Notifikationer

Markér alle som læst Log ud

rudnicki Nybegynder

27. november 2004 - 16:48 Der er 10 kommentarer og
1 løsning

hjælp til at fjerne gaobot

min svigermors computer er infeceret, der er masser af point at score, så vær søde og hjælp mig.

her er hjt logfilen, håber i kan hjælpe
mvh Nicolai

Logfile of HijackThis v1.98.2
Scan saved at 16:59:43, on 27-11-2004
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\Programmer\Norton AntiVirus\navapsvc.exe
C:\WINNT\system32\regsvc.exe
C:\Programmer\Norton AntiVirus\SAVScan.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\System32\mspmspsv.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\anvshell.exe
C:\WINNT\system32\internat.exe
C:\WINNT\System32\svchost.exe
C:\Programmer\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Mads1\Skrivebord\hjt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://212.10.10.20/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://signon.stofanet.dk/proxy.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programmer\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmer\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [anvshell] anvshell.exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [Lwinst Run Profiler] .\Lwtest.exe /detect /quiet /launch ".\Lwpevntm.exe"
O4 - HKLM\..\Run: [Nt System Kernel] ntsyskrnl.exe
O4 - HKLM\..\Run: [Configuration Loader] msgfix.exe
O4 - HKLM\..\Run: [DumpFaultCheck] C:\WINNT\system32
O4 - HKLM\..\Run: [ccApp] "C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe"
O4 - HKLM\..\RunServices: [Nt System Kernel] ntsyskrnl.exe
O4 - HKLM\..\RunServices: [Configuration Loader] msgfix.exe
O4 - HKLM\..\RunServices: [DumpFaultCheck] C:\WINNT\system32
O4 - HKCU\..\Run: [internat.exe] internat.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Programmer\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Configuration Loader] msgfix.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programmer\Microsoft Office\Office\OSA9.EXE
O12 - Plugin for .mpeg: C:\Programmer\Internet Explorer\PLUGINS\npqtplugin3.dll
O12 - Plugin for .spop: C:\Programmer\Internet Explorer\Plugins\NPDocBox.dll

Synes godt om

tonnybrandt Nybegynder

27. november 2004 - 16:49 #1

jeg kigger lige på den ..

Synes godt om

tonnybrandt Nybegynder

27. november 2004 - 16:54 #2

Hent denne Kaspersky scanner, den skal du bruge senere.
http://www.spywareinfo.dk/download/mwav.exe - Virusscanner.

Kør Hijackthis, scan, sæt flueben ved linierne listet her, luk alle vinduer undtaget Hijackthis, klik på fix checked, slet mapper og filer listet nederst.
Dobbelttjek, så alt kommer med.

O4 - HKLM\..\Run: [Nt System Kernel] ntsyskrnl.exe
O4 - HKLM\..\Run: [Configuration Loader] msgfix.exe
O4 - HKLM\..\Run: [DumpFaultCheck] C:\WINNT\system32
O4 - HKLM\..\RunServices: [Nt System Kernel] ntsyskrnl.exe
O4 - HKLM\..\RunServices: [Configuration Loader] msgfix.exe
O4 - HKLM\..\RunServices: [DumpFaultCheck] C:\WINNT\system32
O4 - HKCU\..\Run: [Configuration Loader] msgfix.exe

Så skal du genstarte pc'en i fejlsikret tilstand. Klik F8 under opstart.

---------------------------------------
Sletning af filer og mapper:
Åbn en mappe, klik på Funktioner=>Mappeindstillinger=>Vis.
Fjern flueben ved "Skjul beskyttede operativsystemfiler".
Fjern flueben ved "Skjul filtypenavne for kendte filtyper".
Sæt prik i "Vis skjulte filer og mapper".
Brug af Start->Søg.
Klik på "Alle filer og mapper"
Klik på "Avancerede indstillinger"
Sæt flueben i de tre øverste.
-------------------
Mapper:
<ingen>

Filer:
C:\WINNT\System32\ntsyskrnl.exe
C:\WINNT\System32\msgfix.exe

---------------------------------------
Så kører du engangsskanneren fra Kaspersky - Aktiver det hele i opsætningen derinde, så den kan skanne alt igennem.
---------------------------------------

Genstart normalt og kom med en ny log til kontrol

Synes godt om

rudnicki Nybegynder

27. november 2004 - 17:31 #3

her kommer der så en ny log

i øvrigt mange tak for hjælpen

Sat Nov 27 17:29:36 2004 => **********************************************************
Sat Nov 27 17:29:36 2004 => eScan AntiVirus Toolkit Utility.
Sat Nov 27 17:29:36 2004 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Sat Nov 27 17:29:36 2004 => **********************************************************
Sat Nov 27 17:29:36 2004 => Version 4.4.7
Sat Nov 27 17:29:36 2004 => Log File: C:\KASPER~1\mwav.log
Sat Nov 27 17:29:36 2004 => Latest Date of files inside MWAV: 18 Nov 2004 03:01:08.
Sat Nov 27 17:29:39 2004 => AV Library Loaded...
Sat Nov 27 17:29:39 2004 => Scanning File C:\KASPER~1\kavss.exe
Sat Nov 27 17:29:39 2004 => Scanning File C:\KASPER~1\Getvlist.exe
Sat Nov 27 17:29:39 2004 => Scanning File C:\KASPER~1\kavss.dll
Sat Nov 27 17:29:39 2004 => Scanning File C:\KASPER~1\kavssdi.dll
Sat Nov 27 17:29:39 2004 => Scanning File C:\KASPER~1\kavssi.dll
Sat Nov 27 17:29:39 2004 => Scanning File C:\KASPER~1\kavvlg.dll
Sat Nov 27 17:29:39 2004 => Scanning File C:\KASPER~1\msvlclnt.dll
Sat Nov 27 17:29:39 2004 => Scanning File C:\KASPER~1\ipc.dll
Sat Nov 27 17:29:39 2004 => Scanning File C:\KASPER~1\main.avi
Sat Nov 27 17:29:39 2004 => Scanning File C:\KASPER~1\virus.avi
Sat Nov 27 17:29:40 2004 => Virus Database Date: 2004/11/18
Sat Nov 27 17:29:40 2004 => Virus Database Count: 109772
Sat Nov 27 17:30:04 2004 => Generating Virus List... getvlist.exe C:\KASPER~1\vlist.txt

Sat Nov 27 17:30:21 2004 => **********************************************************
Sat Nov 27 17:30:21 2004 => eScan AntiVirus Toolkit Utility.
Sat Nov 27 17:30:21 2004 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Sat Nov 27 17:30:21 2004 =>
Sat Nov 27 17:30:21 2004 => Support: support@mwti.net
Sat Nov 27 17:30:21 2004 => Web: http://www.mwti.net
Sat Nov 27 17:30:21 2004 => **********************************************************
Sat Nov 27 17:30:21 2004 => Version 4.4.7
Sat Nov 27 17:30:21 2004 => Log File: C:\KASPER~1\mwav.log
Sat Nov 27 17:30:21 2004 => Latest Date of files inside MWAV: 18 Nov 2004 03:01:08.

