i'm still infected. i'm in complete shock. that tool found at least a dozen more
infections. it opened up an automatic notepad log when it completed... i'm hoping
that's what you wanted... i was so shocked i think i just saved it real fast without
remembering to do the ctrl & c key stroke.
Fri May 13 00:41:14 2005 => **********************************************************
Fri May 13 00:41:14 2005 => MicroWorld AntiVirus & Spyware Toolkit Utility.
Fri May 13 00:41:14 2005 => Copyright © 2003-2005, MicroWorld Technologies Inc.
Fri May 13 00:41:14 2005 => **********************************************************
Fri May 13 00:41:14 2005 => Version 6.1.7 (C:\DOCUME~1\Owner\LOCALS~1\Temp\mwavscan.com)
Fri May 13 00:41:14 2005 => Log File: C:\DOCUME~1\Owner\LOCALS~1\Temp\MWAV.LOG
Fri May 13 00:41:14 2005 => MWAV Registered: FALSE.
Fri May 13 00:41:14 2005 => MWAV Mode: Only Scan files.
Fri May 13 00:41:14 2005 => Latest Date of files inside MWAV: 05 May 2005 11:32:43.
Fri May 13 00:41:20 2005 => AV Library Loaded...
Fri May 13 00:41:20 2005 => MWAV doing self scanning...
Fri May 13 00:41:20 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\kavss.exe
Fri May 13 00:41:20 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\Getvlist.exe
Fri May 13 00:41:21 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\kavss.dll
Fri May 13 00:41:21 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\kavssdi.dll
Fri May 13 00:41:21 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\kavssi.dll
Fri May 13 00:41:21 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\kavvlg.dll
Fri May 13 00:41:21 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\msvlclnt.dll
Fri May 13 00:41:21 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\ipc.dll
Fri May 13 00:41:21 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\main.avi
Fri May 13 00:41:21 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\virus.avi
Fri May 13 00:41:21 2005 => MWAV files are clean.
Fri May 13 00:41:24 2005 => Virus Database Date: 2005/05/05
Fri May 13 00:41:24 2005 => Virus Database Count: 128422
Fri May 13 00:41:57 2005 => **********************************************************
Fri May 13 00:41:57 2005 => MicroWorld AntiVirus & Spyware Toolkit Utility.
Fri May 13 00:41:57 2005 => Copyright © 2003-2005, MicroWorld Technologies Inc.
Fri May 13 00:41:57 2005 =>
Fri May 13 00:41:57 2005 => Support:
[email protected]Fri May 13 00:41:57 2005 => Web:
http://www.mwti.netFri May 13 00:41:57 2005 => **********************************************************
Fri May 13 00:41:57 2005 => Version 6.1.7 (C:\DOCUME~1\Owner\LOCALS~1\Temp\mwavscan.com)
Fri May 13 00:41:57 2005 => Log File: C:\DOCUME~1\Owner\LOCALS~1\Temp\MWAV.LOG
Fri May 13 00:41:57 2005 => User Account: Owner
Fri May 13 00:41:57 2005 => Windows Root Folder: C:\WINDOWS
Fri May 13 00:41:57 2005 => Windows Sys32 Folder: C:\WINDOWS\System32
Fri May 13 00:41:57 2005 => OS: Windows NT
Fri May 13 00:41:57 2005 => Latest Date of files inside MWAV: 05 May 2005 11:32:43.
