Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

can someone please help me. [resolved]


  • This topic is locked This topic is locked

#1
we_will_become_silhouettes

we_will_become_silhouettes

    Member

  • Member
  • PipPip
  • 19 posts
I don't know why I can't drag and drop my folders and my desktop and why I get error messages from the dr watson debugger. Can someone please help. I have posted my hj info below.

Logfile of HijackThis v1.99.1
Scan saved at 6:53:59 PM, on 4/7/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\drwtsn32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\Program Files\HijackThis.exe

O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [EPSON Stylus CX5400] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2G1.EXE /P19 "EPSON Stylus CX5400" /O6 "USB001" /M "Stylus CX5400"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....467&clcid=0x409
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupd...b?1112766927015
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
  • 0

Advertisements


#2
we_will_become_silhouettes

we_will_become_silhouettes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
I forgot to mention that I have installed adaware, and nothing came up and all the other applications, but could fine nothing. I really appreciate any help that I can get.
  • 0

#3
Michelle

Michelle

    Malware Removal Goddess

  • Retired Staff
  • 8,928 posts
Your log is clean.

You may have corrupt system files that are causing the problem.

Go to Start > Run > then type in:

sfc /scannow

***make sure there is a space between sfc and /

Click OK.

It will pull up a box that says "windows file protection" just let it do what it does.
  • 0

#4
Michelle

Michelle

    Malware Removal Goddess

  • Retired Staff
  • 8,928 posts
Also, has your homepage changed to anything other than what you set it to? Is your browser redirected to anything weird such as about:blank?

Michelle
  • 0

#5
we_will_become_silhouettes

we_will_become_silhouettes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
Thanks for helping me out. I really appreciate it.
No, my homepage is what its supposed to be. But when I try to run sfc /scannow it freezes up and is not responding and when it does continue I get an error about winlogon.exe and it restarts my computer.
Thanks again, for the help.
  • 0

#6
Michelle

Michelle

    Malware Removal Goddess

  • Retired Staff
  • 8,928 posts
Let's check for hidden trojans.

Download and run MWav

It may take a while to run, make sure it's set to scan everything and not just program files. Post the results here.
  • 0

#7
we_will_become_silhouettes

we_will_become_silhouettes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
here are the results from the scan:

Fri Apr 08 18:33:24 2005 => **********************************************************
Fri Apr 08 18:33:24 2005 => MicroWorld AntiVirus Toolkit Utility.
Fri Apr 08 18:33:24 2005 => Copyright © 2003-2005, MicroWorld Technologies Inc.
Fri Apr 08 18:33:24 2005 => **********************************************************
Fri Apr 08 18:33:24 2005 => Version 6.0.7 (C:\DOCUME~1\Elaine\LOCALS~1\Temp\mwavscan.com)
Fri Apr 08 18:33:24 2005 => Log File: C:\DOCUME~1\Elaine\LOCALS~1\Temp\MWAV.LOG
Fri Apr 08 18:33:24 2005 => MWAV Registered: FALSE.
Fri Apr 08 18:33:24 2005 => MWAV Mode: Only Scan files.
Fri Apr 08 18:33:24 2005 => Latest Date of files inside MWAV: 07 Apr 2005 22:43:03.
Fri Apr 08 18:33:35 2005 => ERROR!!! MS_Initialize return 80004005
Fri Apr 08 18:37:43 2005 => ERROR!!! Unable to load AV!
Fri Apr 08 20:48:46 2005 => **********************************************************
Fri Apr 08 20:48:46 2005 => MicroWorld AntiVirus Toolkit Utility.
Fri Apr 08 20:48:46 2005 => Copyright © 2003-2005, MicroWorld Technologies Inc.
Fri Apr 08 20:48:46 2005 => **********************************************************
Fri Apr 08 20:48:46 2005 => Version 6.0.7 (C:\DOCUME~1\Elaine\LOCALS~1\Temp\mwavscan.com)
Fri Apr 08 20:48:46 2005 => Log File: C:\DOCUME~1\Elaine\LOCALS~1\Temp\MWAV.LOG
Fri Apr 08 20:48:46 2005 => MWAV Registered: FALSE.
Fri Apr 08 20:48:46 2005 => MWAV Mode: Only Scan files.
Fri Apr 08 20:48:46 2005 => Latest Date of files inside MWAV: 07 Apr 2005 22:43:03.
Fri Apr 08 20:48:48 2005 => AV Library Loaded...
Fri Apr 08 20:48:48 2005 => MWAV doing self scanning...
Fri Apr 08 20:48:48 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\kavss.exe
Fri Apr 08 20:48:48 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\Getvlist.exe
Fri Apr 08 20:48:48 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\kavss.dll
Fri Apr 08 20:48:48 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\kavssdi.dll
Fri Apr 08 20:48:48 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\kavssi.dll
Fri Apr 08 20:48:48 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\kavvlg.dll
Fri Apr 08 20:48:48 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\msvlclnt.dll
Fri Apr 08 20:48:48 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\ipc.dll
Fri Apr 08 20:48:48 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\main.avi
Fri Apr 08 20:48:48 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\virus.avi
Fri Apr 08 20:48:48 2005 => MWAV files are clean.
Fri Apr 08 20:48:48 2005 => Virus Database Date: 2005/04/07
Fri Apr 08 20:48:48 2005 => Virus Database Count: 125034
  • 0

