Log

Dusan · Příspěvekod **Dusan** » 04 zář 2007 13:05

Zdravicko, ak budete mat niekto cas mozte sa na pozret pls? Diky
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:57:54, on 4. 9. 2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\WINDOWS\system32\svdhost.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TuneUp Utilities 2007\MemOptimizer.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Documents and Settings\DusanD\Application Data\brisane.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Avant Browser\avant.exe
C:\Documents and Settings\DusanD\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.1.252:8080
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\BitComet\tools\BitCometBHO_1.1.7.4.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Microsoft Updates] svdhost.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\RunServices: [Microsoft Updates] svdhost.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2007\MemOptimizer.exe" autostart
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Windows Update] C:\Documents and Settings\DusanD\Application Data\brisane.exe
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://D:\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - res://D:\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://D:\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - D:\BitComet\tools\BitCometBHO_1.1.7.4.dll
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v ... 7009478296
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O24 - Desktop Component 0: (no name) - http://www.volny.cz/test.page2/ohnostroj.jpg

--
End of file - 7290 bytes

Reklama

Dr.House · Příspěvekod **Dr.House** » 04 zář 2007 13:16

Zdravíčko!

Ve správci úloh ukončete:
svdhost.exe

na disku najděte a smažte:
C:\WINDOWS\system32\svdhost.exe

V HijackThis fixněte:
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [Microsoft Updates] svdhost.exe
O4 - HKLM\..\RunServices: [Microsoft Updates] svdhost.exe

Tento soubor otestujte na http://www.virustotal.com :
C:\Documents and Settings\DusanD\Application Data\brisane.exe
říká vám ten soubor něco?

Potom restartujte PC a vložte nový log HijackThis + výsledek z virustotal

Dusan · Příspěvekod **Dusan** » 04 zář 2007 14:15

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:13:33, on 4. 9. 2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Documents and Settings\DusanD\Application Data\brisane.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TuneUp Utilities 2007\MemOptimizer.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\BitComet\BitComet.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Documents and Settings\DusanD\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.1.252:8080
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\BitComet\tools\BitCometBHO_1.1.7.4.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2007\MemOptimizer.exe" autostart
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Windows Update] C:\Documents and Settings\DusanD\Application Data\brisane.exe
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://D:\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - res://D:\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://D:\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - D:\BitComet\tools\BitCometBHO_1.1.7.4.dll
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\spyware doctor\filterlsp.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v ... 7009478296
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O24 - Desktop Component 0: (no name) - http://www.volny.cz/test.page2/ohnostroj.jpg

--
End of file - 6996 bytes

File brisane.exe received on 09.04.2007 13:35:33 (CET)
Current status: finished
Result: 2/32 (6.25%)
Compact
Print results
Email:

Antivirus Version Last Update Result
AhnLab-V3 2007.9.1.0 2007.09.03 -
AntiVir 7.4.1.66 2007.09.04 -
Authentium 4.93.8 2007.09.04 -
Avast 4.7.1029.0 2007.09.04 -
AVG 7.5.0.485 2007.09.04 -
BitDefender 7.2 2007.09.04 -
CAT-QuickHeal 9.00 2007.09.03 -
ClamAV 0.91.2 2007.09.04 -
DrWeb 4.33 2007.09.04 -
eSafe 7.0.15.0 2007.09.03 -
eTrust-Vet 31.1.5107 2007.09.04 -
Ewido 4.0 2007.09.04 -
FileAdvisor 1 2007.09.04 -
Fortinet 3.11.0.0 2007.09.04 -
F-Prot 4.3.2.48 2007.09.04 -
F-Secure 6.70.13030.0 2007.09.04 -
Ikarus T3.1.1.12 2007.09.04 Trojan-Dropper.Win32.Agent.bow
Kaspersky 4.0.2.24 2007.09.04 -
McAfee 5111 2007.09.03 -
Microsoft 1.2803 2007.09.04 -
NOD32v2 2502 2007.09.04 -
Norman 5.80.02 2007.09.04 -
Panda 9.0.0.4 2007.09.04 -
Prevx1 V2 2007.09.04 Generic.Malware
Rising 19.39.12.00 2007.09.04 -
Sophos 4.21.0 2007.09.04 -
Sunbelt 2.2.907.0 2007.08.31 -
Symantec 10 2007.09.04 -
TheHacker 6.1.9.177 2007.09.04 -
VBA32 3.12.2.3 2007.09.03 -
VirusBuster 4.3.26:9 2007.09.03 -
Webwasher-Gateway 6.0.1 2007.09.04 -
Additional information
File size: 287141 bytes
MD5: 14a9004578295d74572f9f7c204b7e13
SHA1: 7c096c3538d8473ff07c758a0606232489bd4ecf
packers: BINARYRES
Prevx info: http://fileinfo.prevx.com/fileinfo.asp? ... 00A0A4C47F

Dr.House · Příspěvekod **Dr.House** » 04 zář 2007 14:29

Fixněte v HijackThis:
O4 - HKCU\..\Run: [Windows Update] C:\Documents and Settings\DusanD\Application Data\brisane.exe

soubor najděte na disku a smažte. Proscanujte pomocí MWAV a vložte z něj log. Odkaz a návod v této sekci.