Sat Nov 27 17:30:21 2004 => Options Selected by User:
Sat Nov 27 17:30:21 2004 => Memory Check: Enabled
Sat Nov 27 17:30:21 2004 => Registry Check: Enabled
Sat Nov 27 17:30:21 2004 => StartUp Folder Check: Enabled
Sat Nov 27 17:30:21 2004 => System Folder Check: Enabled
Sat Nov 27 17:30:21 2004 => System Area Check: Disabled
Sat Nov 27 17:30:21 2004 => Services Check: Enabled
Sat Nov 27 17:30:21 2004 => Drive Check: Disabled
Sat Nov 27 17:30:21 2004 => All Drive Check :Enabled
Sat Nov 27 17:30:21 2004 => Scanning Type: Scan And Clean
Sat Nov 27 17:30:21 2004 => Folder Check: Enabled
Sat Nov 27 17:30:21 2004 => Folder Selected = C:\WINNT

Sat Nov 27 17:30:22 2004 => ***** Scanning Memory Files *****
Sat Nov 27 17:30:22 2004 => Scanning File C:\WINNT\system32\services.exe
Sat Nov 27 17:30:22 2004 => Scanning File C:\WINNT\system32\lsass.exe
Sat Nov 27 17:30:22 2004 => Scanning File C:\WINNT\system32\svchost.exe
Sat Nov 27 17:30:22 2004 => Scanning File C:\PROGRA~1\FÆLLES~1\SYMANT~1\ccSetMgr.exe
Sat Nov 27 17:30:22 2004 => Scanning File C:\PROGRA~1\FÆLLES~1\SYMANT~1\ccEvtMgr.exe
Sat Nov 27 17:30:22 2004 => Scanning File C:\WINNT\system32\spoolsv.exe
Sat Nov 27 17:30:22 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:22 2004 => Scanning File C:\PROGRA~1\NORTON~1\navapsvc.exe
Sat Nov 27 17:30:22 2004 => Scanning File C:\WINNT\system32\regsvc.exe
Sat Nov 27 17:30:23 2004 => Scanning File C:\PROGRA~1\NORTON~1\SAVScan.exe
Sat Nov 27 17:30:23 2004 => Scanning File C:\WINNT\system32\MSTask.exe
Sat Nov 27 17:30:23 2004 => Scanning File C:\WINNT\system32\stisvc.exe
Sat Nov 27 17:30:23 2004 => Scanning File C:\WINNT\System32\WBEM\WinMgmt.exe
Sat Nov 27 17:30:24 2004 => Scanning File C:\WINNT\System32\mspmspsv.exe
Sat Nov 27 17:30:24 2004 => Scanning File C:\WINNT\system32\svchost.exe
Sat Nov 27 17:30:24 2004 => Scanning File C:\WINNT\Explorer.EXE
Sat Nov 27 17:30:24 2004 => Scanning File C:\WINNT\anvshell.exe
Sat Nov 27 17:30:24 2004 => Scanning File C:\WINNT\system32\internat.exe
Sat Nov 27 17:30:24 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:24 2004 => Scanning File C:\PROGRA~1\INTERN~1\IEXPLORE.EXE
Sat Nov 27 17:30:25 2004 => Scanning File C:\Kaspersky\mwavscan.com
Sat Nov 27 17:30:25 2004 => Scanning File C:\Kaspersky\kavss.exe

Sat Nov 27 17:30:25 2004 => ***** Scanning Registry Files *****

Sat Nov 27 17:30:25 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Sat Nov 27 17:30:25 2004 => Scanning File C:\WINNT\system32\NETSHELL.dll
Sat Nov 27 17:30:25 2004 => ERROR!!! Invalid Entry WebCheck = C:\WINNT\system32\webchecks.dll. Removing it.

Sat Nov 27 17:30:25 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
Sat Nov 27 17:30:25 2004 => {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} = C:\Programmer\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
Sat Nov 27 17:30:25 2004 => Scanning File C:\PROGRA~1\Adobe\ACROBA~2.0\Reader\ActiveX\ACROIE~1.OCX
Sat Nov 27 17:30:25 2004 => {BDF3E430-B101-42AD-A544-FADC6B084872} = C:\Programmer\Norton AntiVirus\NavShExt.dll
Sat Nov 27 17:30:25 2004 => Scanning File C:\PROGRA~1\NORTON~1\NavShExt.dll

Sat Nov 27 17:30:25 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Sat Nov 27 17:30:25 2004 => Scanning File C:\WINNT\Explorer.exe
Sat Nov 27 17:30:25 2004 => Scanning File C:\WINNT\system32\userinit.exe

Sat Nov 27 17:30:26 2004 => Scanning HKCU\Control Panel\Desktop

Sat Nov 27 17:30:26 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sat Nov 27 17:30:26 2004 => Scanning File C:\WINNT\system32\mobsync.exe
Sat Nov 27 17:30:26 2004 => Scanning File C:\WINNT\anvshell.exe
Sat Nov 27 17:30:26 2004 => Scanning File C:\WINNT\loadqm.exe
Sat Nov 27 17:30:26 2004 => ERROR!!! Invalid Entry Lwinst Run Profiler = .\Lwtest.exe /detect /quiet /launch ".\Lwpevntm.exe". Removing it.

Sat Nov 27 17:30:26 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Sat Nov 27 17:30:26 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Sat Nov 27 17:30:26 2004 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Sat Nov 27 17:30:26 2004 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sat Nov 27 17:30:26 2004 => Scanning File C:\WINNT\system32\internat.exe
Sat Nov 27 17:30:26 2004 => ERROR!!! Invalid Entry msnmsgr = "C:\Programmer\MSN Messenger\MsnMsgr.Exe" /background. Removing it.

Sat Nov 27 17:30:26 2004 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Sat Nov 27 17:30:26 2004 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Sat Nov 27 17:30:26 2004 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Sat Nov 27 17:30:26 2004 => Scanning HKCR\txtfile\shell\open\command

Sat Nov 27 17:30:26 2004 => Scanning HKCR\comfile\shell\open\command

Sat Nov 27 17:30:26 2004 => Scanning HKCR\exefile\shell\open\command

Sat Nov 27 17:30:26 2004 => Scanning HKCR\dllfile\shell\open\command

Sat Nov 27 17:30:26 2004 => Scanning HKCR\batfile\shell\open\command

Sat Nov 27 17:30:26 2004 => Scanning HKCR\piffile\shell\open\command

Sat Nov 27 17:30:26 2004 => Scanning HKCR\scrfile\shell\open\command

Sat Nov 27 17:30:27 2004 => Scanning HKCR\scrfile\shell\config\command
Sat Nov 27 17:30:27 2004 => Replacing Registry Value

Sat Nov 27 17:30:27 2004 => Scanning HKCR\regfile\shell\open\command

Sat Nov 27 17:30:27 2004 => ***** Scanning StartUp Folders *****

Sat Nov 27 17:30:27 2004 => ***** Scanning C:\Documents and Settings\Mads1\Menuen Start\Programmer\Start Folder *****
Sat Nov 27 17:30:27 2004 => Scanning Folder: C:\Documents and Settings\Mads1\Menuen Start\Programmer\Start\*.*

Sat Nov 27 17:30:27 2004 => ***** Scanning C:\Documents and Settings\All Users\Menuen Start\Programmer\Start Folder *****
Sat Nov 27 17:30:27 2004 => Scanning Folder: C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\*.*
Sat Nov 27 17:30:27 2004 => Scanning File C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\Microsoft Office.lnk

