cpl
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\appwiz.cpl
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\appwiz.cpl
Tue Jan 02 19:27:52 2007 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\netplwiz.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\netplwiz.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\netplwiz.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\netplwiz.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\zipfldr.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\zipfldr.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\zipfldr.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\cdfview.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\cdfview.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\cdfview.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\cdfview.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\cdfview.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\extmgr.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\msieftp.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\docprop2.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\docprop2.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\docprop2.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\docprop2.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\docprop2.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\docprop2.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\dsquery.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\dsquery.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\dsquery.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\dsquery.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\dsuiext.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\dsuiext.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\mydocs.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\mydocs.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\mydocs.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\System32\cscui.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\System32\cscui.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\System32\cscui.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\msagent\agentpsh.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\dfsshlex.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\photowiz.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\System32\mmcshext.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\cabview.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\PROGRA~1\OUTLOO~1\wabfind.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\wmpshell.dll
Tue Jan 02 19:27:53 2007 => Scanning File C:\WINDOWS\system32\wmpshell.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\wmpshell.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\PROGRA~1\ICQLite\ICQLIT~1.DLL
Tue Jan 02 19:27:54 2007 => Scanning File C:\PROGRA~1\Ahead\InCD\incdshx.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\PROGRA~1\COMMON~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL
Tue Jan 02 19:27:54 2007 => Scanning File C:\PROGRA~1\MIF269~1\OFFICE11\msohev.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\PROGRA~1\MIF269~1\OFFICE11\MLSHEXT.DLL
Tue Jan 02 19:27:54 2007 => Scanning File C:\PROGRA~1\MIF269~1\OFFICE11\OLKFSTUB.DLL
Tue Jan 02 19:27:54 2007 => ERROR!!! Invalid Entry {32020A01-506E-484D-A2A8-BE3CF17601C3} = C:\PROGRA~1\ALCOHO~1\ALCOHO~1\AXShlEx.dll (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved). No Action Taken.
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\PROGRA~1\WinRAR\rarext.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\Audiodev.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\Audiodev.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\wpdshext.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\wpdshext.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\PROGRA~1\iTunes\ITUNES~2.DLL
Tue Jan 02 19:27:54 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashShell.dll

Tue Jan 02 19:27:54 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

Tue Jan 02 19:27:54 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\Explorer.exe
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\userinit.exe
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\dskquota.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\scecli.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\system32\scecli.dll
Tue Jan 02 19:27:54 2007 => Scanning File C:\WINDOWS\System32\cscui.dll
Tue Jan 02 19:27:54 2007 => Invalid Entry DllName = appmgmts.dll (in key SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{c6dc5466-785a-11d2-84d0-00c04fb169f7}). Deleting Registry Key {c6dc5466-785a-11d2-84d0-00c04fb169f7}...
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\Ati2evxx.dll
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\crypt32.dll
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\cryptnet.dll
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\cscdll.dll
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\sclgntfy.dll
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Tue Jan 02 19:27:55 2007 => Invalid Entry DllName = C:\WINDOWS\system32\t2emmsac.dll (in key SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\t2emmsac). Deleting Registry Key t2emmsac...
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\WgaLogon.dll
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\wlnotify.dll

Tue Jan 02 19:27:55 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Tue Jan 02 19:27:55 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System

Tue Jan 02 19:27:55 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

Tue Jan 02 19:27:55 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AEDEBUG
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\drwtsn32.exe

Tue Jan 02 19:27:55 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\ntsd.exe

Tue Jan 02 19:27:55 2007 => Scanning HKCU\Control Panel\Desktop
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\LYNXBL~1.SCR

Tue Jan 02 19:27:55 2007 => Scanning HKLM\SYSTEM\CurrentControlSet\Control\WOW
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\ntvdm.exe
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\ntvdm.exe

