View Full Version : [third computer] Panda stalls, mentions a hacking tool; here's HJT log
Hi there,
This is Anne, about a third computer.
For this computer, I followed your advice in Before you post.
Panda stalled, but not after I could see it had spotted a hacker.
I cleaned the computer out using AVG, SpyBot and Antivir, hoping to get Panda running.
Panda kept stalling. Notably at a virtual Daemon CD-drive, at least that's how it looked.
Sorry, no Panda log.
HouseCall didn't work either.
The third online scan the sticky referred to seemed to have a bad link, couldn't use that.
Below is the HJT log. Hope we can start with that.
Thanks in advance for any help.
Anne
Logfile of HijackThis v1.99.1
Scan saved at 16:42:42, on 14/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\VampireFreaksAlerter\vfalerter.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\Internet explorer.EXE
C:\antimalware\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: 66.98.148.65 auto.search.msn.com
O1 - Hosts: 66.98.148.65 auto.search.msn.es
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Cryptographic Service] C:\WINDOWS\System32\jnrtks.exe
O4 - HKLM\..\Run: [XML Service] msxml.exe
O4 - HKLM\..\Run: [Microsoft Time Manager] dveldr.exe
O4 - HKLM\..\Run: [Win32 USB2 Driver] winupdate.exe
O4 - HKLM\..\Run: [Zone Alarm] vsmon.exe
O4 - HKLM\..\Run: [Win32 USB2.0 Driver] 386.exe
O4 - HKLM\..\Run: [Reg Services] WINBOOT32.EXE
O4 - HKLM\..\Run: [System Uptime Server] sysentry32.exe
O4 - HKLM\..\Run: [Windows Automatic Updates] dvldr.exe
O4 - HKLM\..\Run: [Media Access] C:\Program Files\Media Access\MediaAccK.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [winlog] winlog.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\RunServices: [XML Service] msxml.exe
O4 - HKLM\..\RunServices: [Microsoft Time Manager] dveldr.exe
O4 - HKLM\..\RunServices: [Win32 USB2 Driver] winupdate.exe
O4 - HKLM\..\RunServices: [Zone Alarm] vsmon.exe
O4 - HKLM\..\RunServices: [Win32 USB2.0 Driver] 386.exe
O4 - HKLM\..\RunServices: [Reg Services] WINBOOT32.EXE
O4 - HKLM\..\RunServices: [System Uptime Server] sysentry32.exe
O4 - HKLM\..\RunServices: [Windows Automatic Updates] dvldr.exe
O4 - HKLM\..\RunServices: [winlog] winlog.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Win32 USB2 Driver] winupdate.exe
O4 - HKCU\..\Run: [Zone Alarm] vsmon.exe
O4 - HKCU\..\Run: [Win32 USB2.0 Driver] 386.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: VampireFreaks Alerter.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Web Rebates. - file://C:\Program Files\WebRebates4\websrebates\webtrebates\toprC0.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: DefWatch - Unknown owner - C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe (file missing)
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Unknown owner - C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe (file missing)
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Win32 USB2 Driver (Windows Update) - Unknown owner - C:\WINDOWS\System32\winupdate.exe" -netsvcs (file missing)
Hi Ro-Ann
One or more of the identified infections is a backdoor trojan.
This allows hackers to remotely control your computer, steal critical system information and Download and Execute files
I would counsel you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.
Though the Trojan has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of Trojan, the best course of action would be a reformat and reinstall of the OS. Please read these for more information:
How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud? (http://www.dslreports.com/faq/10451)
When Should I Format, How Should I Reinstall (http://www.dslreports.com/faq/10063)
We can attempt to clean this machine but i can't guarantee that it will be 100% secure afterwards.
Should you have any questions, please feel free to ask.
Please let us know what you have decided to do in your next post
Hi there Shaba,
Let's try to disinfect the thing.
A challenge!
It's disconnected right now.
Tell me what to do, and I'll get cracking!
Best, thanks,
Anne
Hi
Uninstall via add/remove programs if present:
Media Access
Open HijackThis, click do a system scan only and checkmark these:
O4 - HKLM\..\Run: [Cryptographic Service] C:\WINDOWS\System32\jnrtks.exe
O4 - HKLM\..\Run: [XML Service] msxml.exe
O4 - HKLM\..\Run: [Microsoft Time Manager] dveldr.exe
O4 - HKLM\..\Run: [Win32 USB2 Driver] winupdate.exe
O4 - HKLM\..\Run: [Zone Alarm] vsmon.exe
O4 - HKLM\..\Run: [Win32 USB2.0 Driver] 386.exe
O4 - HKLM\..\Run: [Reg Services] WINBOOT32.EXE
O4 - HKLM\..\Run: [System Uptime Server] sysentry32.exe
O4 - HKLM\..\Run: [Windows Automatic Updates] dvldr.exe
O4 - HKLM\..\Run: [Media Access] C:\Program Files\Media Access\MediaAccK.exe
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [winlog] winlog.exe
O4 - HKLM\..\RunServices: [XML Service] msxml.exe
O4 - HKLM\..\RunServices: [Microsoft Time Manager] dveldr.exe
O4 - HKLM\..\RunServices: [Win32 USB2 Driver] winupdate.exe
O4 - HKLM\..\RunServices: [Zone Alarm] vsmon.exe
O4 - HKLM\..\RunServices: [Win32 USB2.0 Driver] 386.exe
O4 - HKLM\..\RunServices: [Reg Services] WINBOOT32.EXE
O4 - HKLM\..\RunServices: [System Uptime Server] sysentry32.exe
O4 - HKLM\..\RunServices: [Windows Automatic Updates] dvldr.exe
O4 - HKLM\..\RunServices: [winlog] winlog.exe
O4 - HKCU\..\Run: [Win32 USB2 Driver] winupdate.exe
O4 - HKCU\..\Run: [Zone Alarm] vsmon.exe
O4 - HKCU\..\Run: [Win32 USB2.0 Driver] 386.exe
O23 - Service: Win32 USB2 Driver (Windows Update) - Unknown owner - C:\WINDOWS\System32\winupdate.exe" -netsvcs (file missing)
Close all windows including browser and press fix checked
Please print these instructions out, or write them down, as you can't read them during the fix.
Please download MWav (http://www.spywareinfo.dk/download/mwav.exe):
Unzip it to its predetermined directory (C:\Kaspersky)
Locate kavupd.exe in the new folder and double-click to Update.
If your firewall gives any messages about this program accessing to internet, allow it.
If it says the signatures are more than 30 days old, keep trying, until you get the actual definition updates.
When you see Updates Downloaded Successfully, hit Enter to continue.
Restart onto Safe Mode (http://www.pchell.com/support/safemode.shtml)
Delete if present:
C:\WINDOWS\System32\jnrtks.exe
C:\Program Files\outlook
C:\WINDOWS\System32\winupdate.exe
Please do a search:
"Run "Start">"Search">"All Files and Folders"> enter msxml.exe in "All or part of file name". Select "More advanced options". Check-mark "Search System Folders", "Search hidden files and folders", and "Search subfolders". Click "Search". Right click the file and select delete.
Empty Recycle Bin.
NOTE: That file may not exist at all! If it doesn't, just skip the step above. '
Repeat for these:
dveldr.exe
winupdate.exe
vsmon.exe
386.exe
WINBOOT32.EXE
sysentry32.exe
dvldr.exe
winlog.exe
Locate the Kaspersky folder.
Locate mwavscan.com and double-click on it to launch the MWAV Scanner.Now lets do the settings:
Leave the Default Settings checked.
Add a check to Drives
This will light up All Drives
Add a check to Scan all Files
Click Scan Clean to begin.
This scan might take around 3+ hours to finish when set to scan everything.
Please be sure it has finished before proceeding.
Once the Scan has finished, all entries identified as Infected, will be displayed in the lower panel.
Highlight everything that is inside the lower panel and hit Ctrl+C at the same time to copy.
Open an empty notepad file and paste the results (Ctrl+V) to it. Save the notepad to your desktop, name it as you want (e.g; MWav Results).Reboot into normal Windows and post the results here along with a fresh HijackThis log.
Hi,
Here are the results, MWav first, then HJT.
Thanks,
Anne
Mon Jan 15 22:44:43 2007 => **********************************************************
Mon Jan 15 22:44:43 2007 => eScan AntiVirus Toolkit Utility.
Mon Jan 15 22:44:43 2007 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Mon Jan 15 22:44:43 2007 => **********************************************************
Mon Jan 15 22:44:43 2007 => Version 4.4.7
Mon Jan 15 22:44:43 2007 => Log File: C:\KASPER~1\mwav.log
Mon Jan 15 22:44:51 2007 => Latest Date of files inside MWAV: 28 Dec 2006 00:48:52.
Mon Jan 15 22:45:04 2007 => AV Library Loaded...
Mon Jan 15 22:45:04 2007 => Scanning File C:\KASPER~1\kavss.exe
Mon Jan 15 22:45:04 2007 => Scanning File C:\KASPER~1\Getvlist.exe
Mon Jan 15 22:45:04 2007 => Scanning File C:\KASPER~1\kavss.dll
Mon Jan 15 22:45:04 2007 => Scanning File C:\KASPER~1\kavssdi.dll
Mon Jan 15 22:45:04 2007 => Scanning File C:\KASPER~1\kavssi.dll
Mon Jan 15 22:45:04 2007 => Scanning File C:\KASPER~1\kavvlg.dll
Mon Jan 15 22:45:04 2007 => Scanning File C:\KASPER~1\msvlclnt.dll
Mon Jan 15 22:45:04 2007 => Scanning File C:\KASPER~1\ipc.dll
Mon Jan 15 22:45:04 2007 => Scanning File C:\KASPER~1\main.avi
Mon Jan 15 22:45:04 2007 => Scanning File C:\KASPER~1\virus.avi
Mon Jan 15 22:45:05 2007 => Virus Database Date: 2006/12/28
Mon Jan 15 22:45:05 2007 => Virus Database Count: 254631
Mon Jan 15 22:50:08 2007 => AV Library Unloaded (3)...
Mon Jan 15 23:34:45 2007 => **********************************************************
Mon Jan 15 23:34:45 2007 => eScan AntiVirus Toolkit Utility.
Mon Jan 15 23:34:45 2007 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Mon Jan 15 23:34:45 2007 => **********************************************************
Mon Jan 15 23:34:45 2007 => Version 4.4.7
Mon Jan 15 23:34:45 2007 => Log File: C:\KASPER~1\mwav.log
Mon Jan 15 23:34:49 2007 => Latest Date of files inside MWAV: 28 Dec 2006 00:48:52.
Mon Jan 15 23:35:02 2007 => AV Library Loaded...
Mon Jan 15 23:35:02 2007 => Scanning File C:\KASPER~1\kavss.exe
Mon Jan 15 23:35:02 2007 => Scanning File C:\KASPER~1\Getvlist.exe
Mon Jan 15 23:35:02 2007 => Scanning File C:\KASPER~1\kavss.dll
Mon Jan 15 23:35:02 2007 => Scanning File C:\KASPER~1\kavssdi.dll
Mon Jan 15 23:35:02 2007 => Scanning File C:\KASPER~1\kavssi.dll
Mon Jan 15 23:35:02 2007 => Scanning File C:\KASPER~1\kavvlg.dll
Mon Jan 15 23:35:02 2007 => Scanning File C:\KASPER~1\msvlclnt.dll
Mon Jan 15 23:35:03 2007 => Scanning File C:\KASPER~1\ipc.dll
Mon Jan 15 23:35:03 2007 => Scanning File C:\KASPER~1\main.avi
Mon Jan 15 23:35:03 2007 => Scanning File C:\KASPER~1\virus.avi
Mon Jan 15 23:35:03 2007 => Virus Database Date: 2006/12/28
Mon Jan 15 23:35:03 2007 => Virus Database Count: 254631
Mon Jan 15 23:35:48 2007 => AV Library Unloaded (3)...
Mon Jan 15 23:35:50 2007 => **********************************************************
Mon Jan 15 23:35:50 2007 => eScan AntiVirus Toolkit Utility.
Mon Jan 15 23:35:50 2007 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Mon Jan 15 23:35:50 2007 => **********************************************************
Mon Jan 15 23:35:50 2007 => Version 4.4.7
Mon Jan 15 23:35:50 2007 => Log File: C:\KASPER~1\mwav.log
Mon Jan 15 23:35:50 2007 => Latest Date of files inside MWAV: 28 Dec 2006 00:48:52.
Mon Jan 15 23:35:52 2007 => AV Library Loaded...
Mon Jan 15 23:35:52 2007 => Scanning File C:\KASPER~1\kavss.exe
Mon Jan 15 23:35:53 2007 => Scanning File C:\KASPER~1\Getvlist.exe
Mon Jan 15 23:35:53 2007 => Scanning File C:\KASPER~1\kavss.dll
Mon Jan 15 23:35:53 2007 => Scanning File C:\KASPER~1\kavssdi.dll
Mon Jan 15 23:35:53 2007 => Scanning File C:\KASPER~1\kavssi.dll
Mon Jan 15 23:35:53 2007 => Scanning File C:\KASPER~1\kavvlg.dll
Mon Jan 15 23:35:53 2007 => Scanning File C:\KASPER~1\msvlclnt.dll
Mon Jan 15 23:35:53 2007 => Scanning File C:\KASPER~1\ipc.dll
Mon Jan 15 23:35:53 2007 => Scanning File C:\KASPER~1\main.avi
Mon Jan 15 23:35:53 2007 => Scanning File C:\KASPER~1\virus.avi
Mon Jan 15 23:35:53 2007 => Virus Database Date: 2006/12/28
Mon Jan 15 23:35:53 2007 => Virus Database Count: 254631
Mon Jan 15 23:38:01 2007 => Generating Virus List... getvlist.exe C:\KASPER~1\vlist.txt
Mon Jan 15 23:38:55 2007 => **********************************************************
Mon Jan 15 23:38:55 2007 => eScan AntiVirus Toolkit Utility.
Mon Jan 15 23:38:55 2007 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Mon Jan 15 23:38:55 2007 =>
Mon Jan 15 23:38:55 2007 => Support: support@mwti.net
Mon Jan 15 23:38:55 2007 => Web: http://www.mwti.net
Mon Jan 15 23:38:55 2007 => **********************************************************
Mon Jan 15 23:38:55 2007 => Version 4.4.7
Mon Jan 15 23:38:55 2007 => Log File: C:\KASPER~1\mwav.log
Mon Jan 15 23:38:55 2007 => Latest Date of files inside MWAV: 28 Dec 2006 00:48:52.
Mon Jan 15 23:38:55 2007 => Options Selected by User:
Mon Jan 15 23:38:55 2007 => Memory Check: Enabled
Mon Jan 15 23:38:55 2007 => Registry Check: Enabled
Mon Jan 15 23:38:55 2007 => StartUp Folder Check: Enabled
Mon Jan 15 23:38:55 2007 => System Folder Check: Enabled
Mon Jan 15 23:38:55 2007 => System Area Check: Disabled
Mon Jan 15 23:38:55 2007 => Services Check: Enabled
Mon Jan 15 23:38:55 2007 => Drive Check: Disabled
Mon Jan 15 23:38:55 2007 => All Drive Check :Enabled
Mon Jan 15 23:38:55 2007 => Scanning Type: Scan And Clean
Mon Jan 15 23:38:55 2007 => Folder Check: Disabled
Mon Jan 15 23:38:55 2007 => ***** Scanning Memory Files *****
Mon Jan 15 23:38:55 2007 => Scanning File C:\WINDOWS\system32\services.exe
Mon Jan 15 23:38:55 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Mon Jan 15 23:38:55 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:38:55 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:38:55 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Mon Jan 15 23:38:56 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Mon Jan 15 23:38:56 2007 => Scanning File C:\WINDOWS\Explorer.EXE
Mon Jan 15 23:38:56 2007 => Scanning File C:\Kaspersky\mwavscan.com
Mon Jan 15 23:38:56 2007 => Scanning File C:\Kaspersky\kavss.exe
Mon Jan 15 23:38:56 2007 => ***** Scanning Registry Files *****
Mon Jan 15 23:38:56 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Mon Jan 15 23:38:56 2007 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Mon Jan 15 23:38:56 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Mon Jan 15 23:38:56 2007 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Mon Jan 15 23:38:56 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Mon Jan 15 23:38:56 2007 => Scanning File C:\WINDOWS\System32\webcheck.dll
Mon Jan 15 23:38:56 2007 => Scanning File C:\WINDOWS\System32\stobject.dll
Mon Jan 15 23:38:56 2007 => Scanning File C:\WINDOWS\system32\WPDShServiceObj.dll
Mon Jan 15 23:38:56 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
Mon Jan 15 23:38:56 2007 => {02478D38-C3F9-4EFB-9B51-7695ECA05670} = C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
Mon Jan 15 23:38:56 2007 => Scanning File C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\yt.dll
Mon Jan 15 23:38:57 2007 => {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} = C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
Mon Jan 15 23:38:57 2007 => Scanning File C:\PROGRA~1\Adobe\ACROBA~2.0\Reader\ActiveX\ACROIE~1.OCX
Mon Jan 15 23:38:57 2007 => {53707962-6F74-2D53-2644-206D7942484F} = C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
Mon Jan 15 23:38:57 2007 => Scanning File C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Mon Jan 15 23:38:57 2007 => {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} = C:\Program Files\Yahoo!\Common\yiesrvc.dll
Mon Jan 15 23:38:57 2007 => Scanning File C:\PROGRA~1\Yahoo!\Common\yiesrvc.dll
Mon Jan 15 23:38:57 2007 => {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} = C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
Mon Jan 15 23:38:57 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_0\bin\ssv.dll
Mon Jan 15 23:38:57 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Mon Jan 15 23:38:57 2007 => Scanning File C:\WINDOWS\Explorer.exe
Mon Jan 15 23:38:57 2007 => Scanning File C:\WINDOWS\system32\userinit.exe
Mon Jan 15 23:38:57 2007 => Scanning HKCU\Control Panel\Desktop
Mon Jan 15 23:38:57 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Mon Jan 15 23:38:58 2007 => Scanning File C:\PROGRA~1\QUICKT~1\qttask.exe
Mon Jan 15 23:38:58 2007 => Scanning File C:\PROGRA~1\iTunes\ITUNES~1.EXE
Mon Jan 15 23:38:58 2007 => Scanning File C:\PROGRA~1\Java\JRE15~2.0_0\bin\jusched.exe
Mon Jan 15 23:38:58 2007 => Scanning File C:\PROGRA~1\COMMON~1\Real\UPDATE~1\REALSC~1.EXE
Mon Jan 15 23:38:58 2007 => Scanning File C:\PROGRA~1\ANTIVI~1\avgnt.exe
Mon Jan 15 23:38:58 2007 => Scanning File C:\PROGRA~1\DAEMON~1\daemon.exe
Mon Jan 15 23:38:58 2007 => *** File C:\PROGRA~1\Grisoft\AVGANT~1.5\avgas.exe having Size Restriction ***
Mon Jan 15 23:38:58 2007 => Scanning File C:\PROGRA~1\Grisoft\AVGANT~1.5\avgas.exe [**]
Mon Jan 15 23:38:58 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Mon Jan 15 23:38:58 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
Mon Jan 15 23:38:58 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
Mon Jan 15 23:38:59 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Mon Jan 15 23:38:59 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Mon Jan 15 23:38:59 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
Mon Jan 15 23:38:59 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
Mon Jan 15 23:38:59 2007 => Scanning HKCR\txtfile\shell\open\command
Mon Jan 15 23:38:59 2007 => Scanning HKCR\comfile\shell\open\command
Mon Jan 15 23:38:59 2007 => Scanning HKCR\exefile\shell\open\command
Mon Jan 15 23:38:59 2007 => Scanning HKCR\dllfile\shell\open\command
Mon Jan 15 23:38:59 2007 => Scanning HKCR\batfile\shell\open\command
Mon Jan 15 23:38:59 2007 => Scanning HKCR\piffile\shell\open\command
Mon Jan 15 23:38:59 2007 => Scanning HKCR\scrfile\shell\open\command
Mon Jan 15 23:38:59 2007 => Scanning HKCR\scrfile\shell\config\command
Mon Jan 15 23:38:59 2007 => Scanning HKCR\regfile\shell\open\command
Mon Jan 15 23:38:59 2007 => Scanning File C:\WINDOWS\regedit.exe
Mon Jan 15 23:38:59 2007 => ***** Scanning StartUp Folders *****
Mon Jan 15 23:38:59 2007 => ***** Scanning C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten Folder *****
Mon Jan 15 23:38:59 2007 => Scanning Folder: C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\*.*
Mon Jan 15 23:38:59 2007 => Scanning File C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\Adobe Gamma Loader.lnk
Mon Jan 15 23:39:00 2007 => Scanning File C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\desktop.ini
Mon Jan 15 23:39:00 2007 => Scanning File C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\HotSync Manager.lnk
Mon Jan 15 23:39:00 2007 => Scanning File C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\Microsoft Office.lnk
Mon Jan 15 23:39:00 2007 => ***** Scanning Service Files *****
Mon Jan 15 23:39:00 2007 => Scanning HKLM\SYSTEM\CurrentControlSet\Services
Mon Jan 15 23:39:00 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ACPI.sys
Mon Jan 15 23:39:00 2007 => Scanning File C:\PROGRA~1\COMMON~1\ADOBES~1\Service\ADOBEL~1.EXE
Mon Jan 15 23:39:00 2007 => Scanning File C:\WINDOWS\system32\drivers\aec.sys
Mon Jan 15 23:39:00 2007 => Scanning File C:\WINDOWS\System32\drivers\afd.sys
Mon Jan 15 23:39:00 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:00 2007 => Scanning File C:\WINDOWS\System32\alg.exe
Mon Jan 15 23:39:00 2007 => Scanning File C:\PROGRA~1\ANTIVI~1\sched.exe
Mon Jan 15 23:39:00 2007 => Scanning File C:\PROGRA~1\ANTIVI~1\avguard.exe
Mon Jan 15 23:39:00 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:00 2007 => Scanning File C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
Mon Jan 15 23:39:01 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\asyncmac.sys
Mon Jan 15 23:39:01 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\atapi.sys
Mon Jan 15 23:39:01 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\atmarpc.sys
Mon Jan 15 23:39:01 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:01 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\audstub.sys
Mon Jan 15 23:39:01 2007 => Scanning File C:\PROGRA~1\GRISOFT\AVGANT~1.5\GUARD.SYS
Mon Jan 15 23:39:01 2007 => Scanning File C:\PROGRA~1\Grisoft\AVGANT~1.5\guard.exe
Mon Jan 15 23:39:01 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\AvgAsCln.sys
Mon Jan 15 23:39:01 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\avgntdd.sys
Mon Jan 15 23:39:01 2007 => Scanning File C:\WINDOWS\system32\drivers\avgntmgr.sys
Mon Jan 15 23:39:01 2007 => Scanning File C:\WINDOWS\System32\drivers\avmport.sys
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\avmwan.sys
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\cdrom.sys
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\System32\cisvc.exe
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\System32\dllhost.exe
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:02 2007 => ERROR!!! Invalid Entry C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe in SYSTEM\CurrentControlSet\Services\DefWatch...