#8
Michelle

Michelle

    Malware Removal Goddess

  • Retired Staff
  • 8,928 posts
Did you let the MWav scan finish?

It's not showing that it scanned any of your files.
  • 0

#9
we_will_become_silhouettes

we_will_become_silhouettes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
I scanned it again and I attached the log for that scan. I wasn't able to just post it here because it's a long file.

Attached Files


Edited by we_will_become_silhouettes, 09 April 2005 - 12:39 AM.

  • 0

#10
Michelle

Michelle

    Malware Removal Goddess

  • Retired Staff
  • 8,928 posts
Jeez, no wonder you couldn't paste that here! Was there a portion of the scan called "virus log" that listed infected items? If there was please post just that portion here.
  • 0

Advertisements


#11
we_will_become_silhouettes

we_will_become_silhouettes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
I'm having a hard time trying to post the whole thing here. The screen freezes up and I have to start over again. I have attached the virus log.


Sat Apr 09 21:08:40 2005 => **********************************************************
Sat Apr 09 21:08:40 2005 => MicroWorld AntiVirus Toolkit Utility.
Sat Apr 09 21:08:40 2005 => Copyright © 2003-2005, MicroWorld Technologies Inc.
Sat Apr 09 21:08:40 2005 =>
Sat Apr 09 21:08:40 2005 => Support: support@mwti.net
Sat Apr 09 21:08:40 2005 => Web: http://www.mwti.net
Sat Apr 09 21:08:40 2005 => **********************************************************
Sat Apr 09 21:08:40 2005 => Version 6.0.7 (C:\DOCUME~1\Elaine\LOCALS~1\Temp\mwavscan.com)
Sat Apr 09 21:08:40 2005 => Log File: C:\DOCUME~1\Elaine\LOCALS~1\Temp\MWAV.LOG
Sat Apr 09 21:08:40 2005 => User Account: Elaine
Sat Apr 09 21:08:40 2005 => Windows Root Folder: C:\WINDOWS
Sat Apr 09 21:08:40 2005 => Windows Sys32 Folder: C:\WINDOWS\system32
Sat Apr 09 21:08:40 2005 => OS: Windows NT
Sat Apr 09 21:08:40 2005 => Latest Date of files inside MWAV: 07 Apr 2005 22:43:03.

Sat Apr 09 21:08:40 2005 => Options Selected by User:
Sat Apr 09 21:08:40 2005 => Memory Check: Enabled
Sat Apr 09 21:08:40 2005 => Registry Check: Enabled
Sat Apr 09 21:08:40 2005 => StartUp Folder Check: Enabled
Sat Apr 09 21:08:40 2005 => System Folder Check: Enabled
Sat Apr 09 21:08:40 2005 => System Area Check: Disabled
Sat Apr 09 21:08:40 2005 => Services Check: Enabled
Sat Apr 09 21:08:40 2005 => Drive Check Option Disabled
Sat Apr 09 21:08:40 2005 => Folder Check: Disabled