Sat Nov 27 17:30:27 2004 => ***** Scanning Service Files *****
Sat Nov 27 17:30:27 2004 => Scanning HKLM\SYSTEM\CurrentControlSet\Services
Sat Nov 27 17:30:27 2004 => Scanning File C:\WINNT\system32\DRIVERS\ACPI.sys
Sat Nov 27 17:30:27 2004 => Scanning File C:\WINNT\System32\drivers\afd.sys
Sat Nov 27 17:30:27 2004 => Scanning File C:\WINNT\System32\services.exe
Sat Nov 27 17:30:27 2004 => Scanning File C:\WINNT\system32\DRIVERS\anvioctl.sys
Sat Nov 27 17:30:28 2004 => Scanning File C:\WINNT\system32\DRIVERS\anvosdnt.sys
Sat Nov 27 17:30:28 2004 => Scanning File C:\WINNT\system32\services.exe
Sat Nov 27 17:30:28 2004 => Scanning File C:\WINNT\system32\DRIVERS\asyncmac.sys
Sat Nov 27 17:30:28 2004 => Scanning File C:\WINNT\system32\DRIVERS\atapi.sys
Sat Nov 27 17:30:29 2004 => Scanning File C:\WINNT\system32\DRIVERS\atmarpc.sys
Sat Nov 27 17:30:29 2004 => Scanning File C:\WINNT\system32\DRIVERS\audstub.sys
Sat Nov 27 17:30:29 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:29 2004 => Scanning File C:\WINNT\System32\services.exe
Sat Nov 27 17:30:29 2004 => Scanning File C:\WINNT\system32\DRIVERS\CCDECODE.sys
Sat Nov 27 17:30:29 2004 => Scanning File C:\PROGRA~1\FÆLLES~1\SYMANT~1\ccEvtMgr.exe
Sat Nov 27 17:30:30 2004 => Scanning File C:\PROGRA~1\FÆLLES~1\SYMANT~1\ccPwdSvc.exe
Sat Nov 27 17:30:30 2004 => Scanning File C:\PROGRA~1\FÆLLES~1\SYMANT~1\ccSetMgr.exe
Sat Nov 27 17:30:30 2004 => Scanning File C:\WINNT\system32\DRIVERS\cdrom.sys
Sat Nov 27 17:30:30 2004 => Scanning File C:\WINNT\System32\cisvc.exe
Sat Nov 27 17:30:30 2004 => Scanning File C:\WINNT\system32\clipsrv.exe
Sat Nov 27 17:30:30 2004 => Scanning File C:\WINNT\System32\services.exe
Sat Nov 27 17:30:30 2004 => Scanning File C:\WINNT\system32\DRIVERS\disk.sys
Sat Nov 27 17:30:30 2004 => Scanning File C:\WINNT\System32\dmadmin.exe
Sat Nov 27 17:30:30 2004 => Scanning File C:\WINNT\system32\drivers\dmboot.sys
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\system32\drivers\dmio.sys
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\system32\drivers\dmload.sys
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\System32\services.exe
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\system32\drivers\DMusic.sys
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\System32\services.exe
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\system32\services.exe
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\system32\faxsvc.exe
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\system32\DRIVERS\fdc.sys
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\system32\DRIVERS\flpydisk.sys
Sat Nov 27 17:30:31 2004 => Scanning File C:\WINNT\system32\DRIVERS\ftdisk.sys
Sat Nov 27 17:30:32 2004 => Scanning File C:\WINNT\system32\DRIVERS\gameenum.sys
Sat Nov 27 17:30:32 2004 => Scanning File C:\WINNT\system32\DRIVERS\msgpc.sys
Sat Nov 27 17:30:32 2004 => Scanning File C:\WINNT\system32\DRIVERS\hidusb.sys
Sat Nov 27 17:30:32 2004 => Scanning File C:\WINNT\system32\DRIVERS\i8042prt.sys
Sat Nov 27 17:30:32 2004 => Scanning File C:\WINNT\system32\DRIVERS\ipfltdrv.sys
Sat Nov 27 17:30:32 2004 => Scanning File C:\WINNT\system32\DRIVERS\ipinip.sys
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\system32\DRIVERS\ipnat.sys
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\system32\DRIVERS\ipsec.sys
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\system32\DRIVERS\irenum.sys
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\system32\DRIVERS\isapnp.sys
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\system32\DRIVERS\kbdclass.sys
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\system32\drivers\kmixer.sys
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\System32\services.exe
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\System32\services.exe
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\System32\services.exe
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\system32\DRIVERS\LwUsbHid.sys
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\System32\services.exe
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\System32\mnmsrvc.exe
Sat Nov 27 17:30:33 2004 => Scanning File C:\WINNT\system32\DRIVERS\mouclass.sys
Sat Nov 27 17:30:34 2004 => Scanning File C:\WINNT\system32\DRIVERS\mouhid.sys
Sat Nov 27 17:30:34 2004 => Scanning File C:\WINNT\system32\DRIVERS\MPE.sys
Sat Nov 27 17:30:34 2004 => Scanning File C:\WINNT\system32\DRIVERS\mrxsmb.sys
Sat Nov 27 17:30:34 2004 => Scanning File C:\WINNT\System32\msdtc.exe
Sat Nov 27 17:30:34 2004 => Scanning File C:\WINNT\System32\MsiExec.exe
Sat Nov 27 17:30:34 2004 => Scanning File C:\WINNT\system32\drivers\MSKSSRV.sys
Sat Nov 27 17:30:34 2004 => Scanning File C:\WINNT\system32\drivers\MSPCLOCK.sys
Sat Nov 27 17:30:34 2004 => Scanning File C:\WINNT\system32\drivers\MSPQM.sys
Sat Nov 27 17:30:34 2004 => Scanning File C:\WINNT\system32\drivers\MSTEE.sys
Sat Nov 27 17:30:34 2004 => Scanning File C:\WINNT\system32\DRIVERS\NABTSFEC.sys
Sat Nov 27 17:30:35 2004 => Scanning File C:\PROGRA~1\NORTON~1\navapsvc.exe
Sat Nov 27 17:30:35 2004 => Scanning File C:\PROGRA~1\FÆLLES~1\SYMANT~1\VIRUSD~1\20041027.018\NAVENG.SYS
Sat Nov 27 17:30:35 2004 => Scanning File C:\PROGRA~1\FÆLLES~1\SYMANT~1\VIRUSD~1\20041027.018\NAVEX15.SYS
Sat Nov 27 17:30:35 2004 => Scanning File C:\WINNT\system32\DRIVERS\ndistapi.sys
Sat Nov 27 17:30:35 2004 => Scanning File C:\WINNT\system32\DRIVERS\ndisuio.sys
Sat Nov 27 17:30:35 2004 => Scanning File C:\WINNT\system32\DRIVERS\ndiswan.sys
Sat Nov 27 17:30:35 2004 => Scanning File C:\WINNT\system32\DRIVERS\netbios.sys
Sat Nov 27 17:30:35 2004 => Scanning File C:\WINNT\system32\DRIVERS\netbt.sys
Sat Nov 27 17:30:35 2004 => Scanning File C:\WINNT\system32\netdde.exe
Sat Nov 27 17:30:35 2004 => Scanning File C:\WINNT\system32\netdde.exe
Sat Nov 27 17:30:36 2004 => Scanning File C:\WINNT\system32\drivers\netdtect.sys
Sat Nov 27 17:30:36 2004 => Scanning File C:\WINNT\System32\lsass.exe
Sat Nov 27 17:30:36 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:36 2004 => Scanning File C:\WINNT\System32\lsass.exe
Sat Nov 27 17:30:36 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:36 2004 => Scanning File C:\WINNT\system32\ntsyskrnl.exe
Sat Nov 27 17:30:36 2004 => ERROR!!! ScanFile Fails...
Sat Nov 27 17:30:36 2004 => Scanning File C:\WINNT\system32\DRIVERS\anv_mini.sys
Sat Nov 27 17:30:36 2004 => Scanning File C:\WINNT\system32\services.exe
Sat Nov 27 17:30:36 2004 => Scanning File C:\WINNT\system32\DRIVERS\nwlnkflt.sys
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\DRIVERS\nwlnkfwd.sys
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\DRIVERS\nwlnkipx.sys
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\DRIVERS\nwlnknb.sys
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\DRIVERS\nwlnkspx.sys
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\DRIVERS\nwrdr.sys
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\DRIVERS\parallel.sys
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\DRIVERS\parport.sys
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\DRIVERS\pci.sys
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\DRIVERS\pciide.sys
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\services.exe
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\System32\lsass.exe
Sat Nov 27 17:30:37 2004 => Scanning File C:\WINNT\system32\DRIVERS\raspptp.sys
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\system32\services.exe
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\system32\DRIVERS\ptilink.sys
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\system32\DRIVERS\rasacd.sys
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\system32\DRIVERS\rasl2tp.sys
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\system32\DRIVERS\raspti.sys
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\system32\drivers\RCA.sys
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\system32\DRIVERS\rdbss.sys
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\system32\DRIVERS\redbook.sys
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\system32\regsvc.exe
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\System32\locator.exe
Sat Nov 27 17:30:38 2004 => Scanning File C:\WINNT\system32\svchost.exe
Sat Nov 27 17:30:39 2004 => Scanning File C:\WINNT\System32\rsvp.exe
Sat Nov 27 17:30:39 2004 => Scanning File C:\WINNT\system32\DRIVERS\RTL8139.SYS
Sat Nov 27 17:30:39 2004 => Scanning File C:\WINNT\system32\lsass.exe
Sat Nov 27 17:30:39 2004 => Scanning File C:\PROGRA~1\NORTON~1\SAVRT.SYS
Sat Nov 27 17:30:39 2004 => Scanning File C:\PROGRA~1\NORTON~1\SAVRTPEL.SYS
Sat Nov 27 17:30:39 2004 => Scanning File C:\PROGRA~1\NORTON~1\SAVScan.exe
Sat Nov 27 17:30:39 2004 => Scanning File C:\PROGRA~1\FÆLLES~1\SYMANT~1\SCRIPT~1\SBServ.exe
Sat Nov 27 17:30:39 2004 => Scanning File C:\WINNT\System32\SCardSvr.exe
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\System32\SCardSvr.exe
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\system32\MSTask.exe
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\SYSTEM32\DRIVERS\SECDRV.SYS
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\system32\services.exe
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\system32\svchost.exe
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\system32\DRIVERS\serenum.sys
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\system32\DRIVERS\serial.sys
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\system32\DRIVERS\SLIP.sys
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\system32\spoolsv.exe
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\system32\DRIVERS\srv.sys
Sat Nov 27 17:30:40 2004 => Scanning File C:\WINNT\system32\stisvc.exe
Sat Nov 27 17:30:41 2004 => Scanning File C:\WINNT\system32\DRIVERS\StreamIP.sys
Sat Nov 27 17:30:41 2004 => Scanning File C:\WINNT\system32\DRIVERS\swenum.sys
Sat Nov 27 17:30:41 2004 => Scanning File C:\WINNT\system32\drivers\swmidi.sys
Sat Nov 27 17:30:41 2004 => Scanning File C:\PROGRAMMER\SYMANTEC\SYMEVENT.SYS
Sat Nov 27 17:30:41 2004 => Scanning File C:\WINNT\SYSTEM32\DRIVERS\SYMREDRV.SYS
Sat Nov 27 17:30:41 2004 => Scanning File C:\WINNT\SYSTEM32\DRIVERS\SYMTDI.SYS
Sat Nov 27 17:30:41 2004 => Scanning File C:\WINNT\system32\drivers\sysaudio.sys
Sat Nov 27 17:30:41 2004 => Scanning File C:\WINNT\system32\smlogsvc.exe
Sat Nov 27 17:30:41 2004 => Scanning File C:\WINNT\System32\svchost.exe
Sat Nov 27 17:30:41 2004 => Scanning File C:\WINNT\system32\DRIVERS\tcpip.sys
Sat Nov 27 17:30:42 2004 => Scanning File C:\WINNT\system32\tlntsvr.exe
Sat Nov 27 17:30:42 2004 => Scanning File C:\WINNT\system32\services.exe
Sat Nov 27 17:30:42 2004 => Scanning File C:\WINNT\system32\DRIVERS\uhcd.sys
Sat Nov 27 17:30:42 2004 => Scanning File C:\WINNT\system32\DRIVERS\update.sys
Sat Nov 27 17:30:42 2004 => Scanning File C:\WINNT\System32\ups.exe
Sat Nov 27 17:30:42 2004 => Scanning File C:\WINNT\system32\DRIVERS\usbhub.sys
Sat Nov 27 17:30:42 2004 => Scanning File C:\WINNT\system32\DRIVERS\usbscan.sys
Sat Nov 27 17:30:42 2004 => Scanning File C:\WINNT\system32\DRIVERS\USBSTOR.SYS
Sat Nov 27 17:30:42 2004 => Scanning File C:\WINNT\System32\UtilMan.exe
Sat Nov 27 17:30:43 2004 => Scanning File C:\WINNT\System32\drivers\vga.sys
Sat Nov 27 17:30:43 2004 => Scanning File C:\WINNT\system32\drivers\viaudio.sys
Sat Nov 27 17:30:43 2004 => Scanning File C:\WINNT\System32\services.exe
Sat Nov 27 17:30:43 2004 => Scanning File C:\WINNT\system32\DRIVERS\wanarp.sys
Sat Nov 27 17:30:43 2004 => Scanning File C:\WINNT\system32\drivers\wdmaud.sys
Sat Nov 27 17:30:43 2004 => Scanning File C:\WINNT\System32\WBEM\WinMgmt.exe
Sat Nov 27 17:30:43 2004 => Scanning File C:\WINNT\System32\mspmspsv.exe
Sat Nov 27 17:30:43 2004 => Scanning File C:\WINNT\system32\Services.exe
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\system32\DRIVERS\WSTCODEC.SYS
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\system32\svchost.exe
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\System32\svchost.exe