Fri May 13 00:41:57 2005 => Options Selected by User:
Fri May 13 00:41:57 2005 => Memory Check: Enabled
Fri May 13 00:41:57 2005 => Registry Check: Enabled
Fri May 13 00:41:57 2005 => StartUp Folder Check: Enabled
Fri May 13 00:41:57 2005 => System Folder Check: Enabled
Fri May 13 00:41:57 2005 => System Area Check: Disabled
Fri May 13 00:41:57 2005 => Services Check: Enabled
Fri May 13 00:41:57 2005 => Drive Check Option Disabled
Fri May 13 00:41:57 2005 => Folder Check: Disabled
Fri May 13 00:41:57 2005 => ***** Scanning Memory Files *****
Fri May 13 00:41:57 2005 => Scanning File C:\WINDOWS\System32\smss.exe
Fri May 13 00:41:58 2005 => Scanning File C:\WINDOWS\System32\ntdll.dll
Fri May 13 00:41:58 2005 => Scanning File C:\WINDOWS\SYSTEM32\CSRSS.EXE
Fri May 13 00:41:58 2005 => Scanning File C:\WINDOWS\system32\CSRSRV.dll
Fri May 13 00:41:58 2005 => Scanning File C:\WINDOWS\system32\basesrv.dll
Fri May 13 00:41:58 2005 => Scanning File C:\WINDOWS\system32\winsrv.dll
Fri May 13 00:41:58 2005 => Scanning File C:\WINDOWS\system32\USER32.dll
Fri May 13 00:41:58 2005 => Scanning File C:\WINDOWS\system32\KERNEL32.dll
Fri May 13 00:41:58 2005 => Scanning File C:\WINDOWS\system32\GDI32.dll
Fri May 13 00:41:59 2005 => Scanning File C:\WINDOWS\system32\ADVAPI32.dll
Fri May 13 00:41:59 2005 => Scanning File C:\WINDOWS\system32\RPCRT4.dll
Fri May 13 00:41:59 2005 => Scanning File C:\WINDOWS\System32\sxs.dll
Fri May 13 00:41:59 2005 => Scanning File C:\WINDOWS\SYSTEM32\WINLOGON.EXE
Fri May 13 00:41:59 2005 => Scanning File C:\WINDOWS\system32\msvcrt.dll
Fri May 13 00:41:59 2005 => Scanning File C:\WINDOWS\system32\USERENV.dll
Fri May 13 00:41:59 2005 => Scanning File C:\WINDOWS\system32\NDdeApi.dll
Fri May 13 00:41:59 2005 => Scanning File C:\WINDOWS\system32\CRYPT32.dll
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\MSASN1.dll
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\Secur32.dll
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\WINSTA.dll
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\PROFMAP.dll
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\NETAPI32.dll
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\REGAPI.dll
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\WS2_32.dll
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\WS2HELP.dll
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\AUTHZ.dll
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\PSAPI.DLL
Fri May 13 00:42:00 2005 => Scanning File C:\WINDOWS\system32\VERSION.dll
Fri May 13 00:42:01 2005 => Scanning File C:\WINDOWS\system32\SETUPAPI.dll
Fri May 13 00:42:01 2005 => Scanning File C:\WINDOWS\System32\MSGINA.dll
Fri May 13 00:42:01 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Fri May 13 00:42:01 2005 => Scanning File C:\WINDOWS\system32\SHLWAPI.dll
Fri May 13 00:42:01 2005 => Scanning File C:\WINDOWS\system32\COMCTL32.dll
Fri May 13 00:42:02 2005 => Scanning File C:\WINDOWS\System32\ODBC32.dll
Fri May 13 00:42:02 2005 => Scanning File C:\WINDOWS\system32\comdlg32.dll
Fri May 13 00:42:02 2005 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.10.0_x-ww_f7fb5805\comctl32.dll
Fri May 13 00:42:02 2005 => Scanning File C:\WINDOWS\System32\odbcint.dll
Fri May 13 00:42:02 2005 => Scanning File C:\WINDOWS\System32\SHSVCS.dll
Fri May 13 00:42:02 2005 => Scanning File C:\WINDOWS\system32\sfc.dll
Fri May 13 00:42:03 2005 => Scanning File C:\WINDOWS\System32\sfc_os.dll
Fri May 13 00:42:03 2005 => Scanning File C:\WINDOWS\System32\WINTRUST.dll
Fri May 13 00:42:03 2005 => Scanning File C:\WINDOWS\system32\ole32.dll
Fri May 13 00:42:03 2005 => Scanning File C:\WINDOWS\system32\IMAGEHLP.dll
Fri May 13 00:42:03 2005 => Scanning File C:\WINDOWS\System32\WINMM.dll
