Søg
Avatar billede donnac Nybegynder
01. august 2004 - 09:34 Der er 45 kommentarer og
1 løsning

Virusen: MX target

Hej.

Har fået en virus som hedder: mx target

Hver gang jeg fjerner den med et virus program, kommer det med det samme igen.

Indtil videre har jeg kun fundet ud af hvad den hedder og at den pakker sig selv ud hele tiden. og Den ligger hvis nok: C:/documents and settings/Donna/lokale indstillinger/temp/THI42B6.tmp/mxtarget.cab

HJÆLP

Er det ikke en som kan hjælpe mig med at få den fjernet ? Evt. guide mig over msn ?
Avatar billede resist Nybegynder
01. august 2004 - 09:45 #1
Har du prøvet at tømme dine temp-filer?

Lad os se, hvad en HijackThis-log viser.

Hent Spybot og HijackThis:
http://www.spywarefri.dk/vaerktoj.htm

Installer og kør Spybot, opdater online, scan, afhjælp valgte problemer og genstart.

Derefter kører du Hijackthis > Scan > Save log. Kopier logfilen herind, så kigger vi på den.
Lad være med at slette noget selv med Hijackthis, vi skal nok hjælpe med at tyde loggen.
Avatar billede donnac Nybegynder
01. august 2004 - 10:05 #2
Har prøvet både Spybot og HijackThis.
Avatar billede resist Nybegynder
01. august 2004 - 10:07 #3
Prøv lige at kopiere en log fra HijackThis herind - tak.
Avatar billede donnac Nybegynder
01. august 2004 - 10:09 #4
Aner ikke hvordan man gør. En ven gjore det for mig engang.
Avatar billede resist Nybegynder
01. august 2004 - 10:12 #5
http://www.eksperten.dk/artikler/127 (punkt 1-4)
Avatar billede forevernewbie Nybegynder
01. august 2004 - 10:16 #6
Prøv evt. det her: Slå systemgendannelse fra, fjern din internetforbindelse fysisk, scan med antivirus. Og så en log ind til resist(hvis du kan).
Avatar billede forevernewbie Nybegynder
01. august 2004 - 10:18 #7
Glemte lige genstart efter at have kørt antivirus.
Avatar billede resist Nybegynder
01. august 2004 - 10:20 #8
Nummer to på denne side er en flash gennemgang af, hvordan du bruger HijackThis: http://www.riversen.dk/?side=instruktion.php

Lad være med selv at fixe/slette noget med HijackThis. Du skal indtil videre bare kopiere loggen fra HijackThis herind.
Avatar billede donnac Nybegynder
01. august 2004 - 10:44 #9
Vil slet ikke have HijackThis ind på min pc, sorry. Jeg ved at man kan slette virusen på en anden måde end den.
Avatar billede donnac Nybegynder
01. august 2004 - 10:46 #10
Men okay jeg prøver
Avatar billede fromsej Praktikant
01. august 2004 - 10:46 #11
Af hvilken grund vil du ikke køre Hijackthis?
Det ødelægger intet, hvis man ved hvad man foretager sig med det, og det er vi flere der ved herinde.
Avatar billede donnac Nybegynder
01. august 2004 - 10:47 #12
Jeg har spybot og den fjerner den ikke.
Avatar billede fromsej Praktikant
01. august 2004 - 10:49 #13
Nej, det gør Spybot ikke det har du helt ret i.
For at vi skal kunne hjælpe dig er vi nødt til at se den Hijackthislog.
Avatar billede donnac Nybegynder
01. august 2004 - 10:50 #14
Har hentet Hijack Men synes sku ikke jeg kan installere det.
Avatar billede donnac Nybegynder
01. august 2004 - 10:51 #15
Har du msn ?? Tror det vil være nemmere at guide mig over der.
Avatar billede fromsej Praktikant
01. august 2004 - 10:58 #16
Her er en vejledning i billeder:
http://home20.inet.tele.dk/fromsej/html/Hjtvejledning.htm
Hijackthis skal ikke installeres, hvis du har hentet Hijackthis.exe skal du bare lægge det i en mappe for sig selv, er det som Zip fil pakker du Zipfilen ud først i en mappe.
Avatar billede donnac Nybegynder
01. august 2004 - 11:00 #17
Logfile of HijackThis v1.98.0
Scan saved at 11:04:00, on 01-08-2004
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe
C:\Programmer\Fælles filer\Real\Update_OB\realsched.exe
C:\Programmer\Fælles filer\ACD Systems\EN\DevDetect.exe
C:\Programmer\Norton AntiVirus\navapsvc.exe
C:\Programmer\Norton AntiVirus\AdvTools\NPROTECT.EXE
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Programmer\Norton AntiVirus\SAVScan.exe
C:\Programmer\MSN Messenger\msnmsgr.exe
C:\Programmer\Internet Explorer\iexplore.exe
C:\Programmer\Messenger\msmsgs.exe
C:\Documents and Settings\Donna\Skrivebord\HiJackthis\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://donnajohnsen.homepage.dk/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programmer\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmer\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [ccApp] "C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ashMaiSv] C:\PROGRA~1\ALWILS~1\Avast4\ashmaisv.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmer\Fælles filer\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [Device Detector] "C:\Programmer\Fælles filer\ACD Systems\EN\DevDetect.exe" -autorun
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Programmer\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\MSMSGS.EXE
O16 - DPF: {9CCE3B43-4DE0-4236-A84E-108CA848EE6A} (WebCam Control) - http://www.webcamnow.com/broadcast/ActiveXWebCam.cab
Avatar billede donnac Nybegynder
01. august 2004 - 11:01 #18
Men har altså lavet en mappe på skrivebordet til det. Er det ikke okay ?
Avatar billede donnac Nybegynder
01. august 2004 - 11:03 #19
Kan se at nederste fil skal ikke være der.
Avatar billede donnac Nybegynder
01. august 2004 - 11:04 #20
Skal jeg forrasten deaktivere min systemgendannelse ?
Avatar billede resist Nybegynder
01. august 2004 - 11:11 #21
Slå systemgendannelse fra. Hvis du ikke ved, hvordan du gør så kig her: http://www.spywarefri.dk/virusscannere.htm#alle

Herunder er der nogle filer, som du skal fixe. Sæt en vinge ud for disse filer. Når du har gjort det, så lukker du alle andre vinduer ned.

Fix disse med HijackThis:

O4 - HKLM\..\Run: [TkBellExe] "C:\Programmer\Fælles filer\Real\Update_OB\realsched.exe"  -osboot
O4 - Global Startup: Microsoft Office.lnk = C:\Programmer\Microsoft Office\Office\OSA9.EXE

O16 - DPF: {9CCE3B43-4DE0-4236-A84E-108CA848EE6A} (WebCam Control) - http://www.webcamnow.com/broadcast/ActiveXWebCam.cab

Genstart.

Derefter tømmer du dine temp-filer.

Du kan få hjælp af Empty Temp Folders: http://www.spywarefri.dk/vaerktoj.htm#emptytemp