Sat Nov 27 17:30:44 2004 => ***** Scanning System32 Folders *****
Sat Nov 27 17:30:44 2004 => Scanning C:\WINNT Directory
Sat Nov 27 17:30:44 2004 => Scanning Folder: C:\WINNT\*.*
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\_default.pif
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\discover.exe
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\explorer.scf [**]
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\winnt.bmp [**]
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\msdfmap.ini [**]
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\winhlp32.exe
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\system.ini [**]
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\twain.dll
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\twain_32.dll
Sat Nov 27 17:30:44 2004 => Scanning File C:\WINNT\twunk_16.exe
Sat Nov 27 17:30:45 2004 => Scanning File C:\WINNT\twunk_32.exe
Sat Nov 27 17:30:45 2004 => Scanning File C:\WINNT\upwizun.exe
Sat Nov 27 17:30:45 2004 => Scanning File C:\WINNT\welcome.exe
Sat Nov 27 17:30:45 2004 => Scanning File C:\WINNT\welcome.ini [**]
Sat Nov 27 17:30:45 2004 => Scanning File C:\WINNT\win.ini [**]
Sat Nov 27 17:30:45 2004 => Scanning File C:\WINNT\winhelp.exe
Sat Nov 27 17:30:45 2004 => Scanning File C:\WINNT\winnt256.bmp [**]
Sat Nov 27 17:30:45 2004 => Scanning File C:\WINNT\winrep.exe
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\unin0406.exe
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\msmqprop.log [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\clock.avi [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\vmmreg32.dll
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\setupact.log [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\setuperr.log [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\setuplog.txt [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\KB837001.log [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\KB828028.log [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\imsins.BAK [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\KPCMS.INI [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\Windows Update.log [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\Active Setup Log.BAK [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\Active Setup Log.txt [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\svcpack.log [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\imsins.log [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\SET38.tmp [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\smdat32a.sys [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\sptsupd.log [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\testfile [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\KB824105.log [**]
Sat Nov 27 17:30:46 2004 => Scanning File C:\WINNT\Q330994.exe
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\Q329553.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\Q329170.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\Q811493.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\Q816093.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\Q815021.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\KB841356.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\Q814033.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\NOTEPAD.EXE
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\Q811114.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\TASKMAN.EXE
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\Q327696.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\delttsul.exe
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\ODBCINST.INI [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\iis5.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\comsetup.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\Q324096.log [**]
Sat Nov 27 17:30:47 2004 => Scanning File C:\WINNT\ockodak.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\ocgen.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\mmdet.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\ModemDet.txt [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q329115.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q326830.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Blå silke 16.bmp [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q324380.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q323255.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Sæbebobler.bmp [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\regedit.exe
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q810649.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Kaffebønne.bmp [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q328310.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q331953.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Fjerstruktur.bmp [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q810833.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\dahotfix.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\På fisketur.bmp [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q329834.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\wmsetup.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Grønne sten.bmp [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q326886.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Q811630.log [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Prærievind.bmp [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\Rhododendron.bmp [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\ODBC.INI [**]
Sat Nov 27 17:30:48 2004 => Scanning File C:\WINNT\POCE98.DLL
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\Floden Sumida.bmp [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\POCELANG.DLL
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\KB823559.log [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\Santa Fe Stucco.bmp [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\WMSysPrx.prx [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\Zapotec.bmp [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\vb.ini [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\vbaddin.ini [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\COM+.log [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\KB822679.log [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\folder.htt
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\desktop.ini [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\OEWABLog.txt [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\control.ini [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\SchedLgU.Txt [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\Sti_Trace.log [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\REGLOCS.OLD [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\KB817606.log [**]
Sat Nov 27 17:30:49 2004 => Scanning File C:\WINNT\anvunis.exe
Sat Nov 27 17:30:50 2004 => Scanning File C:\WINNT\KB823980.log [**]
Sat Nov 27 17:30:50 2004 => Scanning File C:\WINNT\anvmsg.ini [**]
Sat Nov 27 17:30:50 2004 => Scanning File C:\WINNT\KB819696.log [**]
Sat Nov 27 17:30:50 2004 => Scanning File C:\WINNT\anvshell.exe
Sat Nov 27 17:30:50 2004 => Scanning File C:\WINNT\KB842526.log [**]
Sat Nov 27 17:30:50 2004 => Scanning File C:\WINNT\anvshell.ini [**]
Sat Nov 27 17:30:50 2004 => Scanning File C:\WINNT\VrViewer.exe
Sat Nov 27 17:30:50 2004 => Scanning File C:\WINNT\explorer.exe
Sat Nov 27 17:30:50 2004 => Scanning File C:\WINNT\anv_kb.exe
Sat Nov 27 17:30:50 2004 => Scanning File C:\WINNT\IsUninst.exe
Sat Nov 27 17:30:51 2004 => Scanning File C:\WINNT\hh.exe
Sat Nov 27 17:30:51 2004 => Scanning File C:\WINNT\Q828026.log [**]
Sat Nov 27 17:30:51 2004 => Scanning File C:\WINNT\ShellIconCache [**]
Sat Nov 27 17:30:51 2004 => Scanning File C:\WINNT\KB841873.log [**]
Sat Nov 27 17:30:51 2004 => Scanning File C:\WINNT\unvise32qt.exe
Sat Nov 27 17:30:51 2004 => Scanning File C:\WINNT\KB824146.log [**]
Sat Nov 27 17:30:51 2004 => Scanning File C:\WINNT\KB828749.log [**]
Sat Nov 27 17:30:51 2004 => Scanning File C:\WINNT\IsUn0406.exe
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\? [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\KB828035.log [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\KB825119.log [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\KB826232.log [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\KB823182.log [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\KB824141.log [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\Directx.log [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\KB841872.log [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\KB329115.log [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\KB828741.log [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\winxps.exe
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\php.ini [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\pcconfig.dat [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\xpsINI.dat [**]
Sat Nov 27 17:30:52 2004 => Scanning File C:\WINNT\SexTV.exe
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\KB835732.log [**]
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\muninst.exe
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\oeuninst.exe
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\KB839645.log [**]
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\LUINSTALL.LOG [**]
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\ieuninst.exe
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\KB840315.log [**]
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\KB840987.log [**]
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\vgxuninst.exe
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\setupapi.log.0.old [**]
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\KB834707-IE6SP1-20040929.091901.log [**]
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\KB841533.log [**]
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\frontpg.ini [**]
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\pws.INI [**]