Dusan · Příspěvekod **Dusan** » 04 zář 2007 14:52

Tue Sep 04 14:45:43 2007 => **********************************************************
Tue Sep 04 14:45:43 2007 => MicroWorld Anti Virus & Spyware Toolkit Utility.
Tue Sep 04 14:45:43 2007 => Copyright © MicroWorld Technologies Inc.
Tue Sep 04 14:45:43 2007 => **********************************************************
Tue Sep 04 14:45:43 2007 => Source: C:\DOCUME~1\DusanD\Desktop\mwav.exe
Tue Sep 04 14:45:43 2007 => Version 9.4.1 (C:\DOCUME~1\DusanD\LOCALS~1\Temp\mexe.com)
Tue Sep 04 14:45:43 2007 => Log File: C:\DOCUME~1\DusanD\LOCALS~1\Temp\MWAV.LOG
Tue Sep 04 14:45:43 2007 => MWAV Registered: FALSE.
Tue Sep 04 14:45:43 2007 => User Account: DusanD
Tue Sep 04 14:45:43 2007 => OS Type: Windows Workstation
Tue Sep 04 14:45:43 2007 => OS: Windows XP
Tue Sep 04 14:45:43 2007 => Ver: Service Pack 2 (Build 2600)
Tue Sep 04 14:45:43 2007 => Windows Root Folder: C:\WINDOWS
Tue Sep 04 14:45:43 2007 => Windows Sys32 Folder: C:\WINDOWS\system32
Tue Sep 04 14:45:43 2007 => DHCP NameServer: 84.245.65.2 192.168.1.254
Tue Sep 04 14:45:43 2007 => Interface0 DHCPNameServer: 84.245.65.2 192.168.1.254
Tue Sep 04 14:45:43 2007 => ProxyServer: 192.168.1.252:8080
Tue Sep 04 14:45:43 2007 => ProxyOverride: <local>
Tue Sep 04 14:45:43 2007 => Proxy Connection: DISABLED
Tue Sep 04 14:45:43 2007 => Local Fixed Drives: c:\,d:\
Tue Sep 04 14:45:43 2007 => MWAV Mode: Only Scan files.

Tue Sep 04 14:45:43 2007 => ********** Files created/modified during last fortnight in Windows Folder **********
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\NeroDigital.ini (116), 04-Sep-2007
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\winamp.ini (1125), 29-Aug-2007
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\wincmd.ini (1534), 29-Aug-2007
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\WSST_Screen_Saver.ini (185), 03-Sep-2007
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\system32\BitCometRes.dll (2560), 28-Aug-2007, BitComet, BitComet BCTP Helper
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\system32\packet.dll (88704), 27-Aug-2007, CACE Technologies, WinPcap
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\system32\pxafs.dll (129784), 29-Aug-2007, Sonic Solutions, PxAFS Dynamic Link Library
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\system32\pxcpya64.exe (64760), 29-Aug-2007, Sonic Solutions, PxCpyA64.EXE
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\system32\pxinsa64.exe (64760), 29-Aug-2007, Sonic Solutions, PxInsA64.EXE
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\system32\pxsfs.dll (1628920), 29-Aug-2007, Sonic Solutions, Px Streaming Mastering Engine
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\system32\svdhost.exe (937984), 04-Aug-2004 [HSR]
Tue Sep 04 14:45:44 2007 => C:\WINDOWS\system32\wpcap.dll (240240), 27-Aug-2007, CACE Technologies, WinPcap
Tue Sep 04 14:45:44 2007 => ************************************************************************************

Tue Sep 04 14:45:44 2007 => Latest Date of files inside MWAV: 03 Sep 2007 09:35:3.
Tue Sep 04 14:45:44 2007 => ** Changed Value of "GreyMSIAds" in "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" from DWORD:1 to DWORD:0
Tue Sep 04 14:45:44 2007 => ** Changed Value of "RestrictAnonymous" in "HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\LSA" from DWORD:1 to DWORD:0
Tue Sep 04 14:45:52 2007 => AV Library Loaded...
Tue Sep 04 14:45:52 2007 => MWAV doing self scanning...
Tue Sep 04 14:45:52 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\getvlist.exe
Tue Sep 04 14:45:52 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\main.avi
Tue Sep 04 14:45:52 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\virus.avi
Tue Sep 04 14:45:52 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\ScanningProcess.exe
Tue Sep 04 14:45:52 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\kave.dll
Tue Sep 04 14:45:52 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\prloader.dll
Tue Sep 04 14:45:52 2007 => MWAV files are clean.
Tue Sep 04 14:46:00 2007 => Virus Database Date: 9/3/2007
Tue Sep 04 14:46:00 2007 => Virus Database Count: 402804

Tue Sep 04 14:48:15 2007 => **********************************************************
Tue Sep 04 14:48:15 2007 => MicroWorld Anti Virus & Spyware Toolkit Utility.
Tue Sep 04 14:48:15 2007 => Copyright © MicroWorld Technologies Inc.
Tue Sep 04 14:48:15 2007 =>
Tue Sep 04 14:48:15 2007 => Support: support@mwti.net
Tue Sep 04 14:48:15 2007 => Web: http://www.mwti.net
Tue Sep 04 14:48:15 2007 => **********************************************************
Tue Sep 04 14:48:15 2007 => Version 9.4.1 (C:\DOCUME~1\DusanD\LOCALS~1\Temp\mexe.com)
Tue Sep 04 14:48:15 2007 => Log File: C:\DOCUME~1\DusanD\LOCALS~1\Temp\MWAV.LOG
Tue Sep 04 14:48:15 2007 => User Account: DusanD
Tue Sep 04 14:48:15 2007 => Windows Root Folder: C:\WINDOWS
Tue Sep 04 14:48:15 2007 => Windows Sys32 Folder: C:\WINDOWS\system32
Tue Sep 04 14:48:15 2007 => OS: Windows XP
Tue Sep 04 14:48:15 2007 => Ver: Service Pack 2 (Build 2600)
Tue Sep 04 14:48:15 2007 => Latest Date of files inside MWAV: 03 Sep 2007 09:35:3.

Tue Sep 04 14:48:15 2007 => Options Selected by User:
Tue Sep 04 14:48:15 2007 => Memory Check: Enabled
Tue Sep 04 14:48:15 2007 => Registry Check: Enabled
Tue Sep 04 14:48:15 2007 => StartUp Folder Check: Enabled
Tue Sep 04 14:48:15 2007 => System Folder Check: Enabled
Tue Sep 04 14:48:15 2007 => System Area Check: Disabled
Tue Sep 04 14:48:15 2007 => Services Check: Enabled
Tue Sep 04 14:48:15 2007 => Drive Check Option Disabled
Tue Sep 04 14:48:15 2007 => Folder Check: Disabled