Sat Apr 09 21:08:40 2005 => ***** Scanning Memory Files *****
Sat Apr 09 21:08:40 2005 => Scanning File C:\WINDOWS\System32\smss.exe
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\ntdll.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\SYSTEM32\CSRSS.EXE
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\CSRSRV.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\basesrv.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\winsrv.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\USER32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\KERNEL32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\GDI32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\sxs.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\ADVAPI32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\RPCRT4.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\SYSTEM32\WINLOGON.EXE
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\AUTHZ.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\msvcrt.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\CRYPT32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\MSASN1.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\NDdeApi.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\PROFMAP.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\NETAPI32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\USERENV.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\PSAPI.DLL
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\REGAPI.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\Secur32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\SETUPAPI.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\VERSION.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\WINSTA.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\WINTRUST.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\IMAGEHLP.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\WS2_32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\WS2HELP.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\MSGINA.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\SHLWAPI.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\COMCTL32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\ODBC32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\comdlg32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\odbcint.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\SHSVCS.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\sfc.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\sfc_os.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\ole32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\Apphelp.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\WINSCARD.DLL
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\WTSAPI32.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\uxtheme.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\WINMM.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\serwvdrv.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\umdmxfrm.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\Ati2evxx.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\rsaenh.dll
Sat Apr 09 21:08:41 2005 => Scanning File C:\WINDOWS\system32\cscdll.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\WINSPOOL.DRV
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\MPR.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\msv1_0.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\iphlpapi.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\SAMLIB.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\cscui.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\wdmaud.drv
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\msacm32.drv
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\MSACM32.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\midimap.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\MPRAPI.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\ACTIVEDS.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\adsldpc.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\WLDAP32.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\ATL.DLL
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\OLEAUT32.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\rtutils.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\xpsp2res.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\COMRes.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\CLBCATQ.DLL
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\NTMARTA.DLL
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\services.exe
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\SCESRV.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\umpnpmgr.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\NCObjAPI.DLL
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\MSVCP60.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\ShimEng.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\AppPatch\AcGenral.DLL
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\eventlog.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\lsass.exe
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\LSASRV.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\NTDSAPI.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\DNSAPI.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\SAMSRV.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\cryptdll.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\msprivs.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\kerberos.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\netlogon.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\w32time.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\schannel.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\wdigest.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\scecli.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\ipsecsvc.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\oakley.DLL
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\WINIPSEC.DLL
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\pstorsvc.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\psbase.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\mswsock.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\hnetcfg.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\System32\wshtcpip.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\dssenh.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\Ati2evxx.exe
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\Ati2edxx.dll
Sat Apr 09 21:08:42 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\rpcss.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\termsrv.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\ICAAPI.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\mstlsapi.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\winrnr.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\system32\rasadhlp.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\dhcpcsvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\wzcsvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\WMI.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\ESENT.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\rastls.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\system32\CRYPTUI.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\system32\WININET.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\RASAPI32.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\rasman.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\TAPI32.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\raschap.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\schedsvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\MSIDLE.DLL
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\audiosrv.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\wkssvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\cryptsvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\certcli.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\ersvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\es.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\pchealth\helpctr\binaries\pchsvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\hidserv.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\HID.DLL
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\srvsvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\netman.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\netshell.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\credui.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\WZCSAPI.DLL
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\srsvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\POWRPROF.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\sens.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\seclogon.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\trkwks.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\wbem\wmisvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\system32\VSSAPI.DLL
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\wuauserv.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\system32\wuaueng.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\ADVPACK.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\SHFOLDER.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\WINHTTP.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\Cabinet.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\mspatcha.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\browser.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\wscsvc.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\msi.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\wbem\wbemcomn.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\Wbem\wbemcore.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\Wbem\esscli.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\Wbem\FastProx.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\wbem\wmiutils.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\wbem\repdrvfs.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\wbem\wmiprvsd.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\System32\wbem\wbemess.dll
Sat Apr 09 21:08:43 2005 => Scanning File c:\windows\system32\ipnathlp.dll
Sat Apr 09 21:08:43 2005 => Scanning File C:\WINDOWS\system32\comsvcs.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\MTXCLU.DLL
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\WSOCK32.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\colbact.DLL
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\CLUSAPI.DLL
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\RESUTILS.DLL
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\wbem\ncprov.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\catsrvut.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\MfcSubs.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\urlmon.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\catsrv.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\upnp.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\SSDPAPI.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\RASDLG.dll
Sat Apr 09 21:08:44 2005 => Scanning File c:\windows\system32\dnsrslvr.dll
Sat Apr 09 21:08:44 2005 => Scanning File c:\windows\system32\lmhsvc.dll
Sat Apr 09 21:08:44 2005 => Scanning File c:\windows\system32\webclnt.dll
Sat Apr 09 21:08:44 2005 => Scanning File c:\windows\system32\ssdpsrv.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\SPOOLSS.DLL
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\localspl.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\cnbjmon.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\EBPMON24.DLL
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\pjlmon.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\tcpmon.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\usbmon.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\win32spl.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\NETRAP.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\inetpp.dll
Sat Apr 09 21:08:44 2005 => Scanning File c:\windows\system32\wiaservc.dll
Sat Apr 09 21:08:44 2005 => Scanning File c:\windows\system32\CFGMGR32.dll
Sat Apr 09 21:08:44 2005 => Scanning File c:\windows\system32\mscms.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\actxprxy.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\sti.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\alg.exe
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\Explorer.EXE
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\BROWSEUI.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\SHDOCVW.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\themeui.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\MSIMG32.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\PROGRA~1\MICROS~2\SHELLE~1.DLL
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\stobject.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\BatMeter.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\LINKINFO.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\drprov.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\ntlanman.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\NETUI0.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\NETUI1.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\System32\davclnt.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\browselc.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\DUSER.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\MLANG.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\sensapi.dll
Sat Apr 09 21:08:44 2005 => Scanning File C:\WINDOWS\system32\shdoclc.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\PROGRA~1\MICROS~2\gcasServ.exe
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\system32\MSVBVM60.DLL
Sat Apr 09 21:08:45 2005 => Scanning File C:\PROGRA~1\MICROS~2\GCANTI~1.DLL
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\system32\RunDll32.exe
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\system\cmicnfg.cpl
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\udaprop.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\PROGRA~1\ATITEC~1\ATICON~1\atiptaxx.exe
Sat Apr 09 21:08:45 2005 => Scanning File C:\PROGRA~1\ATITEC~1\ATICON~1\atipdsxx.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\PROGRA~1\ATITEC~1\ATICON~1\ATRPUIXX.ENU
Sat Apr 09 21:08:45 2005 => Scanning File C:\PROGRA~1\ATITEC~1\ATICON~1\atipdxxx.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\system32\DINPUT8.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_0\bin\jusched.exe
Sat Apr 09 21:08:45 2005 => Scanning File C:\PROGRA~1\INTERN~1\iexplore.exe
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\mshtml.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\msls31.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\msimtf.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\MSCTF.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\system32\IMM32.DLL
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\jscript.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\iepeers.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\mshtmled.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\system32\macromed\flash\flash.ocx
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\ddrawex.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\DDRAW.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\DCIMAN32.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\system32\HLINK.DLL
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\dxtrans.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\dxtmsft.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\PROGRA~1\MICROS~2\GCASDT~1.EXE
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\system32\GCCollection.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\system32\hashlib.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\system32\ImgUtil.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\WINDOWS\System32\pngfilt.dll
Sat Apr 09 21:08:45 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\mwavscan.com
Sat Apr 09 21:08:46 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\msvlclnt.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\kavssdi.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\kavssd.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\kavssi.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\ipc.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\RICHED32.DLL
Sat Apr 09 21:08:46 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\PSAPI.DLL
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\VDMDBG.DLL
Sat Apr 09 21:08:46 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\kavss.exe
Sat Apr 09 21:08:46 2005 => Scanning File C:\DOCUME~1\Elaine\LOCALS~1\Temp\kavss.dll