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\disk.sys
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\System32\dmadmin.exe
Mon Jan 15 23:39:02 2007 => Scanning File C:\WINDOWS\system32\drivers\dmboot.sys
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\system32\drivers\dmio.sys
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\system32\drivers\dmload.sys
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\system32\drivers\DMusic.sys
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\Dot4.sys
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\dot4usb.sys
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\system32\drivers\drmkaud.sys
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\System32\Drivers\dtscsi.sys
Mon Jan 15 23:39:03 2007 => ERROR!!! ScanFile Fails...
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\system32\services.exe
Mon Jan 15 23:39:03 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\fdc.sys
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\flpydisk.sys
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\system32\drivers\fltmgr.sys
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ftdisk.sys
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\fxusbase.sys
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\gameenum.sys
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\msgpc.sys
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:04 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\hidusb.sys
Mon Jan 15 23:39:05 2007 => Scanning File C:\WINDOWS\system32\Drivers\HTTP.sys
Mon Jan 15 23:39:05 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:05 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\imapi.sys
Mon Jan 15 23:39:05 2007 => Scanning File C:\WINDOWS\System32\imapi.exe
Mon Jan 15 23:39:05 2007 => Scanning File C:\WINDOWS\system32\drivers\ip6fw.sys
Mon Jan 15 23:39:05 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
Mon Jan 15 23:39:05 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipinip.sys
Mon Jan 15 23:39:05 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipnat.sys
Mon Jan 15 23:39:05 2007 => Scanning File C:\PROGRA~1\iPod\bin\IPODSE~1.EXE
Mon Jan 15 23:39:05 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipsec.sys
Mon Jan 15 23:39:05 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\irenum.sys
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\isapnp.sys
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\kbdhid.sys
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\system32\drivers\kmixer.sys
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\System32\mnmsrvc.exe
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mouclass.sys
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mouhid.sys
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mrxdav.sys
Mon Jan 15 23:39:06 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
Mon Jan 15 23:39:07 2007 => Scanning File C:\WINDOWS\System32\msdtc.exe
Mon Jan 15 23:39:07 2007 => Scanning File C:\WINDOWS\System32\msiexec.exe
Mon Jan 15 23:39:07 2007 => Scanning File C:\WINDOWS\system32\drivers\MSKSSRV.sys
Mon Jan 15 23:39:07 2007 => Scanning File C:\WINDOWS\system32\drivers\MSPCLOCK.sys
Mon Jan 15 23:39:07 2007 => Scanning File C:\WINDOWS\system32\drivers\MSPQM.sys
Mon Jan 15 23:39:07 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mssmbios.sys
Mon Jan 15 23:39:07 2007 => Scanning File C:\WINDOWS\system32\drivers\msmpu401.sys
Mon Jan 15 23:39:07 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys
Mon Jan 15 23:39:07 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys
Mon Jan 15 23:39:08 2007 => ERROR!!! Invalid Entry \??\C:\PROGRA~1\SYMANT~1\SYMANT~1\NAVAP.sys in SYSTEM\CurrentControlSet\Services\NAVAP...
Mon Jan 15 23:39:08 2007 => ERROR!!! Invalid Entry \??\C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\NAVAPEL.SYS in SYSTEM\CurrentControlSet\Services\NAVAPEL...
Mon Jan 15 23:39:08 2007 => ERROR!!! Invalid Entry \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20051221.006\NAVENG.sys in SYSTEM\CurrentControlSet\Services\NAVENG...
Mon Jan 15 23:39:08 2007 => ERROR!!! Invalid Entry \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20051221.006\NAVEX15.sys in SYSTEM\CurrentControlSet\Services\NAVEX15...
Mon Jan 15 23:39:08 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ndistapi.sys
Mon Jan 15 23:39:08 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ndisuio.sys
Mon Jan 15 23:39:08 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ndiswan.sys
Mon Jan 15 23:39:08 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\netbios.sys
Mon Jan 15 23:39:08 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\netbt.sys
Mon Jan 15 23:39:08 2007 => Scanning File C:\WINDOWS\system32\netdde.exe
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\system32\netdde.exe
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\System32\lsass.exe
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:09 2007 => ERROR!!! Invalid Entry C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe in SYSTEM\CurrentControlSet\Services\Norton AntiVirus Server...
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\System32\lsass.exe
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\NtMtlFax.sys
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nv4.sys
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
Mon Jan 15 23:39:09 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\parport.sys
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\pci.sys
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\pciide.sys
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\services.exe
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\System32\lsass.exe
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\raspptp.sys
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\processr.sys
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\psched.sys
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ptilink.sys
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rasacd.sys
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\raspppoe.sys
Mon Jan 15 23:39:10 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\raspti.sys
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rdbss.sys
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rdpdr.sys
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\sessmgr.exe
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\RecAgent.sys
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\redbook.sys
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\Drivers\RootMdm.sys
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\System32\locator.exe
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\System32\rsvp.exe
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
Mon Jan 15 23:39:11 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\system32\drivers\scsiport.sys
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\secdrv.sys
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\serenum.sys
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\serial.sys
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\system32\drivers\sis7018.sys
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\sisagp.sys
Mon Jan 15 23:39:12 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\slntamr.sys
Mon Jan 15 23:39:13 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\Slnthal.sys
Mon Jan 15 23:39:13 2007 => Scanning File C:\WINDOWS\system32\slserv.exe
Mon Jan 15 23:39:13 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys
Mon Jan 15 23:39:13 2007 => Scanning File C:\WINDOWS\system32\drivers\splitter.sys
Mon Jan 15 23:39:13 2007 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Mon Jan 15 23:39:13 2007 => Scanning File C:\WINDOWS\system32\Drivers\sptd.sys
Mon Jan 15 23:39:13 2007 => ERROR!!! ScanFile Fails...
Mon Jan 15 23:39:13 2007 => Scanning File C:\WINDOWS\System32\DRIVERS\sr.sys
Mon Jan 15 23:39:13 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:13 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\srv.sys
Mon Jan 15 23:39:13 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:14 2007 => Scanning File C:\WINDOWS\system32\drivers\stac97na.sys
Mon Jan 15 23:39:14 2007 => Scanning File C:\WINDOWS\system32\drivers\stac97nh.sys
Mon Jan 15 23:39:14 2007 => Scanning File C:\PROGRA~1\ALCOHO~1\ALCOHO~1\StarWind\STARWI~2.EXE
Mon Jan 15 23:39:14 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:14 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\swenum.sys
Mon Jan 15 23:39:14 2007 => Scanning File C:\WINDOWS\system32\drivers\swmidi.sys
Mon Jan 15 23:39:14 2007 => Scanning File C:\WINDOWS\System32\dllhost.exe
Mon Jan 15 23:39:14 2007 => ERROR!!! Invalid Entry \??\C:\Program Files\Symantec\SYMEVENT.SYS in SYSTEM\CurrentControlSet\Services\SymEvent...
Mon Jan 15 23:39:14 2007 => Scanning File C:\WINDOWS\system32\drivers\sysaudio.sys
Mon Jan 15 23:39:14 2007 => Scanning File C:\WINDOWS\system32\smlogsvc.exe
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\tcpip.sys
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\termdd.sys
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\System32\tlntsvr.exe
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\TMCOMM.SYS
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\update.sys
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\System32\ups.exe
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbccgp.sys
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbhub.sys
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbohci.sys
Mon Jan 15 23:39:15 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\System32\Drivers\vaxscsi.sys
Mon Jan 15 23:39:16 2007 => ERROR!!! ScanFile Fails...
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\System32\drivers\vga.sys
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\System32\vssvc.exe
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\w800bus.sys
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\w800mdfl.sys
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\w800mdm.sys
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\w800mgmt.sys
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\wanarp.sys
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\system32\drivers\wdmaud.sys
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:16 2007 => ERROR!!! Invalid Entry "C:\WINDOWS\System32\winupdate.exe" -netsvcs in SYSTEM\CurrentControlSet\Services\Windows Update...
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:16 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:17 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:17 2007 => Scanning File C:\WINDOWS\System32\wbem\wmiapsrv.exe
Mon Jan 15 23:39:17 2007 => Scanning File C:\PROGRA~1\WINDOW~3\WMPNetwk.exe
Mon Jan 15 23:39:17 2007 => Scanning File C:\WINDOWS\System32\drivers\ws2ifsl.sys
Mon Jan 15 23:39:17 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:17 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:17 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\WudfPf.sys
Mon Jan 15 23:39:17 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\wudfrd.sys
Mon Jan 15 23:39:17 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Mon Jan 15 23:39:17 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:17 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Mon Jan 15 23:39:17 2007 => ***** Scanning System32 Folders *****
Mon Jan 15 23:39:17 2007 => Scanning C:\WINDOWS Directory
Mon Jan 15 23:39:18 2007 => Scanning Folder: C:\WINDOWS\*.*
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\0.log [**]
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\002402_.tmp
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\Adobe PSEle2 Lang Installer.log
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\Adobe PSEle2.log
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\avmenum32.log
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\avmw2k.log
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\AVM_cpdi.clr
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\Blauw 16.bmp
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\bootstat.dat
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\briKPN ADSl.doc
Mon Jan 15 23:39:18 2007 => Scanning File C:\WINDOWS\ChssBase.ini
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\CityEP.ini
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\CityEP.old
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\citynl.ini
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\citynl.old
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\Clean! presets.set
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\clock.avi
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\cmsetacl.log
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\COM+.log
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\comsetup.log
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\control.ini [**]
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\desktop.ini
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\DHCPUPG.LOG
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\Directx.log
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\DPINST.LOG
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\DtcInstall.log
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\DUMP55f0.tmp
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\explorer.exe
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\explorer.scf
Mon Jan 15 23:39:19 2007 => Scanning File C:\WINDOWS\FaxSetup.log
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\GEARInstall.log
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\ggids.ini
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\Groensteen.bmp
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\GXTranscoder v2 Uninstaller.exe
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\hh.exe
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\ICCCODES.DLL
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\iis6.log
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\imsins.BAK
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\imsins.log
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\INSTLOG.TXT
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\IsUn0413.exe
Mon Jan 15 23:39:20 2007 => Scanning File C:\WINDOWS\IsUninst.exe
Mon Jan 15 23:39:21 2007 => Scanning File C:\WINDOWS\KB823559.log
Mon Jan 15 23:39:21 2007 => Scanning File C:\WINDOWS\KB828741.log
Mon Jan 15 23:39:21 2007 => Scanning File C:\WINDOWS\KB834707-IE6-20040929.115007.log
Mon Jan 15 23:39:21 2007 => Scanning File C:\WINDOWS\KB835732.log
Mon Jan 15 23:39:21 2007 => Scanning File C:\WINDOWS\KB842773.log
Mon Jan 15 23:39:21 2007 => Scanning File C:\WINDOWS\KB873339.log
Mon Jan 15 23:39:21 2007 => Scanning File C:\WINDOWS\KB885835.log
Mon Jan 15 23:39:21 2007 => Scanning File C:\WINDOWS\KB885836.log
Mon Jan 15 23:39:22 2007 => Scanning File C:\WINDOWS\KB886185.log
Mon Jan 15 23:39:22 2007 => Scanning File C:\WINDOWS\KB887472.log
Mon Jan 15 23:39:22 2007 => Scanning File C:\WINDOWS\KB888302.log
Mon Jan 15 23:39:22 2007 => Scanning File C:\WINDOWS\KB890046.log
Mon Jan 15 23:39:22 2007 => Scanning File C:\WINDOWS\KB890859.log
Mon Jan 15 23:39:22 2007 => Scanning File C:\WINDOWS\KB891781.log
Mon Jan 15 23:39:22 2007 => Scanning File C:\WINDOWS\KB893756.log
Mon Jan 15 23:39:23 2007 => Scanning File C:\WINDOWS\KB893803v2.log
Mon Jan 15 23:39:23 2007 => Scanning File C:\WINDOWS\KB894391.log
Mon Jan 15 23:39:23 2007 => Scanning File C:\WINDOWS\KB896358.log
Mon Jan 15 23:39:23 2007 => Scanning File C:\WINDOWS\KB896423.log
Mon Jan 15 23:39:23 2007 => Scanning File C:\WINDOWS\KB896424.log
Mon Jan 15 23:39:23 2007 => Scanning File C:\WINDOWS\KB896428.log
Mon Jan 15 23:39:23 2007 => Scanning File C:\WINDOWS\KB898461.log
Mon Jan 15 23:39:23 2007 => Scanning File C:\WINDOWS\KB899587.log
Mon Jan 15 23:39:23 2007 => Scanning File C:\WINDOWS\KB899589.log
Mon Jan 15 23:39:24 2007 => Scanning File C:\WINDOWS\KB899591.log
Mon Jan 15 23:39:24 2007 => Scanning File C:\WINDOWS\KB900485.log
Mon Jan 15 23:39:24 2007 => Scanning File C:\WINDOWS\KB900725.log
Mon Jan 15 23:39:24 2007 => Scanning File C:\WINDOWS\KB901017.log
Mon Jan 15 23:39:24 2007 => Scanning File C:\WINDOWS\KB901190.log
Mon Jan 15 23:39:24 2007 => Scanning File C:\WINDOWS\KB901214.log
Mon Jan 15 23:39:24 2007 => Scanning File C:\WINDOWS\KB902400.log
Mon Jan 15 23:39:25 2007 => Scanning File C:\WINDOWS\KB904706.log
Mon Jan 15 23:39:25 2007 => Scanning File C:\WINDOWS\KB905414.log
Mon Jan 15 23:39:25 2007 => Scanning File C:\WINDOWS\KB905749.log
Mon Jan 15 23:39:25 2007 => Scanning File C:\WINDOWS\KB908519.log
Mon Jan 15 23:39:25 2007 => Scanning File C:\WINDOWS\KB908531.log
Mon Jan 15 23:39:25 2007 => Scanning File C:\WINDOWS\KB910437.log
Mon Jan 15 23:39:25 2007 => Scanning File C:\WINDOWS\KB911280.log
Mon Jan 15 23:39:25 2007 => Scanning File C:\WINDOWS\KB911562.log
Mon Jan 15 23:39:25 2007 => Scanning File C:\WINDOWS\KB911564.log
Mon Jan 15 23:39:26 2007 => Scanning File C:\WINDOWS\KB911567.log
Mon Jan 15 23:39:26 2007 => Scanning File C:\WINDOWS\KB911927.log
Mon Jan 15 23:39:26 2007 => Scanning File C:\WINDOWS\KB912919.log
Mon Jan 15 23:39:26 2007 => Scanning File C:\WINDOWS\KB913580.log
Mon Jan 15 23:39:26 2007 => Scanning File C:\WINDOWS\KB914388.log
Mon Jan 15 23:39:26 2007 => Scanning File C:\WINDOWS\KB914389.log
Mon Jan 15 23:39:26 2007 => Scanning File C:\WINDOWS\KB916595.log
Mon Jan 15 23:39:26 2007 => Scanning File C:\WINDOWS\KB917344.log
Mon Jan 15 23:39:27 2007 => Scanning File C:\WINDOWS\KB917422.log
Mon Jan 15 23:39:27 2007 => Scanning File C:\WINDOWS\KB917734.log
Mon Jan 15 23:39:27 2007 => Scanning File C:\WINDOWS\KB917953.log
Mon Jan 15 23:39:27 2007 => Scanning File C:\WINDOWS\KB918439.log
Mon Jan 15 23:39:27 2007 => Scanning File C:\WINDOWS\KB918899.log
Mon Jan 15 23:39:27 2007 => Scanning File C:\WINDOWS\KB919007.log
Mon Jan 15 23:39:27 2007 => Scanning File C:\WINDOWS\KB920213.log
Mon Jan 15 23:39:27 2007 => Scanning File C:\WINDOWS\KB920214.log
Mon Jan 15 23:39:27 2007 => Scanning File C:\WINDOWS\KB920670.log
Mon Jan 15 23:39:27 2007 => Scanning File C:\WINDOWS\KB920683.log
Mon Jan 15 23:39:28 2007 => Scanning File C:\WINDOWS\KB920685.log
Mon Jan 15 23:39:28 2007 => Scanning File C:\WINDOWS\KB920872.log
Mon Jan 15 23:39:28 2007 => Scanning File C:\WINDOWS\KB921398.log
Mon Jan 15 23:39:28 2007 => Scanning File C:\WINDOWS\KB921883.log
Mon Jan 15 23:39:28 2007 => Scanning File C:\WINDOWS\KB922582.log
Mon Jan 15 23:39:28 2007 => Scanning File C:\WINDOWS\KB922616.log
Mon Jan 15 23:39:28 2007 => Scanning File C:\WINDOWS\KB922760.log
Mon Jan 15 23:39:29 2007 => Scanning File C:\WINDOWS\KB922819.log
Mon Jan 15 23:39:29 2007 => Scanning File C:\WINDOWS\KB923191.log
Mon Jan 15 23:39:29 2007 => Scanning File C:\WINDOWS\KB923414.log
Mon Jan 15 23:39:29 2007 => Scanning File C:\WINDOWS\KB923694.log
Mon Jan 15 23:39:29 2007 => Scanning File C:\WINDOWS\KB923980.log
Mon Jan 15 23:39:29 2007 => Scanning File C:\WINDOWS\KB924191.log
Mon Jan 15 23:39:29 2007 => Scanning File C:\WINDOWS\KB924270.log
Mon Jan 15 23:39:29 2007 => Scanning File C:\WINDOWS\KB924496.log
Mon Jan 15 23:39:29 2007 => Scanning File C:\WINDOWS\KB925398.log
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\KB925454.log
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\KB925486.log
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\KB926239.log
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\KB926255.log
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\KB928388.log
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\KB929969.log
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\KCM2SP.DLL
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\KDSINPUT.DLL
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\KDSOUT.DLL
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\Kopje koffie.bmp
Mon Jan 15 23:39:30 2007 => Scanning File C:\WINDOWS\KPCP32.DLL
Mon Jan 15 23:39:31 2007 => Scanning File C:\WINDOWS\KPSYS32.DLL
Mon Jan 15 23:39:31 2007 => Scanning File C:\WINDOWS\lc.EXE
Mon Jan 15 23:39:31 2007 => Scanning File C:\WINDOWS\LUINSTALL.LOG
Mon Jan 15 23:39:31 2007 => Scanning File C:\WINDOWS\medctroc.Log
Mon Jan 15 23:39:31 2007 => Scanning File C:\WINDOWS\ModemLog_Sony Ericsson W800 USB WMC Data Modem.txt
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\mozver.dat
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\MSCompPackV1.log
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\msdfmap.ini
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\msgsocm.log