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\loadqm.exe
Sat Nov 27 17:30:53 2004 => Scanning File C:\WINNT\UNISTB32.EXE
Sat Nov 27 17:30:54 2004 => Scanning C:\WINNT\system32 Directory
Sat Nov 27 17:30:54 2004 => Scanning Folder: C:\WINNT\system32\*.*
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\12520437.cpx [**]
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\12520850.cpx [**]
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\aaaamon.dll
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\acelpdec.ax
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\acledit.dll
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\spupdsvc.log [**]
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\acsetupc.dll
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\acsmib.dll
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\spmsg.dll
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\MSVCRTD.DLL
Sat Nov 27 17:30:54 2004 => Scanning File C:\WINNT\system32\actmovie.exe
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\kbdfo.dll
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\Kanaler.scr
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\spupdw2k.log [**]
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\admparse.dll
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\adptif.dll
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\nscompat.tlb
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\MSGSVC.DLL
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\adsnt.dll
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\adsnw.dll
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\appmgmts.dll
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\appmgr.dll
Sat Nov 27 17:30:55 2004 => *** File C:\WINNT\system32\wmv9vcm.dll having Size Restriction ***
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\wmv9vcm.dll [**]
Sat Nov 27 17:30:55 2004 => Scanning File C:\WINNT\system32\PSEXESVC.EXE
Sat Nov 27 17:30:56 2004 => Scanning File C:\WINNT\system32\alrsvc.dll
Sat Nov 27 17:30:56 2004 => Scanning File C:\WINNT\system32\devenum.dll
Sat Nov 27 17:30:56 2004 => Scanning File C:\WINNT\system32\ansi.sys
Sat Nov 27 17:30:56 2004 => Scanning File C:\WINNT\system32\apcups.dll
Sat Nov 27 17:30:56 2004 => Scanning File C:\WINNT\system32\append.exe
Sat Nov 27 17:30:56 2004 => Scanning File C:\WINNT\system32\hid.dll
Sat Nov 27 17:30:56 2004 => Scanning File C:\WINNT\system32\appwiz.cpl
Sat Nov 27 17:30:56 2004 => Scanning File C:\WINNT\system32\ASYCFILT.DLL
Sat Nov 27 17:30:56 2004 => Scanning File C:\WINNT\system32\arp.exe
Sat Nov 27 17:30:56 2004 => Scanning File C:\WINNT\system32\amcompat.tlb
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\asfsipc.dll
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\atkctrs.dll
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\umandlg.dll
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\atl.dll
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\MSOEACCT.DLL
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\atmadm.exe
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\autofmt.exe
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\autolfn.exe
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\attrib.exe
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\LOCATOR.EXE
Sat Nov 27 17:30:57 2004 => *** File C:\WINNT\system32\FM20.DLL having Size Restriction ***
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\FM20.DLL [**]
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\avifil32.dll
Sat Nov 27 17:30:57 2004 => Scanning File C:\WINNT\system32\d3dim700.dll
Sat Nov 27 17:30:58 2004 => Scanning File C:\WINNT\system32\avicap.dll
Sat Nov 27 17:30:58 2004 => Scanning File C:\WINNT\system32\avicap32.dll
Sat Nov 27 17:30:58 2004 => Scanning File C:\WINNT\system32\avtapi.dll
Sat Nov 27 17:30:58 2004 => Scanning File C:\WINNT\system32\avifile.dll
Sat Nov 27 17:30:58 2004 => Scanning File C:\WINNT\system32\basenote.cov [**]
Sat Nov 27 17:30:58 2004 => Scanning File C:\WINNT\system32\WININET.DLL
Sat Nov 27 17:30:58 2004 => Scanning File C:\WINNT\system32\sptsupd.exe
Sat Nov 27 17:30:58 2004 => Scanning File C:\WINNT\system32\bios1.rom [**]
Sat Nov 27 17:30:58 2004 => Scanning File C:\WINNT\system32\bios4.rom [**]
Sat Nov 27 17:30:58 2004 => Scanning File C:\WINNT\system32\bootok.exe
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\bootvid.dll
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\bootvrfy.exe
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\br549.dll
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\MSRTEDIT.DLL
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\msvcp70.dll
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\MGMTAPI.DLL
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_037.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_10000.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_10079.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_1026.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_1250.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_1251.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_1252.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_1253.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_1254.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_1255.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_1256.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_1257.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_1258.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_20261.nls [**]
Sat Nov 27 17:30:59 2004 => Scanning File C:\WINNT\system32\c_20866.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_20905.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_21866.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_28591.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_28592.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_28593.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_28598.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_28605.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_437.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_500.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_775.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_850.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_860.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_861.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_863.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_865.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_874.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_932.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_936.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_949.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\c_950.nls [**]
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\cabinet.dll
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\cabview.dll
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\SHLWAPI.DLL
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\catsrvut.dll
Sat Nov 27 17:31:00 2004 => Scanning File C:\WINNT\system32\cards.dll
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\ccfgnt.dll
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\MSRDO20.DLL
Sat Nov 27 17:31:01 2004 => *** File C:\WINNT\system32\cdosys.dll having Size Restriction ***
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\cdosys.dll [**]
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\certcli.dll
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\certmgr.dll
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\CHKNTFS.EXE
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\ciadmin.dll
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\certmgr.msc [**]
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\cfgmgr32.dll
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\kbdfr.dll
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\Vis kanaler.scf [**]
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\chcp.com
Sat Nov 27 17:31:01 2004 => Scanning File C:\WINNT\system32\itircl.dll
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\cipher.exe
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\odbccp32.dll
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\ciadv.msc [**]
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\cic.dll
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\cidaemon.exe
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\ciodm.dll
Sat Nov 27 17:31:02 2004 => *** File C:\WINNT\system32\SHDOCVW.DLL having Size Restriction ***
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\SHDOCVW.DLL [**]
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\cisvc.exe
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\ckcnv.exe
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\clb.dll
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\cleanmgr.exe
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\cliconf.hlp [**]
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\cliconfg.exe
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\clipsrv.exe
Sat Nov 27 17:31:02 2004 => Scanning File C:\WINNT\system32\clspack.exe
Sat Nov 27 17:31:03 2004 => Scanning File C:\WINNT\system32\INETCOMM.DLL
Sat Nov 27 17:31:03 2004 => Scanning File C:\WINNT\system32\cmnquery.dll
Sat Nov 27 17:31:03 2004 => Scanning File C:\WINNT\system32\cmcfg32.dll
Sat Nov 27 17:31:03 2004 => Scanning File C:\WINNT\system32\FM20ENU.DLL
Sat Nov 27 17:31:03 2004 => Scanning File C:\WINNT\system32\cmprops.dll
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\cmdl32.exe
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\cmmgr32.exe
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\cmmgr32.hlp [**]
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\cmmon32.exe
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\cmstp.exe
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\cmos.ram [**]
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\cmpbk32.dll
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\cmutil.dll
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\comrepl.dll
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\COMCAT.DLL