Tue Sep 04 14:48:17 2007 => ***** Scanning Memory Files *****
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\System32\smss.exe
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\ntdll.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\SYSTEM32\CSRSS.EXE
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\CSRSRV.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\basesrv.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\winsrv.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\GDI32.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\KERNEL32.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\USER32.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\sxs.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\ADVAPI32.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\RPCRT4.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\Apphelp.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\VERSION.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\SYSTEM32\WINLOGON.EXE
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\AUTHZ.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\msvcrt.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\CRYPT32.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\MSASN1.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\NDdeApi.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\PROFMAP.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\NETAPI32.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\USERENV.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\PSAPI.DLL
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\REGAPI.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\Secur32.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\SETUPAPI.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\WINSTA.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\WINTRUST.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\IMAGEHLP.dll
Tue Sep 04 14:48:17 2007 => Scanning File C:\WINDOWS\system32\WS2_32.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\WS2HELP.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\MSGINA.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\SHLWAPI.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\COMCTL32.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\ODBC32.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\comdlg32.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\odbcint.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\SHSVCS.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\sfc.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\sfc_os.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\ole32.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\WINSCARD.DLL
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\WTSAPI32.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\miscr3.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\uxtheme.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\WINMM.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\cscdll.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\klogon.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\rsaenh.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\WINSPOOL.DRV
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\MPR.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\WgaLogon.dll
Tue Sep 04 14:48:18 2007 => Scanning File C:\WINDOWS\system32\OLEAUT32.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\NTMARTA.DLL
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\WLDAP32.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\SAMLIB.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\CLBCATQ.DLL
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\COMRes.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\cscui.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\msv1_0.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\iphlpapi.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\xpsp2res.dll [**]
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\wdmaud.drv
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\msacm32.drv
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\MSACM32.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\midimap.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\services.exe
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\SCESRV.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\umpnpmgr.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\NCObjAPI.DLL
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\MSVCP60.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\ShimEng.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\AppPatch\AcGenral.DLL
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\eventlog.dll
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Tue Sep 04 14:48:19 2007 => Scanning File C:\WINDOWS\system32\LSASRV.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\NTDSAPI.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\DNSAPI.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\SAMSRV.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\cryptdll.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\msprivs.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\kerberos.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\netlogon.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\w32time.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\schannel.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\wdigest.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\dnsq.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\scecli.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\ipsecsvc.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\oakley.DLL
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\WINIPSEC.DLL
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\pstorsvc.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\psbase.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\PROGRA~1\SPYWAR~1\FILTER~1.DLL
Tue Sep 04 14:48:20 2007 => Scanning File C:\PROGRA~1\COMMON~1\PCTOOL~1\LSP\PCTLsp.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\MSVCP71.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\MSVCR71.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\mswsock.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\system32\hnetcfg.dll
Tue Sep 04 14:48:20 2007 => Scanning File C:\WINDOWS\System32\wshtcpip.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\system32\dssenh.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\rpcss.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\termsrv.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\ICAAPI.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\mstlsapi.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\ACTIVEDS.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\adsldpc.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\ATL.DLL
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\System32\winrnr.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\system32\rasadhlp.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\system32\msi.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\uxtuneup.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\dbghelp.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\dhcpcsvc.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\wzcsvc.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\rtutils.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\WMI.dll
Tue Sep 04 14:48:21 2007 => Scanning File c:\windows\system32\ESENT.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\System32\rastls.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\system32\CRYPTUI.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\system32\WININET.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\System32\MPRAPI.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\System32\RASAPI32.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\System32\rasman.dll
Tue Sep 04 14:48:21 2007 => Scanning File C:\WINDOWS\System32\TAPI32.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\schedsvc.dll
Tue Sep 04 14:48:22 2007 => Scanning File C:\WINDOWS\System32\raschap.dll
Tue Sep 04 14:48:22 2007 => Scanning File C:\WINDOWS\System32\MSIDLE.DLL
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\audiosrv.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\wkssvc.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\cryptsvc.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\certcli.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\dmserver.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\ersvc.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\srvsvc.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\hidserv.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\HID.DLL
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\pchealth\helpctr\binaries\pchsvc.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\es.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\netman.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\netshell.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\credui.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\WZCSAPI.DLL
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\seclogon.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\srsvc.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\POWRPROF.dll
Tue Sep 04 14:48:22 2007 => Scanning File C:\WINDOWS\system32\upnp.dll
Tue Sep 04 14:48:22 2007 => Scanning File C:\WINDOWS\system32\WINHTTP.dll
Tue Sep 04 14:48:22 2007 => Scanning File C:\WINDOWS\system32\SSDPAPI.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\sens.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\trkwks.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\browser.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\wuauserv.dll
Tue Sep 04 14:48:22 2007 => Scanning File c:\windows\system32\wbem\wmisvc.dll
Tue Sep 04 14:48:22 2007 => Scanning File C:\WINDOWS\system32\VSSAPI.DLL
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\wuaueng.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\Cabinet.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\mspatcha.dll
Tue Sep 04 14:48:23 2007 => Scanning File c:\windows\system32\ipnathlp.dll
Tue Sep 04 14:48:23 2007 => Scanning File c:\windows\system32\wscsvc.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\comsvcs.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\colbact.DLL
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\MTXCLU.DLL
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\WSOCK32.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\CLUSAPI.DLL
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\RESUTILS.DLL
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\netcfgx.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\wbem\wbemcomn.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\Wbem\wbemcore.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\Wbem\esscli.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\Wbem\FastProx.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\rasmans.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\wbem\wmiutils.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\wbem\repdrvfs.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\wbem\wmiprvsd.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\wbem\wbemess.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\system32\wbem\ncprov.dll