Manual: http://www.spywarefri.dk/emptytempfolders.manual.htm


Tag derefter en scanning med denne engangsscanner: http://www.mwti.net/download/tools/mwav.exe
Gerne fra fejlsikret tilstand (tryk gentagne gange på F8 i opstart).
Avatar billede donnac Nybegynder
01. august 2004 - 11:24 #22
Nu har jeg download http://www.mwti.net/download/tools/mwav.exe og pakkede den ud og åbnede den. Hvad gør jeg så ?
Avatar billede donnac Nybegynder
01. august 2004 - 11:25 #23
Hvad skal jeg trykke på inde i scanner programmet ?
Avatar billede fromsej Praktikant
01. august 2004 - 11:27 #24
Scan Clean.
Det står til højre.
Avatar billede donnac Nybegynder
01. august 2004 - 11:28 #25
Okay, men skal den står på : scan all files eller på : program files
Avatar billede donnac Nybegynder
01. august 2004 - 11:37 #26
Nå men jeg har valgt scan all files og nu scanner den.
Avatar billede fromsej Praktikant
01. august 2004 - 11:37 #27
Godt, den skal nemlig scanne alt.
Avatar billede donnac Nybegynder
01. august 2004 - 11:39 #28
Efter den har scannet, hvad gør jeg så ?
Avatar billede donnac Nybegynder
01. august 2004 - 11:44 #29
Scanner programmet har funde: total numbers of errors 1. Andet har den ikke fundet indtil videre.
Avatar billede donnac Nybegynder
01. august 2004 - 11:44 #30
og nu er den færdig med at scanne, hvad gør jeg så?
Avatar billede donnac Nybegynder
01. august 2004 - 11:46 #31
Sun Aug 01 11:28:09 2004 => **********************************************************
Sun Aug 01 11:28:09 2004 => eScan AntiVirus Toolkit Utility.
Sun Aug 01 11:28:09 2004 => Copyright © 2003-2004,  MicroWorld Technologies Inc.
Sun Aug 01 11:28:09 2004 => **********************************************************
Sun Aug 01 11:28:09 2004 => Version 4.2.9
Sun Aug 01 11:28:09 2004 => Log File: C:\DOCUME~1\Donna\LOKALE~1\Temp\mwav.log
Sun Aug 01 11:28:09 2004 => Latest Date of files inside MWAV: 19 Jul 2004  09:01:49.
Sun Aug 01 11:28:11 2004 => AV Library Loaded...
Sun Aug 01 11:28:11 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\kavss.exe
Sun Aug 01 11:28:11 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\Getvlist.exe
Sun Aug 01 11:28:11 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\kavss.dll
Sun Aug 01 11:28:11 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\kavssdi.dll
Sun Aug 01 11:28:12 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\kavssi.dll
Sun Aug 01 11:28:12 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\kavvlg.dll
Sun Aug 01 11:28:12 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\msvlclnt.dll
Sun Aug 01 11:28:12 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\ipc.dll
Sun Aug 01 11:28:12 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\main.avi
Sun Aug 01 11:28:12 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\virus.avi
Sun Aug 01 11:28:12 2004 => Virus Database Date: 2004/07/19
Sun Aug 01 11:28:12 2004 => Virus Database Count: 97349

Sun Aug 01 11:39:32 2004 => **********************************************************
Sun Aug 01 11:39:32 2004 => eScan AntiVirus Toolkit Utility.
Sun Aug 01 11:39:32 2004 => Copyright © 2003-2004,  MicroWorld Technologies Inc.
Sun Aug 01 11:39:32 2004 =>
Sun Aug 01 11:39:32 2004 => Support: support@mwti.net
Sun Aug 01 11:39:32 2004 => Web: http://www.mwti.net
Sun Aug 01 11:39:32 2004 => **********************************************************
Sun Aug 01 11:39:32 2004 => Version 4.2.9
Sun Aug 01 11:39:32 2004 => Log File: C:\DOCUME~1\Donna\LOKALE~1\Temp\mwav.log
Sun Aug 01 11:39:33 2004 => Latest Date of files inside MWAV: 19 Jul 2004  09:01:49.

Sun Aug 01 11:39:33 2004 => Options Selected by User:
Sun Aug 01 11:39:33 2004 => Memory Check: Enabled
Sun Aug 01 11:39:33 2004 => Registry Check: Enabled
Sun Aug 01 11:39:33 2004 => StartUp Folder Check: Enabled
Sun Aug 01 11:39:33 2004 => System Folder Check: Enabled
Sun Aug 01 11:39:33 2004 => System Area Check: Disabled
Sun Aug 01 11:39:33 2004 => Services Check: Enabled
Sun Aug 01 11:39:33 2004 => Drive Check Option Disabled
Sun Aug 01 11:39:33 2004 => Scanning Type: Scan And Clean
Sun Aug 01 11:39:33 2004 => Folder Check: Disabled

Sun Aug 01 11:39:33 2004 => ***** Scanning Memory Files *****
Sun Aug 01 11:39:33 2004 => Scanning File C:\WINDOWS\system32\services.exe
Sun Aug 01 11:39:33 2004 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Aug 01 11:39:33 2004 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 01 11:39:33 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:33 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\ccSetMgr.exe
Sun Aug 01 11:39:33 2004 => Scanning File C:\WINDOWS\Explorer.EXE
Sun Aug 01 11:39:33 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\ccEvtMgr.exe
Sun Aug 01 11:39:33 2004 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Sun Aug 01 11:39:33 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\ccApp.exe
Sun Aug 01 11:39:34 2004 => Scanning File C:\PROGRA~1\FLLESF~1\ACDSYS~1\EN\DEVDET~1.EXE
Sun Aug 01 11:39:34 2004 => Scanning File C:\PROGRA~1\NORTON~1\navapsvc.exe
Sun Aug 01 11:39:34 2004 => Scanning File C:\PROGRA~1\NORTON~1\AdvTools\NPROTECT.EXE
Sun Aug 01 11:39:34 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:34 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\CCPD-LC\symlcsvc.exe
Sun Aug 01 11:39:34 2004 => Scanning File C:\PROGRA~1\NORTON~1\SAVScan.exe
Sun Aug 01 11:39:34 2004 => Scanning File C:\PROGRA~1\INTERN~1\iexplore.exe
Sun Aug 01 11:39:34 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\mwavscan.com
Sun Aug 01 11:39:35 2004 => Scanning File C:\DOCUME~1\Donna\LOKALE~1\Temp\kavss.exe
Sun Aug 01 11:39:35 2004 => Scanning File C:\Programmer\Messenger\msmsgs.exe

Sun Aug 01 11:39:35 2004 => ***** Scanning Registry Files *****

Sun Aug 01 11:39:35 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Sun Aug 01 11:39:35 2004 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Sun Aug 01 11:39:35 2004 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Sun Aug 01 11:39:35 2004 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Sun Aug 01 11:39:35 2004 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Sun Aug 01 11:39:35 2004 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 01 11:39:35 2004 => Scanning File C:\WINDOWS\System32\stobject.dll

Sun Aug 01 11:39:35 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
Sun Aug 01 11:39:35 2004 => Scanning File C:\PROGRA~1\NORTON~1\NavShExt.dll

Sun Aug 01 11:39:35 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Sun Aug 01 11:39:35 2004 => Scanning File C:\WINDOWS\Explorer.exe
Sun Aug 01 11:39:35 2004 => Scanning File C:\WINDOWS\system32\userinit.exe

Sun Aug 01 11:39:36 2004 => Scanning HKCU\Control Panel\Desktop
Sun Aug 01 11:39:36 2004 => Scanning File C:\WINDOWS\System32\logon.scr

Sun Aug 01 11:39:36 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sun Aug 01 11:39:36 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\ccApp.exe
Sun Aug 01 11:39:36 2004 => Scanning File C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
Sun Aug 01 11:39:36 2004 => Scanning File C:\WINDOWS\system32\NeroCheck.exe
Sun Aug 01 11:39:36 2004 => ERROR!!! Invalid Entry ashMaiSv = C:\PROGRA~1\ALWILS~1\Avast4\ashmaisv.exe. Removing it.