Sat Apr 09 21:08:46 2005 => ***** Scanning Registry Files *****

Sat Apr 09 21:08:46 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\System32\stobject.dll

Sat Apr 09 21:08:46 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad

Sat Apr 09 21:08:46 2005 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Plugins\Extension

Sat Apr 09 21:08:46 2005 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar

Sat Apr 09 21:08:46 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects

Sat Apr 09 21:08:46 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll

Sat Apr 09 21:08:46 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\mmsys.cpl
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\rshx32.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\docprop.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\System32\themeui.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\deskadp.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\deskmon.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\dssec.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\SlayerXP.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\shscrap.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\diskcopy.dll
Sat Apr 09 21:08:46 2005 => Scanning File C:\WINDOWS\system32\ntlanui2.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\icmui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\printui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\dskquoui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\syncui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\hticons.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\fontext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\rshx32.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\deskperf.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\cryptext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\cryptext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\remotepg.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wuaucpl.cpl
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\wshext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\PROGRA~1\COMMON~1\System\OLEDB~1\oledb32.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\sendmail.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\sendmail.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\occache.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\msieftp.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\msagent\agentpsh.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\dfsshlex.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\photowiz.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\mmcshext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\cabview.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\wabfind.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wmpshell.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wmpshell.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wmpshell.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\twext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\twext.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\extmgr.dll