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\cnbjmon.dll
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\cnetcfg.dll
Sat Nov 27 17:31:04 2004 => Scanning File C:\WINNT\system32\NSLOOKUP.EXE
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\command.com
Sat Nov 27 17:31:05 2004 => *** File C:\WINNT\system32\NTBACKUP.EXE having Size Restriction ***
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\NTBACKUP.EXE [**]
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\MSIDENT.DLL
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\comm.drv
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\compobj.dll
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\commdlg.dll
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\comp.exe
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\compact.exe
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\compmgmt.msc [**]
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\sqlsrv32.dll
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\compstui.dll
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\control.exe
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\wmiprvse.dll
Sat Nov 27 17:31:05 2004 => ERROR!!! ScanFile fails for C:\WINNT\system32\wmiprvse.dll
Sat Nov 27 17:31:05 2004 => Scanning File C:\WINNT\system32\console.dll
Sat Nov 27 17:31:06 2004 => Scanning File C:\WINNT\system32\WINSRV.DLL
Sat Nov 27 17:31:06 2004 => Scanning File C:\WINNT\system32\NTDOS.SYS
Sat Nov 27 17:31:06 2004 => Scanning File C:\WINNT\system32\odbc32.dll
Sat Nov 27 17:31:06 2004 => Scanning File C:\WINNT\system32\EXSEC32.DLL
Sat Nov 27 17:31:06 2004 => Scanning File C:\WINNT\system32\crtdll.dll
Sat Nov 27 17:31:06 2004 => Scanning File C:\WINNT\system32\itss.dll
Sat Nov 27 17:31:06 2004 => Scanning File C:\WINNT\system32\ntlsapi.dll
Sat Nov 27 17:31:06 2004 => Scanning File C:\WINNT\system32\BROWSEUI.DLL
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\cryptext.dll
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\mstask.dll
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\CRYPTUI.DLL
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\IFORCE2.dll
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\cdonts.dll
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\NTPRINT.DLL
Sat Nov 27 17:31:07 2004 => *** File C:\WINNT\system32\d3d8.dll having Size Restriction ***
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\d3d8.dll [**]
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\SVRAPI.DLL
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\VBADA32.OLB
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\ctl3dv2.dll
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\ctype.nls [**]
Sat Nov 27 17:31:07 2004 => Scanning File C:\WINNT\system32\d3dim.dll
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\ddraw.dll
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\d3dpmesh.dll
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\d3dref.dll
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\d3drm.dll
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\d3dxof.dll
Sat Nov 27 17:31:08 2004 => *** File C:\WINNT\system32\danim.dll having Size Restriction ***
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\danim.dll [**]
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\dataclen.dll
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\datime.dll
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\daxctle.ocx
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\dbmsspxn.dll
Sat Nov 27 17:31:08 2004 => Scanning File C:\WINNT\system32\dbmsrpcn.dll
Sat Nov 27 17:31:09 2004 => Scanning File C:\WINNT\system32\DCOMCNFG.EXE
Sat Nov 27 17:31:09 2004 => Scanning File C:\WINNT\system32\dbmssocn.dll
Sat Nov 27 17:31:09 2004 => Scanning File C:\WINNT\system32\dbnmpntw.dll
Sat Nov 27 17:31:09 2004 => Scanning File C:\WINNT\system32\devmgr.dll
Sat Nov 27 17:31:09 2004 => Scanning File C:\WINNT\system32\dciman32.dll
Sat Nov 27 17:31:09 2004 => Scanning File C:\WINNT\system32\dfrgfat.exe
Sat Nov 27 17:31:09 2004 => Scanning File C:\WINNT\system32\ddeml.dll
Sat Nov 27 17:31:09 2004 => Scanning File C:\WINNT\system32\ddeshare.exe
Sat Nov 27 17:31:09 2004 => Scanning File C:\WINNT\system32\ddmprxy.exe
Sat Nov 27 17:31:09 2004 => Scanning File C:\WINNT\system32\dinput.dll
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\ddrawex.dll
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\debug.exe
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\deskadp.dll
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\deskmon.dll
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\deskperf.dll
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\ksdata.ax
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\devmgmt.msc [**]
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\dfrgntfs.exe
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\dhcpmon.dll
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\dfrg.msc [**]
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\dfrgsnap.dll
Sat Nov 27 17:31:10 2004 => Scanning File C:\WINNT\system32\dfsshlex.dll
Sat Nov 27 17:31:11 2004 => Scanning File C:\WINNT\system32\dfrgres.dll
Sat Nov 27 17:31:11 2004 => Scanning File C:\WINNT\system32\dmband.dll
Sat Nov 27 17:31:11 2004 => Scanning File C:\WINNT\system32\dfrgui.dll
Sat Nov 27 17:31:11 2004 => Scanning File C:\WINNT\system32\ir41_32.dll
Sat Nov 27 17:31:11 2004 => Scanning File C:\WINNT\system32\diskcopy.dll
Sat Nov 27 17:31:11 2004 => Scanning File C:\WINNT\system32\NWPROVAU.DLL
Sat Nov 27 17:31:11 2004 => Scanning File C:\WINNT\system32\diantz.exe
Sat Nov 27 17:31:11 2004 => Scanning File C:\WINNT\system32\NWWKS.DLL
Sat Nov 27 17:31:11 2004 => Scanning File C:\WINNT\system32\diskperf.exe
Sat Nov 27 17:31:11 2004 => Scanning File C:\WINNT\system32\oiui400.dll
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\iacenc.dll
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\DLLHOST.EXE
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\diskmgmt.msc [**]
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\dllhst3g.exe
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\iyvu9_32.dll
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\dlcapi.dll
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\dmadmin.exe
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\dmconfig.dll
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\dmdlgs.dll
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\dmcompos.dll
Sat Nov 27 17:31:12 2004 => Scanning File C:\WINNT\system32\dmime.dll
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\dmdskmgr.dll
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\dmdskres.dll
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\dmintf.dll
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\dmremote.exe
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\dmloader.dll
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\dmserver.dll
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\dmstyle.dll
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\dmocx.dll
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\INSENG.DLL
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\MSPRPDA.DLL
Sat Nov 27 17:31:13 2004 => Scanning File C:\WINNT\system32\dmsynth.dll
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\dmusic.dll
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\dplay.dll
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\URLMON.DLL
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\RDOCURS.DLL
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\LDigital.VxD
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\docprop.dll
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\docprop2.dll
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\doshelp.hlp [**]
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\doskey.exe
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\dosx.exe
Sat Nov 27 17:31:14 2004 => Scanning File C:\WINNT\system32\dplaysvr.exe
Sat Nov 27 17:31:15 2004 => Scanning File C:\WINNT\system32\dplayx.dll
Sat Nov 27 17:31:15 2004 => Scanning File C:\WINNT\system32\dpmodemx.dll
Sat Nov 27 17:31:15 2004 => Scanning File C:\WINNT\system32\dpserial.dll
Sat Nov 27 17:31:15 2004 => Scanning File C:\WINNT\system32\dpwsockx.dll
Sat Nov 27 17:31:15 2004 => Scanning File C:\WINNT\system32\dpwsock.dll
Sat Nov 27 17:31:15 2004 => Scanning File C:\WINNT\system32\dsound.dll
Sat Nov 27 17:31:15 2004 => Scanning File C:\WINNT\system32\drmv2clt.dll
Sat Nov 27 17:31:15 2004 => Scanning File C:\WINNT\system32\drmstor.dll
Sat Nov 27 17:31:15 2004 => Scanning File C:\WINNT\system32\drwatson.exe
Sat Nov 27 17:31:15 2004 => Scanning File C:\WINNT\system32\PERFCTRS.DLL
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\kbdgae.dll
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\ds16gt.dLL
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\dsfolder.dll
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\dskquota.dll
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\dsctl.dll
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\dskquoui.dll
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\dsprop.dll
Sat Nov 27 17:31:16 2004 => *** File C:\WINNT\system32\MSHTML.DLL having Size Restriction ***
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\MSHTML.DLL [**]
Sat Nov 27 17:31:16 2004 => *** File C:\WINNT\system32\dsound3d.dll having Size Restriction ***
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\dsound3d.dll [**]
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\dsound.vxd
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\dx7vb.dll
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\DSSBASE.DLL
Sat Nov 27 17:31:16 2004 => Scanning File C:\WINNT\system32\GRPCONV.EXE
Sat Nov 27 17:31:17 2004 => Scanning File C:\WINNT\system32\MAPI.DLL
Sat Nov 27 17:31:17 2004 => Scanning File C:\WINNT\system32\dssec.dat [**]
Sat Nov 27 17:31:17 2004 => Scanning File C:\WINNT\system32\ntvvdm.exe
Sat Nov 27 17:31:17 2004 => File C:\WINNT\system32\ntvvdm.exe tagged as not-a-virus:RiskWare.Tool.PsExec.141. No Action Taken.