Tue Sep 04 14:48:23 2007 => Scanning File c:\windows\system32\tapisrv.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\rastapi.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\unimdm.tsp
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\uniplat.dll
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\kmddsp.tsp
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\ndptsp.tsp
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\ipconf.tsp
Tue Sep 04 14:48:23 2007 => Scanning File C:\WINDOWS\System32\h323.tsp
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\System32\hidphone.tsp
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\System32\rasppp.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\System32\ntlsapi.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\System32\RASDLG.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\system32\wbem\wbemsvc.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\System32\NETRAP.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\System32\xactsrv.dll
Tue Sep 04 14:48:24 2007 => Scanning File c:\windows\system32\dnsrslvr.dll
Tue Sep 04 14:48:24 2007 => Scanning File c:\windows\system32\lmhsvc.dll
Tue Sep 04 14:48:24 2007 => Scanning File c:\windows\system32\webclnt.dll
Tue Sep 04 14:48:24 2007 => Scanning File c:\windows\system32\regsvc.dll
Tue Sep 04 14:48:24 2007 => Scanning File c:\windows\system32\ssdpsrv.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\system32\sensapi.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\Explorer.EXE
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\system32\BROWSEUI.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\system32\SHDOCVW.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\system32\AcSignIcon.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\system32\OLEACC.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\system32\themeui.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\system32\MSIMG32.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\PROGRA~1\INTERN~1\mui\041b\shdoclc.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\PROGRA~1\Grisoft\AVGANT~1.5\SHELLE~1.DLL
Tue Sep 04 14:48:24 2007 => Scanning File C:\WINDOWS\system32\urlmon.dll
Tue Sep 04 14:48:24 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\scrchpg.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\system32\msutb.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\system32\MSCTF.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\PROGRA~1\COMMON~1\AUTODE~1\ACSIGN~1.DLL
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\system32\LINKINFO.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\system32\stobject.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\system32\BatMeter.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\NERODI~1.DLL
Tue Sep 04 14:48:25 2007 => Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\MFC71.DLL
Tue Sep 04 14:48:25 2007 => Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\MSVCR71.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\PROGRA~1\COMMON~1\Ahead\Lib\MSVCP71.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\system32\MFC71ENU.DLL
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\system32\cryptnet.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\System32\drprov.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\System32\ntlanman.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\System32\NETUI0.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\System32\NETUI1.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\System32\davclnt.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\WINDOWS\system32\MLANG.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\PROGRA~1\Nero\NERO7~1\NEROBA~1\NBShell.dll
Tue Sep 04 14:48:25 2007 => Scanning File C:\PROGRA~1\Nero\NERO7~1\NEROBA~1\MFC71U.DLL
Tue Sep 04 14:48:26 2007 => Scanning File C:\PROGRA~1\Zoner\PHOTOS~1\Program\SHELLE~1.DLL
Tue Sep 04 14:48:26 2007 => Scanning File C:\PROGRA~1\WINZIP\WZSHLSTB.DLL
Tue Sep 04 14:48:26 2007 => Scanning File C:\PROGRA~1\WinRAR\rarext.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\ShellEx.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\MSVCR80.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\MSVCP80.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\PROGRA~1\INTERN~1\mui\041b\browselc.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\WINDOWS\system32\DUSER.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\WINDOWS\system32\olepro32.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\WINDOWS\system32\sti.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\WINDOWS\system32\CFGMGR32.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\WINDOWS\system32\DEVMGR.DLL
Tue Sep 04 14:48:26 2007 => Scanning File C:\WINDOWS\system32\msxml3.dll
Tue Sep 04 14:48:26 2007 => Scanning File c:\windows\system32\jscript.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\klscav.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\prremote.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\prloader.dll
Tue Sep 04 14:48:26 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\prkernel.ppl
Tue Sep 04 14:48:26 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\params.ppl
Tue Sep 04 14:48:26 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\pxstub.ppl
Tue Sep 04 14:48:26 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\tempfile.ppl
Tue Sep 04 14:48:26 2007 => Scanning File C:\WINDOWS\system32\dfshim.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\mscoree.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Shfusion.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Fusion.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\culture.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\ShFusRes.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\mstask.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\SPOOLSS.DLL
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\localspl.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\cnbjmon.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\mdimon.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\pjlmon.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\tcpmon.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\usbmon.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\win32spl.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\inetpp.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\DOCUME~1\DusanD\APPLIC~1\brisane.exe
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\system32\MSVBVM60.DLL
Tue Sep 04 14:48:27 2007 => Scanning File C:\DOCUME~1\DusanD\APPLIC~1\mswinsck.ocx
Tue Sep 04 14:48:27 2007 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\PROGRA~1\DAEMON~1\daemon.exe
Tue Sep 04 14:48:27 2007 => Scanning File C:\PROGRA~1\DAEMON~1\daemon.dll
Tue Sep 04 14:48:27 2007 => Scanning File C:\PROGRA~1\DAEMON~1\PFCTOC.DLL
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\DAEMON~1\Plugins\Images\bw5mount.dll
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\DAEMON~1\Plugins\Images\ccdmount.dll
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\DAEMON~1\Plugins\Images\mdsmount.dll
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\DAEMON~1\Plugins\Images\nrgmount.dll
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\DAEMON~1\Plugins\Images\pdimount.dll
Tue Sep 04 14:48:28 2007 => Scanning File C:\WINDOWS\system32\RunDLL32.exe
Tue Sep 04 14:48:28 2007 => Scanning File C:\WINDOWS\system32\NvMCTray.dll
Tue Sep 04 14:48:28 2007 => Scanning File C:\WINDOWS\system32\nvapi.dll
Tue Sep 04 14:48:28 2007 => Scanning File C:\WINDOWS\system32\NVRSSK.DLL
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\avp.exe
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\FSSync.dll
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\AVPGS.PPL
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\CLLDR.DLL
Tue Sep 04 14:48:28 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\winreg.ppl
Tue Sep 04 14:48:28 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\mkavio.ppl
Tue Sep 04 14:48:28 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\avpgui.ppl
Tue Sep 04 14:48:28 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\nfio.ppl
Tue Sep 04 14:48:28 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\fsdrvplg.ppl
Tue Sep 04 14:48:28 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\basegui.ppl
Tue Sep 04 14:48:28 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\thpimpl.ppl
Tue Sep 04 14:48:28 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\qb.ppl
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\Winamp\winampa.exe
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\Winamp\NSCRT.dll
Tue Sep 04 14:48:28 2007 => Scanning File C:\WINDOWS\system32\ctfmon.exe
Tue Sep 04 14:48:28 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\MEMOPT~1.EXE
Tue Sep 04 14:48:29 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\rtl60.bpl
Tue Sep 04 14:48:29 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\vcl60.bpl
Tue Sep 04 14:48:29 2007 => Scanning File C:\WINDOWS\system32\oledlg.dll
Tue Sep 04 14:48:29 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\MAINCO~1.BPL
Tue Sep 04 14:48:29 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\GR32_D6.bpl
Tue Sep 04 14:48:30 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\vcljpg60.bpl
Tue Sep 04 14:48:30 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\DEC.bpl
Tue Sep 04 14:48:30 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\SMALLU~1.BPL
Tue Sep 04 14:48:30 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\ntrtl60.bpl
Tue Sep 04 14:48:30 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\TUKernel.bpl
Tue Sep 04 14:48:30 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\TUBasic.bpl
Tue Sep 04 14:48:30 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\unicows.dll
Tue Sep 04 14:48:30 2007 => Scanning File C:\WINDOWS\system32\AVICAP32.dll
Tue Sep 04 14:48:30 2007 => Scanning File C:\WINDOWS\system32\MSVFW32.dll
Tue Sep 04 14:48:30 2007 => Scanning File C:\WINDOWS\system32\IMM32.dll
Tue Sep 04 14:48:30 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\APPINI~1.BPL
Tue Sep 04 14:48:30 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\SysInfo.bpl
Tue Sep 04 14:48:30 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\MSI_D6.bpl
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\XMLCOM~1.BPL
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\TUICOE~1.BPL
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\TUShell.bpl
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\Html.bpl
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\SYSCON~1.BPL
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\IcsDel60.bpl
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\RegExp.bpl
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\Traces.bpl
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\TUSHRE~1.BPL
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\VISCON~1.BPL
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\THEMEM~1.BPL
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\vclx60.bpl