Tue Jan 02 19:27:55 2007 => Scanning HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\inf\unregmp2.exe
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\shmgrate.exe
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\shmgrate.exe
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Tue Jan 02 19:27:55 2007 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Tue Jan 02 19:27:55 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Tue Jan 02 19:27:56 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Tue Jan 02 19:27:56 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Tue Jan 02 19:27:56 2007 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Tue Jan 02 19:27:56 2007 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Tue Jan 02 19:27:56 2007 => Scanning File C:\WINDOWS\system32\ie4uinit.exe

Tue Jan 02 19:27:56 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
Tue Jan 02 19:27:56 2007 => ERROR!!! Invalid Entry wininet.dll = regperf.exe (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run). No Action Taken.
Tue Jan 02 19:27:56 2007 => ERROR!!! Invalid Entry kernel32.dll = C:\WINDOWS\system32\atmclk.exe (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run). No Action Taken.

Tue Jan 02 19:27:56 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

Tue Jan 02 19:27:56 2007 => Scanning HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Run

Tue Jan 02 19:27:56 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Run

Tue Jan 02 19:27:56 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Tue Jan 02 19:27:56 2007 => Scanning File C:\PROGRA~1\ATITEC~1\ATICON~1\atiptaxx.exe
Tue Jan 02 19:27:56 2007 => Scanning File C:\WINDOWS\SOUNDMAN.EXE
Tue Jan 02 19:27:56 2007 => Scanning File C:\PROGRA~1\WinFast\WFTVFM\WFWIZ.exe
Tue Jan 02 19:27:56 2007 => Scanning File C:\WINDOWS\system32\NeroCheck.exe
Tue Jan 02 19:27:56 2007 => Scanning File C:\PROGRA~1\MSNAPP~1\Updater\010230~1.100\cs-cz\msnappau.exe
Tue Jan 02 19:27:56 2007 => ERROR!!! Invalid Entry SeznamAntidialer = "C:\Program Files\Seznam Listicka\ToolbarAntiDialer.exe" (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
Tue Jan 02 19:27:56 2007 => ERROR!!! Invalid Entry SMail = "C:\Documents and Settings\Eliška\Dokumenty\My Videos\Postak\Postak.exe" (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
Tue Jan 02 19:27:56 2007 => ERROR!!! Invalid Entry SpySpotter System Defender = C:\Program Files\SpySpotter3\Defender.exe -startup (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
Tue Jan 02 19:27:56 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_0\bin\jusched.exe
Tue Jan 02 19:27:56 2007 => Scanning File C:\PROGRA~1\iTunes\ITUNES~1.EXE
Tue Jan 02 19:27:56 2007 => Scanning File C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

Tue Jan 02 19:27:56 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Tue Jan 02 19:27:56 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Tue Jan 02 19:27:56 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Tue Jan 02 19:27:56 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce

Tue Jan 02 19:27:56 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Tue Jan 02 19:27:56 2007 => Scanning File C:\PROGRA~1\MESSEN~1\msmsgs.exe
Tue Jan 02 19:27:56 2007 => Scanning File C:\PROGRA~1\Google\GOOGLE~2\12908~1.500\GOOGLE~1.EXE

Tue Jan 02 19:27:56 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Tue Jan 02 19:27:56 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Tue Jan 02 19:27:56 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Tue Jan 02 19:27:56 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\Setup

Tue Jan 02 19:27:56 2007 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Tue Jan 02 19:27:56 2007 => Scanning File C:\WINDOWS\system32\CTFMON.EXE

Tue Jan 02 19:27:56 2007 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Tue Jan 02 19:27:56 2007 => Scanning HKCR\txtfile\shell\open\command

Tue Jan 02 19:27:56 2007 => Scanning HKCR\comfile\shell\open\command

Tue Jan 02 19:27:56 2007 => Scanning HKCR\exefile\shell\open\command

Tue Jan 02 19:27:57 2007 => Scanning HKCR\dllfile\shell\open\command

Tue Jan 02 19:27:57 2007 => Scanning HKCR\batfile\shell\open\command

Tue Jan 02 19:27:57 2007 => Scanning HKCR\piffile\shell\open\command

Tue Jan 02 19:27:57 2007 => Scanning HKCR\scrfile\shell\open\command

Tue Jan 02 19:27:57 2007 => Scanning HKCR\scrfile\shell\config\command

Tue Jan 02 19:27:57 2007 => Scanning HKCR\regfile\shell\open\command

Tue Jan 02 19:27:57 2007 => Scanning HKCR\htmlfile\shell\open\command
Tue Jan 02 19:27:57 2007 => Scanning File C:\PROGRA~1\INTERN~1\iexplore.exe