Sat Nov 27 17:31:17 2004 => Scanning File C:\WINNT\system32\es.dll
Sat Nov 27 17:31:17 2004 => Scanning File C:\WINNT\system32\dvdplay.exe
Sat Nov 27 17:31:17 2004 => Scanning File C:\WINNT\system32\gcdef.dll
Sat Nov 27 17:31:17 2004 => Scanning File C:\WINNT\system32\dxmasf.dll
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\NTLANMAN.DLL
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\PRINTUI.DLL
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\dxtmsft3.dll
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\wmvds32.ax
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\edlin.exe
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\efsadu.dll
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\ntsyskrnl.exe
Sat Nov 27 17:31:18 2004 => ERROR!!! ScanFile fails for C:\WINNT\system32\ntsyskrnl.exe
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\eudcedit.exe
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\esentprf.dll
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\esentprf.hxx [**]
Sat Nov 27 17:31:18 2004 => Scanning File C:\WINNT\system32\esentprf.ini [**]
Sat Nov 27 17:31:19 2004 => *** File C:\WINNT\system32\webvw.dll having Size Restriction ***
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\webvw.dll [**]
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\MAPISRVR.EXE
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\eula.txt [**]
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\wmv8ds32.ax
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\eventvwr.exe
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\eventvwr.msc [**]
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\exe2bin.exe
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\expand.exe
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\FAXSVC.EXE
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\extrac32.exe
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\fastopen.exe
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\fax.cpk
Sat Nov 27 17:31:19 2004 => Scanning File C:\WINNT\system32\faxcom.dll
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxdrv.dll
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxcount.h [**]
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxcover.exe
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxui.dll
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxevent.dll
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxext32.dll
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxmapi.dll
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxocm.dll
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxperf.dll
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxperf.ini [**]
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxqueue.exe
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxroute.dll
Sat Nov 27 17:31:20 2004 => Scanning File C:\WINNT\system32\faxsend.exe
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\faxserv.msc [**]
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\faxshell.dll
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\faxt30.dll
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\csrss.sys
Sat Nov 27 17:31:21 2004 => ERROR!!! ScanFile fails for C:\WINNT\system32\csrss.sys
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\faxtiff.dll
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\odbcbcp.dll
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\faxxp32.dll
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\fc.exe
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\fde.dll
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\findstr.exe
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\feclient.dll
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\mstask.exe
Sat Nov 27 17:31:21 2004 => Scanning File C:\WINNT\system32\RASAUTO.DLL
Sat Nov 27 17:31:22 2004 => Scanning File C:\WINNT\system32\FONTEXT.DLL
Sat Nov 27 17:31:22 2004 => Scanning File C:\WINNT\system32\finger.exe
Sat Nov 27 17:31:22 2004 => Scanning File C:\WINNT\system32\fixmapi.exe
Sat Nov 27 17:31:22 2004 => Scanning File C:\WINNT\system32\LAnalog.VxD
Sat Nov 27 17:31:22 2004 => Scanning File C:\WINNT\system32\fontsub.dll
Sat Nov 27 17:31:22 2004 => Scanning File C:\WINNT\system32\fontview.exe
Sat Nov 27 17:31:22 2004 => Scanning File C:\WINNT\system32\forcedos.exe
Sat Nov 27 17:31:22 2004 => Scanning File C:\WINNT\system32\wuaueng.dll
Sat Nov 27 17:31:22 2004 => Scanning File C:\WINNT\system32\fsmgmt.msc [**]
Sat Nov 27 17:31:22 2004 => Scanning File C:\WINNT\system32\rastapi.dll
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\ftsrch.dll
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\g711codc.ax
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\g723codc.ax
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\joy.cpl
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\gdi.exe
Sat Nov 27 17:31:23 2004 => *** File C:\WINNT\system32\WIN32K.SYS having Size Restriction ***
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\WIN32K.SYS [**]
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\getstart.gif [**]
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\glmf32.dll
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\glu32.dll
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\wuauclt.exe
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\gpedit.msc [**]
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\gpkcsp.dll
Sat Nov 27 17:31:23 2004 => Scanning File C:\WINNT\system32\gpkrsrc.dll
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\h263_32.ax
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\graftabl.com
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\graphics.com
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\graphics.pro [**]
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\linkinfo.dll
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\hhsetup.dll
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\wuaucpl.cpl
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\hardware.inf
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\hdwwiz.cpl
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\help.exe
Sat Nov 27 17:31:24 2004 => Scanning File C:\WINNT\system32\hlink.dll
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\NETAPI32.DLL
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\hotplug.dll
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\himem.sys
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\HTICONS.DLL
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\RECOVER.EXE
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\hostname.exe
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\iasacct.dll
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\hpmon.dll
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\hpmon.hlp [**]
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\htui.dll
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\ias.msc [**]
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\iasnap.dll
Sat Nov 27 17:31:25 2004 => Scanning File C:\WINNT\system32\iasperf.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\iashlpr.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\iasrad.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\iassam.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\iasperf.h [**]
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\iasperf.ini [**]
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\iaspipe.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\iaspolcy.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\iassdo.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\iasrecst.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\iassvcs.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\icm32.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\rsaenh.dll
Sat Nov 27 17:31:26 2004 => Scanning File C:\WINNT\system32\rshx32.dll
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\iccvid.dll
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\idq.dll
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\icmp.dll
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\icmui.dll
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\Ljoy.VxD
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\MDT2FW95.DLL
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\SAVEDUMP.EXE
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\scardsvr.exe
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\LJoyV.VxD
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\iernonce.dll
Sat Nov 27 17:31:27 2004 => Scanning File C:\WINNT\system32\msdxm.ocx
Sat Nov 27 17:31:28 2004 => Scanning File C:\WINNT\system32\ieshwiz.exe
Sat Nov 27 17:31:28 2004 => Scanning File C:\WINNT\system32\wmpcore.dll
Sat Nov 27 17:31:28 2004 => Scanning File C:\WINNT\system32\iexpress.exe
Sat Nov 27 17:31:28 2004 => Scanning File C:\WINNT\system32\ifmon.dll
Sat Nov 27 17:31:28 2004 => Scanning File C:\WINNT\system32\sorttbls.nls [**]
Sat Nov 27 17:31:28 2004 => Scanning File C:\WINNT\system32\igmpagnt.dll
Sat Nov 27 17:31:29 2004 => Scanning File C:\WINNT\system32\iissuba.dll
Sat Nov 27 17:31:29 2004 => Scanning File C:\WINNT\system32\imgedit.ocx
Sat Nov 27 17:31:29 2004 => Scanning File C:\WINNT\system32\NDDENB32.DLL
Sat Nov 27 17:31:29 2004 => Scanning File C:\WINNT\system32\imeshare.dll
Sat Nov 27 17:31:29 2004 => Scanning File C:\WINNT\system32\MFC42DAN.DLL [**]
Sat Nov 27 17:31:29 2004 => *** File C:\WINNT\system32\SHELL32.DLL having Size Restriction ***
Sat Nov 27 17:31:29 2004 => Scanning File C:\WINNT\system32\SHELL32.DLL [**]
Sat Nov 27 17:31:29 2004 => Scanning File C:\WINNT\system32\indicdll.dll
Sat Nov 27 17:31:29 2004 => Scanning File C:\WINNT\system32\sp3res.dll
Sat Nov 27 17:31:30 2004 => *** File C:\WINNT\system32\mscomctl.ocx having Size Restriction ***
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\mscomctl.ocx [**]
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\Lserial.VxD
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\IPHLPAPI.DLL
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\instcat.sql [**]
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\subst.exe
Sat Nov 27 17:31:30 2004 => *** File C:\WINNT\system32\NTKRNLPA.EXE having Size Restriction ***
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\NTKRNLPA.EXE [**]
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\instcm.inf
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\internat.exe
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\intl.cpl
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\iologmsg.dll
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\ipconf.tsp
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\ipconfig.exe
Sat Nov 27 17:31:30 2004 => Scanning File C:\WINNT\system32\XENROLL.DLL
Sat No