Tue Sep 04 14:48:31 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\INDICA~1.BPL
Tue Sep 04 14:48:32 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\ehs_d6.bpl
Tue Sep 04 14:48:32 2007 => Scanning File C:\PROGRA~1\TUNEUP~1\COMMON~1.BPL
Tue Sep 04 14:48:32 2007 => Scanning File C:\WINDOWS\system32\HHCTRL.OCX
Tue Sep 04 14:48:32 2007 => Scanning File C:\WINDOWS\system32\mui\041b\HHCTRLui.dll
Tue Sep 04 14:48:32 2007 => Scanning File C:\WINDOWS\system32\perfos.dll
Tue Sep 04 14:48:32 2007 => Scanning File C:\PROGRA~1\MESSEN~1\msmsgs.exe
Tue Sep 04 14:48:32 2007 => Scanning File C:\WINDOWS\system32\XPOB2RES.DLL
Tue Sep 04 14:48:32 2007 => Scanning File C:\PROGRA~1\BitComet\BitComet.exe
Tue Sep 04 14:48:32 2007 => Scanning File C:\PROGRA~1\BitComet\dbghelp.dll
Tue Sep 04 14:48:32 2007 => Scanning File C:\WINDOWS\system32\asycfilt.dll
Tue Sep 04 14:48:32 2007 => Scanning File C:\WINDOWS\system32\WMVCore.DLL
Tue Sep 04 14:48:32 2007 => Scanning File C:\WINDOWS\system32\WMASF.DLL
Tue Sep 04 14:48:32 2007 => Scanning File C:\WINDOWS\system32\wmploc.dll
Tue Sep 04 14:48:32 2007 => Scanning File C:\PROGRA~1\WinZip\WZQKPICK.EXE
Tue Sep 04 14:48:33 2007 => Scanning File C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
Tue Sep 04 14:48:33 2007 => Scanning File C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\webengine.dll
Tue Sep 04 14:48:33 2007 => Scanning File C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
Tue Sep 04 14:48:33 2007 => Scanning File C:\PROGRA~1\Grisoft\AVGANT~1.5\guard.exe
Tue Sep 04 14:48:33 2007 => Scanning File C:\PROGRA~1\Grisoft\AVGANT~1.5\engine.dll
Tue Sep 04 14:48:33 2007 => Scanning File C:\WINDOWS\system32\SHFOLDER.dll
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\tm.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\bl.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\wmihlpr.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\regmap.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\ndetect.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\crpthlpr.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\schedule.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\timer.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\lic.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\report.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\hashmd5.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\avs.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\avpmgr.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\wdiskio.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\avlib.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\vmarea.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\avspm.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\avp3info.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\mc.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\sc.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\httpscan.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\dtreg.ppl
Tue Sep 04 14:48:33 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\pdm.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\prutil.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\oas.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\avp1.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\procmon.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\l_llio.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\sfdb.ppl
Tue Sep 04 14:48:34 2007 => Scanning File C:\WINDOWS\system32\fltlib.dll
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\ichk2.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\ichksa.ppl
Tue Sep 04 14:48:34 2007 => Scanning File C:\DOCUME~1\ALLUSE~1\APPLIC~1\KASPER~1\AVP7\Bases\klavemu.kdl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\filemap.ppl
Tue Sep 04 14:48:34 2007 => Scanning File C:\DOCUME~1\ALLUSE~1\APPLIC~1\KASPER~1\AVP7\Bases\webav.kdl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\smtpprtc.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\pop3prtc.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\trafmon2.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\CKAHUM.dll
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\CKAHComm.dll
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\ckahrule.dll
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\hashcont.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\imapprtc.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\hccmp.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\iwgen.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\httpanlz.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\nntpprtc.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\uniarc.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\minizip.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\cab.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\arj.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\rar.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\lha.ppl
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\mdb.ppl
Tue Sep 04 14:48:34 2007 => Scanning File C:\WINDOWS\system32\MAPI32.dll
Tue Sep 04 14:48:34 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\msoe.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\dmap.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\ods.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\buffer.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\memscan.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\memmodsc.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\ntfsstrm.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\btdisk.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\stenum2.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\inifile.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\prseqio.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\unlzx.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\mdmap.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\inflate.ppl
Tue Sep 04 14:48:35 2007 => Scanning File c:\PROGRA~1\KASPER~1\KASPER~1.0\btimages.ppl
Tue Sep 04 14:48:35 2007 => Scanning File C:\PROGRA~1\COMMON~1\MICROS~1\VS7DEBUG\MDM.EXE
Tue Sep 04 14:48:35 2007 => Scanning File C:\PROGRA~1\NVIDIA~1\nTune\NTUNES~1.EXE
Tue Sep 04 14:48:35 2007 => Scanning File C:\WINDOWS\system32\MFC71.DLL
Tue Sep 04 14:48:35 2007 => Scanning File C:\PROGRA~1\NVIDIA~1\nTune\NT12BF~1.DLL
Tue Sep 04 14:48:35 2007 => Scanning File C:\WINDOWS\system32\pdh.dll
Tue Sep 04 14:48:35 2007 => Scanning File C:\WINDOWS\system32\odbcbcp.dll
Tue Sep 04 14:48:35 2007 => Scanning File C:\PROGRA~1\NVIDIA~1\nTune\nvsulib.dll
Tue Sep 04 14:48:35 2007 => Scanning File C:\WINDOWS\system32\nvsvc32.exe
Tue Sep 04 14:48:35 2007 => Scanning File c:\windows\system32\wiaservc.dll
Tue Sep 04 14:48:35 2007 => Scanning File c:\windows\system32\mscms.dll
Tue Sep 04 14:48:35 2007 => Scanning File C:\WINDOWS\system32\actxprxy.dll
Tue Sep 04 14:48:35 2007 => Scanning File C:\WINDOWS\system32\wdfmgr.exe
Tue Sep 04 14:48:35 2007 => Scanning File C:\WINDOWS\System32\alg.exe
Tue Sep 04 14:48:35 2007 => Scanning File C:\PROGRA~1\AVANTB~1\avant.exe
Tue Sep 04 14:48:35 2007 => Scanning File C:\WINDOWS\system32\security.dll
Tue Sep 04 14:48:35 2007 => Scanning File C:\WINDOWS\system32\shdoclc.dll
Tue Sep 04 14:48:35 2007 => Scanning File C:\WINDOWS\system32\mshtml.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\msls31.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\msimtf.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\ImgUtil.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\pngfilt.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
Tue Sep 04 14:48:36 2007 => Scanning File D:\BitComet\tools\BitCometBHO_1.1.7.4.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\dxtrans.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\ddrawex.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\DDRAW.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\DCIMAN32.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\dxtmsft.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\mshtmled.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\iepeers.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\USP10.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\msieftp.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\MSRATING.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\msratelc.dll
Tue Sep 04 14:48:36 2007 => Scanning File c:\windows\system32\vbscript.dll
Tue Sep 04 14:48:36 2007 => Scanning File C:\WINDOWS\system32\MFC42.DLL
Tue Sep 04 14:48:36 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\mexe.com
Tue Sep 04 14:48:37 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\msvl64.dll
Tue Sep 04 14:48:37 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\kave.dll
Tue Sep 04 14:48:37 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\FSSync.dll
Tue Sep 04 14:48:37 2007 => Scanning File C:\WINDOWS\system32\RICHED32.DLL
Tue Sep 04 14:48:37 2007 => Scanning File C:\WINDOWS\system32\RICHED20.dll
Tue Sep 04 14:48:37 2007 => Scanning File C:\WINDOWS\system32\VDMDBG.DLL
Tue Sep 04 14:48:37 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\ScanningProcess.exe
Tue Sep 04 14:48:37 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\prloader.dll
Tue Sep 04 14:48:37 2007 => Scanning File C:\DOCUME~1\DusanD\LOCALS~1\Temp\prkernel.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\avpmgr.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\wdiskio.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\nfio.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\fsdrvplg.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\avlib.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\dtreg.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\prutil.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\avp1.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\l_llio.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\ichk2.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\sfdb.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\ichksa.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\mkavio.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\hashmd5.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\hashcont.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\hccmp.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\iwgen.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\uniarc.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\minizip.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\cab.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\arj.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\rar.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\lha.ppl
Tue Sep 04 14:48:37 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\mdb.ppl
Tue Sep 04 14:48:38 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\msoe.ppl
Tue Sep 04 14:48:38 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\tempfile.ppl
Tue Sep 04 14:48:38 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\avpgs.ppl
Tue Sep 04 14:48:38 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\thpimpl.ppl
Tue Sep 04 14:48:38 2007 => Scanning File c:\docume~1\dusand\locals~1\temp\dmap.ppl