Tue Jan 02 19:27:57 2007 => Scanning HKCR\htafile\shell\open\command
Tue Jan 02 19:27:57 2007 => Scanning File C:\WINDOWS\system32\mshta.exe

Tue Jan 02 19:27:57 2007 => Scanning HKCR\jsfile\shell\open\command
Tue Jan 02 19:27:57 2007 => Scanning File C:\WINDOWS\System32\WScript.exe

Tue Jan 02 19:27:57 2007 => Scanning HKCR\jsefile\shell\open\command
Tue Jan 02 19:27:57 2007 => Scanning File C:\WINDOWS\System32\WScript.exe

Tue Jan 02 19:27:57 2007 => Scanning HKCR\vbsfile\shell\open\command
Tue Jan 02 19:27:57 2007 => Scanning File C:\WINDOWS\System32\WScript.exe

Tue Jan 02 19:27:57 2007 => Scanning HKCR\vbefile\shell\open\command
Tue Jan 02 19:27:57 2007 => Scanning File C:\WINDOWS\System32\WScript.exe

Tue Jan 02 19:27:57 2007 => Scanning HKCR\wshfile\shell\open\command
Tue Jan 02 19:27:57 2007 => Scanning File C:\WINDOWS\System32\WScript.exe

Tue Jan 02 19:27:57 2007 => Scanning HKCR\wsffile\shell\open\command
Tue Jan 02 19:27:57 2007 => Scanning File C:\WINDOWS\System32\WScript.exe

Tue Jan 02 19:27:57 2007 => ***** Scanning StartUp Folders *****

Tue Jan 02 19:27:57 2007 => ***** Scanning C:\Documents and Settings\Petr\Nabídka Start\Programy\Po spuštění Folder *****
Tue Jan 02 19:27:57 2007 => Scanning Folder: C:\Documents and Settings\Petr\Nabídka Start\Programy\Po spuštění\*.*
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Nabídka Start\Programy\Po spuštění\desktop.ini

Tue Jan 02 19:27:57 2007 => ***** Scanning C:\Documents and Settings\Petr\Plocha Folder *****
Tue Jan 02 19:27:57 2007 => Scanning Folder: C:\Documents and Settings\Petr\Plocha\*.*
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Adobe Photoshop CS.lnk
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\BitComet.lnk
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\dxva_sig.txt [**]
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\LYNX BLACK.lnk
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Microsoft Office Excel 2003.lnk
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Microsoft Office Word 2003.lnk
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Microsoft Works.LNK
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Nero StartSmart.lnk
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Outlook Express (2).lnk
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Průzkumník Windows (2).lnk
Tue Jan 02 19:27:57 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Skype.lnk
Tue Jan 02 19:27:57 2007 => Scanning Folder: C:\Documents and Settings\Petr\Plocha\Tocna\*.*
Tue Jan 02 19:27:58 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Tocna\Cti - me.txt
Tue Jan 02 19:27:58 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Tocna\DXSetup.exe
Tue Jan 02 19:27:58 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Tocna\Read - me.txt
Tue Jan 02 19:27:58 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Tocna\settings.cfg
Tue Jan 02 19:27:58 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Tocna\TocnaCZ.exe
Tue Jan 02 19:27:58 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Tocna\TocnaENG.exe
Tue Jan 02 19:27:58 2007 => Scanning Folder: C:\Documents and Settings\Petr\Plocha\Tocna\video\*.*
Tue Jan 02 19:27:58 2007 => Scanning File C:\Documents and Settings\Petr\Plocha\Tocn

Čertv warezov ABA

Čertv warezov ABA

Re: Čertv warezov ABA

Kdo je online