Synes godt om

tonnybrandt Nybegynder

27. november 2004 - 17:34 #4

Det var en ny HiJackTHis log jeg skulle have. Ikke e-scan loggen. *s*

Synes godt om

rudnicki Nybegynder

27. november 2004 - 17:36 #5

ok den kommer om et øjeblik

Synes godt om

rudnicki Nybegynder

27. november 2004 - 17:39 #6

den anden virkede også lidt voldsom...

her er så Logfile of HijackThis v1.98.2
Scan saved at 17:52:40, on 27-11-2004
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
C:\Programmer\Norton AntiVirus\navapsvc.exe
C:\WINNT\system32\regsvc.exe
C:\Programmer\Norton AntiVirus\SAVScan.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\Explorer.EXE
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\System32\mspmspsv.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\anvshell.exe
C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe
C:\WINNT\system32\internat.exe
C:\Documents and Settings\Mads1\Skrivebord\hjt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://212.10.10.20/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://signon.stofanet.dk/proxy.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programmer\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmer\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [anvshell] anvshell.exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [ccApp] "C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe"
O4 - HKCU\..\Run: [internat.exe] internat.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programmer\Microsoft Office\Office\OSA9.EXE
O12 - Plugin for .mpeg: C:\Programmer\Internet Explorer\PLUGINS\npqtplugin3.dll
O12 - Plugin for .spop: C:\Programmer\Internet Explorer\Plugins\NPDocBox.dll

Synes godt om

tonnybrandt Nybegynder

27. november 2004 - 17:44 #7

Loggen er nu ren.

Du kan evt installere nogle af programmerne i spywarefri pakken..de er alle små, konflikter ikke og er meget effektive mod snavs af den slags du lige har været angrebet af.

Specielt anbefaler vi Spybot,spywareblaster, IE-Spyad og spywareguard.
Se mere i "pakken" her
http://www.spywarefri.dk/pakken.htm

Synes godt om

rudnicki Nybegynder

27. november 2004 - 17:48 #8

tusind tak for hjælpen

Synes godt om

rudnicki Nybegynder

27. november 2004 - 17:49 #9

nu har du fået dine point ikke, er ikke helt sikker på hvordan det her fungerer, ellers må du lige give lyd..

Tak Tak , nu skal jeg ind til svigermors kagebord, med en lille stjerne på skulderen.

Synes godt om

tonnybrandt Nybegynder

27. november 2004 - 17:51 #10

Velbekomme :)

Nej endnu ikke nogen point. Du skal markere mit navn nede til venstre og derefter trykker på accepter knappen. Så overføres pointene og spørgsmålet får status af lukket.

Synes godt om

tonnybrandt Nybegynder

28. november 2004 - 22:36 #11

Så lykkedes det. Takker for point :)

Synes godt om

Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Følg dette spørgsmål

Opret Preview

Se alle it-kurser fra Computerworld Kurser

IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.

Se alle it-kurser

Flere spørgsmål fra Virus kategorien

Titel	Indlæg	Oprettet	Seneste aktivitet
Vil skrifte antivirusprogram. Af ErikHg i Virus	22	26/11/202510:42	23/12/202514:29
Er gratis Bitdefender værd at installere ? Af Ikke-ekspert i Virus	8	31/08/202519:08	01/09/202514:18
Ukendte filer på min Pc Af jonpet i Virus	10	03/02/202514:20	04/02/202511:05
mulig ukendt virus Af jackie18 i Virus	3	18/01/202514:07	18/01/202516:39
virus popper op med jævne mellemrum Af Malm i Virus	13	18/01/202511:40	20/01/202517:53

Se alle spørgsmål i kategorien Opret spørgsmål

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Du kan også logge ind via nedenstående tjenester

Alle kategorier på Eksperten

Seneste artiklerRSS

08/05

DJI gør det igen: Skal du have din første drone, bør det være denne

08/05

Computerworld med AWS i Stockholm: Sådan går verdens største cloud-leverandør til diskusssionen om digital suverænitet

08/05

Nørgaard: Hvorfor bruger vi egentlig ikke europæiske AI-modeller? Kan det mon være fordi, at de er elendige?

08/05

Hannah gav AI-agent fri adgang til sit kreditkort som et eksperiment - og det gik rigtigt hurtigt helt galt

08/05

Er stærkt bekymret: Store kommunale it-centre vil kunne dræne hele landsdelen for dygtige folk

08/05

Tech-giganter advarer: Ny lovgivning kan svække vores kryptering og tvinge os til at installere statslig spyware

08/05

Så vild er Danmarks nye supercomputer: "Workloads vil gå 10 gange hurtigere end for en uge siden"

08/05

Sådan hænger verden egentlig sammen

08/05

Her er bagmændene: Berygtet teenage-hackerbande rammer danske universiteter i globalt angreb

08/05

NNIT nedjusterer for fjerde gang på et år efter endnu et nedslående regnskab: Sådan vil fremtiden forme sig

08/05

Opdatering vælter alarmtelefoner på to jyske hospitaler: Gødstrup i nødberedskab med 1.254 ramte enheder

Vis flere artikler

IT-JOB

Forsvarsministeriets Materiel- og Indkøbsstyrelse

Teknisk systemansvarlig / ingeniør inden for taktisk datalink

Jyske Bank

Analytiker til Modelafdeling

IT-Universitetet i København

Medarbejder til dataanalyse og BI søges til IT-Universitetet i København

Statens IT

Erfarne sikkerhedsanalytikere til Security Operations Centre

Lægemiddelstyrelsen

Løsningsarkitekt

Vis flere jobs

Seneste spørgsmål Seneste aktivitet

07/0514:15	PHP Html Af Asky i Programmeringsværktøjer
07/0511:06	Rufus mange muligheder - valg ved install Windows Af Uvanga i Windows
06/0516:53	HTML Af Asky i Programmeringsværktøjer
06/0510:01	Mister internettet efter slumre, Af valby i Windows
05/0513:02	Lille smart tingest Af nu_igen i Fitness & Smartwatches

White papers

Undgå at printeren bliver svageste led i sikkerheden
Konica Minolta
Arctic Wolf Threat Report 2026: Sådan ændrer ransomware-landskabet sig
Arctic Wolf
Find den SOC-model, der virker i praksis
SecureDevice
Samarbejde mellem AI og mennesker styrker sikkerheden
Konica Minolta

Flere white papers »