Tue Sep 04 14:48:38 2007 => ***** Scanning Registry Files *****

Tue Sep 04 14:48:38 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Tue Sep 04 14:48:38 2007 => ** (PostBootReminder) {7849596a-48ea-486e-8937-a2a3009f31a9} = %SystemRoot%\system32\SHELL32.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Tue Sep 04 14:48:38 2007 => ** (CDBurn) {fbeb8a05-beee-4442-804e-409d6c4515e9} = %SystemRoot%\system32\SHELL32.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Tue Sep 04 14:48:38 2007 => ** (WebCheck) {E6FB5E20-DE35-11CF-9C87-00AA005127ED} = %SystemRoot%\system32\webcheck.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Tue Sep 04 14:48:38 2007 => ** (SysTray) {35CEC8A3-2BE6-11D2-8773-92E220524153} = C:\WINDOWS\system32\stobject.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\stobject.dll

Tue Sep 04 14:48:38 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad

Tue Sep 04 14:48:38 2007 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Plugins\Extension

Tue Sep 04 14:48:38 2007 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar

Tue Sep 04 14:48:38 2007 => Scanning HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units
Tue Sep 04 14:48:38 2007 => ** {17492023-C23A-453E-A040-C7C580BBF700} = C:\WINDOWS\system32\LegitCheckControl.DLL
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\LegitCheckControl.DLL
Tue Sep 04 14:48:38 2007 => ** {6414512B-B978-451D-A0D8-FCFDF33E833C} = C:\WINDOWS\system32\wuweb.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\wuweb.dll
Tue Sep 04 14:48:38 2007 => ** {8AD9C840-044E-11D1-B3E9-00805F499D93} = C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_1\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => ** {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} = C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_1\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => ** {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} = C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_1\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => ** {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} = C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_1\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => ** {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} = C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_1\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => ** {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} = C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\Java\JRE16~1.0_0\bin\NPJPI1~1.DLL
Tue Sep 04 14:48:38 2007 => ** {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} = C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\Java\JRE16~1.0_0\bin\NPJPI1~1.DLL
Tue Sep 04 14:48:38 2007 => ** {D27CDB6E-AE6D-11CF-96B8-444553540000} = C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx

Tue Sep 04 14:48:38 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
Tue Sep 04 14:48:38 2007 => ** {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} = D:\BitComet\tools\BitCometBHO_1.1.7.4.dll
Tue Sep 04 14:48:38 2007 => Scanning File D:\BitComet\tools\BitCometBHO_1.1.7.4.dll
Tue Sep 04 14:48:38 2007 => ** {53707962-6F74-2D53-2644-206D7942484F} = C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Tue Sep 04 14:48:38 2007 => ** {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} = C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll

Tue Sep 04 14:48:38 2007 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars
Tue Sep 04 14:48:38 2007 => ** {4D5C8C25-D075-11d0-B416-00C04FB90376} = %SystemRoot%\system32\shdocvw.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll

Tue Sep 04 14:48:38 2007 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions
Tue Sep 04 14:48:38 2007 => ** {08B0E5C0-4FCB-11CF-AAA5-00401C608501} = C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\Java\JRE16~1.0_0\bin\NPJPI1~1.DLL
Tue Sep 04 14:48:38 2007 => ** {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} = C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\KASPER~1\KASPER~1.0\SCIEPlgn.dll
Tue Sep 04 14:48:38 2007 => ** {461CC20B-FB6E-4f16-8FE8-C29359DB100E} = D:\BitComet\tools\BitCometBHO_1.1.7.4.dll
Tue Sep 04 14:48:38 2007 => Scanning File D:\BitComet\tools\BitCometBHO_1.1.7.4.dll
Tue Sep 04 14:48:38 2007 => ** {92780B25-18CC-41C8-B9BE-3C9C571A8263} = C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
Tue Sep 04 14:48:38 2007 => ** {B863453A-26C3-4e1f-A54D-A2CD196348E9} = C:\Program Files\ICQLite\ICQLite.exe
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\ICQLite\ICQLite.exe
Tue Sep 04 14:48:38 2007 => ** {FB5F1910-F110-11d2-BB9E-00C04F795683} = C:\Program Files\Messenger\msmsgs.exe
Tue Sep 04 14:48:38 2007 => Scanning File C:\PROGRA~1\MESSEN~1\msmsgs.exe

Tue Sep 04 14:48:38 2007 => Scanning HKCU\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars

Tue Sep 04 14:48:38 2007 => Scanning HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping

Tue Sep 04 14:48:38 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler
Tue Sep 04 14:48:38 2007 => ** {438755C2-A8BA-11D1-B96B-00A0C90312E1} = %SystemRoot%\system32\browseui.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Sep 04 14:48:38 2007 => ** {8C7461EF-2B13-11d2-BE35-3078302C2030} = %SystemRoot%\system32\browseui.dll
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\browseui.dll