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\msmqinst.log
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\netfxocm.log
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\notepad.exe
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\nsreg.dat [**]
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\nsw.log
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\ntbtlog.txt
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\ntdtcsetup.log
Mon Jan 15 23:39:32 2007 => Scanning File C:\WINDOWS\ocgen.log
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\ocmsn.log
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\ODBC.INI
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\ODBCINST.INI
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\OEWABLog.txt
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\Patroon.bmp
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\pavsig.txt
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\PFPICK.DLL
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\POCE98.DLL
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\POCELANG.DLL
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\PowerReg.dat
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\Prairie.bmp
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\Q323255.log
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\Q329048.log
Mon Jan 15 23:39:33 2007 => Scanning File C:\WINDOWS\Q329115.log
Mon Jan 15 23:39:34 2007 => Scanning File C:\WINDOWS\Q329170.log
Mon Jan 15 23:39:34 2007 => Scanning File C:\WINDOWS\Q329390.log
Mon Jan 15 23:39:34 2007 => Scanning File C:\WINDOWS\Q329441.log
Mon Jan 15 23:39:34 2007 => Scanning File C:\WINDOWS\Q329834.log
Mon Jan 15 23:39:34 2007 => Scanning File C:\WINDOWS\Q810577.log
Mon Jan 15 23:39:34 2007 => Scanning File C:\WINDOWS\Q810833.log
Mon Jan 15 23:39:34 2007 => Scanning File C:\WINDOWS\Q811630.log
Mon Jan 15 23:39:34 2007 => Scanning File C:\WINDOWS\Q815021.log
Mon Jan 15 23:39:34 2007 => Scanning File C:\WINDOWS\Q817606.log
Mon Jan 15 23:39:34 2007 => Scanning File C:\WINDOWS\QTFont.for
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\QTFont.qfn
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\RA221.tmp [**]
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\regedit.exe
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\REGLOCS.OLD
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\regopt.log
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\Rhododendron.bmp
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\Rivier Sumida.bmp
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\Santa Fe Stucco.bmp
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\Scanner.ini
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\SchedLgU.Txt
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\scunin.dat
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\ScUnin.exe
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\ScUnin.pif
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\sessmgr.setup.log
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\SET3.tmp
Mon Jan 15 23:39:35 2007 => Scanning File C:\WINDOWS\SET7.tmp
Mon Jan 15 23:39:36 2007 => Scanning File C:\WINDOWS\Setup1.exe
Mon Jan 15 23:39:36 2007 => Scanning File C:\WINDOWS\setupact.log
Mon Jan 15 23:39:36 2007 => Scanning File C:\WINDOWS\setupapi.log
Mon Jan 15 23:39:36 2007 => Scanning File C:\WINDOWS\setupapi.log.0.old
Mon Jan 15 23:39:36 2007 => Scanning File C:\WINDOWS\setuperr.log [**]
Mon Jan 15 23:39:36 2007 => Scanning File C:\WINDOWS\setuplog.txt
Mon Jan 15 23:39:36 2007 => Scanning File C:\WINDOWS\SIMSYNTH.INI
Mon Jan 15 23:39:36 2007 => Scanning File C:\WINDOWS\SiSAudioRack.ini
Mon Jan 15 23:39:36 2007 => Scanning File C:\WINDOWS\slrundll.exe
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\SPROF32.DLL
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\spupdsvc.log
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\ST6UNST.EXE
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\Stekkie.bmp
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\Sti_Trace.log [**]
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\stunwdm.exe
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\svcpack.log
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\SYMEVENT.LOG
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\system.ini
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\tabletoc.log
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\TASKMAN.EXE
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\tsoc.log
Mon Jan 15 23:39:37 2007 => Scanning File C:\WINDOWS\twain.dll
Mon Jan 15 23:39:38 2007 => Scanning File C:\WINDOWS\TWAIN32.DLL
Mon Jan 15 23:39:38 2007 => Scanning File C:\WINDOWS\twain_32.dll
Mon Jan 15 23:39:38 2007 => Scanning File C:\WINDOWS\twunk_16.exe
Mon Jan 15 23:39:38 2007 => Scanning File C:\WINDOWS\twunk_32.exe
Mon Jan 15 23:39:38 2007 => Scanning File C:\WINDOWS\uneng.exe
Mon Jan 15 23:39:38 2007 => Scanning File C:\WINDOWS\unin0413.exe
Mon Jan 15 23:39:38 2007 => Scanning File C:\WINDOWS\uninst.exe
Mon Jan 15 23:39:38 2007 => Scanning File C:\WINDOWS\UninstallFirefox.exe
Mon Jan 15 23:39:38 2007 => Scanning File C:\WINDOWS\unvise32qt.exe
Mon Jan 15 23:39:38 2007 => Scanning File C:\WINDOWS\updspapi.log
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\vb.ini
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\vbaddin.ini
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\vmmreg32.dll
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\vpc32.INI [**]
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\War3Unin.dat
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\War3Unin.exe
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\War3Unin.pif
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\WgaNotify.log
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\wiadebug.log
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\wiaservc.log
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\win.ini
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\Windows Update.log
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\WindowsShell.Manifest
Mon Jan 15 23:39:39 2007 => Scanning File C:\WINDOWS\WindowsUpdate.log
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\winhelp.exe
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\winhlp32.exe
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\wininit.ini
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\winnt.bmp
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\winnt256.bmp
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\WINNT32.LOG
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\WMFDist11.log
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\wmp11.log
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\wmprfNLD.prx
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\wmsetup.log
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\wmsetup10.log
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\WMSysPr9.prx
Mon Jan 15 23:39:40 2007 => Scanning File C:\WINDOWS\WMSysPrx.prx
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\WORDPAD.INI
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\Wudf01000Inst.log
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\xpsp1hfm.log
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\Zapotec.bmp
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\Zeepbellen.bmp
Mon Jan 15 23:39:41 2007 => Scanning C:\WINDOWS\system32 Directory
Mon Jan 15 23:39:41 2007 => Scanning Folder: C:\WINDOWS\system32\*.*
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\system32\$winnt$.inf
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\system32\12520437.cpx
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\system32\12520850.cpx
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\system32\6to4svc.dll
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\system32\aaaamon.dll
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\system32\access.cpl
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\system32\acctres.dll
Mon Jan 15 23:39:41 2007 => Scanning File C:\WINDOWS\system32\accwiz.exe
Mon Jan 15 23:39:42 2007 => Scanning File C:\WINDOWS\system32\acelpdec.ax
Mon Jan 15 23:39:42 2007 => Scanning File C:\WINDOWS\system32\acledit.dll
Mon Jan 15 23:39:42 2007 => Scanning File C:\WINDOWS\system32\aclui.dll
Mon Jan 15 23:39:42 2007 => Scanning File C:\WINDOWS\system32\activeds.dll
Mon Jan 15 23:39:42 2007 => Scanning File C:\WINDOWS\system32\activeds.tlb
Mon Jan 15 23:39:42 2007 => Scanning File C:\WINDOWS\system32\actmovie.exe
Mon Jan 15 23:39:42 2007 => Scanning File C:\WINDOWS\system32\actskn43.ocx
Mon Jan 15 23:39:42 2007 => Scanning File C:\WINDOWS\system32\actxprxy.dll
Mon Jan 15 23:39:43 2007 => Scanning File C:\WINDOWS\system32\admparse.dll
Mon Jan 15 23:39:43 2007 => Scanning File C:\WINDOWS\system32\adptif.dll
Mon Jan 15 23:39:43 2007 => Scanning File C:\WINDOWS\system32\adsldp.dll
Mon Jan 15 23:39:43 2007 => Scanning File C:\WINDOWS\system32\adsldpc.dll
Mon Jan 15 23:39:43 2007 => Scanning File C:\WINDOWS\system32\adsmsext.dll
Mon Jan 15 23:39:43 2007 => Scanning File C:\WINDOWS\system32\adsnds.dll
Mon Jan 15 23:39:43 2007 => Scanning File C:\WINDOWS\system32\adsnt.dll
Mon Jan 15 23:39:43 2007 => Scanning File C:\WINDOWS\system32\adsnw.dll
Mon Jan 15 23:39:43 2007 => Scanning File C:\WINDOWS\system32\advapi32.dll
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\advpack.dll
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\ahui.exe
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\alg.exe
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\alrsvc.dll
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\amcompat.tlb
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\amstream.dll
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\ansi.sys
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\apcups.dll
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\append.exe
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\apphelp.dll
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\appmgmts.dll
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\appmgr.dll
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\appStartPar.dll
Mon Jan 15 23:39:44 2007 => Scanning File C:\WINDOWS\system32\appwiz.cpl
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\arp.exe
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\asctrls.ocx
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\asferror.dll
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\asfiles.txt [**]
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\asinst.cfg
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\asr_fmt.exe
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\asr_ldm.exe
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\asr_pfu.exe
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\asuninst.exe
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\asycfilt.dll
Mon Jan 15 23:39:45 2007 => Scanning File C:\WINDOWS\system32\at.exe
Mon Jan 15 23:39:46 2007 => Scanning File C:\WINDOWS\system32\ati2cqag.dll
Mon Jan 15 23:39:46 2007 => Scanning File C:\WINDOWS\system32\ati2dvaa.dll
Mon Jan 15 23:39:46 2007 => Scanning File C:\WINDOWS\system32\ati2dvag.dll
Mon Jan 15 23:39:46 2007 => Scanning File C:\WINDOWS\system32\ati3d1ag.dll
Mon Jan 15 23:39:46 2007 => Scanning File C:\WINDOWS\system32\ati3duag.dll
Mon Jan 15 23:39:46 2007 => Scanning File C:\WINDOWS\system32\ativdaxx.ax
Mon Jan 15 23:39:46 2007 => Scanning File C:\WINDOWS\system32\ativmvxx.ax
Mon Jan 15 23:39:46 2007 => Scanning File C:\WINDOWS\system32\ativtmxx.dll
Mon Jan 15 23:39:47 2007 => Scanning File C:\WINDOWS\system32\ativvaxx.dll
Mon Jan 15 23:39:47 2007 => Scanning File C:\WINDOWS\system32\atkctrs.dll
Mon Jan 15 23:39:47 2007 => Scanning File C:\WINDOWS\system32\atl.dll
Mon Jan 15 23:39:47 2007 => Scanning File C:\WINDOWS\system32\atmadm.exe
Mon Jan 15 23:39:47 2007 => Scanning File C:\WINDOWS\system32\atmfd.dll
Mon Jan 15 23:39:47 2007 => Scanning File C:\WINDOWS\system32\atmlib.dll
Mon Jan 15 23:39:47 2007 => Scanning File C:\WINDOWS\system32\atmpvcno.dll
Mon Jan 15 23:39:47 2007 => Scanning File C:\WINDOWS\system32\atrace.dll
Mon Jan 15 23:39:47 2007 => Scanning File C:\WINDOWS\system32\attrib.exe
Mon Jan 15 23:39:47 2007 => Scanning File C:\WINDOWS\system32\audiodev.dll
Mon Jan 15 23:39:48 2007 => Scanning File C:\WINDOWS\system32\audiosrv.dll
Mon Jan 15 23:39:48 2007 => Scanning File C:\WINDOWS\system32\auditusr.exe
Mon Jan 15 23:39:48 2007 => Scanning File C:\WINDOWS\system32\authz.dll
Mon Jan 15 23:39:48 2007 => Scanning File C:\WINDOWS\system32\autochk.exe
Mon Jan 15 23:39:48 2007 => Scanning File C:\WINDOWS\system32\autoconv.exe
Mon Jan 15 23:39:48 2007 => Scanning File C:\WINDOWS\system32\autodisc.dll
Mon Jan 15 23:39:48 2007 => Scanning File C:\WINDOWS\system32\autofmt.exe
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\autolfn.exe
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\avicap.dll
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\avicap32.dll
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\avifil32.dll
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\avifile.dll
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\avmadd32.dll
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\avmco32.dll
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\avmen32.dll
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\avmeter.dll
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\avsda.dll
Mon Jan 15 23:39:49 2007 => Scanning File C:\WINDOWS\system32\avtapi.dll
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\avwav.dll
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\basesrv.dll
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\batmeter.dll
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\batt.dll
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\bidispl.dll
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\bios1.rom
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\bios4.rom
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\bitsprx2.dll
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\bitsprx3.dll
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\blackbox.dll
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\blastcln.exe
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\bling.exe [**]
Mon Jan 15 23:39:50 2007 => Scanning File C:\WINDOWS\system32\bootcfg.exe
Mon Jan 15 23:39:51 2007 => Scanning File C:\WINDOWS\system32\bootok.exe
Mon Jan 15 23:39:51 2007 => Scanning File C:\WINDOWS\system32\bootvid.dll
Mon Jan 15 23:39:51 2007 => Scanning File C:\WINDOWS\system32\bootvrfy.exe
Mon Jan 15 23:39:51 2007 => Scanning File C:\WINDOWS\system32\bopomofo.uce
Mon Jan 15 23:39:51 2007 => Scanning File C:\WINDOWS\system32\browselc.dll
Mon Jan 15 23:39:51 2007 => Scanning File C:\WINDOWS\system32\browser.dll
Mon Jan 15 23:39:51 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Mon Jan 15 23:39:51 2007 => Scanning File C:\WINDOWS\system32\browsewm.dll
Mon Jan 15 23:39:51 2007 => Scanning File C:\WINDOWS\system32\bszip.dll
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\bthci.dll
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\bthprops.cpl
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\bthserv.dll
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\btpanui.dll
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\cabinet.dll
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\cabview.dll
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\cacls.exe
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\calc.exe
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\camocx.dll
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\capesnpn.dll
Mon Jan 15 23:39:52 2007 => Scanning File C:\WINDOWS\system32\capi2032.dll
Mon Jan 15 23:39:53 2007 => Scanning File C:\WINDOWS\system32\capicom.dll
Mon Jan 15 23:39:53 2007 => Scanning File C:\WINDOWS\system32\cards.dll
Mon Jan 15 23:39:53 2007 => Scanning File C:\WINDOWS\system32\catsrv.dll
Mon Jan 15 23:39:53 2007 => Scanning File C:\WINDOWS\system32\catsrvps.dll
Mon Jan 15 23:39:53 2007 => Scanning File C:\WINDOWS\system32\catsrvut.dll
Mon Jan 15 23:39:53 2007 => Scanning File C:\WINDOWS\system32\CBA.DLL
Mon Jan 15 23:39:53 2007 => Scanning File C:\WINDOWS\system32\ccfgnt.dll
Mon Jan 15 23:39:53 2007 => Scanning File C:\WINDOWS\system32\CDDBControl.dll
Mon Jan 15 23:39:54 2007 => Scanning File C:\WINDOWS\system32\CddbLangDE.dll
Mon Jan 15 23:39:54 2007 => Scanning File C:\WINDOWS\system32\CddbLangES.dll
Mon Jan 15 23:39:54 2007 => Scanning File C:\WINDOWS\system32\CddbLangFR.dll
Mon Jan 15 23:39:54 2007 => Scanning File C:\WINDOWS\system32\CddbLangIT.dll
Mon Jan 15 23:39:54 2007 => Scanning File C:\WINDOWS\system32\CddbLangJA.dll
Mon Jan 15 23:39:54 2007 => Scanning File C:\WINDOWS\system32\CddbLangKO.dll
Mon Jan 15 23:39:55 2007 => Scanning File C:\WINDOWS\system32\CddbLangNL.dll
Mon Jan 15 23:39:55 2007 => Scanning File C:\WINDOWS\system32\CddbLangPT_BR.dll
Mon Jan 15 23:39:55 2007 => Scanning File C:\WINDOWS\system32\CddbLangSV.dll
Mon Jan 15 23:39:55 2007 => Scanning File C:\WINDOWS\system32\CddbLangTH.dll
Mon Jan 15 23:39:55 2007 => Scanning File C:\WINDOWS\system32\CddbLangZH.dll
Mon Jan 15 23:39:55 2007 => Scanning File C:\WINDOWS\system32\CddbLangZT.dll
Mon Jan 15 23:39:55 2007 => Scanning File C:\WINDOWS\system32\CDDBUI.dll
Mon Jan 15 23:39:56 2007 => Scanning File C:\WINDOWS\system32\cdfview.dll
Mon Jan 15 23:39:56 2007 => Scanning File C:\WINDOWS\system32\cdm.dll
Mon Jan 15 23:39:56 2007 => Scanning File C:\WINDOWS\system32\cdmodem.dll
Mon Jan 15 23:39:56 2007 => Scanning File C:\WINDOWS\system32\cdosys.dll
Mon Jan 15 23:39:56 2007 => Scanning File C:\WINDOWS\system32\cdplayer.exe.manifest
Mon Jan 15 23:39:57 2007 => Scanning File C:\WINDOWS\system32\cdral.BAK
Mon Jan 15 23:39:57 2007 => Scanning File C:\WINDOWS\system32\cdral.dll
Mon Jan 15 23:39:57 2007 => Scanning File C:\WINDOWS\system32\cdrtc.dll
Mon Jan 15 23:39:57 2007 => Scanning File C:\WINDOWS\system32\certcli.dll
Mon Jan 15 23:39:57 2007 => Scanning File C:\WINDOWS\system32\certmgr.dll
Mon Jan 15 23:39:57 2007 => Scanning File C:\WINDOWS\system32\certmgr.msc
Mon Jan 15 23:39:57 2007 => Scanning File C:\WINDOWS\system32\cewmdm.dll
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\cfgbkend.dll
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\cfgmgr32.dll
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\chajei.ime
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\charmap.exe
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\chcp.com
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\chkdsk.exe
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\chkntfs.exe
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\ciadmin.dll
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\ciadv.msc
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\cic.dll
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\cidaemon.exe
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\CINTLGNT.IME
Mon Jan 15 23:39:58 2007 => Scanning File C:\WINDOWS\system32\ciodm.dll
Mon Jan 15 23:39:59 2007 => Scanning File C:\WINDOWS\system32\cipher.exe
Mon Jan 15 23:39:59 2007 => Scanning File C:\WINDOWS\system32\cisvc.exe
Mon Jan 15 23:39:59 2007 => Scanning File C:\WINDOWS\system32\ckcnv.exe
Mon Jan 15 23:39:59 2007 => Scanning File C:\WINDOWS\system32\clb.dll
Mon Jan 15 23:39:59 2007 => Scanning File C:\WINDOWS\system32\clbcatex.dll
Mon Jan 15 23:39:59 2007 => Scanning File C:\WINDOWS\system32\clbcatq.dll
Mon Jan 15 23:39:59 2007 => Scanning File C:\WINDOWS\system32\cleanmgr.exe
Mon Jan 15 23:39:59 2007 => Scanning File C:\WINDOWS\system32\cliconf.chm
Mon Jan 15 23:40:00 2007 => Scanning File C:\WINDOWS\system32\cliconfg.dll
Mon Jan 15 23:40:01 2007 => Scanning File C:\WINDOWS\system32\cliconfg.exe
Mon Jan 15 23:40:01 2007 => Scanning File C:\WINDOWS\system32\cliconfg.rll
Mon Jan 15 23:40:01 2007 => Scanning File C:\WINDOWS\system32\clipbrd.exe
Mon Jan 15 23:40:01 2007 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Mon Jan 15 23:40:01 2007 => Scanning File C:\WINDOWS\system32\clusapi.dll
Mon Jan 15 23:40:01 2007 => Scanning File C:\WINDOWS\system32\cmcfg32.dll
Mon Jan 15 23:40:01 2007 => Scanning File C:\WINDOWS\system32\cmd.com
Mon Jan 15 23:40:01 2007 => Scanning File C:\WINDOWS\system32\cmd.exe
Mon Jan 15 23:40:01 2007 => Scanning File C:\WINDOWS\system32\cmdial32.dll
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cmdl32.exe
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cmdlib.wsc
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cmmgr32.hlp
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cmmon32.exe
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cmos.ram
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cmpbk32.dll
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cmprops.dll
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cmsetacl.dll
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cmstp.exe
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cmutil.dll
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cnbjmon.dll
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cnetcfg.dll
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\cnvfat.dll
Mon Jan 15 23:40:02 2007 => Scanning File C:\WINDOWS\system32\colbact.dll
Mon Jan 15 23:40:03 2007 => Scanning File C:\WINDOWS\system32\comaddin.dll
Mon Jan 15 23:40:03 2007 => Scanning File C:\WINDOWS\system32\comcat.dll
Mon Jan 15 23:40:03 2007 => Scanning File C:\WINDOWS\system32\comctl32.dll
Mon Jan 15 23:40:03 2007 => Scanning File C:\WINDOWS\system32\comctl32.ocx
Mon Jan 15 23:40:03 2007 => Scanning File C:\WINDOWS\system32\comdlg32.dll
Mon Jan 15 23:40:03 2007 => Scanning File C:\WINDOWS\system32\comdlg32.oca
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\COMDLG32.OCX
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\comm.drv
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\command.com
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\commdlg.dll
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\comp.exe
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\compact.exe
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\compatui.dll
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\compmgmt.msc
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\compobj.dll
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\compstui.dll
Mon Jan 15 23:40:04 2007 => Scanning File C:\WINDOWS\system32\comrepl.dll
Mon Jan 15 23:40:05 2007 => Scanning File C:\WINDOWS\system32\comres.dll
Mon Jan 15 23:40:05 2007 => Scanning File C:\WINDOWS\system32\comsdupd.exe
Mon Jan 15 23:40:05 2007 => Scanning File C:\WINDOWS\system32\comsnap.dll
Mon Jan 15 23:40:05 2007 => Scanning File C:\WINDOWS\system32\comsvcs.dll
Mon Jan 15 23:40:05 2007 => Scanning File C:\WINDOWS\system32\comuid.dll
Mon Jan 15 23:40:05 2007 => Scanning File C:\WINDOWS\system32\CONFIG.NT
Mon Jan 15 23:40:05 2007 => Scanning File C:\WINDOWS\system32\CONFIG.TMP
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\confmsp.dll
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\conime.exe
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\console.dll
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\control.exe
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\convert.exe
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\corpol.dll
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\country.sys
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\Cpuinf32.dll
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\credui.dll
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\crtdll.dll
Mon Jan 15 23:40:06 2007 => Scanning File C:\WINDOWS\system32\crypt32.dll
Mon Jan 15 23:40:07 2007 => Scanning File C:\WINDOWS\system32\cryptdlg.dll
Mon Jan 15 23:40:07 2007 => Scanning File C:\WINDOWS\system32\cryptdll.dll
Mon Jan 15 23:40:07 2007 => Scanning File C:\WINDOWS\system32\cryptext.dll
Mon Jan 15 23:40:07 2007 => Scanning File C:\WINDOWS\system32\cryptnet.dll
Mon Jan 15 23:40:07 2007 => Scanning File C:\WINDOWS\system32\cryptsvc.dll
Mon Jan 15 23:40:07 2007 => Scanning File C:\WINDOWS\system32\cryptui.dll
Mon Jan 15 23:40:08 2007 => Scanning File C:\WINDOWS\system32\cscdll.dll
Mon Jan 15 23:40:08 2007 => Scanning File C:\WINDOWS\system32\cscript.exe
Mon Jan 15 23:40:08 2007 => Scanning File C:\WINDOWS\system32\cscui.dll
Mon Jan 15 23:40:08 2007 => Scanning File C:\WINDOWS\system32\csrsrv.dll
Mon Jan 15 23:40:08 2007 => Scanning File C:\WINDOWS\system32\csrss.exe
Mon Jan 15 23:40:08 2007 => Scanning File C:\WINDOWS\system32\csseqchk.dll
Mon Jan 15 23:40:08 2007 => Scanning File C:\WINDOWS\system32\ctfmon.exe
Mon Jan 15 23:40:08 2007 => Scanning File C:\WINDOWS\system32\ctl3d32.dll
Mon Jan 15 23:40:08 2007 => Scanning File C:\WINDOWS\system32\ctl3dv2.dll
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\ctype.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_037.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_10000.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_10006.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_10007.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_10010.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_10017.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_10029.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_10079.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_10081.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_10082.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_1026.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_1250.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_1251.nls
Mon Jan 15 23:40:09 2007 => Scanning File C:\WINDOWS\system32\c_1252.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_1253.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_1254.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_1255.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_1256.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_1257.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_1258.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_20127.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_20261.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_20866.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_20905.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_21866.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_28591.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_28592.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\c_28593.nls
Mon Jan 15 23:40:10 2007 => Scanning File C:\WINDOWS\system32\C_28594.NLS
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\C_28595.NLS
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\C_28597.NLS
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_28598.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_28599.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_28603.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_28605.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_437.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_500.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_737.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_775.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_850.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_852.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_855.nls
Mon Jan 15 23:40:11 2007 => Scanning File C:\WINDOWS\system32\c_857.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_860.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_861.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_863.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_865.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_866.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_869.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_874.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_875.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_932.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_936.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_949.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\c_950.nls
Mon Jan 15 23:40:12 2007 => Scanning File C:\WINDOWS\system32\d3d8.dll
Mon Jan 15 23:40:13 2007 => Scanning File C:\WINDOWS\system32\d3d8thk.dll
Mon Jan 15 23:40:13 2007 => Scanning File C:\WINDOWS\system32\d3d9.dll
Mon Jan 15 23:40:13 2007 => Scanning File C:\WINDOWS\system32\d3dim.dll
Mon Jan 15 23:40:13 2007 => Scanning File C:\WINDOWS\system32\d3dim700.dll
Mon Jan 15 23:40:13 2007 => Scanning File C:\WINDOWS\system32\d3dpmesh.dll
Mon Jan 15 23:40:13 2007 => Scanning File C:\WINDOWS\system32\d3dramp.dll
Mon Jan 15 23:40:13 2007 => Scanning File C:\WINDOWS\system32\d3drm.dll
Mon Jan 15 23:40:13 2007 => Scanning File C:\WINDOWS\system32\d3dxof.dll
Mon Jan 15 23:40:13 2007 => Scanning File C:\WINDOWS\system32\danim.dll
Mon Jan 15 23:40:14 2007 => Scanning File C:\WINDOWS\system32\daspi32u.dll
Mon Jan 15 23:40:14 2007 => Scanning File C:\WINDOWS\system32\dataclen.dll
Mon Jan 15 23:40:14 2007 => Scanning File C:\WINDOWS\system32\datime.dll
Mon Jan 15 23:40:14 2007 => Scanning File C:\WINDOWS\system32\davclnt.dll
Mon Jan 15 23:40:14 2007 => Scanning File C:\WINDOWS\system32\daxctle.ocx
Mon Jan 15 23:40:14 2007 => Scanning File C:\WINDOWS\system32\dayi.ime
Mon Jan 15 23:40:14 2007 => Scanning File C:\WINDOWS\system32\dbgeng.dll
Mon Jan 15 23:40:14 2007 => Scanning File C:\WINDOWS\system32\dbghelp.dll
Mon Jan 15 23:40:15 2007 => Scanning File C:\WINDOWS\system32\dbmsadsn.dll
Mon Jan 15 23:40:15 2007 => Scanning File C:\WINDOWS\system32\dbmsrpcn.dll
Mon Jan 15 23:40:15 2007 => Scanning File C:\WINDOWS\system32\dbmsvinn.dLL
Mon Jan 15 23:40:15 2007 => Scanning File C:\WINDOWS\system32\dbnetlib.dll
Mon Jan 15 23:40:15 2007 => Scanning File C:\WINDOWS\system32\dbnmpntw.dll
Mon Jan 15 23:40:15 2007 => Scanning File C:\WINDOWS\system32\dcache.bin
Mon Jan 15 23:40:15 2007 => Scanning File C:\WINDOWS\system32\dciman32.dll
Mon Jan 15 23:40:15 2007 => Scanning File C:\WINDOWS\system32\dcomcnfg.exe
Mon Jan 15 23:40:15 2007 => Scanning File C:\WINDOWS\system32\DDAO36.DLL
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\ddeml.dll
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\ddeshare.exe
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\ddraw.dll
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\ddrawex.dll
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\debug.exe
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\defrag.exe
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\desk.cpl
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\deskadp.dll
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\deskmon.dll
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\deskperf.dll
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\desktop.ini
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\devenum.dll
Mon Jan 15 23:40:16 2007 => Scanning File C:\WINDOWS\system32\devmgmt.msc
Mon Jan 15 23:40:17 2007 => Scanning File C:\WINDOWS\system32\devmgr.dll
Mon Jan 15 23:40:17 2007 => Scanning File C:\WINDOWS\system32\dfrg.msc
Mon Jan 15 23:40:17 2007 => Scanning File C:\WINDOWS\system32\dfrgfat.exe
Mon Jan 15 23:40:17 2007 => Scanning File C:\WINDOWS\system32\dfrgntfs.exe
Mon Jan 15 23:40:17 2007 => Scanning File C:\WINDOWS\system32\dfrgres.dll
Mon Jan 15 23:40:17 2007 => Scanning File C:\WINDOWS\system32\dfrgsnap.dll
Mon Jan 15 23:40:17 2007 => Scanning File C:\WINDOWS\system32\dfrgui.dll
Mon Jan 15 23:40:17 2007 => Scanning File C:\WINDOWS\system32\dfsshlex.dll
Mon Jan 15 23:40:17 2007 => Scanning File C:\WINDOWS\system32\dgnet.dll
Mon Jan 15 23:40:17 2007 => Scanning File C:\WINDOWS\system32\dgrpsetu.dll
Mon Jan 15 23:40:18 2007 => Scanning File C:\WINDOWS\system32\dgsetup.dll
Mon Jan 15 23:40:18 2007 => Scanning File C:\WINDOWS\system32\dhcpcsvc.dll
Mon Jan 15 23:40:18 2007 => Scanning File C:\WINDOWS\system32\dhcpmon.dll
Mon Jan 15 23:40:18 2007 => Scanning File C:\WINDOWS\system32\dhcpsapi.dll
Mon Jan 15 23:40:18 2007 => Scanning File C:\WINDOWS\system32\diactfrm.dll
Mon Jan 15 23:40:18 2007 => Scanning File C:\WINDOWS\system32\diantz.exe
Mon Jan 15 23:40:18 2007 => Scanning File C:\WINDOWS\system32\digest.dll
Mon Jan 15 23:40:18 2007 => Scanning File C:\WINDOWS\system32\dimap.dll
Mon Jan 15 23:40:18 2007 => Scanning File C:\WINDOWS\system32\dinput.dll
Mon Jan 15 23:40:19 2007 => Scanning File C:\WINDOWS\system32\dinput8.dll
Mon Jan 15 23:40:19 2007 => Scanning File C:\WINDOWS\system32\diskcomp.com
Mon Jan 15 23:40:19 2007 => Scanning File C:\WINDOWS\system32\diskcopy.com
Mon Jan 15 23:40:19 2007 => Scanning File C:\WINDOWS\system32\diskcopy.dll
Mon Jan 15 23:40:19 2007 => Scanning File C:\WINDOWS\system32\diskmgmt.msc
Mon Jan 15 23:40:19 2007 => Scanning File C:\WINDOWS\system32\diskpart.exe
Mon Jan 15 23:40:19 2007 => Scanning File C:\WINDOWS\system32\diskperf.exe
Mon Jan 15 23:40:19 2007 => Scanning File C:\WINDOWS\system32\dispex.dll
Mon Jan 15 23:40:19 2007 => Scanning File C:\WINDOWS\system32\divx.dll
Mon Jan 15 23:40:20 2007 => Scanning File C:\WINDOWS\system32\divxdec.ax
Mon Jan 15 23:40:20 2007 => Scanning File C:\WINDOWS\system32\DivXMedia.ax
Mon Jan 15 23:40:21 2007 => Scanning File C:\WINDOWS\system32\DivXsm.exe
Mon Jan 15 23:40:21 2007 => Scanning File C:\WINDOWS\system32\divxsm.tlb
Mon Jan 15 23:40:21 2007 => Scanning File C:\WINDOWS\system32\divx_xx07.dll
Mon Jan 15 23:40:21 2007 => Scanning File C:\WINDOWS\system32\divx_xx0c.dll
Mon Jan 15 23:40:21 2007 => Scanning File C:\WINDOWS\system32\divx_xx11.dll
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dllhost.exe
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dllhst3g.exe
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmadmin.exe
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmband.dll
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmcompos.dll
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmconfig.dll
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmdlgs.dll
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmdskmgr.dll
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmdskres.dll
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmime.dll
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmintf.dll
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmloader.dll
Mon Jan 15 23:40:22 2007 => Scanning File C:\WINDOWS\system32\dmocx.dll
Mon Jan 15 23:40:23 2007 => Scanning File C:\WINDOWS\system32\dmremote.exe
Mon Jan 15 23:40:23 2007 => Scanning File C:\WINDOWS\system32\dmscript.dll
Mon Jan 15 23:40:23 2007 => Scanning File C:\WINDOWS\system32\dmserver.dll
Mon Jan 15 23:40:23 2007 => Scanning File C:\WINDOWS\system32\dmstyle.dll
Mon Jan 15 23:40:23 2007 => Scanning File C:\WINDOWS\system32\dmsynth.dll
Mon Jan 15 23:40:23 2007 => Scanning File C:\WINDOWS\system32\dmusic.dll
Mon Jan 15 23:40:23 2007 => Scanning File C:\WINDOWS\system32\dmutil.dll
Mon Jan 15 23:40:23 2007 => Scanning File C:\WINDOWS\system32\dmview.ocx
Mon Jan 15 23:40:23 2007 => Scanning File C:\WINDOWS\system32\dnsapi.dll
Mon Jan 15 23:40:23 2007 => Scanning File C:\WINDOWS\system32\dnsrslvr.dll
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\docprop.dll
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\docprop2.dll
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\doskey.exe
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\dosx.exe
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\dpcdll.dll
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\dpl100.dll
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\dplay.dll
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\dplaysvr.exe
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\dplayx.dll
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\dpmodemx.dll
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\dpnaddr.dll
Mon Jan 15 23:40:24 2007 => Scanning File C:\WINDOWS\system32\dpnet.dll
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpnhpast.dll
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpnhupnp.dll
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpnlobby.dll
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpnmodem.dll
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpnsvr.exe
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpnwsock.dll
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpserial.dll
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpu10.dll
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpu11.dll
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpuGUI10.dll
Mon Jan 15 23:40:25 2007 => Scanning File C:\WINDOWS\system32\dpuGUI11.dll
Mon Jan 15 23:40:26 2007 => Scanning File C:\WINDOWS\system32\dpus11.dll
Mon Jan 15 23:40:26 2007 => Scanning File C:\WINDOWS\system32\dpv11.dll
Mon Jan 15 23:40:26 2007 => Scanning File C:\WINDOWS\system32\dpvacm.dll
Mon Jan 15 23:40:26 2007 => Scanning File C:\WINDOWS\system32\dpvoice.dll
Mon Jan 15 23:40:26 2007 => Scanning File C:\WINDOWS\system32\dpvsetup.exe
Mon Jan 15 23:40:26 2007 => Scanning File C:\WINDOWS\system32\dpvvox.dll
Mon Jan 15 23:40:26 2007 => Scanning File C:\WINDOWS\system32\dpwsock.dll
Mon Jan 15 23:40:26 2007 => Scanning File C:\WINDOWS\system32\dpwsockx.dll
Mon Jan 15 23:40:27 2007 => Scanning File C:\WINDOWS\system32\driverquery.exe
Mon Jan 15 23:40:27 2007 => Scanning File C:\WINDOWS\system32\drmclien.dll
Mon Jan 15 23:40:27 2007 => Scanning File C:\WINDOWS\system32\drmstor.dll
Mon Jan 15 23:40:27 2007 => Scanning File C:\WINDOWS\system32\drmupgds.exe
Mon Jan 15 23:40:27 2007 => Scanning File C:\WINDOWS\system32\drmv2clt.dll
Mon Jan 15 23:40:27 2007 => Scanning File C:\WINDOWS\system32\drprov.dll
Mon Jan 15 23:40:27 2007 => Scanning File C:\WINDOWS\system32\drwatson.exe
Mon Jan 15 23:40:27 2007 => Scanning File C:\WINDOWS\system32\drwtsn32.exe
Mon Jan 15 23:40:27 2007 => Scanning File C:\WINDOWS\system32\ds16gt.dLL
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\ds32gt.dll
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dsauth.dll
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dsdmo.dll
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dsdmoprp.dll
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dsetup.dll
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dskquota.dll
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dskquoui.dll
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dsm_de.qm
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dsm_fr.qm
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dsm_ja.qm
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dsound.dll
Mon Jan 15 23:40:28 2007 => Scanning File C:\WINDOWS\system32\dsound.vxd
Mon Jan 15 23:40:29 2007 => Scanning File C:\WINDOWS\system32\dsound3d.dll
Mon Jan 15 23:40:29 2007 => Scanning File C:\WINDOWS\system32\dsprop.dll
Mon Jan 15 23:40:29 2007 => Scanning File C:\WINDOWS\system32\dsprpres.dll
Mon Jan 15 23:40:29 2007 => Scanning File C:\WINDOWS\system32\dsquery.dll
Mon Jan 15 23:40:29 2007 => Scanning File C:\WINDOWS\system32\dssec.dat
Mon Jan 15 23:40:29 2007 => Scanning File C:\WINDOWS\system32\dssec.dll
Mon Jan 15 23:40:29 2007 => Scanning File C:\WINDOWS\system32\dssenh.dll
Mon Jan 15 23:40:29 2007 => Scanning File C:\WINDOWS\system32\dsuiext.dll
Mon Jan 15 23:40:29 2007 => Scanning File C:\WINDOWS\system32\dswave.dll
Mon Jan 15 23:40:29 2007 => Scanning File C:\WINDOWS\system32\dtu100.dll
Mon Jan 15 23:40:30 2007 => Scanning File C:\WINDOWS\system32\dumprep.exe
Mon Jan 15 23:40:30 2007 => Scanning File C:\WINDOWS\system32\duser.dll
Mon Jan 15 23:40:30 2007 => Scanning File C:\WINDOWS\system32\dvdplay.exe
Mon Jan 15 23:40:30 2007 => Scanning File C:\WINDOWS\system32\dvdupgrd.exe
Mon Jan 15 23:40:30 2007 => Scanning File C:\WINDOWS\system32\dveldr.exe-up.txt
Mon Jan 15 23:40:30 2007 => Scanning File C:\WINDOWS\system32\dwwin.exe
Mon Jan 15 23:40:30 2007 => Scanning File C:\WINDOWS\system32\dx7vb.dll
Mon Jan 15 23:40:30 2007 => Scanning File C:\WINDOWS\system32\dx8vb.dll
Mon Jan 15 23:40:31 2007 => Scanning File C:\WINDOWS\system32\dxdiag.exe
Mon Jan 15 23:40:31 2007 => Scanning File C:\WINDOWS\system32\dxdiagn.dll
Mon Jan 15 23:40:32 2007 => Scanning File C:\WINDOWS\system32\dxmasf.dll
Mon Jan 15 23:40:32 2007 => Scanning File C:\WINDOWS\system32\dxtmsft.dll
Mon Jan 15 23:40:32 2007 => Scanning File C:\WINDOWS\system32\dxtrans.dll
Mon Jan 15 23:40:32 2007 => Scanning File C:\WINDOWS\system32\edit.com
Mon Jan 15 23:40:32 2007 => Scanning File C:\WINDOWS\system32\edit.hlp
Mon Jan 15 23:40:32 2007 => Scanning File C:\WINDOWS\system32\edlin.exe
Mon Jan 15 23:40:32 2007 => Scanning File C:\WINDOWS\system32\efsadu.dll
Mon Jan 15 23:40:33 2007 => Scanning File C:\WINDOWS\system32\ega.cpi
Mon Jan 15 23:40:33 2007 => Scanning File C:\WINDOWS\system32\els.dll
Mon Jan 15 23:40:33 2007 => Scanning File C:\WINDOWS\system32\emptyregdb.dat
Mon Jan 15 23:40:33 2007 => Scanning File C:\WINDOWS\system32\encapi.dll
Mon Jan 15 23:40:33 2007 => Scanning File C:\WINDOWS\system32\encdec.dll
Mon Jan 15 23:40:33 2007 => Scanning File C:\WINDOWS\system32\EqnClass.Dll
Mon Jan 15 23:40:33 2007 => Scanning File C:\WINDOWS\system32\ersvc.dll
Mon Jan 15 23:40:33 2007 => Scanning File C:\WINDOWS\system32\es.dll
Mon Jan 15 23:40:33 2007 => Scanning File C:\WINDOWS\system32\esent.dll
Mon Jan 15 23:40:33 2007 => Scanning File C:\WINDOWS\system32\esent97.dll
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\esentprf.dll
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\esentprf.hxx
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\esentprf.ini
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\esentutl.exe
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\eudcedit.exe
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\eula.txt
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\eventcls.dll
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\eventcreate.exe
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\eventlog.dll
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\eventquery.vbs
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\eventtriggers.exe
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\eventvwr.exe
Mon Jan 15 23:40:34 2007 => Scanning File C:\WINDOWS\system32\eventvwr.msc
Mon Jan 15 23:40:35 2007 => Scanning File C:\WINDOWS\system32\exe2bin.exe
Mon Jan 15 23:40:35 2007 => Scanning File C:\WINDOWS\system32\expand.exe
Mon Jan 15 23:40:35 2007 => Scanning File C:\WINDOWS\system32\expsrv.dll
Mon Jan 15 23:40:35 2007 => Scanning File C:\WINDOWS\system32\EXSEC32.DLL
Mon Jan 15 23:40:35 2007 => Scanning File C:\WINDOWS\system32\extmgr.dll
Mon Jan 15 23:40:35 2007 => Scanning File C:\WINDOWS\system32\extrac32.exe
Mon Jan 15 23:40:35 2007 => Scanning File C:\WINDOWS\system32\exts.dll
Mon Jan 15 23:40:35 2007 => Scanning File C:\WINDOWS\system32\fastopen.exe
Mon Jan 15 23:40:35 2007 => Scanning File C:\WINDOWS\system32\faultrep.dll
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\faxpatch.exe
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\fc.exe
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\fde.dll
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\fdeploy.dll
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\feclient.dll
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\filemgmt.dll
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\find.exe
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\findstr.exe
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\finger.exe
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\firewall.cpl
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\fixmapi.exe
Mon Jan 15 23:40:36 2007 => Scanning File C:\WINDOWS\system32\fldrclnr.dll
Mon Jan 15 23:40:37 2007 => Scanning File C:\WINDOWS\system32\fltlib.dll
Mon Jan 15 23:40:37 2007 => Scanning File C:\WINDOWS\system32\fltmc.exe
Mon Jan 15 23:40:37 2007 => Scanning File C:\WINDOWS\system32\FM20.DLL
Mon Jan 15 23:40:37 2007 => Scanning File C:\WINDOWS\system32\FM20NLD.DLL
Mon Jan 15 23:40:37 2007 => Scanning File C:\WINDOWS\system32\fmifs.dll
Mon Jan 15 23:40:37 2007 => Scanning File C:\WINDOWS\system32\FNTCACHE.DAT
Mon Jan 15 23:40:37 2007 => Scanning File C:\WINDOWS\system32\fontext.dll
Mon Jan 15 23:40:38 2007 => Scanning File C:\WINDOWS\system32\fontsub.dll
Mon Jan 15 23:40:38 2007 => Scanning File C:\WINDOWS\system32\fontview.exe
Mon Jan 15 23:40:38 2007 => Scanning File C:\WINDOWS\system32\forcedos.exe
Mon Jan 15 23:40:38 2007 => Scanning File C:\WINDOWS\system32\format.com
Mon Jan 15 23:40:38 2007 => Scanning File C:\WINDOWS\system32\framebuf.dll
Mon Jan 15 23:40:38 2007 => Scanning File C:\WINDOWS\system32\freecell.exe
Mon Jan 15 23:40:38 2007 => Scanning File C:\WINDOWS\system32\fsmgmt.msc
Mon Jan 15 23:40:38 2007 => Scanning File C:\WINDOWS\system32\fsquirt.exe
Mon Jan 15 23:40:38 2007 => Scanning File C:\WINDOWS\system32\fsusd.dll
Mon Jan 15 23:40:38 2007 => Scanning File C:\WINDOWS\system32\fsutil.exe
Mon Jan 15 23:40:39 2007 => Scanning File C:\WINDOWS\system32\ftp.exe
Mon Jan 15 23:40:39 2007 => Scanning File C:\WINDOWS\system32\ftsrch.dll
Mon Jan 15 23:40:39 2007 => Scanning File C:\WINDOWS\system32\FVC.DLL
Mon Jan 15 23:40:39 2007 => Scanning File C:\WINDOWS\system32\fwcfg.dll
Mon Jan 15 23:40:39 2007 => Scanning File C:\WINDOWS\system32\fxusbase.sys
Mon Jan 15 23:40:39 2007 => Scanning File C:\WINDOWS\system32\g711codc.ax
Mon Jan 15 23:40:39 2007 => Scanning File C:\WINDOWS\system32\gb2312.uce
Mon Jan 15 23:40:39 2007 => Scanning File C:\WINDOWS\system32\gcdef.dll
Mon Jan 15 23:40:39 2007 => Scanning File C:\WINDOWS\system32\gdi.exe
Mon Jan 15 23:40:39 2007 => Scanning File C:\WINDOWS\system32\gdi32.dll
Mon Jan 15 23:40:40 2007 => Scanning File C:\WINDOWS\system32\GEARAspi.dll
Mon Jan 15 23:40:40 2007 => Scanning File C:\WINDOWS\system32\GENEUSB.SYS
Mon Jan 15 23:40:40 2007 => Scanning File C:\WINDOWS\system32\geo.nls
Mon Jan 15 23:40:40 2007 => Scanning File C:\WINDOWS\system32\getmac.exe
Mon Jan 15 23:40:40 2007 => Scanning File C:\WINDOWS\system32\getuname.dll
Mon Jan 15 23:40:40 2007 => Scanning File C:\WINDOWS\system32\Gksui16.exe
Mon Jan 15 23:40:41 2007 => Scanning File C:\WINDOWS\system32\glmf32.dll
Mon Jan 15 23:40:41 2007 => Scanning File C:\WINDOWS\system32\glu32.dll
Mon Jan 15 23:40:41 2007 => Scanning File C:\WINDOWS\system32\gpedit.dll
Mon Jan 15 23:40:41 2007 => Scanning File C:\WINDOWS\system32\gpedit.msc
Mon Jan 15 23:40:41 2007 => Scanning File C:\WINDOWS\system32\gpkcsp.dll
Mon Jan 15 23:40:41 2007 => Scanning File C:\WINDOWS\system32\gpkrsrc.dll
Mon Jan 15 23:40:41 2007 => Scanning File C:\WINDOWS\system32\gpresult.exe
Mon Jan 15 23:40:41 2007 => Scanning File C:\WINDOWS\system32\gptext.dll
Mon Jan 15 23:40:41 2007 => Scanning File C:\WINDOWS\system32\gpupdate.exe
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\graftabl.com
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\graphics.com
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\graphics.pro
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\grpconv.exe
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\h323.tsp
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\h323log.txt [**]
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\h323msp.dll
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\HAL.DLL
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\hccoin.dll
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\hdwwiz.cpl
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\help.exe
Mon Jan 15 23:40:42 2007 => Scanning File C:\WINDOWS\system32\Help.ico
Mon Jan 15 23:40:43 2007 => Scanning File C:\WINDOWS\system32\hh.exe
Mon Jan 15 23:40:43 2007 => Scanning File C:\WINDOWS\system32\hhctrl.ocx
Mon Jan 15 23:40:43 2007 => Scanning File C:\WINDOWS\system32\hhsetup.dll
Mon Jan 15 23:40:43 2007 => Scanning File C:\WINDOWS\system32\hid.dll
Mon Jan 15 23:40:43 2007 => Scanning File C:\WINDOWS\system32\hidphone.tsp
Mon Jan 15 23:40:43 2007 => Scanning File C:\WINDOWS\system32\hidserv.dll
Mon Jan 15 23:40:43 2007 => Scanning File C:\WINDOWS\system32\himem.sys
Mon Jan 15 23:40:43 2007 => Scanning File C:\WINDOWS\system32\hlink.dll
Mon Jan 15 23:40:43 2007 => Scanning File C:\WINDOWS\system32\hnetcfg.dll
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\hnetmon.dll
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\hnetwiz.dll
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\homepage.inf
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\hostname.exe
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\hotplug.dll
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\hpo5300a.aio
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\hpo5400a.aio
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\hpo5500a.aio
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\hpojwia.dll
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\hsfcisp2.dll
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\hticons.dll
Mon Jan 15 23:40:44 2007 => Scanning File C:\WINDOWS\system32\html.iec
Mon Jan 15 23:40:45 2007 => Scanning File C:\WINDOWS\system32\httpapi.dll
Mon Jan 15 23:40:45 2007 => Scanning File C:\WINDOWS\system32\htui.dll
Mon Jan 15 23:40:45 2007 => Scanning File C:\WINDOWS\system32\hypertrm.dll
Mon Jan 15 23:40:45 2007 => Scanning File C:\WINDOWS\system32\I2err32.dll
Mon Jan 15 23:40:45 2007 => Scanning File C:\WINDOWS\system32\iac25_32.ax
Mon Jan 15 23:40:45 2007 => Scanning File C:\WINDOWS\system32\iasacct.dll
Mon Jan 15 23:40:45 2007 => Scanning File C:\WINDOWS\system32\iasads.dll
Mon Jan 15 23:40:45 2007 => Scanning File C:\WINDOWS\system32\iashlpr.dll
Mon Jan 15 23:40:45 2007 => Scanning File C:\WINDOWS\system32\iasnap.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\iaspolcy.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\iasrad.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\iasrecst.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\iassam.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\iassdo.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\iassvcs.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\icaapi.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\iccvid.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\icfgnt5.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\icm32.dll
Mon Jan 15 23:40:46 2007 => Scanning File C:\WINDOWS\system32\icmp.dll
Mon Jan 15 23:40:47 2007 => Scanning File C:\WINDOWS\system32\icmui.dll
Mon Jan 15 23:40:47 2007 => Scanning File C:\WINDOWS\system32\icwdial.dll
Mon Jan 15 23:40:47 2007 => Scanning File C:\WINDOWS\system32\icwphbk.dll
Mon Jan 15 23:40:47 2007 => Scanning File C:\WINDOWS\system32\ideograf.uce
Mon Jan 15 23:40:47 2007 => Scanning File C:\WINDOWS\system32\idq.dll
Mon Jan 15 23:40:47 2007 => Scanning File C:\WINDOWS\system32\ie4uinit.exe
Mon Jan 15 23:40:47 2007 => Scanning File C:\WINDOWS\system32\ieakeng.dll
Mon Jan 15 23:40:47 2007 => Scanning File C:\WINDOWS\system32\ieaksie.dll
Mon Jan 15 23:40:47 2007 => Scanning File C:\WINDOWS\system32\ieakui.dll
Mon Jan 15 23:40:48 2007 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Mon Jan 15 23:40:48 2007 => Scanning File C:\WINDOWS\system32\ieencode.dll
Mon Jan 15 23:40:48 2007 => Scanning File C:\WINDOWS\system32\iepeers.dll
Mon Jan 15 23:40:48 2007 => Scanning File C:\WINDOWS\system32\iernonce.dll
Mon Jan 15 23:40:48 2007 => Scanning File C:\WINDOWS\system32\iesetup.dll
Mon Jan 15 23:40:48 2007 => Scanning File C:\WINDOWS\system32\ieuinit.inf
Mon Jan 15 23:40:48 2007 => Scanning File C:\WINDOWS\system32\iexpress.exe
Mon Jan 15 23:40:48 2007 => Scanning File C:\WINDOWS\system32\ifmon.dll
Mon Jan 15 23:40:48 2007 => Scanning File C:\WINDOWS\system32\ifsutil.dll
Mon Jan 15 23:40:48 2007 => Scanning File C:\WINDOWS\system32\igmpagnt.dll
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\iissuba.dll
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\ils.dll
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\imaadp32.acm
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\imagehlp.dll
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\imapi.exe
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\imekr61.ime
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\imeshare.dll
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\imgutil.dll
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\imjp81.ime
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\imjp81k.dll
Mon Jan 15 23:40:49 2007 => Scanning File C:\WINDOWS\system32\imm32.dll
Mon Jan 15 23:40:50 2007 => Scanning File C:\WINDOWS\system32\Indeo4.qtx
Mon Jan 15 23:40:50 2007 => Scanning File C:\WINDOWS\system32\inetcfg.dll
Mon Jan 15 23:40:50 2007 => Scanning File C:\WINDOWS\system32\inetcomm.dll
Mon Jan 15 23:40:50 2007 => Scanning File C:\WINDOWS\system32\inetcpl.cpl
Mon Jan 15 23:40:50 2007 => Scanning File C:\WINDOWS\system32\inetcplc.dll
Mon Jan 15 23:40:51 2007 => Scanning File C:\WINDOWS\system32\inetmib1.dll
Mon Jan 15 23:40:51 2007 => Scanning File C:\WINDOWS\system32\inetpp.dll
Mon Jan 15 23:40:51 2007 => Scanning File C:\WINDOWS\system32\inetppui.dll
Mon Jan 15 23:40:51 2007 => Scanning File C:\WINDOWS\system32\inetres.dll
Mon Jan 15 23:40:51 2007 => Scanning File C:\WINDOWS\system32\infosoft.dll
Mon Jan 15 23:40:51 2007 => Scanning File C:\WINDOWS\system32\initpki.dll
Mon Jan 15 23:40:51 2007 => Scanning File C:\WINDOWS\system32\input.dll
Mon Jan 15 23:40:51 2007 => Scanning File C:\WINDOWS\system32\inseng.dll
Mon Jan 15 23:40:51 2007 => Scanning File C:\WINDOWS\system32\instcat.sql
Mon Jan 15 23:40:52 2007 => Scanning File C:\WINDOWS\system32\intl.cpl
Mon Jan 15 23:40:52 2007 => Scanning File C:\WINDOWS\system32\iologmsg.dll
Mon Jan 15 23:40:52 2007 => Scanning File C:\WINDOWS\system32\IO_PORT.DLL
Mon Jan 15 23:40:52 2007 => Scanning File C:\WINDOWS\system32\ipconf.tsp
Mon Jan 15 23:40:52 2007 => Scanning File C:\WINDOWS\system32\ipconfig.exe
Mon Jan 15 23:40:52 2007 => Scanning File C:\WINDOWS\system32\iphlpapi.dll
Mon Jan 15 23:40:52 2007 => Scanning File C:\WINDOWS\system32\ipmontr.dll
Mon Jan 15 23:40:52 2007 => Scanning File C:\WINDOWS\system32\ipnathlp.dll
Mon Jan 15 23:40:52 2007 => Scanning File C:\WINDOWS\system32\ippromon.dll
Mon Jan 15 23:40:53 2007 => Scanning File C:\WINDOWS\system32\iprop.dll
Mon Jan 15 23:40:53 2007 => Scanning File C:\WINDOWS\system32\iprtprio.dll
Mon Jan 15 23:40:53 2007 => Scanning File C:\WINDOWS\system32\iprtrmgr.dll
Mon Jan 15 23:40:53 2007 => Scanning File C:\WINDOWS\system32\ipsec6.exe
Mon Jan 15 23:40:53 2007 => Scanning File C:\WINDOWS\system32\ipsecsnp.dll
Mon Jan 15 23:40:53 2007 => Scanning File C:\WINDOWS\system32\ipsecsvc.dll
Mon Jan 15 23:40:53 2007 => Scanning File C:\WINDOWS\system32\ipsmsnap.dll
Mon Jan 15 23:40:53 2007 => Scanning File C:\WINDOWS\system32\ipv6.exe
Mon Jan 15 23:40:53 2007 => Scanning File C:\WINDOWS\system32\ipv6mon.dll
Mon Jan 15 23:40:53 2007 => Scanning File C:\WINDOWS\system32\ipxmontr.dll
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ipxpromn.dll
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ipxrip.dll
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ipxroute.exe
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ipxrtmgr.dll
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ipxsap.dll
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ipxwan.dll
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ir32_32.dll
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ir41_32.ax
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ir41_qc.dll
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ir41_qcx.dll
Mon Jan 15 23:40:54 2007 => Scanning File C:\WINDOWS\system32\ir50_32.dll
Mon Jan 15 23:40:55 2007 => Scanning File C:\WINDOWS\system32\ir50_qc.dll
Mon Jan 15 23:40:55 2007 => Scanning File C:\WINDOWS\system32\ir50_qcx.dll
Mon Jan 15 23:40:55 2007 => Scanning File C:\WINDOWS\system32\irclass.dll
Mon Jan 15 23:40:55 2007 => Scanning File C:\WINDOWS\system32\irprops.cpl
Mon Jan 15 23:40:55 2007 => Scanning File C:\WINDOWS\system32\isign32.dll
Mon Jan 15 23:40:55 2007 => Scanning File C:\WINDOWS\system32\isrdbg32.dll
Mon Jan 15 23:40:55 2007 => Scanning File C:\WINDOWS\system32\itircl.dll
Mon Jan 15 23:40:55 2007 => Scanning File C:\WINDOWS\system32\itss.dll
Mon Jan 15 23:40:55 2007 => Scanning File C:\WINDOWS\system32\iuengine.dll
Mon Jan 15 23:40:56 2007 => Scanning File C:\WINDOWS\system32\ivfsrc.ax
Mon Jan 15 23:40:56 2007 => Scanning File C:\WINDOWS\system32\ixsso.dll
Mon Jan 15 23:40:56 2007 => Scanning File C:\WINDOWS\system32\iyuv_32.dll
Mon Jan 15 23:40:56 2007 => Scanning File C:\WINDOWS\system32\java.exe
Mon Jan 15 23:40:56 2007 => Scanning File C:\WINDOWS\system32\javaw.exe
Mon Jan 15 23:40:56 2007 => Scanning File C:\WINDOWS\system32\javaws.exe
Mon Jan 15 23:40:56 2007 => Scanning File C:\WINDOWS\system32\jet500.dll
Mon Jan 15 23:40:56 2007 => Scanning File C:\WINDOWS\system32\jgaw400.dll
Mon Jan 15 23:40:56 2007 => Scanning File C:\WINDOWS\system32\jgdw400.dll
Mon Jan 15 23:40:56 2007 => Scanning File C:\WINDOWS\system32\jgmd400.dll
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\jgpl400.dll
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\jgsd400.dll
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\jgsh400.dll
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\jobexec.dll
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\joy.cpl
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\jpicpl32.cpl
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\jscript.dll
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\jsnl.dll
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\jsproxy.dll
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\jupdate-1.5.0_03-b07.log
Mon Jan 15 23:40:57 2007 => Scanning File C:\WINDOWS\system32\jupdate-1.5.0_09-b03.log
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\Kanalen bekijken.scf
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kanji_1.uce
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kanji_2.uce
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kb16.com
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\KBDAL.DLL
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdaze.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdazel.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdbe.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdbene.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdblr.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdbr.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdbu.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdca.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdcan.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdcr.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdcz.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdcz1.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdcz2.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdda.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbddv.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdes.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdest.dll
Mon Jan 15 23:40:58 2007 => Scanning File C:\WINDOWS\system32\kbdfc.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdfi.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdfi1.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdfo.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdfr.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdgae.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdgkl.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdgr.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdgr1.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdhe.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdhe220.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdhe319.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdhela2.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdhela3.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdhept.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdhu.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdhu1.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdic.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdinbe1.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdinben.dll
Mon Jan 15 23:40:59 2007 => Scanning File C:\WINDOWS\system32\kbdinmal.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdir.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdit.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdit142.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdkaz.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdkyr.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdla.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdlt.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdlt1.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdlv.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdlv1.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdmac.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdmaori.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdmlt47.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdmlt48.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdmon.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdne.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdnec.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdno.dll
Mon Jan 15 23:41:00 2007 => Scanning File C:\WINDOWS\system32\kbdno1.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdpl.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdpl1.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdpo.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdro.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdru.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdru1.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdsf.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdsg.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdsl.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdsl1.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdsmsfi.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdsmsno.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdsp.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdsw.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdtat.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdtuf.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdtuq.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbduk.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdukx.dll
Mon Jan 15 23:41:01 2007 => Scanning File C:\WINDOWS\system32\kbdur.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kbdus.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kbdusl.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kbdusr.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kbdusx.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kbduzb.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kbdycc.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kbdycl.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kd1394.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kdcom.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kerberos.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\kernel32.dll
Mon Jan 15 23:41:02 2007 => Scanning File C:\WINDOWS\system32\key01.sys
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\keyboard.drv
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\keyboard.sys
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\keymgr.dll
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\kmddsp.tsp
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\korean.uce
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\krnl386.exe
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\ksproxy.ax
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\ksuser.dll
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\l3codeca.acm
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\l3codecp.acm
Mon Jan 15 23:41:03 2007 => Scanning File C:\WINDOWS\system32\l3codecx.acm
Mon Jan 15 23:41:04 2007 => Scanning File C:\WINDOWS\system32\l3codecx.ax
Mon Jan 15 23:41:04 2007 => Scanning File C:\WINDOWS\system32\label.exe
Mon Jan 15 23:41:04 2007 => Scanning File C:\WINDOWS\system32\lameACM.acm
Mon Jan 15 23:41:04 2007 => Scanning File C:\WINDOWS\system32\lame_acm.xml
Mon Jan 15 23:41:04 2007 => Scanning File C:\WINDOWS\system32\lame_enc.dll
Mon Jan 15 23:41:04 2007 => Scanning File C:\WINDOWS\system32\langwrbk.dll
Mon Jan 15 23:41:04 2007 => Scanning File C:\WINDOWS\system32\lanman.drv
Mon Jan 15 23:41:04 2007 => Scanning File C:\WINDOWS\system32\LAPRXY.dll
Mon Jan 15 23:41:05 2007 => Scanning File C:\WINDOWS\system32\LegitCheckControl.DLL
Mon Jan 15 23:41:05 2007 => Scanning File C:\WINDOWS\system32\libdivx.dll
Mon Jan 15 23:41:05 2007 => Scanning File C:\WINDOWS\system32\licdll.dll
Mon Jan 15 23:41:05 2007 => Scanning File C:\WINDOWS\system32\licmgr10.dll
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\licwmi.dll
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\lights.exe
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\linkinfo.dll
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\lmhsvc.dll
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\lmrt.dll
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\lnkstub.exe
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\loadfix.com
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\loadperf.dll
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\locale.nls
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\localsec.dll
Mon Jan 15 23:41:06 2007 => Scanning File C:\WINDOWS\system32\localspl.dll
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\localui.dll
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\locator.exe
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\lodctr.exe
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\logagent.exe
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\loghours.dll
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\login.cmd
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\logman.exe
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\logoff.exe
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\logon.scr
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\logonui.exe
Mon Jan 15 23:41:07 2007 => Scanning File C:\WINDOWS\system32\logonui.exe.manifest
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\lpk.dll
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\lpq.exe
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\lpr.exe
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\lprhelp.dll
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\lprmonui.dll
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\lsasrv.dll
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\lusrmgr.msc
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\lz32.dll
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\lzexpand.dll
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\l_except.nls
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\l_intl.nls
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\magnify.exe
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\mag_hook.dll
Mon Jan 15 23:41:08 2007 => Scanning File C:\WINDOWS\system32\main.cpl
Mon Jan 15 23:41:09 2007 => Scanning File C:\WINDOWS\system32\makecab.exe
Mon Jan 15 23:41:09 2007 => Scanning File C:\WINDOWS\system32\MAPI.DLL
Mon Jan 15 23:41:09 2007 => Scanning File C:\WINDOWS\system32\mapi32.dll
Mon Jan 15 23:41:09 2007 => Scanning File C:\WINDOWS\system32\MAPISRVR.EXE
Mon Jan 15 23:41:09 2007 => Scanning File C:\WINDOWS\system32\MAPISTUB.DLL
Mon Jan 15 23:41:09 2007 => Scanning File C:\WINDOWS\system32\mcastmib.dll
Mon Jan 15 23:41:09 2007 => Scanning File C:\WINDOWS\system32\mcd32.dll
Mon Jan 15 23:41:09 2007 => Scanning File C:\WINDOWS\system32\mcdsrv32.dll
Mon Jan 15 23:41:09 2007 => Scanning File C:\WINDOWS\system32\mchgrcoi.dll
Mon Jan 15 23:41:09 2007 => Scanning File C:\WINDOWS\system32\mciavi.drv
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mciavi32.dll
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mcicda.dll
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mciole16.dll
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mciole32.dll
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mciqtz32.dll
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mciseq.dll
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mciseq.drv
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mciwave.dll
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mciwave.drv
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mdhcp.dll
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mdminst.dll
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\mdmxsdk.dll
Mon Jan 15 23:41:10 2007 => Scanning File C:\WINDOWS\system32\MDT2FW95.DLL
Mon Jan 15 23:41:11 2007 => Scanning File C:\WINDOWS\system32\mdwmdmsp.dll
Mon Jan 15 23:41:11 2007 => Scanning File C:\WINDOWS\system32\mem.exe
Mon Jan 15 23:41:11 2007 => Scanning File C:\WINDOWS\system32\mf3216.dll
Mon Jan 15 23:41:11 2007 => Scanning File C:\WINDOWS\system32\mfc40.dll
Mon Jan 15 23:41:11 2007 => Scanning File C:\WINDOWS\system32\mfc40loc.dll
Mon Jan 15 23:41:11 2007 => Scanning File C:\WINDOWS\system32\mfc40u.dll
Mon Jan 15 23:41:11 2007 => Scanning File C:\WINDOWS\system32\mfc42.dll
Mon Jan 15 23:41:11 2007 => Scanning File C:\WINDOWS\system32\mfc42.dll.tmp
Mon Jan 15 23:41:12 2007 => Scanning File C:\WINDOWS\system32\mfc42loc.dll
Mon Jan 15 23:41:12 2007 => Scanning File C:\WINDOWS\system32\MFC42NLD.DLL
Mon Jan 15 23:41:12 2007 => Scanning File C:\WINDOWS\system32\mfc42u.dll
Mon Jan 15 23:41:12 2007 => Scanning File C:\WINDOWS\system32\mfcsubs.dll
Mon Jan 15 23:41:12 2007 => Scanning File C:\WINDOWS\system32\MFPLAT.dll
Mon Jan 15 23:41:12 2007 => Scanning File C:\WINDOWS\system32\mgmtapi.dll
Mon Jan 15 23:41:12 2007 => Scanning File C:\WINDOWS\system32\mib.bin
Mon Jan 15 23:41:12 2007 => Scanning File C:\WINDOWS\system32\midimap.dll
Mon Jan 15 23:41:12 2007 => Scanning File C:\WINDOWS\system32\miglibnt.dll
Mon Jan 15 23:41:13 2007 => Scanning File C:\WINDOWS\system32\migpwd.exe
Mon Jan 15 23:41:13 2007 => Scanning File C:\WINDOWS\system32\mimefilt.dll
Mon Jan 15 23:41:13 2007 => Scanning File C:\WINDOWS\system32\mindex.dll
Mon Jan 15 23:41:13 2007 => Scanning File C:\WINDOWS\system32\miniime.tpl
Mon Jan 15 23:41:13 2007 => Scanning File C:\WINDOWS\system32\mlang.dat
Mon Jan 15 23:41:13 2007 => Scanning File C:\WINDOWS\system32\mlang.dll
Mon Jan 15 23:41:13 2007 => Scanning File C:\WINDOWS\system32\mll_hp.dll
Mon Jan 15 23:41:14 2007 => Scanning File C:\WINDOWS\system32\mll_mtf.dll
Mon Jan 15 23:41:14 2007 => Scanning File C:\WINDOWS\system32\mll_qic.dll
Mon Jan 15 23:41:14 2007 => Scanning File C:\WINDOWS\system32\mmc.exe
Mon Jan 15 23:41:14 2007 => Scanning File C:\WINDOWS\system32\mmcbase.dll
Mon Jan 15 23:41:14 2007 => Scanning File C:\WINDOWS\system32\mmcndmgr.dll
Mon Jan 15 23:41:14 2007 => Scanning File C:\WINDOWS\system32\mmcshext.dll
Mon Jan 15 23:41:14 2007 => Scanning File C:\WINDOWS\system32\mmdriver.inf
Mon Jan 15 23:41:15 2007 => Scanning File C:\WINDOWS\system32\mmdrv.dll
Mon Jan 15 23:41:15 2007 => Scanning File C:\WINDOWS\system32\mmfutil.dll
Mon Jan 15 23:41:15 2007 => Scanning File C:\WINDOWS\system32\mmsys.cpl
Mon Jan 15 23:41:15 2007 => Scanning File C:\WINDOWS\system32\mmsystem.dll
Mon Jan 15 23:41:15 2007 => Scanning File C:\WINDOWS\system32\mmtask.tsk
Mon Jan 15 23:41:15 2007 => Scanning File C:\WINDOWS\system32\mmutilse.dll
Mon Jan 15 23:41:15 2007 => Scanning File C:\WINDOWS\system32\mnmdd.dll
Mon Jan 15 23:41:15 2007 => Scanning File C:\WINDOWS\system32\mnmsrvc.exe
Mon Jan 15 23:41:15 2007 => Scanning File C:\WINDOWS\system32\mobsync.dll
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\mobsync.exe
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\mode.com
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\ModemLog_ISDN - ISDN (X.75).txt
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\ModemLog_ISDN Analog Modem (V.32bis).txt
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\ModemLog_ISDN BTX.txt
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\ModemLog_ISDN Custom Config.txt
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\ModemLog_ISDN FAX (G3).txt
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\ModemLog_ISDN Internet (PPP over ISDN).txt
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\ModemLog_ISDN Mailbox (X.75).txt
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\ModemLog_ISDN RAS (PPP over ISDN).txt
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\ModemLog_ISDN SoftCompression X.75-V.42bis.txt
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\modemui.dll
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\modex.dll
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\more.com
Mon Jan 15 23:41:16 2007 => Scanning File C:\WINDOWS\system32\moricons.dll
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\mountvol.exe
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\mouse.drv
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\MP43DECD.dll
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\MP43DMOD.dll
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\MP4SDECD.dll
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\MP4SDMOD.dll
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\mpeg2data.ax
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\mpg2splt.ax
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\MPG4DECD.dll
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\MPG4DMOD.dll
Mon Jan 15 23:41:17 2007 => Scanning File C:\WINDOWS\system32\mpg4ds32.ax
Mon Jan 15 23:41:18 2007 => Scanning File C:\WINDOWS\system32\mplay32.exe
Mon Jan 15 23:41:18 2007 => Scanning File C:\WINDOWS\system32\mpnotify.exe
Mon Jan 15 23:41:18 2007 => Scanning File C:\WINDOWS\system32\mpr.dll
Mon Jan 15 23:41:18 2007 => Scanning File C:\WINDOWS\system32\mprapi.dll
Mon Jan 15 23:41:18 2007 => Scanning File C:\WINDOWS\system32\mprddm.dll
Mon Jan 15 23:41:18 2007 => Scanning File C:\WINDOWS\system32\mprdim.dll
Mon Jan 15 23:41:18 2007 => Scanning File C:\WINDOWS\system32\mprmsg.dll
Mon Jan 15 23:41:18 2007 => Scanning File C:\WINDOWS\system32\mprui.dll
Mon Jan 15 23:41:18 2007 => Scanning File C:\WINDOWS\system32\mqad.dll
Mon Jan 15 23:41:18 2007 => Scanning File C:\WINDOWS\system32\mqbkup.exe
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqcertui.dll
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqdscli.dll
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqgentr.dll
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqise.dll
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqlogmgr.dll
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqoa.dll
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqoa.tlb
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqoa10.tlb
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqoa20.tlb
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqperf.dll
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqperf.ini
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqprfsym.h
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqqm.dll
Mon Jan 15 23:41:19 2007 => Scanning File C:\WINDOWS\system32\mqrt.dll
Mon Jan 15 23:41:20 2007 => Scanning File C:\WINDOWS\system32\mqrtdep.dll
Mon Jan 15 23:41:20 2007 => Scanning File C:\WINDOWS\system32\mqsec.dll
Mon Jan 15 23:41:20 2007 => Scanning File C:\WINDOWS\system32\mqsnap.dll
Mon Jan 15 23:41:20 2007 => Scanning File C:\WINDOWS\system32\mqsvc.exe
Mon Jan 15 23:41:20 2007 => Scanning File C:\WINDOWS\system32\mqtgsvc.exe
Mon Jan 15 23:41:20 2007 => Scanning File C:\WINDOWS\system32\mqtrig.dll
Mon Jan 15 23:41:20 2007 => Scanning File C:\WINDOWS\system32\mqupgrd.dll
Mon Jan 15 23:41:20 2007 => Scanning File C:\WINDOWS\system32\mqutil.dll
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\mrinfo.exe
Mon Jan 15 23:41:21 2007 => *** File C:\WINDOWS\system32\MRT.exe having Size Restriction ***
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\MRT.exe [**]
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\msaatext.dll
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\msacm.dll
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\msacm32.dll
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\msacm32.drv
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\msadds32.ax
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\msadodc.ocx
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\msadp32.acm
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\msafd.dll
Mon Jan 15 23:41:21 2007 => Scanning File C:\WINDOWS\system32\msapsspc.dll
Mon Jan 15 23:41:22 2007 => Scanning File C:\WINDOWS\system32\msasn1.dll
Mon Jan 15 23:41:22 2007 => Scanning File C:\WINDOWS\system32\msaud32.acm
Mon Jan 15 23:41:22 2007 => Scanning File C:\WINDOWS\system32\msaudite.dll
Mon Jan 15 23:41:22 2007 => Scanning File C:\WINDOWS\system32\mscat32.dll
Mon Jan 15 23:41:22 2007 => Scanning File C:\WINDOWS\system32\mscdexnt.exe
Mon Jan 15 23:41:22 2007 => Scanning File C:\WINDOWS\system32\mscms.dll
Mon Jan 15 23:41:22 2007 => Scanning File C:\WINDOWS\system32\mscomctl.ocx
Mon Jan 15 23:41:22 2007 => Scanning File C:\WINDOWS\system32\msconf.dll
Mon Jan 15 23:41:22 2007 => Scanning File C:\WINDOWS\system32\mscoree.dll
Mon Jan 15 23:41:23 2007 => Scanning File C:\WINDOWS\system32\mscorier.dll
Mon Jan 15 23:41:23 2007 => Scanning File C:\WINDOWS\system32\mscories.dll
Mon Jan 15 23:41:23 2007 => Scanning File C:\WINDOWS\system32\mscpx32r.dll
Mon Jan 15 23:41:23 2007 => Scanning File C:\WINDOWS\system32\mscpxl32.dll
Mon Jan 15 23:41:23 2007 => Scanning File C:\WINDOWS\system32\msctf.dll
Mon Jan 15 23:41:23 2007 => Scanning File C:\WINDOWS\system32\msctfime.ime
Mon Jan 15 23:41:23 2007 => Scanning File C:\WINDOWS\system32\msctfp.dll
Mon Jan 15 23:41:23 2007 => Scanning File C:\WINDOWS\system32\msdadiag.dll
Mon Jan 15 23:41:23 2007 => Scanning File C:\WINDOWS\system32\msdart.dll
Mon Jan 15 23:41:23 2007 => Scanning File C:\WINDOWS\system32\msdatgrd.ocx
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdatsrc.tlb
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdelta.dll
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdmo.dll
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdtc.exe
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdtclog.dll
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdtcprf.h
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdtcprf.ini
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdtcprx.dll
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdtctm.dll
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdtcuiu.dll
Mon Jan 15 23:41:24 2007 => Scanning File C:\WINDOWS\system32\msdxm.ocx
Mon Jan 15 23:41:25 2007 => Scanning File C:\WINDOWS\system32\msdxmlc.dll
Mon Jan 15 23:41:25 2007 => Scanning File C:\WINDOWS\system32\msencode.dll
Mon Jan 15 23:41:25 2007 => Scanning File C:\WINDOWS\system32\msexch40.dll
Mon Jan 15 23:41:25 2007 => Scanning File C:\WINDOWS\system32\msexcl40.dll
Mon Jan 15 23:41:25 2007 => Scanning File C:\WINDOWS\system32\msftedit.dll
Mon Jan 15 23:41:26 2007 => Scanning File C:\WINDOWS\system32\msg.exe
Mon Jan 15 23:41:26 2007 => Scanning File C:\WINDOWS\system32\msg711.acm
Mon Jan 15 23:41:26 2007 => Scanning File C:\WINDOWS\system32\msg723.acm
Mon Jan 15 23:41:26 2007 => Scanning File C:\WINDOWS\system32\msgina.dll
Mon Jan 15 23:41:26 2007 => Scanning File C:\WINDOWS\system32\msgsm32.acm
Mon Jan 15 23:41:26 2007 => Scanning File C:\WINDOWS\system32\msgsvc.dll
Mon Jan 15 23:41:26 2007 => Scanning File C:\WINDOWS\system32\Msgsys.dll
Mon Jan 15 23:41:26 2007 => Scanning File C:\WINDOWS\system32\msh261.drv
Mon Jan 15 23:41:26 2007 => Scanning File C:\WINDOWS\system32\msh263.drv
Mon Jan 15 23:41:27 2007 => Scanning File C:\WINDOWS\system32\mshearts.exe
Mon Jan 15 23:41:27 2007 => Scanning File C:\WINDOWS\system32\mshta.exe
Mon Jan 15 23:41:27 2007 => Scanning File C:\WINDOWS\system32\mshtml.dll
Mon Jan 15 23:41:27 2007 => Scanning File C:\WINDOWS\system32\mshtml.tlb
Mon Jan 15 23:41:27 2007 => Scanning File C:\WINDOWS\system32\mshtmled.dll
Mon Jan 15 23:41:27 2007 => Scanning File C:\WINDOWS\system32\mshtmler.dll
Mon Jan 15 23:41:27 2007 => Scanning File C:\WINDOWS\system32\msi.dll
Mon Jan 15 23:41:28 2007 => Scanning File C:\WINDOWS\system32\msi.dll.tmp
Mon Jan 15 23:41:30 2007 => Scanning File C:\WINDOWS\system32\msident.dll
Mon Jan 15 23:41:30 2007 => Scanning File C:\WINDOWS\system32\msidle.dll
Mon Jan 15 23:41:30 2007 => Scanning File C:\WINDOWS\system32\msidntld.dll
Mon Jan 15 23:41:30 2007 => Scanning File C:\WINDOWS\system32\msieftp.dll
Mon Jan 15 23:41:30 2007 => Scanning File C:\WINDOWS\system32\msiexec.exe
Mon Jan 15 23:41:30 2007 => Scanning File C:\WINDOWS\system32\msihnd.dll
Mon Jan 15 23:41:30 2007 => Scanning File C:\WINDOWS\system32\msimg32.dll
Mon Jan 15 23:41:30 2007 => Scanning File C:\WINDOWS\system32\MSIMRT.DLL
Mon Jan 15 23:41:30 2007 => Scanning File C:\WINDOWS\system32\MSIMRT16.DLL
Mon Jan 15 23:41:30 2007 => Scanning File C:\WINDOWS\system32\MSIMRT32.DLL
Mon Jan 15 23:41:31 2007 => Scanning File C:\WINDOWS\system32\msimsg.dll
Mon Jan 15 23:41:31 2007 => Scanning File C:\WINDOWS\system32\msimtf.dll
Mon Jan 15 23:41:31 2007 => Scanning File C:\WINDOWS\system32\MSIMUSIC.DLL
Mon Jan 15 23:41:31 2007 => Scanning File C:\WINDOWS\system32\MSINET.oca
Mon Jan 15 23:41:32 2007 => Scanning File C:\WINDOWS\system32\MSINET.OCX
Mon Jan 15 23:41:32 2007 => Scanning File C:\WINDOWS\system32\msisam11.dll
Mon Jan 15 23:41:32 2007 => Scanning File C:\WINDOWS\system32\msisip.dll
Mon Jan 15 23:41:32 2007 => Scanning File C:\WINDOWS\system32\msjet40.dll
Mon Jan 15 23:41:32 2007 => Scanning File C:\WINDOWS\system32\msjetoledb40.dll
Mon Jan 15 23:41:32 2007 => Scanning File C:\WINDOWS\system32\msjint40.dll
Mon Jan 15 23:41:32 2007 => Scanning File C:\WINDOWS\system32\msjter40.dll
Mon Jan 15 23:41:32 2007 => Scanning File C:\WINDOWS\system32\msjtes40.dll
Mon Jan 15 23:41:33 2007 => Scanning File C:\WINDOWS\system32\mslbui.dll
Mon Jan 15 23:41:33 2007 => Scanning File C:\WINDOWS\system32\MSLS2.DLL
Mon Jan 15 23:41:33 2007 => Scanning File C:\WINDOWS\system32\msls31.dll
Mon Jan 15 23:41:33 2007 => Scanning File C:\WINDOWS\system32\msltus40.dll
Mon Jan 15 23:41:33 2007 => Scanning File C:\WINDOWS\system32\msnetobj.dll
Mon Jan 15 23:41:33 2007 => Scanning File C:\WINDOWS\system32\msnsspc.dll
Mon Jan 15 23:41:33 2007 => Scanning File C:\WINDOWS\system32\msobjs.dll
Mon Jan 15 23:41:33 2007 => Scanning File C:\WINDOWS\system32\msoeacct.dll
Mon Jan 15 23:41:34 2007 => Scanning File C:\WINDOWS\system32\msoert2.dll
Mon Jan 15 23:41:34 2007 => Scanning File C:\WINDOWS\system32\msorc32r.dll
Mon Jan 15 23:41:34 2007 => Scanning File C:\WINDOWS\system32\msorcl32.dll
Mon Jan 15 23:41:34 2007 => Scanning File C:\WINDOWS\system32\mspaint.exe
Mon Jan 15 23:41:34 2007 => Scanning File C:\WINDOWS\system32\mspatcha.dll
Mon Jan 15 23:41:34 2007 => Scanning File C:\WINDOWS\system32\mspbde40.dll
Mon Jan 15 23:41:34 2007 => Scanning File C:\WINDOWS\system32\mspmsnsv.dll
Mon Jan 15 23:41:35 2007 => Scanning File C:\WINDOWS\system32\mspmsp.dll
Mon Jan 15 23:41:35 2007 => Scanning File C:\WINDOWS\system32\msports.dll
Mon Jan 15 23:41:35 2007 => Scanning File C:\WINDOWS\system32\msprivs.dll
Mon Jan 15 23:41:35 2007 => Scanning File C:\WINDOWS\system32\MSPRPNL.DLL
Mon Jan 15 23:41:35 2007 => Scanning File C:\WINDOWS\system32\msr2c.dll
Mon Jan 15 23:41:35 2007 => Scanning File C:\WINDOWS\system32\msr2cenu.dll
Mon Jan 15 23:41:35 2007 => Scanning File C:\WINDOWS\system32\msratelc.dll
Mon Jan 15 23:41:35 2007 => Scanning File C:\WINDOWS\system32\msrating.dll
Mon Jan 15 23:41:35 2007 => Scanning File C:\WINDOWS\system32\msrclr40.dll
Mon Jan 15 23:41:36 2007 => Scanning File C:\WINDOWS\system32\msrd2x40.dll
Mon Jan 15 23:41:36 2007 => Scanning File C:\WINDOWS\system32\msrd3x40.dll
Mon Jan 15 23:41:36 2007 => Scanning File C:\WINDOWS\system32\MSRDO20.DLL
Mon Jan 15 23:41:36 2007 => Scanning File C:\WINDOWS\system32\msrecr40.dll
Mon Jan 15 23:41:36 2007 => Scanning File C:\WINDOWS\system32\msrepl40.dll
Mon Jan 15 23:41:36 2007 => Scanning File C:\WINDOWS\system32\msrle32.dll
Mon Jan 15 23:41:36 2007 => Scanning File C:\WINDOWS\system32\MSRTEDIT.DLL
Mon Jan 15 23:41:36 2007 => Scanning File C:\WINDOWS\system32\mssap.dll
Mon Jan 15 23:41:36 2007 => Scanning File C:\WINDOWS\system32\msscds32.ax
Mon Jan 15 23:41:37 2007 => Scanning File C:\WINDOWS\system32\msscp.dll
Mon Jan 15 23:41:37 2007 => Scanning File C:\WINDOWS\system32\msscript.ocx
Mon Jan 15 23:41:37 2007 => Scanning File C:\WINDOWS\system32\mssign32.dll
Mon Jan 15 23:41:37 2007 => Scanning File C:\WINDOWS\system32\mssip32.dll
Mon Jan 15 23:41:37 2007 => Scanning File C:\WINDOWS\system32\msstdfmt.dll
Mon Jan 15 23:41:37 2007 => Scanning File C:\WINDOWS\system32\MSSTKPRP.DLL
Mon Jan 15 23:41:37 2007 => Scanning File C:\WINDOWS\system32\msswch.dll
Mon Jan 15 23:41:37 2007 => Scanning File C:\WINDOWS\system32\msswchx.exe
Mon Jan 15 23:41:37 2007 => Scanning File C:\WINDOWS\system32\mstask.dll
Mon Jan 15 23:41:37 2007 => Scanning File C:\WINDOWS\system32\mstext40.dll
Mon Jan 15 23:41:38 2007 => Scanning File C:\WINDOWS\system32\mstime.dll
Mon Jan 15 23:41:38 2007 => Scanning File C:\WINDOWS\system32\mstinit.exe
Mon Jan 15 23:41:38 2007 => Scanning File C:\WINDOWS\system32\mstlsapi.dll
Mon Jan 15 23:41:38 2007 => Scanning File C:\WINDOWS\system32\mstsc.exe
Mon Jan 15 23:41:38 2007 => Scanning File C:\WINDOWS\system32\mstscax.dll
Mon Jan 15 23:41:38 2007 => Scanning File C:\WINDOWS\system32\msuni11.dll
Mon Jan 15 23:41:38 2007 => Scanning File C:\WINDOWS\system32\msutb.dll
Mon Jan 15 23:41:39 2007 => Scanning File C:\WINDOWS\system32\msv1_0.dll
Mon Jan 15 23:41:39 2007 => Scanning File C:\WINDOWS\system32\msvbvm50.dll
Mon Jan 15 23:41:39 2007 => Scanning File C:\WINDOWS\system32\msvbvm60.dll
Mon Jan 15 23:41:39 2007 => Scanning File C:\WINDOWS\system32\msvcirt.dll
Mon Jan 15 23:41:39 2007 => Scanning File C:\WINDOWS\system32\msvcp50.dll
Mon Jan 15 23:41:40 2007 => Scanning File C:\WINDOWS\system32\msvcp60.dll
Mon Jan 15 23:41:40 2007 => Scanning File C:\WINDOWS\system32\msvcr71.dll
Mon Jan 15 23:41:40 2007 => Scanning File C:\WINDOWS\system32\msvcrt.dll
Mon Jan 15 23:41:40 2007 => Scanning File C:\WINDOWS\system32\msvcrt20.dll
Mon Jan 15 23:41:40 2007 => Scanning File C:\WINDOWS\system32\msvcrt40.dll
Mon Jan 15 23:41:41 2007 => Scanning File C:\WINDOWS\system32\msvfw32.dll
Mon Jan 15 23:41:41 2007 => Scanning File C:\WINDOWS\system32\msvidc32.dll
Mon Jan 15 23:41:41 2007 => Scanning File C:\WINDOWS\system32\msvidctl.dll
Mon Jan 15 23:41:41 2007 => Scanning File C:\WINDOWS\system32\msvideo.dll
Mon Jan 15 23:41:41 2007 => Scanning File C:\WINDOWS\system32\msw3prt.dll
Mon Jan 15 23:41:41 2007 => Scanning File C:\WINDOWS\system32\mswdat10.dll
Mon Jan 15 23:41:41 2007 => Scanning File C:\WINDOWS\system32\mswebdvd.dll
Mon Jan 15 23:41:42 2007 => Scanning File C:\WINDOWS\system32\mswmdm.dll
Mon Jan 15 23:41:42 2007 => Scanning File C:\WINDOWS\system32\mswsock.dll
Mon Jan 15 23:41:42 2007 => Scanning File C:\WINDOWS\system32\mswstr10.dll
Mon Jan 15 23:41:42 2007 => Scanning File C:\WINDOWS\system32\msxbde40.dll
Mon Jan 15 23:41:42 2007 => Scanning File C:\WINDOWS\system32\msxml.dll
Mon Jan 15 23:41:42 2007 => Scanning File C:\WINDOWS\system32\msxml2.dll
Mon Jan 15 23:41:42 2007 => Scanning File C:\WINDOWS\system32\msxml2r.dll
Mon Jan 15 23:41:43 2007 => Scanning File C:\WINDOWS\system32\msxml3.dll
Mon Jan 15 23:41:43 2007 => Scanning File C:\WINDOWS\system32\msxml3.dll.tmp
Mon Jan 15 23:41:43 2007 => Scanning File C:\WINDOWS\system32\msxml3a.dll
Mon Jan 15 23:41:43 2007 => Scanning File C:\WINDOWS\system32\msxml3r.dll
Mon Jan 15 23:41:43 2007 => Scanning File C:\WINDOWS\system32\msxml4.dll
Mon Jan 15 23:41:43 2007 => Scanning File C:\WINDOWS\system32\msxml4r.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\msxmlr.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\msyuv.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\mtxclu.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\mtxdm.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\mtxex.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\mtxlegih.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\mtxoci.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\mtxparhd.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\mucltui.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\muweb.dll
Mon Jan 15 23:41:44 2007 => Scanning File C:\WINDOWS\system32\mycomput.dll
Mon Jan 15 23:41:45 2007 => Scanning File C:\WINDOWS\system32\mydocs.dll
Mon Jan 15 23:41:45 2007 => Scanning File C:\WINDOWS\system32\narrator.exe
Mon Jan 15 23:41:45 2007 => Scanning File C:\WINDOWS\system32\narrhook.dll
Mon Jan 15 23:41:45 2007 => Scanning File C:\WINDOWS\system32\NavLogon.dll
Mon Jan 15 23:41:45 2007 => Scanning File C:\WINDOWS\system32\nbtstat.exe
Mon Jan 15 23:41:45 2007 => Scanning File C:\WINDOWS\system32\ncobjapi.dll
Mon Jan 15 23:41:45 2007 => Scanning File C:\WINDOWS\system32\ncpa.cpl
Mon Jan 15 23:41:45 2007 => Scanning File C:\WINDOWS\system32\ncpa.cpl.manifest
Mon Jan 15 23:41:45 2007 => Scanning File C:\WINDOWS\system32\ncxpnt.dll
Mon Jan 15 23:41:45 2007 => Scanning File C:\WINDOWS\system32\nddeapi.dll
Mon Jan 15 23:41:46 2007 => Scanning File C:\WINDOWS\system32\nddeapir.exe
Mon Jan 15 23:41:46 2007 => Scanning File C:\WINDOWS\system32\nddenb32.dll
Mon Jan 15 23:41:46 2007 => Scanning File C:\WINDOWS\system32\ndptsp.tsp
Mon Jan 15 23:41:46 2007 => Scanning File C:\WINDOWS\system32\net.exe
Mon Jan 15 23:41:46 2007 => Scanning File C:\WINDOWS\system32\net.hlp
Mon Jan 15 23:41:46 2007 => Scanning File C:\WINDOWS\system32\net1.exe
Mon Jan 15 23:41:46 2007 => Scanning File C:\WINDOWS\system32\netapi.dll
Mon Jan 15 23:41:46 2007 => Scanning File C:\WINDOWS\system32\netapi32.dll
Mon Jan 15 23:41:46 2007 => Scanning File C:\WINDOWS\system32\netcfgx.dll
Mon Jan 15 23:41:46 2007 => Scanning File C:\WINDOWS\system32\netdde.exe
Mon Jan 15 23:41:47 2007 => Scanning File C:\WINDOWS\system32\netevent.dll
Mon Jan 15 23:41:47 2007 => Scanning File C:\WINDOWS\system32\netfxperf.dll
Mon Jan 15 23:41:47 2007 => Scanning File C:\WINDOWS\system32\neth.dll
Mon Jan 15 23:41:47 2007 => Scanning File C:\WINDOWS\system32\netid.dll
Mon Jan 15 23:41:47 2007 => Scanning File C:\WINDOWS\system32\netlogon.dll
Mon Jan 15 23:41:47 2007 => Scanning File C:\WINDOWS\system32\netman.dll
Mon Jan 15 23:41:47 2007 => Scanning File C:\WINDOWS\system32\netmsg.dll
Mon Jan 15 23:41:47 2007 => Scanning File C:\WINDOWS\system32\netplwiz.dll
Mon Jan 15 23:41:48 2007 => Scanning File C:\WINDOWS\system32\netrap.dll
Mon Jan 15 23:41:48 2007 => Scanning File C:\WINDOWS\system32\netsetup.cpl
Mon Jan 15 23:41:48 2007 => Scanning File C:\WINDOWS\system32\netsetup.exe
Mon Jan 15 23:41:48 2007 => Scanning File C:\WINDOWS\system32\netsh.exe
Mon Jan 15 23:41:49 2007 => Scanning File C:\WINDOWS\system32\netshell.dll
Mon Jan 15 23:41:49 2007 => Scanning File C:\WINDOWS\system32\netstat.exe
Mon Jan 15 23:41:49 2007 => Scanning File C:\WINDOWS\system32\netui0.dll
Mon Jan 15 23:41:49 2007 => Scanning File C:\WINDOWS\system32\netui1.dll
Mon Jan 15 23:41:49 2007 => Scanning File C:\WINDOWS\system32\netui2.dll
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\netware.drv
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\newdev.dll
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\nlhtml.dll
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\nlsfunc.exe
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\nmevtmsg.dll
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\nmmkcert.dll
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\noise.chs
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\noise.cht
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\noise.dat
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\noise.deu
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\noise.eng
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\noise.enu
Mon Jan 15 23:41:50 2007 => Scanning File C:\WINDOWS\system32\noise.esn
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\noise.fra
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\noise.ita
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\noise.nld
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\noise.sve
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\noise.tha
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\notepad.exe
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\npptools.dll
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\nscompat.tlb
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\nslookup.exe
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\nsp.dll
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\nspa6.dll
Mon Jan 15 23:41:51 2007 => Scanning File C:\WINDOWS\system32\nspm5.dll
Mon Jan 15 23:41:52 2007 => Scanning File C:\WINDOWS\system32\nspm6.dll
Mon Jan 15 23:41:52 2007 => Scanning File C:\WINDOWS\system32\nspp6.dll
Mon Jan 15 23:41:52 2007 => Scanning File C:\WINDOWS\system32\nsppx.dll
Mon Jan 15 23:41:53 2007 => Scanning File C:\WINDOWS\system32\nspw7.dll
Mon Jan 15 23:41:53 2007 => Scanning File C:\WINDOWS\system32\ntbackup.exe
Mon Jan 15 23:41:53 2007 => Scanning File C:\WINDOWS\system32\ntdll.dll
Mon Jan 15 23:41:53 2007 => Scanning File C:\WINDOWS\system32\ntdos.sys
Mon Jan 15 23:41:53 2007 => Scanning File C:\WINDOWS\system32\ntdos404.sys
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntdos411.sys
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntdos412.sys
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntdos804.sys
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntdsapi.dll
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntdsbcli.dll
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntimage.gif
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntio.sys
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntio404.sys
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntio411.sys
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntio412.sys
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntio804.sys
Mon Jan 15 23:41:54 2007 => Scanning File C:\WINDOWS\system32\ntkrnlpa.exe
Mon Jan 15 23:41:55 2007 => Scanning File C:\WINDOWS\system32\ntlanman.dll
Mon Jan 15 23:41:55 2007 => Scanning File C:\WINDOWS\system32\ntlanui.dll
Mon Jan 15 23:41:55 2007 => Scanning File C:\WINDOWS\system32\ntlanui2.dll
Mon Jan 15 23:41:55 2007 => Scanning File C:\WINDOWS\system32\ntlsapi.dll
Mon Jan 15 23:41:55 2007 => Scanning File C:\WINDOWS\system32\ntmarta.dll
Mon Jan 15 23:41:55 2007 => Scanning File C:\WINDOWS\system32\ntmsapi.dll
Mon Jan 15 23:41:55 2007 => Scanning File C:\WINDOWS\system32\ntmsdba.dll
Mon Jan 15 23:41:55 2007 => Scanning File C:\WINDOWS\system32\ntmsevt.dll
Mon Jan 15 23:41:55 2007 => Scanning File C:\WINDOWS\system32\ntmsmgr.dll
Mon Jan 15 23:41:55 2007 => Scanning File C:\WINDOWS\system32\ntmsmgr.msc
Mon Jan 15 23:41:56 2007 => Scanning File C:\WINDOWS\system32\ntmsoprq.msc
Mon Jan 15 23:41:56 2007 => Scanning File C:\WINDOWS\system32\ntmssvc.dll
Mon Jan 15 23:41:56 2007 => Scanning File C:\WINDOWS\system32\ntoskrnl.exe
Mon Jan 15 23:41:56 2007 => Scanning File C:\WINDOWS\system32\ntprint.dll
Mon Jan 15 23:41:56 2007 => Scanning File C:\WINDOWS\system32\NTS.DLL
Mon Jan 15 23:41:56 2007 => Scanning File C:\WINDOWS\system32\ntsd.exe
Mon Jan 15 23:41:56 2007 => Scanning File C:\WINDOWS\system32\ntsdexts.dll
Mon Jan 15 23:41:56 2007 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Mon Jan 15 23:41:57 2007 => Scanning File C:\WINDOWS\system32\ntvdm.exe
Mon Jan 15 23:41:57 2007 => Scanning File C:\WINDOWS\system32\ntvdmd.dll
Mon Jan 15 23:41:57 2007 => Scanning File C:\WINDOWS\system32\nusrmgr.cpl
Mon Jan 15 23:41:57 2007 => Scanning File C:\WINDOWS\system32\nv4.dll
Mon Jan 15 23:41:57 2007 => Scanning File C:\WINDOWS\system32\nv4_disp.dll
Mon Jan 15 23:41:57 2007 => Scanning File C:\WINDOWS\system32\nw16.exe
Mon Jan 15 23:41:57 2007 => Scanning File C:\WINDOWS\system32\nwapi16.dll
Mon Jan 15 23:41:57 2007 => Scanning File C:\WINDOWS\system32\nwapi32.dll
Mon Jan 15 23:41:58 2007 => Scanning File C:\WINDOWS\system32\nwc.cpl
Mon Jan 15 23:41:58 2007 => Scanning File C:\WINDOWS\system32\nwc.cpl.manifest
Mon Jan 15 23:41:58 2007 => Scanning File C:\WINDOWS\system32\nwcfg.dll
Mon Jan 15 23:41:58 2007 => Scanning File C:\WINDOWS\system32\nwevent.dll
Mon Jan 15 23:41:58 2007 => Scanning File C:\WINDOWS\system32\nwprovau.dll
Mon Jan 15 23:41:58 2007 => Scanning File C:\WINDOWS\system32\nwscript.exe
Mon Jan 15 23:41:58 2007 => Scanning File C:\WINDOWS\system32\nwwks.dll
Mon Jan 15 23:41:58 2007 => Scanning File C:\WINDOWS\system32\oakley.dll
Mon Jan 15 23:41:58 2007 => Scanning File C:\WINDOWS\system32\objsel.dll
Mon Jan 15 23:41:58 2007 => Scanning File C:\WINDOWS\system32\occache.dll
Mon Jan 15 23:41:59 2007 => Scanning File C:\WINDOWS\system32\ocmanage.dll
Mon Jan 15 23:41:59 2007 => Scanning File C:\WINDOWS\system32\odbc16gt.dll
Mon Jan 15 23:41:59 2007 => Scanning File C:\WINDOWS\system32\odbc32.dll
Mon Jan 15 23:41:59 2007 => Scanning File C:\WINDOWS\system32\odbc32gt.dll
Mon Jan 15 23:41:59 2007 => Scanning File C:\WINDOWS\system32\odbcad32.exe
Mon Jan 15 23:41:59 2007 => Scanning File C:\WINDOWS\system32\odbcbcp.dll
Mon Jan 15 23:41:59 2007 => Scanning File C:\WINDOWS\system32\odbcconf.dll
Mon Jan 15 23:41:59 2007 => Scanning File C:\WINDOWS\system32\odbcconf.exe
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odbcconf.rsp
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odbccp32.cpl
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odbccp32.dll
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odbccr32.dll
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odbccu32.dll
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odbcint.dll
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odbcji32.dll
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odbcjt32.dll
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odbcp32r.dll
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odbctrac.dll
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\oddbse32.dll
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odexl32.dll
Mon Jan 15 23:42:00 2007 => Scanning File C:\WINDOWS\system32\odfox32.dll
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\odpdx32.dll
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\odtext32.dll
Mon Jan 15 23:42:01 2007 => *** File C:\WINDOWS\system32\oembios.bin having Size Restriction ***
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\oembios.bin [**]
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\oembios.dat
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\oembios.sig
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\offfilt.dll
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\ole2.dll
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\ole2disp.dll
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\ole2nls.dll
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\ole32.dll
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\oleacc.dll
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\oleaccrc.dll
Mon Jan 15 23:42:01 2007 => Scanning File C:\WINDOWS\system32\oleaut32.dll
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\olecli.dll
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\olecli32.dll
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\olecnv32.dll
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\oledlg.dll
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\oleprn.dll
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\olepro32.dll
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\olesvr.dll
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\olesvr32.dll
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\olethk32.dll
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\openfiles.exe
Mon Jan 15 23:42:02 2007 => Scanning File C:\WINDOWS\system32\opengl32.dll
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\osk.exe
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\osuninst.dll
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\osuninst.exe
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\OUTLWAB.DLL
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\p2p.dll
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\p2pgasvc.dll
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\p2pgraph.dll
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\p2pnetsh.dll
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\p2psvc.dll
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\packager.exe
Mon Jan 15 23:42:03 2007 => Scanning File C:\WINDOWS\system32\pagefileconfig.vbs
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\panmap.dll
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\paqsp.dll
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\pathping.exe
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\pautoenr.dll
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\pavas.ico
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\pcl.sep
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\pdh.dll
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\PDS.DLL
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\pentnt.exe
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\perfc009.dat
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\perfc013.dat
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\perfci.h
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\perfci.ini
Mon Jan 15 23:42:04 2007 => Scanning File C:\WINDOWS\system32\perfctrs.dll
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perfd009.dat
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perfd013.dat
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perfdisk.dll
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perffilt.h
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perffilt.ini
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perfh009.dat
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perfh013.dat
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perfi009.dat
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perfi013.dat
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perfmon.exe
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perfmon.msc
Mon Jan 15 23:42:05 2007 => Scanning File C:\WINDOWS\system32\perfnet.dll
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\perfnw.dll
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\perfos.dll
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\perfproc.dll
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\PerfStringBackup.INI
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\perfts.dll
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\perfwci.h
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\perfwci.ini
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\PF1800LC.Dll
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\phon.ime
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\photowiz.dll
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\pid.dll
Mon Jan 15 23:42:06 2007 => Scanning File C:\WINDOWS\system32\pidgen.dll
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\pifmgr.dll
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\ping.com
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\ping.exe
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\ping6.exe
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\PINTLGNT.IME
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\pjlmon.dll
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\plustab.dll
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\pmspl.dll
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\pncrt.dll
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\pndx5016.dll
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\pndx5032.dll
Mon Jan 15 23:42:07 2007 => Scanning File C:\WINDOWS\system32\pngfilt.dll
Mon Jan 15 23:42:08 2007 => Scanning File C:\WINDOWS\system32\pnrpnsp.dll
Mon Jan 15 23:42:08 2007 => Scanning File C:\WINDOWS\system32\polstore.dll
Mon Jan 15 23:42:08 2007 => Scanning File C:\WINDOWS\system32\Popup.ocx
Mon Jan 15 23:42:08 2007 => Scanning File C:\WINDOWS\system32\PortableDeviceApi.dll
Mon Jan 15 23:42:08 2007 => Scanning File C:\WINDOWS\system32\PortableDeviceClassExtension.dll
Mon Jan 15 23:42:08 2007 => Scanning File C:\WINDOWS\system32\PortableDeviceTypes.dll
Mon Jan 15 23:42:08 2007 => Scanning File C:\WINDOWS\system32\PortableDeviceWiaCompat.dll
Mon Jan 15 23:42:08 2007 => Scanning File C:\WINDOWS\system32\PortableDeviceWMDRM.dll
Mon Jan 15 23:42:08 2007 => Scanning File C:\WINDOWS\system32\powercfg.cpl
Mon Jan 15 23:42:08 2007 => Scanning File C:\WINDOWS\system32\powercfg.exe
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\powrprof.dll
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\prflbmsg.dll
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\print.exe
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\printui.dll
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\prncnfg.vbs
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\prndrvr.vbs
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\prnjobs.vbs
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\prnmngr.vbs
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\prnport.vbs
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\prnqctl.vbs
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\proctexe.ocx
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\prodspec.ini
Mon Jan 15 23:42:09 2007 => Scanning File C:\WINDOWS\system32\profmap.dll
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\progman.exe
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\proquota.exe
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\proxycfg.exe
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\psapi.dll
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\psbase.dll
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\PScanner.CFG
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\pschdcnt.h
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\pschdprf.dll
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\pschdprf.ini
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\pscript.sep
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\psnppagn.dll
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\pstorec.dll
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\pstorsvc.dll
Mon Jan 15 23:42:10 2007 => Scanning File C:\WINDOWS\system32\ptpusd.dll
Mon Jan 15 23:42:11 2007 => Scanning File C:\WINDOWS\system32\PUB3BRSH.ANI
Mon Jan 15 23:42:11 2007 => Scanning File C:\WINDOWS\system32\PUBDLG.DLL
Mon Jan 15 23:42:11 2007 => Scanning File C:\WINDOWS\system32\pubprn.vbs
Mon Jan 15 23:42:11 2007 => Scanning File C:\WINDOWS\system32\PWiaExt.dll
Mon Jan 15 23:42:11 2007 => Scanning File C:\WINDOWS\system32\PWiaScnr.dll
Mon Jan 15 23:42:11 2007 => Scanning File C:\WINDOWS\system32\python24.dll
Mon Jan 15 23:42:11 2007 => Scanning File C:\WINDOWS\system32\python25.dll
Mon Jan 15 23:42:12 2007 => Scanning File C:\WINDOWS\system32\qappsrv.exe
Mon Jan 15 23:42:12 2007 => Scanning File C:\WINDOWS\system32\qasf.dll
Mon Jan 15 23:42:12 2007 => Scanning File C:\WINDOWS\system32\qcap.dll
Mon Jan 15 23:42:12 2007 => Scanning File C:\WINDOWS\system32\qdv.dll
Mon Jan 15 23:42:12 2007 => Scanning File C:\WINDOWS\system32\qdvd.dll
Mon Jan 15 23:42:12 2007 => Scanning File C:\WINDOWS\system32\qedit.dll
Mon Jan 15 23:42:13 2007 => Scanning File C:\WINDOWS\system32\qedwipes.dll
Mon Jan 15 23:42:13 2007 => Scanning File C:\WINDOWS\system32\qmgr.dll
Mon Jan 15 23:42:13 2007 => Scanning File C:\WINDOWS\system32\qmgrprxy.dll
Mon Jan 15 23:42:13 2007 => Scanning File C:\WINDOWS\system32\qosname.dll
Mon Jan 15 23:42:13 2007 => Scanning File C:\WINDOWS\system32\qprocess.exe
Mon Jan 15 23:42:13 2007 => Scanning File C:\WINDOWS\system32\qt-dx331.dll
Mon Jan 15 23:42:15 2007 => Scanning File C:\WINDOWS\system32\qtplugin.log
Mon Jan 15 23:42:15 2007 => Scanning File C:\WINDOWS\system32\quartz.dll
Mon Jan 15 23:42:15 2007 => Scanning File C:\WINDOWS\system32\query.dll
Mon Jan 15 23:42:15 2007 => Scanning File C:\WINDOWS\system32\quick.ime
Mon Jan 15 23:42:15 2007 => Scanning File C:\WINDOWS\system32\QuickEdCleanReg.exe
Mon Jan 15 23:42:16 2007 => Scanning File C:\WINDOWS\system32\QuickTime.cpl
Mon Jan 15 23:42:16 2007 => *** File C:\WINDOWS\system32\QuickTime.qts having Size Restriction ***
Mon Jan 15 23:42:16 2007 => Scanning File C:\WINDOWS\system32\QuickTime.qts [**]
Mon Jan 15 23:42:16 2007 => Scanning File C:\WINDOWS\system32\QuickTimeCheck.ocx
Mon Jan 15 23:42:16 2007 => Scanning File C:\WINDOWS\system32\QuickTimeMusicalInstruments.qtx
Mon Jan 15 23:42:16 2007 => Scanning File C:\WINDOWS\system32\QuickTimeVR.qtx
Mon Jan 15 23:42:16 2007 => Scanning File C:\WINDOWS\system32\qwinsta.exe
Mon Jan 15 23:42:16 2007 => Scanning File C:\WINDOWS\system32\racpldlg.dll
Mon Jan 15 23:42:16 2007 => Scanning File C:\WINDOWS\system32\rasadhlp.dll
Mon Jan 15 23:42:16 2007 => Scanning File C:\WINDOWS\system32\rasapi32.dll
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\rasauto.dll
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\rasautou.exe
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\raschap.dll
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\rasctrnm.h
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\rasctrs.dll
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\rasctrs.ini
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\rasdial.exe
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\rasdlg.dll
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\rasman.dll
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\rasmans.dll
Mon Jan 15 23:42:17 2007 => Scanning File C:\WINDOWS\system32\rasmontr.dll
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rasmxs.dll
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rasphone.exe
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rasppp.dll
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rasrad.dll
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rassapi.dll
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rasser.dll
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rastapi.dll
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rastls.dll
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rcbdyctl.dll
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rcimlby.exe
Mon Jan 15 23:42:18 2007 => Scanning File C:\WINDOWS\system32\rcp.exe
Mon Jan 15 23:42:19 2007 => Scanning File C:\WINDOWS\system32\rdchost.dll
Mon Jan 15 23:42:19 2007 => Scanning File C:\WINDOWS\system32\RDOCURS.DLL
Mon Jan 15 23:42:19 2007 => Scanning File C:\WINDOWS\system32\rdpcfgex.dll
Mon Jan 15 23:42:19 2007 => Scanning File C:\WINDOWS\system32\rdpclip.exe
Mon Jan 15 23:42:19 2007 => Scanning File C:\WINDOWS\system32\rdpdd.dll
Mon Jan 15 23:42:19 2007 => Scanning File C:\WINDOWS\system32\rdpsnd.dll
Mon Jan 15 23:42:19 2007 => Scanning File C:\WINDOWS\system32\rdpwsx.dll
Mon Jan 15 23:42:19 2007 => Scanning File C:\WINDOWS\system32\rdsaddin.exe
Mon Jan 15 23:42:19 2007 => Scanning File C:\WINDOWS\system32\rdshost.exe
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\recover.exe
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\redir.exe
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\reg.exe
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\regapi.dll
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\regedit.com
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\regedt32.exe
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\regini.exe
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\regsvc.dll
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\regwiz.exe
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\regwizc.dll
Mon Jan 15 23:42:20 2007 => Scanning File C:\WINDOWS\system32\relog.exe
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\remotepg.dll
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\remotesp.tsp
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\rend.dll
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\replace.exe
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\reset.exe
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\resutils.dll
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\rewire.dll
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\rexec.exe
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\riched20.dll
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\riched32.dll
Mon Jan 15 23:42:21 2007 => Scanning File C:\WINDOWS\system32\rmoc3260.dll
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\rnr20.dll
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\Roboex32.dll
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\romanime.ime
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\route.exe
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\routemon.exe
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\routetab.dll
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\rpcns4.dll
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\rpcrt4.dll
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\rpcss.dll
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\rsaci.rat
Mon Jan 15 23:42:22 2007 => Scanning File C:\WINDOWS\system32\rsaenh.dll
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsfsaps.dll
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsh.exe
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rshx32.dll
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsm.exe
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsmps.dll
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsmsink.exe
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsmui.exe
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsnotify.exe
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsop.msc
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsopprov.exe
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsvp.exe
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsvp.ini
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsvpcnts.h
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsvpmsg.dll
Mon Jan 15 23:42:23 2007 => Scanning File C:\WINDOWS\system32\rsvpperf.dll
Mon Jan 15 23:42:24 2007 => Scanning File C:\WINDOWS\system32\rsvpsp.dll
Before I continue: is this really what I'm supposed to upload?
It seems like rather a lot.
No problem, mind you.
Please let me know...
I'll do the HJT first below, and continue with the MWav if you tell me to.
Thanks!
Anne
Logfile of HijackThis v1.99.1
Scan saved at 23:32:21, on 16/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\TEMP\WgaTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\Internet explorer.EXE
C:\Palm\HOTSYNC.EXE
C:\antimalware\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: 66.98.148.65 auto.search.msn.com
O1 - Hosts: 66.98.148.65 auto.search.msn.es
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: VampireFreaks Alerter.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Web Rebates. - file://C:\Program Files\WebRebates4\websrebates\webtrebates\toprC0.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: DefWatch - Unknown owner - C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe (file missing)
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Unknown owner - C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe (file missing)
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Win32 USB2 Driver (Windows Update) - Unknown owner - C:\WINDOWS\System32\winupdate.exe" -netsvcs (file missing)
Hi
You were supposed to send everything in the lower panel It's called Virus Log information. Now you sent list of all files what eScan scanned, that's not what I need :) Please scan again with it and send log here.
Hi Shaba,
Oh sorry.
I used the button for 'scan log' and assumed that the log it produced was what you needed.... Apparently not....
I ran it again, but obviously it had repaired everything the first time around, so the second scan came back clean. If it automatically saved a log, I haven't been able to find it.
When I rebooted using MSCONFIG, I noticed the default setting was Selective Startup, so I switched that to Normal Startup and did another HJT. Results are below.
Hope we can still sort it out.
Thanks, Anne
Logfile of HijackThis v1.99.1
Scan saved at 20:23:59, on 18/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\Palm\HOTSYNC.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: 66.98.148.65 auto.search.msn.com
O1 - Hosts: 66.98.148.65 auto.search.msn.es
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: VampireFreaks Alerter.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Web Rebates. - file://C:\Program Files\WebRebates4\websrebates\webtrebates\toprC0.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: DefWatch - Unknown owner - C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe (file missing)
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Unknown owner - C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe (file missing)
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Win32 USB2 Driver (Windows Update) - Unknown owner - C:\WINDOWS\System32\winupdate.exe" -netsvcs (file missing)
Hi
Open HijackThis, click do a system scan only and checkmark these:
O1 - Hosts: 66.98.148.65 auto.search.msn.com
O1 - Hosts: 66.98.148.65 auto.search.msn.es
Close all windows including browser and press fix checked.
Go to start -> run -> services.msc -> ok
Locate this -> Win32 USB2 Driver (Windows Update)
Doubleclick it, press stop and select startuptype disabled
Go to start -> run
Type sc delete Windows Update and click ok
Reboot
Send a fresh HijackThis log
Hi Shaba,
Requested log below.
Can you explain a bit about why we did what we did?
I'd like to learn, so I can be safer in the future.
Thanks,
Anne
Logfile of HijackThis v1.99.1
Scan saved at 16:11:08, on 19/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Palm\HOTSYNC.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: VampireFreaks Alerter.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Web Rebates. - file://C:\Program Files\WebRebates4\websrebates\webtrebates\toprC0.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: DefWatch - Unknown owner - C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe (file missing)
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Unknown owner - C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe (file missing)
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
Hi
We removed bad entries from your log :)
Two of them were hosts file "hijack" and one a bad service.
Uninstall via add/remove programs if present
Webrebates or similar (webrebates 4 etc.)
Please do an online scan with Kaspersky Online Scanner (http://www.kaspersky.com/downloads/kws/kavwebscan.html). You will be prompted to install an ActiveX component from Kaspersky, Click Yes.
The program will launch and then start to download the latest definition files.
Once the scanner is installed and the definitions downloaded, click Next.
Now click on Scan Settings
In the scan settings make sure that the following are selected:
o Scan using the following Anti-Virus database:
+ Extended (If available otherwise Standard)
o Scan Options:
+ Scan Archives
+ Scan Mail Bases
Click OK
Now under select a target to scan select My Computer
The scan will take a while so be patient and let it run. Once the scan is complete it will display if your system has been infected.
Now click on the Save as Text button
Save the file to your desktop.
Copy and paste that information in your next post.
Send:
- a fresh HijackThis log
- kaspersky report
Hi Shaba,
Sorry for asking a newb question:
Kaspersky demands that I have administrative rights to this computer, otherwise it cannot download new definitions.
I can switch to Admin in Safe Mode, but is it then safe (or even possible) to do an online scan?
Thanx,
Anne
Hi again,
Another newb question.
I opened the Add/Remove and checked to see if Rebate was there in any form. It wasn't.
I then removed a whole list of programs the previous owner had left there, or tried to (in some cases, I couldn't).
For some reason, I have no more sound on this computer.
Example: iTunes won't start up at all.
I don't think I removed any necessary standard applications at all.
Do you have an idea what could have caused this?
Thanks,
Anne
Hi
No, it's not safe to do online scan in safe mode.
Well, if you removed programs and there's no sound after that, it's quite obvious that you removed something essential :)
Try next to use system restore and restore your system to time before uninstalling those programs.
Hi Shaba,
Thanks for your reply!
I've done some surfing on the error code.
It probably has more to do with two power dips during really bad weather.
The computer doesn't recognize the sound card.
I have the same problem on another computer.
I'll have to troubleshoot this in another way.
Let's continue with the backdoor matter.
If I cannot do an online scan, shall I do an offline one?
Or what other suggestions do you have?
Thanks,
Anne
Hi
Yes, let's try another offline scanner:
* Download Dr.Web CureIt to the desktop:
ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe
Doubleclick the drweb-cureit.exe file and Allow to run the express scan
This will scan the files currently running in memory and when something is found, click the yes button when it asks you if you want to cure it. This is only a short scan.
Once the short scan has finished, mark the drives that you want to scan.
Select all drives. A red dot shows which drives have been chosen.
Click the green arrow at the right, and the scan will start.
Click 'Yes to all' if it asks if you want to cure/move the file.
When the scan has finished, look if you can click next icon next to the files found: http://users.telenet.be/bluepatchy/miekiemoes/images/check.gif
If so, click it and then click the next icon right below and select Move incurable as you'll see in next image:
http://users.telenet.be/bluepatchy/miekiemoes/images/move.gif
This will move it to the %userprofile%\DoctorWeb\quarantaine-folder if it can't be cured. (this in case if we need samples)
After selecting, in the Dr.Web CureIt menu on top, click file and choose save report list
Save the report to your desktop. The report will be called DrWeb.csv
Close Dr.Web Cureit.
Reboot your computer!! Because it could be possible that files in use will be moved/deleted during reboot.
After reboot, post the contents of the log from Dr.Web you saved previously in your next reply.
Hi Shaba,
The computer we're working on is not my primary computer.
I am very busy right now, so the debugging is a bit slow.
Sorry for the wait, will get back to you Thursday.
Thanks for being patient,
Anne
How is it going Ro-Ann. :)
Due to the lack of feedback this Topic is closed.
If you need this topic reopened, please request this by sending the moderating team
a PM with the address of the thread. This applies only to the original topic starter.
Everyone else please begin a New Topic.