Logfile of The Avenger Version 2.0, (c) by Swandog46 http://swandog46.geekstogo.com Platform: Windows XP ******************* Script file opened successfully. Script file read successfully. Backups directory opened successfully at C:\Avenger ******************* Beginning to process script file: Rootkit scan active. No rootkits found! File "C:\autoexec.bat" deleted successfully. File "C:\documents and settings\morde\local settings\temp\ssqrq.dll" deleted successfully. File "C:\documents and settings\networkservice\local settings\application data\lsass.exe" deleted successfully. File "C:\documents and settings\networkservice\local settings\application data\services.exe" deleted successfully. File "C:\documents and settings\networkservice\local settings\application data\winlogon.exe" deleted successfully. File "C:\WINDOWS\bm3fdffbe8.xml" deleted successfully. File "C:\WINDOWS\shellnew\bronstab.exe" deleted successfully. File "C:\WINDOWS\system32\elelxbdx.ini" deleted successfully. File "C:\WINDOWS\system32\esmvhyjv.exe" deleted successfully. File "C:\WINDOWS\system32\evrajjwi.ini" deleted successfully. File "C:\WINDOWS\system32\gqkdenei.dll" deleted successfully. File "C:\WINDOWS\system32\hvftxtgf.dll" deleted successfully. File "C:\WINDOWS\system32\ihhmbuqr.exe" deleted successfully. Error: file "C:\WINDOWS\system32\iwjjarve.dll" not found! Deletion of file "C:\WINDOWS\system32\iwjjarve.dll" failed! Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND) --> the object does not exist File "C:\WINDOWS\system32\lxqyggyb.dll" deleted successfully. File "C:\WINDOWS\system32\mxlheswh.dll" deleted successfully. File "C:\WINDOWS\system32\prkuygmg.dll" deleted successfully. File "C:\WINDOWS\system32\pwofurjt.dll" deleted successfully. File "C:\WINDOWS\tasks\applesoftwareupdate.job" deleted successfully. File "C:\WINDOWS\tasks\at1.job" deleted successfully. File "C:\Documents and Settings\Mum\local settings\application data\bron.tok.a9.em.bin" deleted successfully. File "C:\Documents and Settings\Mum\local settings\application data\dcbc2a71-70d8-4dan-ehr8-e0d61dea3fdf.ini" deleted successfully. File "C:\Documents and Settings\Mum\local settings\application data\lsass.exe" deleted successfully. File "C:\Documents and Settings\Mum\local settings\application data\services.exe" deleted successfully. File "C:\Documents and Settings\Mum\local settings\application data\smss.exe" deleted successfully. File "C:\Documents and Settings\Mum\local settings\application data\winlogon.exe" deleted successfully. File "C:\Documents and Settings\Mum\start menu\programs\startup\empty.pif" deleted successfully. File "c:\documents and settings\all users\application data\microsoft\network\downloader\qmgr0.dat" deleted successfully. File "c:\documents and settings\all users\application data\microsoft\network\downloader\qmgr1.dat" deleted successfully. Folder "C:\Documents and Settings\Mum\local settings\application data\bron.tok-9-20" deleted successfully. Folder "C:\Documents and Settings\Mum\local settings\application data\bron.tok-9-21" deleted successfully. Folder "C:\Documents and Settings\Mum\local settings\application data\bron.tok-9-27" deleted successfully. Folder "C:\Documents and Settings\Mum\local settings\application data\bron.tok-9-31" deleted successfully. Folder "C:\Documents and Settings\Mum\local settings\application data\loc.mail.bron.tok" deleted successfully. Completed script processing. ******************* Finished! Terminate.