Tue Sep 04 14:48:38 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
Tue Sep 04 14:48:38 2007 => ** {00022613-0000-0000-C000-000000000046} = mmsys.cpl
Tue Sep 04 14:48:38 2007 => Scanning File C:\WINDOWS\system32\mmsys.cpl
Tue Sep 04 14:48:38 2007 => ** {176d6597-26d3-11d1-b350-080036a75b03} = icmui.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\icmui.dll
Tue Sep 04 14:48:39 2007 => ** {1F2E5C40-9550-11CE-99D2-00AA006E086C} = rshx32.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\rshx32.dll
Tue Sep 04 14:48:39 2007 => ** {3EA48300-8CF6-101B-84FB-666CCB9BCD32} = docprop.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\docprop.dll
Tue Sep 04 14:48:39 2007 => ** {40dd6e20-7c17-11ce-a804-00aa003ca9f6} = ntshrui.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Tue Sep 04 14:48:39 2007 => ** {41E300E0-78B6-11ce-849B-444553540000} = %SystemRoot%\system32\themeui.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\themeui.dll
Tue Sep 04 14:48:39 2007 => ** {42071712-76d4-11d1-8b24-00a0c9068ff3} = deskadp.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\deskadp.dll
Tue Sep 04 14:48:39 2007 => ** {42071713-76d4-11d1-8b24-00a0c9068ff3} = deskmon.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\deskmon.dll
Tue Sep 04 14:48:39 2007 => ** {42071714-76d4-11d1-8b24-00a0c9068ff3} = deskpan.dll
Tue Sep 04 14:48:39 2007 => ** {4E40F770-369C-11d0-8922-00A024AB2DBB} = dssec.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\dssec.dll
Tue Sep 04 14:48:39 2007 => ** {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8} = SlayerXP.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\SlayerXP.dll
Tue Sep 04 14:48:39 2007 => ** {56117100-C0CD-101B-81E2-00AA004AE837} = shscrap.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\shscrap.dll
Tue Sep 04 14:48:39 2007 => ** {59099400-57FF-11CE-BD94-0020AF85B590} = diskcopy.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\diskcopy.dll
Tue Sep 04 14:48:39 2007 => ** {59be4990-f85c-11ce-aff7-00aa003ca9f6} = ntlanui2.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\ntlanui2.dll
Tue Sep 04 14:48:39 2007 => ** {5DB2625A-54DF-11D0-B6C4-0800091AA605} = %SystemRoot%\System32\icmui.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\System32\icmui.dll
Tue Sep 04 14:48:39 2007 => ** {675F097E-4C4D-11D0-B6C1-0800091AA605} = %SystemRoot%\system32\icmui.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\icmui.dll
Tue Sep 04 14:48:39 2007 => ** {77597368-7b15-11d0-a0c2-080036af3f03} = printui.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\printui.dll
Tue Sep 04 14:48:39 2007 => ** {7988B573-EC89-11cf-9C00-00AA00A14F56} = dskquoui.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\dskquoui.dll
Tue Sep 04 14:48:39 2007 => ** {85BBD920-42A0-1069-A2E4-08002B30309D} = syncui.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\syncui.dll
Tue Sep 04 14:48:39 2007 => ** {88895560-9AA2-1069-930E-00AA0030EBC8} = C:\WINDOWS\system32\hticons.dll
Tue Sep 04 14:48:39 2007 => Scanning File C:\WINDOWS\system32\hticons.dll
Tue Sep 04 14:48:40 2007 => ** {BD84B380-8CA2-1069-AB1D-08000948F534} = fontext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\fontext.dll
Tue Sep 04 14:48:40 2007 => ** {DBCE2480-C732-101B-BE72-BA78E9AD5B27} = %SystemRoot%\system32\icmui.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\icmui.dll
Tue Sep 04 14:48:40 2007 => ** {F37C5810-4D3F-11d0-B4BF-00AA00BBB723} = rshx32.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\rshx32.dll
Tue Sep 04 14:48:40 2007 => ** {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} = ntshrui.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Tue Sep 04 14:48:40 2007 => ** {f92e8c40-3d33-11d2-b1aa-080036a75b03} = deskperf.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\deskperf.dll
Tue Sep 04 14:48:40 2007 => ** {7444C717-39BF-11D1-8CD9-00C04FC29D45} = C:\WINDOWS\system32\cryptext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\cryptext.dll
Tue Sep 04 14:48:40 2007 => ** {7444C719-39BF-11D1-8CD9-00C04FC29D45} = C:\WINDOWS\system32\cryptext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\cryptext.dll
Tue Sep 04 14:48:40 2007 => ** {7007ACC7-3202-11D1-AAD2-00805FC1270E} = C:\WINDOWS\system32\NETSHELL.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Tue Sep 04 14:48:40 2007 => ** {992CFFA0-F557-101A-88EC-00DD010CCC48} = C:\WINDOWS\system32\NETSHELL.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Tue Sep 04 14:48:40 2007 => ** {E211B736-43FD-11D1-9EFB-0000F8757FCD} = wiashext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\wiashext.dll
Tue Sep 04 14:48:40 2007 => ** {FB0C9C8A-6C50-11D1-9F1D-0000F8757FCD} = wiashext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\wiashext.dll
Tue Sep 04 14:48:40 2007 => ** {905667aa-acd6-11d2-8080-00805f6596d2} = wiashext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\wiashext.dll
Tue Sep 04 14:48:40 2007 => ** {3F953603-1008-4f6e-A73A-04AAC7A992F1} = wiashext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\wiashext.dll
Tue Sep 04 14:48:40 2007 => ** {83bbcbf3-b28a-4919-a5aa-73027445d672} = wiashext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\wiashext.dll
Tue Sep 04 14:48:40 2007 => ** {F0152790-D56E-4445-850E-4F3117DB740C} = C:\WINDOWS\system32\remotepg.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\remotepg.dll
Tue Sep 04 14:48:40 2007 => ** {60254CA5-953B-11CF-8C96-00AA00B8708C} = C:\WINDOWS\system32\wshext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\wshext.dll
Tue Sep 04 14:48:40 2007 => ** {2206CDB2-19C1-11D1-89E0-00C04FD7A829} = C:\Program Files\Common Files\System\Ole DB\oledb32.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\PROGRA~1\COMMON~1\System\OLEDB~1\oledb32.dll
Tue Sep 04 14:48:40 2007 => ** {DD2110F0-9EEF-11cf-8D8E-00AA0060F5BF} = C:\WINDOWS\system32\mstask.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\mstask.dll
Tue Sep 04 14:48:40 2007 => ** {797F1E90-9EDD-11cf-8D8E-00AA0060F5BF} = C:\WINDOWS\system32\mstask.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\mstask.dll
Tue Sep 04 14:48:40 2007 => ** {D6277990-4C6A-11CF-8D87-00AA0060F5BF} = C:\WINDOWS\system32\mstask.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\mstask.dll
Tue Sep 04 14:48:40 2007 => ** {2559a1f7-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => ** {5F327514-6C5E-4d60-8F16-D07FA08A78ED} = C:\WINDOWS\system32\wuaucpl.cpl
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\wuaucpl.cpl
Tue Sep 04 14:48:40 2007 => ** {2559a1f0-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => ** {2559a1f1-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => ** {2559a1f2-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => ** {2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => ** {2559a1f4-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => ** {2559a1f5-21d7-11d4-bdaf-00c04f60b9f0} = %SystemRoot%\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => ** {D20EA4E1-3957-11d2-A40B-0C5020524152} = %SystemRoot%\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => ** {D20EA4E1-3957-11d2-A40B-0C5020524153} = %SystemRoot%\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Tue Sep 04 14:48:40 2007 => ** {596AB062-B4D2-4215-9F74-E9109B0A8153} = %SystemRoot%\system32\twext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\twext.dll
Tue Sep 04 14:48:40 2007 => ** {9DB7A13C-F208-4981-8353-73CC61AE2783} = %SystemRoot%\system32\twext.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\twext.dll
Tue Sep 04 14:48:40 2007 => ** {875CB1A1-0F29-45de-A1AE-CFB4950D0B78} = %SystemRoot%\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => ** {40C3D757-D6E4-4b49-BB41-0E5BBEA28817} = %SystemRoot%\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => ** {E4B29F9D-D390-480b-92FD-7DDB47101D71} = %SystemRoot%\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => ** {87D62D94-71B3-4b9a-9489-5FE6850DC73E} = %SystemRoot%\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => ** {A6FD9E45-6E44-43f9-8644-08598F5A74D9} = %SystemRoot%\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => ** {c5a40261-cd64-4ccf-84cb-c394da41d590} = %SystemRoot%\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\shmedia.dll
Tue Sep 04 14:48:40 2007 => ** {5E6AB780-7743-11CF-A12B-00AA004AE837} = %SystemRoot%\system32\browseui.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Sep 04 14:48:40 2007 => ** {22BF0C20-6DA7-11D0-B373-00A0C9034938} = %SystemRoot%\system32\browseui.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Sep 04 14:48:40 2007 => ** {91EA3F8B-C99B-11d0-9815-00C04FD91972} = %SystemRoot%\system32\browseui.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Sep 04 14:48:40 2007 => ** {6413BA2C-B461-11d1-A18A-080036B11A03} = %SystemRoot%\system32\browseui.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Sep 04 14:48:40 2007 => ** {F61FFEC1-754F-11d0-80CA-00AA005B4383} = %SystemRoot%\system32\browseui.dll
Tue Sep 04 14:48:40 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Tue Sep 04 14:48:40 2007 => ** {7BA4C742-9E81-11CF-99D3-00AA004AE837} = %SystemRoot%\system32\br

Dr.House · Příspěvekod **Dr.House** » 05 zář 2007 08:50

Potřebuju vidět log ze spodního okna = Virus log information!

Dusan · Příspěvekod **Dusan** » 09 zář 2007 13:22

Ospravedlnujem sa ze som neodpovedal ale musel som ten pocitac formatovat - nebolo ineho riesenia :-(

Dakujem za pomoc

Log

Kdo je online