Sat Apr 09 21:08:47 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

Sat Apr 09 21:08:47 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\Explorer.exe
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\userinit.exe
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\dskquota.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\scecli.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\scecli.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\Ati2evxx.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\crypt32.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\cryptnet.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\cscdll.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\sclgntfy.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll

Sat Apr 09 21:08:47 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Sat Apr 09 21:08:47 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System

Sat Apr 09 21:08:47 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

Sat Apr 09 21:08:47 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AEDEBUG
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\drwtsn32.exe

Sat Apr 09 21:08:47 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\ntsd.exe

Sat Apr 09 21:08:47 2005 => Scanning HKCU\Control Panel\Desktop
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\System32\logon.scr

Sat Apr 09 21:08:47 2005 => Scanning HKLM\SYSTEM\CurrentControlSet\Control\WOW
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\ntvdm.exe
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\system32\ntvdm.exe

Sat Apr 09 21:08:47 2005 => Scanning HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
Sat Apr 09 21:08:47 2005 => Scanning File C:\WINDOWS\INF\unregmp2.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\shmgrate.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\RunDLL32.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\shmgrate.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\rundll32.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\ie4uinit.exe

Sat Apr 09 21:08:48 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

Sat Apr 09 21:08:48 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

Sat Apr 09 21:08:48 2005 => Scanning HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Run

Sat Apr 09 21:08:48 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Run

Sat Apr 09 21:08:48 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sat Apr 09 21:08:48 2005 => Scanning File C:\PROGRA~1\MICROS~2\gcasServ.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\pctspk.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\SiSUSBrg.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\RunDll32.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\PROGRA~1\ATITEC~1\ATICON~1\atiptaxx.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2G1.EXE
Sat Apr 09 21:08:48 2005 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_0\bin\jusched.exe

Sat Apr 09 21:08:48 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Sat Apr 09 21:08:48 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Sat Apr 09 21:08:48 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Sat Apr 09 21:08:48 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce

Sat Apr 09 21:08:48 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Sat Apr 09 21:08:48 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Sat Apr 09 21:08:48 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Sat Apr 09 21:08:48 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Sat Apr 09 21:08:48 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\Setup

Sat Apr 09 21:08:48 2005 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Sat Apr 09 21:08:48 2005 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Sat Apr 09 21:08:48 2005 => Scanning HKCR\txtfile\shell\open\command

Sat Apr 09 21:08:48 2005 => Scanning HKCR\comfile\shell\open\command

Sat Apr 09 21:08:48 2005 => Scanning HKCR\exefile\shell\open\command

Sat Apr 09 21:08:48 2005 => Scanning HKCR\dllfile\shell\open\command

Sat Apr 09 21:08:48 2005 => Scanning HKCR\batfile\shell\open\command

Sat Apr 09 21:08:48 2005 => Scanning HKCR\piffile\shell\open\command

Sat Apr 09 21:08:48 2005 => Scanning HKCR\scrfile\shell\open\command

Sat Apr 09 21:08:48 2005 => Scanning HKCR\scrfile\shell\config\command

Sat Apr 09 21:08:48 2005 => Scanning HKCR\regfile\shell\open\command

Sat Apr 09 21:08:48 2005 => Scanning HKCR\htmlfile\shell\open\command
Sat Apr 09 21:08:48 2005 => Scanning File C:\PROGRA~1\INTERN~1\iexplore.exe

Sat Apr 09 21:08:48 2005 => Scanning HKCR\htafile\shell\open\command
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\mshta.exe

Sat Apr 09 21:08:48 2005 => Scanning HKCR\jsfile\shell\open\command
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Sat Apr 09 21:08:48 2005 => Scanning HKCR\jsefile\shell\open\command
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Sat Apr 09 21:08:48 2005 => Scanning HKCR\vbsfile\shell\open\command
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Sat Apr 09 21:08:48 2005 => Scanning HKCR\vbefile\shell\open\command
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Sat Apr 09 21:08:48 2005 => Scanning HKCR\wshfile\shell\open\command
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Sat Apr 09 21:08:48 2005 => Scanning HKCR\wsffile\shell\open\command
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Sat Apr 09 21:08:48 2005 => ***** Scanning StartUp Folders *****