Fri May 13 00:42:03 2005 => Scanning File C:\WINDOWS\system32\cscdll.dll
Fri May 13 00:42:03 2005 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Fri May 13 00:42:03 2005 => Scanning File C:\WINDOWS\System32\WinSCard.dll
Fri May 13 00:42:03 2005 => Scanning File C:\WINDOWS\System32\WTSAPI32.dll
Fri May 13 00:42:04 2005 => Scanning File C:\WINDOWS\System32\WINSPOOL.DRV
Fri May 13 00:42:04 2005 => Scanning File C:\WINDOWS\system32\MPR.dll
Fri May 13 00:42:04 2005 => Scanning File C:\WINDOWS\System32\rsaenh.dll
Fri May 13 00:42:04 2005 => Scanning File C:\WINDOWS\System32\UxTheme.dll
Fri May 13 00:42:04 2005 => Scanning File C:\WINDOWS\System32\SAMLIB.dll
Fri May 13 00:42:04 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Fri May 13 00:42:04 2005 => Scanning File C:\WINDOWS\System32\NTMARTA.DLL
Fri May 13 00:42:04 2005 => Scanning File C:\WINDOWS\system32\WLDAP32.dll
Fri May 13 00:42:05 2005 => Scanning File C:\WINDOWS\System32\COMRes.dll
Fri May 13 00:42:05 2005 => Scanning File C:\WINDOWS\system32\OLEAUT32.dll
Fri May 13 00:42:05 2005 => Scanning File C:\WINDOWS\System32\CLBCATQ.DLL
Fri May 13 00:42:05 2005 => Scanning File C:\WINDOWS\system32\services.exe
Fri May 13 00:42:05 2005 => Scanning File C:\WINDOWS\system32\SCESRV.dll
Fri May 13 00:42:05 2005 => Scanning File C:\WINDOWS\system32\umpnpmgr.dll
Fri May 13 00:42:05 2005 => Scanning File C:\WINDOWS\system32\NCObjAPI.DLL
Fri May 13 00:42:05 2005 => Scanning File C:\WINDOWS\system32\eventlog.dll
Fri May 13 00:42:05 2005 => Scanning File C:\WINDOWS\system32\lsass.exe
Fri May 13 00:42:05 2005 => Scanning File C:\WINDOWS\system32\LSASRV.dll
Fri May 13 00:42:06 2005 => Scanning File C:\WINDOWS\system32\SAMSRV.dll
Fri May 13 00:42:06 2005 => Scanning File C:\WINDOWS\system32\cryptdll.dll
Fri May 13 00:42:06 2005 => Scanning File C:\WINDOWS\system32\DNSAPI.dll
Fri May 13 00:42:06 2005 => Scanning File C:\WINDOWS\system32\NTDSAPI.dll
Fri May 13 00:42:06 2005 => Scanning File C:\WINDOWS\system32\msprivs.dll
Fri May 13 00:42:06 2005 => Scanning File C:\WINDOWS\system32\kerberos.dll
Fri May 13 00:42:06 2005 => Scanning File C:\WINDOWS\system32\msv1_0.dll
Fri May 13 00:42:06 2005 => Scanning File C:\WINDOWS\system32\netlogon.dll
Fri May 13 00:42:06 2005 => Scanning File C:\WINDOWS\system32\w32time.dll
Fri May 13 00:42:06 2005 => Scanning File C:\WINDOWS\system32\MSVCP60.dll
Fri May 13 00:42:07 2005 => Scanning File C:\WINDOWS\system32\iphlpapi.dll
Fri May 13 00:42:07 2005 => Scanning File C:\WINDOWS\system32\schannel.dll
Fri May 13 00:42:07 2005 => Scanning File C:\WINDOWS\system32\wdigest.dll
Fri May 13 00:42:07 2005 => Scanning File C:\WINDOWS\system32\scecli.dll
Fri May 13 00:42:07 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Fri May 13 00:42:07 2005 => Scanning File c:\windows\system32\rpcss.dll
Fri May 13 00:42:07 2005 => Scanning File C:\WINDOWS\system32\mswsock.dll
Fri May 13 00:42:07 2005 => Scanning File C:\WINDOWS\System32\wshtcpip.dll
Fri May 13 00:42:07 2005 => Scanning File C:\WINDOWS\System32\winrnr.dll
Fri May 13 00:42:07 2005 => Scanning File C:\WINDOWS\system32\rasadhlp.dll
Fri May 13 00:42:08 2005 => Scanning File c:\windows\system32\cryptsvc.dll
Fri May 13 00:42:08 2005 => Scanning File c:\windows\system32\certcli.dll
Fri May 13 00:42:08 2005 => Scanning File c:\windows\system32\ATL.DLL
Fri May 13 00:42:08 2005 => Scanning File c:\windows\system32\CRYPTUI.dll
Fri May 13 00:42:08 2005 => Scanning File C:\WINDOWS\system32\WININET.dll
Fri May 13 00:42:08 2005 => Scanning File c:\windows\system32\ESENT.dll
Fri May 13 00:42:08 2005 => Scanning File c:\windows\system32\wbem\wmisvc.dll
Fri May 13 00:42:09 2005 => Scanning File c:\windows\system32\wbem\wbemcomn.dll
Fri May 13 00:42:09 2005 => Scanning File C:\WINDOWS\System32\VSSAPI.DLL
Fri May 13 00:42:09 2005 => Scanning File c:\windows\system32\srsvc.dll
Fri May 13 00:42:09 2005 => Scanning File c:\windows\system32\POWRPROF.dll
Fri May 13 00:42:09 2005 => Scanning File c:\windows\pchealth\helpctr\binaries\pchsvc.dll
Fri May 13 00:42:09 2005 => Scanning File C:\WINDOWS\System32\es.dll
Fri May 13 00:42:10 2005 => Scanning File C:\WINDOWS\System32\wbem\wbemcore.dll
Fri May 13 00:42:10 2005 => Scanning File C:\WINDOWS\System32\wbem\esscli.dll
Fri May 13 00:42:10 2005 => Scanning File C:\WINDOWS\System32\wbem\FastProx.dll
Fri May 13 00:42:10 2005 => Scanning File C:\WINDOWS\System32\wbem\wmiutils.dll
Fri May 13 00:42:10 2005 => Scanning File C:\WINDOWS\System32\wbem\repdrvfs.dll
Fri May 13 00:42:10 2005 => Scanning File C:\WINDOWS\System32\wbem\wmiprvsd.dll
Fri May 13 00:42:10 2005 => Scanning File C:\WINDOWS\System32\wbem\wbemess.dll
Fri May 13 00:42:10 2005 => Scanning File C:\WINDOWS\System32\wbem\ncprov.dll
Fri May 13 00:42:11 2005 => Scanning File C:\WINDOWS\System32\wbem\wbemcons.dll
Fri May 13 00:42:11 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\mwavscan.com
Fri May 13 00:42:11 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\msvlclnt.dll
Fri May 13 00:42:11 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\kavssdi.dll
Fri May 13 00:42:11 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\kavssd.dll
Fri May 13 00:42:11 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\kavssi.dll
Fri May 13 00:42:11 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\ipc.dll
Fri May 13 00:42:12 2005 => Scanning File C:\WINDOWS\system32\Apphelp.dll
Fri May 13 00:42:12 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\RICHED32.DLL
Fri May 13 00:42:12 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\PSAPI.DLL
Fri May 13 00:42:12 2005 => Scanning File C:\WINDOWS\System32\VDMDBG.DLL
Fri May 13 00:42:12 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\kavss.exe
Fri May 13 00:42:12 2005 => Scanning File C:\DOCUME~1\Owner\LOCALS~1\Temp\kavss.dll
Fri May 13 00:42:12 2005 => ***** Scanning Registry Files *****
Fri May 13 00:42:12 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Fri May 13 00:42:12 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Fri May 13 00:42:12 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Fri May 13 00:42:12 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:12 2005 => Scanning File C:\WINDOWS\System32\stobject.dll
Fri May 13 00:42:12 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Fri May 13 00:42:12 2005 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Plugins\Extension
Fri May 13 00:42:13 2005 => Scanning File C:\PROGRA~1\INTERN~1\Plugins\NPDocBox.dll
Fri May 13 00:42:13 2005 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
Fri May 13 00:42:13 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
Fri May 13 00:42:13 2005 => {53707962-6F74-2D53-2644-206D7942484F} = C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Fri May 13 00:42:13 2005 => Scanning File C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Fri May 13 00:42:13 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler
Fri May 13 00:42:13 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:13 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:13 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
Fri May 13 00:42:13 2005 => Scanning File C:\WINDOWS\system32\mmsys.cpl
Fri May 13 00:42:13 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Fri May 13 00:42:14 2005 => Scanning File C:\WINDOWS\system32\rshx32.dll
Fri May 13 00:42:14 2005 => Scanning File C:\WINDOWS\system32\docprop.dll
Fri May 13 00:42:14 2005 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Fri May 13 00:42:14 2005 => Scanning File C:\WINDOWS\System32\themeui.dll
Fri May 13 00:42:14 2005 => Scanning File C:\WINDOWS\system32\deskadp.dll
Fri May 13 00:42:14 2005 => Scanning File C:\WINDOWS\system32\deskmon.dll
Fri May 13 00:42:14 2005 => Scanning File C:\WINDOWS\system32\dssec.dll
Fri May 13 00:42:14 2005 => Scanning File C:\WINDOWS\system32\SlayerXP.dll
Fri May 13 00:42:14 2005 => Scanning File C:\WINDOWS\system32\shscrap.dll
Fri May 13 00:42:14 2005 => Scanning File C:\WINDOWS\system32\diskcopy.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\ntlanui2.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\System32\icmui.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\printui.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\dskquoui.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\syncui.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\System32\hticons.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\fontext.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\rshx32.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\deskperf.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\cryptext.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\cryptext.dll
Fri May 13 00:42:15 2005 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Fri May 13 00:42:16 2005 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Fri May 13 00:42:16 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Fri May 13 00:42:16 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Fri May 13 00:42:16 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Fri May 13 00:42:16 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Fri May 13 00:42:16 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Fri May 13 00:42:16 2005 => Scanning File C:\WINDOWS\System32\remotepg.dll
Fri May 13 00:42:16 2005 => Scanning File C:\WINDOWS\System32\wuaueng.dll
Fri May 13 00:42:16 2005 => Scanning File C:\WINDOWS\System32\wshext.dll
Fri May 13 00:42:16 2005 => Scanning File C:\PROGRA~1\COMMON~1\System\OLEDB~1\oledb32.dll
Fri May 13 00:42:16 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\BROWSEUI.DLL
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\sendmail.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\sendmail.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\occache.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Fri May 13 00:42:17 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\msieftp.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Fri May 13 00:42:18 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\msagent\agentpsh.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\dfsshlex.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\photowiz.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\System32\mmcshext.dll
Fri May 13 00:42:19 2005 => Scanning File C:\WINDOWS\system32\cabview.dll
Fri May 13 00:42:19 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\wabfind.dll
Fri May 13 00:42:20 2005 => Scanning File C:\WINDOWS\System32\wmpshell.dll
Fri May 13 00:42:20 2005 => Scanning File C:\WINDOWS\System32\wmpshell.dll
Fri May 13 00:42:20 2005 => Scanning File C:\WINDOWS\System32\wmpshell.dll
Fri May 13 00:42:20 2005 => Scanning File C:\WINDOWS\System32\Audiodev.dll
Fri May 13 00:42:20 2005 => Scanning File C:\WINDOWS\System32\Audiodev.dll
Fri May 13 00:42:20 2005 => Scanning File C:\PROGRA~1\Yahoo!\Common\ymmapi.dll
Fri May 13 00:42:20 2005 => ERROR!!! Invalid Entry {B8323370-FF27-11D2-97B6-204C4F4F5020} = C:\Program Files\SmartFTP\smarthook.dll (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved). Removing it.
Fri May 13 00:42:20 2005 => Scanning File C:\PROGRA~1\Grisoft\AVGFRE~1\avgse.dll
Fri May 13 00:42:20 2005 => Scanning File C:\PROGRA~1\Grisoft\AVGFRE~1\avgse.dll
Fri May 13 00:42:20 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
Fri May 13 00:42:20 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Fri May 13 00:42:20 2005 => Scanning File C:\WINDOWS\Explorer.exe
Fri May 13 00:42:20 2005 => Scanning File C:\WINDOWS\system32\userinit.exe
Fri May 13 00:42:20 2005 => Scanning File C:\WINDOWS\system32\dskquota.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\scecli.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\scecli.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\crypt32.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\cryptnet.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\cscdll.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\sclgntfy.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Fri May 13 00:42:21 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Fri May 13 00:42:21 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System
Fri May 13 00:42:21 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
Fri May 13 00:42:21 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AEDEBUG
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\drwtsn32.exe
Fri May 13 00:42:21 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\ntsd.exe
Fri May 13 00:42:21 2005 => Scanning HKCU\Control Panel\Desktop
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\SYSTEM32\ssmypics.scr
Fri May 13 00:42:21 2005 => Scanning HKLM\SYSTEM\CurrentControlSet\Control\WOW
Fri May 13 00:42:21 2005 => Scanning File C:\WINDOWS\system32\ntvdm.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\ntvdm.exe
Fri May 13 00:42:22 2005 => Scanning HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\INF\unregmp2.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\shmgrate.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\shmgrate.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\System32\rundll32.exe
Fri May 13 00:42:22 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Fri May 13 00:42:22 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\ie4uinit.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Fri May 13 00:42:22 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Fri May 13 00:42:22 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
Fri May 13 00:42:22 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
Fri May 13 00:42:22 2005 => Scanning HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Run
Fri May 13 00:42:22 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Run
Fri May 13 00:42:22 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Fri May 13 00:42:22 2005 => Scanning File c:\windows\system\hpsysdrv.exe
Fri May 13 00:42:23 2005 => Scanning File C:\PROGRA~1\IOMEGA~1\AUTOLA~1.EXE
Fri May 13 00:42:23 2005 => Scanning File C:\WINDOWS\system32\ps2.exe
Fri May 13 00:42:23 2005 => Scanning File C:\WINDOWS\System32\hkcmd.exe
Fri May 13 00:42:23 2005 => Scanning File C:\WINDOWS\System32\igfxtray.exe
Fri May 13 00:42:23 2005 => Scanning File C:\WINDOWS\system32\RUNDLL32.EXE
Fri May 13 00:42:23 2005 => Scanning File C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
Fri May 13 00:42:23 2005 => Scanning File C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
Fri May 13 00:42:24 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Fri May 13 00:42:24 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
Fri May 13 00:42:24 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
Fri May 13 00:42:24 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce
Fri May 13 00:42:24 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Fri May 13 00:42:24 2005 => Scanning File C:\PROGRA~1\AWS\WEATHE~1\Weather.exe
Fri May 13 00:42:26 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Fri May 13 00:42:26 2005 => Scanning File C:\PROGRA~1\CleanUp!\CleanUp.exe
Fri May 13 00:42:26 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
Fri May 13 00:42:26 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
Fri May 13 00:42:26 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\Setup
Fri May 13 00:42:26 2005 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Fri May 13 00:42:26 2005 => Scanning File C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe
Fri May 13 00:42:26 2005 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Fri May 13 00:42:26 2005 => Scanning HKCR\txtfile\shell\open\command
Fri May 13 00:42:26 2005 => Scanning File C:\WINDOWS\system32\Notepad.exe
Fri May 13 00:42:27 2005 => Scanning HKCR\comfile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning HKCR\exefile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning HKCR\dllfile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning HKCR\batfile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning HKCR\piffile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning HKCR\scrfile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning HKCR\scrfile\shell\config\command
Fri May 13 00:42:27 2005 => Scanning HKCR\regfile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning HKCR\htmlfile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning File C:\PROGRA~1\INTERN~1\iexplore.exe
Fri May 13 00:42:27 2005 => Scanning HKCR\htafile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning HKCR\jsfile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning File C:\WINDOWS\System32\WScript.exe
Fri May 13 00:42:27 2005 => Scanning HKCR\jsefile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning File C:\WINDOWS\System32\WScript.exe
Fri May 13 00:42:27 2005 => Scanning HKCR\vbsfile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning File C:\WINDOWS\System32\WScript.exe
Fri May 13 00:42:27 2005 => Scanning HKCR\vbefile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning File C:\WINDOWS\System32\WScript.exe
Fri May 13 00:42:27 2005 => Scanning HKCR\wshfile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning File C:\WINDOWS\System32\WScript.exe
Fri May 13 00:42:27 2005 => Scanning HKCR\wsffile\shell\open\command
Fri May 13 00:42:27 2005 => Scanning File C:\WINDOWS\System32\WScript.exe
Fri May 13 00:42:27 2005 => ***** Scanning StartUp Folders *****
Fri May 13 00:42:27 2005 => ***** Scanning C:\Documents and Settings\Owner\Start Menu\Programs\Startup Folder *****
Fri May 13 00:42:27 2005 => Scanning Folder: C:\Documents and Settings\Owner\Start Menu\Programs\Startup\*.*
Fri May 13 00:42:27 2005 => Scanning File C:\Documents and Settings\Owner\Start Menu\Programs\Startup\desktop.ini
Fri May 13 00:42:27 2005 => ***** Scanning C:\Documents and Settings\All Users\Start Menu\Programs\Startup Folder *****
Fri May 13 00:42:28 2005 => Scanning Folder: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\*.*
Fri May 13 00:42:28 2005 => Scanning File C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Anti-Spyware Blocker.lnk
Fri May 13 00:42:28 2005 => Scanning File C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini
Fri May 13 00:42:28 2005 => Scanning File C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Smart Wizard Wireless Settings.lnk.disabled
Fri May 13 00:42:28 2005 => ***** Scanning C:\Documents and Settings\Administrator\Start menu\Programs\Startup Folder *****
Fri May 13 00:42:28 2005 => Scanning Folder: C:\DOCUME~1\ADMINI~1\STARTM~1\Programs\Startup\*.*
Fri May 13 00:42:28 2005 => Scanning File C:\DOCUME~1\ADMINI~1\STARTM~1\Programs\Startup\AutoPlay.exe
Fri May 13 00:42:28 2005 => Scanning File C:\DOCUME~1\ADMINI~1\STARTM~1\Programs\Startup\desktop.ini
Fri May 13 00:42:28 2005 => ***** Scanning C:\Documents and Settings\Default User\Start menu\Programs\Startup Folder *****
Fri May 13 00:42:28 2005 => Scanning Folder: C:\DOCUME~1\DEFAUL~1\STARTM~1\Programs\Startup\*.*
Fri May 13 00:42:28 2005 => Scanning File C:\DOCUME~1\DEFAUL~1\STARTM~1\Programs\Startup\AutoPlay.exe
Fri May 13 00:42:28 2005 => Scanning File C:\DOCUME~1\DEFAUL~1\STARTM~1\Programs\Startup\desktop.ini
Fri May 13 00:42:29 2005 => ***** Scanning Service Files *****
Fri May 13 00:42:29 2005 => Scanning HKLM\SYSTEM\CurrentControlSet\Services
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\drivers\ac97intc.sys
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ACPI.sys
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\drivers\aec.sys
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\drivers\afd.sys
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\agp440.sys
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\alg.exe
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\amdagp.sys
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\asyncmac.sys
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\atapi.sys
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\atmarpc.sys
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:29 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\audstub.sys
Fri May 13 00:42:29 2005 => Scanning File C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
Fri May 13 00:42:30 2005 => Scanning File C:\WINDOWS\System32\Drivers\avg7core.sys
Fri May 13 00:42:30 2005 => Scanning File C:\WINDOWS\System32\Drivers\avg7rsw.sys
Fri May 13 00:42:30 2005 => Scanning File C:\WINDOWS\System32\Drivers\avg7rsxp.sys
Fri May 13 00:42:30 2005 => Scanning File C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
Fri May 13 00:42:30 2005 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\AVGTDI.SYS
Fri May 13 00:42:30 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:30 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:30 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\cdrom.sys
Fri May 13 00:42:30 2005 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\CINEMSUP.SYS
Fri May 13 00:42:30 2005 => Scanning File C:\WINDOWS\System32\cisvc.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\dllhost.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\disk.sys
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\dmadmin.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\drivers\dmboot.sys
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\drivers\dmio.sys
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\drivers\dmload.sys
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\drivers\DMusic.sys
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\drivers\drmkaud.sys
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\system32\services.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\FA312nd5.sys
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:31 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\fdc.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\flpydisk.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ftdisk.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\gameenum.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\msgpc.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\hidusb.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\i8042prt.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\i81xnt5.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\wADV01nt.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\wADV02NT.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\wADV05NT.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\wSiINTxx.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\wVchNTxx.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\wATV01nt.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\wATV02NT.sys
Fri May 13 00:42:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\wATV04nt.sys
Fri May 13 00:42:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\wCh7xxNT.sys
Fri May 13 00:42:33 2005 => Scanning File C:\WINDOWS\System32\imapi.exe
Fri May 13 00:42:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\intelide.sys
Fri May 13 00:42:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\iomdisk.sys
Fri May 13 00:42:33 2005 => ERROR!!! Invalid Entry "" in SYSTEM\CurrentControlSet\Services\Iomega Activity Disk2...
Fri May 13 00:42:33 2005 => Scanning File C:\PROGRA~1\Iomega\System32\AppServices.exe
Fri May 13 00:42:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys
Fri May 13 00:42:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ipinip.sys
Fri May 13 00:42:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ipnat.sys
Fri May 13 00:42:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ipsec.sys
Fri May 13 00:42:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\irenum.sys
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\isapnp.sys
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\kbdclass.sys
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\drivers\kmixer.sys
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\L8042pr2.Sys
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\LMouFlt2.Sys
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ltmdmnt.sys
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\mdc8021x.sys
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\mnmsrvc.exe
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\mouclass.sys
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\mouhid.sys
Fri May 13 00:42:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\mrxdav.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\mrxsmb.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\msdtc.exe
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\msiexec.exe
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\drivers\MSKSSRV.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\drivers\MSPCLOCK.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\drivers\MSPQM.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\drivers\msmpu401.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ndistapi.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ndisuio.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ndiswan.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\netbios.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\netbt.sys
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\system32\netdde.exe
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\system32\netdde.exe
Fri May 13 00:42:35 2005 => Scanning File C:\WINDOWS\System32\lsass.exe
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\lsass.exe
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\nv4_mini.sys
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\nvsvc32.exe
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\p3.sys
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\parport.sys
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\pci.sys
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\system32\services.exe
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\lsass.exe
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\raspptp.sys
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\processr.sys
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\system32\lsass.exe
Fri May 13 00:42:36 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\PS2.sys
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\psched.sys
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ptilink.sys
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\rasacd.sys
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\rasl2tp.sys
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\raspppoe.sys
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\raspti.sys
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\rdbss.sys
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\system32\sessmgr.exe
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\redbook.sys
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\locator.exe
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\rsvp.exe
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\RTL8139.SYS
Fri May 13 00:42:37 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\s3gnbm.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\system32\lsass.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\system32\drivers\scsiport.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\secdrv.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\serenum.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\serial.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\drivers\splitter.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\sr.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\srv.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\swenum.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\drivers\swmidi.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\dllhost.exe
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\System32\drivers\sysaudio.sys
Fri May 13 00:42:38 2005 => Scanning File C:\WINDOWS\system32\smlogsvc.exe
Fri May 13 00:42:39 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Fri May 13 00:42:39 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\tcpip.sys
Fri May 13 00:42:39 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\termdd.sy
Edited by tilby, 12 May 2005 - 10:59 PM.