Sun Aug 01 11:39:36 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Sun Aug 01 11:39:36 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Sun Aug 01 11:39:36 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Sun Aug 01 11:39:36 2004 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Sun Aug 01 11:39:36 2004 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Sun Aug 01 11:39:36 2004 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Sun Aug 01 11:39:36 2004 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Sun Aug 01 11:39:36 2004 => Scanning HKCR\txtfile\shell\open\command

Sun Aug 01 11:39:36 2004 => Scanning HKCR\comfile\shell\open\command

Sun Aug 01 11:39:36 2004 => Scanning HKCR\exefile\shell\open\command

Sun Aug 01 11:39:36 2004 => Scanning HKCR\dllfile\shell\open\command

Sun Aug 01 11:39:36 2004 => Scanning HKCR\batfile\shell\open\command

Sun Aug 01 11:39:36 2004 => Scanning HKCR\piffile\shell\open\command

Sun Aug 01 11:39:36 2004 => Scanning HKCR\scrfile\shell\open\command

Sun Aug 01 11:39:36 2004 => Scanning HKCR\scrfile\shell\config\command

Sun Aug 01 11:39:36 2004 => Scanning HKCR\regfile\shell\open\command

Sun Aug 01 11:39:36 2004 => ***** Scanning StartUp Folders *****

Sun Aug 01 11:39:36 2004 => ***** Scanning C:\Documents and Settings\Donna\Menuen Start\Programmer\Start Folder *****
Sun Aug 01 11:39:36 2004 => Scanning Folder: C:\Documents and Settings\Donna\Menuen Start\Programmer\Start\*.*
Sun Aug 01 11:39:36 2004 => Scanning File C:\Documents and Settings\Donna\Menuen Start\Programmer\Start\desktop.ini

Sun Aug 01 11:39:37 2004 => ***** Scanning C:\Documents and Settings\All Users\Menuen Start\Programmer\Start Folder *****
Sun Aug 01 11:39:37 2004 => Scanning Folder: C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\*.*
Sun Aug 01 11:39:37 2004 => Scanning File C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\Adobe Gamma Loader.lnk
Sun Aug 01 11:39:37 2004 => Scanning File C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\desktop.ini

Sun Aug 01 11:39:37 2004 => ***** Scanning Service Files *****
Sun Aug 01 11:39:37 2004 => Scanning HKLM\SYSTEM\CurrentControlSet\Services
Sun Aug 01 11:39:37 2004 => Scanning File C:\WINDOWS\System32\drivers\ac97intc.sys
Sun Aug 01 11:39:37 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\ACPI.sys
Sun Aug 01 11:39:37 2004 => Scanning File C:\WINDOWS\System32\drivers\aec.sys
Sun Aug 01 11:39:37 2004 => Scanning File C:\WINDOWS\System32\drivers\afd.sys
Sun Aug 01 11:39:37 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:37 2004 => Scanning File C:\WINDOWS\System32\alg.exe
Sun Aug 01 11:39:37 2004 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 01 11:39:37 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\asyncmac.sys
Sun Aug 01 11:39:37 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\atapi.sys
Sun Aug 01 11:39:37 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\atmarpc.sys
Sun Aug 01 11:39:38 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:38 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\audstub.sys
Sun Aug 01 11:39:38 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:38 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:38 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\CCDECODE.sys
Sun Aug 01 11:39:38 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\ccEvtMgr.exe
Sun Aug 01 11:39:38 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\ccPwdSvc.exe
Sun Aug 01 11:39:38 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\ccSetMgr.exe
Sun Aug 01 11:39:38 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\cdrom.sys
Sun Aug 01 11:39:38 2004 => Scanning File C:\WINDOWS\System32\cisvc.exe
Sun Aug 01 11:39:38 2004 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Sun Aug 01 11:39:38 2004 => Scanning File C:\WINDOWS\System32\dllhost.exe
Sun Aug 01 11:39:38 2004 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\disk.sys
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\dmadmin.exe
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\drivers\dmboot.sys
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\drivers\dmio.sys
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\drivers\dmload.sys
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\drivers\DMusic.sys
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\drivers\drmkaud.sys
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\e100b325.sys
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\system32\services.exe
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:39 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\fdc.sys
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\flpydisk.sys
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\ftdisk.sys
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\gameenum.sys
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\gnct511.sys
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\msgpc.sys
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\hidusb.sys
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\i8042prt.sys
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\i81xnt5.sys
Sun Aug 01 11:39:40 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wADV01nt.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wADV02NT.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wADV05NT.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wSiINTxx.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wVchNTxx.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wATV01nt.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wATV02NT.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wATV03nt.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wATV04nt.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wCh7xxNT.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\imapi.exe
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\intelide.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\ipinip.sys
Sun Aug 01 11:39:41 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\ipnat.sys
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\ipsec.sys
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\irenum.sys
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\isapnp.sys
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\kbdclass.sys
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\kbdhid.sys
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\drivers\kmixer.sys
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\mnmsrvc.exe
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\mouclass.sys
Sun Aug 01 11:39:42 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\mouhid.sys
Sun Aug 01 11:39:43 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\mrxdav.sys
Sun Aug 01 11:39:43 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\mrxsmb.sys
Sun Aug 01 11:39:43 2004 => Scanning File C:\WINDOWS\System32\msdtc.exe
Sun Aug 01 11:39:43 2004 => Scanning File C:\WINDOWS\System32\msiexec.exe
Sun Aug 01 11:39:43 2004 => Scanning File C:\WINDOWS\System32\drivers\MSKSSRV.sys
Sun Aug 01 11:39:43 2004 => Scanning File C:\WINDOWS\System32\drivers\MSPCLOCK.sys
Sun Aug 01 11:39:43 2004 => Scanning File C:\WINDOWS\System32\drivers\MSPQM.sys
Sun Aug 01 11:39:43 2004 => Scanning File C:\WINDOWS\System32\drivers\MSTEE.sys
Sun Aug 01 11:39:43 2004 => Scanning File C:\WINDOWS\System32\drivers\msmpu401.sys
Sun Aug 01 11:39:43 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys
Sun Aug 01 11:39:44 2004 => Scanning File C:\PROGRA~1\NORTON~1\navapsvc.exe
Sun Aug 01 11:39:44 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\VIRUSD~1\20040728.003\NAVENG.SYS
Sun Aug 01 11:39:44 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\VIRUSD~1\20040728.003\NAVEX15.SYS
Sun Aug 01 11:39:44 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\NdisIP.sys
Sun Aug 01 11:39:44 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\ndistapi.sys
Sun Aug 01 11:39:44 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\ndisuio.sys
Sun Aug 01 11:39:44 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\ndiswan.sys
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\netbios.sys
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\netbt.sys
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\system32\netdde.exe
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\system32\netdde.exe
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\System32\lsass.exe
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\NPDRIVER.SYS
Sun Aug 01 11:39:45 2004 => Scanning File C:\PROGRA~1\NORTON~1\AdvTools\NPROTECT.EXE
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\System32\lsass.exe
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys
Sun Aug 01 11:39:45 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys
Sun Aug 01 11:39:46 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\p3.sys
Sun Aug 01 11:39:46 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\parport.sys
Sun Aug 01 11:39:46 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\pci.sys
Sun Aug 01 11:39:46 2004 => Scanning File C:\WINDOWS\System32\drivers\pfc.sys
Sun Aug 01 11:39:46 2004 => Scanning File C:\WINDOWS\system32\services.exe
Sun Aug 01 11:39:46 2004 => Scanning File C:\WINDOWS\System32\lsass.exe
Sun Aug 01 11:39:46 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\raspptp.sys
Sun Aug 01 11:39:46 2004 => Scanning File C:\WINDOWS\System32\drivers\prodrv06.sys
Sun Aug 01 11:40:03 2004 => Scanning File C:\WINDOWS\System32\drivers\prohlp02.sys
Sun Aug 01 11:40:14 2004 => Scanning File C:\WINDOWS\System32\drivers\prosync1.sys
Sun Aug 01 11:40:14 2004 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Aug 01 11:40:14 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\psched.sys
Sun Aug 01 11:40:14 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\ptilink.sys
Sun Aug 01 11:40:14 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\PxHelp20.sys
Sun Aug 01 11:40:14 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\rasacd.sys
Sun Aug 01 11:40:14 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:14 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\rasl2tp.sys
Sun Aug 01 11:40:14 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\raspppoe.sys
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\raspti.sys
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\rdbss.sys
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\rdpdr.sys
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\system32\sessmgr.exe
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\redbook.sys
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\System32\locator.exe
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\System32\rsvp.exe
Sun Aug 01 11:40:15 2004 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Aug 01 11:40:15 2004 => Scanning File C:\PROGRA~1\NORTON~1\SAVRT.SYS
Sun Aug 01 11:40:15 2004 => Scanning File C:\PROGRA~1\NORTON~1\SAVRTPEL.SYS
Sun Aug 01 11:40:15 2004 => Scanning File C:\PROGRA~1\NORTON~1\SAVScan.exe
Sun Aug 01 11:40:16 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\SCRIPT~1\SBServ.exe
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\secdrv.sys
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\serenum.sys
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\serial.sys
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\drivers\sfhlp01.sys
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\SLIP.sys
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\drivers\splitter.sys
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Sun Aug 01 11:40:16 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\sr.sys
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\srv.sys
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\StreamIP.sys
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\swenum.sys
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\drivers\swmidi.sys
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\dllhost.exe
Sun Aug 01 11:40:17 2004 => Scanning File C:\PROGRA~1\FLLESF~1\SYMANT~1\CCPD-LC\symlcsvc.exe
Sun Aug 01 11:40:17 2004 => Scanning File C:\PROGRAMMER\SYMANTEC\SYMEVENT.SYS
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\SYMLCBRD.SYS
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\SYMREDRV.SYS
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\SYMTDI.SYS
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\drivers\sysaudio.sys
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\system32\smlogsvc.exe
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:17 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\tcpip.sys
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\termdd.sys
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\update.sys
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\ups.exe
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\usbccgp.sys
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\usbhub.sys
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\usbprint.sys
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\usbscan.sys
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\usbuhci.sys
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\drivers\vga.sys
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\vssvc.exe
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\wanarp.sys
Sun Aug 01 11:40:18 2004 => Scanning File C:\WINDOWS\System32\drivers\wdmaud.sys
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\System32\wbem\wmiapsrv.exe
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\System32\svchost.exe

Sun Aug 01 11:40:19 2004 => ***** Scanning System32 Folders *****
Sun Aug 01 11:40:19 2004 => Scanning C:\WINDOWS Directory
Sun Aug 01 11:40:19 2004 => Scanning Folder: C:\WINDOWS\*.*
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\0.log [**]
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\Adobe PSEle2 Lang Installer.log
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\Adobe PSEle2.log
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\Blå silke 16.bmp
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\bootstat.dat
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\cdplayer.ini
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\clock.avi
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\comsetup.log
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\control.ini [**]
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\desktop.ini
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\dgnct511.ax
Sun Aug 01 11:40:19 2004 => Scanning File C:\WINDOWS\dgnct511.exe
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\DirectX.log
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\DtcInstall.log
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\explorer.exe
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\explorer.scf
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\FaxSetup.log
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\Fjerstruktur.bmp
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\Floden Sumida.bmp
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\gnct511.ini
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\gnct511.src
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\Grønne sten.bmp
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\hh.exe
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\ieuninst.exe
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\iis6.log
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\imsins.BAK
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\imsins.log
Sun Aug 01 11:40:20 2004 => Scanning File C:\WINDOWS\IsUninst.exe
Sun Aug 01 11:40:21 2004 => Scanning File C:\WINDOWS\jautoexp.dat
Sun Aug 01 11:40:21 2004 => Scanning File C:\WINDOWS\Kaffebønne.bmp
Sun Aug 01 11:40:21 2004 => Scanning File C:\WINDOWS\LUINSTALL.LOG
Sun Aug 01 11:40:21 2004 => Scanning File C:\WINDOWS\MCENU.HLP
Sun Aug 01 11:40:21 2004 => Scanning File C:\WINDOWS\MININU.LOG
Sun Aug 01 11:40:21 2004 => Scanning File C:\WINDOWS\msdfmap.ini
Sun Aug 01 11:40:21 2004 => Scanning File C:\WINDOWS\msgsocm.log
Sun Aug 01 11:40:21 2004 => Scanning File C:\WINDOWS\mxTarget(2).dll
Sun Aug 01 11:40:21 2004 => Scanning File C:\WINDOWS\mxTarget(3).dll
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\mxTarget(4).dll
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\mxTarget(5).dll
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\NOTEPAD.EXE
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\nsw.log
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\ntdtcsetup.log
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\ocgen.log
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\ocmsn.log
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\ODBC.INI
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\ODBCINST.INI
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\oeuninst.exe
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\OEWABLog.txt
Sun Aug 01 11:40:22 2004 => Scanning File C:\WINDOWS\PLAY32.EXE
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\PLAYENU.HLP
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\POCE98.DLL
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\POCELANG.DLL
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\Prærievind.bmp
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\På fisketur.bmp
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\Q329441.log
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\QT32INST.EXE
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\QTW.bak
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\QTW.INI
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\QTW32DEL.EXE
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\READQT32.WRI
Sun Aug 01 11:40:23 2004 => Scanning File C:\WINDOWS\regedit.exe
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\REGLOCS.OLD
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\regopt.log
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\RESULT.QTW
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\Rhododendron.bmp
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\SAMPLE.MOV
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\Santa Fe Stucco.bmp
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\SchedLgU.Txt
Sun Aug 01 11:40:24 2004 => ERROR!!! ScanFile fails for C:\WINDOWS\SchedLgU.Txt
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\sessmgr.setup.log
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\SET3.tmp
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\SET7.tmp
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\setdebug.exe
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\SETUP1.EXE
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\setupact.log
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\setupapi.log
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\setuperr.log
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\setuplog.txt
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\Sti_Trace.log [**]
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\SYSINI.QTW
Sun Aug 01 11:40:24 2004 => Scanning File C:\WINDOWS\system.ini
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\Sæbebobler.bmp
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\TASKMAN.EXE
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\tsoc.log
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\twain.dll
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\twain_32.dll
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\twunk_16.exe
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\twunk_32.exe
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\ugnct511.exe
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\UniFish3.exe
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\unin0406.exe
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\uninst.exe
Sun Aug 01 11:40:25 2004 => Scanning File C:\WINDOWS\Unnero.cfg
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\unvise32qt.exe
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\vb.ini
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\vbaddin.ini
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\vgnct511.exe
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\VIEW32.EXE
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\VIEWENU.HLP
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\vminst.log
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\vmmreg32.dll
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\wiadebug.log
Sun Aug 01 11:40:26 2004 => ERROR!!! ScanFile fails for C:\WINDOWS\wiadebug.log
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\wiaservc.log
Sun Aug 01 11:40:26 2004 => ERROR!!! ScanFile fails for C:\WINDOWS\wiaservc.log
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\win.ini
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\winamp.ini
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\Windows Update.log
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\WindowsShell.Manifest
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\winhelp.exe
Sun Aug 01 11:40:26 2004 => Scanning File C:\WINDOWS\winhlp32.exe
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\WININI.QTW
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\winnt.bmp
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\winnt256.bmp
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\wmprfDAN.prx
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\wmsetup.log
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\WMSysPr9.prx
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\WMSysPrx.prx
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\xpsp1hfm.log
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\Zapotec.bmp
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\_default.pif
Sun Aug 01 11:40:27 2004 => Scanning C:\WINDOWS\System32 Directory
Sun Aug 01 11:40:27 2004 => Scanning Folder: C:\WINDOWS\System32\*.*
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\System32\$winnt$.inf
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\System32\12520437.cpx
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\System32\12520850.cpx
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\System32\6to4svc.dll
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\System32\aaaamon.dll
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\System32\access.cpl
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\System32\acctres.dll
Sun Aug 01 11:40:27 2004 => Scanning File C:\WINDOWS\System32\accwiz.exe
Sun Aug 01 11:40:28 2004 => Scanning File C:\WINDOWS\System32\ACDSee.scr
Sun Aug 01 11:40:28 2004 => Scanning File C:\WINDOWS\System32\acelpdec.ax
Sun Aug 01 11:40:28 2004 => Scanning File C:\WINDOWS\System32\acledit.dll
Sun Aug 01 11:40:28 2004 => Scanning File C:\WINDOWS\System32\aclui.dll
Sun Aug 01 11:40:28 2004 => Scanning File C:\WINDOWS\System32\activeds.dll
Sun Aug 01 11:40:28 2004 => Scanning File C:\WINDOWS\System32\activeds.tlb
Sun Aug 01 11:40:28 2004 => Scanning File C:\WINDOWS\System32\actmovie.exe
Sun Aug 01 11:40:28 2004 => Scanning File C:\WINDOWS\System32\actskin4.ocx
Sun Aug 01 11:40:28 2004 => Scanning File C:\WINDOWS\System32\actxprxy.dll
Sun Aug 01 11:40:28 2004 => Scanning File C:\WINDOWS\System32\admparse.dll
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\adptif.dll
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\adsldp.dll
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\adsldpc.dll
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\adsmsext.dll
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\adsnt.dll
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\advapi32.dll
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\advpack.dll
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\ahui.exe
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\alg.exe
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\alrsvc.dll
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\amcompat.tlb
Sun Aug 01 11:40:29 2004 => Scanning File C:\WINDOWS\System32\amstream.dll
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\ansi.sys
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\apcups.dll
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\append.exe
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\apphelp.dll
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\arp.exe
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\asctrls.ocx
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\asferror.dll
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\asfsipc.dll
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\asycfilt.dll
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\at.exe
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\atkctrs.dll
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\atl.dll
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\atl70.dll
Sun Aug 01 11:40:30 2004 => Scanning File C:\WINDOWS\System32\atmadm.exe
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\atmfd.dll
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\atmlib.dll
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\atmpvcno.dll
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\atrace.dll
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\attrib.exe
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\audiosrv.dll
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\authz.dll
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\autochk.exe
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\autoconv.exe
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\autodisc.dll
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\AUTOEXEC.NT
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\autofmt.exe
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\autolfn.exe
Sun Aug 01 11:40:31 2004 => Scanning File C:\WINDOWS\System32\AVASTSS.scr
Sun Aug 01 11:40:32 2004 => Scanning File C:\WINDOWS\System32\avicap.dll
Sun Aug 01 11:40:32 2004 => Scanning File C:\WINDOWS\System32\avicap32.dll
Sun Aug 01 11:40:32 2004 => Scanning File C:\WINDOWS\System32\avifil32.dll
Sun Aug 01 11:40:32 2004 => Scanning File C:\WINDOWS\System32\avifile.dll
Sun Aug 01 11:40:32 2004 => Scanning File C:\WINDOWS\System32\avmeter.dll
Sun Aug 01 11:40:32 2004 => Scanning File C:\WINDOWS\System32\avtapi.dll
Sun Aug 01 11:40:32 2004 => Scanning File C:\WINDOWS\System32\avwav.dll
Sun Aug 01 11:40:32 2004 => Scanning File C:\WINDOWS\System32\basesrv.dll
Sun Aug 01 11:40:32 2004 => Scanning File C:\WINDOWS\System32\batmeter.dll
Sun Aug 01 11:40:32 2004 => Scanning File C:\WINDOWS\System32\batt.dll
Sun Aug 01 11:40:33 2004 => Scanning File C:\WINDOWS\System32\bdaplgin.ax
Sun Aug 01 11:40:33 2004 => Scanning File C:\WINDOWS\System32\bidispl.dll
Sun Aug 01 11:40:33 2004 => Scanning File C:\WINDOWS\System32\bios1.rom
Sun Aug 01 11:40:33 2004 => Scanning File C:\WINDOWS\System32\bios4.rom
Sun Aug 01 11:40:33 2004 => Scanning File C:\WINDOWS\System32\blackbox.dll
Sun Aug 01 11:40:33 2004 => Scanning File C:\WINDOWS\System32\bootok.exe
Sun Aug 01 11:40:34 2004 => Scanning File C:\WINDOWS\System32\bootvid.dll
Sun Aug 01 11:40:34 2004 => Scanning File C:\WINDOWS\System32\bootvrfy.exe
Sun Aug 01 11:40:34 2004 => Scanning File C:\WINDOWS\System32\bopomofo.uce
Sun Aug 01 11:40:34 2004 => Scanning File C:\WINDOWS\System32\browselc.dll
Sun Aug 01 11:40:34 2004 => Scanning File C:\WINDOWS\System32\browser.dll
Sun Aug 01 11:40:34 2004 => Scanning File C:\WINDOWS\System32\BROWSEUI.DLL
Sun Aug 01 11:40:35 2004 => Scanning File C:\WINDOWS\System32\browsewm.dll
Sun Aug 01 11:40:35 2004 => Scanning File C:\WINDOWS\System32\cabinet.dll
Sun Aug 01 11:40:35 2004 => Scanning File C:\WINDOWS\System32\cabview.dll
Sun Aug 01 11:40:35 2004 => Scanning File C:\WINDOWS\System32\cacls.exe
Sun Aug 01 11:40:35 2004 => Scanning File C:\WINDOWS\System32\calc.exe
Sun Aug 01 11:40:36 2004 => Scanning File C:\WINDOWS\System32\camocx.dll
Sun Aug 01 11:40:36 2004 => Scanning File C:\WINDOWS\System32\capesnpn.dll
Sun Aug 01 11:40:36 2004 => Scanning File C:\WINDOWS\System32\cards.dll
Sun Aug 01 11:40:36 2004 => Scanning File C:\WINDOWS\System32\catsrv.dll
Sun Aug 01 11:40:36 2004 => Scanning File C:\WINDOWS\System32\catsrvps.dll
Sun Aug 01 11:40:36 2004 => Scanning File C:\WINDOWS\System32\catsrvut.dll
Sun Aug 01 11:40:36 2004 => Scanning File C:\WINDOWS\System32\ccfgnt.dll
Sun Aug 01 11:40:36 2004 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sun Aug 01 11:40:36 2004 => Scanning File C:\WINDOWS\System32\cdm.dll
Sun Aug 01 11:40:37 2004 => Scanning File C:\WINDOWS\System32\cdmodem.dll
Sun Aug 01 11:40:37 2004 => Scanning File C:\WINDOWS\System32\cdosys.dll
Sun Aug 01 11:40:37 2004 => Scanning File C:\WINDOWS\System32\cdplayer.exe.manifest
Sun Aug 01 11:40:37 2004 => Scanning File C:\WINDOWS\System32\certcli.dll
Sun Aug 01 11:40:37 2004 => Scanning File C:\WINDOWS\System32\certmgr.dll
Sun Aug 01 11:40:37 2004 => Scanning File C:\WINDOWS\System32\certmgr.msc
Sun Aug 01 11:40:37 2004 => Scanning File C:\WINDOWS\System32\CEWMDM.dll
Sun Aug 01 11:40:37 2004 => Scanning File C:\WINDOWS\System32\cfgbkend.dll
Sun Aug 01 11:40:37 2004 => Scanning File C:\WINDOWS\System32\cfgmgr32.dll
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\charmap.exe
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\chcp.com
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\chkdsk.exe
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\chkntfs.exe
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\ciadmin.dll
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\ciadv.msc
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\cic.dll
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\cidaemon.exe
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\ciodm.dll
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\cisvc.exe
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\ckcnv.exe
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\clb.dll
Sun Aug 01 11:40:38 2004 => Scanning File C:\WINDOWS\System32\clbcatex.dll
Sun Aug 01 11:40:39 2004 => Scanning File C:\WINDOWS\System32\clbcatq.dll
Sun Aug 01 11:40:39 2004 => Scanning File C:\WINDOWS\System32\cleanmgr.exe
Sun Aug 01 11:40:39 2004 => Scanning File C:\WINDOWS\System32\cliconf.chm
Sun Aug 01 11:40:41 2004 => Scanning File C:\WINDOWS\System32\cliconfg.dll
Sun Aug 01 11:40:41 2004 => Scanning File C:\WINDOWS\System32\cliconfg.exe
Sun Aug 01 11:40:41 2004 => Scanning File C:\WINDOWS\System32\cliconfg.rll
Sun Aug 01 11:40:41 2004 => Scanning File C:\WINDOWS\System32\clipbrd.exe
Sun Aug 01 11:40:42 2004 => Scanning File C:\WINDOWS\System32\clipsrv.exe
Sun Aug 01 11:40:42 2004 => Scanning File C:\WINDOWS\System32\clspack.exe
Sun Aug 01 11:40:42 2004 => Scanning File C:\WINDOWS\System32\clusapi.dll
Sun Aug 01 11:40:42 2004 => Scanning File C:\WINDOWS\System32\cmcfg32.dll
Sun Aug 01 11:40:42 2004 => Scanning File C:\WINDOWS\System32\cmd.exe
Sun Aug 01 11:40:42 2004 => Scanning File C:\WINDOWS\System32\cmdial32.dll
Sun Aug 01 11:40:43 2004 => Scanning File C:\WINDOWS\System32\cmdl32.exe
Sun Aug 01 11:40:43 2004 => Scanning File C:\WINDOWS\System32\CMGR32.DLL
Sun Aug 01 11:40:43 2004 => Scanning File C:\WINDOWS\System32\cmmgr32.hlp
Sun Aug 01 11:40:43 2004 => Scanning File C:\WINDOWS\System32\cmmon32.exe
Sun Aug 01 11:40:43 2004 => Scanning File C:\WINDOWS\System32\cmos.ram
Sun Aug 01 11:40:43 2004 => Scanning File C:\WINDOWS\System32\cmpbk32.dll
Sun Aug 01 11:40:43 2004 => Scanning File C:\WINDOWS\System32\cmprops.dll
Sun Aug 01 11:40:43 2004 => Scanning File C:\WINDOWS\System32\cmstp.exe
Sun Aug 01 11:40:44 2004 => Scanning File C:\WINDOWS\System32\cmutil.dll
Sun Aug 01 11:40:44 2004 => Scanning File C:\WINDOWS\System32\cnbjmon.dll
Sun Aug 01 11:40:44 2004 => Scanning File C:\WINDOWS\System32\CNCC360.DLL
Sun Aug 01 11:40:44 2004 => Scanning File C:\WINDOWS\System32\CNCI360.DLL
Sun Aug 01 11:40:44 2004 => Scanning File C:\WINDOWS\System32\cncipst0.dll
Sun Aug 01 11:40:44 2004 => Scanning File C:\WINDOWS\System32\cncisco.dll
Sun Aug 01 11:40:44 2004 => Scanning File C:\WINDOWS\System32\CNCL360.DLL
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\CNCMP51.INI
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\CNCSCM51.DLL
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\CNCSDO51.DLL
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\CNCSIF51.DLL
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\CNCSTR51.DLL
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\CNCSUT51.DLL
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\cnetcfg.dll
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\CNMLMyd.DLL
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\CNMVSyd.DLL
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\cnvfat.dll
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\colbact.dll
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\comaddin.dll
Sun Aug 01 11:40:45 2004 => Scanning File C:\WINDOWS\System32\comcat.dll
Sun Aug 01 11:40:46 2004 => Scanning File C:\WINDOWS\System32\comctl32.dll
Sun Aug 01 11:40:46 2004 => Scanning File C:\WINDOWS\System32\comctl32.ocx
Sun Aug 01 11:40:46 2004 => Scanning File C:\WINDOWS\System32\comdlg32.dll
Sun Aug 01 11:40:46 2004 => Scanning File C:\WINDOWS\System32\COMDLG32.OCX
Sun Aug 01 11:40:46 2004 => Scanning File C:\WINDOWS\System32\comm.drv
Sun Aug 01 11:40:46 2004 => Scanning File C:\WINDOWS\System32\command.com
Sun Aug 01 11:40:46 2004 => Scanning File C:\WINDOWS\System32\commdlg.dll
Sun Aug 01 11:40:46 2004 => Scanning File C:\WINDOWS\System32\comp.exe
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\compact.exe
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\compatUI.dll
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\compmgmt.msc
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\compobj.dll
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\compstui.dll
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\comrepl.dll
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\comres.dll
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\comsnap.dll
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\comsvcs.dll
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\comuid.dll
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\CONFIG.NT
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\CONFIG.TMP
Sun Aug 01 11:40:47 2004 => Scanning File C:\WINDOWS\System32\confmsp.dll
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\conime.exe
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\console.dll
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\control.exe
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\convert.exe
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\corpol.dll
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\country.sys
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\credui.dll
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\crtdll.dll
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\crypt32.dll
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\cryptdlg.dll
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\cryptdll.dll
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\cryptext.dll
Sun Aug 01 11:40:48 2004 => Scanning File C:\WINDOWS\System32\cryptnet.dll
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\cryptsvc.dll
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\cryptui.dll
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\cscdll.dll
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\cscript.exe
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\cscui.dll
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\csrsrv.dll
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\csrss.exe
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\csseqchk.dll
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\ctfmon.exe
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\ctl3d32.dll
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\ctl3dv2.dll
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\ctype.nls
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\CVID32.QTC
Sun Aug 01 11:40:49 2004 => Scanning File C:\WINDOWS\System32\czs_ui.dll
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_037.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_10000.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_10006.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_10007.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_10010.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_10017.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_10029.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_10079.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_10081.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_10082.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_1026.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_1250.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_1251.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_1252.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_1253.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_1254.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_1255.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_1256.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_1257.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_1258.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_20127.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_20261.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_20866.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_20905.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_21866.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_28591.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_28592.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_28593.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\C_28594.NLS
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\C_28595.NLS
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\C_28597.NLS
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_28598.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_28599.nls
Sun Aug 01 11:40:50 2004 => Scanning File C:\WINDOWS\System32\c_28605.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_437.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_500.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_737.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_775.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_850.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_852.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_855.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_857.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_860.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_861.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_863.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_865.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_866.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_869.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_874.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_875.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_932.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_936.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_949.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\c_950.nls
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\d3d8.dll
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\d3d8thk.dll
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\d3d9.dll
Sun Aug 01 11:40:51 2004 => Scanning File C:\WINDOWS\System32\d3dim.dll
Sun Aug 01 11:40:52 2004 => Scanning File C:\WINDOWS\System32\d3dim700.dll
Sun Aug 01 11:40:52 2004 => Scanning File C:\WINDOWS\System32\d3dpmesh.dll
Sun Aug 01 11:40:52 2004 => Scanning File C:\WINDOWS\System32\d3dramp.dll
Sun Aug 01 11:40:52 2004 => Scanning File C:\WINDOWS\System32\d3drm.dll
Sun Aug 01 11:40:52 2004 => Scanning File C:\WINDOWS\System32\d3dxof.dll
Sun Aug 01 11:40:52 2004 => Scanning File C:\WINDOWS\System32\danim.dll
Sun Aug 01 11:40:52 2004 => Scanning File C:\WINDOWS\System32\dataclen.dll
Sun Aug 01 11:40:52 2004 => Scanning File C:\WINDOWS\System32\datime.dll
Sun Aug 01 11:40:52 2004 => Scanning File C:\WINDOWS\System32\davclnt.dll
Sun Aug 01 11:40:53 2004 => Scanning File C:\WINDOWS\System32\daxctle.ocx
Sun Aug 01 11:40:53 2004 => Scanning File C:\WINDOWS\System32\dbgeng.dll
Sun Aug 01 11:40:53 2004 => Scanning File C:\WINDOWS\System32\dbghelp.dll
Sun Aug 01 11:40:53 2004 => Scanning File C:\WINDOWS\System32\dbmsadsn.dll
Sun Aug 01 11:40:53 2004 => Scanning File C:\WINDOWS\System32\dbmsrpcn.dll
Sun Aug 01 11:40:53 2004 => Scanning File C:\WINDOWS\System32\dbmsvinn.dLL
Sun Aug 01 11:40:53 2004 => Scanning File C:\WINDOWS\System32\dbnetlib.dll
Sun Aug 01 11:40:53 2004 => Scanning File C:\WINDOWS\System32\dbnmpntw.dll
Sun Aug 01 11:40:53 2004 => Scanning File C:\WINDOWS\System32\DC210.dll
Sun Aug 01 11:40:53 2004 => Scanning File C:\WINDOWS\System32\DC240.dll
Sun Aug 01 11:40:54 2004 => Scanning File C:\WINDOWS\System32\DC265.dll
Sun Aug 01 11:40:54 2004 => Scanning File C:\WINDOWS\System32\DC280.dll
Sun Aug 01 11:40:54 2004 => Scanning File C:\WINDOWS\System32\Dcache.bin
Sun Aug 01 11:40:54 2004 => Scanning File C:\WINDOWS\System32\DCI32.QTC
Sun Aug 01 11:40:54 2004 => Scanning File C:\WINDOWS\System32\dciman32.dll
Sun Aug 01 11:40:54 2004 => Scanning File C:\WINDOWS\System32\dcomcnfg.exe
Sun Aug 01 11:40:54 2004 => Scanning File C:\WINDOWS\System32\DDAO36.DLL
Sun Aug 01 11:40:54 2004 => Scanning File C:\WINDOWS\System32\ddeml.dll
Sun Aug 01 11:40:54 2004 => Scanning File C:\WINDOWS\System32\ddeshare.exe
Sun Aug 01 11:40:54 2004 => Scanning File C:\WINDOWS\System32\ddraw.dll
Sun Aug 01 11:40:55 2004 => Scanning File C:\WINDOWS\System32\ddrawex.dll
Sun Aug 01 11:40:55 2004 => Scanning File C:\WINDOWS\System32\debug.exe
Sun Aug 01 11:40:55 2004 => Scanning File C:\WINDOWS\System32\defrag.exe
Sun Aug 01 11:40:55 2004 => Scanning File C:\WINDOWS\System32\deimg.dll
Sun Aug 01 11:40:55 2004 => Scanning File C:\WINDOWS\System32\deImg010.dll
Sun Aug 01 11:40:55 2004 => Scanning File C:\WINDOWS\System32\deImg110.dll
Sun Aug 01 11:40:55 2004 => Scanning File C:\WINDOWS\System32\deimg301.dll
Sun Aug 01 11:40:56 2004 => Scanning File C:\WINDOWS\System32\deimg401.dll
Sun Aug 01 11:40:56 2004 => Scanning File C:\WINDOWS\System32\deImg404.dll
Sun Aug 01 11:40:56 2004 => Scanning File C:\WINDOWS\System32\deimg602.dll
Sun Aug 01 11:40:56 2004 => Scanning File C:\WINDOWS\System32\Deimg603.dll
Sun Aug 01 11:40:56 2004 => Scanning File C:\WINDOWS\System32\desk.cpl
Sun Aug 01 11:40:56 2004 => Scanning File C:\WINDOWS\System32\deskadp.dll
Sun Aug 01 11:40:56 2004 => Scanning File C:\WINDOWS\System32\deskmon.dll
Sun Aug 01 11:40:56 2004 => Scanning File C:\WINDOWS\System32\deskperf.dll
Sun Aug 01 11:40:57 2004 => Scanning File C:\WINDOWS\System32\desktop.ini
Sun Aug 01 11:40:57 2004 => Scanning File C:\WINDOWS\System32\devenum(2).dll
Sun Aug 01 11:40:57 2004 => Scanning File C:\WINDOWS\System32\devenum.dll
Sun Aug 01 11:40:57 2004 => Scanning File C:\WINDOWS\System32\devmgmt.msc
Sun Aug 01 11:40:57 2004 => Scanning File C:\WINDOWS\System32\devmgr.dll
Sun Aug 01 11:40:57 2004 => Scanning File C:\WINDOWS\System32\dfrg.msc
Sun Aug 01 11:40:58 2004 => Scanning File C:\WINDOWS\System32\dfrgfat.exe
Sun Aug 01 11:40:58 2004 => Scanning File C:\WINDOWS\System32\dfrgntfs.exe
Sun Aug 01 11:40:58 2004 => Scanning File C:\WINDOWS\System32\dfrgres.dll
Sun Aug 01 11:40:58 2004 => Scanning File C:\WINDOWS\System32\dfrgsnap.dll
Sun Aug 01 11:40:58 2004 => Scanning File C:\WINDOWS\System32\dfrgui.dll
Sun Aug 01 11:40:58 2004 => Scanning File C:\WINDOWS\System32\dfsshlex.dll
Sun Aug 01 11:40:58 2004 => Scanning File C:\WINDOWS\System32\dgnct511.ax
Sun Aug 01 11:40:58 2004 => Scanning File C:\WINDOWS\System32\dgnct511.dll
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\dgnet.dll
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\dgrpsetu.dll
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\dgsetup.dll
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\dhcpcsvc.dll
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\dhcpmon.dll
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\dhcpsapi.dll
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\DHIO32.QTC
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\diactfrm.dll
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\diantz.exe
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\digest.dll
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\Digita.sys
Sun Aug 01 11:40:59 2004 => Scanning File C:\WINDOWS\System32\dimap.dll
Sun Aug 01 11:41:00 2004 => Scanning File C:\WINDOWS\System32\dinput.dll
Sun Aug 01 11:41:00 2004 => Scanning File C:\WINDOWS\System32\dinput8.dll
Sun Aug 01 11:41:00 2004 => Scanning File C:\WINDOWS\System32\diskcomp.com
Sun Aug 01 11:41:00 2004 => Scanning File C:\WINDOWS\System32\diskcopy.com
Sun Aug 01 11:41:00 2004 => Scanning File C:\WINDOWS\System32\diskcopy.dll
Sun Aug 01 11:41:00 2004 => Scanning File C:\WINDOWS\System32\diskmgmt.msc
Sun Aug 01 11:41:00 2004 => Scanning File C:\WINDOWS\System32\diskpart.exe
Sun Aug 01 11:41:00 2004 => Scanning File C:\WINDOWS\System32\diskperf.exe
Sun Aug 01 11:41:00 2004 => Scanning File C:\WINDOWS\System32\dispex.dll
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dllhost.exe
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dllhst3g.exe
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dmadmin.exe
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dmband.dll
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dmcompos.dll
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dmconfig.dll
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dmdlgs.dll
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dmdskmgr.dll
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dmdskres.dll
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dmime.dll
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dmintf.dll
Sun Aug 01 11:41:01 2004 => Scanning File C:\WINDOWS\System32\dmloader.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dmocx.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dmremote.exe
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dmscript.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dmserver.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dmstyle.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dmsynth.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dmusic.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dmutil.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dmview.ocx
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dnsapi.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\dnsrslvr.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\docprop.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sun Aug 01 11:41:02 2004 => Scanning File C:\WINDOWS\System32\doskey.exe
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dosx.exe
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dpcdll.dll
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dplay.dll
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dplaysvr.exe
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dplayx.dll
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dpmodemx.dll
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dpnaddr.dll
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dpnet.dll
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dpnhpast.dll
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dpnhupnp(2).dll
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dpnhupnp.dll
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dpnlobby.dll
Sun Aug 01 11:41:03 2004 => Scanning File C:\WINDOWS\System32\dpnmodem.dll
Sun Aug 01 11:41:04 2004 => Scanning File C:\WINDOWS\System32\dpnsvr.exe
Sun Aug 01 11:41:04 2004 => Scanning File C:\WINDOWS\System32\dpnwsock.dll
Sun Aug 01 11:41:04 2004 => Scanning File C:\WINDOWS\System32\dpserial.dll
Sun Aug 01 11:41:04 2004 => Scanning File C:\WINDOWS\System32\dpvacm.dll
Sun Aug 01 11:41:04 2004 => Scanning File C:\WINDOWS\System32\dpvoice.dll
Sun Aug 01 11:41:04 2004 => Scanning File C:\WINDOWS\System32\dpvsetup.exe
Sun Aug 01 11:41:04 2004 => Scanning File C:\WINDOWS\System32\dpvvox.dll
Sun Aug 01 11:41:04 2004 => Scanning File C:\WINDOWS\System32\dpwsock.dll
Sun Aug 01 11:41:04 2004 => Scanning File C:\WINDOWS\System32\dpwsockx.dll
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\drmclien.dll
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\drmstor.dll
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\drmv2clt.dll
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\drprov.dll
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\drwatson.exe
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\drwtsn32.exe
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\ds16gt.dLL
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\ds32gt.dll
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\dsauth.dll
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\dsdmo.dll
Sun Aug 01 11:41:05 2004 => Scanning File C:\WINDOWS\System32\dsdmoprp.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dskquota.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dskquoui.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dsound.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dsound.vxd
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dsound3d.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dsprop.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dssec.dat
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dssec.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dssenh.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dswave.dll
Sun Aug 01 11:41:06 2004 => Scanning File C:\WINDOWS\System32\dumprep.exe
Sun Aug 01 11:41:07 2004 => Scanning File C:\WINDOWS\System32\duser.dll
Sun Aug 01 11:41:07 2004 => Scanning File C:\WINDOWS\System32\dvdplay.exe
Sun Aug 01 11:41:07 2004 => Scanning File C:\WINDOWS\System32\dvdupgrd.exe
Sun Aug 01 11:41:07 2004 => Scanning File C:\WINDOWS\System32\dwwin.exe
Sun Aug 01 11:41:07 2004 => Scanning File C:\WINDOWS\System32\dx3j.dll
Sun Aug 01 11:41:07 2004 => Scanning File C:\WINDOWS\System32\dx7vb.dll
Sun Aug 01 11:41:07 2004 => Scanning File C:\WINDOWS\System32\dx8vb.dll
Sun Aug 01 11:41:07 2004 => Scanning File C:\WINDOWS\System32\dxdiag.exe
Sun Aug 01 11:41:07 2004 => Scanning File C:\WINDOWS\System32\dxdiagn.dll
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\dxdllreg.exe
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\dxmasf.dll
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\dxmrtp.dll
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\dxtmsft.dll
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\dxtrans.dll
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\edit.com
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\edit.hlp
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\edlin.exe
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\ega.cpi
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\ekfpixaudio.dll
Sun Aug 01 11:41:08 2004 => Scanning File C:\WINDOWS\System32\ekfpixexif.dll
Sun Aug 01 11:41:09 2004 => Scanning File C:\WINDOWS\System32\ekfpixguid.dll
Sun Aug 01 11:41:09 2004 => Scanning File C:\WINDOWS\System32\ekfpixio130.dll
Sun Aug 01 11:41:09 2004 => Scanning File C:\WINDOWS\System32\e
Avatar billede fromsej Praktikant
01. august 2004 - 11:46 #32
Kommer med en ny log, har du tømt dine Temp filer?
Husk Temprary Internet Files, og husk at sætte flueben i "Offlineindhold" når du tømmer dem.
Avatar billede donnac Nybegynder
01. august 2004 - 11:47 #33
Jeps det har jeg gjort.
Avatar billede donnac Nybegynder
01. august 2004 - 11:47 #34
Øhh den log som jeg lige har sendt eller en ny fra Hijackthis ?
Avatar billede donnac Nybegynder
01. august 2004 - 11:49 #35
Skal jeg trykke OK inde i scanner programmet eller hvad ?
Avatar billede fromsej Praktikant
01. august 2004 - 11:55 #36
Log fra Hijackthis.
Ja du skal.
Avatar billede donnac Nybegynder
01. august 2004 - 11:55 #37
Logfile of HijackThis v1.98.0
Scan saved at 11:59:56, on 01-08-2004
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe
C:\Programmer\Fælles filer\ACD Systems\EN\DevDetect.exe
C:\Programmer\Norton AntiVirus\navapsvc.exe
C:\Programmer\Norton AntiVirus\AdvTools\NPROTECT.EXE
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Programmer\Norton AntiVirus\SAVScan.exe
C:\Programmer\Internet Explorer\iexplore.exe
C:\Programmer\Messenger\msmsgs.exe
C:\Documents and Settings\Donna\Skrivebord\HiJackthis\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://donnajohnsen.homepage.dk/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programmer\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmer\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [ccApp] "C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Device Detector] "C:\Programmer\Fælles filer\ACD Systems\EN\DevDetect.exe" -autorun
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\MSMSGS.EXE
Avatar billede donnac Nybegynder
01. august 2004 - 11:57 #38
Skal jeg sætte min Norton antivirus til at scanne ? Og hvornår skal jeg aktivere mit systemgendannelse igen ?
Avatar billede fromsej Praktikant
01. august 2004 - 12:12 #39
Der er intet i den log, men du mangler Servicepack 1 og diverse opdateringer.
http://intern.sdu.dk/it-service/tjenester/ftphotel/ftpindhold/ servicepacks + IE
http://www.microsoft.com/downloads/details.aspx?FamilyId=D531BF00-D7BE-48E3-ABCC-961602BD72C2&displaylang=da - Hotfixes efter SP1 til XP.
Hent og installer dem, XP er alt for sårbar uden.
Vi har skrevet et par artikler om sikkerhed på nettet.
http://www.eksperten.dk/artikler/144
http://www.eksperten.dk/artikler/254
Som minimum anbefaler jeg Spywareguard, Spywareblaster, IE-Spyad og IE Privacy Keeper.
IE Privacy Keeper kan du sætte til at tømme alle temp mapper, så er det problem løst.
Mvh:
Fromsej/Team Spywarefri.
Avatar billede donnac Nybegynder
01. august 2004 - 12:16 #40
Okay. Er lige ved at scanne pceren igen efter virus og derefter vender jeg tilbage med et svar. Er tilbage lige om lidt.
Avatar billede donnac Nybegynder
01. august 2004 - 12:18 #41
Øv den har stadig fundet nogle viruser :o( Hvad gør jeg så ?
Avatar billede fromsej Praktikant
01. august 2004 - 12:21 #42
Hvilke virusser?
Navn og sti til dem gør det en hel del nemmere.
Avatar billede donnac Nybegynder
01. august 2004 - 12:22 #43
Indtil videre har jeg kun fundet ud af hvad den hedder : mxtarget og at den pakker sig selv ud hele tiden. og Den ligger hvis nok: C:/documents and settings/Donna/lokale indstillinger/temp/THI42B6.tmp/mxtarget.cab
Avatar billede fromsej Praktikant
01. august 2004 - 12:31 #44
C:/documents and settings/Donna/lokale indstillinger/temp/ <- Tøm mappen.
Brug Start->Søg til at lede efter Twaintec.dll
Åbn en mappe, klik på Funktioner=>Mappeindstillinger=>Vis.
Fjern flueben ved "Skjul beskyttede operativsystemfiler".
Fjern flueben ved "Skjul filtypenavne for kendte filtyper".
Sæt prik i "Vis skjulte filer og mapper".
Brug af Start->Søg.
Klik på "Alle filer og mapper"
Klik på "Avancerede indstillinger"
Sæt flueben i de tre øverste.
Finder du den skal du kopiere den her linie ind i Start->Kør og klikke OK.
regsvr32 /u c:\windows\twaintec.dll -> Hvor C:\windows\ er stien, er den anderledes skal du skrive den rigtige sti ind.
Samme trick laver du med mxtarget.dll
Avatar billede donnac Nybegynder
01. august 2004 - 13:05 #45
Takker, tror den er væk nu.
Avatar billede fromsej Praktikant
01. august 2004 - 13:19 #46
Velbekomme, tak for point.*S*
Avatar billede Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Loading billede Opret Preview
Kategori
Se alle it-kurser fra Computerworld Kurser
IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.
Se alle it-kurser

Flere spørgsmål fra Virus kategorien

Titel Indlæg Oprettet Seneste aktivitet
Vil skrifte antivirusprogram. Af ErikHg i Virus 22 26/11/202510:42 23/12/202514:29
Er gratis Bitdefender værd at installere ? Af Ikke-ekspert i Virus 8 31/08/202519:08 01/09/202514:18
Ukendte filer på min Pc Af jonpet i Virus 10 03/02/202514:20 04/02/202511:05
mulig ukendt virus Af jackie18 i Virus 3 18/01/202514:07 18/01/202516:39
virus popper op med jævne mellemrum Af Malm i Virus 13 18/01/202511:40 20/01/202517:53
Se alle spørgsmål i kategorien Opret spørgsmål

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Opret Log ind

Du kan også logge ind via nedenstående tjenester

Alle kategorier på Eksperten
Seneste spørgsmål Seneste aktivitet
I går 20:48 Bred buet skærm vs. 2 skærme Af Nanarsi i Skærme
I går 18:07 Tilslut printer til netværk med WPS - hvis WPS slukkes på Router mistes forbindelse. Af Uvanga i Wifi
11/0521:05 Questyle M15i lydforstærker Af valby i Diverse
11/0518:27 Mærkeligt ikon på proceslinjen Af ErikHg i Windows
11/0513:54 Jeg skal have indstaleret Garmin express Af skolevej321 i Andet software
White papers
Flere white papers »