Sat Apr 09 21:08:48 2005 => ***** Scanning C:\Documents and Settings\Elaine\Start Menu\Programs\Startup Folder *****
Sat Apr 09 21:08:48 2005 => Scanning Folder: C:\Documents and Settings\Elaine\Start Menu\Programs\Startup\*.*
Sat Apr 09 21:08:48 2005 => Scanning File C:\Documents and Settings\Elaine\Start Menu\Programs\Startup\desktop.ini

Sat Apr 09 21:08:48 2005 => ***** Scanning C:\Documents and Settings\All Users\Start Menu\Programs\Startup Folder *****
Sat Apr 09 21:08:48 2005 => Scanning Folder: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\*.*
Sat Apr 09 21:08:48 2005 => Scanning File C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini

Sat Apr 09 21:08:48 2005 => ***** Scanning C:\Documents and Settings\Administrator\Start menu\Programs\Startup Folder *****
Sat Apr 09 21:08:48 2005 => Scanning Folder: C:\DOCUME~1\ADMINI~1\STARTM~1\Programs\Startup\*.*
Sat Apr 09 21:08:48 2005 => Scanning File C:\DOCUME~1\ADMINI~1\STARTM~1\Programs\Startup\desktop.ini

Sat Apr 09 21:08:48 2005 => ***** Scanning C:\Documents and Settings\Default User\Start menu\Programs\Startup Folder *****
Sat Apr 09 21:08:48 2005 => Scanning Folder: C:\DOCUME~1\DEFAUL~1\STARTM~1\Programs\Startup\*.*
Sat Apr 09 21:08:48 2005 => Scanning File C:\DOCUME~1\DEFAUL~1\STARTM~1\Programs\Startup\desktop.ini

Sat Apr 09 21:08:48 2005 => ***** Scanning Service Files *****
Sat Apr 09 21:08:48 2005 => Scanning HKLM\SYSTEM\CurrentControlSet\Services
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\ACPI.sys
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\drivers\aec.sys
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\drivers\afd.sys
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\alg.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\asyncmac.sys
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\atapi.sys
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\Ati2evxx.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\ati2sgag.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\atmarpc.sys
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\audstub.sys
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\cdrom.sys
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\cisvc.exe
Sat Apr 09 21:08:48 2005 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\drivers\cmuda.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\dllhost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\disk.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\dmadmin.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\drivers\dmboot.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\drivers\dmio.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\drivers\dmload.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\drivers\DMusic.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\drivers\drmkaud.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\services.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\fdc.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\flpydisk.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\drivers\fltmgr.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\ftdisk.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\gameenum.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\msgpc.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\hidusb.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\Drivers\HTTP.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\i8042prt.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\imapi.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\imapi.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\intelppm.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\drivers\ip6fw.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\ipinip.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\ipnat.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\ipsec.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\irenum.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\isapnp.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\drivers\kmixer.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\System32\mnmsrvc.exe
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\drivers\MODEMCSA.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\mouclass.sys
Sat Apr 09 21:08:49 2005 => Scanning File C:\WINDOWS\system32\DRIVERS\mouhid.sys
Sat

Edited by we_will_become_silhouettes, 09 April 2005 - 10:25 PM.

  • 0

#12
Michelle

Michelle

    Malware Removal Goddess

  • Retired Staff
  • 8,928 posts
Ok, I'm not looking for the part of the scan where it says it's scanning files. There should be a portion of the log that says "infected items" - I see that it's big and I don't need you to post the entire scan.
  • 0

#13
Michelle

Michelle

    Malware Removal Goddess

  • Retired Staff
  • 8,928 posts
It will probably have a lot of these entries:

File System Found infected by "whatever here" Virus. Action Taken: No Action Taken.
  • 0

#14
Michelle

Michelle

    Malware Removal Goddess

  • Retired Staff
  • 8,928 posts
Let's just forget about the MWav scan for now. We'll get back to it if we still need to.

I need you to download, install, and run CleanUp!

Then, please run both of these online virus scans:
TrendMicro's HouseCall - check "Auto Clean"
ActiveScan

Copy the results from ActiveScan and paste them here.
  • 0

#15
we_will_become_silhouettes

we_will_become_silhouettes

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
I just used active scan, house call and clean up and apparently I don't have a virus.
Here is what active scan showed:
no viruses have been found.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP